last executing test programs:

13m4.041331365s ago: executing program 3 (id=358):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="060000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x6, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000045000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

13m3.923524665s ago: executing program 3 (id=361):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x14, r1, 0x7, 0x2000, 0x25dfdbfd}, 0x14}}, 0x0)

13m3.696388406s ago: executing program 3 (id=363):
r0 = io_uring_setup(0x4ea0, &(0x7f0000002200)={0x0, 0xf4b, 0x0, 0x2, 0x73})
io_uring_register$IORING_REGISTER_FILES2(r0, 0xd, &(0x7f0000002640)={0x100000, 0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f0000002280)=""/208, 0xd0}, {&(0x7f0000002380)=""/102, 0x66}, {&(0x7f0000000080)=""/17, 0x11}, {&(0x7f0000002400)=""/243, 0xf3}, {&(0x7f0000002500)=""/129, 0x81}], &(0x7f0000000100)=[0x3f4, 0xb1]}, 0x20)

13m3.665108657s ago: executing program 3 (id=364):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000001480)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@data_err_abort}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$eJzs3MtvG0UYAPBv7SR9k1DKo6WFQEFEPJImfdADFxBIHEBCgkMRp5CkVajboCZItIogcAhHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZu6iZ3GiVOX7O8nbTvjHWvm292xZ2e8CaCwBtN/koi9EfFHRPTXs7cXGKz/d3NpfuKfpfmJJKrVt/9OauVuLM1P5EXz9+2pZ6rVLL+jSb2L70WMVypTl7L8yNyFD0dmL195YfrC+Lmpc1MXx06fPnH8SN+psZMdiTON68ahT2YOH3z93atvTpy5+v4v36Xt3Zvtb4yjUwbrR7eppztdWZfta0gnPV1sCG0pR0R6unpr/b8/yrFreV9/vPZ5VxsHbKlqtVpt9v2cWagC21gS3W4B0B35F316/5tvd2nocU+4/nL9BiiN+2a21ff0RCkr07vi/raTBiPizMK/X6dbbNE8BABAox/S8c/zzcZ/pXioodx92RrKQETcHxH7I+KBiDgQEQ9G1Mo+HBGPtFn/yhWS1eOf0rUNBbZO6fjvpWxt6/bxXz76i4FylttXi783OTtdmTqWHZOh6N2R5kfXqOPHV3//stW+xvFfuqX152PBrB3XelZM0E2Oz41vJuZG1z+LONTTLP4k8mWcJCIORsShDdYx/ey3h1vtu3P8a+jAOlP1m4hn6ud/IVbEn0tark+Ovnhq7OTIzqhMHRvJr4rVfv1t8a1W9W8q/g5Iz//uptf/cvwDyc6I2ctXztfWa2fbr2Pxzy9a3tNs9PrvS96ppfuy1z4en5u7NBrRl7yx+vWxW+/N83n5NP6ho837//64dSQejYj0Ij4SEY9FxONZ25+IiCcj4uga8f/8ylMftB//GrPyHZTGP3mn8x+N57/9RPn8T9+3H38uPf8naqmh7JX1fP6tt4GbOXYAAADwf1Gq/QY+KQ0vp0ul4eH6b/gPxO5SZWZ27rmzMx9dnKz/Vn4gekv5TFd/w3zoaDY3nOfHVuSPZ/PGX5V31fLDEzOVyW4HDwW3p0X/T/1V7nbrgC3neS0oLv0fikv/h+LS/6G49H8ormb9/9MutAO4+3z/Q3Hp/1Bc+j8Ul/4PhdTy2fjSph75l9j2iSjdE83Y/omedf8xiw0mdjTd1e1PJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgM74LwAA//9wiOSH")
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
recvmmsg(r4, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000500)=""/163, 0xa3}, {&(0x7f0000000680)=""/184, 0xb8}, {&(0x7f0000002080)=""/4096, 0x1000}, {&(0x7f0000000740)=""/191, 0xbf}], 0x5}}], 0x2, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d3000dd602000000005cf7ce1fc986bcdf"})
truncate(&(0x7f0000000280)='./file1\x00', 0x1fefff)

13m0.67200603s ago: executing program 3 (id=386):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newlink={0x38, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad, 0x1}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6, 0x2, 0x5}]}}}]}, 0x38}}, 0x0)

13m0.228962382s ago: executing program 3 (id=389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1, 0x2000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
readv(r3, &(0x7f0000000400)=[{&(0x7f0000000480)=""/174, 0xae}], 0x1)

13m0.186173642s ago: executing program 32 (id=389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1, 0x2000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
readv(r3, &(0x7f0000000400)=[{&(0x7f0000000480)=""/174, 0xae}], 0x1)

12m50.414396427s ago: executing program 5 (id=447):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0xe, &(0x7f00000002c0)=ANY=[@ANYBLOB="b700000012edfffebfa30000000000007603000028feffff7a0af0fff8ffffff61a4f0ff000000005d040000000000007f0000000000000027"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000014c0)={0x0, 0xf, &(0x7f0000000300)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

12m49.82314306s ago: executing program 5 (id=450):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r0, 0x0, 0x0)

12m49.69543866s ago: executing program 5 (id=451):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x40}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x7528e000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x1c, r6, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_PMSR_ATTR_PEERS={0x8, 0xe, 0x0, 0x1, [{0x4}]}]}, 0x1c}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000bc1d306c86d02363148854023d6f04f61dfccf24ed0fc2"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r7}, 0x10)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x2000141a)
ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f0000000000)={0x21})
bpf$PROG_LOAD(0x5, 0x0, 0x0)

12m48.675184015s ago: executing program 5 (id=457):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000001480)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@data_err_abort}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
recvmmsg(r4, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000500)=""/163, 0xa3}, {&(0x7f0000000680)=""/184, 0xb8}, {&(0x7f0000002080)=""/4096, 0x1000}, {&(0x7f0000000740)=""/191, 0xbf}], 0x5}}], 0x2, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d3000dd602000000005cf7ce1fc986bcdf"})
truncate(&(0x7f0000000280)='./file1\x00', 0x1fefff)

12m44.240015485s ago: executing program 5 (id=482):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r0 = syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000000)=0x765d)

12m43.13553319s ago: executing program 5 (id=489):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, 0x0}, 0x0)

12m42.723074422s ago: executing program 33 (id=489):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, 0x0}, 0x0)

3.80089499s ago: executing program 2 (id=7412):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

3.491368512s ago: executing program 2 (id=7422):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = gettid()
rt_sigqueueinfo(r1, 0x21, &(0x7f0000001500))
chroot(&(0x7f0000000180)='./file0\x00')
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = io_uring_setup(0x7d73, &(0x7f00000000c0)={0x0, 0xf489, 0x400, 0x2, 0x238})
io_setup(0x3f, &(0x7f0000000140)=<r3=>0x0)
r4 = timerfd_create(0x0, 0x0)
io_submit(r3, 0xf000, &(0x7f0000000500)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r4, &(0x7f0000000380)="682962ab7bb63432", 0x8, 0x0, 0x0, 0x2}])
close_range(r2, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
setreuid(0xee01, 0xee01)
semctl$IPC_RMID(0x0, 0x0, 0x0)
writev(r6, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, &(0x7f0000000280)={0x2, &(0x7f0000000200)=[{0x5, 0x7, 0x3, 0x7f}, {0x8000, 0x7, 0x5, 0x7ff}]}, 0x10)
r9 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r9, 0x400, 0x0)
fcntl$setlease(r9, 0x400, 0x2)
ioctl$VT_RESIZEX(r9, 0x560a, &(0x7f0000000040)={0xbe, 0xc, 0x4, 0x3, 0x9a, 0x9})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x2, &(0x7f0000000080)=@raw=[@map_idx={0x18, 0x3, 0x5, 0x0, 0xc}], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)

2.845814875s ago: executing program 2 (id=7429):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="040000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x68, r3, 0x1, 0x0, 0x0, {{}, {}, {0x9, 0x18, {0x0, @media='eth\x00'}}}}, 0x68}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.785423066s ago: executing program 2 (id=7434):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="040000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x68, r2, 0x1, 0x0, 0x0, {{}, {}, {0x9, 0x18, {0x0, @media='eth\x00'}}}}, 0x68}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.618714547s ago: executing program 2 (id=7441):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x84, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x20000004)

2.322972198s ago: executing program 2 (id=7447):
prlimit64(0x0, 0x8, &(0x7f0000000140), 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000040)='./file2\x00', 0x20c593, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYRESDEC=r3, @ANYRES32=r2, @ANYRES8, @ANYRES8, @ANYRES64=r3, @ANYRESDEC], 0x1, 0x1207, &(0x7f0000002dc0)="$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")
r4 = open(&(0x7f0000000040)='./bus\x00', 0x44842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)='$', 0x3fec00}], 0x2, 0x1400, 0x0, 0x3)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETOFFLOAD(r6, 0x400454d0, 0x15)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7, 0x0, 0x400000000000}, 0x18)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x1, 0xe}, 0x1184c, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
futex_waitv(&(0x7f0000000680)=[{0x2, 0xfffffffffffffffc, 0x2}], 0x1, 0x0, 0x0, 0x1)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r5, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e1d, @local}, 0x10)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x2, @none, 0xf}, 0xe)
shutdown(0xffffffffffffffff, 0x1)
sendto$inet(r5, &(0x7f0000000e80)='W', 0x1, 0x4008000, 0x0, 0x0)

1.90772786s ago: executing program 6 (id=7455):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x20000004) (fail_nth: 4)

1.603522462s ago: executing program 6 (id=7456):
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xf621, 0x1, 0x0, 0x1}, 0x0, 0x0)
eventfd2(0x936, 0x80000)
timerfd_create(0x8, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r0})
writev(r0, &(0x7f00000000c0), 0x0)

1.603156322s ago: executing program 6 (id=7457):
r0 = getpid()
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000480)='syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f00000004c0)={0x80100, &(0x7f0000000040), &(0x7f0000000140), &(0x7f0000000180), {0x37}, &(0x7f0000000300)=""/211, 0xd3, &(0x7f0000000400)=""/65, &(0x7f00000001c0)=[r0, r0, r0, r0], 0x4, {r1}}, 0x58)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r2, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)

1.326337893s ago: executing program 4 (id=7466):
semget$private(0x0, 0x4000000009, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000000000000002e790026b81fe4b5a719000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x16, 0xf, &(0x7f00000006c0)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000600000085000000860000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x10, 0x38, &(0x7f00000001c0)="0ee61e7a6665000000241d9fa22a456c9935f6f6710e1b", &(0x7f0000000080)=""/21, 0x0, 0x0, 0x0, 0xffffff81, 0x0, 0x0}, 0x4c)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000500000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000100000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r4, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180), 0xb)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000005b000000000004000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r7 = gettid()
r8 = gettid()
tkill(r7, 0x12)
tkill(r7, 0x1)
tkill(r8, 0x14)

1.325429083s ago: executing program 1 (id=7467):
syz_emit_ethernet(0x36, &(0x7f0000001300)=ANY=[@ANYBLOB="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"], 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7d2})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x0, 0x0)
mount(&(0x7f0000001200)=@filename='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='mountstats\x00')
lseek(r2, 0x7fffffffffffffff, 0x0)
socket(0x400000000010, 0x3, 0x0)
unlink(&(0x7f0000000180)='./file0\x00')
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f0000000040)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x24b, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = dup(r4)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x4, 0x0, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005908000000005ef2844ef11a0000005f7f38369a3a8895c321e38aa632ddbc403847e4a53c4eac029120db554806111be545d9d5c22514a5a6fadd7dd4eb0b7450cc70da48fcc340bc62b5b5e9f2c2c770d2ab880eb44c0a2f0d3a9e704e062ee073e89b878d60ba3b1e68e2243c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf38, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000bc0))
ioprio_set$pid(0x2, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
socket$unix(0x1, 0x1, 0x0)

1.316840133s ago: executing program 4 (id=7468):
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xf621, 0x1, 0x0, 0x1}, 0x0, 0x0)
eventfd2(0x936, 0x80000)
timerfd_create(0x8, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r0})
writev(r0, &(0x7f00000000c0)=[{0x0}], 0x1)

1.248381884s ago: executing program 4 (id=7469):
prlimit64(0x0, 0x8, &(0x7f0000000140), 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000040)='./file2\x00', 0x20c593, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYRESDEC=r3, @ANYRES32=r2, @ANYRES8, @ANYRES8, @ANYRES64=r3, @ANYRESDEC], 0x1, 0x1207, &(0x7f0000002dc0)="$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")
r4 = open(&(0x7f0000000040)='./bus\x00', 0x44842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)='$', 0x3fec00}], 0x2, 0x1400, 0x0, 0x3)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETOFFLOAD(r6, 0x400454d0, 0x15)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7, 0x0, 0x400000000000}, 0x18)
setsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x112, 0x4, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)

1.126015874s ago: executing program 0 (id=7471):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x680000, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="af0a251cef9a"})
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="1800"/15, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd"], 0xfdef)
listen(r1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000400)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xa}}, 0x0, 0x0, 0x43, 0x0, "0aaa8ff5a212a1bd3bbda613efd9c8b4965dca66db42f66a86e5781cf86717055a7c1d13e6507e5a774ef95f2fc1b947e03d5c8379123f2f1d34b0882e83d41b67cb9ff147c6d33a097d2269351b3ed3"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f00000012c0)={@in6={{0xa, 0x4e21, 0x0, @mcast2}}, 0x0, 0x0, 0x34, 0x0, "0c9e089c1b4a04000bde79f04103c458187eb46c2d996aff287154e786455261c425a7519cc275d04e6205abd307a0c4fa3838bf399ad5bd35f21907c7988d1300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x3, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}}, 0x0, 0x0, 0xc, 0x0, "a1c1dd75a6803e10951cd4b347113e55eb289519becf7542da0bc21470e441225642855b5f2f4bb561dc9363aed4a18d67efd5f2fdf98328de9441031348589b763d46d14810acc5f700"}, 0xd8)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r5, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0xffffffc0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x4e22, @multicast1}}, 0x0, 0x0, 0xa, 0x0, "a1c1dd75a68473ba07d945c3b03e10950cd4b347113e55eb4285bf0600000000000000f98328de9434031348589bf28046d14810000000e3ffffff000000000000000000000000000002f3ff00"}, 0xd8)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r8, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c10000000000000000000", 0x58}], 0x1)
fcntl$notify(r0, 0x402, 0x29)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x10}}, 0xffffffffffffffff, 0x0, r9, 0x0)

998.427195ms ago: executing program 4 (id=7472):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0xc510c080, 0x0, 0xef, 0xfffffffffffffffd, 0x0, 0x0)

938.757875ms ago: executing program 0 (id=7473):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="040000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x68, r4, 0x1, 0x0, 0x0, {{}, {}, {0x9, 0x18, {0x0, @media='eth\x00'}}}}, 0x68}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

