last executing test programs:

2.458313347s ago: executing program 2 (id=1121):
r0 = socket$inet6(0xa, 0x1, 0x88)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x401, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
sendfile(r2, r1, 0x0, 0x7ffff000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x6db6e559)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r6, 0x0, 0x0, 0x6, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a000000010000000900000008"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r7}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r8}, 0x10)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = fcntl$dupfd(r9, 0x0, r9)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
mq_timedreceive(r6, &(0x7f00000013c0)=""/102369, 0xda6f, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x0, 0x7fffffff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c)

1.499677794s ago: executing program 2 (id=1126):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000080), 0x4)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000240)={'ip6_vti0\x00', &(0x7f0000000300)={'ip6gre0\x00', <r4=>0x0, 0x2f, 0x9, 0xc0, 0xff, 0x47, @private1={0xfc, 0x1, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x15}}, 0x10, 0x700, 0x7c3, 0x7}})
sendmsg$nl_route_sched(r3, &(0x7f0000000480)={&(0x7f0000000000), 0xc, &(0x7f0000000440)={&(0x7f0000000400)=@getchain={0x2c, 0x66, 0x624, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0xfff2, 0xf}, {0x5, 0xffff}, {0x11, 0xfff3}}, [{0x8, 0xb, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8194}, 0x40004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1000, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pim6reg0\x00', 0x232})
ioctl$TUNSETTXFILTER(r5, 0x400454d1, &(0x7f0000000700)=ANY=[@ANYBLOB="0000bf03"])
r6 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
sendfile(r6, r6, &(0x7f00000002c0)=0x100, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = dup(r7)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x5c, 0x2, 0x6, 0x3, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x9000000}]}]}, 0x5c}}, 0x0)

1.168260473s ago: executing program 0 (id=1135):
r0 = socket(0x2b, 0x80801, 0x1)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000fc0)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x140, 0x5c, 0x160, 0x140, 0x3e0, 0x250, 0x228, 0x25a, 0x250, 0x228, 0x4, 0x0, {[{{@ipv6={@remote, @dev, [0x0, 0x2000000], [], 'veth0_to_batadv\x00', 'wg1\x00', {}, {0x222cecdb0fb5a62a}, 0x3a}, 0x5002, 0xf8, 0x140, 0x52020000, {0x0, 0x6802000000000000}, [@common=@icmp6={{0x28}, {0x0, "d176"}}, @common=@unspec=@state={{0x28}, {0xfffffffd}}]}, @unspec=@CT0={0x48}}, {{@ipv6={@local, @private2, [], [0xff], 'veth1_to_hsr\x00', 'dummy0\x00', {}, {}, 0x88}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)

1.114160033s ago: executing program 2 (id=1136):
r0 = socket$inet6(0xa, 0x1, 0x88)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x401, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
sendfile(r2, r1, 0x0, 0x7ffff000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x6db6e559)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r6, 0x0, 0x0, 0x6, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a000000010000000900000008"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r7}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00', r8}, 0x10)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = fcntl$dupfd(r9, 0x0, r9)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
mq_timedreceive(r6, &(0x7f00000013c0)=""/102369, 0xda6f, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x0, 0x7fffffff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c)

1.107033953s ago: executing program 0 (id=1138):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="611564000000000061138c0000000000bfa000000000000007000000080000002d0301000000000095000000000000006916000000000000bf67000000000000350607000fff07206706000003000000160302000ee60060bf350000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dc725f431bcab0ef59b8f0e431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932b3a6aa0100000000000000b93716d20000009f0f53acbb40b4f8e2738270b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631d22a11dc3c693962895496d4ffcae1a8a793a7795a9214a92f66e9cc54db6c7205a6b068fff496d2da7d632bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff139604faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc3086936d7637e07c4a2a3bc87b0da23c00d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61dc18402cde8bf777b2eaa45c940aabc86b94f8cbde4d470667bee722a6a2af483ad0d3415ed0f9db009acaba9eaea93f811d434e00000000000000000000d154baa8e51489a614e69722bac30000000000000000000000000000a006b178438e930b2494db1bf624a70a19a45b8b71869afb13cb2ac1d2f3ec0d93a3e4fd0ad076c7d826f218aa6ba8ec5e58b7c64dc8616127087901dc65418a4b25bfa7ae8b5ad9642815f319230425e8bd89c6983d816d97d81a739917eecd26f9a3aecaf0acdaf6cffab38eae3b10b122b4bf521a46bf01a0c136f745113b589459fbe1666087a7c554a55e2b42ab7e405a77f405a348a64e356b7fb61e48ea9c87bf13f97052c51fdd49f3dbccf9874cf61807ae4b1665ccdd026d4580a068395e8cb851eeadb1da6d1009513ca73a685c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.078388703s ago: executing program 0 (id=1139):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000003600090000000000000000000100000004040000180001800600200005080000000020000600000000000000080002"], 0x38}}, 0x0)

1.053139813s ago: executing program 3 (id=1140):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000800)='kfree_skb\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000280), &(0x7f0000000080)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r4}, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x10, &(0x7f0000000140)={0x3d, 0x3, 0xfffffff9})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="b0ff04c66b0d698cb89e2fe086dd1f74ffff06000000ff05001000000000ac14140746647b7954c4c06b580febc28eb143d0f6c0bad62f67a04402ba4125c7024f63fdb0b6c8ee826b4dfe6042a2f057c66cad677d850ea9928bcfcb47e585e427746ed3b27c40060cbd030a6d675c9926af53cd3085b24f9b7a486775c4f284f8c5a572ca115bce90c0ee9d4e7a07f5f1518092cb1f156694036f6618a59196631e6303fd5307d1112601d3641c9492f7dc3503416836b14590c53b1fc1ac149b70cc1142d6bc57fc3a76839fa2f96878b520fedfb9f64d81584a2e85ab4f6ec718b02d78f2ebf04e6b3b94610a21616181629a03c3dc0bf05e0a71f887833b81db7a10bc53259cb80716f6804934a411d424c1db98d454be1adb2776fdbb92b299d3b80af6987a871b4549fdb4c8297ee31ad925c8b0fb1a9d2589b08ed52602cbc26b56df71201bc4ea8621c56f33d251c1d4589af2dcd78fbb4e34bde02cb3920a30cee9489ee72c3e19304c16c2110e1839712d484b80abe77786a7e2ba834874a4e16b93dd07297554a06c2ad2c906f8ebb1db8730df096709184728d48f0a806696bd0d4b12d0064b933d9675353dae77fe8419451f85da63be78b70ca2a84a77f572d9f289d4313e6f6039fe756ac13a5d08838315dff44cda433cc7bc6b77449f8c", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x0, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)

1.022758323s ago: executing program 0 (id=1141):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r2)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r6], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYRES64=r1], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r9, 0x84, 0xb, &(0x7f0000000080)={0x0, 0x5b}, 0x9)
shutdown(r9, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f0000000000)={<r10=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r9, 0x84, 0x22, &(0x7f0000000200)={0x8, 0x20f, 0xe, 0x5, r10}, &(0x7f0000000240)=0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x80ff, &(0x7f0000000b40)={&(0x7f0000001040)=ANY=[@ANYBLOB="38010000100013070000000000000000ffffffff000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000ff0100000000000000000000000000010000000000000000862300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000159e000000000000000000000a000200000000000000000048000200656362286369706865725f6e756c6c29"], 0x138}, 0x1, 0xe}, 0x0)
ioperm(0x4, 0x7fff, 0x6)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x0, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r11, &(0x7f0000004200)='t', 0x1)
r12 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r13}, 0x2d)
r14 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYRES32=r0], &(0x7f0000000300)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(r14, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000700000e0000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002600000000c0a01080000000000000000010000000900020073797a32000000003400038030000080080003400000000224000b80200001800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30"], 0xe4}}, 0x0)

972.491313ms ago: executing program 3 (id=1142):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f00000005c0)="c2", 0x1}], 0x1}, 0x4040001)
recvmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x103)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYBLOB="000045dc00"/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000e4000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x17, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xee, 0x0, 0x0, 0x0, 0x7}, {}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @ldst={0x0, 0x0, 0x6, 0x4, 0x0, 0xfffffffffffffff8}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x5}, @map_fd={0x18, 0xa}, @map_fd={0x18, 0xd}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='GPL\x00', 0x10, 0xde, &(0x7f0000000340)=""/222, 0x40f00, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x7, 0x5}, 0x8, 0x10, &(0x7f0000000280)={0x0, 0x8, 0x101, 0x101}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000440)=[{0x3, 0x4, 0x0, 0x4}], 0x10, 0x1, @void, @value}, 0x94)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, 0x0, 0x80)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000540)={'wg0\x00', <r6=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffddc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000580)={'wg2\x00', <r7=>0x0})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r4, 0xc0189372, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r8=>r3, {0x10001}}, './file0\x00'})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)={0x1b, 0x0, 0x0, 0xad, 0x0, 0xffffffffffffffff, 0x6, '\x00', r7, r8, 0x5, 0x1, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
mkdirat(0xffffffffffffffff, &(0x7f0000000180)='./bus\x00', 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r9, &(0x7f0000000280)='./bus/file0\x00', 0x0)
renameat2(0xffffffffffffffff, &(0x7f0000000240)='./bus/file0\x00', r9, &(0x7f00000001c0)='./file0\x00', 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
fspick(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1)
sendmsg$NFT_MSG_GETSET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000000a0a0101ae31e12839"], 0x20}}, 0x20000040)
r11 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, r11)

921.216183ms ago: executing program 3 (id=1143):
r0 = syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x21e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
unshare(0x2000400)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
fcntl$setstatus(r4, 0x4, 0x800)
waitid$P_PIDFD(0x3, r4, 0x0, 0x8, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYRES8=r3], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendto$inet6(r6, &(0x7f0000000080)="7800000018002507b9409b14ffff00000202be04020506050e1304095c0009003f0020480a0000000d0085a168d0bf46d32345653600648d040012000a00050049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a3200040016000b000a0000000000e0ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x15)
socket$kcm(0x2, 0x1000000000000002, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)

920.331603ms ago: executing program 0 (id=1144):
futex(&(0x7f000000cffc)=0x4, 0x0, 0x4, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x6c)
pipe2$9p(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
socket$l2tp(0x2, 0x2, 0x73)
dup(r4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

681.577162ms ago: executing program 3 (id=1145):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x10001}, 0x18)
tkill(0x0, 0x14)

653.878562ms ago: executing program 3 (id=1146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), r2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
dup3(0xffffffffffffffff, r4, 0x80000)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r5, &(0x7f0000000040)={0x23, 0x0, 0x9}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r8}, 0xe)
r9 = syz_io_uring_setup(0x18d6, &(0x7f0000000040)={0x0, 0x1, 0x400}, &(0x7f0000ffe000), &(0x7f0000ffe000))
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r9, 0x2, &(0x7f0000000180), 0xfe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
ioctl$SIOCPNENABLEPIPE(r5, 0x89ed, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000c00000018000180140002006261746164765f736c6176655f31000060000380"], 0x8c}, 0x1, 0x0, 0x0, 0x2010}, 0x0)
syz_emit_ethernet(0x376, &(0x7f00000003c0)={@link_local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0300", 0x340, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, [{0x3, 0xa, "a78ce54006598080a8030003004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af0502"}, {0x0, 0x1, "000005000000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0xe, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x3, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f019"}, {0x19, 0x7, "b8a3e10000a3e10300000009000000ffff00000000600000ff0bc0fe000000000000000000000000d9a0274400"/55}, {0x0, 0x11, "3f14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e2eeb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05"}]}}}}}}, 0x0)
r10 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_RTHDR(r10, 0x29, 0x39, &(0x7f0000000100)=ANY=[@ANYBLOB="670a029b00000029dcac110000000000000000000000000120010000000000000000000000000002ff0200000000000000000000000000010000000000000000000000000000000100000000000000000000000092887a409a694735b4233813c34cdec7dc597b71847b7dcb157c215b33d1296e996ff9d0629c"], 0x58)

497.136082ms ago: executing program 3 (id=1147):
socket$inet6(0xa, 0x1, 0x88)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x401, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
sendfile(r1, r0, 0x0, 0x7ffff000)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x6db6e559)
r5 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r5, 0x0, 0x0, 0x6, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a000000010000000900"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r6}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00'}, 0x10)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = fcntl$dupfd(r7, 0x0, r7)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
mq_timedreceive(r5, &(0x7f00000013c0)=""/102369, 0xda6f, 0xffffffffffffffff, 0x0)

392.352911ms ago: executing program 4 (id=1152):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$unix(0x1, 0x5, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000003c0)={0x2, 0x0, &(0x7f0000000000)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="020300030e000000000000000000000005080600000000400a000000000000b5fe8000000000000000000004000000000000000000000000020001000000f0ffffff060b000000000500ca8cac8201719b05b2deadb6017a1bb52b588648be7e3763b5733e7c00000000000000fc000000000000000000517ecc2c7d67c64b6f0bbb4e5c87f4ce16f01b75fe4059c04599b6bbd2cc5f0fbc0c00000000000093e991e926"], 0x71}}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

355.700341ms ago: executing program 4 (id=1153):
socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000001dc0)={'tunl0\x00', &(0x7f0000001d00)={'tunl0\x00', 0x0, 0x20, 0x0, 0x7, 0x3, {{0x27, 0x4, 0x3, 0x1, 0x9c, 0x64, 0x0, 0x6, 0x29, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x1d}, {[@noop, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x18, 0x2, [{0x2, 0xd, "4409788eeb0a6936bf3fa0"}, {0x1, 0x5, "530adb"}]}, @cipso={0x86, 0x5f, 0x2, [{0x0, 0x8, "b0e6bf63dcc8"}, {0x0, 0x12, "fb930ebdfad064d09484706959afbe7b"}, {0x5, 0xe, "6428a44a4050032b480a1e08"}, {0x2, 0x10, "99cf9562ad160cb8ce9b31038c5e"}, {0x2, 0x8, "f5440bfac508"}, {0x6, 0xf, "682c005669c3d5aca31f4eb587"}, {0x7, 0xa, "72f9e451db59350e"}]}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0x99, [@initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000034c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4}, 0x1c, &(0x7f00000030c0)=[{&(0x7f0000002ec0)="0458b2bbb549a4c12318eccf171c", 0xe}, {&(0x7f0000002f00)="f17c0cf9ed0edf23bf57cb6f9f3b3f5bfe18c8de319cd4184f40e24a265109067c5890a75a185cb38f8eba481c2b4f94b5d4306a7f3b1664c32c832fedb6132c5c79864cad91b0e248a23c783fb7af11d650d535fe31f9f451e83a8acec90a1b8d37e759b57960b0456bf48618b32065630b89331241e1ac930ec363d32425b1e983b9f924774cdc026683b4e78b839f71a205bca171a52362d63afc0b6c125741641a414a663e9b87b147f52108561c16e19b02fceff2", 0xb7}, {&(0x7f0000002fc0)="8bf2be0c9ba7827ca8ef7e88f60929a335c51d7b7f8bf244320468314519593af05816ca14437bc9ee02d978cdc42c4d9f8296475cecb45ada4a04babe34a4f183996f03a985dade359bd709dd6f2de8c7c92f131bbb169e813f75da258e9e2a30ebc3f5177639833f2cc7faf8d92ac01345cbbe5ae0b30b5501cc334763fa97daec9524c151cfc605b6eca8e9d401a0843dac9304f0370c8213931fde5f5962cc0a70bbb8ac1c657fae72576d1c6fa15a2115262d6ce0878bcebb5d8a1acdcdd388a8b03fa141c3ee", 0xc9}], 0x3, &(0x7f0000003100)=[@rthdr={{0x78, 0x29, 0x39, {0x73, 0xc, 0x0, 0x17, 0x0, [@local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote]}}}], 0x78}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003180)="b4fe97dcf5da3f95658b1906075f24d3f53d479af7c7550bc4748ebddb775f4294bc51f228bb99183ee4f1fb968546e1d2c8e428e52435c825a07bed71cd412198a6d92ab141c25809405ccb1b7612b326b1c5a9a15d7f7f224ff40738ef79deced320593e70d1cf8ea0c493f44c575d25cd66e268b865504772796662ca17c3acc280068aeacae53642d19e39593966154b03cc49a32919048a7c4f5aaecc02c0d1b8a0b3254bf66c44066f2273429eb725d26b45b017b7c5e544b04b4670bd5c52ec80731f2daac5712ee6e617101aa98815efb3f744f476722d6ef4517427cba316b77928ea6b53de6b193197f578e6f3", 0xf2}, {&(0x7f0000003280)="8a1b34c0f5808b0d139b3145ed2006dde3acc7552e9f4f4cdff4445ea884b08f153fa2a1efbf2c47e80bb8e2b8a11abf1c783e8f7d6eb335275362a81770397eab5a0aba43a1936d3ba8a9b80cc4f095f87c762c40e2c653b069c8d2", 0x5c}, {&(0x7f0000003300)="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", 0xfa}, {&(0x7f0000003400)="f11f9d81ce16c3bcc712620a53a31dc769bb91d5729dc36453aa4ab8dfe1fa12c44c9a4a0b48c9778a871aeaef708d5fd3f6c1f86fd639a805bc3ab20c1b37", 0x3f}], 0x4, &(0x7f0000003480)}}], 0x2, 0x8000)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r1)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814)

354.861611ms ago: executing program 4 (id=1154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000800)='kfree_skb\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000280), &(0x7f0000000080)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r4}, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x10, &(0x7f0000000140)={0x3d, 0x3, 0xfffffff9})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="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", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x0, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r7}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)

270.241191ms ago: executing program 1 (id=1155):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000003600090000000000000000000100000004040000180001800600200005080000000020000600000000000000080002"], 0x38}}, 0x0)

262.529921ms ago: executing program 4 (id=1156):
r0 = getpid()
setreuid(0xee00, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r3}, 0x18)
setns(r1, 0x24020000)
syz_open_dev$MSR(&(0x7f0000000000), 0x2, 0x0)
syz_clone3(&(0x7f00000008c0)={0x14840000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0x0], 0x1}, 0x58)
getpid() (async)
setreuid(0xee00, 0x0) (async)
syz_pidfd_open(r0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r3}, 0x18) (async)
setns(r1, 0x24020000) (async)
syz_open_dev$MSR(&(0x7f0000000000), 0x2, 0x0) (async)
syz_clone3(&(0x7f00000008c0)={0x14840000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0x0], 0x1}, 0x58) (async)

257.084001ms ago: executing program 2 (id=1157):
r0 = syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x21e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
unshare(0x2000400)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
fcntl$setstatus(r4, 0x4, 0x800)
waitid$P_PIDFD(0x3, r4, 0x0, 0x8, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYRES8=r3], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendto$inet6(r6, &(0x7f0000000080)="7800000018002507b9409b14ffff00000202be04020506050e1304095c0009003f0020480a0000000d0085a168d0bf46d32345653600648d040012000a00050049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a3200040016000b000a0000000000e0ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x15)
socket$kcm(0x2, 0x1000000000000002, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffee3, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x54, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)

