last executing test programs:

22.124301757s ago: executing program 1 (id=6163):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000050000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000002114001180090001006c6173740000000004000280380000000c0a01010000000000000000070000070900020073797a31000000000900010073797a30000000000c00038008000080040001"], 0xd0}}, 0x0)

22.123872217s ago: executing program 1 (id=6164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x10004}}, @TCA_CT_MARK={0x8, 0x10}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x10000000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xf, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x18)
r5 = socket$kcm(0x29, 0x2, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r6, &(0x7f00000001c0)=[{{&(0x7f00000009c0)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@ip_retopts={{0x18, 0x0, 0x7, {[@ra={0x94, 0x4}, @generic={0x44, 0x2}]}}}], 0x18}}], 0x1, 0x0)
sendmsg$rds(r5, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002800)=[{&(0x7f0000002980)=""/4112, 0xfffffe09}], 0x1}, 0x0)

21.837822916s ago: executing program 1 (id=6167):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000040000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000004400050000000000"], 0xfc}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="d5"], 0x24}}, 0x0)
recvmmsg$unix(r5, &(0x7f0000003180)=[{{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f00000001c0)=""/97, 0x61}, {&(0x7f0000000900)=""/253, 0xfd}, {&(0x7f0000000a00)=""/4083, 0xff3}, {&(0x7f00000004c0)=""/194, 0xc2}], 0x4}}], 0x1, 0x0, 0x0)
write(r5, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x4}}}}}}}, 0x0)
listen(r2, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000006340)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a35f2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x7}}}}}}}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007a00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRESDEC=0x0, @ANYRESOCT=r7, @ANYRESOCT=r7, @ANYRES8=r7, @ANYRES32=r1], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r8, r7, 0x7, 0x0, 0x0, @void, @value}, 0x10)
sendmmsg$inet6(r6, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000ac0)="b0", 0x7ffff000}], 0x11}}], 0x2, 0x0)
syz_emit_ethernet(0xae, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x78, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000000400260004000000"}, {0x1, 0x1, "fe906d17efe3"}]}}}}}}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="0307047079000000000001000400040001"], 0x18}}, 0x0)

21.695613175s ago: executing program 1 (id=6172):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0x7)
setuid(r3)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0xf, &(0x7f00000004c0)=@ringbuf={{}, {{}, {}, {}, {0x54}}, {}, [], {{0x7, 0x1, 0xb, 0x1, 0x9, 0x20}, {}, {0x85, 0x0, 0x0, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

21.634032265s ago: executing program 1 (id=6176):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014001100b7030000000000698500000083000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = io_uring_setup(0x1691, &(0x7f0000000400)={0x0, 0x631d, 0x2, 0x2, 0x2d9})
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000002700)={0x3, 0x0, 0x0, &(0x7f0000000200)=[{0x0}, {&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f0000002a00)=""/88, 0x58}], 0x0}, 0x20)

21.554306694s ago: executing program 1 (id=6179):
io_setup(0x2ff, 0x0) (async)
io_setup(0x2ff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) (async)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x2538, 0xa}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
setresuid(0x0, 0xee01, 0xee00)
shutdown(0xffffffffffffffff, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6)
open(0x0, 0x0, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
readv(0xffffffffffffffff, &(0x7f00000005c0), 0x0)
close(0xffffffffffffffff)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000300), &(0x7f0000000400)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r4}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r4}, 0x10)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x62040200)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)

6.573017322s ago: executing program 32 (id=6179):
io_setup(0x2ff, 0x0) (async)
io_setup(0x2ff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) (async)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x2538, 0xa}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
setresuid(0x0, 0xee01, 0xee00)
shutdown(0xffffffffffffffff, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x6)
open(0x0, 0x0, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
readv(0xffffffffffffffff, &(0x7f00000005c0), 0x0)
close(0xffffffffffffffff)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000300), &(0x7f0000000400)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r4}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r4}, 0x10)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x62040200)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)

3.096634695s ago: executing program 3 (id=6524):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = io_uring_setup(0x1691, &(0x7f0000000400)={0x0, 0x631d, 0x2, 0x2, 0x2d9})
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000002700)={0x2, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/264, 0x108}, {&(0x7f00000015c0)=""/4096, 0x1000}], 0x0}, 0x20)

3.096144465s ago: executing program 3 (id=6526):
syz_emit_ethernet(0x3a, &(0x7f00000002c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data={0x4, 0x40003, 0x40000000}}}}}}, 0x0)

3.072655405s ago: executing program 3 (id=6527):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, 0x0, 0x4040001)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x3}, 0x4)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0x0, 0x0, 0x4}, 0x0, 0x0)
r5 = dup(r4)
sendmsg$inet(r5, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
socket(0x1, 0x2, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, &(0x7f0000000040)=0x1, 0x4)
r6 = socket$inet(0x2, 0x1, 0x3)
getsockopt(r6, 0x0, 0x14, 0xffffffffffffffff, &(0x7f0000000040))
r7 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

2.393133581s ago: executing program 0 (id=6529):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000000c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x3ff}}, 0xfffffe28)
r3 = openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
pwritev2(r3, 0x0, 0x0, 0x5412, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4, 0x0, 0x7}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
syz_emit_ethernet(0x7e, &(0x7f00000010c0)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x3, 0x0, 0x0, @broadcast=0x1000000, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84, 0x0, @private, @empty, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@remote}]}, @timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@multicast1}, {}, {@dev}, {@private}, {@empty}, {@empty}]}]}}}}}}}, 0x0)
ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000380)={0x400, 0x8, 0x800000010005, 0x11, 0x84, 0x8})

2.305501051s ago: executing program 5 (id=6531):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[], 0xd0}}, 0x0)

2.280371601s ago: executing program 5 (id=6532):
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x101, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f0000000000)={0x0, 0x8, [@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}]})
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYBLOB="14000000f903010000000000000000000a00000a14000000110001b8251afb7e237789000000000a"], 0x28}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2, &(0x7f00000008c0)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xef}}, {@dioread_lock}, {@norecovery}, {@jqfmt_vfsv0}, {@lazytime}, {@noload}, {@lazytime}, {@noauto_da_alloc}]}, 0xfe, 0x568, &(0x7f0000000340)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={&(0x7f0000000240)="51940c305d0d33bca4b76d4c0572e3d3071cf716f379ed9cf6d56853a568379507b60fafa82171747f6d3f3c37f839cd54faf0c5bff4ebb4b05ffbccd746df8f932ed5b9c1c571be45544fe1bd9ae9c8ba2be40bfb7e09c8a2379e6945a6b6330b094f68d76f18d356a8057aef35f712e90b36a4217798db576f59ff0403c200141a6edba5b0c44c96edfb529ee998f40d0f6f266c52664bf46c46c193e31d3c810986b69d0ec3213f5901dcbda0f0d3c78eea5051e56e1133845c75a9d3752399d09da36db45f22ec42b05c0e4753026865f2c349cbfbd645e891f8c6882857e61b5b16fd0f8f994ab5d11b730bbfd215", &(0x7f0000000980)=""/168, &(0x7f0000000a40)="de20813a30a06a1ebd080e00a15d5fd9fde4dbcf9cb4643b9abe1c7dd160cf313e9f2626e5fcd518ed08646a9bb772010a5973c53efb762b6b668707178dab1f26ec54029f6d25832e5239e66cac4a22e946dfe6ac5bbaac6f2d0d18ea24068f1375dc560e09192a2e5dc17da689d03833cf298853c532dff64b06962fe433f621617e74faf3fb6d494f8a72bdb9af6e7ceec5bab9ee1a78a74103b3995e1374146c9d660d8c33cddbf340eadc980d8ca9c59392df85113172fe6258bb3a58ac60fa75b714b6f67aa6bf042bc8e864922732885d898054d8de0ce45f114a1bfbb8c29924b2c53ccf31508b6f2acf36a952ace35d115af9", &(0x7f0000000b40)="7f1e22b9921e8cf9078a602480a37741e1efc98db14b01a91cc2215175f750a61872b420d74b1ac2d60f34ad50b0b677560edaea799f0626e5f8476fbbc4850b44886224e0e2a825613784c933215938ad67587e6367a091fe9d7c64095685318113f68ac65642d00193f62213acfd03393e75", 0x6, r4}, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000001cc0)={'erspan0\x00', &(0x7f0000001bc0)={'erspan0\x00', <r5=>0x0, 0x8000, 0x80, 0x7ff, 0x100, {{0x31, 0x4, 0x0, 0x3f, 0xc4, 0x65, 0x0, 0x5, 0x29, 0x0, @local, @private=0xa010100, {[@timestamp={0x44, 0x8, 0xe6, 0x0, 0xf, [0x6c6]}, @rr={0x7, 0x7, 0x9c, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0x2c, 0x9, 0x0, 0xe, [0xffff, 0x5, 0x1, 0x3, 0x0, 0x3845, 0x4, 0xfff, 0x8, 0x5]}, @rr={0x7, 0x2b, 0xc8, [@rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x3a}, @broadcast, @remote, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @dev={0xac, 0x14, 0x14, 0x36}, @empty]}, @cipso={0x86, 0x34, 0x2, [{0x1, 0xf, "2aacfc7cd48ea9ffc296ed4dac"}, {0x0, 0x3, "ee"}, {0x6, 0x4, "b793"}, {0x6, 0x9, "66329044127db0"}, {0x7, 0xf, "e4a1b7f758ee24b362fbaefd2f"}]}, @generic={0x83, 0x5, "f0ac14"}, @generic={0x86, 0x10, "78f66939241d2c9c4ae90adf4831"}]}}}}})
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001e40)={0x6, 0x0, &(0x7f0000000100), &(0x7f00000001c0)='syzkaller\x00', 0x3, 0x1000, &(0x7f0000000bc0)=""/4096, 0x41100, 0x8, '\x00', r5, 0x25, r7, 0x8, &(0x7f0000001d00)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000001d40)={0x4, 0x9, 0x380000, 0x6d}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000001d80)=[r4], &(0x7f0000001dc0)=[{0x5, 0x3, 0xe, 0xc}, {0x0, 0x1, 0xa, 0x5}, {0x0, 0x4, 0xf, 0xc}, {0x1, 0x3, 0xc, 0x7}, {0x1, 0x5, 0x1, 0xa}, {0x4, 0x5, 0x5, 0xc}, {0x3, 0x5, 0xd, 0x5}, {0x2, 0x4, 0x4, 0xb}], 0x10, 0x80000001, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x7e, &(0x7f0000000540)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x8, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@empty, 0x2}, {@broadcast}, {@broadcast}, {@private}, {@multicast1}, {@multicast1}]}, @lsrr={0x83, 0xb, 0x0, [@dev={0xac, 0x14, 0x14, 0x43}, @multicast1]}]}}}}}}}, 0x0)

2.20373616s ago: executing program 3 (id=6534):
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000080), &(0x7f0000000340)='%pS    \x00'}, 0x20)
write$binfmt_elf64(r0, &(0x7f0000000240)=ANY=[], 0x40000)
r4 = accept4$unix(r1, 0x0, 0x0, 0x0)
recvfrom$unix(r4, &(0x7f0000001040)=""/259, 0x103, 0x0, 0x0, 0x0)

2.14528542s ago: executing program 5 (id=6536):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0x7)
setuid(r3)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0xf, &(0x7f00000004c0)=@ringbuf={{}, {{}, {}, {}, {0x54}}, {}, [], {{0x7, 0x1, 0xb, 0x1, 0x9, 0x20}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

2.14497784s ago: executing program 3 (id=6537):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x3a, &(0x7f00000002c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data={0x4, 0x40003, 0x40000000}}}}}}, 0x0)

2.10869035s ago: executing program 2 (id=6538):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), 0x0, 0xff27, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x21, 0x4, 0x0, 0x401, 0x4a100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @value, @void, @void, @value}, 0x50)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$VT_DISALLOCATE(r1, 0x5608)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{}, 0x0, &(0x7f00000005c0)}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b00000005000000010001000900000001000000", @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa2000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x953c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
getcwd(&(0x7f0000000280)=""/48, 0x30)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, 0x0)

2.067233239s ago: executing program 5 (id=6540):
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x0)
connect$vsock_stream(r0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
write$binfmt_elf64(r0, &(0x7f0000000240)=ANY=[], 0x40000)
r4 = accept4$unix(r1, 0x0, 0x0, 0x0)
recvfrom$unix(r4, &(0x7f0000001040)=""/259, 0x103, 0x0, 0x0, 0x0)