884.502425ms ago: executing program 0 (id=7474):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x69)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f0000000500), &(0x7f0000000200)}, 0x20)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "0700001000", "0d07080d004fcfabd5e8ffff1a8600", "1112f5fd", "865703b7e43b34e4"}, 0x28)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close(r0)

862.232376ms ago: executing program 0 (id=7475):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
readlink(&(0x7f00000012c0)='./file0/../file0\x00', &(0x7f0000001580)=""/84, 0x54)

842.194695ms ago: executing program 0 (id=7476):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x2000000000000239, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000966208060000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x0) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000008000000080000000800000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000000000000000000000000000000000000862e7f646a2144530b40b8d913d8bd66cdaf7466767f50a67dbc957f9da1a01c449dc608b9b95ae41fc83d91dbc29dc34ab98b6be7ca05d031ae5b99d9684628ff00ddee643fd7bb612c00ee44b8421c33c913ce2db9c4b11f67130a2caaaeb8c96f5733f23813b50a86d431d46216fb8c7ab8e13e07af24bafb9011ec66f3ba0934cf5ac75c4b3fb81163aea652a3b7", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = dup(r4)
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000001880)={'vxcan1\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0xd}}]}}, @TCA_RATE={0x6}]}, 0x4c}}, 0x0) (async)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r12=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000000000000000000000009500000004000400b3750fbb377adf52a9f9fa3605d4534fa18564040000000000000071d3d50743a6ebf9f8a5268aead373835122ab31f35e27f6a078a95237ff00cf56c3cc3231661047c9f44cb4fe7a333b6d55b9be695bb2ac515d7ea0f159eead6689ddcd60c4b1fb4c1fe62d19008ed3e757299030c629614fc2977daa05c058696c53d5485d436f9cd47e6760da68e641a921e74ba35ea01c9bcf50c44cc929a3bd88f40e159b9a35227bc8bb610eeb85949c7b"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', r12, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r13, @ANYBLOB="0100"], 0x1c}}, 0x0) (async)
r14 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r14, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000008580100000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c01038040000080080003400000000234000280300002"], 0x1ec}}, 0x0) (async)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000003c0)=<r15=>0x0, &(0x7f0000000400)=0x4) (async)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000780)={'syztnl2\x00', &(0x7f0000000640)={'gretap0\x00', <r16=>0x0, 0x20, 0x80, 0x0, 0x9, {{0x39, 0x4, 0x1, 0x8, 0x133, 0x65, 0x0, 0x0, 0x2f, 0x0, @empty, @multicast1, {[@timestamp_prespec={0x44, 0x24, 0x26, 0x3, 0x1, [{@remote, 0x1}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x401}, {@broadcast, 0x1160302f}, {@empty, 0xa5d}]}, @cipso={0x86, 0x70, 0xffffffffffffffff, [{0x2, 0x2}, {0x0, 0xe, "be49c132cc12b63fe0b0cc82"}, {0x7, 0xe, "7b88ecc9082a90958cac9ad9"}, {0x2, 0x2}, {0x7, 0x9, "af21c9c44b2209"}, {0x6, 0x11, "724ad7bf4dca21b16d81f152bd8756"}, {0x1, 0xc, "a88318ae4b63ed59858e"}, {0x6, 0x12, "8fe47df305b05e8866a0803ac5fcd3ac"}, {0x2, 0x3, '\a'}, {0x7, 0xf, "8c9aa1334e969f8d5e94b71b43"}]}, @timestamp={0x44, 0x14, 0xb7, 0x0, 0x5, [0x7fff, 0xfffffffd, 0x3, 0x1]}, @ra={0x94, 0x4, 0x1}, @generic={0x83, 0xf, "a85653bdab2e0fdf2e2b44ddf3"}, @ssrr={0x89, 0x13, 0x69, [@multicast1, @rand_addr=0x64010102, @loopback, @private=0xa010102]}]}}}}}) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r7, 0x89f1, &(0x7f0000000940)={'syztnl2\x00', &(0x7f00000008c0)={'syztnl0\x00', <r17=>0x0, 0x2f, 0x4, 0x2, 0x5, 0x72, @remote, @mcast2, 0x7800, 0x700, 0x4, 0x8}}) (async)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000980)=<r18=>0x0, &(0x7f00000009c0)=0x4) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000a80)={'syztnl1\x00', &(0x7f0000000a00)={'ip6gre0\x00', <r19=>0x0, 0x4, 0x84, 0x0, 0xff5, 0x8, @empty, @loopback, 0x7, 0x80, 0x8, 0x4}})
sendmsg$ETHTOOL_MSG_WOL_GET(r8, &(0x7f0000000c00)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="f4000000", @ANYRES16=0x0, @ANYBLOB="080027bd7000fbdbdf25090000002000018008000100", @ANYRES32=r10, @ANYBLOB="1400020070696d726567000000000000000000004c00018014000200627269646765300000000000000000001400020076657468305f766972745f7769666900080003000700000008000100", @ANYRES32=r12, @ANYBLOB='\b\x00\t\x00', @ANYRES32=r15, @ANYBLOB="08000300010000004c0001801400020070696d36726567000000000000000000140002006d616376746170300000000000000000080003000100000008000100", @ANYRES32=r16, @ANYBLOB="080003000200000008000100", @ANYRES32=r17, @ANYBLOB="28000180140002006d61637674617030000000000000000008000100", @ANYRES32=r18, @ANYBLOB="08000100", @ANYRES32=r19, @ANYBLOB], 0xf4}, 0x1, 0x0, 0x0, 0x40000}, 0x8804)

767.335116ms ago: executing program 0 (id=7477):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='itimer_expire\x00', r1}, 0x18)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
quotactl$Q_GETNEXTQUOTA(0x0, &(0x7f0000002040)=@filename='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)
setrlimit(0x8, &(0x7f00000002c0)={0x1, 0x9})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x9, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe(&(0x7f0000000000)={<r7=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
splice(r8, 0x0, r9, 0x0, 0xf3a, 0x0)
splice(r7, 0x0, r9, 0x0, 0x80, 0x4)
sendto$inet6(r9, &(0x7f00000004c0)="031a798129defab50c9232aeec98e19b051eea0fcaed42aeef5d737cd71b0cec0a5535f0b538305e8c9b774b0bfd47db2c3d6ed4f953eac5c2c3d0c332e165e23d572f6be6b8735dfad16e2e80647b73ee1f4fa12d9a140940b59a76f22d1a9c32cb08aec6fcf2ce9fa9595aee73fc67d8c73bb0638f071dd70a6309227e8bc96c2ad62038518749463a644a287655ee426ed4ea1b9000a8", 0x98, 0x10, &(0x7f0000000300)={0xa, 0x4e23, 0x1, @empty, 0xffff0000}, 0x1c)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[])
connect$pppl2tp(r2, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x2, 0x0, 0x2, 0x0, {0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}, 0x826f}}}, 0x32)
sendmmsg(r2, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20040804)

717.654466ms ago: executing program 6 (id=7478):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5], 0x20}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYRES32=r6], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
socket$kcm(0x11, 0xa, 0x300)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', r5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r9}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = dup2(r10, r9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r11}, 0x10)
gettid()

645.162847ms ago: executing program 6 (id=7479):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
sendmsg$AUDIT_USER_AVC(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000200)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000300)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000500)={'syztnl1\x00', <r4=>0x0, 0x29, 0xa9, 0x5, 0xd22, 0x1, @empty, @loopback, 0x1, 0x10, 0x9a5b}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x2a, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xff}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x12}, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x14}, @call={0x85, 0x0, 0x0, 0xa6}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x90}, @map_val={0x18, 0x8, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x7ff}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x45, 0x0, 0x0, 0x41100, 0x20, '\x00', r4, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0xd, 0x0, 0x4}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000600)=[{0x1, 0x1, 0x9, 0x7}, {0x4, 0x5, 0x6, 0xc}, {0x4, 0x4, 0x0, 0x8}, {0x1, 0x3, 0x1, 0x5}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r6}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x44}}, 0x44800)

543.869107ms ago: executing program 6 (id=7480):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETVESABLANK(r1, 0x560e, &(0x7f0000000140))
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r2, 0x541c, &(0x7f0000000000))
socket$inet_udplite(0x2, 0x2, 0x88)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bond_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e00000000400002800600010000000000340003800c00010000000000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r5, @ANYBLOB="080003"], 0x80}}, 0x0)

307.303468ms ago: executing program 1 (id=7481):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001880)={'vxcan1\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0xd}}]}}, @TCA_RATE={0x6}]}, 0x4c}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="230000000400000008000100", @ANYRES32, @ANYBLOB], 0x50)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
syz_io_uring_submit(r3, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00008, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5000000080000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r6, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400})
r7 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r7, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f00000028c0)={0x0, 0x28}}, 0x0)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(r7, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000f80)={0x644, r8, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_EEE_MODES_OURS={0x23c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x83, 0x4, "8b081b68270550341380b4983f50961c32391a3024417f3fed514a75e4bfc2b219c05b4dfa57eb637f9a4c1c24b8e24e292bf064380b584b599c77a54dcaaf82e6d4820033cb1a225b069508bb94b8a33a83aee1ac7921f9ec79870ba261f61a13a9fb9eaf55248e03bdfb78609a3f385d48ad7cd4abbe947581dd42a99945"}, @ETHTOOL_A_BITSET_VALUE={0x6d, 0x4, "c5c0357a5b8420937d0c4d7c285c2582bccafa3eb046d6a3abff83b21f97d6ced6c203c7217efebd79357baf9719794ece97ad0f0469798e149adfb116509a744a3f72e8c75a57bce0bffec92d52d34bca38ac1e755ef268558363a34ab2e721d08e6e670fb41c5920"}, @ETHTOOL_A_BITSET_MASK={0xb9, 0x5, "64d5b4f83e3b122b5e4575d7e194c6e307bfea35f90a128577e01673abe0141a127ed4a8b7a9b3405e9323e8db6c515c7285c2b7d56757cce3353d65c58753f085de91be9d16669ba2f69499281bfcc54bf0fe9cca4700b0f504e0764ee4ae4966221bc857dd1789b3fd681f94f23d067fdbe42f2a865b14581212bf3f0bd1b10f30743f31556b8f17da7ed9d527d22e1f8ae4e6e4182f419fc140fd44afd4fd712d8315a1f67413d1c0748366e28a55054ff1c690"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x41, 0x5, "e7da6dfdcc6a1db74482223c1fe461f5f7fd0fd943e999adc275ced0c9aa99f4971a8e495284e0c7385548b1ec8d534fba70506af03df2e34201c78925"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x3c, 0x4, "e09315e22e90e2db479607fe2229bfc68dfbf1d61890c5fe0a03ed42fb3fbf8c96788914e8afd91212e9dcef115b04f641bea417b30b32ca"}]}, @ETHTOOL_A_EEE_MODES_OURS={0x3dc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'gred\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x1}, @ETHTOOL_A_BITSET_MASK={0xb8, 0x5, "d87b20df836b7f694dd64fb7562f480b7656d949199b59ae236148ff1ad18074fc40d31ac52b809a59cb08fb93f4d97e719048fa28a705c58c0b3977d53e825bbe7c0b4e4427d2c7af08c88c4fdf1c36ff30a88964ae0715c437ce2749de3f18f60843e1b495a31ec8dc4a8fcceb9768752d055defa1cbcfb9f48f208a6d7fed1bec82df73a312844e3370592a1175136ae602ed15b47ea4d66f491e49f820974193e8f267f5205e60f48c5faf2ffd00a3e5823d"}, @ETHTOOL_A_BITSET_BITS={0xf4, 0x3, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, ':{,:\'\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x101}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'sched_switch\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '#!\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'&@\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'\'{$%@\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'sched_switch\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '[.*\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'rose0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '!,!+*^.\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0xdc, 0x3, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, 'sys_enter\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\\\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '/\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'gred\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'Y\xcd(*\\\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '-@})]\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '.$%/[\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ':!-\\\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7}, @ETHTOOL_A_BITSET_VALUE={0xc2, 0x4, "6e91b244a30b97c08f7db6e5915b36a3217e1bfce3e6ac5060f6d68f9243bf64dd22e01471ca0188b73355e37e9d4575a52dd467016c85f0cda47dd2f4ab858e6b24bde2d3f931f3ef9634685a72a9ff1bb3ae45e8e5934a9bb8fc9cb66d9d222001b78859b502082c7fd46779e0b4be9347da428faf5a63e633a4d881b8aa842d8feb99ff0873972e3cb3adb1598d6efa1dbdae29425112e96b35f519d8ea728dd2bde997c71a1d1a80ef3d162da47063f4380cd5f8ab26cf85f72f9119"}, @ETHTOOL_A_BITSET_BITS={0x68, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, 'sys_enter\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x26df}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}]}, 0x644}, 0x1, 0x0, 0x0, 0x20040080}, 0x41)
close(r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r5}, 0x10)
kexec_load(0x100000000000000, 0x0, 0x0, 0x3e0000)

296.312508ms ago: executing program 4 (id=7482):
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
ioctl$HIDIOCSFEATURE(r0, 0xc0404806, &(0x7f0000000100)="811c95daf582571ebd05e12f80232e13e84fbaf1e2909c3a784a8ddbcc65ad26e2e0b0e6e4053d1fd43f591e6f75af161dc4a6a2d61ad7cfeebbd1f1de4efb665ee812f3dbdf84c014dbeebfe87f46a1045b49c448572a95c915cb9417ef98f002ac5eb07f3f3d4512d4195c2c3115c828a30d6ce0a2ae2ba68c47d9ddd4622e6d8c9f64e2443ebfca28fae433cdeaed2ba21949ca40b8b563212d7e555544b3d11f513a457816131eb250efba") (async)
ioctl$HIDIOCSFEATURE(r0, 0xc0404806, &(0x7f0000000100)="811c95daf582571ebd05e12f80232e13e84fbaf1e2909c3a784a8ddbcc65ad26e2e0b0e6e4053d1fd43f591e6f75af161dc4a6a2d61ad7cfeebbd1f1de4efb665ee812f3dbdf84c014dbeebfe87f46a1045b49c448572a95c915cb9417ef98f002ac5eb07f3f3d4512d4195c2c3115c828a30d6ce0a2ae2ba68c47d9ddd4622e6d8c9f64e2443ebfca28fae433cdeaed2ba21949ca40b8b563212d7e555544b3d11f513a457816131eb250efba")
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_LEN={0x8}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BYTEORDER_SREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd8}}, 0x0)