245.018671ms ago: executing program 1 (id=1158):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00')
preadv(r0, &(0x7f0000000840)=[{&(0x7f0000001dc0)=""/4088, 0xff8}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x100080a, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES64], 0x1, 0x66b, &(0x7f0000000900)="$eJzs3Vtv2+Ydx/Ef5ZPiDkGxDUEQpMmTZAUcLFMouXFgZMDKUZTNTRIFkh5sYECRNXYRRE63JAMW3xS+2QHo3sDuerOLvYgBu9672N0GFNvdgN1w4EG2ZJ2sxnF6+H6MVhT55/P8SSr8g7b4UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJZbt+2qpabf3to247n1MGhNWJ63tqDb+cTtqf1KVvqfymVdzmdd/u7x4kvp/27qav7uqsrpS1kHb116+8F35ku99Sck9EVo1gafvzx48rDb3X12itg5zdz8m6TSKYI2vLYfBX7L2fCMHwVmfW3NvrvZiEzDb3rRThR7LeOGXikOQrPi3jbV9fVV41V2gq32Rt1per2Z939Qs+0185Ol/EBLqkTupt9s+u2NLCZdnMbcN5/+PA/wnJYxe4+7u6vTkkyDqqcJqk0Lqtm1WrVaq1XX7q3fu2/b80Mz7JRlH9FQxJl/aPEVc3Ynb+AVldL6/w9Laqqstra0LTPyx1VdoQK1xiwv9Or/u3e9if321/9elb8s/ahYfEVZ/b+Wv7s2rv6PycXIZCuMWmKNmT/bz0LRynO91IGe6KG66mpXz86gbSNz/UxaOYefDXlqy1ekQL5acrI5pphjtK41rcnWB9pUQ5GMGvLVlKdIO4oUy8s+Ua5CeXIUK1AooxW5ui2jqta1rlUZeapoR4G21NaG6nL03yRJ9vQ42++rE3JUL6g6JmCpP6g2oaVx9f8Xn+Sf06L+29T/b6r8c7BUnMUmxQBfAklx/T+j668nGwAAAAAA8DpY2W/frexv9+9IStTwm579ptMCAAAAAABnyFKypKuylH2lTe/I4vofAAAAAICvGyu7x86StJx9qd86vhPqNL8EmDuHFAEAAAAAwCvK7vy/tigl2aAV12XNdP0PAAAAAAC+An7fN8b+fG+M3aT3Z/2SpKizZP3130sKF6zDzvb3rH0nXeLsFzFD3wCIG1esi8VAvdnLoqTsnetdtYreikEwj8Yd/Hxv2lj/VngigcW5/gbGJGClPa/NF+/0qW7kq9woxpl/dFBStiTvZbnhN72KGzQfVOU4F0uxtx3/+unj30jh0XbuPe7uVj78uPsoy+UwnXW4nzb6yUA6pdE74ziXF9l4C9k9F6O2+IIavS7/0G4tW1m/dm/75+Tsl/o7mnQAjvv8rW7mx+zmch67fHA04n66/eV0+6uV7JANbH24YB1nUT255aMOxJgsylkWt/KYWyu38pdefmk7Jav8/TmpVhk+BgNZ1PqzmL4vrP8M7YtJWRT7YjXN4m9pQ2OyWJ0ti6EjAgBvyt5xFcoGMR+qu73y0DupfaG6M726vz9Y3V/8KUmyFeak+eJvExN7KSs9o69YWR1aVHZinb8y4oxuF3WlrDFndPsVqlva11+On4FUpD2Uxf+SJHlQzfr944mq+lm6wmdj+42atbl0F959sf/LbAD81Ee7H+0+rdVW1+z3bPteTQvZZhQvc6L2AACGTH/GztQI6z3dyCNuPPrXu/nUQMX79tFXCir6UB+rq0e603uEwPXRrS73fQ3hTn7Vqr6rVnPp7QcXpJOxVd0Ze1WX1dK+2NpR7IJ6qwxW6uPY1dd8FAAAOF83p9Th0fW/PFD/72glj1i5MvK6e7CWn3xC8LjY6vTk3z/rvQEAwDeDF35uLce/s8LQ73xQXV+vOvGmZ8LA/akJ/fqGZ/x27IXuptPe8EwnDOLADZqmE2rJr3uRibY6nSCMTSMITSeI/O3sye+mePR75LWcduy7UafpOZFn3KAdO25s6n7kms7Wj5t+tOmF2cpRx3P9hu86sR+0TRRsha5XMSbyvL5Av+61Y7/hp5Nt0wn9lhPumJ8Fza2WZ+pe5IZ+Jw7yBnt9+e1GELayZitKZn7QIQAAX0fPXx48edjt7j6bMHGo6THFxOKIBhkjCACAL5njcj3DSuXXmBAAAAAAAAAAAAAAAAAAAAAAABhymvv/ZppYGHWzoHQ051cXT9WOpbNObJaJ0qxr9W6JOHjy9wnBF47m9HZ/f8zhuW3gP78lvZXNUT5n/uz7upDtjfM7cD/cy/fo2Jh04chFS0fHYv7s/zmkE0//PGZRkiTJ5NWXBvfh4qQNHJyYl/Rs8RUOwRs4GQE4V/8PAAD//xZ8O1M=")
syz_emit_ethernet(0x32, &(0x7f0000000580)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}, "21c2087d"}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@printk={@lli, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000640)=ANY=[@ANYBLOB="20000000020000001d"], 0x202400)

179.029741ms ago: executing program 4 (id=1159):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), r2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
dup3(0xffffffffffffffff, r4, 0x80000)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r5, &(0x7f0000000040)={0x23, 0x0, 0x9}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r8}, 0xe)
r9 = syz_io_uring_setup(0x18d6, &(0x7f0000000040)={0x0, 0x1, 0x400}, &(0x7f0000ffe000), &(0x7f0000ffe000))
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r9, 0x2, &(0x7f0000000180), 0xfe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
ioctl$SIOCPNENABLEPIPE(r5, 0x89ed, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000c00000018000180140002006261746164765f736c6176655f31000060000380"], 0x8c}, 0x1, 0x0, 0x0, 0x2010}, 0x0)
r10 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_IPV6_RTHDR(r10, 0x29, 0x39, &(0x7f0000000100)=ANY=[@ANYBLOB="670a029b00000029dcac110000000000000000000000000120010000000000000000000000000002ff0200000000000000000000000000010000000000000000000000000000000100000000000000000000000092887a409a694735b4233813c34cdec7dc597b71847b7dcb157c215b33d1296e996ff9d0629c"], 0x58)

177.768371ms ago: executing program 1 (id=1160):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00')
preadv(r0, &(0x7f0000000840)=[{&(0x7f0000001dc0)=""/4088, 0xff8}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x100080a, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES64], 0x1, 0x66b, &(0x7f0000000900)="$eJzs3Vtv2+Ydx/Ef5ZPiDkGxDUEQpMmTZAUcLFMouXFgZMDKUZTNTRIFkh5sYECRNXYRRE63JAMW3xS+2QHo3sDuerOLvYgBu9672N0GFNvdgN1w4EG2ZJ2sxnF6+H6MVhT55/P8SSr8g7b4UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQJZbt+2qpabf3to247n1MGhNWJ63tqDb+cTtqf1KVvqfymVdzmdd/u7x4kvp/27qav7uqsrpS1kHb116+8F35ku99Sck9EVo1gafvzx48rDb3X12itg5zdz8m6TSKYI2vLYfBX7L2fCMHwVmfW3NvrvZiEzDb3rRThR7LeOGXikOQrPi3jbV9fVV41V2gq32Rt1per2Z939Qs+0185Ol/EBLqkTupt9s+u2NLCZdnMbcN5/+PA/wnJYxe4+7u6vTkkyDqqcJqk0Lqtm1WrVaq1XX7q3fu2/b80Mz7JRlH9FQxJl/aPEVc3Ynb+AVldL6/w9Laqqstra0LTPyx1VdoQK1xiwv9Or/u3e9if321/9elb8s/ahYfEVZ/b+Wv7s2rv6PycXIZCuMWmKNmT/bz0LRynO91IGe6KG66mpXz86gbSNz/UxaOYefDXlqy1ekQL5acrI5pphjtK41rcnWB9pUQ5GMGvLVlKdIO4oUy8s+Ua5CeXIUK1AooxW5ui2jqta1rlUZeapoR4G21NaG6nL03yRJ9vQ42++rE3JUL6g6JmCpP6g2oaVx9f8Xn+Sf06L+29T/b6r8c7BUnMUmxQBfAklx/T+j668nGwAAAAAA8DpY2W/frexv9+9IStTwm579ptMCAAAAAABnyFKypKuylH2lTe/I4vofAAAAAICvGyu7x86StJx9qd86vhPqNL8EmDuHFAEAAAAAwCvK7vy/tigl2aAV12XNdP0PAAAAAAC+An7fN8b+fG+M3aT3Z/2SpKizZP3130sKF6zDzvb3rH0nXeLsFzFD3wCIG1esi8VAvdnLoqTsnetdtYreikEwj8Yd/Hxv2lj/VngigcW5/gbGJGClPa/NF+/0qW7kq9woxpl/dFBStiTvZbnhN72KGzQfVOU4F0uxtx3/+unj30jh0XbuPe7uVj78uPsoy+UwnXW4nzb6yUA6pdE74ziXF9l4C9k9F6O2+IIavS7/0G4tW1m/dm/75+Tsl/o7mnQAjvv8rW7mx+zmch67fHA04n66/eV0+6uV7JANbH24YB1nUT255aMOxJgsylkWt/KYWyu38pdefmk7Jav8/TmpVhk+BgNZ1PqzmL4vrP8M7YtJWRT7YjXN4m9pQ2OyWJ0ti6EjAgBvyt5xFcoGMR+qu73y0DupfaG6M726vz9Y3V/8KUmyFeak+eJvExN7KSs9o69YWR1aVHZinb8y4oxuF3WlrDFndPsVqlva11+On4FUpD2Uxf+SJHlQzfr944mq+lm6wmdj+42atbl0F959sf/LbAD81Ee7H+0+rdVW1+z3bPteTQvZZhQvc6L2AACGTH/GztQI6z3dyCNuPPrXu/nUQMX79tFXCir6UB+rq0e603uEwPXRrS73fQ3hTn7Vqr6rVnPp7QcXpJOxVd0Ze1WX1dK+2NpR7IJ6qwxW6uPY1dd8FAAAOF83p9Th0fW/PFD/72glj1i5MvK6e7CWn3xC8LjY6vTk3z/rvQEAwDeDF35uLce/s8LQ73xQXV+vOvGmZ8LA/akJ/fqGZ/x27IXuptPe8EwnDOLADZqmE2rJr3uRibY6nSCMTSMITSeI/O3sye+mePR75LWcduy7UafpOZFn3KAdO25s6n7kms7Wj5t+tOmF2cpRx3P9hu86sR+0TRRsha5XMSbyvL5Av+61Y7/hp5Nt0wn9lhPumJ8Fza2WZ+pe5IZ+Jw7yBnt9+e1GELayZitKZn7QIQAAX0fPXx48edjt7j6bMHGo6THFxOKIBhkjCACAL5njcj3DSuXXmBAAAAAAAAAAAAAAAAAAAAAAABhymvv/ZppYGHWzoHQ051cXT9WOpbNObJaJ0qxr9W6JOHjy9wnBF47m9HZ/f8zhuW3gP78lvZXNUT5n/uz7upDtjfM7cD/cy/fo2Jh04chFS0fHYv7s/zmkE0//PGZRkiTJ5NWXBvfh4qQNHJyYl/Rs8RUOwRs4GQE4V/8PAAD//xZ8O1M=")
syz_emit_ethernet(0x32, &(0x7f0000000580)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}, "21c2087d"}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
nanosleep(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000640)=ANY=[@ANYBLOB="20000000020000001d"], 0x202400)

107.59643ms ago: executing program 1 (id=1161):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

99.25086ms ago: executing program 4 (id=1162):
r0 = socket$inet6(0xa, 0x1, 0x88)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x401, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
sendfile(r2, r1, 0x0, 0x7ffff000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x6db6e559)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedsend(r6, 0x0, 0x0, 0x6, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a000000010000000900000008"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r7}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00'}, 0x10)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = fcntl$dupfd(r8, 0x0, r8)
ioctl$SG_IO(r9, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
mq_timedreceive(r6, &(0x7f00000013c0)=""/102369, 0xda6f, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x0, 0x7fffffff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c)

79.446891ms ago: executing program 2 (id=1163):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$unix(0x1, 0x5, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000003c0)={0x2, 0x0, &(0x7f0000000000)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="020300030e000000000000000000000005080600000000400a000000000000b5fe8000000000000000000004000000000000000000000000020001000000f0ffffff060b000000000500ca8cac8201719b05b2deadb6017a1bb52b588648be7e3763b5733e7c00000000000000fc000000000000000000517ecc2c7d67c64b6f0bbb4e5c87f4ce16f01b75fe4059c04599b6bbd2cc5f0fbc0c00000000000093e991e926"], 0x71}}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

46.10446ms ago: executing program 1 (id=1164):
socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000001dc0)={'tunl0\x00', &(0x7f0000001d00)={'tunl0\x00', 0x0, 0x20, 0x0, 0x7, 0x3, {{0x27, 0x4, 0x3, 0x1, 0x9c, 0x64, 0x0, 0x6, 0x29, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x1d}, {[@noop, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x18, 0x2, [{0x2, 0xd, "4409788eeb0a6936bf3fa0"}, {0x1, 0x5, "530adb"}]}, @cipso={0x86, 0x5f, 0x2, [{0x0, 0x8, "b0e6bf63dcc8"}, {0x0, 0x12, "fb930ebdfad064d09484706959afbe7b"}, {0x5, 0xe, "6428a44a4050032b480a1e08"}, {0x2, 0x10, "99cf9562ad160cb8ce9b31038c5e"}, {0x2, 0x8, "f5440bfac508"}, {0x6, 0xf, "682c005669c3d5aca31f4eb587"}, {0x7, 0xa, "72f9e451db59350e"}]}, @ra={0x94, 0x4}, @lsrr={0x83, 0x7, 0x99, [@initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000034c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4}, 0x1c, &(0x7f00000030c0)=[{&(0x7f0000002ec0)="0458b2bbb549a4c12318eccf171c", 0xe}, {&(0x7f0000002f00)="f17c0cf9ed0edf23bf57cb6f9f3b3f5bfe18c8de319cd4184f40e24a265109067c5890a75a185cb38f8eba481c2b4f94b5d4306a7f3b1664c32c832fedb6132c5c79864cad91b0e248a23c783fb7af11d650d535fe31f9f451e83a8acec90a1b8d37e759b57960b0456bf48618b32065630b89331241e1ac930ec363d32425b1e983b9f924774cdc026683b4e78b839f71a205bca171a52362d63afc0b6c125741641a414a663e9b87b147f52108561c16e19b02fceff2", 0xb7}, {&(0x7f0000002fc0)="8bf2be0c9ba7827ca8ef7e88f60929a335c51d7b7f8bf244320468314519593af05816ca14437bc9ee02d978cdc42c4d9f8296475cecb45ada4a04babe34a4f183996f03a985dade359bd709dd6f2de8c7c92f131bbb169e813f75da258e9e2a30ebc3f5177639833f2cc7faf8d92ac01345cbbe5ae0b30b5501cc334763fa97daec9524c151cfc605b6eca8e9d401a0843dac9304f0370c8213931fde5f5962cc0a70bbb8ac1c657fae72576d1c6fa15a2115262d6ce0878bcebb5d8a1acdcdd388a8b03fa141c3ee", 0xc9}], 0x3, &(0x7f0000003100)=[@rthdr={{0x78, 0x29, 0x39, {0x73, 0xc, 0x0, 0x17, 0x0, [@local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote]}}}], 0x78}}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003180)="b4fe97dcf5da3f95658b1906075f24d3f53d479af7c7550bc4748ebddb775f4294bc51f228bb99183ee4f1fb968546e1d2c8e428e52435c825a07bed71cd412198a6d92ab141c25809405ccb1b7612b326b1c5a9a15d7f7f224ff40738ef79deced320593e70d1cf8ea0c493f44c575d25cd66e268b865504772796662ca17c3acc280068aeacae53642d19e39593966154b03cc49a32919048a7c4f5aaecc02c0d1b8a0b3254bf66c44066f2273429eb725d26b45b017b7c5e544b04b4670bd5c52ec80731f2daac5712ee6e617101aa98815efb3f744f476722d6ef4517427cba316b77928ea6b53de6b193197f578e6f3", 0xf2}, {&(0x7f0000003280)="8a1b34c0f5808b0d139b3145ed2006dde3acc7552e9f4f4cdff4445ea884b08f153fa2a1efbf2c47e80bb8e2b8a11abf1c783e8f7d6eb335275362a81770397eab5a0aba43a1936d3ba8a9b80cc4f095f87c762c40e2c653b069c8d2", 0x5c}, {&(0x7f0000003300)="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", 0xfa}, {&(0x7f0000003400)="f11f9d81ce16c3bcc712620a53a31dc769bb91d5729dc36453aa4ab8dfe1fa12c44c9a4a0b48c9778a871aeaef708d5fd3f6c1f86fd639a805bc3ab20c1b37", 0x3f}], 0x4, &(0x7f0000003480)}}], 0x2, 0x8000)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r1)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814)

45.69375ms ago: executing program 2 (id=1165):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000080)={0x1, @time={0x11000, 0x10000}, 0x0, {}, 0x9})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0xc08c5335, &(0x7f0000000180)={0x4, 0x285ad12a64ed0656, {0x0, 0x1, 0xfffffffe, 0x2, 0x5}, 0xffffff5d})

696.21µs ago: executing program 0 (id=1166):
socket$key(0xf, 0x3, 0x2)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r1)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYRES64=r0], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r8, 0x84, 0xb, &(0x7f0000000080)={0x0, 0x5b}, 0x9)
shutdown(r8, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000000)={<r9=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r8, 0x84, 0x22, &(0x7f0000000200)={0x8, 0x20f, 0xe, 0x5, r9}, &(0x7f0000000240)=0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x80ff, &(0x7f0000000b40)={&(0x7f0000001040)=ANY=[@ANYBLOB="38010000100013070000000000000000ffffffff000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000ff0100000000000000000000000000010000000000000000862300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000159e000000000000000000000a000200000000000000000048000200656362286369706865725f6e756c6c29"], 0x138}, 0x1, 0xe}, 0x0)
ioperm(0x4, 0x7fff, 0x6)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x0, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000001200)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r10, &(0x7f0000004200)='t', 0x1)
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r12}, 0x2d)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000700000e0000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002600000000c0a01080000000000000000010000000900020073797a32000000003400038030000080080003400000000224000b80200001800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30"], 0xe4}}, 0x0)