2.029637579s ago: executing program 2 (id=6541):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000080), &(0x7f00000000c0), 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000b80)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000f9dbdf253b0000000c0099000001000057000000040087001000cd3352cdeaab038f650080000300480033002020070008021100000008021100000150505050505001ff100009000c0211f9fc82421a618c03da4f6402000000d35676000000000000000000f5579c932f1d5a5114b3a62a1b9b940ef3e6839b0ed3ab477fa80fe6ff45a9604a2c"], 0x7c}, 0x1, 0x0, 0x0, 0x4840}, 0x40010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f0000000080), &(0x7f0000000180)=r5}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000000dc0)={0x60c, "531e78d3a57b4464760057f1ac196a08f5958503dfb730373e2167131734dfea7eb80acfc3a5d1e461cdd4cc80df75c8ffcaf4c5b28db7e6dadbc034e37386f0a7b4be90ac7e937a6cac72875768bf61cbf337fcb888adff2b8415d43073c8faeefc0b1843f95852c8a3770a71cf3b4f79f0adae0e364011c1143b3cec6a46112204932061751e6bb6623bf1cfad379bef3b95a0ccff8914e75dd44915e545e427cd380b569c65a2726d7bcb8f00f76ce1dddb5f22f347469158684ab4d6aadf1eaf40e273c3f7d30bf83c17d3d9a4e4fae5ec0b6721351c9bcbdb0ffe586a63d4f9326907f94762e47c2102d04f5d0c93224b0f0f6fa8115926334ef1448eaebcb2413f591a0413c5fccefa3cecbc492003f7ba9742473c445f72aa741adcc59474f5b44c23f9c34f570c2dc10dee445396190220497609e1989e4de93b9b707606817f6b5196e2f21ae0e301fe472d22fdc9324d82d498c66f782527384f60246395d30b1e3201881873b4d11c13a1332d680bc9ddcb29a952c6a320a2cf06d9e6e44416b51c4fe16b88f7e4d43a793928b95f132bb5555c8ecfd4dd553075e0a543a0c8e5fda5da31a52a266d8fad2d01de5d0eac48ab9de79371bcbb26161596a3c65c106e8076b82b49bea70e6fbd208243dc1e2d4f96857d7c8aed526185b87b984feb8aaefe0f4402f266b904ddb6c4c661b66338923088ce1f8af38bbcb11e12f6bcaafb916cb5206c340e62a2165ff03c7567b80d0227f2b1ef4ac2d9c1522a7ded0defdb10c565545724da1d90bdd491ab0a93437385d74af4560387e2538b7499212416a20fd7d5295228dbcc2b5e55ad3d31ee834dce0a54529b4b9bd16fad92e74a981e60243f914145f6aa66748a3c557123f02c8ae9b106915a3efc2cb19ac22df77d1e4782956acfd1ceab97d2cd9bf72aa1a06c6b6ac4e12ef8b865dea6a62101ce15263c9cb6fb6918a1fc2975e52929f006d69dee677ea93919215666ff114e15f10541f80ba006c245b1fc9c213095b1f417b304b930745040e4b9fb8ae3b1d2774c29c289429c1a594797d9ff720bd3595ae8384be1d115c21b62c658d5a60dfc18cf17f7d469971041053d023b53fab66af616132d12e3f9d3b3334872b14a1afacc55d345a7c6ccba4cb30aa9bbb620c4bdbebaf8d34ffac4cdd80eee1065755527a701e926d2f263fa1daa7a4b4af1001c64d80fda1c0c847859c0022dbc7d89bbc79d739e435568b1f5cf2caa0bc8d43e1c56d6b9eb5eb3988400a5c8301eee98d7f5592773401d7527a3a4c596cb07821e06e1d5524d16e869b08d110a85a16bb297e7dff72a05e8b23e6c9079f43d5f8bfddb5efeebad1b5b776e429ca5d8f2b1909bab1244e2ff228fa96315b811a710fee586eb065c6618eb039b1da9d8ebed7ef2582db0530f6e50e67280a654a259386ae7e0bb222c957edaa3b1fd7fc778e578e2b072d0c8ab72f6bc3a7fb8d3f52d0c6b0c5e6c5174be79f37f4375110486d04d9427d6f1e083dff82fc6a4e81fb659fe225e1ca5d66108b800b9132b77c397af98165c7a3011a01f983494e01a33be9a44e5e81fa5183ce7006a5d342bc67b25390c48fadf12cd0455af2e7905897735f16ed356bfe4aa3d70701d2c62f6746776bff05ea21744184d0869e2eedb7c3c7afeb5b7964bba46d46da131d546e1ae00b0a2c4259a9e105fd98ff5bd4de382b167d797d0fdd78bf09d34cea1d0f386c57376ea71cc9a5e6e278e89f942eadaa83ef57dc24f8726815d3ba712dfcfb33182d82a020f15a53c8a1443b0cfacea10928efab59052b587a7e2f05955a18389dde49812bfa7caaa879b6d2ff68fb2fcd2c936c7bcc10cae3fc0b0df9634ceb1bd5a0873a4542be897f67acb35fa218d79e0d17bc435b16f7bef67726152745769f6f5a5486ddb115ba24b765995ad71b37923d306b7ae1cb003abd7ef9c56ab85ea2622e06c369d6b60744858d95e1f0cbf7b4351c4181f4f7c844c4b303d01abba866068a0615d342edce65bc9c4613b8dc86c9127a98ea32f11e4d7024f2edef9d36211960437d58a0509e420fdba8529fc8527c75a8ee994579330ec26d81a18cd67fca8e254c5dc5025788adee5780cfbea1695cb7c5cbf667e536a5e1bc6b31d2166151df289df59adf3b52200486a41da9021202addf5"})
write$UHID_CREATE2(r6, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x119)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x1, 0x7}, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000002300), 0x0, 0x14a042)
close_range(r2, 0xffffffffffffffff, 0x0)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000100), &(0x7f0000000140), 0x0)
r7 = openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0)
write(r7, &(0x7f0000000180)="01010101", 0x4)
close(r7)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f00000001c0), &(0x7f0000000200), 0x0)

1.517472017s ago: executing program 0 (id=6542):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[], 0xd0}}, 0x0)

1.485966847s ago: executing program 0 (id=6545):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/rt_acct\x00')
r2 = socket(0x18, 0x0, 0x0)
connect$pppoe(r2, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
sendfile(r2, r1, 0x0, 0x8)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0xa02000000000000, 0x60, 0x0, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r4}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
statfs(&(0x7f0000000340)='./file0\x00', &(0x7f00000003c0)=""/138)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000600)='kmem_cache_free\x00', r5}, 0x18)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x24, r8, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040091}, 0x0)
sendmsg$FOU_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r8, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)
sendmsg$FOU_CMD_DEL(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x3c, r8, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @loopback}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48001}, 0x5)
syz_emit_ethernet(0xfdef, &(0x7f0000000380)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xfde1, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0x8}}}}}, 0x0)

1.430696587s ago: executing program 0 (id=6547):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
unshare(0x2a020400)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket(0x15, 0x5, 0x0)
recvmsg$can_raw(r1, &(0x7f0000000c40)={0x0, 0x0, 0x0}, 0x2)

1.170403825s ago: executing program 5 (id=6551):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000000c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x3ff}}, 0xfffffe28)
r3 = openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
pwritev2(r3, 0x0, 0x0, 0x5412, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4, 0x0, 0x7}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000380)={0x400, 0x8, 0x800000010005, 0x11, 0x84, 0x8})

1.159770035s ago: executing program 2 (id=6552):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000000c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x3ff}}, 0xfffffe28)
r3 = openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
pwritev2(r3, 0x0, 0x0, 0x5412, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4, 0x0, 0x7}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
syz_emit_ethernet(0x7e, &(0x7f00000010c0)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x3, 0x0, 0x0, @broadcast=0x1000000, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84, 0x0, @private, @empty, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@remote}]}, @timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@multicast1}, {}, {@dev}, {@private}, {@empty}, {@empty}]}]}}}}}}}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0xffffffc1, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181014100000000010000000000000e000a000f00000002800200121f", 0x2e}], 0x1}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000380)={0x400, 0x8, 0x800000010005, 0x11, 0x84, 0x8})

562.834982ms ago: executing program 0 (id=6553):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0))
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
sendmsg$NFC_CMD_DEV_UP(r1, 0x0, 0x0)
write$nci(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="51030107"], 0x4)

454.320542ms ago: executing program 0 (id=6554):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, 0x0, 0x4040001)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x3}, 0x4)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0x0, 0x0, 0x4}, 0x0, 0x0)
r5 = dup(r4)
sendmsg$inet(r5, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0)
socket(0x1, 0x2, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, &(0x7f0000000040)=0x1, 0x4)
socket$inet(0x2, 0x1, 0x3)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)=[{&(0x7f0000000f00)="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", 0xe24}, {0x0, 0x4000}, {0x0}, {0x0}, {&(0x7f00000020c0), 0x500}], 0x5}, 0x0)
r6 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

453.947092ms ago: executing program 3 (id=6539):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000014c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB="050000f4ffffe100000000000000fcfe07000000ff000059cc265be0143066", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000190000000000000000000018110000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f00000005c0)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000006740)=ANY=[@ANYBLOB="1800000000000000001a00f3ffffff001811004f", @ANYRESHEX=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\r\x00\x00\x00\x00\x00\x00', @ANYRESHEX=0x0], 0x0, 0x2, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc6, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x31, &(0x7f0000000000)=0x8000, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6000000000140600fc000000000000000000000000000000ff02000000000000000000000000000100004001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="670200009078"], 0x0)
remap_file_pages(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8, 0x9, 0x100000)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x18)
recvmmsg(r2, &(0x7f00000055c0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)=""/54, 0x36}, {&(0x7f0000000200)=""/3, 0x3}, {&(0x7f0000000280)=""/30, 0x1e}, {&(0x7f00000015c0)=""/4096, 0x1000}], 0x4, &(0x7f00000004c0)=""/128, 0x80}, 0x6}, {{&(0x7f0000000680)=@tipc=@name, 0x80, &(0x7f0000000380)=[{&(0x7f0000000700)=""/169, 0xa9}], 0x1}, 0x628a}, {{&(0x7f00000007c0)=@ax25={{0x3, @rose}, [@netrom, @null, @default, @default, @remote, @remote, @remote, @bcast]}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000840)=""/197, 0xc5}, {&(0x7f0000000940)=""/117, 0x75}, {&(0x7f0000000580)=""/58, 0x3a}, {&(0x7f00000009c0)=""/45, 0x2d}, {&(0x7f0000000a00)=""/100, 0x64}, {&(0x7f0000000a80)=""/246, 0xf6}, {&(0x7f0000000b80)=""/52, 0x34}, {&(0x7f0000000bc0)=""/103, 0x67}, {&(0x7f0000000c40)=""/122, 0x7a}], 0x9, &(0x7f0000000d80)=""/15, 0xf}, 0x1}, {{&(0x7f0000000dc0)=@ieee802154, 0x80, &(0x7f0000001000)=[{&(0x7f00000025c0)=""/4096, 0x1000}, {&(0x7f0000000e40)=""/159, 0x9f}, {&(0x7f0000000f00)=""/206, 0xce}, {&(0x7f00000035c0)=""/4096, 0x1000}], 0x4, &(0x7f0000001040)=""/25, 0x19}, 0x7}, {{&(0x7f0000001080)=@nfc, 0x80, &(0x7f0000001380)=[{&(0x7f0000001100)=""/200, 0xc8}, {&(0x7f0000001200)=""/2, 0x2}, {&(0x7f0000001240)=""/201, 0xc9}, {&(0x7f00000045c0)=""/4096, 0x1000}, {&(0x7f0000001340)=""/47, 0x2f}], 0x5, &(0x7f0000001400)=""/126, 0x7e}}], 0x5, 0x80, &(0x7f0000001480)={0x77359400})
recvmmsg(r2, &(0x7f0000009880)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001540)=""/103, 0x67}, 0x4}], 0x1, 0x2, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
socket(0x10, 0x803, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
rmdir(0x0)
pipe2$watch_queue(&(0x7f0000005700)={<r7=>0xffffffffffffffff}, 0x80)
read$watch_queue(r7, &(0x7f0000005740)=""/4096, 0x1000)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r8, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv6_deladdr={0x18, 0x15, 0x121, 0x70bd26, 0x25dfdbfd, {0xa, 0x18, 0x8, 0xff}}, 0x18}, 0x1, 0x0, 0x0, 0x40001}, 0x4)
recvmsg(0xffffffffffffffff, 0x0, 0x4c2103a0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r10, 0x0, 0xffffffffffffffff}, 0x18)

379.091632ms ago: executing program 4 (id=6556):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xf, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, @void, @value}, 0x94)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000001c0)=[{&(0x7f0000000880)=""/4096, 0x1000}], 0x1, 0x0, 0x4}}], 0x48, 0x40841}, 0x0)

346.226811ms ago: executing program 4 (id=6557):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000040)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0x7)
setuid(r3)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0xf, &(0x7f00000004c0)=@ringbuf={{}, {{}, {}, {}, {0x54}}, {}, [], {{0x7, 0x1, 0xb, 0x1, 0x9, 0x20}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

316.958301ms ago: executing program 4 (id=6558):
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x101, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f0000000000)={0x0, 0x8, [@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}]})
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYBLOB="14000000f903010000000000000000000a00000a14000000110001b8251afb7e237789000000000a"], 0x28}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2, &(0x7f00000008c0)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xef}}, {@dioread_lock}, {@norecovery}, {@jqfmt_vfsv0}, {@lazytime}, {@noload}, {@lazytime}, {@noauto_da_alloc}]}, 0xfe, 0x568, &(0x7f0000000340)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={&(0x7f0000000240)="51940c305d0d33bca4b76d4c0572e3d3071cf716f379ed9cf6d56853a568379507b60fafa82171747f6d3f3c37f839cd54faf0c5bff4ebb4b05ffbccd746df8f932ed5b9c1c571be45544fe1bd9ae9c8ba2be40bfb7e09c8a2379e6945a6b6330b094f68d76f18d356a8057aef35f712e90b36a4217798db576f59ff0403c200141a6edba5b0c44c96edfb529ee998f40d0f6f266c52664bf46c46c193e31d3c810986b69d0ec3213f5901dcbda0f0d3c78eea5051e56e1133845c75a9d3752399d09da36db45f22ec42b05c0e4753026865f2c349cbfbd645e891f8c6882857e61b5b16fd0f8f994ab5d11b730bbfd215", &(0x7f0000000980)=""/168, &(0x7f0000000a40)="de20813a30a06a1ebd080e00a15d5fd9fde4dbcf9cb4643b9abe1c7dd160cf313e9f2626e5fcd518ed08646a9bb772010a5973c53efb762b6b668707178dab1f26ec54029f6d25832e5239e66cac4a22e946dfe6ac5bbaac6f2d0d18ea24068f1375dc560e09192a2e5dc17da689d03833cf298853c532dff64b06962fe433f621617e74faf3fb6d494f8a72bdb9af6e7ceec5bab9ee1a78a74103b3995e1374146c9d660d8c33cddbf340eadc980d8ca9c59392df85113172fe6258bb3a58ac60fa75b714b6f67aa6bf042bc8e864922732885d898054d8de0ce45f114a1bfbb8c29924b2c53ccf31508b6f2acf36a952ace35d115af9", &(0x7f0000000b40)="7f1e22b9921e8cf9078a602480a37741e1efc98db14b01a91cc2215175f750a61872b420d74b1ac2d60f34ad50b0b677560edaea799f0626e5f8476fbbc4850b44886224e0e2a825613784c933215938ad67587e6367a091fe9d7c64095685318113f68ac65642d00193f62213acfd03393e75", 0x6, r4}, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000001cc0)={'erspan0\x00', &(0x7f0000001bc0)={'erspan0\x00', <r5=>0x0, 0x8000, 0x80, 0x7ff, 0x100, {{0x31, 0x4, 0x0, 0x3f, 0xc4, 0x65, 0x0, 0x5, 0x29, 0x0, @local, @private=0xa010100, {[@timestamp={0x44, 0x8, 0xe6, 0x0, 0xf, [0x6c6]}, @rr={0x7, 0x7, 0x9c, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0x2c, 0x9, 0x0, 0xe, [0xffff, 0x5, 0x1, 0x3, 0x0, 0x3845, 0x4, 0xfff, 0x8, 0x5]}, @rr={0x7, 0x2b, 0xc8, [@rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x3a}, @broadcast, @remote, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @dev={0xac, 0x14, 0x14, 0x36}, @empty]}, @cipso={0x86, 0x34, 0x2, [{0x1, 0xf, "2aacfc7cd48ea9ffc296ed4dac"}, {0x0, 0x3, "ee"}, {0x6, 0x4, "b793"}, {0x6, 0x9, "66329044127db0"}, {0x7, 0xf, "e4a1b7f758ee24b362fbaefd2f"}]}, @generic={0x83, 0x5, "f0ac14"}, @generic={0x86, 0x10, "78f66939241d2c9c4ae90adf4831"}]}}}}})
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001e40)={0x6, 0x0, &(0x7f0000000100), &(0x7f00000001c0)='syzkaller\x00', 0x3, 0x1000, &(0x7f0000000bc0)=""/4096, 0x41100, 0x8, '\x00', r5, 0x25, r7, 0x8, &(0x7f0000001d00)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000001d40)={0x4, 0x9, 0x380000, 0x6d}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000001d80)=[r4], &(0x7f0000001dc0)=[{0x5, 0x3, 0xe, 0xc}, {0x0, 0x1, 0xa, 0x5}, {0x0, 0x4, 0xf, 0xc}, {0x1, 0x3, 0xc, 0x7}, {0x1, 0x5, 0x1, 0xa}, {0x4, 0x5, 0x5, 0xc}, {0x3, 0x5, 0xd, 0x5}, {0x2, 0x4, 0x4, 0xb}], 0x10, 0x80000001, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x7e, &(0x7f0000000540)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x8, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@empty, 0x2}, {@broadcast}, {@broadcast}, {@private}, {@multicast1}, {@multicast1}]}, @lsrr={0x83, 0xb, 0x0, [@dev={0xac, 0x14, 0x14, 0x43}, @multicast1]}]}}}}}}}, 0x0)