277.306788ms ago: executing program 4 (id=7483):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0600000004000000fd0f00000200000000000000", @ANYRES32, @ANYBLOB="00838000000010104d2c7f3c5548759a00000000e77606e3ad93ae7223b817c148b3fbf3f07bdb90c47ed633100c251bda0b69452a221233ac1405b2b100000000000000005490851a5615c10e43c170e72338b56972102cea43d2b638f01606efcfdb4e22a76e0bfeb79e1602cf7a436a73859647097b2f1b1bced2444108a63d342683d9c7ddcf74b0bccf045af996c0822e9b5b04b7cb2fb8dc5003fe14f112fe636ee2350e7fbd25ac14982659ba6da9d0d580288876ecd6cf08052f8599d89d7a1a7bd2b2ced4a020629cc26c1d6df2d1fe4d8ed954cd679b848295", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = socket$rds(0x15, 0x5, 0x0)
r2 = epoll_create(0x3f)
kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, r1, &(0x7f0000000000)={r2, r0, 0x4})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000300)=""/225)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r3, 0x5453, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/kexec_crash_size', 0x200000, 0x100)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$netlink(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000f5ffffff0700000005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$tipc(r5, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
close(r5)
close(r4)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x8}, &(0x7f0000000180)=0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)

257.968548ms ago: executing program 1 (id=7484):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001880)={'vxcan1\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0xd}}]}}, @TCA_RATE={0x6}]}, 0x4c}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="230000000400000008000100", @ANYRES32, @ANYBLOB], 0x50)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
syz_io_uring_submit(r3, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00008, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r6, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400})
r7 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r7, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f00000028c0)={0x0, 0x28}}, 0x0)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(r7, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000f80)={0x644, r8, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_EEE_MODES_OURS={0x23c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x83, 0x4, "8b081b68270550341380b4983f50961c32391a3024417f3fed514a75e4bfc2b219c05b4dfa57eb637f9a4c1c24b8e24e292bf064380b584b599c77a54dcaaf82e6d4820033cb1a225b069508bb94b8a33a83aee1ac7921f9ec79870ba261f61a13a9fb9eaf55248e03bdfb78609a3f385d48ad7cd4abbe947581dd42a99945"}, @ETHTOOL_A_BITSET_VALUE={0x6d, 0x4, "c5c0357a5b8420937d0c4d7c285c2582bccafa3eb046d6a3abff83b21f97d6ced6c203c7217efebd79357baf9719794ece97ad0f0469798e149adfb116509a744a3f72e8c75a57bce0bffec92d52d34bca38ac1e755ef268558363a34ab2e721d08e6e670fb41c5920"}, @ETHTOOL_A_BITSET_MASK={0xb9, 0x5, "64d5b4f83e3b122b5e4575d7e194c6e307bfea35f90a128577e01673abe0141a127ed4a8b7a9b3405e9323e8db6c515c7285c2b7d56757cce3353d65c58753f085de91be9d16669ba2f69499281bfcc54bf0fe9cca4700b0f504e0764ee4ae4966221bc857dd1789b3fd681f94f23d067fdbe42f2a865b14581212bf3f0bd1b10f30743f31556b8f17da7ed9d527d22e1f8ae4e6e4182f419fc140fd44afd4fd712d8315a1f67413d1c0748366e28a55054ff1c690"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x41, 0x5, "e7da6dfdcc6a1db74482223c1fe461f5f7fd0fd943e999adc275ced0c9aa99f4971a8e495284e0c7385548b1ec8d534fba70506af03df2e34201c78925"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x3c, 0x4, "e09315e22e90e2db479607fe2229bfc68dfbf1d61890c5fe0a03ed42fb3fbf8c96788914e8afd91212e9dcef115b04f641bea417b30b32ca"}]}, @ETHTOOL_A_EEE_MODES_OURS={0x3dc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'gred\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x1}, @ETHTOOL_A_BITSET_MASK={0xb8, 0x5, "d87b20df836b7f694dd64fb7562f480b7656d949199b59ae236148ff1ad18074fc40d31ac52b809a59cb08fb93f4d97e719048fa28a705c58c0b3977d53e825bbe7c0b4e4427d2c7af08c88c4fdf1c36ff30a88964ae0715c437ce2749de3f18f60843e1b495a31ec8dc4a8fcceb9768752d055defa1cbcfb9f48f208a6d7fed1bec82df73a312844e3370592a1175136ae602ed15b47ea4d66f491e49f820974193e8f267f5205e60f48c5faf2ffd00a3e5823d"}, @ETHTOOL_A_BITSET_BITS={0xf4, 0x3, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, ':{,:\'\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x101}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'sched_switch\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '#!\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'&@\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'\'{$%@\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'sched_switch\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '[.*\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'rose0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '!,!+*^.\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0xdc, 0x3, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, 'sys_enter\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\\\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/dev/net/tun\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '/\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'gred\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'Y\xcd(*\\\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '-@})]\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '.$%/[\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ':!-\\\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7}, @ETHTOOL_A_BITSET_VALUE={0xc2, 0x4, "6e91b244a30b97c08f7db6e5915b36a3217e1bfce3e6ac5060f6d68f9243bf64dd22e01471ca0188b73355e37e9d4575a52dd467016c85f0cda47dd2f4ab858e6b24bde2d3f931f3ef9634685a72a9ff1bb3ae45e8e5934a9bb8fc9cb66d9d222001b78859b502082c7fd46779e0b4be9347da428faf5a63e633a4d881b8aa842d8feb99ff0873972e3cb3adb1598d6efa1dbdae29425112e96b35f519d8ea728dd2bde997c71a1d1a80ef3d162da47063f4380cd5f8ab26cf85f72f9119"}, @ETHTOOL_A_BITSET_BITS={0x68, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, 'sys_enter\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x26df}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}]}, 0x644}, 0x1, 0x0, 0x0, 0x20040080}, 0x41)
close(r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r5}, 0x10)
kexec_load(0x100000000000000, 0x0, 0x0, 0x3e0000)

74.43061ms ago: executing program 1 (id=7485):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x69)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f0000000500), &(0x7f0000000200)}, 0x20)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "0700001000", "0d07080d004fcfabd5e8ffff1a8600", "1112f5fd", "865703b7e43b34e4"}, 0x28)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close(r0)

34.75279ms ago: executing program 1 (id=7486):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
readlink(&(0x7f00000012c0)='./file0/../file0\x00', &(0x7f0000001580)=""/84, 0x54)

0s ago: executing program 1 (id=7487):
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xe, 0x4, 0x0, 0x0, 0x4c, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa210104, @local, {[@timestamp_addr={0x44, 0x14, 0xa, 0x1, 0x0, [{@multicast1}, {@loopback}]}, @generic={0x7, 0x10, "0990ec742f779f8fa6a3063542a2"}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x8, &(0x7f0000001340)=ANY=[@ANYBLOB="beaa000000000000791008000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000bf03000000000000850000000c000000b70000000000000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f0000000140)={0x1f, @fixed}, 0x8)
r2 = dup2(r1, r1)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, 0x0, 0x0)
ioctl$sock_inet_SIOCDELRT(r2, 0x890c, &(0x7f0000000000)={0x0, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e24, @rand_addr=0x64010100}, {0x2, 0x4e22, @broadcast}, 0x80, 0x0, 0x0, 0x0, 0xaf, 0x0, 0x2, 0x5, 0x4})

kernel console output (not intermixed with test programs):