0s ago: executing program 1 (id=1167):
sigaltstack(&(0x7f0000001dc0)={0x0, 0x80000002}, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@const={0x0, 0x0, 0x0, 0x9}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x36000000}}]}}, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = socket$inet6_icmp(0xa, 0x2, 0x3a)
listen(r2, 0x8)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000100)='kfree\x00', r5}, 0x18)
sendmsg$IEEE802154_LIST_PHY(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r4, 0x30b}, 0x14}}, 0x4000040)
sigaltstack(&(0x7f0000000000)={&(0x7f0000000040)=""/153, 0x1, 0x997bdc94ae8ff94b}, 0x0)

kernel console output (not intermixed with test programs):

y have been left with an inconsistent configuration, please check.
[   54.815598][ T4446] loop3: detected capacity change from 0 to 512
[   54.828658][ T4446] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   54.841835][ T4446] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   54.859352][ T4448] netlink: 'syz.1.356': attribute type 4 has an invalid length.
[   54.869018][ T4446] EXT4-fs (loop3): 1 truncate cleaned up
[   54.875523][ T4446] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.890383][ T4448] netlink: 36 bytes leftover after parsing attributes in process `syz.1.356'.
[   55.224617][ T4457] Zero length message leads to an empty skb
[   55.334733][ T4462] loop4: detected capacity change from 0 to 8192
[   55.382334][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.482227][ T4476] loop2: detected capacity change from 0 to 2048
[   55.505844][ T4478] netlink: 'syz.0.366': attribute type 10 has an invalid length.
[   55.514557][ T4478] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.516249][ T4476] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.522880][ T4478] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   55.589877][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.632532][ T4482] netlink: 16 bytes leftover after parsing attributes in process `syz.2.367'.
[   55.794977][ T4487] loop4: detected capacity change from 0 to 8192
[   55.871012][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.981538][ T4509] netlink: 36 bytes leftover after parsing attributes in process `syz.2.378'.
[   56.143240][ T4525] lo speed is unknown, defaulting to 1000
[   56.225417][ T4529] pim6reg1: entered promiscuous mode
[   56.230753][ T4529] pim6reg1: entered allmulticast mode
[   56.463857][ T4540] netlink: 36 bytes leftover after parsing attributes in process `syz.1.390'.
[   56.579619][ T4544] syz.4.391 uses obsolete (PF_INET,SOCK_PACKET)
[   56.805947][ T4549] validate_nla: 2 callbacks suppressed
[   56.805965][ T4549] netlink: 'syz.4.393': attribute type 10 has an invalid length.
[   56.809382][ T4551] netlink: 388 bytes leftover after parsing attributes in process `syz.3.394'.
[   56.846297][ T4549] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.856738][ T4549] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   56.913253][ T4554] syz.4.395[4554] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.913339][ T4554] syz.4.395[4554] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.933422][ T4554] syz.4.395[4554] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.954817][ T4554] loop4: detected capacity change from 0 to 512
[   56.975810][ T4558] loop3: detected capacity change from 0 to 512
[   56.988043][ T4554] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   57.012998][ T4554] EXT4-fs (loop4): 1 truncate cleaned up
[   57.024313][ T4564] syz.0.399[4564] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.024458][ T4564] syz.0.399[4564] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.036651][ T4554] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.065968][ T4558] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.078607][ T4565] syz.0.399[4565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.078673][ T4565] syz.0.399[4565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.090179][ T4565] syz.0.399[4565] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.098865][ T4554] EXT4-fs error (device loop4): ext4_xattr_inode_iget:440: comm syz.4.395: inode #1073372648: comm syz.4.395: iget: illegal inode #
[   57.117847][ T4558] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.173034][ T4558] SELinux: syz.3.397 (4558) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   57.189549][ T4558] x_tables: ip_tables: osf match: only valid for protocol 6
[   57.197605][ T4558] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   57.227805][ T4554] EXT4-fs (loop4): Remounting filesystem read-only
[   57.245745][ T4554] EXT4-fs warning (device loop4): ext4_xattr_block_set:2198: inode #19: comm syz.4.395: dec ref error=-5
[   57.257936][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.430582][ T4579] loop3: detected capacity change from 0 to 8192
[   57.576791][ T4593] loop0: detected capacity change from 0 to 256
[   57.595999][ T4595] netlink: 'syz.1.406': attribute type 10 has an invalid length.
[   57.619817][ T4593] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[   57.628500][ T4593] FAT-fs (loop0): Filesystem has been set read-only
[   57.644910][ T4593] FAT-fs (loop0): error, clusters badly computed (0 != 128)
[   57.652291][ T4593] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[   57.712487][ T4603] FAULT_INJECTION: forcing a failure.
[   57.712487][ T4603] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.725601][ T4603] CPU: 0 UID: 0 PID: 4603 Comm: syz.1.409 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   57.736288][ T4603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   57.746351][ T4603] Call Trace:
[   57.749677][ T4603]  <TASK>
[   57.752611][ T4603]  dump_stack_lvl+0xf2/0x150
[   57.757284][ T4603]  dump_stack+0x15/0x1a
[   57.761461][ T4603]  should_fail_ex+0x223/0x230
[   57.766281][ T4603]  should_fail+0xb/0x10
[   57.770462][ T4603]  should_fail_usercopy+0x1a/0x20
[   57.775595][ T4603]  _copy_to_user+0x20/0xa0
[   57.780034][ T4603]  simple_read_from_buffer+0xa0/0x110
[   57.785527][ T4603]  proc_fail_nth_read+0xf9/0x140
[   57.790526][ T4603]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.796083][ T4603]  vfs_read+0x1a2/0x700
[   57.800310][ T4603]  ? __rcu_read_unlock+0x4e/0x70
[   57.805335][ T4603]  ? __fget_files+0x17c/0x1c0
[   57.810029][ T4603]  ksys_read+0xe8/0x1b0
[   57.814188][ T4603]  __x64_sys_read+0x42/0x50
[   57.818741][ T4603]  x64_sys_call+0x2874/0x2dc0
[   57.823417][ T4603]  do_syscall_64+0xc9/0x1c0
[   57.828000][ T4603]  ? clear_bhb_loop+0x55/0xb0
[   57.832751][ T4603]  ? clear_bhb_loop+0x55/0xb0
[   57.837425][ T4603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.843429][ T4603] RIP: 0033:0x7f8f8875473c
[   57.847928][ T4603] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   57.867531][ T4603] RSP: 002b:00007f8f86dc1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.876016][ T4603] RAX: ffffffffffffffda RBX: 00007f8f88945fa0 RCX: 00007f8f8875473c
[   57.884051][ T4603] RDX: 000000000000000f RSI: 00007f8f86dc10a0 RDI: 000000000000000e
[   57.892090][ T4603] RBP: 00007f8f86dc1090 R08: 0000000000000000 R09: 0000000000000000
[   57.900165][ T4603] R10: 000000000000004a R11: 0000000000000246 R12: 0000000000000001
[   57.908218][ T4603] R13: 0000000000000000 R14: 00007f8f88945fa0 R15: 00007ffe43c86ff8
[   57.916282][ T4603]  </TASK>
[   58.029860][ T4616] netlink: 28 bytes leftover after parsing attributes in process `syz.1.415'.
[   58.064753][ T4620] netlink: 'syz.2.418': attribute type 4 has an invalid length.
[   58.083878][ T4620] netlink: 36 bytes leftover after parsing attributes in process `syz.2.418'.
[   58.115096][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.231766][ T4625] netlink: 'syz.4.419': attribute type 10 has an invalid length.
[   67.351819][   T29] kauditd_printk_skb: 107 callbacks suppressed
[   67.351836][   T29] audit: type=1400 audit(1737355270.142:1526): avc:  denied  { read } for  pid=4630 comm="syz.4.425" name="event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   67.391506][ T4635] loop0: detected capacity change from 0 to 1024
[   67.404550][   T29] audit: type=1400 audit(1737355270.142:1527): avc:  denied  { open } for  pid=4630 comm="syz.4.425" path="/dev/input/event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   67.416958][ T4638] netlink: 8 bytes leftover after parsing attributes in process `syz.1.422'.
[   67.439647][ T4635] loop0: detected capacity change from 0 to 1024
[   67.454655][ T4643] netlink: 16 bytes leftover after parsing attributes in process `syz.3.426'.
[   67.487246][   T29] audit: type=1400 audit(1737355270.232:1528): avc:  denied  { remount } for  pid=4631 comm="syz.0.421" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   67.507008][   T29] audit: type=1400 audit(1737355270.282:1529): avc:  denied  { create } for  pid=4637 comm="syz.1.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   67.526491][   T29] audit: type=1400 audit(1737355270.282:1530): avc:  denied  { write } for  pid=4637 comm="syz.1.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   67.581666][ T4632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.587271][ T4654] loop2: detected capacity change from 0 to 1024
[   67.590910][ T4632] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.598399][ T4654] EXT4-fs: Ignoring removed bh option
[   67.668457][ T4650] loop0: detected capacity change from 0 to 512
[   67.677298][ T4650] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   67.686863][   T29] audit: type=1400 audit(1737355270.472:1531): avc:  denied  { mounton } for  pid=4649 comm="syz.0.428" path="/95/bus" dev="tmpfs" ino=527 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   67.711199][ T4650] EXT4-fs (loop0): orphan cleanup on readonly fs
[   67.718211][ T4650] Quota error (device loop0): do_check_range: Getting block 196613 out of range 1-5
[   67.727753][ T4650] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[   67.737208][ T4650] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.428: Failed to acquire dquot type 1
[   67.749786][ T4650] EXT4-fs (loop0): 1 truncate cleaned up
[   67.756295][ T4654] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[   67.832137][ T4670] netlink: 'syz.4.433': attribute type 4 has an invalid length.
[   67.841477][ T4658] loop1: detected capacity change from 0 to 8192
[   67.875343][ T4670] netlink: 'syz.4.433': attribute type 4 has an invalid length.
[   68.562875][ T4678] netlink: 'syz.3.435': attribute type 10 has an invalid length.
[   68.571918][ T4650] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   68.584872][ T4650] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.606388][ T4650] lo speed is unknown, defaulting to 1000
[   68.811092][ T4682] SELinux: syz.1.437 (4682) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   68.936991][   T29] audit: type=1400 audit(1737355271.722:1532): avc:  denied  { read } for  pid=4685 comm="syz.3.439" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   68.959732][   T29] audit: type=1400 audit(1737355271.722:1533): avc:  denied  { open } for  pid=4685 comm="syz.3.439" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   69.053919][ T4694] FAULT_INJECTION: forcing a failure.
[   69.053919][ T4694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.067136][ T4694] CPU: 1 UID: 0 PID: 4694 Comm: syz.2.441 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   69.077804][ T4694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   69.087867][ T4694] Call Trace:
[   69.091189][ T4694]  <TASK>
[   69.094151][ T4694]  dump_stack_lvl+0xf2/0x150
[   69.098858][ T4694]  dump_stack+0x15/0x1a
[   69.103054][ T4694]  should_fail_ex+0x223/0x230
[   69.107790][ T4694]  should_fail+0xb/0x10
[   69.111959][ T4694]  should_fail_usercopy+0x1a/0x20
[   69.117068][ T4694]  _copy_from_user+0x1e/0xb0
[   69.121745][ T4694]  simple_transaction_get+0xed/0x120
[   69.127135][ T4694]  selinux_transaction_write+0x86/0x100
[   69.132702][ T4694]  ? __pfx_selinux_transaction_write+0x10/0x10
[   69.138979][ T4694]  vfs_write+0x281/0x920
[   69.143289][ T4694]  ? __fget_files+0x17c/0x1c0
[   69.148019][ T4694]  ksys_write+0xe8/0x1b0
[   69.152281][ T4694]  __x64_sys_write+0x42/0x50
[   69.156992][ T4694]  x64_sys_call+0x287e/0x2dc0
[   69.161717][ T4694]  do_syscall_64+0xc9/0x1c0
[   69.166321][ T4694]  ? clear_bhb_loop+0x55/0xb0
[   69.171018][ T4694]  ? clear_bhb_loop+0x55/0xb0
[   69.175708][ T4694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.181685][ T4694] RIP: 0033:0x7feb16355d29
[   69.186220][ T4694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.205881][ T4694] RSP: 002b:00007feb149c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   69.214312][ T4694] RAX: ffffffffffffffda RBX: 00007feb16545fa0 RCX: 00007feb16355d29
[   69.222334][ T4694] RDX: 0000000000000027 RSI: 0000000020000080 RDI: 0000000000000006
[   69.230317][ T4694] RBP: 00007feb149c7090 R08: 0000000000000000 R09: 0000000000000000
[   69.238296][ T4694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.246281][ T4694] R13: 0000000000000000 R14: 00007feb16545fa0 R15: 00007fff23059298
[   69.254300][ T4694]  </TASK>
[   69.329907][ T4697] lo speed is unknown, defaulting to 1000
[   69.429082][ T4701] lo speed is unknown, defaulting to 1000
[   69.633755][ T4717] netlink: 'syz.0.449': attribute type 10 has an invalid length.
[   69.674821][ T4712] loop2: detected capacity change from 0 to 8192
[   69.907016][ T4726] loop0: detected capacity change from 0 to 2048
[   69.930187][ T4726] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.973744][ T4732] netlink: 'syz.1.455': attribute type 3 has an invalid length.
[   69.988800][ T4732] 8021q: adding VLAN 0 to HW filter on device bond1
[   70.059750][ T4726] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.098821][ T4737] loop1: detected capacity change from 0 to 512
[   70.125062][ T4737] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   70.239542][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.535265][ T4750] loop2: detected capacity change from 0 to 256
[   70.546250][ T4750] syz.2.460[4750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.546389][ T4750] syz.2.460[4750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.561871][ T4752] netlink: 'syz.0.461': attribute type 10 has an invalid length.
[   70.587734][ T4750] syz.2.460[4750] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.032262][ T4775] loop1: detected capacity change from 0 to 8192
[   71.056186][ T4780] netlink: 'syz.2.472': attribute type 10 has an invalid length.
[   71.084889][ T4782] netlink: 71 bytes leftover after parsing attributes in process `syz.2.473'.
[   71.120931][ T4782] loop2: detected capacity change from 0 to 2048
[   71.184425][ T4782]  loop2: p1 < > p4
[   71.195878][ T4782] loop2: p4 size 8388608 extends beyond EOD, truncated
[   71.242536][ T3001]  loop2: p1 < > p4
[   71.248880][ T3001] loop2: p4 size 8388608 extends beyond EOD, truncated
[   71.339004][ T4641] udevd[4641]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   71.342019][ T4640] udevd[4640]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   71.476262][ T4795] netlink: 84 bytes leftover after parsing attributes in process `syz.2.476'.
[   71.971077][ T4811] netlink: 'syz.1.484': attribute type 10 has an invalid length.
[   71.996434][ T4814] netlink: 16 bytes leftover after parsing attributes in process `syz.3.483'.
[   72.114223][ T4834] netlink: 'syz.3.491': attribute type 4 has an invalid length.
[   72.134705][ T4834] netlink: 'syz.3.491': attribute type 4 has an invalid length.
[   72.191666][ T4838] netlink: 40 bytes leftover after parsing attributes in process `syz.1.494'.
[   72.200379][ T4828] loop4: detected capacity change from 0 to 8192
[   72.211580][ T4838] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.220481][ T4838] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.229296][ T4838] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.238033][ T4838] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.333148][ T4838] team0: Port device geneve1 added
[   72.377393][ T4847] loop0: detected capacity change from 0 to 1764
[   72.445483][ T4851] vhci_hcd: invalid port number 15
[   72.466423][ T4847] iso9660: Corrupted directory entry in block 2 of inode 1920
[   72.507659][   T29] kauditd_printk_skb: 22 callbacks suppressed
[   72.507673][   T29] audit: type=1326 audit(1737355275.302:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.543712][ T4847] iso9660: Corrupted directory entry in block 2 of inode 1920
[   72.568135][   T29] audit: type=1326 audit(1737355275.332:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.591530][   T29] audit: type=1326 audit(1737355275.332:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.614994][   T29] audit: type=1326 audit(1737355275.332:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.638330][   T29] audit: type=1326 audit(1737355275.332:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.661802][   T29] audit: type=1326 audit(1737355275.332:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.685172][   T29] audit: type=1326 audit(1737355275.332:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.708472][   T29] audit: type=1326 audit(1737355275.332:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.731814][   T29] audit: type=1326 audit(1737355275.332:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   72.755149][   T29] audit: type=1326 audit(1737355275.332:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4856 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[   73.267146][ T4878] validate_nla: 2 callbacks suppressed
[   73.267161][ T4878] netlink: 'syz.0.510': attribute type 10 has an invalid length.
[   73.302845][ T4882] loop1: detected capacity change from 0 to 128
[   73.318286][ T3001] udevd[3001]: worker [4640] terminated by signal 33 (Unknown signal 33)
[   73.361456][ T4880] loop4: detected capacity change from 0 to 2048
[   73.423622][ T4880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.444616][ T4880] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.505861][ T4880] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.517811][ T4880] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.537295][ T4893] loop0: detected capacity change from 0 to 128
[   73.579563][ T4893] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.614274][ T4893] ext4 filesystem being mounted at /112/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.729532][ T4902] loop1: detected capacity change from 0 to 8192
[   73.756663][ T3301] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.914205][ T4914] lo speed is unknown, defaulting to 1000
[   73.923294][ T4911] sch_tbf: burst 0 is lower than device dummy0 mtu (1514) !