297.615001ms ago: executing program 2 (id=6559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0xf, &(0x7f00000004c0)=@ringbuf={{}, {{}, {}, {}, {0x54}}, {}, [], {{0x7, 0x1, 0xb, 0x1, 0x9, 0x20}, {}, {0x85, 0x0, 0x0, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

227.362041ms ago: executing program 2 (id=6560):
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x101, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f0000000000)={0x0, 0x8, [@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}]})
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYBLOB="14000000f903010000000000000000000a00000a14000000110001b8251afb7e237789000000000a"], 0x28}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2, &(0x7f00000008c0)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xef}}, {@dioread_lock}, {@norecovery}, {@jqfmt_vfsv0}, {@lazytime}, {@noload}, {@lazytime}, {@noauto_da_alloc}]}, 0xfe, 0x568, &(0x7f0000000340)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={&(0x7f0000000240)="51940c305d0d33bca4b76d4c0572e3d3071cf716f379ed9cf6d56853a568379507b60fafa82171747f6d3f3c37f839cd54faf0c5bff4ebb4b05ffbccd746df8f932ed5b9c1c571be45544fe1bd9ae9c8ba2be40bfb7e09c8a2379e6945a6b6330b094f68d76f18d356a8057aef35f712e90b36a4217798db576f59ff0403c200141a6edba5b0c44c96edfb529ee998f40d0f6f266c52664bf46c46c193e31d3c810986b69d0ec3213f5901dcbda0f0d3c78eea5051e56e1133845c75a9d3752399d09da36db45f22ec42b05c0e4753026865f2c349cbfbd645e891f8c6882857e61b5b16fd0f8f994ab5d11b730bbfd215", &(0x7f0000000980)=""/168, &(0x7f0000000a40)="de20813a30a06a1ebd080e00a15d5fd9fde4dbcf9cb4643b9abe1c7dd160cf313e9f2626e5fcd518ed08646a9bb772010a5973c53efb762b6b668707178dab1f26ec54029f6d25832e5239e66cac4a22e946dfe6ac5bbaac6f2d0d18ea24068f1375dc560e09192a2e5dc17da689d03833cf298853c532dff64b06962fe433f621617e74faf3fb6d494f8a72bdb9af6e7ceec5bab9ee1a78a74103b3995e1374146c9d660d8c33cddbf340eadc980d8ca9c59392df85113172fe6258bb3a58ac60fa75b714b6f67aa6bf042bc8e864922732885d898054d8de0ce45f114a1bfbb8c29924b2c53ccf31508b6f2acf36a952ace35d115af9", &(0x7f0000000b40)="7f1e22b9921e8cf9078a602480a37741e1efc98db14b01a91cc2215175f750a61872b420d74b1ac2d60f34ad50b0b677560edaea799f0626e5f8476fbbc4850b44886224e0e2a825613784c933215938ad67587e6367a091fe9d7c64095685318113f68ac65642d00193f62213acfd03393e75", 0x6, r4}, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000001cc0)={'erspan0\x00', &(0x7f0000001bc0)={'erspan0\x00', <r5=>0x0, 0x8000, 0x80, 0x7ff, 0x100, {{0x31, 0x4, 0x0, 0x3f, 0xc4, 0x65, 0x0, 0x5, 0x29, 0x0, @local, @private=0xa010100, {[@timestamp={0x44, 0x8, 0xe6, 0x0, 0xf, [0x6c6]}, @rr={0x7, 0x7, 0x9c, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0x2c, 0x9, 0x0, 0xe, [0xffff, 0x5, 0x1, 0x3, 0x0, 0x3845, 0x4, 0xfff, 0x8, 0x5]}, @rr={0x7, 0x2b, 0xc8, [@rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x3a}, @broadcast, @remote, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @dev={0xac, 0x14, 0x14, 0x36}, @empty]}, @cipso={0x86, 0x34, 0x2, [{0x1, 0xf, "2aacfc7cd48ea9ffc296ed4dac"}, {0x0, 0x3, "ee"}, {0x6, 0x4, "b793"}, {0x6, 0x9, "66329044127db0"}, {0x7, 0xf, "e4a1b7f758ee24b362fbaefd2f"}]}, @generic={0x83, 0x5, "f0ac14"}, @generic={0x86, 0x10, "78f66939241d2c9c4ae90adf4831"}]}}}}})
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001e40)={0x6, 0x0, &(0x7f0000000100), &(0x7f00000001c0)='syzkaller\x00', 0x3, 0x1000, &(0x7f0000000bc0)=""/4096, 0x41100, 0x8, '\x00', r5, 0x25, r7, 0x8, &(0x7f0000001d00)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000001d40)={0x4, 0x9, 0x380000, 0x6d}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000001d80)=[r4], &(0x7f0000001dc0)=[{0x5, 0x3, 0xe, 0xc}, {0x0, 0x1, 0xa, 0x5}, {0x0, 0x4, 0xf, 0xc}, {0x1, 0x3, 0xc, 0x7}, {0x1, 0x5, 0x1, 0xa}, {0x4, 0x5, 0x5, 0xc}, {0x3, 0x5, 0xd, 0x5}, {0x2, 0x4, 0x4, 0xb}], 0x10, 0x80000001, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x7e, &(0x7f0000000540)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x8, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@empty, 0x2}, {@broadcast}, {@broadcast}, {@private}, {@multicast1}, {@multicast1}]}, @lsrr={0x83, 0xb, 0x0, [@dev={0xac, 0x14, 0x14, 0x43}, @multicast1]}]}}}}}}}, 0x0)

212.263121ms ago: executing program 5 (id=6561):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000080), &(0x7f00000000c0), 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000b80)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000f9dbdf253b0000000c0099000001000057000000040087001000cd3352cdeaab038f650080000300480033002020070008021100000008021100000150505050505001ff100009000c0211f9fc82421a618c03da4f6402000000d35676000000000000000000f5579c932f1d5a5114b3a62a1b9b940ef3e6839b0ed3ab477fa80fe6ff45a9604a2c"], 0x7c}, 0x1, 0x0, 0x0, 0x4840}, 0x40010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f0000000080), &(0x7f0000000180)=r5}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000000dc0)={0x60c, "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"})
write$UHID_CREATE2(r6, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x119)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x1, 0x7}, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000002300), 0x0, 0x14a042)
close_range(r2, 0xffffffffffffffff, 0x0)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000100), &(0x7f0000000140), 0x0)
r7 = openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0)
write(r7, &(0x7f0000000180)="01010101", 0x4)
close(r7)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f00000001c0), &(0x7f0000000200), 0x0)

148.303791ms ago: executing program 4 (id=6562):
socket$xdp(0x2c, 0x3, 0x0)
ioperm(0x0, 0x7ff, 0x7)
sync_file_range(0xffffffffffffffff, 0x6ba, 0x7, 0x4)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1, 0x0, 0x3, 0xfffffffe, 0x1, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x6282, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
tee(0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffc01, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x80, 0x1, 0x0, 0x0, 0x0, 0x80000005, 0x82122, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x0, 0x0, 0xc, 0xfffc, 0x0, 0xfffffff7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="31070000000000dbdf25380000000e0001"], 0x3c}, 0x1, 0x2, 0x0, 0x20040895}, 0x64000000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000200)=0x9, 0x8, 0x0)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001340)=@base={0x14, 0x4, 0x4, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = socket$inet(0x2, 0x2, 0x0)
pipe(&(0x7f0000001240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
dup2(r7, r6)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r6}, 0x20)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$usbip_server(r7, &(0x7f0000000240)=@ret_unlink={{0x4, 0x79a2, 0x0, 0x0, 0x3}, {0x5}}, 0x30)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r3], 0x1}, 0x58)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000340)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@dioread_lock}]}, 0xfc, 0x572, &(0x7f0000003780)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000180)=ANY=[], 0xfe37, 0x0)

123.40243ms ago: executing program 2 (id=6563):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'ip6tnl0\x00', <r0=>0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000700)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000000)=0xf3e, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000380)={0x1, 0x0, 0x100000, 0x0, r2})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x7, &(0x7f00000006c0)={0x1})
openat$null(0xffffffffffffff9c, &(0x7f0000000300), 0x10000, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000340)='V', 0x1, 0x4000801, &(0x7f0000000080)={0x11, 0x0, r0, 0x1, 0xfd, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfd}}, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r1, 0x0, 0x40002}, 0x18)
r5 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r5, &(0x7f0000000100)={&(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000290000006712f5282f60c5a9e504000000040000000000b4409b06c80ab7363ec172463fb01f001800000000000000290000000400"/71], 0x30}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r6, 0x0, 0x5, &(0x7f0000000000)={@local, @multicast2, 0xfffe, "66c5aff8a7eb3af1f6cec2e74200", 0x2, 0x0, 0x80}, 0x3c)
setsockopt$MRT_INIT(r6, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r7, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0x10}, 0x1c)

528.269µs ago: executing program 4 (id=6564):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f00000002c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data={0x4, 0x40003, 0x40000000}}}}}}, 0x0)

0s ago: executing program 4 (id=6565):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00')
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000a82866d4"], 0x48)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000140))
write$ppp(r3, 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r2, 0x0, 0xc, &(0x7f0000000180)=0x1, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmmsg(r2, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_opts(r4, 0x0, 0x9, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r1, 0x58, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000240)={r6, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r1, 0x4018f50b, &(0x7f0000000280)={0x0, 0x4, 0x4})
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="1400000010000100000000000000000000070000000000160a03020000000000000000020000000900020001040000000000000900010073797a300000000014000380080002400000000008000140000000001400000011000100", @ANYBLOB="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"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a01080000000000000000020000000900020073797a30000000000900010073797a3000000000140003"], 0x68}, 0x1, 0x0, 0x0, 0xc0d1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000001000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000d1a45d238e00557e59492a4db4e887d3857c357d8be919d13c4264934c04f9163a1d48158cbabb1abc300c2800eece2fc5070f6523a9479f52cd2c68addad72b9782adba69d7d75dba56c78e4018bfbab96872e64679fddd33074931d07b1fa99408595d6fa05fcc82370bb59de4524d8b79690e94ac824a0f61df47556b3cf2f8b42cf27074f19f"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