unknown main item tag 0x0
[  829.619803][T27413] CPU: 1 UID: 0 PID: 27413 Comm: syz.0.6906 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  829.627157][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.637523][T27413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  829.637541][T27413] Call Trace:
[  829.637551][T27413]  <TASK>
[  829.644939][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.655019][T27413]  dump_stack_lvl+0xf2/0x150
[  829.658322][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.661235][T27413]  dump_stack+0x15/0x1a
[  829.668611][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.673168][T27413]  should_fail_ex+0x223/0x230
[  829.673203][T27413]  should_failslab+0x8f/0xb0
[  829.680639][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.684783][T27413]  kmem_cache_alloc_node_noprof+0x59/0x320
[  829.684814][T27413]  ? __alloc_skb+0x10b/0x310
[  829.692202][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.696856][T27413]  ? __rtnl_unlock+0x99/0xb0
[  829.701422][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.708760][T27413]  __alloc_skb+0x10b/0x310
[  829.714587][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.719138][T27413]  netlink_ack+0xef/0x4f0
[  829.726569][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.731060][T27413]  ? __dev_queue_xmit+0x186/0x2090
[  829.738476][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.742960][T27413]  netlink_rcv_skb+0x19c/0x230
[  829.750405][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.754678][T27413]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  829.762065][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.767200][T27413]  rtnetlink_rcv+0x1c/0x30
[  829.774683][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.779420][T27413]  netlink_unicast+0x599/0x670
[  829.786828][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.786850][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.786873][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.786894][T23499] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  829.792331][T27413]  netlink_sendmsg+0x5cc/0x6e0
[  829.851115][T27413]  ? __pfx_netlink_sendmsg+0x10/0x10
[  829.856428][T27413]  __sock_sendmsg+0x140/0x180
[  829.861176][T27413]  ____sys_sendmsg+0x312/0x410
[  829.865985][T27413]  __sys_sendmsg+0x19d/0x230
[  829.870631][T27413]  __x64_sys_sendmsg+0x46/0x50
[  829.875458][T27413]  x64_sys_call+0x2734/0x2dc0
[  829.880159][T27413]  do_syscall_64+0xc9/0x1c0
[  829.884728][T27413]  ? clear_bhb_loop+0x55/0xb0
[  829.889437][T27413]  ? clear_bhb_loop+0x55/0xb0
[  829.894209][T27413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  829.900136][T27413] RIP: 0033:0x7f52a5620849
[  829.904571][T27413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  829.924307][T27413] RSP: 002b:00007f52a3c97058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  829.932752][T27413] RAX: ffffffffffffffda RBX: 00007f52a57e5fa0 RCX: 00007f52a5620849
[  829.940757][T27413] RDX: 00000000040440c0 RSI: 0000000020000180 RDI: 0000000000000009
[  829.941876][T23499] hid-generic 0000:0000:0000.001B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  829.948753][T27413] RBP: 00007f52a3c970a0 R08: 0000000000000000 R09: 0000000000000000
[  829.948772][T27413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  829.948788][T27413] R13: 0000000000000000 R14: 00007f52a57e5fa0 R15: 00007ffe4845bdf8
[  829.982398][T27413]  </TASK>
[  830.142113][T27434] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=27434 comm=syz.2.6913
[  830.172242][T27436] netlink: 'syz.6.6914': attribute type 10 has an invalid length.
[  830.249004][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x7
[  830.256569][T23499] hid-generic 0000:0000:0000.001C: ignoring exceeding usage max
[  830.268899][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.293038][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.300524][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.308034][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.315655][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.323182][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.330607][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.338076][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.345540][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.352969][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.360429][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.367950][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.375373][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.382862][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.390298][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.397717][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.405118][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.412573][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.420008][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.427413][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.434876][T23499] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  830.445213][T23499] hid-generic 0000:0000:0000.001C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  830.500996][T27460] FAULT_INJECTION: forcing a failure.
[  830.500996][T27460] name failslab, interval 1, probability 0, space 0, times 0
[  830.513708][T27460] CPU: 1 UID: 0 PID: 27460 Comm: syz.6.6921 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  830.524211][T27460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  830.534314][T27460] Call Trace:
[  830.537614][T27460]  <TASK>
[  830.540556][T27460]  dump_stack_lvl+0xf2/0x150
[  830.545231][T27460]  dump_stack+0x15/0x1a
[  830.549425][T27460]  should_fail_ex+0x223/0x230
[  830.554168][T27460]  should_failslab+0x8f/0xb0
[  830.558828][T27460]  __kmalloc_noprof+0xab/0x3f0
[  830.563657][T27460]  ? process_vm_rw+0x2ca/0x890
[  830.568455][T27460]  ? iovec_from_user+0x17e/0x210
[  830.573496][T27460]  process_vm_rw+0x2ca/0x890
[  830.578158][T27460]  ? kstrtouint_from_user+0xb0/0xe0
[  830.583380][T27460]  ? ksys_write+0x176/0x1b0
[  830.587921][T27460]  __x64_sys_process_vm_readv+0x7a/0x90
[  830.593549][T27460]  x64_sys_call+0xb24/0x2dc0
[  830.598165][T27460]  do_syscall_64+0xc9/0x1c0
[  830.602748][T27460]  ? clear_bhb_loop+0x55/0xb0
[  830.607592][T27460]  ? clear_bhb_loop+0x55/0xb0
[  830.612330][T27460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  830.618373][T27460] RIP: 0033:0x7f7c43450849
[  830.622808][T27460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  830.642443][T27460] RSP: 002b:00007f7c41ac7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  830.650890][T27460] RAX: ffffffffffffffda RBX: 00007f7c43615fa0 RCX: 00007f7c43450849
[  830.658882][T27460] RDX: 0000000000000002 RSI: 0000000020008400 RDI: 00000000000000f9
[  830.666941][T27460] RBP: 00007f7c41ac70a0 R08: 0000000000000286 R09: 0000000000000000
[  830.674937][T27460] R10: 0000000020008640 R11: 0000000000000246 R12: 0000000000000001
[  830.682925][T27460] R13: 0000000000000000 R14: 00007f7c43615fa0 R15: 00007ffc5b905f78
[  830.690965][T27460]  </TASK>
[  831.215929][T27471] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=27471 comm=syz.0.6925
[  831.319683][T27427] syz.4.6910 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  831.333865][T27427] CPU: 0 UID: 0 PID: 27427 Comm: syz.4.6910 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  831.344308][T27427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  831.354376][T27427] Call Trace:
[  831.357723][T27427]  <TASK>
[  831.360662][T27427]  dump_stack_lvl+0xf2/0x150
[  831.365351][T27427]  dump_stack+0x15/0x1a
[  831.369637][T27427]  dump_header+0x83/0x2d0
[  831.374005][T27427]  oom_kill_process+0x341/0x4c0
[  831.378889][T27427]  out_of_memory+0x9af/0xbe0
[  831.383535][T27427]  mem_cgroup_out_of_memory+0x13e/0x190
[  831.389226][T27427]  try_charge_memcg+0x508/0x7f0
[  831.394230][T27427]  obj_cgroup_charge_pages+0xbd/0x1a0
[  831.399622][T27427]  __memcg_kmem_charge_page+0x9d/0x170
[  831.405135][T27427]  __alloc_pages_noprof+0x1bc/0x340
[  831.410359][T27427]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  831.415745][T27427]  alloc_pages_noprof+0xe1/0x100
[  831.420740][T27427]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  831.426598][T27427]  __kvmalloc_node_noprof+0x121/0x170
[  831.432001][T27427]  ? ip_set_alloc+0x1f/0x30
[  831.436517][T27427]  ip_set_alloc+0x1f/0x30
[  831.440943][T27427]  hash_netiface_create+0x273/0x730
[  831.446161][T27427]  ? __nla_parse+0x40/0x60
[  831.450591][T27427]  ? __pfx_hash_netiface_create+0x10/0x10
[  831.456390][T27427]  ip_set_create+0x359/0x8a0
[  831.461127][T27427]  ? strnstr+0x61/0x100
[  831.465311][T27427]  ? __nla_parse+0x40/0x60
[  831.469781][T27427]  nfnetlink_rcv_msg+0x4a9/0x570
[  831.474809][T27427]  netlink_rcv_skb+0x12c/0x230
[  831.479597][T27427]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  831.485075][T27427]  nfnetlink_rcv+0x16c/0x15d0
[  831.489860][T27427]  ? kmem_cache_free+0xdc/0x2d0
[  831.494772][T27427]  ? nlmon_xmit+0x51/0x60
[  831.499112][T27427]  ? __kfree_skb+0x102/0x150
[  831.503721][T27427]  ? consume_skb+0x49/0x160
[  831.508358][T27427]  ? nlmon_xmit+0x51/0x60
[  831.512729][T27427]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  831.518034][T27427]  ? __dev_queue_xmit+0xb6e/0x2090
[  831.523167][T27427]  ? ref_tracker_free+0x3a5/0x410
[  831.528265][T27427]  ? __dev_queue_xmit+0x186/0x2090
[  831.533404][T27427]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  831.538978][T27427]  netlink_unicast+0x599/0x670
[  831.543765][T27427]  netlink_sendmsg+0x5cc/0x6e0
[  831.548536][T27427]  ? __pfx_netlink_sendmsg+0x10/0x10
[  831.553829][T27427]  __sock_sendmsg+0x140/0x180
[  831.558588][T27427]  ____sys_sendmsg+0x312/0x410
[  831.563374][T27427]  __sys_sendmsg+0x19d/0x230
[  831.568005][T27427]  __x64_sys_sendmsg+0x46/0x50
[  831.572798][T27427]  x64_sys_call+0x2734/0x2dc0
[  831.577486][T27427]  do_syscall_64+0xc9/0x1c0
[  831.582003][T27427]  ? clear_bhb_loop+0x55/0xb0
[  831.586907][T27427]  ? clear_bhb_loop+0x55/0xb0
[  831.591678][T27427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  831.597649][T27427] RIP: 0033:0x7fa723310849
[  831.602070][T27427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  831.621719][T27427] RSP: 002b:00007fa721987058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  831.630172][T27427] RAX: ffffffffffffffda RBX: 00007fa7234d5fa0 RCX: 00007fa723310849
[  831.638176][T27427] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000009
[  831.646177][T27427] RBP: 00007fa723383986 R08: 0000000000000000 R09: 0000000000000000
[  831.654174][T27427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  831.662190][T27427] R13: 0000000000000000 R14: 00007fa7234d5fa0 R15: 00007ffc6a0ee9d8
[  831.670175][T27427]  </TASK>
[  831.673330][T27427] memory: usage 306976kB, limit 307200kB, failcnt 240
[  831.680199][T27427] memory+swap: usage 307144kB, limit 9007199254740988kB, failcnt 0
[  831.688115][T27427] kmem: usage 306940kB, limit 9007199254740988kB, failcnt 0
[  831.695530][T27427] Memory cgroup stats for /syz4:
[  831.711155][T27427] cache 4096
[  831.719454][T27427] rss 24576
[  831.722581][T27427] shmem 0
[  831.725566][T27427] mapped_file 4096
[  831.729294][T27427] dirty 0
[  831.732291][T27427] writeback 0
[  831.735618][T27427] workingset_refault_anon 45
[  831.740289][T27427] workingset_refault_file 97
[  831.744900][T27427] swap 172032
[  831.748197][T27427] swapcached 32768
[  831.751918][T27427] pgpgin 1547841
[  831.755505][T27427] pgpgout 1547832
[  831.759148][T27427] pgfault 1559090
[  831.762793][T27427] pgmajfault 31
[  831.766279][T27427] inactive_anon 0
[  831.770017][T27427] active_anon 32768
[  831.773851][T27427] inactive_file 0
[  831.777534][T27427] active_file 4096
[  831.781317][T27427] unevictable 0
[  831.784906][T27427] hierarchical_memory_limit 314572800
[  831.790351][T27427] hierarchical_memsw_limit 9223372036854771712
[  831.796626][T27427] total_cache 4096
[  831.800412][T27427] total_rss 24576
[  831.803293][T27473] netlink: 'syz.1.6926': attribute type 10 has an invalid length.
[  831.804041][T27427] total_shmem 0
[  831.804053][T27427] total_mapped_file 4096
[  831.819768][T27427] total_dirty 0
[  831.823363][T27427] total_writeback 0
[  831.827368][T27427] total_workingset_refault_anon 45
[  831.830018][   T29] kauditd_printk_skb: 187 callbacks suppressed
[  831.830069][   T29] audit: type=1326 audit(2000000000.140:11928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  831.832563][T27427] total_workingset_refault_file 97
[  831.867419][T27427] total_swap 172032
[  831.871246][T27427] total_swapcached 32768
[  831.875526][T27427] total_pgpgin 1547841
[  831.879609][T27427] total_pgpgout 1547832
[  831.883874][T27427] total_pgfault 1559091
[  831.888042][T27427] total_pgmajfault 31
[  831.892097][T27427] total_inactive_anon 0
[  831.896279][T27427] total_active_anon 32768
[  831.900645][T27427] total_inactive_file 0
[  831.904835][T27427] total_active_file 4096
[  831.909106][T27427] total_unevictable 0
[  831.911777][   T29] audit: type=1326 audit(2000000000.205:11929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  831.913089][T27427] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.6910,pid=27426,uid=0
[  831.942555][   T29] audit: type=1326 audit(2000000000.233:11930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  831.951400][T27427] Memory cgroup out of memory: Killed process 27427 (syz.4.6910) total-vm:93148kB, anon-rss:744kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000
[  832.005341][   T29] audit: type=1326 audit(2000000000.271:11931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.029160][   T29] audit: type=1326 audit(2000000000.271:11932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.052943][   T29] audit: type=1326 audit(2000000000.271:11933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.076585][   T29] audit: type=1326 audit(2000000000.271:11934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.100292][   T29] audit: type=1326 audit(2000000000.271:11935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.123913][   T29] audit: type=1326 audit(2000000000.271:11936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.147908][   T29] audit: type=1326 audit(2000000000.271:11937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27476 comm="syz.0.6927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  832.320929][T27502] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=27502 comm=syz.6.6938
[  832.482138][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x7
[  832.489661][T23499] hid-generic 0000:0000:0000.001D: ignoring exceeding usage max
[  832.501361][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.509022][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.516505][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.523896][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531332][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531358][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531385][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531464][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531491][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531515][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531555][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531581][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531601][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531624][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531720][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531746][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531770][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531791][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531893][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.531992][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.532019][T23499] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  832.562435][T23499] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  833.013937][T27525] netlink: 'syz.4.6943': attribute type 10 has an invalid length.
[  833.505356][T27567] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6963'.
[  833.532272][T27567] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6963'.
[  833.553702][T27567] IPVS: Error joining to the multicast group
[  833.717738][T27579] netlink: 'syz.1.6967': attribute type 2 has an invalid length.
[  833.736447][T27579] netlink: 'syz.1.6967': attribute type 1 has an invalid length.
[  833.744262][T27579] netlink: 224 bytes leftover after parsing attributes in process `syz.1.6967'.
[  834.582537][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  834.584736][T27617] block device autoloading is deprecated and will be removed.
[  834.591552][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  834.593813][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  834.666747][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  834.675870][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  834.686192][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  834.760823][T27626] FAULT_INJECTION: forcing a failure.
[  834.760823][T27626] name failslab, interval 1, probability 0, space 0, times 0