[   74.009559][ T4922] netlink: 'syz.0.524': attribute type 10 has an invalid length.
[   74.085801][ T4925] loop0: detected capacity change from 0 to 512
[   74.109326][ T4925] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.125658][ T4930] loop2: detected capacity change from 0 to 128
[   74.145574][ T4925] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.180662][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.207521][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.341781][ T4948] netlink: 'syz.3.531': attribute type 4 has an invalid length.
[   74.353279][ T4937] loop2: detected capacity change from 0 to 8192
[   74.380777][ T4943] openvswitch: netlink: Message has 12 unknown bytes.
[   74.410758][ T4946] loop4: detected capacity change from 0 to 8192
[   74.436180][ T4948] netlink: 'syz.3.531': attribute type 4 has an invalid length.
[   75.010941][ T4965] netlink: 'syz.1.536': attribute type 10 has an invalid length.
[   75.200223][ T4971] netlink: 12 bytes leftover after parsing attributes in process `syz.4.539'.
[   75.241428][ T4973] loop2: detected capacity change from 0 to 128
[   75.260578][ T4971] netlink: 8 bytes leftover after parsing attributes in process `syz.4.539'.
[   75.326951][ T4980] openvswitch: netlink: Message has 12 unknown bytes.
[   75.350882][ T4978] loop1: detected capacity change from 0 to 128
[   75.366990][ T4978] FAT-fs (loop1): bogus number of reserved sectors
[   75.373548][ T4978] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   75.382919][ T4978] FAT-fs (loop1): Can't find a valid FAT filesystem
[   75.488722][ T4995] netlink: 'syz.2.548': attribute type 10 has an invalid length.
[   75.492925][ T4978] loop1: detected capacity change from 0 to 512
[   75.508310][ T4978] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.532002][ T4989] loop4: detected capacity change from 0 to 8192
[   75.551716][ T4978] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   75.561998][ T4978] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842c01c, mo2=0002]
[   75.571777][ T4978] EXT4-fs (loop1): couldn't mount RDWR because of unsupported optional features (80)
[   75.582480][ T4978] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features
[   75.600077][ T4978] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   75.621255][ T4978] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.541: dx entry: limit 65535 != root limit 120
[   75.633947][ T4978] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.541: Corrupt directory, running e2fsck is recommended
[   75.685100][ T4978] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.541: path /120/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[   75.708377][ T4997] loop2: detected capacity change from 0 to 8192
[   75.768454][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.883992][ T4948] syz.3.531 (4948) used greatest stack depth: 6264 bytes left
[   75.911236][ T5012] loop0: detected capacity change from 0 to 128
[   76.036217][ T5019] netlink: 16 bytes leftover after parsing attributes in process `syz.0.554'.
[   76.054825][ T5019] loop0: detected capacity change from 0 to 512
[   76.067954][ T5019] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   76.085414][ T5014] loop1: detected capacity change from 0 to 8192
[   76.094098][ T5021] openvswitch: netlink: Message has 12 unknown bytes.
[   76.106221][ T5019] EXT4-fs (loop0): 1 truncate cleaned up
[   76.112560][ T5019] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.157235][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.275354][ T5033] netlink: 'syz.0.560': attribute type 10 has an invalid length.
[   76.335843][ T5038] netlink: 'syz.0.563': attribute type 4 has an invalid length.
[   76.345423][ T5038] netlink: 36 bytes leftover after parsing attributes in process `syz.0.563'.
[   76.354568][ T5038] netlink: 'syz.0.563': attribute type 4 has an invalid length.
[   76.363673][ T5038] infiniband s
z1: set active
[   76.368594][ T1049] lo speed is unknown, defaulting to 1000
[   76.374334][ T1049] lo speed is unknown, defaulting to 1000
[   76.436352][ T5040] loop3: detected capacity change from 0 to 128
[   76.549474][ T5050] lo speed is unknown, defaulting to 1000
[   76.656194][ T5053] openvswitch: netlink: Message has 12 unknown bytes.
[   76.856838][ T5065] netlink: 'syz.4.574': attribute type 10 has an invalid length.
[   76.967151][ T5078] loop4: detected capacity change from 0 to 128
[   76.975254][ T5062] loop3: detected capacity change from 0 to 8192
[   77.067188][ T5074] loop1: detected capacity change from 0 to 8192
[   77.434984][ T5038] syz.0.563 (5038) used greatest stack depth: 5184 bytes left
[   77.510285][ T5096] openvswitch: netlink: Message has 12 unknown bytes.
[   77.540920][   T29] kauditd_printk_skb: 1076 callbacks suppressed
[   77.540933][   T29] audit: type=1400 audit(1737355280.332:2642): avc:  denied  { name_bind } for  pid=5097 comm="syz.0.581" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   77.572736][   T29] audit: type=1400 audit(1737355280.332:2643): avc:  denied  { ioctl } for  pid=5097 comm="syz.0.581" path="socket:[9122]" dev="sockfs" ino=9122 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   77.650230][ T5100] loop0: detected capacity change from 0 to 8192
[   77.813751][   T29] audit: type=1326 audit(1737355280.602:2644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.837200][   T29] audit: type=1326 audit(1737355280.602:2645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.867954][   T29] audit: type=1326 audit(1737355280.652:2646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.891434][   T29] audit: type=1326 audit(1737355280.652:2647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.914876][   T29] audit: type=1326 audit(1737355280.652:2648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.938192][   T29] audit: type=1326 audit(1737355280.652:2649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.961545][   T29] audit: type=1326 audit(1737355280.652:2650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   77.984909][   T29] audit: type=1326 audit(1737355280.652:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5110 comm="syz.3.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047a035d29 code=0x7ffc0000
[   78.074800][ T5115] loop4: detected capacity change from 0 to 128
[   78.107252][ T5119] netlink: 36 bytes leftover after parsing attributes in process `syz.4.590'.
[   78.147903][ T5123] openvswitch: netlink: Message has 12 unknown bytes.
[   78.234422][ T5128] loop1: detected capacity change from 0 to 512
[   78.294354][ T5128] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   78.340360][ T5128] EXT4-fs (loop1): 1 truncate cleaned up
[   78.439370][ T5128] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.622680][ T5140] loop3: detected capacity change from 0 to 8192
[   78.671846][ T5143] loop0: detected capacity change from 0 to 8192
[   78.946326][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.350671][ T5156] loop1: detected capacity change from 0 to 4096
[   79.415985][ T5156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.460020][ T5159] loop0: detected capacity change from 0 to 128
[   79.483049][ T5156] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #15: comm syz.1.599: corrupted inode contents
[   79.513245][ T5156] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #15: comm syz.1.599: mark_inode_dirty error
[   79.535375][ T5156] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #15: comm syz.1.599: corrupted inode contents
[   79.553202][ T5166] validate_nla: 3 callbacks suppressed
[   79.553261][ T5166] netlink: 'syz.3.601': attribute type 10 has an invalid length.
[   79.578737][ T5156] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #15: comm syz.1.599: mark_inode_dirty error
[   79.587753][ T5168] openvswitch: netlink: Message has 12 unknown bytes.
[   79.605718][ T5156] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #15: comm syz.1.599: corrupted inode contents
[   79.664802][ T5156] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #15: comm syz.1.599: mark_inode_dirty error
[   79.682890][ T5170] loop3: detected capacity change from 0 to 8192
[   79.690092][ T5156] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #15: comm syz.1.599: corrupted inode contents
[   79.704927][ T5156] EXT4-fs error (device loop1): ext4_truncate:4240: inode #15: comm syz.1.599: mark_inode_dirty error
[   79.716519][ T5156] EXT4-fs error (device loop1) in ext4_setattr:5568: Corrupt filesystem
[   79.743498][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.864040][ T5186] loop0: detected capacity change from 0 to 512
[   79.877573][ T5186] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   79.929082][ T5186] EXT4-fs (loop0): 1 truncate cleaned up
[   79.947614][ T5186] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.990114][ T5183] loop1: detected capacity change from 0 to 8192
[   80.055927][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.277762][ T5192] loop0: detected capacity change from 0 to 8192
[   80.735037][ T5203] syz.3.613[5203] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.735166][ T5203] syz.3.613[5203] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.803237][ T5207] netlink: 'syz.1.616': attribute type 10 has an invalid length.
[   80.822618][ T5203] syz.3.613[5203] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.964366][ T5216] openvswitch: netlink: Message has 12 unknown bytes.
[   81.073221][ T5225] loop0: detected capacity change from 0 to 512
[   81.088937][ T3298] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   81.100014][ T3298] CPU: 1 UID: 0 PID: 3298 Comm: syz-executor Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   81.110952][ T3298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   81.121009][ T3298] Call Trace:
[   81.124287][ T3298]  <TASK>
[   81.127249][ T3298]  dump_stack_lvl+0xf2/0x150
[   81.131922][ T3298]  dump_stack+0x15/0x1a
[   81.136094][ T3298]  dump_header+0x83/0x2d0
[   81.140428][ T3298]  oom_kill_process+0x341/0x4c0
[   81.145311][ T3298]  out_of_memory+0x9af/0xbe0
[   81.149915][ T3298]  ? css_next_descendant_pre+0x11c/0x140
[   81.155573][ T3298]  mem_cgroup_out_of_memory+0x13e/0x190
[   81.161202][ T3298]  try_charge_memcg+0x508/0x7f0
[   81.166171][ T3298]  charge_memcg+0x50/0xc0
[   81.170541][ T3298]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[   81.176567][ T3298]  __read_swap_cache_async+0x236/0x480
[   81.182237][ T3298]  swap_cluster_readahead+0x381/0x3f0
[   81.187639][ T3298]  swapin_readahead+0xe4/0x6f0
[   81.192422][ T3298]  ? swap_cache_get_folio+0x77/0x210
[   81.197715][ T3298]  do_swap_page+0x31b/0x2550
[   81.202332][ T3298]  ? hrtimer_try_to_cancel+0x106/0x1d0
[   81.207804][ T3298]  ? __rcu_read_lock+0x36/0x50
[   81.212573][ T3298]  ? __pfx_default_wake_function+0x10/0x10
[   81.218451][ T3298]  handle_mm_fault+0x8e4/0x2ac0
[   81.223372][ T3298]  exc_page_fault+0x3b9/0x650
[   81.228084][ T3298]  asm_exc_page_fault+0x26/0x30
[   81.232934][ T3298] RIP: 0033:0x7fb1504b85a5
[   81.237347][ T3298] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 3f 19 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   81.257019][ T3298] RSP: 002b:00007ffcbea25db8 EFLAGS: 00010246
[   81.263088][ T3298] RAX: 0000000000000000 RBX: 00000000000000ed RCX: 00007fb1504b85a3
[   81.271058][ T3298] RDX: 00007ffcbea25dd0 RSI: 0000000000000000 RDI: 0000000000000000
[   81.279064][ T3298] RBP: 00007ffcbea25e2c R08: 00000000158faf76 R09: 7fffffffffffffff
[   81.287108][ T3298] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[   81.295074][ T3298] R13: 00000000000131a8 R14: 00007ffcbea25e80 R15: 0000000000000bb8
[   81.303047][ T3298]  </TASK>
[   81.306147][ T3298] memory: usage 307200kB, limit 307200kB, failcnt 1135
[   81.312993][ T3298] memory+swap: usage 307568kB, limit 9007199254740988kB, failcnt 0
[   81.321022][ T3298] kmem: usage 304036kB, limit 9007199254740988kB, failcnt 0
[   81.328338][ T3298] Memory cgroup stats for /syz4:
[   81.334947][ T5225] EXT4-fs: Ignoring removed nobh option
[   81.346971][ T5225] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   81.358401][ T5225] EXT4-fs (loop0): 1 truncate cleaned up
[   81.364475][ T5225] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.416767][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.435960][ T3298] cache 0
[   81.438930][ T3298] rss 3239936
[   81.442229][ T3298] shmem 0
[   81.443148][ T5235] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5235 comm=syz.0.623
[   81.445203][ T3298] mapped_file 0
[   81.457504][ T5235] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5235 comm=syz.0.623
[   81.473553][ T3298] dirty 0
[   81.476621][ T3298] writeback 0
[   81.479936][ T3298] workingset_refault_anon 145
[   81.484626][ T3298] workingset_refault_file 574
[   81.489460][ T3298] swap 376832
[   81.492747][ T3298] swapcached 0
[   81.496141][ T3298] pgpgin 33600
[   81.499544][ T3298] pgpgout 32809
[   81.502997][ T3298] pgfault 36784
[   81.506509][ T3298] pgmajfault 90
[   81.510232][ T3298] inactive_anon 1929216
[   81.514412][ T3298] active_anon 1048576
[   81.518568][ T3298] inactive_file 0
[   81.522280][ T3298] active_file 0
[   81.525770][ T3298] unevictable 0
[   81.529308][ T3298] hierarchical_memory_limit 314572800
[   81.534732][ T3298] hierarchical_memsw_limit 9223372036854771712
[   81.540933][ T3298] total_cache 0
[   81.544450][ T3298] total_rss 3239936
[   81.548379][ T3298] total_shmem 0
[   81.551852][ T3298] total_mapped_file 0
[   81.555848][ T3298] total_dirty 0
[   81.559495][ T3298] total_writeback 0
[   81.563402][ T3298] total_workingset_refault_anon 145
[   81.568636][ T3298] total_workingset_refault_file 574
[   81.573878][ T3298] total_swap 376832
[   81.577693][ T3298] total_swapcached 0
[   81.581583][ T3298] total_pgpgin 33600
[   81.585589][ T3298] total_pgpgout 32809
[   81.589558][ T3298] total_pgfault 36784
[   81.593536][ T3298] total_pgmajfault 90
[   81.597547][ T3298] total_inactive_anon 1929216
[   81.602244][ T3298] total_active_anon 1048576
[   81.606773][ T3298] total_inactive_file 0
[   81.610929][ T3298] total_active_file 0
[   81.614925][ T3298] total_unevictable 0
[   81.618899][ T3298] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.590,pid=5118,uid=0
[   81.627103][ T5242] loop0: detected capacity change from 0 to 8192
[   81.633484][ T3298] Memory cgroup out of memory: Killed process 5118 (syz.4.590) total-vm:93516kB, anon-rss:3860kB, file-rss:22472kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   81.668667][ T5243] loop1: detected capacity change from 0 to 8192
[   82.114559][ T5233] Cannot find add_set index 0 as target
[   82.179796][ T5256] netlink: 'syz.3.628': attribute type 10 has an invalid length.
[   82.248132][ T5261] openvswitch: netlink: Message has 12 unknown bytes.
[   82.288544][ T5265] lo speed is unknown, defaulting to 1000
[   82.398080][ T5263] loop3: detected capacity change from 0 to 8192
[   82.500110][ T5278] ref_ctr_offset mismatch. inode: 0x313 offset: 0x7 ref_ctr_offset(old): 0x2 ref_ctr_offset(new): 0x0
[   82.600363][   T29] kauditd_printk_skb: 177 callbacks suppressed
[   82.600379][   T29] audit: type=1326 audit(1737355285.392:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.673721][ T5287] netlink: 4 bytes leftover after parsing attributes in process `syz.1.639'.
[   82.716310][ T5287] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.725302][   T29] audit: type=1326 audit(1737355285.422:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.728455][ T5295] loop2: detected capacity change from 0 to 512
[   82.748684][   T29] audit: type=1326 audit(1737355285.422:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.778292][   T29] audit: type=1326 audit(1737355285.422:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.801738][   T29] audit: type=1326 audit(1737355285.422:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.825185][   T29] audit: type=1326 audit(1737355285.422:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.848588][   T29] audit: type=1326 audit(1737355285.422:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.871994][   T29] audit: type=1326 audit(1737355285.422:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.895355][   T29] audit: type=1326 audit(1737355285.422:2837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.918679][   T29] audit: type=1326 audit(1737355285.422:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5282 comm="syz.2.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feb16355d29 code=0x7ffc0000
[   82.942749][ T5292] openvswitch: netlink: Message has 12 unknown bytes.
[   82.944716][ T5287] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.964980][ T5287] bond0: (slave batadv0): Releasing backup interface
[   82.971784][ T5295] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.643: casefold flag without casefold feature
[   82.984732][ T5295] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.643: couldn't read orphan inode 15 (err -117)
[   82.999857][ T5293] netlink: 'syz.4.640': attribute type 10 has an invalid length.
[   83.023580][ T5295] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.113105][ T5306] loop4: detected capacity change from 0 to 8192
[   83.116776][ T5309] loop0: detected capacity change from 0 to 8192
[   83.222511][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.224125][ T5322] netlink: 'syz.1.650': attribute type 4 has an invalid length.
[   83.248478][ T5322] netlink: 36 bytes leftover after parsing attributes in process `syz.1.650'.
[   83.248597][ T5322] netlink: 'syz.1.650': attribute type 4 has an invalid length.
[   83.358955][ T5330] loop2: detected capacity change from 0 to 1024
[   83.405566][ T5330] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.448029][ T5339] openvswitch: netlink: Message has 12 unknown bytes.
[   83.456585][ T5330] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   83.484464][ T5330] EXT4-fs (loop2): orphan cleanup on readonly fs
[   83.536388][ T5330] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   83.586413][ T5330] EXT4-fs (loop2): Remounting filesystem read-only
[   83.593076][ T5330] EXT4-fs (loop2): 1 orphan inode deleted
[   83.601904][ T5344] netlink: 'syz.3.656': attribute type 10 has an invalid length.
[   83.619515][ T5330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   83.649020][ T5330] SELinux: (dev loop2, type ext4) getxattr errno 5
[   83.663995][ T5330] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.014761][ T5349] loop3: detected capacity change from 0 to 8192
[   84.074452][ T5364] openvswitch: netlink: Message has 12 unknown bytes.
[   84.075056][ T5367] loop2: detected capacity change from 0 to 1024