1a
[  243.020256][T17801]  should_fail_ex+0x223/0x230
[  243.024944][T17801]  should_fail+0xb/0x10
[  243.029129][T17801]  should_fail_usercopy+0x1a/0x20
[  243.034207][T17801]  _copy_to_user+0x20/0xa0
[  243.038668][T17801]  simple_read_from_buffer+0xa0/0x110
[  243.041356][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  243.044059][T17801]  proc_fail_nth_read+0xf9/0x140
[  243.063319][T17801]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  243.069039][T17801]  vfs_read+0x1a2/0x700
[  243.073396][T17801]  ? __rcu_read_unlock+0x4e/0x70
[  243.078349][T17801]  ? __fget_files+0x17c/0x1c0
[  243.083150][T17801]  ksys_read+0xe8/0x1b0
[  243.087310][T17801]  __x64_sys_read+0x42/0x50
[  243.091883][T17801]  x64_sys_call+0x2874/0x2dc0
[  243.096644][T17801]  do_syscall_64+0xc9/0x1c0
[  243.101234][T17801]  ? clear_bhb_loop+0x55/0xb0
[  243.105986][T17801]  ? clear_bhb_loop+0x55/0xb0
[  243.110685][T17801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.116586][T17801] RIP: 0033:0x7fdecd41e92c
[  243.121003][T17801] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  243.140732][T17801] RSP: 002b:00007fdecba76050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  243.149238][T17801] RAX: ffffffffffffffda RBX: 00007fdecd5e6080 RCX: 00007fdecd41e92c
[  243.157274][T17801] RDX: 000000000000000f RSI: 00007fdecba760b0 RDI: 0000000000000005
[  243.165266][T17801] RBP: 00007fdecba760a0 R08: 0000000000000000 R09: 0000000000000000
[  243.173253][T17801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.181324][T17801] R13: 0000000000000000 R14: 00007fdecd5e6080 R15: 00007ffc00b58b78
[  243.189313][T17801]  </TASK>
[  243.244968][T17807] netlink: 100 bytes leftover after parsing attributes in process `syz.1.5788'.
[  243.500322][T17826] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5787'.
[  243.549850][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  243.643285][ T3372] hid-generic 0000:0000:0000.00AD: unknown main item tag 0x0
[  243.661429][ T3372] hid-generic 0000:0000:0000.00AD: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  243.828235][T17845] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17845 comm=syz.3.5803
[  243.850947][T17847] 9pnet_fd: Insufficient options for proto=fd
[  243.905624][T17854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  243.914275][T17854] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  243.923523][T17854] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5807'.
[  244.077534][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  244.358324][T17875] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17875 comm=syz.0.5815
[  244.480954][T17883] SELinux:  policydb version 0 does not match my version range 15-33
[  244.489529][T17883] SELinux: failed to load policy
[  244.527434][T17879] loop0: detected capacity change from 0 to 512
[  244.541779][T17879] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  244.567970][T17879] EXT4-fs (loop0): invalid journal inode
[  244.582583][T17879] EXT4-fs (loop0): can't get journal size
[  244.590992][T17879] EXT4-fs (loop0): 1 truncate cleaned up
[  244.591448][T17879] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  244.595442][   T29] kauditd_printk_skb: 288 callbacks suppressed
[  244.595457][   T29] audit: type=1400 audit(1733456075.710:25861): avc:  denied  { setattr } for  pid=17878 comm="syz.0.5817" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  244.612197][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  244.632986][T10780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.758066][T17902] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17902 comm=syz.0.5826
[  244.880838][ T3372] hid-generic 0000:0000:0000.00AE: unknown main item tag 0x0
[  244.888813][ T3372] hid-generic 0000:0000:0000.00AE: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  244.934014][T17914] loop0: detected capacity change from 0 to 1024
[  244.953503][T17914] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.969236][   T29] audit: type=1400 audit(1733456076.090:25862): avc:  denied  { associate } for  pid=17906 comm="syz.1.5828" name="0" dev="devpts" ino=3 scontext=system_u:object_r:mouse_device_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  245.005568][   T29] audit: type=1400 audit(1733456076.110:25863): avc:  denied  { write } for  pid=17913 comm="syz.0.5832" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  245.030779][   T29] audit: type=1400 audit(1733456076.110:25864): avc:  denied  { add_name } for  pid=17913 comm="syz.0.5832" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  245.065068][   T29] audit: type=1400 audit(1733456076.120:25865): avc:  denied  { create } for  pid=17913 comm="syz.0.5832" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  245.120901][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  245.144150][   T29] audit: type=1400 audit(1733456076.260:25866): avc:  denied  { remove_name } for  pid=17913 comm="syz.0.5832" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  245.167076][   T29] audit: type=1400 audit(1733456076.260:25867): avc:  denied  { rename } for  pid=17913 comm="syz.0.5832" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  245.189592][   T29] audit: type=1400 audit(1733456076.260:25868): avc:  denied  { rmdir } for  pid=17913 comm="syz.0.5832" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  245.224298][   T29] audit: type=1400 audit(1733456076.260:25869): avc:  denied  { rename } for  pid=17913 comm="syz.0.5832" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  245.259069][   T29] audit: type=1400 audit(1733456076.260:25870): avc:  denied  { rmdir } for  pid=17913 comm="syz.0.5832" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  245.283112][T10780] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.312571][T17919] bond0: entered promiscuous mode
[  245.317645][T17919] bond0: entered allmulticast mode
[  245.323241][T17919] 8021q: adding VLAN 0 to HW filter on device bond0
[  245.333952][T17919] bond0 (unregistering): Released all slaves
[  245.418288][T17939] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17939 comm=syz.1.5837
[  245.639258][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  245.721575][T17966] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5848'.
[  245.893680][T17980] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17980 comm=syz.3.5852
[  245.947450][T17960] chnl_net:caif_netlink_parms(): no params data found
[  246.011412][    T8] hid-generic 0000:0000:0000.00AF: unknown main item tag 0x0
[  246.029586][    T8] hid-generic 0000:0000:0000.00AF: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  246.092227][T17960] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.099438][T17960] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.111779][T17960] bridge_slave_0: entered allmulticast mode
[  246.118349][T17960] bridge_slave_0: entered promiscuous mode
[  246.125957][T17960] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.133089][T17960] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.140494][T17960] bridge_slave_1: entered allmulticast mode
[  246.147063][T17960] bridge_slave_1: entered promiscuous mode
[  246.160694][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  246.183860][T17960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  246.204839][T17960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  246.229742][T17960] team0: Port device team_slave_0 added
[  246.236836][T17960] team0: Port device team_slave_1 added
[  246.256999][T17960] batman_adv: batadv0: Adding interface: batadv_slave_0
[  246.264099][T17960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  246.290156][T17960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  246.302077][T17960] batman_adv: batadv0: Adding interface: batadv_slave_1
[  246.309074][T17960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  246.335070][T17960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  246.367214][T17960] hsr_slave_0: entered promiscuous mode
[  246.373525][T17960] hsr_slave_1: entered promiscuous mode
[  246.382180][T17960] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  246.394443][T17960] Cannot create hsr debugfs directory
[  246.423551][T18002] netlink: 'syz.4.5860': attribute type 21 has an invalid length.
[  246.431543][T18002] netlink: 132 bytes leftover after parsing attributes in process `syz.4.5860'.
[  246.447318][T18002] veth0_to_team: entered promiscuous mode
[  246.453197][T18002] veth0_to_team: entered allmulticast mode
[  246.503887][T17960] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.551156][T17960] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.593532][T17960] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.645053][T17960] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.678632][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  246.753518][T17960] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  246.762029][T17960] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  246.770904][T17960] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  246.779906][T17960] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  246.814729][T17960] 8021q: adding VLAN 0 to HW filter on device bond0
[  246.827356][T17960] 8021q: adding VLAN 0 to HW filter on device team0
[  246.837041][ T6126] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.844214][ T6126] bridge0: port 1(bridge_slave_0) entered forwarding state
[  246.862352][ T6132] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.869519][ T6132] bridge0: port 2(bridge_slave_1) entered forwarding state
[  246.884268][T14088] hid-generic 0000:0000:0000.00B0: unknown main item tag 0x0
[  246.892775][T14088] hid-generic 0000:0000:0000.00B0: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  246.954373][T17960] 8021q: adding VLAN 0 to HW filter on device batadv0
[  247.029764][T17960] veth0_vlan: entered promiscuous mode
[  247.037894][T17960] veth1_vlan: entered promiscuous mode
[  247.057285][T17960] veth0_macvtap: entered promiscuous mode
[  247.067113][T17960] veth1_macvtap: entered promiscuous mode
[  247.080368][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.090872][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.100867][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.111399][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.121433][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.132043][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.141947][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.152574][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.162495][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.172992][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.182902][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.193389][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.203242][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.206145][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  247.213758][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.214973][T17960] batman_adv: batadv0: Interface activated: batadv_slave_0
[  247.265602][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.276215][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.286081][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.296627][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.306521][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.317080][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.326978][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.337461][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.347334][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.357815][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.367660][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.378149][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.388012][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  247.398550][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.409904][T17960] batman_adv: batadv0: Interface activated: batadv_slave_1
[  247.427421][T17960] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  247.436263][T17960] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  247.445055][T17960] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  247.453907][T17960] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  247.481994][T14088] hid-generic 0000:0000:0000.00B1: unknown main item tag 0x0
[  247.494520][T14088] hid-generic 0000:0000:0000.00B1: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  247.521584][T18046] loop1: detected capacity change from 0 to 256
[  247.622736][T18055] geneve0: entered allmulticast mode
[  247.632070][T18055] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5844'.
[  247.730477][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  247.746148][T18059] ref_ctr increment failed for inode: 0x21b offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881047c8540
[  247.774465][T18058] uprobe: syz.4.5877:18058 failed to unregister, leaking uprobe
[  247.876608][T18072] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18072 comm=syz.2.5884
[  247.925699][T18078] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18078 comm=syz.2.5887
[  248.121160][T18105] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  248.163214][T18114] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18114 comm=syz.4.5901
[  248.250631][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  248.324920][T18143] FAULT_INJECTION: forcing a failure.
[  248.324920][T18143] name failslab, interval 1, probability 0, space 0, times 0
[  248.337638][T18143] CPU: 1 UID: 0 PID: 18143 Comm: syz.4.5909 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  248.349916][T18143] Tainted: [W]=WARN
[  248.353881][T18143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  248.364044][T18143] Call Trace:
[  248.367430][T18143]  <TASK>
[  248.370381][T18143]  dump_stack_lvl+0xf2/0x150
[  248.375015][T18143]  dump_stack+0x15/0x1a
[  248.379257][T18143]  should_fail_ex+0x223/0x230
[  248.384075][T18143]  should_failslab+0x8f/0xb0
[  248.388756][T18143]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  248.394624][T18143]  ? __d_alloc+0x3d/0x340
[  248.399044][T18143]  __d_alloc+0x3d/0x340
[  248.403310][T18143]  d_alloc_parallel+0x54/0xc60
[  248.408103][T18143]  ? selinux_inode_permission+0x341/0x410
[  248.413888][T18143]  ? lockref_get_not_dead+0x118/0x1b0
[  248.419342][T18143]  ? down_read+0x171/0x4b0
[  248.423840][T18143]  __lookup_slow+0x8d/0x250
[  248.428382][T18143]  lookup_slow+0x3c/0x60
[  248.432701][T18143]  walk_component+0x1f5/0x230
[  248.437387][T18143]  ? path_lookupat+0xfd/0x2b0
[  248.442150][T18143]  path_lookupat+0x10a/0x2b0
[  248.446755][T18143]  filename_lookup+0x150/0x340
[  248.451610][T18143]  user_path_at+0x3c/0x120
[  248.456038][T18143]  __se_sys_inotify_add_watch+0x10f/0x790
[  248.461776][T18143]  ? fput+0x1c4/0x200
[  248.465769][T18143]  ? ksys_write+0x176/0x1b0
[  248.470289][T18143]  __x64_sys_inotify_add_watch+0x43/0x50
[  248.475938][T18143]  x64_sys_call+0x1f6d/0x2dc0
[  248.480736][T18143]  do_syscall_64+0xc9/0x1c0
[  248.485243][T18143]  ? clear_bhb_loop+0x55/0xb0
[  248.489948][T18143]  ? clear_bhb_loop+0x55/0xb0
[  248.494718][T18143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.500716][T18143] RIP: 0033:0x7f01d58eff19
[  248.505147][T18143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.524764][T18143] RSP: 002b:00007f01d3f46058 EFLAGS: 00000246 ORIG_RAX: 00000000000000fe
[  248.533324][T18143] RAX: ffffffffffffffda RBX: 00007f01d5ab6080 RCX: 00007f01d58eff19
[  248.541310][T18143] RDX: 0000000004000010 RSI: 0000000020000380 RDI: 0000000000000006
[  248.549309][T18143] RBP: 00007f01d3f460a0 R08: 0000000000000000 R09: 0000000000000000
[  248.557294][T18143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.565328][T18143] R13: 0000000000000000 R14: 00007f01d5ab6080 R15: 00007ffdd6e62af8
[  248.573392][T18143]  </TASK>
[  248.770939][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  248.897872][T18151] chnl_net:caif_netlink_parms(): no params data found
[  248.992421][T18151] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.999591][T18151] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.012595][T18151] bridge_slave_0: entered allmulticast mode
[  249.026977][T18151] bridge_slave_0: entered promiscuous mode
[  249.045056][T18151] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.052293][T18151] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.077833][T18151] bridge_slave_1: entered allmulticast mode
[  249.090367][T18170] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18170 comm=syz.3.5917
[  249.138922][T18151] bridge_slave_1: entered promiscuous mode
[  249.153561][T18173] loop1: detected capacity change from 0 to 512
[  249.183801][T18151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  249.201253][T18151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  249.229734][T18151] team0: Port device team_slave_0 added
[  249.236196][T18176] FAULT_INJECTION: forcing a failure.
[  249.236196][T18176] name failslab, interval 1, probability 0, space 0, times 0
[  249.239487][T18151] team0: Port device team_slave_1 added
[  249.248915][T18176] CPU: 1 UID: 0 PID: 18176 Comm: syz.3.5920 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  249.266713][T18176] Tainted: [W]=WARN
[  249.270519][T18176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  249.280595][T18176] Call Trace:
[  249.283879][T18176]  <TASK>
[  249.286815][T18176]  dump_stack_lvl+0xf2/0x150
[  249.291475][T18176]  dump_stack+0x15/0x1a
[  249.295809][T18176]  should_fail_ex+0x223/0x230
[  249.300497][T18176]  should_failslab+0x8f/0xb0
[  249.305123][T18176]  kmem_cache_alloc_noprof+0x52/0x320
[  249.310531][T18176]  ? getname_flags+0x81/0x3b0
[  249.315232][T18176]  getname_flags+0x81/0x3b0
[  249.319743][T18176]  getname_uflags+0x24/0x30
[  249.324255][T18176]  __x64_sys_execveat+0x5e/0x90
[  249.329215][T18176]  x64_sys_call+0x291e/0x2dc0
[  249.333901][T18176]  do_syscall_64+0xc9/0x1c0
[  249.338459][T18176]  ? clear_bhb_loop+0x55/0xb0
[  249.343160][T18176]  ? clear_bhb_loop+0x55/0xb0
[  249.347843][T18176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.353772][T18176] RIP: 0033:0x7ff9b297ff19
[  249.358188][T18176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.377802][T18176] RSP: 002b:00007ff9b0ff7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  249.386325][T18176] RAX: ffffffffffffffda RBX: 00007ff9b2b45fa0 RCX: 00007ff9b297ff19
[  249.394300][T18176] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  249.402275][T18176] RBP: 00007ff9b0ff70a0 R08: 0000000000001000 R09: 0000000000000000
[  249.410253][T18176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.418238][T18176] R13: 0000000000000000 R14: 00007ff9b2b45fa0 R15: 00007fffe4ca84c8
[  249.426225][T18176]  </TASK>
[  249.433976][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  249.464401][T18151] batman_adv: batadv0: Adding interface: batadv_slave_0
[  249.471474][T18151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.497447][T18151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  249.501386][T18173] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.528674][T18173] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.532687][T18130] syz.4.5909 (18130) used greatest stack depth: 7184 bytes left
[  249.552660][T18151] batman_adv: batadv0: Adding interface: batadv_slave_1
[  249.559722][T18151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.586044][T18151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  249.606001][T17960] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.642422][T18151] hsr_slave_0: entered promiscuous mode
[  249.649209][T18151] hsr_slave_1: entered promiscuous mode
[  249.668720][   T29] kauditd_printk_skb: 59 callbacks suppressed