[  834.773639][T27626] CPU: 0 UID: 0 PID: 27626 Comm: syz.1.6980 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  834.784138][T27626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  834.794265][T27626] Call Trace:
[  834.797655][T27626]  <TASK>
[  834.800596][T27626]  dump_stack_lvl+0xf2/0x150
[  834.805358][T27626]  dump_stack+0x15/0x1a
[  834.809561][T27626]  should_fail_ex+0x223/0x230
[  834.814255][T27626]  should_failslab+0x8f/0xb0
[  834.819003][T27626]  kmem_cache_alloc_node_noprof+0x59/0x320
[  834.824822][T27626]  ? __alloc_skb+0x10b/0x310
[  834.829469][T27626]  __alloc_skb+0x10b/0x310
[  834.833937][T27626]  ? audit_log_start+0x34c/0x6b0
[  834.838935][T27626]  audit_log_start+0x368/0x6b0
[  834.843714][T27626]  ? __rcu_read_unlock+0x4e/0x70
[  834.848695][T27626]  audit_log_common_recv_msg+0xc0/0x180
[  834.854283][T27626]  audit_receive+0x13c2/0x2a20
[  834.859070][T27626]  ? __netlink_lookup+0x253/0x290
[  834.864147][T27626]  netlink_unicast+0x599/0x670
[  834.868930][T27626]  netlink_sendmsg+0x5cc/0x6e0
[  834.873744][T27626]  ? __pfx_netlink_sendmsg+0x10/0x10
[  834.879073][T27626]  __sock_sendmsg+0x140/0x180
[  834.883856][T27626]  ____sys_sendmsg+0x312/0x410
[  834.888722][T27626]  __sys_sendmsg+0x19d/0x230
[  834.893420][T27626]  __x64_sys_sendmsg+0x46/0x50
[  834.898203][T27626]  x64_sys_call+0x2734/0x2dc0
[  834.902891][T27626]  do_syscall_64+0xc9/0x1c0
[  834.907416][T27626]  ? clear_bhb_loop+0x55/0xb0
[  834.912125][T27626]  ? clear_bhb_loop+0x55/0xb0
[  834.916903][T27626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.922811][T27626] RIP: 0033:0x7f9bb27f0849
[  834.927320][T27626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  834.946980][T27626] RSP: 002b:00007f9bb0e67058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  834.955402][T27626] RAX: ffffffffffffffda RBX: 00007f9bb29b5fa0 RCX: 00007f9bb27f0849
[  834.963410][T27626] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[  834.971386][T27626] RBP: 00007f9bb0e670a0 R08: 0000000000000000 R09: 0000000000000000
[  834.979364][T27626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  834.987405][T27626] R13: 0000000000000000 R14: 00007f9bb29b5fa0 R15: 00007ffc8176b7b8
[  834.995468][T27626]  </TASK>
[  835.023674][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  835.032730][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  835.037272][T27638] loop0: detected capacity change from 0 to 512
[  835.045033][T27618] netlink: 36 bytes leftover after parsing attributes in process `syz.4.6975'.
[  835.129415][T27638] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.6985: corrupted in-inode xattr: invalid ea_ino
[  835.187521][T27644] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6988'.
[  835.205633][T27638] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.6985: couldn't read orphan inode 15 (err -117)
[  835.264364][T27638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  835.315360][T27638] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #2: block 3: comm syz.0.6985: lblock 0 mapped to illegal pblock 3 (length 1)
[  835.342310][T27638] EXT4-fs warning (device loop0): dx_probe:823: inode #2: lblock 0: comm syz.0.6985: error -117 reading directory block
[  835.423211][T27638] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #2: block 3: comm syz.0.6985: lblock 0 mapped to illegal pblock 3 (length 1)
[  835.452242][T27638] EXT4-fs warning (device loop0): dx_probe:823: inode #2: lblock 0: comm syz.0.6985: error -117 reading directory block
[  835.497255][T27648] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 255: padding at end of block bitmap is not set
[  835.585463][T23914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  835.597193][T27680] syz.4.6998[27680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  835.597308][T27680] syz.4.6998[27680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  835.615634][T27680] syz.4.6998[27680] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  835.642006][T27684] loop0: detected capacity change from 0 to 1764
[  835.858763][T27704] loop0: detected capacity change from 0 to 1024
[  835.870066][T27704] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  835.893487][T27650] syz.1.6990 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  835.907739][T27650] CPU: 1 UID: 0 PID: 27650 Comm: syz.1.6990 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  835.918259][T27650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  835.928394][T27650] Call Trace:
[  835.931592][T27704] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  835.931671][T27650]  <TASK>
[  835.931684][T27650]  dump_stack_lvl+0xf2/0x150
[  835.951616][T27650]  dump_stack+0x15/0x1a
[  835.955834][T27650]  dump_header+0x83/0x2d0
[  835.960270][T27650]  oom_kill_process+0x341/0x4c0
[  835.965143][T27650]  out_of_memory+0x9af/0xbe0
[  835.969749][T27650]  ? css_next_descendant_pre+0x11c/0x140
[  835.975485][T27650]  mem_cgroup_out_of_memory+0x13e/0x190
[  835.981067][T27650]  try_charge_memcg+0x508/0x7f0
[  835.986021][T27650]  obj_cgroup_charge_pages+0xbd/0x1a0
[  835.991417][T27650]  __memcg_kmem_charge_page+0x9d/0x170
[  835.996909][T27650]  __alloc_pages_noprof+0x1bc/0x340
[  836.002144][T27650]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  836.007635][T27650]  alloc_pages_noprof+0xe1/0x100
[  836.012679][T27650]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  836.018546][T27650]  __kvmalloc_node_noprof+0x121/0x170
[  836.024020][T27650]  ? ip_set_alloc+0x1f/0x30
[  836.028606][T27650]  ip_set_alloc+0x1f/0x30
[  836.032953][T27650]  hash_netiface_create+0x273/0x730
[  836.038172][T27650]  ? __nla_parse+0x40/0x60
[  836.042605][T27650]  ? __pfx_hash_netiface_create+0x10/0x10
[  836.048393][T27650]  ip_set_create+0x359/0x8a0
[  836.052996][T27650]  ? strnstr+0x61/0x100
[  836.057187][T27650]  ? __nla_parse+0x40/0x60
[  836.061628][T27650]  nfnetlink_rcv_msg+0x4a9/0x570
[  836.066654][T27650]  netlink_rcv_skb+0x12c/0x230
[  836.071460][T27650]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  836.076935][T27650]  nfnetlink_rcv+0x16c/0x15d0
[  836.081667][T27650]  ? kmem_cache_free+0xdc/0x2d0
[  836.086528][T27650]  ? nlmon_xmit+0x51/0x60
[  836.090909][T27650]  ? __kfree_skb+0x102/0x150
[  836.095524][T27650]  ? consume_skb+0x49/0x160
[  836.100063][T27650]  ? nlmon_xmit+0x51/0x60
[  836.104484][T27650]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  836.109820][T27650]  ? __dev_queue_xmit+0xb6e/0x2090
[  836.114963][T27650]  ? ref_tracker_free+0x3a5/0x410
[  836.120000][T27650]  ? __dev_queue_xmit+0x186/0x2090
[  836.125142][T27650]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  836.130640][T27650]  netlink_unicast+0x599/0x670
[  836.135521][T27650]  netlink_sendmsg+0x5cc/0x6e0
[  836.140341][T27650]  ? __pfx_netlink_sendmsg+0x10/0x10
[  836.145656][T27650]  __sock_sendmsg+0x140/0x180
[  836.150347][T27650]  ____sys_sendmsg+0x312/0x410
[  836.155232][T27650]  __sys_sendmsg+0x19d/0x230
[  836.159862][T27650]  __x64_sys_sendmsg+0x46/0x50
[  836.164711][T27650]  x64_sys_call+0x2734/0x2dc0
[  836.169526][T27650]  do_syscall_64+0xc9/0x1c0
[  836.174065][T27650]  ? clear_bhb_loop+0x55/0xb0
[  836.178848][T27650]  ? clear_bhb_loop+0x55/0xb0
[  836.183551][T27650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  836.189504][T27650] RIP: 0033:0x7f9bb27f0849
[  836.193934][T27650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  836.213557][T27650] RSP: 002b:00007f9bb0e67058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  836.222018][T27650] RAX: ffffffffffffffda RBX: 00007f9bb29b5fa0 RCX: 00007f9bb27f0849
[  836.230024][T27650] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000009
[  836.238005][T27650] RBP: 00007f9bb2863986 R08: 0000000000000000 R09: 0000000000000000
[  836.245982][T27650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  836.254098][T27650] R13: 0000000000000000 R14: 00007f9bb29b5fa0 R15: 00007ffc8176b7b8
[  836.262152][T27650]  </TASK>
[  836.265457][T27650] memory: usage 307200kB, limit 307200kB, failcnt 179
[  836.272642][T27650] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  836.280600][T27650] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  836.287951][T27650] Memory cgroup stats for /syz1:
[  836.288194][T27650] cache 0
[  836.296066][T27650] rss 0
[  836.298924][T27650] shmem 0
[  836.301937][T27650] mapped_file 0
[  836.305385][T27650] dirty 0
[  836.308325][T27650] writeback 0
[  836.311630][T27650] workingset_refault_anon 2876
[  836.316389][T27650] workingset_refault_file 591
[  836.321130][T27650] swap 188416
[  836.324424][T27650] swapcached 0
[  836.327791][T27650] pgpgin 1542403
[  836.331355][T27650] pgpgout 1542403
[  836.334987][T27650] pgfault 1540156
[  836.338615][T27650] pgmajfault 460
[  836.342260][T27650] inactive_anon 0
[  836.345893][T27650] active_anon 0
[  836.349343][T27650] inactive_file 0
[  836.353004][T27650] active_file 0
[  836.356518][T27650] unevictable 0
[  836.359973][T27650] hierarchical_memory_limit 314572800
[  836.365421][T27650] hierarchical_memsw_limit 9223372036854771712
[  836.371664][T27650] total_cache 0
[  836.375204][T27650] total_rss 0
[  836.378504][T27650] total_shmem 0
[  836.382127][T27650] total_mapped_file 0
[  836.386271][T27650] total_dirty 0
[  836.389745][T27650] total_writeback 0
[  836.393566][T27650] total_workingset_refault_anon 2876
[  836.399013][T27650] total_workingset_refault_file 591
[  836.404245][T27650] total_swap 188416
[  836.408083][T27650] total_swapcached 0
[  836.412144][T27650] total_pgpgin 1542403
[  836.416261][T27650] total_pgpgout 1542403
[  836.420443][T27650] total_pgfault 1540156
[  836.424621][T27650] total_pgmajfault 460
[  836.428857][T27650] total_inactive_anon 0
[  836.433221][T27650] total_active_anon 0
[  836.437302][T27650] total_inactive_file 0
[  836.441464][T27650] total_active_file 0
[  836.445443][T27650] total_unevictable 0
[  836.449494][T27650] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.6990,pid=27649,uid=0
[  836.464279][T27650] Memory cgroup out of memory: Killed process 27649 (syz.1.6990) total-vm:93148kB, anon-rss:724kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:116kB oom_score_adj:1000
[  836.596075][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x7
[  836.603594][T12720] hid-generic 0000:0000:0000.001E: ignoring exceeding usage max
[  836.615630][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.655276][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x7
[  836.662774][    T9] hid-generic 0000:0000:0000.001F: ignoring exceeding usage max
[  836.674049][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.697849][T23914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  836.708980][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.716493][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.723967][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.731499][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.738998][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.746481][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.753936][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.761471][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.768949][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.776361][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.783825][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.791263][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.798749][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.806183][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.813526][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x7
[  836.813651][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.820994][ T3374] hid-generic 0000:0000:0000.0020: ignoring exceeding usage max
[  836.828342][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.840548][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.843383][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.854300][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.858182][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.865636][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.872909][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.880370][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.887694][T12720] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  836.895050][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.902637][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.909833][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.917175][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.924581][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.931964][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.939342][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.946716][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.954095][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.961464][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.968833][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.976225][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.983631][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.983657][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.983707][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  836.991038][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.991092][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  836.998491][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.005863][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.013195][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.020585][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.027973][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.035335][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.042770][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.050121][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.057548][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.064842][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.072232][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.079599][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.086983][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.094364][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.101773][ T3374] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  837.109135][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.146754][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.154166][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.161609][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.169052][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  837.177363][T12720] hid-generic 0000:0000:0000.001E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  837.187857][ T3374] hid-generic 0000:0000:0000.0020: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  837.215656][    T9] hid-generic 0000:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  837.263145][   T29] kauditd_printk_skb: 195 callbacks suppressed
[  837.263158][   T29] audit: type=1326 audit(2000000004.012:12131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.265652][T27777] FAULT_INJECTION: forcing a failure.
[  837.265652][T27777] name failslab, interval 1, probability 0, space 0, times 0
[  837.276618][T27774] loop1: detected capacity change from 0 to 1764
[  837.293024][T27777] CPU: 1 UID: 0 PID: 27777 Comm: syz.0.7017 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  837.293059][T27777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  837.293074][T27777] Call Trace:
[  837.293083][T27777]  <TASK>
[  837.293093][T27777]  dump_stack_lvl+0xf2/0x150
[  837.309131][   T29] audit: type=1326 audit(2000000004.012:12132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.312041][T27777]  dump_stack+0x15/0x1a
[  837.322461][   T29] audit: type=1326 audit(2000000004.012:12133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.332514][T27777]  should_fail_ex+0x223/0x230
[  837.335820][   T29] audit: type=1326 audit(2000000004.012:12134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.338730][T27777]  should_failslab+0x8f/0xb0
[  837.427411][T27777]  __kmalloc_noprof+0xab/0x3f0
[  837.432197][T27777]  ? slhc_init+0xf8/0x380
[  837.436541][T27777]  slhc_init+0xf8/0x380
[  837.440706][T27777]  ppp_ioctl+0xe73/0x11b0
[  837.445050][T27777]  ? __fget_files+0x17c/0x1c0
[  837.449752][T27777]  ? __pfx_ppp_ioctl+0x10/0x10
[  837.454604][T27777]  __se_sys_ioctl+0xc9/0x140
[  837.459226][T27777]  __x64_sys_ioctl+0x43/0x50
[  837.463922][T27777]  x64_sys_call+0x1690/0x2dc0
[  837.468676][T27777]  do_syscall_64+0xc9/0x1c0
[  837.473369][T27777]  ? clear_bhb_loop+0x55/0xb0
[  837.478126][T27777]  ? clear_bhb_loop+0x55/0xb0
[  837.482870][T27777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.488824][T27777] RIP: 0033:0x7f52a5620849
[  837.493253][T27777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.512959][T27777] RSP: 002b:00007f52a3c97058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  837.521460][T27777] RAX: ffffffffffffffda RBX: 00007f52a57e5fa0 RCX: 00007f52a5620849
[  837.529460][T27777] RDX: 0000000020002540 RSI: 0000000040047451 RDI: 0000000000000006
[  837.537457][T27777] RBP: 00007f52a3c970a0 R08: 0000000000000000 R09: 0000000000000000