[   84.187095][ T5367] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.224483][ T5378] netlink: 'syz.4.669': attribute type 10 has an invalid length.
[   84.257322][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.423461][ T5392] FAULT_INJECTION: forcing a failure.
[   84.423461][ T5392] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.436618][ T5392] CPU: 1 UID: 0 PID: 5392 Comm: syz.4.674 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   84.447546][ T5392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   84.457622][ T5392] Call Trace:
[   84.460907][ T5392]  <TASK>
[   84.462269][ T5380] loop2: detected capacity change from 0 to 8192
[   84.463835][ T5392]  dump_stack_lvl+0xf2/0x150
[   84.463936][ T5392]  dump_stack+0x15/0x1a
[   84.463970][ T5392]  should_fail_ex+0x223/0x230
[   84.464000][ T5392]  should_fail+0xb/0x10
[   84.475805][ T5384] loop0: detected capacity change from 0 to 8192
[   84.479089][ T5392]  should_fail_usercopy+0x1a/0x20
[   84.499378][ T5392]  _copy_from_user+0x1e/0xb0
[   84.503998][ T5392]  __sys_bpf+0x14e/0x7a0
[   84.508327][ T5392]  __x64_sys_bpf+0x43/0x50
[   84.512780][ T5392]  x64_sys_call+0x2914/0x2dc0
[   84.517550][ T5392]  do_syscall_64+0xc9/0x1c0
[   84.522072][ T5392]  ? clear_bhb_loop+0x55/0xb0
[   84.526780][ T5392]  ? clear_bhb_loop+0x55/0xb0
[   84.531576][ T5392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.537663][ T5392] RIP: 0033:0x7fb150485d29
[   84.542091][ T5392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.561780][ T5392] RSP: 002b:00007fb14eaf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   84.570242][ T5392] RAX: ffffffffffffffda RBX: 00007fb150675fa0 RCX: 00007fb150485d29
[   84.578260][ T5392] RDX: 0000000000000020 RSI: 0000000020000080 RDI: 0000000000000001
[   84.586284][ T5392] RBP: 00007fb14eaf7090 R08: 0000000000000000 R09: 0000000000000000
[   84.594275][ T5392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.602312][ T5392] R13: 0000000000000000 R14: 00007fb150675fa0 R15: 00007ffcbea25a68
[   84.610424][ T5392]  </TASK>
[   84.631891][ T5400] openvswitch: netlink: Message has 12 unknown bytes.
[   84.672357][ T5403] netlink: 8 bytes leftover after parsing attributes in process `syz.1.678'.
[   84.681215][ T5403] netlink: 12 bytes leftover after parsing attributes in process `syz.1.678'.
[   84.861822][ T5416] netlink: 'syz.4.683': attribute type 10 has an invalid length.
[   84.896362][ T5419] netlink: 'syz.1.684': attribute type 4 has an invalid length.
[   84.907539][ T5419] netlink: 36 bytes leftover after parsing attributes in process `syz.1.684'.
[   84.929027][ T5419] netlink: 'syz.1.684': attribute type 4 has an invalid length.
[   85.243409][ T5429] openvswitch: netlink: Message has 12 unknown bytes.
[   85.291948][ T5433] loop0: detected capacity change from 0 to 259
[   85.313056][ T5433] FAT-fs (loop0): Directory bread(block 64) failed
[   85.346257][ T5433] FAT-fs (loop0): Directory bread(block 65) failed
[   85.378215][ T5433] FAT-fs (loop0): Directory bread(block 66) failed
[   85.418415][ T5433] FAT-fs (loop0): Directory bread(block 67) failed
[   85.434888][ T5433] FAT-fs (loop0): Directory bread(block 68) failed
[   85.442334][ T5433] FAT-fs (loop0): Directory bread(block 69) failed
[   85.451649][ T5433] FAT-fs (loop0): Directory bread(block 70) failed
[   85.469434][ T5438] loop2: detected capacity change from 0 to 8192
[   85.470247][ T5433] FAT-fs (loop0): Directory bread(block 71) failed
[   85.492395][ T5433] FAT-fs (loop0): Directory bread(block 72) failed
[   85.505732][ T5433] FAT-fs (loop0): Directory bread(block 73) failed
[   85.614940][ T5449] netlink: 'syz.0.696': attribute type 10 has an invalid length.
[   85.767721][ T5456] loop3: detected capacity change from 0 to 8192
[   85.910300][ T5459] loop0: detected capacity change from 0 to 8192
[   85.959512][ T5466] openvswitch: netlink: Message has 12 unknown bytes.
[   86.007267][ T5471] netlink: 4 bytes leftover after parsing attributes in process `syz.4.702'.
[   86.016735][ T5471] team0: left allmulticast mode
[   86.021673][ T5471] team_slave_0: left allmulticast mode
[   86.027351][ T5471] team_slave_1: left allmulticast mode
[   86.032847][ T5471] team0: left promiscuous mode
[   86.037709][ T5471] team_slave_0: left promiscuous mode
[   86.043293][ T5471] team_slave_1: left promiscuous mode
[   86.048887][ T5471] bridge0: port 3(team0) entered disabled state
[   86.126120][ T5471] bridge_slave_1: left allmulticast mode
[   86.131834][ T5471] bridge_slave_1: left promiscuous mode
[   86.137521][ T5471] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.157196][ T5471] bridge_slave_0: left allmulticast mode
[   86.162878][ T5471] bridge_slave_0: left promiscuous mode
[   86.168816][ T5471] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.565687][ T5485] netlink: 64 bytes leftover after parsing attributes in process `syz.2.707'.
[   86.604242][ T5493] openvswitch: netlink: Message has 12 unknown bytes.
[   86.644149][ T5495] netlink: 'syz.3.711': attribute type 10 has an invalid length.
[   86.684235][ T5505] loop4: detected capacity change from 0 to 1024
[   86.700295][ T5505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.737855][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.770447][ T5499] loop1: detected capacity change from 0 to 8192
[   86.776379][ T5522] netlink: 'syz.2.722': attribute type 4 has an invalid length.
[   86.801527][ T5517] loop3: detected capacity change from 0 to 8192
[   86.815760][ T5522] netlink: 36 bytes leftover after parsing attributes in process `syz.2.722'.
[   86.825668][ T5522] netlink: 'syz.2.722': attribute type 4 has an invalid length.
[   86.832691][ T5519] loop0: detected capacity change from 0 to 8192
[   87.648799][ T5540] loop0: detected capacity change from 0 to 1764
[   87.652719][ T5542] openvswitch: netlink: Message has 12 unknown bytes.
[   87.665929][   T29] kauditd_printk_skb: 305 callbacks suppressed
[   87.665944][   T29] audit: type=1400 audit(1737355290.452:3140): avc:  denied  { execute_no_trans } for  pid=5539 comm="syz.0.727" path="/158/file1" dev="tmpfs" ino=872 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   87.707813][   T29] audit: type=1400 audit(1737355290.502:3141): avc:  denied  { setopt } for  pid=5539 comm="syz.0.727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   87.731865][ T5538] lo speed is unknown, defaulting to 1000
[   87.739926][ T5546] netlink: 'syz.3.728': attribute type 10 has an invalid length.
[   87.753887][ T5544] netdevsim netdevsim1 netdevsim2: Unsupported IPsec algorithm
[   87.794092][   T29] audit: type=1400 audit(1737355290.582:3142): avc:  denied  { setcurrent } for  pid=5549 comm="syz.3.730" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   87.823811][   T29] audit: type=1401 audit(1737355290.612:3143): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[   87.856208][   T29] audit: type=1326 audit(1737355290.642:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5551 comm="syz.0.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   87.879570][   T29] audit: type=1326 audit(1737355290.642:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5551 comm="syz.0.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   87.907374][ T5553] loop3: detected capacity change from 0 to 128
[   87.913983][ T5553] vfat: Unknown parameter '18446744073709551615'
[   87.921831][   T29] audit: type=1326 audit(1737355290.692:3146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5551 comm="syz.0.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   87.945171][   T29] audit: type=1326 audit(1737355290.692:3147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5551 comm="syz.0.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   87.968609][   T29] audit: type=1326 audit(1737355290.692:3148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5551 comm="syz.0.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   87.992074][   T29] audit: type=1326 audit(1737355290.692:3149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5551 comm="syz.0.731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   88.141882][ T5564] loop0: detected capacity change from 0 to 8192
[   88.405243][ T5572] loop1: detected capacity change from 0 to 8192
[   89.236843][ T5577] loop0: detected capacity change from 0 to 8192
[   89.246641][ T5582] openvswitch: netlink: Message has 12 unknown bytes.
[   89.262206][ T3307] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   89.273227][ T3307] CPU: 1 UID: 0 PID: 3307 Comm: syz-executor Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   89.284090][ T3307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   89.294185][ T3307] Call Trace:
[   89.297546][ T3307]  <TASK>
[   89.300484][ T3307]  dump_stack_lvl+0xf2/0x150
[   89.305134][ T3307]  dump_stack+0x15/0x1a
[   89.309319][ T3307]  dump_header+0x83/0x2d0
[   89.313692][ T3307]  oom_kill_process+0x341/0x4c0
[   89.318592][ T3307]  out_of_memory+0x9af/0xbe0
[   89.323187][ T3307]  ? css_next_descendant_pre+0x11c/0x140
[   89.328877][ T3307]  mem_cgroup_out_of_memory+0x13e/0x190
[   89.334525][ T3307]  try_charge_memcg+0x508/0x7f0
[   89.339437][ T3307]  charge_memcg+0x50/0xc0
[   89.343817][ T3307]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[   89.349839][ T3307]  __read_swap_cache_async+0x236/0x480
[   89.355376][ T3307]  swap_cluster_readahead+0x381/0x3f0
[   89.360879][ T3307]  swapin_readahead+0xe4/0x6f0
[   89.365655][ T3307]  ? swap_cache_get_folio+0x77/0x210
[   89.371033][ T3307]  do_swap_page+0x31b/0x2550
[   89.375688][ T3307]  ? hrtimer_try_to_cancel+0x106/0x1d0
[   89.381237][ T3307]  ? __rcu_read_lock+0x36/0x50
[   89.386036][ T3307]  ? __pfx_default_wake_function+0x10/0x10
[   89.391857][ T3307]  handle_mm_fault+0x8e4/0x2ac0
[   89.396735][ T3307]  exc_page_fault+0x3b9/0x650
[   89.401456][ T3307]  asm_exc_page_fault+0x26/0x30
[   89.406316][ T3307] RIP: 0033:0x7feb163885a5
[   89.410772][ T3307] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 3f 19 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   89.430430][ T3307] RSP: 002b:00007fff230595e8 EFLAGS: 00010246
[   89.436592][ T3307] RAX: 0000000000000000 RBX: 0000000000000196 RCX: 00007feb163885a3
[   89.444575][ T3307] RDX: 00007fff23059600 RSI: 0000000000000000 RDI: 0000000000000000
[   89.452564][ T3307] RBP: 00007fff2305965c R08: 000000000c961b37 R09: 7fffffffffffffff
[   89.460543][ T3307] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[   89.468519][ T3307] R13: 000000000001536c R14: 00007fff230596b0 R15: 0000000000000bb8
[   89.476514][ T3307]  </TASK>
[   89.479640][ T3307] memory: usage 307200kB, limit 307200kB, failcnt 1446
[   89.486567][ T3307] memory+swap: usage 311512kB, limit 9007199254740988kB, failcnt 0
[   89.494552][ T3307] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[   89.501865][ T3307] Memory cgroup stats for /syz2:
[   89.525585][ T5587] program syz.1.740 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   89.555229][ T3307] cache 0
[   89.558190][ T3307] rss 0
[   89.560984][ T3307] shmem 0
[   89.563945][ T3307] mapped_file 0
[   89.567444][ T3307] dirty 0
[   89.570402][ T3307] writeback 0
[   89.573779][ T3307] workingset_refault_anon 127
[   89.578608][ T3307] workingset_refault_file 377
[   89.583288][ T3307] swap 4415488
[   89.586691][ T3307] swapcached 4096
[   89.590357][ T3307] pgpgin 55470
[   89.593726][ T3307] pgpgout 55469
[   89.597219][ T3307] pgfault 64285
[   89.600697][ T3307] pgmajfault 100
[   89.604235][ T3307] inactive_anon 0
[   89.607921][ T3307] active_anon 4096
[   89.611664][ T3307] inactive_file 0
[   89.615307][ T3307] active_file 0
[   89.618754][ T3307] unevictable 0
[   89.622215][ T3307] hierarchical_memory_limit 314572800
[   89.627610][ T3307] hierarchical_memsw_limit 9223372036854771712
[   89.633817][ T3307] total_cache 0
[   89.637332][ T3307] total_rss 0
[   89.640614][ T3307] total_shmem 0
[   89.644074][ T3307] total_mapped_file 0
[   89.648080][ T3307] total_dirty 0
[   89.651530][ T3307] total_writeback 0
[   89.655345][ T3307] total_workingset_refault_anon 127
[   89.660538][ T3307] total_workingset_refault_file 377
[   89.665752][ T3307] total_swap 4415488
[   89.669651][ T3307] total_swapcached 4096
[   89.673803][ T3307] total_pgpgin 55470
[   89.677712][ T3307] total_pgpgout 55469
[   89.681685][ T3307] total_pgfault 64285
[   89.685708][ T3307] total_pgmajfault 100
[   89.689780][ T3307] total_inactive_anon 0
[   89.693934][ T3307] total_active_anon 4096
[   89.698256][ T3307] total_inactive_file 0
[   89.702419][ T3307] total_active_file 0
[   89.706419][ T3307] total_unevictable 0
[   89.710422][ T3307] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.722,pid=5520,uid=0
[   89.724961][ T3307] Memory cgroup out of memory: Killed process 5520 (syz.2.722) total-vm:93648kB, anon-rss:788kB, file-rss:22472kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[   89.767036][ T5590] netlink: 'syz.1.741': attribute type 10 has an invalid length.
[   90.015828][ T5596] FAULT_INJECTION: forcing a failure.
[   90.015828][ T5596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.029062][ T5596] CPU: 1 UID: 0 PID: 5596 Comm: syz.0.744 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   90.039676][ T5596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   90.049825][ T5596] Call Trace:
[   90.053112][ T5596]  <TASK>
[   90.056126][ T5596]  dump_stack_lvl+0xf2/0x150
[   90.060742][ T5596]  dump_stack+0x15/0x1a
[   90.065110][ T5596]  should_fail_ex+0x223/0x230
[   90.069852][ T5596]  should_fail+0xb/0x10
[   90.074235][ T5596]  should_fail_usercopy+0x1a/0x20
[   90.079277][ T5596]  _copy_from_user+0x1e/0xb0
[   90.083914][ T5596]  memdup_user+0x64/0xc0
[   90.088172][ T5596]  strndup_user+0x68/0xa0
[   90.092524][ T5596]  __se_sys_mount+0x4e/0x2d0
[   90.097198][ T5596]  ? __bpf_trace_sys_enter+0x10/0x30
[   90.102566][ T5596]  ? trace_sys_enter+0xcd/0x110
[   90.107456][ T5596]  __x64_sys_mount+0x67/0x80
[   90.112178][ T5596]  x64_sys_call+0x2c84/0x2dc0
[   90.116892][ T5596]  do_syscall_64+0xc9/0x1c0
[   90.121521][ T5596]  ? clear_bhb_loop+0x55/0xb0
[   90.126266][ T5596]  ? clear_bhb_loop+0x55/0xb0
[   90.130949][ T5596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.136859][ T5596] RIP: 0033:0x7f958f605d29
[   90.141270][ T5596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.160902][ T5596] RSP: 002b:00007f958dc71038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   90.169321][ T5596] RAX: ffffffffffffffda RBX: 00007f958f7f5fa0 RCX: 00007f958f605d29
[   90.177347][ T5596] RDX: 00000000200002c0 RSI: 0000000020000080 RDI: 0000000000000000
[   90.185327][ T5596] RBP: 00007f958dc71090 R08: 0000000020000400 R09: 0000000000000000
[   90.193345][ T5596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.201400][ T5596] R13: 0000000000000000 R14: 00007f958f7f5fa0 R15: 00007ffcc1bbdd58
[   90.209384][ T5596]  </TASK>
[   90.355357][ T5608] loop1: detected capacity change from 0 to 8192
[   90.370201][ T5615] openvswitch: netlink: Message has 12 unknown bytes.
[   90.371306][ T5605] loop4: detected capacity change from 0 to 8192
[   90.424312][ T5619] netlink: 'syz.0.753': attribute type 10 has an invalid length.
[   90.771034][ T5631] loop0: detected capacity change from 0 to 8192
[   91.286595][ T5640] netlink: 'syz.2.758': attribute type 4 has an invalid length.
[   91.354686][ T5640] netlink: 36 bytes leftover after parsing attributes in process `syz.2.758'.
[   91.380561][ T5640] netlink: 'syz.2.758': attribute type 4 has an invalid length.
[   91.545273][ T5647] sctp: [Deprecated]: syz.4.761 (pid 5647) Use of int in max_burst socket option.
[   91.545273][ T5647] Use struct sctp_assoc_value instead
[   91.654697][ T5651] openvswitch: netlink: Message has 12 unknown bytes.
[   91.669005][ T5653] netlink: 'syz.1.765': attribute type 10 has an invalid length.
[   91.729054][ T5661] syz.0.768[5661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.729165][ T5661] syz.0.768[5661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.741004][ T5661] syz.0.768[5661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.927556][ T5665] loop0: detected capacity change from 0 to 8192
[   91.939825][ T5669] loop1: detected capacity change from 0 to 8192
[   92.776040][   T29] kauditd_printk_skb: 136 callbacks suppressed
[   92.776056][   T29] audit: type=1326 audit(1737355295.572:3286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   92.805741][   T29] audit: type=1326 audit(1737355295.572:3287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   92.906427][   T29] audit: type=1326 audit(1737355295.622:3288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   92.929821][   T29] audit: type=1326 audit(1737355295.622:3289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   92.953227][   T29] audit: type=1326 audit(1737355295.622:3290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   92.976659][   T29] audit: type=1326 audit(1737355295.632:3291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   92.999986][   T29] audit: type=1326 audit(1737355295.632:3292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   93.023318][   T29] audit: type=1326 audit(1737355295.632:3293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   93.046658][   T29] audit: type=1326 audit(1737355295.632:3294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   93.070233][   T29] audit: type=1326 audit(1737355295.632:3295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5676 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[   93.126805][ T5689] loop1: detected capacity change from 0 to 8192
[   93.167797][ T5691] netlink: 'syz.0.777': attribute type 10 has an invalid length.
[   93.192561][ T5693] openvswitch: netlink: Message has 12 unknown bytes.
[   93.812752][ T5709] loop0: detected capacity change from 0 to 8192
[   93.813429][ T5716] openvswitch: netlink: Message has 12 unknown bytes.
[   93.919784][ T5717] loop1: detected capacity change from 0 to 8192
[   93.929561][ T5726] netlink: 'syz.4.789': attribute type 10 has an invalid length.
[   93.972307][ T5728] openvswitch: netlink: Message has 12 unknown bytes.
[   94.149956][ T5742] loop4: detected capacity change from 0 to 1024
[   94.165504][ T5742] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.186483][ T5735] loop2: detected capacity change from 0 to 8192
[   94.227420][ T5742] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   94.254671][ T5742] EXT4-fs (loop4): orphan cleanup on readonly fs
[   94.332276][ T5742] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   94.346244][ T5742] EXT4-fs (loop4): Remounting filesystem read-only
[   94.414695][ T5742] EXT4-fs (loop4): 1 orphan inode deleted
[   94.485229][ T5742] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   94.505179][ T5742] SELinux: (dev loop4, type ext4) getxattr errno 5