[  249.668737][   T29] audit: type=1326 audit(1733456080.780:25930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18199 comm="syz.1.5928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  249.698568][   T29] audit: type=1326 audit(1733456080.780:25931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18199 comm="syz.1.5928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  249.713469][T18202] loop1: detected capacity change from 0 to 512
[  249.722446][   T29] audit: type=1326 audit(1733456080.780:25932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18199 comm="syz.1.5928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  249.730414][T18202] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  249.751961][   T29] audit: type=1326 audit(1733456080.780:25933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18199 comm="syz.1.5928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  249.785670][T18151] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  249.793338][T18151] Cannot create hsr debugfs directory
[  249.802048][T18202] EXT4-fs (loop1): 1 truncate cleaned up
[  249.808118][T18202] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.944872][T18151] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.955389][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  250.012184][T18151] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.057588][   T29] audit: type=1400 audit(1733456081.170:25934): avc:  denied  { create } for  pid=18201 comm="syz.1.5929" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  250.063701][T18223] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18223 comm=syz.2.5937
[  250.078724][   T29] audit: type=1400 audit(1733456081.170:25935): avc:  denied  { read write } for  pid=18201 comm="syz.1.5929" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  250.113455][   T29] audit: type=1400 audit(1733456081.170:25936): avc:  denied  { open } for  pid=18201 comm="syz.1.5929" path="/17/bus/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  250.141061][T17960] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.141772][T18225] syz.4.5938[18225] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  250.150270][T18225] syz.4.5938[18225] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  250.161818][T18225] syz.4.5938[18225] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  250.175920][T18151] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.262027][T18151] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.461925][T18151] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  250.481491][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  250.504801][T18151] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  250.517245][T18151] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  250.537522][T18151] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  250.547823][   T29] audit: type=1326 audit(1733456081.660:25937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18248 comm="syz.1.5948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  250.571507][   T29] audit: type=1326 audit(1733456081.660:25938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18248 comm="syz.1.5948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  250.613590][T18249] loop1: detected capacity change from 0 to 1024
[  250.623767][   T29] audit: type=1326 audit(1733456081.710:25939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18248 comm="syz.1.5948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  250.665622][T18151] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.675830][T18249] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.681665][T18151] 8021q: adding VLAN 0 to HW filter on device team0
[  250.701462][ T6143] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.708699][ T6143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  250.719398][ T6147] bridge0: port 2(bridge_slave_1) entered blocking state
[  250.726462][ T6147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  250.735239][T18249] EXT4-fs (loop1): shut down requested (0)
[  250.746293][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  250.755691][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  250.764745][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  250.771238][T18151] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  250.774565][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[  250.784051][T18151] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  250.807196][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  250.816805][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=15
[  250.825857][T18249] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[  250.867973][T17960] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.871607][T18151] 8021q: adding VLAN 0 to HW filter on device batadv0
[  250.984978][T18151] veth0_vlan: entered promiscuous mode
[  251.002285][T18151] veth1_vlan: entered promiscuous mode
[  251.002294][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  251.037013][T18151] veth0_macvtap: entered promiscuous mode
[  251.046351][T18151] veth1_macvtap: entered promiscuous mode
[  251.059157][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.069636][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.079545][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.090459][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.100352][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.110817][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.120662][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.131112][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.141015][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.151535][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.161381][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.164455][T18289] FAULT_INJECTION: forcing a failure.
[  251.164455][T18289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  251.171941][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.172034][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.172067][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.172082][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.172100][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.185267][T18289] CPU: 0 UID: 0 PID: 18289 Comm: syz.1.5958 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  251.197195][T18151] batman_adv: batadv0: Interface activated: batadv_slave_0
[  251.205410][T18289] Tainted: [W]=WARN
[  251.205419][T18289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  251.205434][T18289] Call Trace:
[  251.216940][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.225656][T18289]  <TASK>
[  251.235516][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.247672][T18289]  dump_stack_lvl+0xf2/0x150
[  251.254870][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.254897][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.258691][T18289]  dump_stack+0x15/0x1a
[  251.268749][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.271997][T18289]  should_fail_ex+0x223/0x230
[  251.282649][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.285308][T18289]  should_fail+0xb/0x10
[  251.295117][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.299655][T18289]  should_fail_usercopy+0x1a/0x20
[  251.310328][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.320121][T18289]  _copy_from_user+0x1e/0xb0
[  251.324281][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.324361][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.324376][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.334835][T18289]  copy_msghdr_from_user+0x54/0x2a0
[  251.334874][T18289]  ? __fget_files+0x17c/0x1c0
[  251.339552][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.349339][T18289]  __sys_sendmmsg+0x1e8/0x4b0
[  251.353503][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.363908][T18289]  __x64_sys_sendmmsg+0x57/0x70
[  251.369003][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.378770][T18289]  x64_sys_call+0x29aa/0x2dc0
[  251.378879][T18289]  do_syscall_64+0xc9/0x1c0
[  251.378902][T18289]  ? clear_bhb_loop+0x55/0xb0
[  251.383573][T18151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.393977][T18289]  ? clear_bhb_loop+0x55/0xb0
[  251.403775][T18151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.405921][T18151] batman_adv: batadv0: Interface activated: batadv_slave_1
[  251.414269][T18289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.414335][T18289] RIP: 0033:0x7f02c5e5ff19
[  251.414361][T18289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.414382][T18289] RSP: 002b:00007f02c44d7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  251.414405][T18289] RAX: ffffffffffffffda RBX: 00007f02c6025fa0 RCX: 00007f02c5e5ff19
[  251.414421][T18289] RDX: 0000000000000651 RSI: 0000000020000000 RDI: 0000000000000007
[  251.414437][T18289] RBP: 00007f02c44d70a0 R08: 0000000000000000 R09: 0000000000000000
[  251.422036][T18151] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.424305][T18289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  251.424325][T18289] R13: 0000000000000000 R14: 00007f02c6025fa0 R15: 00007ffe70082f48
[  251.434180][T18151] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.438833][T18289]  </TASK>
[  251.511006][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  251.516243][T18151] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.632992][T18151] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.692991][T18299] x_tables: duplicate underflow at hook 3
[  251.706410][T18299] af_packet: tpacket_rcv: packet too big, clamped from 86 to 4294967286. macoff=82
[  251.817461][T18306] loop0: detected capacity change from 0 to 512
[  251.826554][T18306] EXT4-fs: Ignoring removed oldalloc option
[  251.886998][T18313] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18313 comm=syz.4.5966
[  251.951685][T18321] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18321 comm=syz.4.5968
[  251.975138][T18306] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.5914: Parent and EA inode have the same ino 15
[  252.010731][T18306] EXT4-fs (loop0): Remounting filesystem read-only
[  252.017319][T18306] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  252.035981][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  252.056216][T18327] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18327 comm=syz.1.5969
[  252.086458][T18306] EXT4-fs (loop0): 1 orphan inode deleted
[  252.109778][T18306] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  252.132691][T18306] SELinux: (dev loop0, type ext4) getxattr errno 5
[  252.142013][T18306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.206767][T18341] netlink: 'syz.2.5974': attribute type 3 has an invalid length.
[  252.268920][T18345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  252.277448][T18345] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  252.326598][T18348] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5979'.
[  252.335649][T18348] tipc: Started in network mode
[  252.340617][T18348] tipc: Node identity @, cluster identity 4711
[  252.360587][T18354] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  252.370049][T18354] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[  252.412235][    T8] hid-generic 0000:0000:0000.00B2: unknown main item tag 0x0
[  252.420111][    T8] hid-generic 0000:0000:0000.00B2: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  252.464953][T18366] syz.2.5985[18366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  252.465063][T18366] syz.2.5985[18366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  252.479815][T18366] syz.2.5985[18366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  252.563649][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  252.629134][T18303] syz.0.5914 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  252.643372][T18303] CPU: 1 UID: 0 PID: 18303 Comm: syz.0.5914 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  252.655785][T18303] Tainted: [W]=WARN
[  252.659577][T18303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  252.669704][T18303] Call Trace:
[  252.673067][T18303]  <TASK>
[  252.675995][T18303]  dump_stack_lvl+0xf2/0x150
[  252.680623][T18303]  dump_stack+0x15/0x1a
[  252.684794][T18303]  dump_header+0x83/0x2d0
[  252.689203][T18303]  oom_kill_process+0x341/0x4c0
[  252.694219][T18303]  out_of_memory+0x9af/0xbe0
[  252.698902][T18303]  ? css_next_descendant_pre+0x11c/0x140
[  252.704614][T18303]  mem_cgroup_out_of_memory+0x13e/0x190
[  252.710341][T18303]  try_charge_memcg+0x508/0x7f0
[  252.715215][T18303]  obj_cgroup_charge_pages+0xbd/0x1a0
[  252.720612][T18303]  __memcg_kmem_charge_page+0x9d/0x170
[  252.726087][T18303]  __alloc_pages_noprof+0x1bc/0x340
[  252.731336][T18303]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  252.736718][T18303]  alloc_pages_noprof+0xe1/0x100
[  252.741717][T18303]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  252.747609][T18303]  __kvmalloc_node_noprof+0x121/0x170
[  252.753006][T18303]  ? ip_set_alloc+0x1f/0x30
[  252.757586][T18303]  ip_set_alloc+0x1f/0x30
[  252.761944][T18303]  hash_netiface_create+0x273/0x730
[  252.767190][T18303]  ? __nla_parse+0x40/0x60
[  252.771758][T18303]  ? __pfx_hash_netiface_create+0x10/0x10
[  252.777542][T18303]  ip_set_create+0x359/0x8a0
[  252.782227][T18303]  ? memchr+0x1/0x50
[  252.786173][T18303]  ? __nla_parse+0x40/0x60
[  252.790732][T18303]  nfnetlink_rcv_msg+0x4a9/0x570
[  252.795725][T18303]  netlink_rcv_skb+0x12c/0x230
[  252.800548][T18303]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  252.806037][T18303]  nfnetlink_rcv+0x16c/0x15d0
[  252.810744][T18303]  ? kmem_cache_free+0xdc/0x2d0
[  252.815612][T18303]  ? nlmon_xmit+0x51/0x60
[  252.819948][T18303]  ? __kfree_skb+0x102/0x150
[  252.824543][T18303]  ? consume_skb+0x49/0x160
[  252.829122][T18303]  ? nlmon_xmit+0x51/0x60
[  252.833477][T18303]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  252.838777][T18303]  ? __dev_queue_xmit+0xb6e/0x2090
[  252.844007][T18303]  ? exc_page_fault+0x4fc/0x650
[  252.848879][T18303]  ? ref_tracker_free+0x3a5/0x410
[  252.853913][T18303]  ? __dev_queue_xmit+0x186/0x2090
[  252.859141][T18303]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  252.864615][T18303]  netlink_unicast+0x599/0x670
[  252.869407][T18303]  netlink_sendmsg+0x5cc/0x6e0
[  252.874218][T18303]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.879517][T18303]  __sock_sendmsg+0x140/0x180
[  252.884209][T18303]  ____sys_sendmsg+0x312/0x410
[  252.888999][T18303]  __sys_sendmsg+0x19d/0x230
[  252.893675][T18303]  __x64_sys_sendmsg+0x46/0x50
[  252.898446][T18303]  x64_sys_call+0x2734/0x2dc0
[  252.903234][T18303]  do_syscall_64+0xc9/0x1c0
[  252.907740][T18303]  ? clear_bhb_loop+0x55/0xb0
[  252.912543][T18303]  ? clear_bhb_loop+0x55/0xb0
[  252.917242][T18303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.923170][T18303] RIP: 0033:0x7f553b6dff19
[  252.927601][T18303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  252.947221][T18303] RSP: 002b:00007f5539d57058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  252.955750][T18303] RAX: ffffffffffffffda RBX: 00007f553b8a5fa0 RCX: 00007f553b6dff19
[  252.963784][T18303] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000006
[  252.971850][T18303] RBP: 00007f553b753986 R08: 0000000000000000 R09: 0000000000000000
[  252.979920][T18303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  252.987894][T18303] R13: 0000000000000000 R14: 00007f553b8a5fa0 R15: 00007ffd694350f8
[  252.995877][T18303]  </TASK>
[  252.999672][T18303] memory: usage 307200kB, limit 307200kB, failcnt 218
[  253.006473][T18303] memory+swap: usage 307576kB, limit 9007199254740988kB, failcnt 0
[  253.014682][T18303] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  253.022112][T18303] Memory cgroup stats for /syz0:
[  253.023158][T18303] cache 0
[  253.031142][T18303] rss 0
[  253.033966][T18303] shmem 0
[  253.036919][T18303] mapped_file 0
[  253.040443][T18303] dirty 0
[  253.043388][T18303] writeback 0
[  253.046699][T18303] workingset_refault_anon 41
[  253.051387][T18303] workingset_refault_file 65
[  253.056085][T18303] swap 385024
[  253.059497][T18303] swapcached 0
[  253.063008][T18303] pgpgin 239179
[  253.066474][T18303] pgpgout 239179
[  253.070289][T18303] pgfault 298726
[  253.074107][T18303] pgmajfault 44
[  253.077605][T18303] inactive_anon 0
[  253.081304][T18303] active_anon 0
[  253.084836][T18303] inactive_file 0
[  253.088631][T18303] active_file 0
[  253.092281][T18303] unevictable 0
[  253.095792][T18303] hierarchical_memory_limit 314572800
[  253.101336][T18303] hierarchical_memsw_limit 9223372036854771712
[  253.107564][T18303] total_cache 0
[  253.111112][T18303] total_rss 0
[  253.114401][T18303] total_shmem 0
[  253.117879][T18303] total_mapped_file 0
[  253.121971][T18303] total_dirty 0
[  253.125479][T18303] total_writeback 0
[  253.129332][T18303] total_workingset_refault_anon 41
[  253.130941][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  253.134436][T18303] total_workingset_refault_file 65
[  253.134518][T18303] total_swap 385024
[  253.157947][T18303] total_swapcached 0
[  253.161965][T18303] total_pgpgin 239180
[  253.165971][T18303] total_pgpgout 239180
[  253.170228][T18303] total_pgfault 298728
[  253.174469][T18303] total_pgmajfault 44
[  253.178497][T18303] total_inactive_anon 0
[  253.182782][T18303] total_active_anon 0
[  253.186784][T18303] total_inactive_file 0
[  253.190983][T18303] total_active_file 0
[  253.194615][T18381] loop1: detected capacity change from 0 to 764
[  253.194963][T18303] total_unevictable 0
[  253.194975][T18303] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0
[  253.205295][T18303] ,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.5914,pid=18302,uid=0
[  253.222648][T18303] Memory cgroup out of memory: Killed process 18302 (syz.0.5914) total-vm:93208kB, anon-rss:736kB, file-rss:22436kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  253.500846][ T3373] hid-generic 0000:0000:0000.00B3: unknown main item tag 0x0
[  253.515132][ T3373] hid-generic 0000:0000:0000.00B3: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  253.589427][T18426] tmpfs: Bad value for 'mpol'
[  253.622746][T18428] netlink: 3 bytes leftover after parsing attributes in process `syz.4.6008'.
[  253.645955][T18428] 0ªX¹¦À: renamed from caif0
[  253.658198][T18428] 0ªX¹¦À: entered allmulticast mode
[  253.663506][T18428] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  253.679542][T18303] syz.0.5914 (18303) used greatest stack depth: 6360 bytes left
[  253.681300][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  253.711088][T18428] SELinux: failed to load policy
[  253.805217][T18456] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18456 comm=syz.1.6020
[  253.849675][T18458] tmpfs: Bad value for 'mpol'
[  253.903631][    T8] hid-generic 0000:0000:0000.00B4: unknown main item tag 0x0
[  253.913985][    T8] hid-generic 0000:0000:0000.00B4: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  253.967673][T18490] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18490 comm=syz.3.6034
[  254.068554][T18507] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6041'.
[  254.133477][T18516] FAULT_INJECTION: forcing a failure.
[  254.133477][T18516] name failslab, interval 1, probability 0, space 0, times 0
[  254.146282][T18516] CPU: 0 UID: 0 PID: 18516 Comm: syz.0.6045 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  254.158591][T18516] Tainted: [W]=WARN
[  254.162407][T18516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  254.172515][T18516] Call Trace:
[  254.175811][T18516]  <TASK>
[  254.178753][T18516]  dump_stack_lvl+0xf2/0x150
[  254.183379][T18516]  dump_stack+0x15/0x1a
[  254.187728][T18516]  should_fail_ex+0x223/0x230
[  254.192478][T18516]  should_failslab+0x8f/0xb0
[  254.197103][T18516]  kmem_cache_alloc_node_noprof+0x59/0x320
[  254.203073][T18516]  ? __alloc_skb+0x10b/0x310
[  254.207723][T18516]  __alloc_skb+0x10b/0x310
[  254.212223][T18516]  netlink_alloc_large_skb+0xad/0xe0