[  837.545436][T27777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  837.553410][T27777] R13: 0000000000000000 R14: 00007f52a57e5fa0 R15: 00007ffe4845bdf8
[  837.561398][T27777]  </TASK>
[  837.568614][   T29] audit: type=1326 audit(2000000004.293:12135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.592333][   T29] audit: type=1326 audit(2000000004.293:12136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.631964][   T29] audit: type=1326 audit(2000000004.321:12137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.655574][   T29] audit: type=1326 audit(2000000004.321:12138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.679291][   T29] audit: type=1326 audit(2000000004.321:12139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27773 comm="syz.2.7018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  837.719286][T27795] FAULT_INJECTION: forcing a failure.
[  837.719286][T27795] name failslab, interval 1, probability 0, space 0, times 0
[  837.731068][T27794] loop1: detected capacity change from 0 to 512
[  837.732080][T27795] CPU: 1 UID: 0 PID: 27795 Comm: syz.2.7023 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  837.748566][T27795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  837.758695][T27795] Call Trace:
[  837.761969][T27795]  <TASK>
[  837.764018][T27794] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.7024: corrupted in-inode xattr: invalid ea_ino
[  837.764889][T27795]  dump_stack_lvl+0xf2/0x150
[  837.778506][T27794] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.7024: couldn't read orphan inode 15 (err -117)
[  837.782722][T27795]  dump_stack+0x15/0x1a
[  837.797965][T27794] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  837.798670][T27795]  should_fail_ex+0x223/0x230
[  837.815399][T27795]  should_failslab+0x8f/0xb0
[  837.820077][T27795]  __kmalloc_noprof+0xab/0x3f0
[  837.820519][T27794] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #2: block 3: comm syz.1.7024: lblock 0 mapped to illegal pblock 3 (length 1)
[  837.824864][T27795]  ? tun_device_event+0x40b/0x9e0
[  837.824903][T27795]  tun_device_event+0x40b/0x9e0
[  837.839084][T27794] EXT4-fs warning (device loop1): dx_probe:823: inode #2: lblock 0: comm syz.1.7024: error -117 reading directory block
[  837.843788][T27795]  ? inetdev_event+0x456/0xac0
[  837.866028][T27795]  ? macvtap_device_event+0x70/0x320
[  837.871425][T27795]  ? team_device_event+0xf3/0x600
[  837.876467][T27795]  ? __pfx_tun_device_event+0x10/0x10
[  837.881886][T27795]  raw_notifier_call_chain+0x6f/0x1d0
[  837.887310][T27795]  call_netdevice_notifiers_info+0xae/0x100
[  837.893228][T27795]  dev_change_tx_queue_len+0xbb/0x170
[  837.898702][T27795]  dev_ifsioc+0x63e/0xa10
[  837.903067][T27795]  dev_ioctl+0x7fa/0xab0
[  837.907337][T27795]  sock_do_ioctl+0x11c/0x260
[  837.911998][T27795]  sock_ioctl+0x40f/0x600
[  837.916357][T27795]  ? __pfx_sock_ioctl+0x10/0x10
[  837.921218][T27795]  __se_sys_ioctl+0xc9/0x140
[  837.925898][T27795]  __x64_sys_ioctl+0x43/0x50
[  837.930561][T27795]  x64_sys_call+0x1690/0x2dc0
[  837.935304][T27795]  do_syscall_64+0xc9/0x1c0
[  837.939867][T27795]  ? clear_bhb_loop+0x55/0xb0
[  837.944590][T27795]  ? clear_bhb_loop+0x55/0xb0
[  837.949289][T27795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.955291][T27795] RIP: 0033:0x7f478ecc0849
[  837.959802][T27795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.979467][T27795] RSP: 002b:00007f478d337058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  837.987891][T27795] RAX: ffffffffffffffda RBX: 00007f478ee85fa0 RCX: 00007f478ecc0849
[  837.995883][T27795] RDX: 0000000020002280 RSI: 0000000000008943 RDI: 000000000000000b
[  838.003870][T27795] RBP: 00007f478d3370a0 R08: 0000000000000000 R09: 0000000000000000
[  838.011847][T27795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  838.019850][T27795] R13: 0000000000000000 R14: 00007f478ee85fa0 R15: 00007fff8b58a588
[  838.027934][T27795]  </TASK>
[  838.031127][T27795] syzkaller0: refused to change device tx_queue_len
[  838.066357][T27794] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #2: block 3: comm syz.1.7024: lblock 0 mapped to illegal pblock 3 (length 1)
[  838.080843][T27794] EXT4-fs warning (device loop1): dx_probe:823: inode #2: lblock 0: comm syz.1.7024: error -117 reading directory block
[  838.204917][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  838.690349][   T29] audit: type=1400 audit(2000000005.341:12140): avc:  denied  { mount } for  pid=27827 comm="syz.2.7032" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  838.796509][T27842] cgroup: Bad value for 'name'
[  838.813786][T27842] hsr_slave_1 (unregistering): left promiscuous mode
[  838.953130][T27855] FAULT_INJECTION: forcing a failure.
[  838.953130][T27855] name failslab, interval 1, probability 0, space 0, times 0
[  838.965814][T27855] CPU: 0 UID: 0 PID: 27855 Comm: syz.1.7038 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  838.976257][T27855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  838.986339][T27855] Call Trace:
[  838.989642][T27855]  <TASK>
[  838.992620][T27855]  dump_stack_lvl+0xf2/0x150
[  838.997284][T27855]  dump_stack+0x15/0x1a
[  839.001485][T27855]  should_fail_ex+0x223/0x230
[  839.006280][T27855]  ? ipv6_flowlabel_opt+0x702/0x11e0
[  839.011625][T27855]  should_failslab+0x8f/0xb0
[  839.016254][T27855]  __kmalloc_cache_noprof+0x4e/0x320
[  839.021663][T27855]  ipv6_flowlabel_opt+0x702/0x11e0
[  839.026811][T27855]  ? mntput_no_expire+0x70/0x3c0
[  839.031784][T27855]  ? mntput+0x49/0x70
[  839.035814][T27855]  ? _raw_spin_unlock_bh+0x36/0x40
[  839.041132][T27855]  ? lock_sock_nested+0x10f/0x140
[  839.046174][T27855]  ? should_fail_ex+0xd7/0x230
[  839.050965][T27855]  do_ipv6_setsockopt+0xc33/0x2250
[  839.056119][T27855]  ? kstrtouint+0x77/0xc0
[  839.060479][T27855]  ? avc_has_perm_noaudit+0x1cc/0x210
[  839.066070][T27855]  ? selinux_netlbl_socket_setsockopt+0xe5/0x2d0
[  839.072428][T27855]  ipv6_setsockopt+0x57/0x130
[  839.077146][T27855]  tcp_setsockopt+0x93/0xb0
[  839.081671][T27855]  sock_common_setsockopt+0x64/0x80
[  839.086964][T27855]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  839.093061][T27855]  __sys_setsockopt+0x187/0x200
[  839.097943][T27855]  __x64_sys_setsockopt+0x66/0x80
[  839.103068][T27855]  x64_sys_call+0x282e/0x2dc0
[  839.107795][T27855]  do_syscall_64+0xc9/0x1c0
[  839.112409][T27855]  ? clear_bhb_loop+0x55/0xb0
[  839.117152][T27855]  ? clear_bhb_loop+0x55/0xb0
[  839.121861][T27855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.127781][T27855] RIP: 0033:0x7f9bb27f0849
[  839.132217][T27855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  839.151852][T27855] RSP: 002b:00007f9bb0e67058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  839.160363][T27855] RAX: ffffffffffffffda RBX: 00007f9bb29b5fa0 RCX: 00007f9bb27f0849
[  839.168375][T27855] RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000003
[  839.176386][T27855] RBP: 00007f9bb0e670a0 R08: 0000000000000020 R09: 0000000000000000
[  839.184470][T27855] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[  839.192449][T27855] R13: 0000000000000000 R14: 00007f9bb29b5fa0 R15: 00007ffc8176b7b8
[  839.200527][T27855]  </TASK>
[  839.497704][T27874] xt_CT: You must specify a L4 protocol and not use inversions on it
[  839.560499][T27884] loop0: detected capacity change from 0 to 512
[  839.583935][T27884] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.7049: corrupted in-inode xattr: invalid ea_ino
[  839.603755][T27884] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.7049: couldn't read orphan inode 15 (err -117)
[  839.619961][T27884] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  839.695385][T27884] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #2: block 3: comm syz.0.7049: lblock 0 mapped to illegal pblock 3 (length 1)
[  839.731154][T27884] EXT4-fs warning (device loop0): dx_probe:823: inode #2: lblock 0: comm syz.0.7049: error -117 reading directory block
[  839.982956][T27884] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #2: block 3: comm syz.0.7049: lblock 0 mapped to illegal pblock 3 (length 1)
[  840.077363][T27884] EXT4-fs warning (device loop0): dx_probe:823: inode #2: lblock 0: comm syz.0.7049: error -117 reading directory block
[  840.285861][T23914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  840.762774][T27917] vhci_hcd: invalid port number 0
[  840.838098][T27919] pimreg: entered allmulticast mode
[  840.861548][T27914] loop1: detected capacity change from 0 to 8192
[  840.872537][T27924] wireguard0: entered promiscuous mode
[  840.873436][T27914] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000007'
[  840.878256][T27924] wireguard0: entered allmulticast mode
[  841.027408][T27948] pim6reg1: entered promiscuous mode
[  841.032771][T27948] pim6reg1: entered allmulticast mode
[  841.156716][T27972] FAULT_INJECTION: forcing a failure.
[  841.156716][T27972] name failslab, interval 1, probability 0, space 0, times 0
[  841.169432][T27972] CPU: 0 UID: 0 PID: 27972 Comm: syz.0.7071 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  841.180066][T27972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  841.190145][T27972] Call Trace:
[  841.193443][T27972]  <TASK>
[  841.196400][T27972]  dump_stack_lvl+0xf2/0x150
[  841.201042][T27972]  dump_stack+0x15/0x1a
[  841.205225][T27972]  should_fail_ex+0x223/0x230
[  841.209952][T27972]  should_failslab+0x8f/0xb0
[  841.214710][T27972]  kmem_cache_alloc_node_noprof+0x59/0x320
[  841.220605][T27972]  ? __alloc_skb+0x10b/0x310
[  841.225346][T27972]  __alloc_skb+0x10b/0x310
[  841.229813][T27972]  netlink_alloc_large_skb+0xad/0xe0
[  841.235162][T27972]  netlink_sendmsg+0x3b4/0x6e0
[  841.240036][T27972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  841.245365][T27972]  __sock_sendmsg+0x140/0x180
[  841.250053][T27972]  ____sys_sendmsg+0x312/0x410
[  841.254847][T27972]  __sys_sendmsg+0x19d/0x230
[  841.259511][T27972]  __x64_sys_sendmsg+0x46/0x50
[  841.264355][T27972]  x64_sys_call+0x2734/0x2dc0
[  841.269046][T27972]  do_syscall_64+0xc9/0x1c0
[  841.273610][T27972]  ? clear_bhb_loop+0x55/0xb0
[  841.278315][T27972]  ? clear_bhb_loop+0x55/0xb0
[  841.283007][T27972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.288939][T27972] RIP: 0033:0x7f52a5620849
[  841.293422][T27972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  841.298779][T27975] netlink: 'syz.6.7072': attribute type 58 has an invalid length.
[  841.313042][T27972] RSP: 002b:00007f52a3c97058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  841.313072][T27972] RAX: ffffffffffffffda RBX: 00007f52a57e5fa0 RCX: 00007f52a5620849
[  841.313089][T27972] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[  841.313106][T27972] RBP: 00007f52a3c970a0 R08: 0000000000000000 R09: 0000000000000000
[  841.313121][T27972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  841.320922][T27975] __nla_validate_parse: 1 callbacks suppressed
[  841.320938][T27975] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7072'.
[  841.329323][T27972] R13: 0000000000000000 R14: 00007f52a57e5fa0 R15: 00007ffe4845bdf8
[  841.329381][T27972]  </TASK>
[  841.668856][T27998] loop0: detected capacity change from 0 to 512
[  841.747205][T27998] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  841.859666][T23914] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  841.952035][T28024] wireguard0: entered promiscuous mode
[  841.957626][T28024] wireguard0: entered allmulticast mode
[  841.971608][T28020] netlink: 5 bytes leftover after parsing attributes in process `syz.4.7088'.
[  841.982009][T28022] loop0: detected capacity change from 0 to 8192
[  841.982970][T28020] 0ªX¹¦Dö»: renamed from gretap0 (while UP)
[  841.988939][T28022] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000007'
[  842.002792][T28020] 0ªX¹¦Dö»: entered allmulticast mode
[  842.125051][T28046] FAULT_INJECTION: forcing a failure.
[  842.125051][T28046] name failslab, interval 1, probability 0, space 0, times 0
[  842.137708][T28046] CPU: 0 UID: 0 PID: 28046 Comm: syz.4.7096 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  842.148170][T28046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  842.158255][T28046] Call Trace:
[  842.161570][T28046]  <TASK>
[  842.164521][T28046]  dump_stack_lvl+0xf2/0x150
[  842.169252][T28046]  dump_stack+0x15/0x1a
[  842.173541][T28046]  should_fail_ex+0x223/0x230
[  842.178275][T28046]  should_failslab+0x8f/0xb0
[  842.183005][T28046]  __kmalloc_noprof+0xab/0x3f0
[  842.187823][T28046]  ? security_prepare_creds+0x53/0x120
[  842.193313][T28046]  security_prepare_creds+0x53/0x120
[  842.198710][T28046]  prepare_creds+0x346/0x480
[  842.203494][T28046]  copy_creds+0x90/0x3f0
[  842.207904][T28046]  copy_process+0x64b/0x1f90
[  842.212519][T28046]  ? 0xffffffff81000000
[  842.216684][T28046]  ? selinux_file_permission+0x22a/0x360
[  842.222414][T28046]  ? __rcu_read_unlock+0x4e/0x70
[  842.227411][T28046]  kernel_clone+0x167/0x5e0
[  842.231926][T28046]  ? vfs_write+0x596/0x920
[  842.236361][T28046]  __x64_sys_clone+0xe8/0x120
[  842.241057][T28046]  x64_sys_call+0x2d7e/0x2dc0
[  842.245795][T28046]  do_syscall_64+0xc9/0x1c0
[  842.250316][T28046]  ? clear_bhb_loop+0x55/0xb0
[  842.255030][T28046]  ? clear_bhb_loop+0x55/0xb0
[  842.259820][T28046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.265732][T28046] RIP: 0033:0x7fa723310849
[  842.270180][T28046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  842.289864][T28046] RSP: 002b:00007fa721987008 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  842.298334][T28046] RAX: ffffffffffffffda RBX: 00007fa7234d5fa0 RCX: 00007fa723310849
[  842.306317][T28046] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000004000
[  842.314299][T28046] RBP: 00007fa7219870a0 R08: 0000000000000000 R09: 0000000000000000
[  842.322281][T28046] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  842.330387][T28046] R13: 0000000000000001 R14: 00007fa7234d5fa0 R15: 00007ffc6a0ee9d8
[  842.338379][T28046]  </TASK>
[  842.391036][T28058] netlink: 'syz.4.7100': attribute type 1 has an invalid length.
[  842.399025][T28058] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7100'.
[  842.441090][T28065] FAULT_INJECTION: forcing a failure.
[  842.441090][T28065] name failslab, interval 1, probability 0, space 0, times 0
[  842.453822][T28065] CPU: 0 UID: 0 PID: 28065 Comm: syz.6.7103 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  842.464329][T28065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  842.474435][T28065] Call Trace:
[  842.477772][T28065]  <TASK>
[  842.480729][T28065]  dump_stack_lvl+0xf2/0x150
[  842.485407][T28065]  dump_stack+0x15/0x1a
[  842.489836][T28065]  should_fail_ex+0x223/0x230
[  842.494666][T28065]  should_failslab+0x8f/0xb0
[  842.499293][T28065]  kmem_cache_alloc_noprof+0x52/0x320
[  842.504701][T28065]  ? alloc_empty_file+0xd0/0x200
[  842.509674][T28065]  alloc_empty_file+0xd0/0x200
[  842.514516][T28065]  path_openat+0x6a/0x1fa0
[  842.518990][T28065]  ? _parse_integer_limit+0x167/0x180
[  842.524394][T28065]  ? _parse_integer+0x27/0x30
[  842.529112][T28065]  ? kstrtoull+0x110/0x140
[  842.533532][T28065]  ? kstrtouint+0x77/0xc0
[  842.537974][T28065]  ? kstrtouint_from_user+0xb0/0xe0
[  842.543205][T28065]  do_filp_open+0x107/0x230
[  842.547747][T28065]  do_sys_openat2+0xab/0x120
[  842.552345][T28065]  __x64_sys_openat+0xf3/0x120
[  842.557111][T28065]  x64_sys_call+0x2b30/0x2dc0
[  842.561846][T28065]  do_syscall_64+0xc9/0x1c0
[  842.566361][T28065]  ? clear_bhb_loop+0x55/0xb0
[  842.571114][T28065]  ? clear_bhb_loop+0x55/0xb0
[  842.575805][T28065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.581766][T28065] RIP: 0033:0x7f7c43450849
[  842.586265][T28065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  842.605911][T28065] RSP: 002b:00007f7c41ac7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  842.614356][T28065] RAX: ffffffffffffffda RBX: 00007f7c43615fa0 RCX: 00007f7c43450849
[  842.622354][T28065] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffff9c
[  842.630377][T28065] RBP: 00007f7c41ac70a0 R08: 0000000000000000 R09: 0000000000000000
[  842.638376][T28065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  842.646367][T28065] R13: 0000000000000001 R14: 00007f7c43615fa0 R15: 00007ffc5b905f78
[  842.654513][T28065]  </TASK>
[  843.201609][   T29] kauditd_printk_skb: 610 callbacks suppressed
[  843.201628][   T29] audit: type=1326 audit(2000000009.559:12751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28089 comm="syz.6.7110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  843.231498][   T29] audit: type=1326 audit(2000000009.559:12752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28089 comm="syz.6.7110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  843.257850][   T29] audit: type=1326 audit(2000000009.606:12753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28089 comm="syz.6.7110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  843.281535][   T29] audit: type=1326 audit(2000000009.606:12754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28089 comm="syz.6.7110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  843.468735][T28101] FAULT_INJECTION: forcing a failure.
[  843.468735][T28101] name failslab, interval 1, probability 0, space 0, times 0