[   94.575167][ T5742] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.678166][ T5750] netlink: 'syz.0.797': attribute type 4 has an invalid length.
[   94.686948][ T5750] infiniband s
z1: set down
[   94.691603][    T8] lo speed is unknown, defaulting to 1000
[   94.697386][    T8] lo speed is unknown, defaulting to 1000
[   94.703944][ T5750] netlink: 'syz.0.797': attribute type 4 has an invalid length.
[   94.713050][ T5750] infiniband s
z1: set active
[   94.718043][    T9] lo speed is unknown, defaulting to 1000
[   94.723892][    T9] lo speed is unknown, defaulting to 1000
[   94.886008][ T5758] openvswitch: netlink: Message has 12 unknown bytes.
[   94.962585][ T5761] netlink: 'syz.1.802': attribute type 10 has an invalid length.
[   95.041360][ T5767] openvswitch: netlink: Message has 12 unknown bytes.
[   95.198966][ T5780] loop3: detected capacity change from 0 to 8192
[   95.207830][ T5774] loop2: detected capacity change from 0 to 8192
[   95.336099][ T5789] loop1: detected capacity change from 0 to 8192
[   95.927337][ T5802] openvswitch: netlink: Message has 12 unknown bytes.
[   95.959221][ T5809] 9pnet_fd: Insufficient options for proto=fd
[   96.031012][ T5812] netlink: 'syz.2.818': attribute type 10 has an invalid length.
[   96.050568][ T5806] loop4: detected capacity change from 0 to 8192
[   96.078386][ T5816] openvswitch: netlink: Message has 12 unknown bytes.
[   96.126704][ T5826] netlink: 'syz.0.826': attribute type 4 has an invalid length.
[   96.135450][ T5824] netlink: 76 bytes leftover after parsing attributes in process `syz.2.825'.
[   96.145529][ T5826] infiniband s
z1: set down
[   96.150191][   T24] lo speed is unknown, defaulting to 1000
[   96.156006][   T24] lo speed is unknown, defaulting to 1000
[   96.176623][ T5826] netlink: 'syz.0.826': attribute type 4 has an invalid length.
[   96.192124][ T5824] netlink: 76 bytes leftover after parsing attributes in process `syz.2.825'.
[   96.195844][ T5826] infiniband s
z1: set active
[   96.206072][ T3376] lo speed is unknown, defaulting to 1000
[   96.212008][ T3376] lo speed is unknown, defaulting to 1000
[   96.346592][ T5834] loop1: detected capacity change from 0 to 8192
[   96.358755][ T5846] netlink: 'syz.2.831': attribute type 10 has an invalid length.
[   96.408806][ T5844] loop3: detected capacity change from 0 to 8192
[   96.454232][ T5850] loop2: detected capacity change from 0 to 512
[   96.466076][ T5850] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   96.531412][ T5850] EXT4-fs (loop2): 1 truncate cleaned up
[   96.544201][ T5850] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.625596][ T5852] IPv6: NLM_F_CREATE should be specified when creating new route
[   97.050704][ T5860] loop4: detected capacity change from 0 to 8192
[   97.342523][ T5871] openvswitch: netlink: Message has 12 unknown bytes.
[   97.406611][ T5875] FAULT_INJECTION: forcing a failure.
[   97.406611][ T5875] name failslab, interval 1, probability 0, space 0, times 0
[   97.408854][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.419279][ T5875] CPU: 1 UID: 0 PID: 5875 Comm: syz.1.838 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[   97.438817][ T5875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   97.448907][ T5875] Call Trace:
[   97.452226][ T5875]  <TASK>
[   97.455160][ T5875]  dump_stack_lvl+0xf2/0x150
[   97.459778][ T5875]  dump_stack+0x15/0x1a
[   97.464037][ T5875]  should_fail_ex+0x223/0x230
[   97.468812][ T5875]  should_failslab+0x8f/0xb0
[   97.473444][ T5875]  __kmalloc_node_noprof+0xad/0x410
[   97.478669][ T5875]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.484782][ T5875]  ? __kvmalloc_node_noprof+0x72/0x170
[   97.490281][ T5875]  __kvmalloc_node_noprof+0x72/0x170
[   97.495617][ T5875]  pfifo_fast_init+0xce/0x360
[   97.500368][ T5875]  qdisc_create_dflt+0xce/0x280
[   97.505242][ T5875]  dev_activate+0x20e/0x9e0
[   97.509885][ T5875]  __dev_open+0x263/0x2e0
[   97.514264][ T5875]  __dev_change_flags+0x155/0x410
[   97.519320][ T5875]  dev_change_flags+0x59/0xd0
[   97.524014][ T5875]  dev_ifsioc+0x67f/0xa10
[   97.528407][ T5875]  dev_ioctl+0x7fa/0xab0
[   97.532662][ T5875]  sock_do_ioctl+0x11c/0x260
[   97.537274][ T5875]  sock_ioctl+0x40f/0x600
[   97.541613][ T5875]  ? __pfx_sock_ioctl+0x10/0x10
[   97.546566][ T5875]  __se_sys_ioctl+0xc9/0x140
[   97.551166][ T5875]  __x64_sys_ioctl+0x43/0x50
[   97.555864][ T5875]  x64_sys_call+0x1690/0x2dc0
[   97.560549][ T5875]  do_syscall_64+0xc9/0x1c0
[   97.565168][ T5875]  ? clear_bhb_loop+0x55/0xb0
[   97.569863][ T5875]  ? clear_bhb_loop+0x55/0xb0
[   97.574600][ T5875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.580547][ T5875] RIP: 0033:0x7f8f88755d29
[   97.584989][ T5875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.604654][ T5875] RSP: 002b:00007f8f86dc1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   97.613086][ T5875] RAX: ffffffffffffffda RBX: 00007f8f88945fa0 RCX: 00007f8f88755d29
[   97.621074][ T5875] RDX: 0000000020000100 RSI: 0000000000008914 RDI: 0000000000000008
[   97.629145][ T5875] RBP: 00007f8f86dc1090 R08: 0000000000000000 R09: 0000000000000000
[   97.637155][ T5875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.645142][ T5875] R13: 0000000000000000 R14: 00007f8f88945fa0 R15: 00007ffe43c86ff8
[   97.653176][ T5875]  </TASK>
[   97.656477][ T5875] pim6reg1: default qdisc (pfifo_fast) fail, fallback to noqueue
[   97.670127][ T5882] netlink: 32 bytes leftover after parsing attributes in process `syz.3.841'.
[   97.679364][ T5875] pim6reg1: entered promiscuous mode
[   97.684747][ T5875] pim6reg1: entered allmulticast mode
[   97.865890][ T5899] loop2: detected capacity change from 0 to 8192
[   98.187228][ T5917] openvswitch: netlink: Message has 12 unknown bytes.
[   98.251680][ T5921] netlink: 'syz.1.851': attribute type 4 has an invalid length.
[   98.261629][ T5921] netlink: 'syz.1.851': attribute type 4 has an invalid length.
[   98.363805][   T29] kauditd_printk_skb: 106 callbacks suppressed
[   98.363889][   T29] audit: type=1400 audit(1737355301.152:3398): avc:  denied  { setopt } for  pid=5924 comm="syz.4.852" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   98.468046][ T5927] netlink: 16 bytes leftover after parsing attributes in process `syz.4.853'.
[   98.675699][ T5931] loop3: detected capacity change from 0 to 128
[   98.704419][   T29] audit: type=1400 audit(1737355301.492:3399): avc:  denied  { mounton } for  pid=5932 comm="syz.4.858" path="/140/file0" dev="tmpfs" ino=768 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[   98.747580][ T5931] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   98.778237][   T29] audit: type=1400 audit(1737355301.562:3400): avc:  denied  { mount } for  pid=5937 comm="syz.0.855" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[   98.800584][   T29] audit: type=1400 audit(1737355301.562:3401): avc:  denied  { search } for  pid=5937 comm="syz.0.855" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[   98.844656][ T5931] ext4 filesystem being mounted at /148/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   98.873031][ T5947] openvswitch: netlink: Message has 12 unknown bytes.
[   98.913389][   T29] audit: type=1326 audit(1737355301.572:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.4.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb150485d29 code=0x7ffc0000
[   98.936819][   T29] audit: type=1326 audit(1737355301.572:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.4.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb150485d29 code=0x7ffc0000
[   98.960129][   T29] audit: type=1326 audit(1737355301.572:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.4.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb150485d29 code=0x7ffc0000
[   98.983505][   T29] audit: type=1326 audit(1737355301.572:3405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.4.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb150485d29 code=0x7ffc0000
[   99.006893][   T29] audit: type=1326 audit(1737355301.572:3406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.4.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb150485d29 code=0x7ffc0000
[   99.030238][   T29] audit: type=1326 audit(1737355301.572:3407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5941 comm="syz.4.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb150485d29 code=0x7ffc0000
[   99.060116][ T3300] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   99.108337][ T5957] netlink: 'syz.2.866': attribute type 10 has an invalid length.
[   99.205929][ T5960] bond1: entered promiscuous mode
[   99.211075][ T5960] bond1: entered allmulticast mode
[   99.246889][ T5960] 8021q: adding VLAN 0 to HW filter on device bond1
[   99.287106][ T5960] bond1 (unregistering): Released all slaves
[   99.513622][ T5970] loop2: detected capacity change from 0 to 8192
[  100.125911][ T5982] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  100.182743][ T5988] openvswitch: netlink: Message has 12 unknown bytes.
[  100.248953][ T5991] tipc: Started in network mode
[  100.253908][ T5991] tipc: Node identity 7f000001, cluster identity 4711
[  100.270703][ T5991] tipc: Enabled bearer <udp:syz2>, priority 10
[  100.303634][ T5995] netlink: 'syz.3.877': attribute type 10 has an invalid length.
[  100.350619][ T6004] netlink: 56 bytes leftover after parsing attributes in process `syz.0.883'.
[  100.365536][ T6004] netlink: 56 bytes leftover after parsing attributes in process `syz.0.883'.
[  100.374538][ T6006] tipc: Started in network mode
[  100.379503][ T6006] tipc: Node identity 7f000001, cluster identity 4711
[  100.380172][ T6010] loop4: detected capacity change from 0 to 512
[  100.395247][ T6004] loop0: detected capacity change from 0 to 512
[  100.402239][ T6006] tipc: Enabled bearer <udp:syz2>, priority 10
[  100.403593][ T6004] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  100.437826][ T6010] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.886: casefold flag without casefold feature
[  100.455768][ T6004] EXT4-fs (loop0): 1 truncate cleaned up
[  100.461892][ T6004] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.473825][ T6010] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.886: couldn't read orphan inode 15 (err -117)
[  100.487291][ T6010] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.611527][ T6022] netlink: 240 bytes leftover after parsing attributes in process `syz.1.887'.
[  100.636515][ T6025] openvswitch: netlink: Message has 12 unknown bytes.
[  100.682916][ T6026] loop1: detected capacity change from 0 to 8192
[  100.746146][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.111114][ T6041] loop4: detected capacity change from 0 to 8192
[  101.133501][ T6046] tmpfs: Bad value for 'mpol'
[  101.216140][ T6048] netlink: 'syz.2.895': attribute type 10 has an invalid length.
[  101.226668][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.328632][ T6060] tmpfs: Unknown parameter ''
[  101.372351][ T6065] openvswitch: netlink: Message has 12 unknown bytes.
[  101.384831][    T9] tipc: Node number set to 2130706433
[  101.514564][    T9] tipc: Node number set to 2130706433
[  101.554331][ T6075] loop3: detected capacity change from 0 to 128
[  101.567934][ T6075] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  101.588030][ T6079] netlink: 'syz.0.908': attribute type 10 has an invalid length.
[  101.590815][ T6080] SELinux:  Context : is not valid (left unmapped).
[  101.604487][ T6080] netlink: 4 bytes leftover after parsing attributes in process `syz.1.905'.
[  101.613333][ T6080] bridge_slave_1: left allmulticast mode
[  101.619096][ T6080] bridge_slave_1: left promiscuous mode
[  101.624747][ T6080] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.624757][ T6075] ext4 filesystem being mounted at /154/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  101.667665][ T6080] bridge_slave_0: left allmulticast mode
[  101.673380][ T6080] bridge_slave_0: left promiscuous mode
[  101.679230][ T6080] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.805515][ T6089] loop0: detected capacity change from 0 to 512
[  101.827065][ T6092] loop4: detected capacity change from 0 to 512
[  101.851413][ T6089] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.901714][ T6089] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.968335][ T6092] loop4: detected capacity change from 0 to 512
[  102.048098][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.112145][ T6100] openvswitch: netlink: Message has 12 unknown bytes.
[  102.387966][ T6105] lo speed is unknown, defaulting to 1000
[  102.488329][ T3300] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.576757][ T6109] loop0: detected capacity change from 0 to 8192
[  102.694935][ T6118] loop1: detected capacity change from 0 to 8192
[  102.729406][ T6115] loop3: detected capacity change from 0 to 8192
[  103.015596][ T6134] netlink: 20 bytes leftover after parsing attributes in process `syz.4.924'.
[  103.166090][ T6134] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  103.173417][ T6134] IPv6: NLM_F_CREATE should be set when creating new route
[  103.180708][ T6134] IPv6: NLM_F_CREATE should be set when creating new route
[  103.226640][ T6138] loop2: detected capacity change from 0 to 512
[  103.248818][ T6138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.274419][ T6138] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  103.354674][ T6138] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  103.447102][ T6137] netlink: 12 bytes leftover after parsing attributes in process `syz.2.925'.
[  103.547863][ T6143] loop1: detected capacity change from 0 to 128
[  103.566166][ T6143] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.618259][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.635658][ T6143] ext4 filesystem being mounted at /202/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  103.709626][ T6151] rdma_rxe: rxe_newlink: failed to add lo
[  103.717571][   T29] kauditd_printk_skb: 189 callbacks suppressed
[  103.717582][   T29] audit: type=1400 audit(1737355306.512:3597): avc:  denied  { map } for  pid=6142 comm="syz.1.927" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  103.749291][ T6149] loop0: detected capacity change from 0 to 8192
[  103.792978][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.807903][ T6156] openvswitch: netlink: Message has 12 unknown bytes.
[  103.959572][ T6164] loop3: detected capacity change from 0 to 8192
[  104.036813][   T29] audit: type=1400 audit(1737355306.792:3598): avc:  denied  { bind } for  pid=6174 comm="syz.1.938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  104.041952][ T6173] loop4: detected capacity change from 0 to 8192
[  104.056118][   T29] audit: type=1400 audit(1737355306.792:3599): avc:  denied  { name_bind } for  pid=6174 comm="syz.1.938" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  104.083323][   T29] audit: type=1400 audit(1737355306.792:3600): avc:  denied  { node_bind } for  pid=6174 comm="syz.1.938" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  104.113222][ T6177] rdma_rxe: rxe_newlink: failed to add lo
[  104.239206][ T6183] loop2: detected capacity change from 0 to 8192
[  104.324437][ T6193] openvswitch: netlink: Message has 12 unknown bytes.
[  104.354421][   T29] audit: type=1400 audit(1737355307.142:3601): avc:  denied  { map } for  pid=6196 comm="syz.1.944" path="socket:[12710]" dev="sockfs" ino=12710 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  104.377756][   T29] audit: type=1400 audit(1737355307.142:3602): avc:  denied  { read } for  pid=6196 comm="syz.1.944" path="socket:[12710]" dev="sockfs" ino=12710 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  104.698175][ T6209] netlink: 28 bytes leftover after parsing attributes in process `syz.0.949'.
[  104.724716][ T6211] netlink: 8 bytes leftover after parsing attributes in process `syz.0.950'.
[  104.734238][ T6211] infiniband s
z1: set down
[  104.738851][   T35] lo speed is unknown, defaulting to 1000
[  104.744661][   T35] lo speed is unknown, defaulting to 1000
[  104.802055][   T29] audit: type=1400 audit(1737355307.592:3603): avc:  denied  { connect } for  pid=6214 comm="syz.0.952" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  104.826233][ T6215] netlink: 92 bytes leftover after parsing attributes in process `syz.0.952'.
[  104.836964][ T6213] netlink: 'syz.1.951': attribute type 10 has an invalid length.
[  104.935211][   T29] audit: type=1326 audit(1737355307.732:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6219 comm="syz.0.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  104.975976][   T29] audit: type=1326 audit(1737355307.752:3605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6219 comm="syz.0.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  104.999477][   T29] audit: type=1326 audit(1737355307.752:3606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6219 comm="syz.0.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  105.083779][ T6232] netlink: 'syz.4.959': attribute type 30 has an invalid length.
[  105.115619][ T6237] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.129592][ T6232] netlink: 28 bytes leftover after parsing attributes in process `syz.4.959'.
[  105.136493][ T6222] loop1: detected capacity change from 0 to 8192
[  105.181276][ T6243] sg_write: data in/out 1048540/17 bytes for SCSI command 0x0-- guessing data in;
[  105.181276][ T6243]    program syz.3.963 not setting count and/or reply_len properly
[  105.214922][ T6237] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.253487][ T6250] netlink: 'syz.3.967': attribute type 10 has an invalid length.
[  105.287501][ T6245] loop2: detected capacity change from 0 to 8192
[  105.388067][ T6255] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6255 comm=syz.3.969
[  105.406745][ T6258] bond1: entered promiscuous mode
[  105.411828][ T6258] bond1: entered allmulticast mode
[  105.419156][ T6256] netlink: 'syz.3.969': attribute type 1 has an invalid length.
[  105.427460][ T6258] 8021q: adding VLAN 0 to HW filter on device bond1
[  105.458052][ T6256] 8021q: adding VLAN 0 to HW filter on device bond2
[  105.602438][ T6273] netlink: 36 bytes leftover after parsing attributes in process `syz.4.973'.
[  105.640117][ T6273] netlink: 'syz.4.973': attribute type 4 has an invalid length.
[  105.857211][ T6287] FAULT_INJECTION: forcing a failure.
[  105.857211][ T6287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.870436][ T6287] CPU: 1 UID: 0 PID: 6287 Comm: syz.0.978 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  105.881130][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  105.891230][ T6287] Call Trace:
[  105.894544][ T6287]  <TASK>
[  105.897496][ T6287]  dump_stack_lvl+0xf2/0x150
[  105.902118][ T6287]  dump_stack+0x15/0x1a