[  254.217541][T18516]  netlink_sendmsg+0x3b4/0x6e0
[  254.222401][T18516]  ? __pfx_netlink_sendmsg+0x10/0x10
[  254.227756][T18516]  __sock_sendmsg+0x140/0x180
[  254.232516][T18516]  ____sys_sendmsg+0x312/0x410
[  254.237281][T18516]  __sys_sendmsg+0x19d/0x230
[  254.241881][T18516]  __x64_sys_sendmsg+0x46/0x50
[  254.246658][T18516]  x64_sys_call+0x2734/0x2dc0
[  254.249062][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  254.251441][T18516]  do_syscall_64+0xc9/0x1c0
[  254.270217][T18516]  ? clear_bhb_loop+0x55/0xb0
[  254.274960][T18516]  ? clear_bhb_loop+0x55/0xb0
[  254.279632][T18516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.285535][T18516] RIP: 0033:0x7f553b6dff19
[  254.290033][T18516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.309668][T18516] RSP: 002b:00007f5539d57058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  254.318110][T18516] RAX: ffffffffffffffda RBX: 00007f553b8a5fa0 RCX: 00007f553b6dff19
[  254.326115][T18516] RDX: 0000000024044060 RSI: 0000000020000300 RDI: 0000000000000003
[  254.334121][T18516] RBP: 00007f5539d570a0 R08: 0000000000000000 R09: 0000000000000000
[  254.342114][T18516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  254.350109][T18516] R13: 0000000000000000 R14: 00007f553b8a5fa0 R15: 00007ffd694350f8
[  254.358163][T18516]  </TASK>
[  254.363893][   T35] hid-generic 0000:0000:0000.00B5: unknown main item tag 0x0
[  254.372316][   T35] hid-generic 0000:0000:0000.00B5: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  254.398092][   T35] hid-generic 0000:0000:0000.00B6: unknown main item tag 0x0
[  254.406193][   T35] hid-generic 0000:0000:0000.00B6: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  254.749202][   T29] kauditd_printk_skb: 103 callbacks suppressed
[  254.749221][   T29] audit: type=1326 audit(1733456085.870:26043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18539 comm="syz.1.6054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  254.779156][   T29] audit: type=1326 audit(1733456085.870:26044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18539 comm="syz.1.6054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  254.802762][   T29] audit: type=1326 audit(1733456085.870:26045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18539 comm="syz.1.6054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  254.805422][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  254.826345][   T29] audit: type=1326 audit(1733456085.870:26046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18539 comm="syz.1.6054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  254.864212][   T29] audit: type=1326 audit(1733456085.870:26047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18539 comm="syz.1.6054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  254.900158][   T35] hid-generic 0000:0000:0000.00B7: unknown main item tag 0x0
[  254.907947][   T35] hid-generic 0000:0000:0000.00B7: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.068947][ T3373] hid-generic 0000:0000:0000.00B8: unknown main item tag 0x0
[  255.076468][   T29] audit: type=1326 audit(1733456086.190:26048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18552 comm="syz.3.6059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  255.100099][T18555] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6060'.
[  255.113124][   T29] audit: type=1326 audit(1733456086.190:26049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18552 comm="syz.3.6059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  255.137633][ T3373] hid-generic 0000:0000:0000.00B8: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.154071][   T29] audit: type=1326 audit(1733456086.190:26050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18552 comm="syz.3.6059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  255.265163][    T8] hid-generic 0000:0000:0000.00B9: unknown main item tag 0x0
[  255.273947][    T8] hid-generic 0000:0000:0000.00B9: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.319994][T18572] Process accounting resumed
[  255.349216][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  255.401764][    T8] hid-generic 0000:0000:0000.00BA: unknown main item tag 0x0
[  255.409629][    T8] hid-generic 0000:0000:0000.00BA: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.620694][    T8] hid-generic 0000:0000:0000.00BB: unknown main item tag 0x0
[  255.628967][    T8] hid-generic 0000:0000:0000.00BB: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.795036][T18592] loop1: detected capacity change from 0 to 512
[  255.810845][T18592] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.823689][T18592] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.868925][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  255.894482][T17960] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.927053][ T3372] hid-generic 0000:0000:0000.00BC: unknown main item tag 0x0
[  255.935057][ T3372] hid-generic 0000:0000:0000.00BC: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  256.133191][ T3372] hid-generic 0000:0000:0000.00BD: unknown main item tag 0x0
[  256.141434][ T3372] hid-generic 0000:0000:0000.00BD: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  256.338464][ T3372] hid-generic 0000:0000:0000.00BE: unknown main item tag 0x0
[  256.346300][ T3372] hid-generic 0000:0000:0000.00BE: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  256.398642][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  256.489500][T18629] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18629 comm=syz.0.6089
[  256.509458][T18629] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6089'.
[  256.744903][T18651] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6098'.
[  256.852620][T18662] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18662 comm=syz.4.6102
[  256.869073][T18662] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6102'.
[  256.938991][ T3434] hid-generic 0000:0000:0000.00BF: unknown main item tag 0x0
[  256.946965][ T3434] hid-generic 0000:0000:0000.00BF: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  256.975337][T18676] team0: Device gtp0 is of different type
[  256.982328][T18678] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6110'.
[  257.104821][T18695] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18695 comm=syz.3.6117
[  257.117759][T18697] loop0: detected capacity change from 0 to 512
[  257.123135][T18695] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6117'.
[  257.125078][T18697] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  257.144565][T18697] EXT4-fs (loop0): 1 truncate cleaned up
[  257.151970][T18697] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.191364][   T29] audit: type=1400 audit(1733456088.310:26051): avc:  denied  { write } for  pid=18696 comm="syz.0.6118" name="cgroup.controllers" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  257.214987][   T29] audit: type=1400 audit(1733456088.310:26052): avc:  denied  { map } for  pid=18696 comm="syz.0.6118" path="/35/file2/cgroup.controllers" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  257.261007][T18706] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6122'.
[  257.274341][T18151] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.429042][T18717] netlink: 'syz.0.6126': attribute type 10 has an invalid length.
[  257.432959][   T52] net_ratelimit: 2 callbacks suppressed
[  257.433013][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  257.433365][T18717] geneve1: entered promiscuous mode
[  257.567800][T18717] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  257.581916][T18728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6124'.
[  257.912915][    T8] hid-generic 0000:0000:0000.00C0: unknown main item tag 0x0
[  257.913241][    T8] hid-generic 0000:0000:0000.00C0: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  257.939063][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  257.987262][T18745] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6135'.
[  258.285003][   T35] hid-generic 0000:0000:0000.00C1: unknown main item tag 0x0
[  258.285295][   T35] hid-generic 0000:0000:0000.00C1: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  258.335296][T18778] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6146'.
[  258.357286][T18775] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6147'.
[  258.406360][T18786] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  258.421481][T18786] team0: Device gtp0 is of different type
[  258.493170][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  258.693072][T18792] netlink: 64 bytes leftover after parsing attributes in process `syz.3.6152'.
[  258.708916][T18803] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6153'.
[  259.008550][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  259.070454][T18818] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6161'.
[  259.173340][T18829] FAULT_INJECTION: forcing a failure.
[  259.173340][T18829] name failslab, interval 1, probability 0, space 0, times 0
[  259.186195][T18829] CPU: 1 UID: 0 PID: 18829 Comm: syz.2.6157 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  259.198520][T18829] Tainted: [W]=WARN
[  259.202353][T18829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  259.212450][T18829] Call Trace:
[  259.215744][T18829]  <TASK>
[  259.218746][T18829]  dump_stack_lvl+0xf2/0x150
[  259.223399][T18829]  dump_stack+0x15/0x1a
[  259.227661][T18829]  should_fail_ex+0x223/0x230
[  259.232398][T18829]  ? resv_map_alloc+0x32/0x190
[  259.237184][T18829]  should_failslab+0x8f/0xb0
[  259.241819][T18829]  __kmalloc_cache_noprof+0x4e/0x320
[  259.247116][T18829]  ? vfs_write+0x596/0x920
[  259.251637][T18829]  resv_map_alloc+0x32/0x190
[  259.256235][T18829]  hugetlbfs_get_inode+0x64/0x380
[  259.261270][T18829]  hugetlb_file_setup+0x188/0x3c0
[  259.266320][T18829]  ksys_mmap_pgoff+0x172/0x330
[  259.271173][T18829]  x64_sys_call+0x1940/0x2dc0
[  259.275906][T18829]  do_syscall_64+0xc9/0x1c0
[  259.280413][T18829]  ? clear_bhb_loop+0x55/0xb0
[  259.285095][T18829]  ? clear_bhb_loop+0x55/0xb0
[  259.289775][T18829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.295763][T18829] RIP: 0033:0x7fdecd41ff19
[  259.300182][T18829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.319805][T18829] RSP: 002b:00007fdecba55058 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  259.328235][T18829] RAX: ffffffffffffffda RBX: 00007fdecd5e6160 RCX: 00007fdecd41ff19
[  259.336208][T18829] RDX: 0000000001000002 RSI: 0000000000800000 RDI: 0000000020800000
[  259.344182][T18829] RBP: 00007fdecba550a0 R08: ffffffffffffffff R09: 0000000000000000
[  259.352174][T18829] R10: 0000000000042031 R11: 0000000000000246 R12: 0000000000000001
[  259.360176][T18829] R13: 0000000000000000 R14: 00007fdecd5e6160 R15: 00007ffc00b58b78
[  259.368204][T18829]  </TASK>
[  259.463051][T18837] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18837 comm=syz.1.6167
[  259.530750][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  259.582280][T18846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6173'.
[  259.769236][   T29] kauditd_printk_skb: 36 callbacks suppressed
[  259.769251][   T29] audit: type=1326 audit(1733456090.890:26089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18866 comm="syz.4.6182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  259.809192][T18861] syz.1.6179[18861] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  259.809257][T18861] syz.1.6179[18861] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  259.843673][   T29] audit: type=1326 audit(1733456090.890:26090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18866 comm="syz.4.6182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  259.872528][T18870] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18870 comm=syz.0.6183
[  259.878850][   T29] audit: type=1326 audit(1733456090.890:26091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18866 comm="syz.4.6182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  259.914884][   T29] audit: type=1326 audit(1733456090.890:26092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18866 comm="syz.4.6182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  259.938656][   T29] audit: type=1326 audit(1733456090.890:26093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18866 comm="syz.4.6182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  259.962121][   T29] audit: type=1326 audit(1733456090.930:26094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18858 comm="syz.1.6179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  259.986725][   T29] audit: type=1326 audit(1733456090.930:26095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18858 comm="syz.1.6179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  260.010375][   T29] audit: type=1326 audit(1733456090.930:26096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18858 comm="syz.1.6179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  260.034050][T18861] syz.1.6179[18861] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  260.051352][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  260.102441][   T29] audit: type=1326 audit(1733456091.150:26097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18858 comm="syz.1.6179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  260.126217][   T29] audit: type=1326 audit(1733456091.150:26098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18858 comm="syz.1.6179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02c5e5ff19 code=0x7ffc0000
[  260.229732][T18878] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6187'.
[  260.375983][ T3434] hid-generic 0000:0000:0000.00C2: unknown main item tag 0x0
[  260.389047][ T3434] hid-generic 0000:0000:0000.00C2: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  260.556861][T18912] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6201'.
[  260.580750][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  260.626419][   T24] hid-generic 0000:0000:0000.00C3: unknown main item tag 0x0
[  260.634140][   T24] hid-generic 0000:0000:0000.00C3: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  261.109368][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  261.330801][T18928] chnl_net:caif_netlink_parms(): no params data found
[  261.366125][T18928] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.373373][T18928] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.380630][T18928] bridge_slave_0: entered allmulticast mode
[  261.386991][T18928] bridge_slave_0: entered promiscuous mode
[  261.393954][T18928] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.401104][T18928] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.408320][T18928] bridge_slave_1: entered allmulticast mode
[  261.414959][T18928] bridge_slave_1: entered promiscuous mode
[  261.434613][T18928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  261.445827][T18928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  261.474997][T18928] team0: Port device team_slave_0 added
[  261.482094][T18928] team0: Port device team_slave_1 added
[  261.509533][T18928] batman_adv: batadv0: Adding interface: batadv_slave_0
[  261.516510][T18928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  261.525252][T18964] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18964 comm=syz.4.6218
[  261.542438][T18928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  261.543326][T18928] batman_adv: batadv0: Adding interface: batadv_slave_1
[  261.572615][T18928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  261.598879][T18928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  261.628144][T18928] hsr_slave_0: entered promiscuous mode
[  261.633803][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  261.648644][T18928] hsr_slave_1: entered promiscuous mode
[  261.654991][T18928] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  261.662653][T18928] Cannot create hsr debugfs directory
[  261.688068][T18972] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18972 comm=syz.4.6221
[  261.743801][T18928] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.781662][T18928] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.841277][T18928] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.901474][T18928] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.964548][T18928] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  261.973272][T18928] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  261.982231][T18928] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  261.991149][T18928] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  262.006984][T18928] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.014140][T18928] bridge0: port 2(bridge_slave_1) entered forwarding state
[  262.021520][T18928] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.028588][T18928] bridge0: port 1(bridge_slave_0) entered forwarding state
[  262.065801][T18928] 8021q: adding VLAN 0 to HW filter on device bond0
[  262.078232][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.086413][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.098322][T18928] 8021q: adding VLAN 0 to HW filter on device team0
[  262.110596][ T6147] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.117738][ T6147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  262.126347][ T6147] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.133437][ T6147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  262.214580][T18928] 8021q: adding VLAN 0 to HW filter on device batadv0
[  262.235334][ T3373] hid-generic 0000:0000:0000.00C4: unknown main item tag 0x0
[  262.243443][ T3373] hid-generic 0000:0000:0000.00C4: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  262.298164][T18928] veth0_vlan: entered promiscuous mode
[  262.306770][T18928] veth1_vlan: entered promiscuous mode
[  262.324266][T18928] veth0_macvtap: entered promiscuous mode
[  262.332723][T18928] veth1_macvtap: entered promiscuous mode
[  262.343897][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.354442][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.364430][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.374975][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.381032][T19001] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19001 comm=syz.3.6228
[  262.385010][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.407860][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.417755][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.428356][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.438185][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.448663][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.458495][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.469104][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.479000][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.489495][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.499323][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.509787][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.519700][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.530178][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.545608][T18928] batman_adv: batadv0: Interface activated: batadv_slave_0
[  262.558013][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.568644][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.578580][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.589098][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.599164][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.609806][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.619930][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.630386][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.640359][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.651006][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.660958][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.671495][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.674286][ T6147] net_ratelimit: 1 callbacks suppressed