[  843.481437][T28101] CPU: 1 UID: 0 PID: 28101 Comm: syz.6.7114 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  843.491967][T28101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  843.502135][T28101] Call Trace:
[  843.505443][T28101]  <TASK>
[  843.508405][T28101]  dump_stack_lvl+0xf2/0x150
[  843.513080][T28101]  dump_stack+0x15/0x1a
[  843.517283][T28101]  should_fail_ex+0x223/0x230
[  843.521991][T28101]  should_failslab+0x8f/0xb0
[  843.526623][T28101]  kmem_cache_alloc_noprof+0x52/0x320
[  843.532060][T28101]  ? getname_kernel+0x3d/0x1e0
[  843.536860][T28101]  getname_kernel+0x3d/0x1e0
[  843.541485][T28101]  kern_path+0x21/0x120
[  843.545662][T28101]  lookup_bdev+0x62/0x140
[  843.550046][T28101]  __se_sys_quotactl+0x1b3/0x660
[  843.555048][T28101]  __x64_sys_quotactl+0x55/0x70
[  843.559955][T28101]  x64_sys_call+0x826/0x2dc0
[  843.564579][T28101]  do_syscall_64+0xc9/0x1c0
[  843.569113][T28101]  ? clear_bhb_loop+0x55/0xb0
[  843.573898][T28101]  ? clear_bhb_loop+0x55/0xb0
[  843.578618][T28101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  843.584620][T28101] RIP: 0033:0x7f7c43450849
[  843.589241][T28101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  843.608928][T28101] RSP: 002b:00007f7c41ac7058 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  843.617404][T28101] RAX: ffffffffffffffda RBX: 00007f7c43615fa0 RCX: 00007f7c43450849
[  843.625387][T28101] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000001
[  843.633375][T28101] RBP: 00007f7c41ac70a0 R08: 0000000000000000 R09: 0000000000000000
[  843.641356][T28101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  843.649339][T28101] R13: 0000000000000000 R14: 00007f7c43615fa0 R15: 00007ffc5b905f78
[  843.657435][T28101]  </TASK>
[  843.662509][T28098] wireguard2: entered promiscuous mode
[  843.668261][T28098] wireguard2: entered allmulticast mode
[  843.707220][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x7
[  843.714693][T13790] hid-generic 0000:0000:0000.0021: ignoring exceeding usage max
[  843.726147][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.733862][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.741317][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.748787][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.756281][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.763751][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.771211][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.778628][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.786124][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.793656][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.801041][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.808447][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.815908][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.823350][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.830766][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.838261][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.845832][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.853350][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.860784][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.868193][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.875671][T13790] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  843.883739][T13790] hid-generic 0000:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  843.989268][T28105] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  843.999324][T28105] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  844.009412][   T29] audit: type=1326 audit(2000000010.317:12755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28129 comm="syz.0.7120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  844.033384][   T29] audit: type=1326 audit(2000000010.317:12756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28129 comm="syz.0.7120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  844.040284][T28134] netlink: 156 bytes leftover after parsing attributes in process `syz.1.7121'.
[  844.057034][   T29] audit: type=1326 audit(2000000010.317:12757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28129 comm="syz.0.7120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  844.089852][   T29] audit: type=1326 audit(2000000010.317:12758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28129 comm="syz.0.7120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  844.096640][T28130] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7120'.
[  844.113545][   T29] audit: type=1326 audit(2000000010.317:12759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28129 comm="syz.0.7120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  844.146132][   T29] audit: type=1326 audit(2000000010.317:12760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28129 comm="syz.0.7120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52a5620849 code=0x7ffc0000
[  844.248489][T28151] FAULT_INJECTION: forcing a failure.
[  844.248489][T28151] name failslab, interval 1, probability 0, space 0, times 0
[  844.261413][T28151] CPU: 0 UID: 0 PID: 28151 Comm: syz.1.7125 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  844.271914][T28151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  844.282064][T28151] Call Trace:
[  844.285355][T28151]  <TASK>
[  844.288300][T28151]  dump_stack_lvl+0xf2/0x150
[  844.292933][T28151]  dump_stack+0x15/0x1a
[  844.297122][T28151]  should_fail_ex+0x223/0x230
[  844.301812][T28151]  ? call_usermodehelper_setup+0x72/0x190
[  844.307560][T28151]  should_failslab+0x8f/0xb0
[  844.312247][T28151]  __kmalloc_cache_noprof+0x4e/0x320
[  844.317622][T28151]  call_usermodehelper_setup+0x72/0x190
[  844.323203][T28151]  ? __pfx_cleanup_uevent_env+0x10/0x10
[  844.328855][T28151]  kobject_uevent_env+0x50f/0x550
[  844.333973][T28151]  ? device_remove_attrs+0x14d/0x190
[  844.339348][T28151]  kobject_uevent+0x1c/0x30
[  844.343872][T28151]  device_del+0x6fa/0x780
[  844.348352][T28151]  ? __try_to_del_timer_sync+0x14c/0x170
[  844.354003][T28151]  device_unregister+0x15/0x40
[  844.358895][T28151]  wakeup_source_sysfs_remove+0x25/0x30
[  844.364497][T28151]  wakeup_source_unregister+0xee/0x110
[  844.369976][T28151]  __ep_remove+0x309/0x450
[  844.374417][T28151]  eventpoll_release_file+0x91/0x190
[  844.379726][T28151]  __fput+0x621/0x6d0
[  844.383727][T28151]  ____fput+0x1c/0x30
[  844.387762][T28151]  task_work_run+0x13a/0x1a0
[  844.392431][T28151]  syscall_exit_to_user_mode+0xa8/0x120
[  844.398047][T28151]  do_syscall_64+0xd6/0x1c0
[  844.402632][T28151]  ? clear_bhb_loop+0x55/0xb0
[  844.407382][T28151]  ? clear_bhb_loop+0x55/0xb0
[  844.412078][T28151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.418038][T28151] RIP: 0033:0x7f9bb27f0849
[  844.422480][T28151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  844.442330][T28151] RSP: 002b:00007f9bb0e67058 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  844.450758][T28151] RAX: 0000000000000000 RBX: 00007f9bb29b5fa0 RCX: 00007f9bb27f0849
[  844.458747][T28151] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000003
[  844.466769][T28151] RBP: 00007f9bb0e670a0 R08: 0000000000000000 R09: 0000000000000000
[  844.474750][T28151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  844.482743][T28151] R13: 0000000000000000 R14: 00007f9bb29b5fa0 R15: 00007ffc8176b7b8
[  844.490769][T28151]  </TASK>
[  844.552513][T28166] netlink: 'syz.6.7129': attribute type 10 has an invalid length.
[  844.571646][T28168] wireguard2: entered promiscuous mode
[  844.577230][T28168] wireguard2: entered allmulticast mode
[  844.591574][T28166] batman_adv: batadv0: Adding interface: team0
[  844.597963][T28166] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  844.623336][T28166] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  844.641884][T28174] lo speed is unknown, defaulting to 1000
[  844.672073][T28182] lo speed is unknown, defaulting to 1000
[  844.729729][T28225] FAULT_INJECTION: forcing a failure.
[  844.729729][T28225] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  844.742874][T28225] CPU: 0 UID: 0 PID: 28225 Comm: syz.1.7132 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  844.753353][T28225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  844.763429][T28225] Call Trace:
[  844.766796][T28225]  <TASK>
[  844.769756][T28225]  dump_stack_lvl+0xf2/0x150
[  844.774412][T28225]  dump_stack+0x15/0x1a
[  844.778604][T28225]  should_fail_ex+0x223/0x230
[  844.783313][T28225]  should_fail+0xb/0x10
[  844.787527][T28225]  should_fail_usercopy+0x1a/0x20
[  844.792593][T28225]  _copy_from_user+0x1e/0xb0
[  844.797235][T28225]  sctp_getsockopt_peer_addrs+0x7f/0x460
[  844.802918][T28225]  ? _raw_spin_unlock_bh+0x36/0x40
[  844.808243][T28225]  sctp_getsockopt+0x981/0xab0
[  844.813028][T28225]  sock_common_getsockopt+0x5b/0x70
[  844.818299][T28225]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  844.824280][T28225]  do_sock_getsockopt+0x1ca/0x260
[  844.829408][T28225]  __x64_sys_getsockopt+0x18c/0x200
[  844.834644][T28225]  x64_sys_call+0x1288/0x2dc0
[  844.839373][T28225]  do_syscall_64+0xc9/0x1c0
[  844.843914][T28225]  ? clear_bhb_loop+0x55/0xb0
[  844.848750][T28225]  ? clear_bhb_loop+0x55/0xb0
[  844.853458][T28225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  844.859555][T28225] RIP: 0033:0x7f9bb27f0849
[  844.864001][T28225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  844.883736][T28225] RSP: 002b:00007f9bb0e67058 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  844.892239][T28225] RAX: ffffffffffffffda RBX: 00007f9bb29b5fa0 RCX: 00007f9bb27f0849
[  844.900229][T28225] RDX: 000000000000006c RSI: 0000000000000084 RDI: 0000000000000003
[  844.908242][T28225] RBP: 00007f9bb0e670a0 R08: 00000000200003c0 R09: 0000000000000000
[  844.916234][T28225] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000001
[  844.924298][T28225] R13: 0000000000000000 R14: 00007f9bb29b5fa0 R15: 00007ffc8176b7b8
[  844.932304][T28225]  </TASK>
[  845.000359][T28234] loop1: detected capacity change from 0 to 1024
[  845.020485][T28234] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  845.035878][T28234] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  845.213048][T28259] netlink: 144 bytes leftover after parsing attributes in process `syz.0.7144'.
[  845.389143][T28272] EXT4-fs error (device loop1): __ext4_iget:4984: inode #12: block 17104912: comm syz.1.7136: invalid block
[  845.989687][T28277] 9pnet_fd: Insufficient options for proto=fd
[  846.106948][T28277] xt_hashlimit: max too large, truncated to 1048576
[  846.335322][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  846.355898][T28292] netlink: 144 bytes leftover after parsing attributes in process `syz.2.7158'.
[  846.411096][T28296] loop1: detected capacity change from 0 to 1024
[  846.427650][T28296] EXT4-fs: Ignoring removed orlov option
[  846.433593][T28296] EXT4-fs: Ignoring removed nomblk_io_submit option
[  846.457589][T28296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  846.458855][T28301] hsr0: entered promiscuous mode
[  846.793156][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  846.813464][T28318] wireguard1: entered promiscuous mode
[  846.819079][T28318] wireguard1: entered allmulticast mode
[  846.926220][T28334] netlink: 144 bytes leftover after parsing attributes in process `syz.1.7170'.
[  846.968704][T28336] loop1: detected capacity change from 0 to 512
[  846.979549][T28277] Cannot find set identified by id 0 to match
[  847.007483][T28336] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  847.021113][T28336] ext4 filesystem being mounted at /270/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  847.105257][T28354] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.106145][T28343] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7173'.
[  847.114287][T28354] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.132386][T28354] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.149717][T28354] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.158759][T28354] netlink: 108 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.168307][T28354] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.177343][T28354] netlink: 108 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.186510][T28354] netlink: 84 bytes leftover after parsing attributes in process `syz.4.7179'.
[  847.260168][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  847.262808][T28367] loop0: detected capacity change from 0 to 1764
[  847.373072][T28383] loop1: detected capacity change from 0 to 1024
[  847.384769][T28383] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  847.402884][T28390] FAULT_INJECTION: forcing a failure.
[  847.402884][T28390] name failslab, interval 1, probability 0, space 0, times 0
[  847.415720][T28390] CPU: 1 UID: 0 PID: 28390 Comm: syz.0.7191 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  847.426255][T28390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  847.436358][T28390] Call Trace:
[  847.439653][T28390]  <TASK>
[  847.442605][T28390]  dump_stack_lvl+0xf2/0x150
[  847.447275][T28390]  dump_stack+0x15/0x1a
[  847.451506][T28390]  should_fail_ex+0x223/0x230
[  847.456209][T28390]  should_failslab+0x8f/0xb0
[  847.460903][T28390]  __kmalloc_noprof+0xab/0x3f0
[  847.465697][T28390]  ? __se_sys_futex_waitv+0x10b/0x360
[  847.471103][T28390]  __se_sys_futex_waitv+0x10b/0x360
[  847.476328][T28390]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  847.481661][T28390]  ? ksys_write+0x176/0x1b0
[  847.486203][T28390]  __x64_sys_futex_waitv+0x67/0x80
[  847.491430][T28390]  x64_sys_call+0x105f/0x2dc0
[  847.496124][T28390]  do_syscall_64+0xc9/0x1c0
[  847.500649][T28390]  ? clear_bhb_loop+0x55/0xb0
[  847.505345][T28390]  ? clear_bhb_loop+0x55/0xb0
[  847.510042][T28390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.515973][T28390] RIP: 0033:0x7f52a5620849
[  847.520408][T28390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  847.540033][T28390] RSP: 002b:00007f52a3c97058 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1
[  847.548465][T28390] RAX: ffffffffffffffda RBX: 00007f52a57e5fa0 RCX: 00007f52a5620849
[  847.556534][T28390] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000020001080
[  847.564552][T28390] RBP: 00007f52a3c970a0 R08: 0000000000000001 R09: 0000000000000000
[  847.572609][T28390] R10: 0000000020001100 R11: 0000000000000246 R12: 0000000000000001
[  847.580660][T28390] R13: 0000000000000000 R14: 00007f52a57e5fa0 R15: 00007ffe4845bdf8
[  847.588648][T28390]  </TASK>
[  847.625652][T28399] FAULT_INJECTION: forcing a failure.
[  847.625652][T28399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  847.638829][T28399] CPU: 1 UID: 0 PID: 28399 Comm: syz.0.7195 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  847.649267][T28399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  847.659348][T28399] Call Trace:
[  847.662722][T28399]  <TASK>
[  847.665677][T28399]  dump_stack_lvl+0xf2/0x150
[  847.670350][T28399]  dump_stack+0x15/0x1a
[  847.674552][T28399]  should_fail_ex+0x223/0x230
[  847.679267][T28399]  should_fail+0xb/0x10
[  847.683511][T28399]  should_fail_usercopy+0x1a/0x20
[  847.688574][T28399]  _copy_from_user+0x1e/0xb0
[  847.693303][T28399]  set_selection_user+0x48/0xa0
[  847.698269][T28399]  tioclinux+0x2b0/0x430
[  847.702620][T28399]  vt_ioctl+0x84f/0x1810
[  847.706910][T28399]  ? tty_jobctrl_ioctl+0x2ab/0x810
[  847.712133][T28399]  tty_ioctl+0x815/0xbe0
[  847.716487][T28399]  ? __pfx_tty_ioctl+0x10/0x10
[  847.721344][T28399]  __se_sys_ioctl+0xc9/0x140
[  847.725962][T28399]  __x64_sys_ioctl+0x43/0x50
[  847.730649][T28399]  x64_sys_call+0x1690/0x2dc0
[  847.735354][T28399]  do_syscall_64+0xc9/0x1c0
[  847.739936][T28399]  ? clear_bhb_loop+0x55/0xb0
[  847.744682][T28399]  ? clear_bhb_loop+0x55/0xb0
[  847.749507][T28399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.755461][T28399] RIP: 0033:0x7f52a5620849
[  847.759925][T28399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  847.779681][T28399] RSP: 002b:00007f52a3c97058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  847.788119][T28399] RAX: ffffffffffffffda RBX: 00007f52a57e5fa0 RCX: 00007f52a5620849
[  847.796110][T28399] RDX: 0000000020000080 RSI: 000000000000541c RDI: 0000000000000003
[  847.804187][T28399] RBP: 00007f52a3c970a0 R08: 0000000000000000 R09: 0000000000000000
[  847.812176][T28399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  847.820147][T28399] R13: 0000000000000000 R14: 00007f52a57e5fa0 R15: 00007ffe4845bdf8
[  847.828141][T28399]  </TASK>
[  848.306732][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  848.472944][T28434] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  848.481895][T28434] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  848.490869][T28434] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  848.499792][T28434] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  848.511607][T28434] geneve2: entered promiscuous mode
[  848.516882][T28434] geneve2: entered allmulticast mode
[  848.600642][   T29] kauditd_printk_skb: 224 callbacks suppressed