[  105.906334][ T6287]  should_fail_ex+0x223/0x230
[  105.911031][ T6287]  should_fail+0xb/0x10
[  105.915333][ T6287]  should_fail_usercopy+0x1a/0x20
[  105.920433][ T6287]  _copy_to_user+0x20/0xa0
[  105.924910][ T6287]  simple_read_from_buffer+0xa0/0x110
[  105.930336][ T6287]  proc_fail_nth_read+0xf9/0x140
[  105.935298][ T6287]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.940959][ T6287]  vfs_read+0x1a2/0x700
[  105.945148][ T6287]  ? __rcu_read_unlock+0x4e/0x70
[  105.950099][ T6287]  ? __fget_files+0x17c/0x1c0
[  105.954792][ T6287]  ksys_read+0xe8/0x1b0
[  105.959015][ T6287]  __x64_sys_read+0x42/0x50
[  105.963547][ T6287]  x64_sys_call+0x2874/0x2dc0
[  105.968267][ T6287]  do_syscall_64+0xc9/0x1c0
[  105.972770][ T6287]  ? clear_bhb_loop+0x55/0xb0
[  105.977494][ T6287]  ? clear_bhb_loop+0x55/0xb0
[  105.982225][ T6287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.988150][ T6287] RIP: 0033:0x7f958f60473c
[  105.992576][ T6287] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  106.012192][ T6287] RSP: 002b:00007f958dc71030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  106.020645][ T6287] RAX: ffffffffffffffda RBX: 00007f958f7f5fa0 RCX: 00007f958f60473c
[  106.028615][ T6287] RDX: 000000000000000f RSI: 00007f958dc710a0 RDI: 0000000000000004
[  106.036583][ T6287] RBP: 00007f958dc71090 R08: 0000000000000000 R09: 0000000000000000
[  106.044659][ T6287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.052671][ T6287] R13: 0000000000000000 R14: 00007f958f7f5fa0 R15: 00007ffcc1bbdd58
[  106.060731][ T6287]  </TASK>
[  106.216952][ T6295] openvswitch: netlink: Message has 12 unknown bytes.
[  106.252855][ T6299] loop3: detected capacity change from 0 to 128
[  106.254898][ T6290] loop0: detected capacity change from 0 to 2048
[  106.265946][ T6299] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  106.287131][ T6290] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.299242][ T6299] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  106.308070][ T6290] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.369944][   T40] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  106.400354][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.453561][ T6321] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pid=6321 comm=syz.3.990
[  106.456356][ T6320] openvswitch: netlink: Message has 12 unknown bytes.
[  106.475948][ T6321] netlink: 132 bytes leftover after parsing attributes in process `syz.3.990'.
[  106.560066][ T6329] openvswitch: netlink: Message has 12 unknown bytes.
[  106.625833][ T6332] loop2: detected capacity change from 0 to 256
[  106.632463][ T6332] vfat: Unknown parameter 'ÿÿÿÿ'
[  106.673131][ T6337] netlink: 'syz.2.997': attribute type 4 has an invalid length.
[  106.686752][ T6337] netlink: 36 bytes leftover after parsing attributes in process `syz.2.997'.
[  107.024902][ T6351] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1001'.
[  107.220414][ T6353] syz.1.1002[6353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.220556][ T6353] syz.1.1002[6353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.232682][ T6353] syz.1.1002[6353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.245005][ T6353] syz.1.1002[6353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.257049][ T6353] syz.1.1002[6353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.268579][ T6353] syz.1.1002[6353] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.357164][ T6361] openvswitch: netlink: Message has 12 unknown bytes.
[  107.421289][ T6365] loop1: detected capacity change from 0 to 164
[  107.439497][ T6365] rock: directory entry would overflow storage
[  107.445751][ T6365] rock: sig=0x4f50, size=4, remaining=3
[  107.451306][ T6365] iso9660: Corrupted directory entry in block 4 of inode 1792
[  107.476223][ T6368] Invalid ELF header magic: != ELF
[  107.496461][ T6369] bond3: entered promiscuous mode
[  107.501669][ T6369] bond3: entered allmulticast mode
[  107.512116][ T6369] 8021q: adding VLAN 0 to HW filter on device bond3
[  107.713714][ T6337] syz.2.997 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  107.728438][ T6337] CPU: 1 UID: 0 PID: 6337 Comm: syz.2.997 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  107.739031][ T6337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  107.749090][ T6337] Call Trace:
[  107.752457][ T6337]  <TASK>
[  107.755407][ T6337]  dump_stack_lvl+0xf2/0x150
[  107.760031][ T6337]  dump_stack+0x15/0x1a
[  107.763484][ T6382] loop1: detected capacity change from 0 to 8192
[  107.764209][ T6337]  dump_header+0x83/0x2d0
[  107.774884][ T6337]  oom_kill_process+0x341/0x4c0
[  107.779814][ T6337]  out_of_memory+0x9af/0xbe0
[  107.784415][ T6337]  ? css_next_descendant_pre+0x11c/0x140
[  107.790145][ T6337]  mem_cgroup_out_of_memory+0x13e/0x190
[  107.795801][ T6337]  try_charge_memcg+0x508/0x7f0
[  107.800701][ T6337]  obj_cgroup_charge_pages+0xbd/0x1a0
[  107.806082][ T6337]  __memcg_kmem_charge_page+0x9d/0x170
[  107.811585][ T6337]  __alloc_pages_noprof+0x1bc/0x340
[  107.816831][ T6337]  alloc_pages_mpol_noprof+0xb8/0x260
[  107.822222][ T6337]  alloc_pages_noprof+0xe1/0x100
[  107.827238][ T6337]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  107.833103][ T6337]  __kvmalloc_node_noprof+0x121/0x170
[  107.838487][ T6337]  ? ip_set_alloc+0x1f/0x30
[  107.843089][ T6337]  ip_set_alloc+0x1f/0x30
[  107.847426][ T6337]  hash_netiface_create+0x273/0x730
[  107.852638][ T6337]  ? __nla_parse+0x40/0x60
[  107.857065][ T6337]  ? __pfx_hash_netiface_create+0x10/0x10
[  107.862828][ T6337]  ip_set_create+0x359/0x8a0
[  107.867449][ T6337]  ? __schedule+0x6fa/0x930
[  107.871964][ T6337]  ? __pfx_ip_set_create+0x10/0x10
[  107.877185][ T6337]  nfnetlink_rcv_msg+0x4a9/0x570
[  107.882220][ T6337]  netlink_rcv_skb+0x12c/0x230
[  107.887072][ T6337]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  107.892552][ T6337]  nfnetlink_rcv+0x16c/0x15d0
[  107.897293][ T6337]  ? kmem_cache_free+0xdc/0x2d0
[  107.902271][ T6337]  ? nlmon_xmit+0x51/0x60
[  107.906606][ T6337]  ? __kfree_skb+0x102/0x150
[  107.911197][ T6337]  ? consume_skb+0x49/0x160
[  107.915705][ T6337]  ? nlmon_xmit+0x51/0x60
[  107.920043][ T6337]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  107.925339][ T6337]  ? __dev_queue_xmit+0xb6e/0x2090
[  107.930546][ T6337]  ? smp_call_function_many_cond+0x7e7/0xc20
[  107.936598][ T6337]  ? ref_tracker_free+0x3a5/0x410
[  107.941700][ T6337]  ? __dev_queue_xmit+0x186/0x2090
[  107.946865][ T6337]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  107.952340][ T6337]  netlink_unicast+0x599/0x670
[  107.957199][ T6337]  netlink_sendmsg+0x5cc/0x6e0
[  107.962009][ T6337]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.967358][ T6337]  __sock_sendmsg+0x140/0x180
[  107.972066][ T6337]  ____sys_sendmsg+0x312/0x410
[  107.976839][ T6337]  __sys_sendmsg+0x19d/0x230
[  107.981492][ T6337]  __x64_sys_sendmsg+0x46/0x50
[  107.986262][ T6337]  x64_sys_call+0x2734/0x2dc0
[  107.990939][ T6337]  do_syscall_64+0xc9/0x1c0
[  107.995448][ T6337]  ? clear_bhb_loop+0x55/0xb0
[  108.000277][ T6337]  ? clear_bhb_loop+0x55/0xb0
[  108.005019][ T6337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.011004][ T6337] RIP: 0033:0x7feb16355d29
[  108.015423][ T6337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.035098][ T6337] RSP: 002b:00007feb149c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.043514][ T6337] RAX: ffffffffffffffda RBX: 00007feb16545fa0 RCX: 00007feb16355d29
[  108.051491][ T6337] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 000000000000000b
[  108.059468][ T6337] RBP: 00007feb163d1b08 R08: 0000000000000000 R09: 0000000000000000
[  108.067452][ T6337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.075422][ T6337] R13: 0000000000000000 R14: 00007feb16545fa0 R15: 00007fff23059298
[  108.083437][ T6337]  </TASK>
[  108.087406][ T6337] memory: usage 307200kB, limit 307200kB, failcnt 1746
[  108.094433][ T6337] memory+swap: usage 311500kB, limit 9007199254740988kB, failcnt 0
[  108.102386][ T6337] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  108.109713][ T6337] Memory cgroup stats for /syz2:
[  108.124782][ T6337] cache 0
[  108.132733][ T6337] rss 0
[  108.135547][ T6337] shmem 0
[  108.138486][ T6337] mapped_file 0
[  108.141950][ T6337] dirty 0
[  108.145577][ T6337] writeback 0
[  108.148989][ T6337] workingset_refault_anon 283
[  108.153689][ T6337] workingset_refault_file 627
[  108.158475][ T6337] swap 4403200
[  108.161936][ T6337] swapcached 8192
[  108.165604][ T6337] pgpgin 91131
[  108.168996][ T6337] pgpgout 91129
[  108.172517][ T6337] pgfault 84657
[  108.176614][ T6337] pgmajfault 186
[  108.180164][ T6337] inactive_anon 8192
[  108.184073][ T6337] active_anon 0
[  108.187609][ T6337] inactive_file 0
[  108.191317][ T6337] active_file 0
[  108.194828][ T6337] unevictable 0
[  108.198329][ T6337] hierarchical_memory_limit 314572800
[  108.203710][ T6337] hierarchical_memsw_limit 9223372036854771712
[  108.210524][ T6337] total_cache 0
[  108.214007][ T6337] total_rss 0
[  108.217338][ T6337] total_shmem 0
[  108.220826][ T6337] total_mapped_file 0
[  108.224877][ T6337] total_dirty 0
[  108.228396][ T6337] total_writeback 0
[  108.232209][ T6337] total_workingset_refault_anon 283
[  108.238088][ T6337] total_workingset_refault_file 627
[  108.243353][ T6337] total_swap 4403200
[  108.247334][ T6337] total_swapcached 8192
[  108.251545][ T6337] total_pgpgin 91131
[  108.255445][ T6337] total_pgpgout 91129
[  108.259449][ T6337] total_pgfault 84657
[  108.263498][ T6337] total_pgmajfault 186
[  108.268250][ T6337] total_inactive_anon 8192
[  108.272673][ T6337] total_active_anon 0
[  108.276710][ T6337] total_inactive_file 0
[  108.280928][ T6337] total_active_file 0
[  108.284927][ T6337] total_unevictable 0
[  108.288953][ T6337] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.997,pid=6336,uid=0
[  108.304154][ T6337] Memory cgroup out of memory: Killed process 6336 (syz.2.997) total-vm:95696kB, anon-rss:788kB, file-rss:22600kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  108.577248][ T6404] FAULT_INJECTION: forcing a failure.
[  108.577248][ T6404] name failslab, interval 1, probability 0, space 0, times 0
[  108.590046][ T6404] CPU: 0 UID: 0 PID: 6404 Comm: syz.1.1022 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  108.600740][ T6404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  108.610821][ T6404] Call Trace:
[  108.614111][ T6404]  <TASK>
[  108.617133][ T6404]  dump_stack_lvl+0xf2/0x150
[  108.621877][ T6404]  dump_stack+0x15/0x1a
[  108.626112][ T6404]  should_fail_ex+0x223/0x230
[  108.630811][ T6404]  should_failslab+0x8f/0xb0
[  108.635497][ T6404]  kmem_cache_alloc_node_noprof+0x59/0x320
[  108.641337][ T6404]  ? __alloc_skb+0x10b/0x310
[  108.645939][ T6404]  __alloc_skb+0x10b/0x310
[  108.650366][ T6404]  ? audit_log_start+0x34c/0x6b0
[  108.655371][ T6404]  audit_log_start+0x368/0x6b0
[  108.660146][ T6404]  ? kmem_cache_free+0xdc/0x2d0
[  108.665012][ T6404]  audit_seccomp+0x4b/0x130
[  108.669595][ T6404]  __seccomp_filter+0x6fa/0x1180
[  108.674563][ T6404]  ? __perf_event_task_sched_out+0x138/0x1010
[  108.680709][ T6404]  ? __dequeue_entity+0x2c3/0x310
[  108.685753][ T6404]  __secure_computing+0x9f/0x1c0
[  108.690710][ T6404]  syscall_trace_enter+0xd1/0x1f0
[  108.695783][ T6404]  do_syscall_64+0xaa/0x1c0
[  108.700358][ T6404]  ? clear_bhb_loop+0x55/0xb0
[  108.705053][ T6404]  ? clear_bhb_loop+0x55/0xb0
[  108.709780][ T6404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.715751][ T6404] RIP: 0033:0x7f8f8875473c
[  108.720172][ T6404] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  108.739788][ T6404] RSP: 002b:00007f8f86dc1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  108.748276][ T6404] RAX: ffffffffffffffda RBX: 00007f8f88945fa0 RCX: 00007f8f8875473c
[  108.756309][ T6404] RDX: 000000000000000f RSI: 00007f8f86dc10a0 RDI: 0000000000000003
[  108.764320][ T6404] RBP: 00007f8f86dc1090 R08: 0000000000000000 R09: 0000000000000000
[  108.772299][ T6404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.780302][ T6404] R13: 0000000000000000 R14: 00007f8f88945fa0 R15: 00007ffe43c86ff8
[  108.788323][ T6404]  </TASK>
[  108.791432][ T6404] audit_log_lost: 170 callbacks suppressed
[  108.791487][ T6404] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  108.805369][ T6404] audit: out of memory in audit_log_start
[  108.812531][   T29] audit: type=1326 audit(1737355824.587:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6403 comm="syz.1.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8f887547df code=0x7ffc0000
[  108.835815][   T29] audit: type=1326 audit(1737355824.587:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6403 comm="syz.1.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8f8875498a code=0x7ffc0000
[  108.868025][ T6408] netlink: 'syz.1.1024': attribute type 1 has an invalid length.
[  108.915805][   T29] audit: type=1326 audit(1737355824.587:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6403 comm="syz.1.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[  108.939560][   T29] audit: type=1326 audit(1737355824.587:3780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6403 comm="syz.1.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[  108.963024][   T29] audit: type=1326 audit(1737355824.635:3781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6405 comm="syz.2.1023" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feb16355d29 code=0x0
[  108.997477][ T6409] loop2: detected capacity change from 0 to 2048
[  109.004279][ T6409] EXT4-fs: Ignoring removed bh option
[  109.047516][ T6409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.125515][ T6408] loop1: detected capacity change from 0 to 2048
[  109.129587][ T6415] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  109.147948][ T6415] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 800 with error 28
[  109.160383][ T6415] EXT4-fs (loop2): This should not happen!! Data will be lost
[  109.160383][ T6415] 
[  109.166715][ T6408] Alternate GPT is invalid, using primary GPT.
[  109.170229][ T6415] EXT4-fs (loop2): Total free blocks count 0
[  109.177280][ T6408]  loop1: p2 p3 p7
[  109.182415][ T6415] EXT4-fs (loop2): Free/Dirty block details
[  109.182432][ T6415] EXT4-fs (loop2): free_blocks=2415919104
[  109.182446][ T6415] EXT4-fs (loop2): dirty_blocks=816
[  109.203079][ T6415] EXT4-fs (loop2): Block reservation details
[  109.209085][ T6415] EXT4-fs (loop2): i_reserved_data_blocks=51
[  109.325930][ T6418] openvswitch: netlink: Message has 12 unknown bytes.
[  109.357850][   T29] audit: type=1326 audit(1737355825.110:3782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6420 comm="syz.1.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[  109.385973][ T6421] loop1: detected capacity change from 0 to 164
[  109.395906][   T29] audit: type=1326 audit(1737355825.140:3783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6420 comm="syz.1.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8f88754690 code=0x7ffc0000
[  109.420002][   T29] audit: type=1326 audit(1737355825.140:3784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6420 comm="syz.1.1027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f88755d29 code=0x7ffc0000
[  109.481328][ T6424] openvswitch: netlink: Message has 12 unknown bytes.
[  109.541067][ T6436] FAULT_INJECTION: forcing a failure.
[  109.541067][ T6436] name failslab, interval 1, probability 0, space 0, times 0
[  109.553817][ T6436] CPU: 1 UID: 0 PID: 6436 Comm: syz.3.1034 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  109.561450][ T6439] syz.0.1036[6439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.564511][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  109.564529][ T6436] Call Trace:
[  109.576445][ T6441] syz.0.1036[6441] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.585839][ T6436]  <TASK>
[  109.585850][ T6436]  dump_stack_lvl+0xf2/0x150
[  109.590455][ T6441] syz.0.1036[6441] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.600402][ T6436]  dump_stack+0x15/0x1a
[  109.600446][ T6436]  should_fail_ex+0x223/0x230
[  109.600469][ T6436]  should_failslab+0x8f/0xb0
[  109.600512][ T6436]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  109.603722][ T6439] syz.0.1036[6439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.608014][ T6436]  ? sidtab_sid2str_get+0xb8/0x140
[  109.646961][ T6444] openvswitch: netlink: Message has 12 unknown bytes.
[  109.650409][ T6436]  kmemdup_noprof+0x2a/0x60
[  109.664366][ T6434] loop1: detected capacity change from 0 to 512
[  109.666861][ T6436]  sidtab_sid2str_get+0xb8/0x140
[  109.678175][ T6436]  security_sid_to_context_core+0x1eb/0x2f0
[  109.684150][ T6436]  security_sid_to_context+0x27/0x30
[  109.689534][ T6436]  selinux_lsmprop_to_secctx+0x2c/0x40
[  109.695073][ T6436]  security_lsmprop_to_secctx+0x4a/0x90
[  109.700683][ T6436]  audit_log_task_context+0x93/0x1c0
[  109.706051][ T6436]  audit_log_task+0xf9/0x1c0
[  109.710648][ T6436]  audit_seccomp+0x68/0x130
[  109.715210][ T6436]  __seccomp_filter+0x6fa/0x1180
[  109.720179][ T6436]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  109.725846][ T6436]  ? vfs_write+0x596/0x920
[  109.730326][ T6436]  __secure_computing+0x9f/0x1c0
[  109.735277][ T6436]  syscall_trace_enter+0xd1/0x1f0
[  109.740379][ T6436]  ? fpregs_assert_state_consistent+0x83/0xa0
[  109.746468][ T6436]  do_syscall_64+0xaa/0x1c0
[  109.751035][ T6436]  ? clear_bhb_loop+0x55/0xb0
[  109.755717][ T6436]  ? clear_bhb_loop+0x55/0xb0
[  109.760443][ T6436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.766540][ T6436] RIP: 0033:0x7f047a035d29
[  109.770954][ T6436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.790638][ T6436] RSP: 002b:00007f04786a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  109.799186][ T6436] RAX: ffffffffffffffda RBX: 00007f047a225fa0 RCX: 00007f047a035d29
[  109.807164][ T6436] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  109.815184][ T6436] RBP: 00007f04786a7090 R08: 0000000000000000 R09: 0000000000000000
[  109.823193][ T6436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.831170][ T6436] R13: 0000000000000000 R14: 00007f047a225fa0 R15: 00007ffe10850ff8
[  109.839231][ T6436]  </TASK>
[  109.871304][   T11] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65793 with max blocks 1 with error 28
[  109.889322][ T6434] EXT4-fs (loop1): 1 orphan inode deleted
[  109.895195][   T50] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:3: Failed to release dquot type 1
[  109.907863][ T6434] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.925481][ T6434] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.948125][ T6457] __nla_validate_parse: 4 callbacks suppressed
[  109.948138][ T6457] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1038'.