[  262.674303][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  262.681364][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.711956][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.721876][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.732410][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.742279][T18928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.752754][T18928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.764455][T18928] batman_adv: batadv0: Interface activated: batadv_slave_1
[  262.774739][T18928] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  262.786684][T18928] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  262.796222][T18928] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  262.805084][T18928] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  263.026261][T19035] __nla_validate_parse: 1 callbacks suppressed
[  263.026275][T19035] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6240'.
[  263.190828][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  263.382089][   T24] hid-generic 0000:0000:0000.00C5: unknown main item tag 0x0
[  263.389814][   T24] hid-generic 0000:0000:0000.00C5: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  263.708581][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  263.897811][    T8] hid-generic 0000:0000:0000.00C6: unknown main item tag 0x0
[  263.914758][    T8] hid-generic 0000:0000:0000.00C6: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  264.229191][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  264.738566][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  264.954115][   T29] kauditd_printk_skb: 114 callbacks suppressed
[  264.954131][   T29] audit: type=1326 audit(1733456096.000:26213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  264.954166][   T29] audit: type=1326 audit(1733456096.000:26214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  264.954198][   T29] audit: type=1326 audit(1733456096.000:26215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  264.954297][   T29] audit: type=1326 audit(1733456096.000:26216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  264.954327][   T29] audit: type=1326 audit(1733456096.000:26217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  265.078769][   T29] audit: type=1326 audit(1733456096.000:26218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  265.078804][   T29] audit: type=1326 audit(1733456096.000:26219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  265.078910][   T29] audit: type=1326 audit(1733456096.000:26220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  265.078993][   T29] audit: type=1326 audit(1733456096.000:26221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  265.079022][   T29] audit: type=1326 audit(1733456096.000:26222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19148 comm="syz.4.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  265.264026][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  265.310763][ T3373] hid-generic 0000:0000:0000.00C7: unknown main item tag 0x0
[  265.318419][ T3373] hid-generic 0000:0000:0000.00C7: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  265.476107][T19181] FAULT_INJECTION: forcing a failure.
[  265.476107][T19181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.489229][T19181] CPU: 1 UID: 0 PID: 19181 Comm: syz.0.6287 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  265.501596][T19181] Tainted: [W]=WARN
[  265.505398][T19181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  265.515466][T19181] Call Trace:
[  265.518755][T19181]  <TASK>
[  265.521696][T19181]  dump_stack_lvl+0xf2/0x150
[  265.526397][T19181]  dump_stack+0x15/0x1a
[  265.530569][T19181]  should_fail_ex+0x223/0x230
[  265.535378][T19181]  should_fail+0xb/0x10
[  265.539549][T19181]  should_fail_usercopy+0x1a/0x20
[  265.544612][T19181]  _copy_from_user+0x1e/0xb0
[  265.549272][T19181]  __se_sys_add_key+0x1ec/0x320
[  265.554174][T19181]  __x64_sys_add_key+0x67/0x80
[  265.559016][T19181]  x64_sys_call+0x2964/0x2dc0
[  265.563713][T19181]  do_syscall_64+0xc9/0x1c0
[  265.568277][T19181]  ? clear_bhb_loop+0x55/0xb0
[  265.572982][T19181]  ? clear_bhb_loop+0x55/0xb0
[  265.577671][T19181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.583670][T19181] RIP: 0033:0x7f553b6dff19
[  265.588100][T19181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.607776][T19181] RSP: 002b:00007f5539d15058 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  265.616204][T19181] RAX: ffffffffffffffda RBX: 00007f553b8a6160 RCX: 00007f553b6dff19
[  265.624186][T19181] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000020000280
[  265.632233][T19181] RBP: 00007f5539d150a0 R08: ffffffffffffffff R09: 0000000000000000
[  265.640320][T19181] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  265.648309][T19181] R13: 0000000000000000 R14: 00007f553b8a6160 R15: 00007ffd694350f8
[  265.656307][T19181]  </TASK>
[  265.778698][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  265.797432][   T24] hid-generic 0000:0000:0000.00C8: unknown main item tag 0x0
[  265.805290][   T24] hid-generic 0000:0000:0000.00C8: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  266.086718][    T8] hid-generic 0000:0000:0000.00C9: unknown main item tag 0x0
[  266.094574][    T8] hid-generic 0000:0000:0000.00C9: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  266.298742][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  266.646251][    T8] hid-generic 0000:0000:0000.00CA: unknown main item tag 0x0
[  266.654635][    T8] hid-generic 0000:0000:0000.00CA: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  266.828822][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  266.940628][T19215] loop0: detected capacity change from 0 to 512
[  266.950714][T19215] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.963322][T19215] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.985998][T18151] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.023567][T19222] IPVS: set_ctl: invalid protocol: 135 100.1.1.2:20001
[  267.031298][T19222] netlink: 'syz.0.6305': attribute type 25 has an invalid length.
[  267.042194][T19222] capability: warning: `syz.0.6305' uses 32-bit capabilities (legacy support in use)
[  267.131360][   T24] hid-generic 0000:0000:0000.00CB: unknown main item tag 0x0
[  267.139303][   T24] hid-generic 0000:0000:0000.00CB: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  267.360827][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  267.885327][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  267.967707][   T24] hid-generic 0000:0000:0000.00CC: unknown main item tag 0x0
[  267.967911][   T24] hid-generic 0000:0000:0000.00CC: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  267.987668][T19243] loop0: detected capacity change from 0 to 512
[  268.013912][T19243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.014039][T19243] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.038969][T18151] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.388586][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  268.472796][T19257] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19257 comm=syz.4.6317
[  268.912024][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  269.136133][T19302] syz.4.6335[19302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  269.136239][T19302] syz.4.6335[19302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  269.148245][T19302] syz.4.6335[19302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  269.428635][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  269.773101][T19314] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19314 comm=syz.3.6339
[  269.876377][ T3372] hid-generic 0000:0000:0000.00CD: unknown main item tag 0x0
[  269.884250][ T3372] hid-generic 0000:0000:0000.00CD: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  269.958572][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  269.974576][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  269.974602][   T29] audit: type=1326 audit(1733456101.100:26401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19319 comm="syz.0.6340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f553b6dff19 code=0x7ffc0000
[  270.140082][   T29] audit: type=1326 audit(1733456101.260:26402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.164327][   T29] audit: type=1326 audit(1733456101.260:26403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.188017][   T29] audit: type=1326 audit(1733456101.290:26404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.211648][   T29] audit: type=1326 audit(1733456101.290:26405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.235284][   T29] audit: type=1326 audit(1733456101.290:26406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.258883][   T29] audit: type=1326 audit(1733456101.290:26407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f01d58eeb7a code=0x7ffc0000
[  270.282553][   T29] audit: type=1326 audit(1733456101.290:26408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f01d59227c5 code=0x7ffc0000
[  270.372307][   T29] audit: type=1326 audit(1733456101.490:26409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.396088][   T29] audit: type=1326 audit(1733456101.490:26410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19339 comm="syz.4.6349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01d58eff19 code=0x7ffc0000
[  270.479329][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  270.776618][T19351] netlink: 'syz.2.6352': attribute type 10 has an invalid length.
[  270.777232][T19351] geneve1: entered promiscuous mode
[  270.784402][T19351] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  271.003486][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  271.187654][   T24] hid-generic 0000:0000:0000.00CE: unknown main item tag 0x0
[  271.188128][   T24] hid-generic 0000:0000:0000.00CE: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  271.237377][    T8] hid-generic 0000:0000:0000.00CF: unknown main item tag 0x0
[  271.245493][    T8] hid-generic 0000:0000:0000.00CF: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  271.512015][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  272.018594][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  272.200163][T19424] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6377'.
[  272.233365][T19427] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6378'.
[  272.256507][    T8] hid-generic 0000:0000:0000.00D0: unknown main item tag 0x0
[  272.264466][    T8] hid-generic 0000:0000:0000.00D0: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  272.388118][T19441] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19441 comm=syz.0.6384
[  272.552351][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  272.582323][T19458] 9pnet_fd: Insufficient options for proto=fd
[  272.694499][T19463] block device autoloading is deprecated and will be removed.
[  272.702465][T19463] syz.2.6391: attempt to access beyond end of device
[  272.702465][T19463] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  273.068572][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  273.105268][T19478] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6395'.
[  273.296617][T19504] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19504 comm=syz.3.6406
[  273.470032][T19506] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6407'.
[  273.592453][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  273.679869][ T3434] hid-generic 0000:0000:0000.00D1: unknown main item tag 0x0
[  273.687776][ T3434] hid-generic 0000:0000:0000.00D1: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  273.724415][T19559] FAULT_INJECTION: forcing a failure.
[  273.724415][T19559] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.737595][T19559] CPU: 0 UID: 0 PID: 19559 Comm: syz.4.6427 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  273.749885][T19559] Tainted: [W]=WARN
[  273.753820][T19559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  273.763886][T19559] Call Trace:
[  273.767173][T19559]  <TASK>
[  273.770166][T19559]  dump_stack_lvl+0xf2/0x150
[  273.774796][T19559]  dump_stack+0x15/0x1a
[  273.779057][T19559]  should_fail_ex+0x223/0x230
[  273.783753][T19559]  should_fail+0xb/0x10
[  273.787981][T19559]  should_fail_usercopy+0x1a/0x20
[  273.793038][T19559]  _copy_to_user+0x20/0xa0
[  273.797505][T19559]  simple_read_from_buffer+0xa0/0x110
[  273.802938][T19559]  proc_fail_nth_read+0xf9/0x140
[  273.807970][T19559]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  273.813537][T19559]  vfs_read+0x1a2/0x700
[  273.817715][T19559]  ? __rcu_read_unlock+0x4e/0x70
[  273.822673][T19559]  ? __fget_files+0x17c/0x1c0
[  273.827398][T19559]  ksys_read+0xe8/0x1b0
[  273.831598][T19559]  __x64_sys_read+0x42/0x50
[  273.836154][T19559]  x64_sys_call+0x2874/0x2dc0
[  273.840854][T19559]  do_syscall_64+0xc9/0x1c0
[  273.845428][T19559]  ? clear_bhb_loop+0x55/0xb0
[  273.850200][T19559]  ? clear_bhb_loop+0x55/0xb0
[  273.854886][T19559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.860845][T19559] RIP: 0033:0x7f01d58ee92c
[  273.865357][T19559] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  273.885076][T19559] RSP: 002b:00007f01d3f67050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  273.893586][T19559] RAX: ffffffffffffffda RBX: 00007f01d5ab5fa0 RCX: 00007f01d58ee92c
[  273.901648][T19559] RDX: 000000000000000f RSI: 00007f01d3f670b0 RDI: 0000000000000006
[  273.909777][T19559] RBP: 00007f01d3f670a0 R08: 0000000000000000 R09: 0000000000000000
[  273.917787][T19559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.925836][T19559] R13: 0000000000000000 R14: 00007f01d5ab5fa0 R15: 00007ffdd6e62af8
[  273.933819][T19559]  </TASK>
[  274.108601][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  274.563294][ T3434] hid-generic 0000:0000:0000.00D2: unknown main item tag 0x0
[  274.571045][ T3434] hid-generic 0000:0000:0000.00D2: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  274.630716][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  274.849825][T19615] chnl_net:caif_netlink_parms(): no params data found
[  274.898919][T19615] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.906007][T19615] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.913236][T19615] bridge_slave_0: entered allmulticast mode
[  274.919842][T19615] bridge_slave_0: entered promiscuous mode
[  274.928046][T19615] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.935312][T19615] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.945734][T19615] bridge_slave_1: entered allmulticast mode
[  274.952875][T19615] bridge_slave_1: entered promiscuous mode
[  274.973189][T19615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  274.983844][T19615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  275.004562][T19615] team0: Port device team_slave_0 added
[  275.011234][T19615] team0: Port device team_slave_1 added
[  275.028735][T19615] batman_adv: batadv0: Adding interface: batadv_slave_0
[  275.035759][T19615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.061768][T19615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  275.073446][T19615] batman_adv: batadv0: Adding interface: batadv_slave_1
[  275.080468][T19615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.106713][T19615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  275.134416][T19615] hsr_slave_0: entered promiscuous mode
[  275.140661][T19615] hsr_slave_1: entered promiscuous mode
[  275.146790][T19615] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  275.154400][ T6126] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  275.154417][T19615] Cannot create hsr debugfs directory
[  275.238713][T19615] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  275.247425][T19615] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  275.256409][T19615] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  275.265094][T19615] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  275.280067][T19615] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.287147][T19615] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.294487][T19615] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.301596][T19615] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.312270][ T6126] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.320360][ T6126] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.365971][T19615] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.383392][T19615] 8021q: adding VLAN 0 to HW filter on device team0
[  275.393727][ T6132] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.400831][ T6132] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.423745][ T6132] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.430854][ T6132] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.502896][T19615] 8021q: adding VLAN 0 to HW filter on device batadv0
[  275.657894][T19615] veth0_vlan: entered promiscuous mode
[  275.666811][T19615] veth1_vlan: entered promiscuous mode
[  275.681552][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  275.685501][T19615] veth0_macvtap: entered promiscuous mode
[  275.704712][T19615] veth1_macvtap: entered promiscuous mode
[  275.716538][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.727076][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.737026][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.741330][ T3434] hid-generic 0000:0000:0000.00D3: unknown main item tag 0x0
[  275.747525][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.755316][ T3434] hid-generic 0000:0000:0000.00D3: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  275.764665][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.764686][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.794797][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.805222][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.815099][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.825637][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.835489][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.846124][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.856024][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.866501][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.876321][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.886772][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.896585][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.907081][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.916903][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  275.927324][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.938969][T19615] batman_adv: batadv0: Interface activated: batadv_slave_0
[  275.954635][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  275.965188][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.975140][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  275.985626][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  275.995819][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.006408][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.016285][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.026736][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.036635][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.047220][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.057120][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.067910][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.077818][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.088274][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.098116][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.108658][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.108674][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.108749][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.108766][T19615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  276.108783][T19615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  276.109674][T19615] batman_adv: batadv0: Interface activated: batadv_slave_1