[  109.960543][ T6451] loop3: detected capacity change from 0 to 8192
[  109.983392][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.019297][ T6463] openvswitch: netlink: Message has 12 unknown bytes.
[  110.077444][ T6471] rdma_rxe: rxe_newlink: failed to add lo
[  110.154101][ T6473] loop1: detected capacity change from 0 to 8192
[  110.779168][ T6484] openvswitch: netlink: Message has 12 unknown bytes.
[  110.827800][ T6486] vhci_hcd: invalid port number 236
[  110.971780][ T6490] vlan2: entered allmulticast mode
[  111.033585][ T6495] loop3: detected capacity change from 0 to 2048
[  111.037994][ T6498] loop0: detected capacity change from 0 to 512
[  111.046888][ T6495] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  111.056687][ T6495] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  111.079667][ T6498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.099908][ T6498] ext4 filesystem being mounted at /236/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.136382][ T6495] EXT4-fs (loop3): failed to initialize system zone (-117)
[  111.143860][ T6495] EXT4-fs (loop3): mount failed
[  111.177646][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.238119][ T6510] openvswitch: netlink: Message has 12 unknown bytes.
[  111.301649][ T6512] loop3: detected capacity change from 0 to 8192
[  111.334094][ T6519] loop0: detected capacity change from 0 to 8192
[  111.455563][ T6527] ip6gretap0: entered promiscuous mode
[  111.462234][ T6527] batadv_slave_0: entered promiscuous mode
[  111.474027][ T6527] ip6gretap0: left promiscuous mode
[  111.480933][ T6527] batadv_slave_0: left promiscuous mode
[  111.506239][ T6535] loop1: detected capacity change from 0 to 512
[  111.513599][ T6535] EXT4-fs: Ignoring removed i_version option
[  111.521781][ T6535] EXT4-fs (loop1): external journal device major/minor numbers have changed
[  111.531049][ T6535] EXT4-fs (loop1): failed to open journal device unknown-block(128,0) -6
[  111.581407][ T6539] loop1: detected capacity change from 0 to 164
[  111.650979][ T6541] rdma_rxe: rxe_newlink: failed to add lo
[  111.818245][ T6543] loop4: detected capacity change from 0 to 1024
[  111.825154][ T6543] EXT4-fs: Ignoring removed orlov option
[  111.837259][ T6543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.876719][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.025975][ T6554] netlink: 'syz.4.1069': attribute type 27 has an invalid length.
[  112.079574][ T6556] loop2: detected capacity change from 0 to 512
[  112.087482][ T6556] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  112.119270][ T6556] EXT4-fs (loop2): orphan cleanup on readonly fs
[  112.179618][ T6556] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1070: bg 0: block 248: padding at end of block bitmap is not set
[  112.200377][ T6556] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1070: Failed to acquire dquot type 1
[  112.267263][ T6554] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.277131][ T6556] EXT4-fs (loop2): 1 truncate cleaned up
[  112.293473][ T6554] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.343826][ T6554] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  112.353117][ T6554] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  112.361622][ T6554] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  112.370096][ T6554] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  112.382916][ T6556] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  112.415962][ T6576] openvswitch: netlink: Message has 12 unknown bytes.
[  112.423935][ T6556] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1070: deleted inode referenced: 12
[  112.449307][ T6554] bond1: left promiscuous mode
[  112.454303][ T6554] bond1: left allmulticast mode
[  112.528370][ T6557] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.536644][ T6557] 8021q: adding VLAN 0 to HW filter on device team0
[  112.550140][ T6557] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  112.575252][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.619975][ T6582] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1074'.
[  112.694687][ T6588] loop3: detected capacity change from 0 to 2048
[  112.838497][ T6605] bond1: entered promiscuous mode
[  112.843615][ T6605] bond1: entered allmulticast mode
[  112.849113][ T6605] 8021q: adding VLAN 0 to HW filter on device bond1
[  113.534377][ T6614] FAULT_INJECTION: forcing a failure.
[  113.534377][ T6614] name failslab, interval 1, probability 0, space 0, times 0
[  113.548158][ T6614] CPU: 1 UID: 0 PID: 6614 Comm: syz.1.1084 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  113.558861][ T6614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  113.569044][ T6614] Call Trace:
[  113.572321][ T6614]  <TASK>
[  113.575264][ T6614]  dump_stack_lvl+0xf2/0x150
[  113.579906][ T6614]  dump_stack+0x15/0x1a
[  113.584159][ T6614]  should_fail_ex+0x223/0x230
[  113.588923][ T6614]  ? __se_sys_mount+0xf7/0x2d0
[  113.593710][ T6614]  should_failslab+0x8f/0xb0
[  113.598398][ T6614]  __kmalloc_cache_noprof+0x4e/0x320
[  113.603716][ T6614]  ? memdup_user+0x9f/0xc0
[  113.608162][ T6614]  __se_sys_mount+0xf7/0x2d0
[  113.612772][ T6614]  ? fput+0x1c4/0x200
[  113.616755][ T6614]  ? ksys_write+0x176/0x1b0
[  113.621264][ T6614]  __x64_sys_mount+0x67/0x80
[  113.625911][ T6614]  x64_sys_call+0x2c84/0x2dc0
[  113.630633][ T6614]  do_syscall_64+0xc9/0x1c0
[  113.635150][ T6614]  ? clear_bhb_loop+0x55/0xb0
[  113.639899][ T6614]  ? clear_bhb_loop+0x55/0xb0
[  113.644582][ T6614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.650516][ T6614] RIP: 0033:0x7f8f88755d29
[  113.654924][ T6614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.674585][ T6614] RSP: 002b:00007f8f86dc1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  113.683010][ T6614] RAX: ffffffffffffffda RBX: 00007f8f88945fa0 RCX: 00007f8f88755d29
[  113.690998][ T6614] RDX: 0000000020000040 RSI: 0000000020000000 RDI: 0000000000000000
[  113.699054][ T6614] RBP: 00007f8f86dc1090 R08: 0000000020000140 R09: 0000000000000000
[  113.707035][ T6614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.715010][ T6614] R13: 0000000000000000 R14: 00007f8f88945fa0 R15: 00007ffe43c86ff8
[  113.722983][ T6614]  </TASK>
[  113.741178][ T6616] s
z1: rxe_newlink: already configured on lo
[  113.765402][ T6619] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1086'.
[  113.853001][ T6632] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1091'.
[  113.907270][ T6634] loop1: detected capacity change from 0 to 1024
[  113.922104][ T6634] EXT4-fs: Ignoring removed nobh option
[  113.927714][ T6634] EXT4-fs: Ignoring removed oldalloc option
[  113.951760][ T6634] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.965129][ T6636] loop2: detected capacity change from 0 to 8192
[  113.994307][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.041231][ T6646] loop1: detected capacity change from 0 to 1024
[  114.049930][ T6646] EXT4-fs: Ignoring removed orlov option
[  114.058685][   T29] kauditd_printk_skb: 422 callbacks suppressed
[  114.058698][   T29] audit: type=1400 audit(1737355829.698:4203): avc:  denied  { mount } for  pid=6647 comm="syz.3.1096" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  114.115504][ T6648] pim6reg1: entered promiscuous mode
[  114.119343][ T6646] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.120939][ T6648] pim6reg1: entered allmulticast mode
[  114.227231][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.254325][   T29] audit: type=1400 audit(1737355829.884:4204): avc:  denied  { ioctl } for  pid=6652 comm="syz.1.1097" path="socket:[14450]" dev="sockfs" ino=14450 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  114.341508][ T6660] xt_socket: unknown flags 0xc
[  114.346537][ T6660] 9pnet_fd: Insufficient options for proto=fd
[  114.421329][ T6666] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1103'.
[  114.431193][ T6666] xt_TPROXY: Can be used only with -p tcp or -p udp
[  114.462215][ T6669] bpf_get_probe_write_proto: 34 callbacks suppressed
[  114.462304][ T6669] syz.3.1104[6669] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.469266][ T6669] syz.3.1104[6669] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.481506][ T6669] syz.3.1104[6669] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.695932][ T6682] lo speed is unknown, defaulting to 1000
[  114.805216][ T6687] FAULT_INJECTION: forcing a failure.
[  114.805216][ T6687] name failslab, interval 1, probability 0, space 0, times 0
[  114.818077][ T6687] CPU: 0 UID: 0 PID: 6687 Comm: syz.1.1110 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  114.828804][ T6687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  114.833122][ T6677] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1107'.
[  114.838870][ T6687] Call Trace:
[  114.838897][ T6687]  <TASK>
[  114.854216][ T6687]  dump_stack_lvl+0xf2/0x150
[  114.858869][ T6687]  dump_stack+0x15/0x1a
[  114.863080][ T6687]  should_fail_ex+0x223/0x230
[  114.867861][ T6687]  should_failslab+0x8f/0xb0
[  114.872508][ T6687]  __kmalloc_node_noprof+0xad/0x410
[  114.877718][ T6687]  ? __kvmalloc_node_noprof+0x72/0x170
[  114.883208][ T6687]  __kvmalloc_node_noprof+0x72/0x170
[  114.888524][ T6687]  io_ring_ctx_alloc+0x3f5/0xcc0
[  114.893514][ T6687]  io_uring_create+0x40/0x6d0
[  114.898281][ T6687]  __se_sys_io_uring_setup+0x1d2/0x1e0
[  114.903769][ T6687]  __x64_sys_io_uring_setup+0x31/0x40
[  114.909232][ T6687]  x64_sys_call+0x270c/0x2dc0
[  114.913927][ T6687]  do_syscall_64+0xc9/0x1c0
[  114.918438][ T6687]  ? clear_bhb_loop+0x55/0xb0
[  114.923120][ T6687]  ? clear_bhb_loop+0x55/0xb0
[  114.927807][ T6687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.933830][ T6687] RIP: 0033:0x7f8f88755d29
[  114.938249][ T6687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.957904][ T6687] RSP: 002b:00007f8f86dc0fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[  114.966405][ T6687] RAX: ffffffffffffffda RBX: 00007f8f88945fa0 RCX: 00007f8f88755d29
[  114.974384][ T6687] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000002c0c
[  114.982377][ T6687] RBP: 0000000020000400 R08: 0000000000000000 R09: 0000000000000000
[  114.990347][ T6687] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  114.998336][ T6687] R13: 0000000000000000 R14: 0000000000002c0c R15: 0000000000000000
[  115.006365][ T6687]  </TASK>
[  115.016689][ T6695] openvswitch: netlink: Message has 12 unknown bytes.
[  115.051982][ T6699] openvswitch: netlink: Message has 12 unknown bytes.
[  115.094544][ T6701] netlink: 'syz.1.1115': attribute type 10 has an invalid length.
[  115.106348][ T6703] netlink: 'syz.0.1117': attribute type 10 has an invalid length.
[  115.108962][ T6706] rdma_rxe: rxe_newlink: failed to add lo
[  115.210714][ T6711] loop0: detected capacity change from 0 to 8192
[  115.232898][ T6714] loop2: detected capacity change from 0 to 8192
[  115.559762][   T29] audit: type=1326 audit(1737355831.166:4205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6726 comm="syz.4.1122" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb150485d29 code=0x0
[  115.679375][ T6728] loop4: detected capacity change from 0 to 2048
[  115.686124][ T6728] EXT4-fs: Ignoring removed bh option
[  115.709084][ T6728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.785252][ T6731] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  115.801148][ T6731] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 896 with error 28
[  115.814334][ T6731] EXT4-fs (loop4): This should not happen!! Data will be lost
[  115.814334][ T6731] 
[  115.824114][ T6731] EXT4-fs (loop4): Total free blocks count 0
[  115.830219][ T6731] EXT4-fs (loop4): Free/Dirty block details
[  115.836208][ T6731] EXT4-fs (loop4): free_blocks=2415919104
[  115.842745][ T6731] EXT4-fs (loop4): dirty_blocks=912
[  115.848005][ T6731] EXT4-fs (loop4): Block reservation details
[  115.854019][ T6731] EXT4-fs (loop4): i_reserved_data_blocks=57
[  116.031232][ T6734] syz.1.1123[6734] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.031421][ T6734] syz.1.1123[6734] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.043515][ T6734] syz.1.1123[6734] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.060311][ T6734] netlink: 'syz.1.1123': attribute type 21 has an invalid length.
[  116.113610][ T6738] openvswitch: netlink: Message has 12 unknown bytes.
[  116.138187][ T6742] @: renamed from vlan0
[  116.164659][   T29] audit: type=1400 audit(1737355831.754:4206): avc:  denied  { append } for  pid=6741 comm="syz.1.1128" name="mISDNtimer" dev="devtmpfs" ino=248 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  116.189735][   T29] audit: type=1326 audit(1737355831.754:4207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6743 comm="syz.0.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  116.213278][   T29] audit: type=1326 audit(1737355831.754:4208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6743 comm="syz.0.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f958f604690 code=0x7ffc0000
[  116.236869][   T29] audit: type=1326 audit(1737355831.754:4209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6743 comm="syz.0.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  116.237298][ T6747] loop3: detected capacity change from 0 to 8192
[  116.260667][   T29] audit: type=1326 audit(1737355831.754:4210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6743 comm="syz.0.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  116.260785][   T29] audit: type=1326 audit(1737355831.754:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6743 comm="syz.0.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  116.260816][   T29] audit: type=1326 audit(1737355831.754:4212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6743 comm="syz.0.1129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f958f605d29 code=0x7ffc0000
[  116.268802][ T6748] loop0: detected capacity change from 0 to 164
[  116.361758][ T6747]  loop3: p1 p2 p3 p4[EZD]
[  116.367206][ T6747] loop3: p1 size 16128 extends beyond EOD, truncated
[  116.379426][ T6750] IPv6: Can't replace route, no match found
[  116.380451][ T6747] loop3: p3 start 458783 is beyond EOD, truncated
[  116.392572][ T6747] loop3: p4 size 65536 extends beyond EOD, truncated
[  116.426687][  T266] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65793 with max blocks 1 with error 28
[  116.470841][ T6756] xt_CT: No such helper "snmp"
[  116.494837][ T6763] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  116.513616][ T6763] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  116.534174][ T6768] openvswitch: netlink: Message has 12 unknown bytes.
[  116.540061][ T6759] loop2: detected capacity change from 0 to 8192
[  116.566352][ T6771] openvswitch: netlink: Message has 12 unknown bytes.
[  116.612208][ T6775] loop0: detected capacity change from 0 to 1024
[  116.621017][ T6775] EXT4-fs: Ignoring removed orlov option
[  116.644475][ T6775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.662011][ T6779] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1142'.
[  116.694460][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.792044][ T6787] 9pnet_fd: Insufficient options for proto=fd
[  116.969556][ T6791] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1146'.
[  117.333383][ T6812] openvswitch: netlink: Message has 12 unknown bytes.
[  117.382571][ T6814] loop1: detected capacity change from 0 to 164
[  117.391034][ T6800] loop3: detected capacity change from 0 to 8192
[  117.448894][ T6824] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1159'.
[  117.466112][ T6826] loop1: detected capacity change from 0 to 164
[  117.618479][ T6800] ==================================================================
[  117.626677][ T6800] BUG: KCSAN: data-race in __wb_update_bandwidth / percpu_counter_add_batch
[  117.635389][ T6800] 
[  117.637711][ T6800] read-write to 0xffff888102121920 of 8 bytes by task 6830 on cpu 0:
[  117.645798][ T6800]  percpu_counter_add_batch+0x120/0x140
[  117.651395][ T6800]  __folio_mark_dirty+0x27f/0x4e0
[  117.656449][ T6800]  mark_buffer_dirty+0x134/0x230
[  117.657003][ T6841] loop4: detected capacity change from 0 to 8192
[  117.661403][ T6800]  block_write_end+0x123/0x210
[  117.672518][ T6800]  generic_write_end+0x5c/0x160
[  117.677387][ T6800]  fat_write_end+0x4e/0x160
[  117.681879][ T6800]  generic_perform_write+0x33c/0x4a0
[  117.687169][ T6800]  __generic_file_write_iter+0xa1/0x120
[  117.692724][ T6800]  generic_file_write_iter+0x77/0x1c0
[  117.698115][ T6800]  iter_file_splice_write+0x5f1/0x980
[  117.703482][ T6800]  direct_splice_actor+0x160/0x2c0
[  117.708629][ T6800]  splice_direct_to_actor+0x302/0x670
[  117.714018][ T6800]  do_splice_direct+0xd7/0x150
[  117.718783][ T6800]  do_sendfile+0x398/0x660
[  117.723190][ T6800]  __x64_sys_sendfile64+0x110/0x150
[  117.728392][ T6800]  x64_sys_call+0xfbd/0x2dc0
[  117.732981][ T6800]  do_syscall_64+0xc9/0x1c0
[  117.737480][ T6800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.743380][ T6800] 
[  117.745708][ T6800] read to 0xffff888102121920 of 8 bytes by task 6800 on cpu 1:
[  117.753238][ T6800]  __wb_update_bandwidth+0x83/0x5d0
[  117.758440][ T6800]  do_writepages+0x443/0x480
[  117.763038][ T6800]  file_write_and_wait_range+0x168/0x2f0
[  117.768680][ T6800]  __generic_file_fsync+0x46/0x140
[  117.773797][ T6800]  fat_file_fsync+0x46/0x100
[  117.778405][ T6800]  vfs_fsync_range+0x116/0x130
[  117.783166][ T6800]  generic_file_write_iter+0x185/0x1c0
[  117.788621][ T6800]  iter_file_splice_write+0x5f1/0x980
[  117.793991][ T6800]  direct_splice_actor+0x160/0x2c0
[  117.799102][ T6800]  splice_direct_to_actor+0x302/0x670
[  117.804477][ T6800]  do_splice_direct+0xd7/0x150
[  117.809240][ T6800]  do_sendfile+0x398/0x660
[  117.813649][ T6800]  __x64_sys_sendfile64+0x110/0x150
[  117.818855][ T6800]  x64_sys_call+0xfbd/0x2dc0
[  117.823464][ T6800]  do_syscall_64+0xc9/0x1c0
[  117.827968][ T6800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.833880][ T6800] 
[  117.836192][ T6800] value changed: 0x0000000000002f50 -> 0x0000000000002f60
[  117.843278][ T6800] 
[  117.845585][ T6800] Reported by Kernel Concurrency Sanitizer on:
[  117.851730][ T6800] CPU: 1 UID: 0 PID: 6800 Comm: syz.3.1147 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  117.862392][ T6800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  117.872442][ T6800] ==================================================================
[  117.884753][ T6843] loop0: detected capacity change from 0 to 1024
[  117.898975][ T6843] EXT4-fs: Ignoring removed orlov option
[  117.965566][ T6843] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.015065][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.