[  276.170205][T19615] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  276.170311][T19615] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  276.170346][T19615] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  276.170375][T19615] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  276.202163][T19707] netlink: 'syz.4.6468': attribute type 10 has an invalid length.
[  276.207485][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  276.249119][T19707] geneve1: entered promiscuous mode
[  276.263911][T19707] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  276.264274][   T29] kauditd_printk_skb: 179 callbacks suppressed
[  276.264367][   T29] audit: type=1326 audit(1733456107.380:26590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19709 comm="syz.3.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.312631][T19712] loop5: detected capacity change from 0 to 512
[  276.319428][   T29] audit: type=1326 audit(1733456107.400:26591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19709 comm="syz.3.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.319547][   T29] audit: type=1326 audit(1733456107.400:26592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19709 comm="syz.3.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.319575][   T29] audit: type=1326 audit(1733456107.400:26593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19709 comm="syz.3.6469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.394145][T19712] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.409668][T19712] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  276.423775][T19615] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.673656][T19745] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19745 comm=syz.3.6481
[  276.707497][   T29] audit: type=1326 audit(1733456107.820:26594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19744 comm="syz.3.6481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.720428][   T29] audit: type=1326 audit(1733456107.820:26595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19744 comm="syz.3.6481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.754979][   T29] audit: type=1326 audit(1733456107.820:26596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19744 comm="syz.3.6481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.755033][   T29] audit: type=1326 audit(1733456107.820:26597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19744 comm="syz.3.6481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.755120][   T29] audit: type=1326 audit(1733456107.820:26598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19744 comm="syz.3.6481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.755168][   T29] audit: type=1326 audit(1733456107.820:26599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19744 comm="syz.3.6481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9b297ff19 code=0x7ffc0000
[  276.755372][ T6143] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  276.934322][T19750] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6483'.
[  276.997141][T11142] hid-generic 0000:0000:0000.00D4: unknown main item tag 0x0
[  277.007151][T11142] hid-generic 0000:0000:0000.00D4: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  277.190428][T19798] netlink: 'syz.4.6499': attribute type 10 has an invalid length.
[  277.225614][ T3434] hid-generic 0000:0000:0000.00D5: unknown main item tag 0x0
[  277.226213][ T3434] hid-generic 0000:0000:0000.00D5: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  277.233641][T19804] FAULT_INJECTION: forcing a failure.
[  277.233641][T19804] name failslab, interval 1, probability 0, space 0, times 0
[  277.256125][T19804] CPU: 1 UID: 0 PID: 19804 Comm: syz.3.6505 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  277.256160][T19804] Tainted: [W]=WARN
[  277.256168][T19804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  277.256180][T19804] Call Trace:
[  277.256185][T19804]  <TASK>
[  277.256193][T19804]  dump_stack_lvl+0xf2/0x150
[  277.272228][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  277.282284][T19804]  dump_stack+0x15/0x1a
[  277.282328][T19804]  should_fail_ex+0x223/0x230
[  277.316264][T19804]  should_failslab+0x8f/0xb0
[  277.320914][T19804]  kmem_cache_alloc_node_noprof+0x59/0x320
[  277.321045][T19804]  ? perf_event_alloc+0x157/0x12e0
[  277.321079][T19804]  perf_event_alloc+0x157/0x12e0
[  277.321109][T19804]  ? __fget_files+0x17c/0x1c0
[  277.321155][T19804]  __se_sys_perf_event_open+0x7f2/0x2230
[  277.321253][T19804]  ? bpf_user_rnd_u32+0x59/0x80
[  277.321281][T19804]  ? bpf_trace_run2+0x123/0x1d0
[  277.321322][T19804]  __x64_sys_perf_event_open+0x67/0x80
[  277.321398][T19804]  x64_sys_call+0x1deb/0x2dc0
[  277.321426][T19804]  do_syscall_64+0xc9/0x1c0
[  277.321449][T19804]  ? clear_bhb_loop+0x55/0xb0
[  277.321473][T19804]  ? clear_bhb_loop+0x55/0xb0
[  277.321567][T19804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.321749][T19804] RIP: 0033:0x7ff9b297ff19
[  277.321769][T19804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.321843][T19804] RSP: 002b:00007ff9b0ff7058 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  277.420077][T19804] RAX: ffffffffffffffda RBX: 00007ff9b2b45fa0 RCX: 00007ff9b297ff19
[  277.420098][T19804] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000020000000
[  277.420115][T19804] RBP: 00007ff9b0ff70a0 R08: 0000000000000000 R09: 0000000000000000
[  277.444111][T19804] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  277.444133][T19804] R13: 0000000000000000 R14: 00007ff9b2b45fa0 R15: 00007fffe4ca84c8
[  277.444158][T19804]  </TASK>
[  277.563375][T19812] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  277.563404][T19812] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  277.563433][T19812] vhci_hcd vhci_hcd.0: Device attached
[  277.622246][T19813] vhci_hcd: connection closed
[  277.622685][ T6125] vhci_hcd: stop threads
[  277.622696][ T6125] vhci_hcd: release socket
[  277.622706][ T6125] vhci_hcd: disconnect device
[  277.788656][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  278.015310][T19843] loop5: detected capacity change from 0 to 512
[  278.040110][T19843] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  278.052855][T19843] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.076582][T19615] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.169552][T11142] hid-generic 0000:0000:0000.00D6: unknown main item tag 0x0
[  278.177958][T11142] hid-generic 0000:0000:0000.00D6: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  278.309055][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  278.766378][T19870] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6528'.
[  278.828569][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  278.980328][T19886] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19886 comm=syz.5.6532
[  278.986287][T19886] loop5: detected capacity change from 0 to 1024
[  279.016750][T19886] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  279.103616][T19615] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.350170][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  279.395647][T19904] chnl_net:caif_netlink_parms(): no params data found
[  279.453535][T19904] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.460739][T19904] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.464989][T19904] bridge_slave_0: entered allmulticast mode
[  279.475293][T19904] bridge_slave_0: entered promiscuous mode
[  279.476434][T19904] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.489004][T19904] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.496276][T19904] bridge_slave_1: entered allmulticast mode
[  279.496885][T19904] bridge_slave_1: entered promiscuous mode
[  279.516501][T19904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  279.518200][T19904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.547952][T19904] team0: Port device team_slave_0 added
[  279.549495][T19904] team0: Port device team_slave_1 added
[  279.574116][T19904] batman_adv: batadv0: Adding interface: batadv_slave_0
[  279.574129][T19904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.574167][T19904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  279.574803][T19904] batman_adv: batadv0: Adding interface: batadv_slave_1
[  279.625147][T19904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.625185][T19904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  279.693045][T19904] hsr_slave_0: entered promiscuous mode
[  279.693713][T19904] hsr_slave_1: entered promiscuous mode
[  279.699429][T19904] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  279.723855][T19904] Cannot create hsr debugfs directory
[  279.826244][T19904] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.847085][T19937] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19937 comm=syz.4.6548
[  279.861893][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  279.901978][T19904] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.964509][T19904] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.997690][ T3434] hid-generic 0000:0000:0000.00D7: unknown main item tag 0x0
[  280.005862][ T3434] hid-generic 0000:0000:0000.00D7: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  280.018850][T19904] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.106008][T19904] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  280.108345][T19904] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  280.122482][T19904] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  280.125293][T19904] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  280.173338][T19904] 8021q: adding VLAN 0 to HW filter on device bond0
[  280.178387][T19904] 8021q: adding VLAN 0 to HW filter on device team0
[  280.191594][T19949] netlink: 'syz.2.6552': attribute type 10 has an invalid length.
[  280.207132][ T6147] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.214232][ T6147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  280.216141][ T6147] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.229696][ T6147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  280.254160][T19904] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  280.254206][T19904] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  280.314947][T19904] 8021q: adding VLAN 0 to HW filter on device batadv0
[  280.378824][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  280.395051][T19904] veth0_vlan: entered promiscuous mode
[  280.401675][T19904] veth1_vlan: entered promiscuous mode
[  280.419771][T19904] veth0_macvtap: entered promiscuous mode
[  280.422244][T19904] veth1_macvtap: entered promiscuous mode
[  280.441826][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.441846][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.441857][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.441875][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.441888][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.441906][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.441946][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442008][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442022][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442075][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442089][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442107][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442122][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442212][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442226][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442244][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442259][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442276][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442351][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442368][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.442382][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.442468][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.443238][T19904] batman_adv: batadv0: Interface activated: batadv_slave_0
[  280.679232][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679278][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679288][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679303][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679317][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679332][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679367][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679382][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679403][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679434][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679447][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679464][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679480][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679523][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679537][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679553][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679567][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679584][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679596][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679610][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.679674][T19904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.679687][T19904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.680688][T19904] batman_adv: batadv0: Interface activated: batadv_slave_1
[  280.681988][T19904] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  280.682108][T19904] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  280.682148][T19904] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  280.682186][T19904] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  280.889245][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  280.965178][T19982] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19982 comm=syz.4.6558
[  281.047693][T19986] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=19986 comm=syz.2.6560
[  281.156257][T19992] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6562'.
[  281.275868][   T29] kauditd_printk_skb: 341 callbacks suppressed
[  281.275882][   T29] audit: type=1326 audit(1733456112.390:26941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1182366ee7 code=0x7ffc0000
[  281.309090][   T29] audit: type=1326 audit(1733456112.410:26942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f118230c129 code=0x7ffc0000
[  281.332701][   T29] audit: type=1326 audit(1733456112.410:26943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f118236ff19 code=0x7ffc0000
[  281.356281][   T29] audit: type=1326 audit(1733456112.420:26944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1182366ee7 code=0x7ffc0000
[  281.379819][   T29] audit: type=1326 audit(1733456112.420:26945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f118230c129 code=0x7ffc0000
[  281.403378][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  281.403395][   T29] audit: type=1326 audit(1733456112.420:26946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f118236ff19 code=0x7ffc0000
[  281.403489][ T6147] ==================================================================
[  281.403523][ T6147] BUG: KCSAN: data-race in data_push_tail / number
[  281.403561][ T6147] 
[  281.403569][ T6147] write to 0xffffffff88bbd930 of 1 bytes by task 29 on cpu 1:
[  281.403590][ T6147]  number+0x8b5/0xa90
[  281.403617][ T6147]  vsnprintf+0xa44/0xe30
[  281.403645][ T6147]  vscnprintf+0x42/0x90
[  281.403677][ T6147]  printk_sprint+0x30/0x2d0
[  281.403708][ T6147]  vprintk_store+0x589/0x870
[  281.403748][ T6147]  vprintk_emit+0x15e/0x680
[  281.403777][ T6147]  vprintk_default+0x26/0x30
[  281.403808][ T6147]  vprintk+0x75/0x80
[  281.403826][ T6147]  _printk+0x7a/0xa0
[  281.403845][ T6147]  kauditd_hold_skb+0x1a3/0x1b0
[  281.403873][ T6147]  kauditd_send_queue+0x288/0x2e0
[  281.403900][ T6147]  kauditd_thread+0x42a/0x650
[  281.403925][ T6147]  kthread+0x1d1/0x210
[  281.403942][ T6147]  ret_from_fork+0x4b/0x60
[  281.403962][ T6147]  ret_from_fork_asm+0x1a/0x30
[  281.403983][ T6147] 
[  281.403999][ T6147] read to 0xffffffff88bbd930 of 8 bytes by task 6147 on cpu 0:
[  281.404020][ T6147]  data_push_tail+0x102/0x430
[  281.404027][   T29] audit: type=1326 audit(1733456112.430:26947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1182366ee7 code=0x7ffc0000
[  281.404049][ T6147]  data_alloc+0xbe/0x2c0
[  281.404071][ T6147]  prb_reserve+0x85e/0xb60
[  281.404093][ T6147]  vprintk_store+0x558/0x870
[  281.404117][ T6147]  vprintk_emit+0x15e/0x680
[  281.404139][   T29] audit: type=1326 audit(1733456112.430:26948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f118230c129 code=0x7ffc0000
[  281.404145][ T6147]  vprintk_default+0x26/0x30
[  281.404175][ T6147]  vprintk+0x75/0x80
[  281.404191][ T6147]  _printk+0x7a/0xa0
[  281.404209][ T6147]  batadv_tt_local_add+0xf09/0x1010
[  281.404234][ T6147]  batadv_mcast_mla_update+0x1112/0x1700
[  281.404266][ T6147]  process_scheduled_works+0x483/0x9a0
[  281.404277][   T29] audit: type=1326 audit(1733456112.430:26949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f118236ff19 code=0x7ffc0000
[  281.404302][ T6147]  worker_thread+0x51d/0x6f0
[  281.404320][   T29] audit: type=1326 audit(1733456112.440:26950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19993 comm="syz.2.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1182366ee7 code=0x7ffc0000
[  281.404339][ T6147]  kthread+0x1d1/0x210
[  281.404356][ T6147]  ret_from_fork+0x4b/0x60
[  281.404379][ T6147]  ret_from_fork_asm+0x1a/0x30
[  281.404400][ T6147] 
[  281.404406][ T6147] value changed: 0x000000010000009b -> 0x3128746964756120
[  281.404421][ T6147] 
[  281.404428][ T6147] Reported by Kernel Concurrency Sanitizer on:
[  281.404443][ T6147] CPU: 0 UID: 0 PID: 6147 Comm: kworker/u8:26 Tainted: G        W          6.13.0-rc1-syzkaller-00036-g5076001689e4 #0
[  281.404481][ T6147] Tainted: [W]=WARN
[  281.404491][ T6147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  281.404509][ T6147] Workqueue: bat_events batadv_mcast_mla_update
[  281.404553][ T6147] ==================================================================
[  281.406255][T19998] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6565'.
[  281.931023][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  282.448574][   T52] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  282.979064][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  283.498755][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  284.021066][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  284.541507][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  285.061136][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  285.581490][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  286.111464][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  286.641390][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  287.168732][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  287.688587][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  288.208581][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  288.728620][ T6125] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  289.251550][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  289.778575][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  290.219942][    C0] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 02:04:00:bf:05:00
[  290.299213][ T6132] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  290.818561][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00
[  291.339054][ T6147] batman_adv: batadv0: Local translation table size (88) exceeds maximum packet size (-320); Ignoring new local tt entry: 33:33:ff:bf:05:00