[  848.600661][   T29] audit: type=1400 audit(2000000000.673:12985): avc:  denied  { bind } for  pid=28446 comm="syz.1.7211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  848.636554][   T29] audit: type=1326 audit(2000000000.720:12986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.660249][   T29] audit: type=1326 audit(2000000000.720:12987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.683938][   T29] audit: type=1326 audit(2000000000.720:12988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.709874][   T29] audit: type=1326 audit(2000000000.720:12989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.733591][   T29] audit: type=1326 audit(2000000000.720:12990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.757414][   T29] audit: type=1326 audit(2000000000.720:12991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.781048][   T29] audit: type=1326 audit(2000000000.720:12992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.804609][   T29] audit: type=1326 audit(2000000000.720:12993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.828291][   T29] audit: type=1326 audit(2000000000.720:12994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28450 comm="syz.6.7214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  848.999533][T28467] loop1: detected capacity change from 0 to 2048
[  849.106881][T28482] FAULT_INJECTION: forcing a failure.
[  849.106881][T28482] name failslab, interval 1, probability 0, space 0, times 0
[  849.119657][T28482] CPU: 0 UID: 0 PID: 28482 Comm: syz.2.7223 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  849.130135][T28482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  849.140293][T28482] Call Trace:
[  849.143587][T28482]  <TASK>
[  849.146529][T28482]  dump_stack_lvl+0xf2/0x150
[  849.151234][T28482]  dump_stack+0x15/0x1a
[  849.155512][T28482]  should_fail_ex+0x223/0x230
[  849.160222][T28482]  should_failslab+0x8f/0xb0
[  849.164844][T28482]  kmem_cache_alloc_noprof+0x52/0x320
[  849.170362][T28482]  ? alloc_empty_file+0xd0/0x200
[  849.175457][T28482]  ? selinux_file_open+0x34a/0x3b0
[  849.180600][T28482]  alloc_empty_file+0xd0/0x200
[  849.185397][T28482]  path_openat+0x6a/0x1fa0
[  849.189923][T28482]  ? rb_commit+0x3e8/0x420
[  849.194579][T28482]  ? ring_buffer_unlock_commit+0x365/0x3b0
[  849.200427][T28482]  do_filp_open+0x107/0x230
[  849.204988][T28482]  do_open_execat+0xd0/0x280
[  849.209692][T28482]  alloc_bprm+0x28/0x5d0
[  849.213983][T28482]  do_execveat_common+0x134/0x800
[  849.219104][T28482]  ? getname_flags+0x15a/0x3b0
[  849.224043][T28482]  __x64_sys_execveat+0x75/0x90
[  849.228956][T28482]  x64_sys_call+0x291e/0x2dc0
[  849.233654][T28482]  do_syscall_64+0xc9/0x1c0
[  849.238181][T28482]  ? clear_bhb_loop+0x55/0xb0
[  849.242901][T28482]  ? clear_bhb_loop+0x55/0xb0
[  849.247732][T28482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.253651][T28482] RIP: 0033:0x7f478ecc0849
[  849.258078][T28482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  849.277766][T28482] RSP: 002b:00007f478d337058 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  849.286207][T28482] RAX: ffffffffffffffda RBX: 00007f478ee85fa0 RCX: 00007f478ecc0849
[  849.294189][T28482] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  849.302166][T28482] RBP: 00007f478d3370a0 R08: 0000000000001000 R09: 0000000000000000
[  849.310143][T28482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  849.318133][T28482] R13: 0000000000000000 R14: 00007f478ee85fa0 R15: 00007fff8b58a588
[  849.326122][T28482]  </TASK>
[  849.446742][T28478] lo speed is unknown, defaulting to 1000
[  849.875972][T28523] FAULT_INJECTION: forcing a failure.
[  849.875972][T28523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  849.889130][T28523] CPU: 1 UID: 0 PID: 28523 Comm: syz.2.7231 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  849.899605][T28523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  849.909731][T28523] Call Trace:
[  849.913028][T28523]  <TASK>
[  849.915970][T28523]  dump_stack_lvl+0xf2/0x150
[  849.920705][T28523]  dump_stack+0x15/0x1a
[  849.924885][T28523]  should_fail_ex+0x223/0x230
[  849.929591][T28523]  should_fail+0xb/0x10
[  849.933853][T28523]  should_fail_usercopy+0x1a/0x20
[  849.938982][T28523]  strncpy_from_user+0x25/0x210
[  849.943875][T28523]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  849.949623][T28523]  ? getname_flags+0x81/0x3b0
[  849.954457][T28523]  getname_flags+0xb0/0x3b0
[  849.959029][T28523]  __x64_sys_unlink+0x21/0x40
[  849.963736][T28523]  x64_sys_call+0x2329/0x2dc0
[  849.968475][T28523]  do_syscall_64+0xc9/0x1c0
[  849.973013][T28523]  ? clear_bhb_loop+0x55/0xb0
[  849.977717][T28523]  ? clear_bhb_loop+0x55/0xb0
[  849.982640][T28523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.988577][T28523] RIP: 0033:0x7f478ecc0849
[  849.993043][T28523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  850.012744][T28523] RSP: 002b:00007f478d337058 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  850.021249][T28523] RAX: ffffffffffffffda RBX: 00007f478ee85fa0 RCX: 00007f478ecc0849
[  850.029308][T28523] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180
[  850.037287][T28523] RBP: 00007f478d3370a0 R08: 0000000000000000 R09: 0000000000000000
[  850.045320][T28523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  850.053297][T28523] R13: 0000000000000000 R14: 00007f478ee85fa0 R15: 00007fff8b58a588
[  850.061285][T28523]  </TASK>
[  850.153216][T28543] syz.6.7237[28543] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  850.153399][T28543] syz.6.7237[28543] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  850.187304][T28543] syz.6.7237[28543] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  850.217991][T28548] bridge0: port 3(vlan2) entered blocking state
[  850.235859][T28548] bridge0: port 3(vlan2) entered disabled state
[  850.247454][T28537] loop0: detected capacity change from 0 to 8192
[  850.261505][T28537] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000007'
[  850.285454][T28548] vlan2: entered allmulticast mode
[  850.305863][T28548] vlan2: left allmulticast mode
[  850.385648][T28568] FAULT_INJECTION: forcing a failure.
[  850.385648][T28568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  850.398789][T28568] CPU: 0 UID: 0 PID: 28568 Comm: syz.2.7245 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  850.409236][T28568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  850.419317][T28568] Call Trace:
[  850.422613][T28568]  <TASK>
[  850.425650][T28568]  dump_stack_lvl+0xf2/0x150
[  850.430343][T28568]  dump_stack+0x15/0x1a
[  850.434527][T28568]  should_fail_ex+0x223/0x230
[  850.439250][T28568]  should_fail+0xb/0x10
[  850.443459][T28568]  should_fail_usercopy+0x1a/0x20
[  850.448498][T28568]  _copy_from_user+0x1e/0xb0
[  850.453108][T28568]  get_user_ifreq+0x8c/0x160
[  850.457805][T28568]  sock_ioctl+0x539/0x600
[  850.462151][T28568]  ? __pfx_sock_ioctl+0x10/0x10
[  850.467133][T28568]  __se_sys_ioctl+0xc9/0x140
[  850.471878][T28568]  __x64_sys_ioctl+0x43/0x50
[  850.476485][T28568]  x64_sys_call+0x1690/0x2dc0
[  850.481174][T28568]  do_syscall_64+0xc9/0x1c0
[  850.485699][T28568]  ? clear_bhb_loop+0x55/0xb0
[  850.490442][T28568]  ? clear_bhb_loop+0x55/0xb0
[  850.495140][T28568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  850.501165][T28568] RIP: 0033:0x7f478ecc0849
[  850.505589][T28568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  850.525219][T28568] RSP: 002b:00007f478d337058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  850.533720][T28568] RAX: ffffffffffffffda RBX: 00007f478ee85fa0 RCX: 00007f478ecc0849
[  850.541702][T28568] RDX: 0000000020000740 RSI: 00000000000089f0 RDI: 0000000000000003
[  850.549681][T28568] RBP: 00007f478d3370a0 R08: 0000000000000000 R09: 0000000000000000
[  850.557689][T28568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  850.565669][T28568] R13: 0000000000000000 R14: 00007f478ee85fa0 R15: 00007fff8b58a588
[  850.573663][T28568]  </TASK>
[  850.773932][T28592] syz.6.7256[28592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  850.773995][T28592] syz.6.7256[28592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  850.797464][T28592] syz.6.7256[28592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  850.811101][T28592] FAULT_INJECTION: forcing a failure.
[  850.811101][T28592] name failslab, interval 1, probability 0, space 0, times 0
[  850.835275][T28592] CPU: 1 UID: 0 PID: 28592 Comm: syz.6.7256 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  850.845785][T28592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  850.855862][T28592] Call Trace:
[  850.859146][T28592]  <TASK>
[  850.862115][T28592]  dump_stack_lvl+0xf2/0x150
[  850.866736][T28592]  dump_stack+0x15/0x1a
[  850.870912][T28592]  should_fail_ex+0x223/0x230
[  850.875612][T28592]  should_failslab+0x8f/0xb0
[  850.880234][T28592]  kmem_cache_alloc_node_noprof+0x59/0x320
[  850.886068][T28592]  ? __alloc_skb+0x10b/0x310
[  850.890759][T28592]  __alloc_skb+0x10b/0x310
[  850.895297][T28592]  netlink_alloc_large_skb+0xad/0xe0
[  850.900606][T28592]  netlink_sendmsg+0x3b4/0x6e0
[  850.905412][T28592]  ? __pfx_netlink_sendmsg+0x10/0x10
[  850.910711][T28592]  __sock_sendmsg+0x140/0x180
[  850.915466][T28592]  ____sys_sendmsg+0x312/0x410
[  850.920340][T28592]  __sys_sendmsg+0x19d/0x230
[  850.924974][T28592]  __x64_sys_sendmsg+0x46/0x50
[  850.929773][T28592]  x64_sys_call+0x2734/0x2dc0
[  850.934473][T28592]  do_syscall_64+0xc9/0x1c0
[  850.939022][T28592]  ? clear_bhb_loop+0x55/0xb0
[  850.943732][T28592]  ? clear_bhb_loop+0x55/0xb0
[  850.948439][T28592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  850.954399][T28592] RIP: 0033:0x7f7c43450849
[  850.958939][T28592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  850.978678][T28592] RSP: 002b:00007f7c41ac7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  850.987199][T28592] RAX: ffffffffffffffda RBX: 00007f7c43615fa0 RCX: 00007f7c43450849
[  850.995177][T28592] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  851.003160][T28592] RBP: 00007f7c41ac70a0 R08: 0000000000000000 R09: 0000000000000000
[  851.011138][T28592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  851.019138][T28592] R13: 0000000000000000 R14: 00007f7c43615fa0 R15: 00007ffc5b905f78
[  851.027124][T28592]  </TASK>
[  851.121188][T28596] wireguard1: entered promiscuous mode
[  851.126761][T28596] wireguard1: entered allmulticast mode
[  851.180030][T28604] FAULT_INJECTION: forcing a failure.
[  851.180030][T28604] name failslab, interval 1, probability 0, space 0, times 0
[  851.192709][T28604] CPU: 0 UID: 0 PID: 28604 Comm: syz.6.7260 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  851.203145][T28604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  851.213234][T28604] Call Trace:
[  851.216555][T28604]  <TASK>
[  851.219513][T28604]  dump_stack_lvl+0xf2/0x150
[  851.224134][T28604]  dump_stack+0x15/0x1a
[  851.228335][T28604]  should_fail_ex+0x223/0x230
[  851.233099][T28604]  should_failslab+0x8f/0xb0
[  851.237911][T28604]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  851.243743][T28604]  ? shmem_alloc_inode+0x34/0x50
[  851.248757][T28604]  shmem_alloc_inode+0x34/0x50
[  851.253545][T28604]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  851.259048][T28604]  alloc_inode+0x3c/0x160
[  851.263406][T28604]  new_inode+0x1e/0x100
[  851.267587][T28604]  shmem_get_inode+0x24e/0x730
[  851.272397][T28604]  __shmem_file_setup+0x127/0x1f0
[  851.277449][T28604]  shmem_file_setup+0x3b/0x50
[  851.282195][T28604]  __se_sys_memfd_create+0x31d/0x5c0
[  851.287520][T28604]  __x64_sys_memfd_create+0x31/0x40
[  851.292737][T28604]  x64_sys_call+0x2d4c/0x2dc0
[  851.297439][T28604]  do_syscall_64+0xc9/0x1c0
[  851.302101][T28604]  ? clear_bhb_loop+0x55/0xb0
[  851.306852][T28604]  ? clear_bhb_loop+0x55/0xb0
[  851.311567][T28604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  851.317492][T28604] RIP: 0033:0x7f7c43450849
[  851.321921][T28604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  851.341555][T28604] RSP: 002b:00007f7c41ac6e38 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  851.350089][T28604] RAX: ffffffffffffffda RBX: 000000000000056a RCX: 00007f7c43450849
[  851.358073][T28604] RDX: 00007f7c41ac6f10 RSI: 0000000000000000 RDI: 00007f7c434c4209
[  851.366246][T28604] RBP: 00000000200015c0 R08: 00007f7c41ac6bd7 R09: 00007f7c41ac6e60
[  851.374262][T28604] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000140
[  851.382245][T28604] R13: 00007f7c41ac6f10 R14: 00007f7c41ac6ed0 R15: 00000000200002c0
[  851.390293][T28604]  </TASK>
[  851.615256][T28636] loop1: detected capacity change from 0 to 1024
[  851.656867][T28636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  852.684374][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  852.697531][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x7
[  852.705126][T13790] hid-generic 0000:0000:0000.0022: ignoring exceeding usage max
[  852.716913][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.724485][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.732004][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.739410][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.746902][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.754449][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.761956][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.769360][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.776904][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.784376][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.791815][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.799257][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.806696][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.814114][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.821618][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.829057][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.836548][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.844091][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.851532][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.858976][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.866388][T13790] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  852.881274][T13790] hid-generic 0000:0000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  852.936930][T28705] __nla_validate_parse: 14 callbacks suppressed
[  852.936947][T28705] netlink: 5 bytes leftover after parsing attributes in process `syz.4.7290'.
[  852.955303][T28705] 1ªX¹¦Dö»: renamed from 
00ªX¹¦Dö» (while UP)
[  852.990255][T28720] loop1: detected capacity change from 0 to 1764
[  853.032967][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.042061][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.053526][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.074495][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.083517][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.092920][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.141098][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.150152][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.161315][T28736] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7295'.
[  853.234437][T28755] vhci_hcd: invalid port number 157
[  853.239724][T28755] vhci_hcd: default hub control req: c1ef v21ba i009d l29779
[  853.382360][T28769] loop1: detected capacity change from 0 to 1764
[  853.879231][T28795] loop0: detected capacity change from 0 to 8192
[  853.886005][T28795] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000007'
[  853.959990][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  853.960008][   T29] audit: type=1326 audit(2000000005.687:13029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  853.989826][   T29] audit: type=1326 audit(2000000005.696:13030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.013428][   T29] audit: type=1326 audit(2000000005.696:13031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.037134][   T29] audit: type=1326 audit(2000000005.696:13032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.060747][   T29] audit: type=1326 audit(2000000005.696:13033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.084567][   T29] audit: type=1326 audit(2000000005.696:13034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.128847][   T29] audit: type=1326 audit(2000000005.696:13035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.152487][   T29] audit: type=1326 audit(2000000005.696:13036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.176349][   T29] audit: type=1326 audit(2000000005.696:13037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.200112][   T29] audit: type=1326 audit(2000000005.696:13038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28796 comm="syz.6.7320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c43450849 code=0x7ffc0000
[  854.246500][T28815] loop0: detected capacity change from 0 to 256
[  854.266383][T28815] FAT-fs (loop0): codepage cp866 not found
[  854.310392][T28774] syz.4.7310 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  854.321485][T28774] CPU: 1 UID: 0 PID: 28774 Comm: syz.4.7310 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  854.331997][T28774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  854.342114][T28774] Call Trace:
[  854.345417][T28774]  <TASK>
[  854.348367][T28774]  dump_stack_lvl+0xf2/0x150
[  854.353021][T28774]  dump_stack+0x15/0x1a
[  854.357212][T28774]  dump_header+0x83/0x2d0
[  854.361622][T28774]  oom_kill_process+0x341/0x4c0
[  854.366527][T28774]  out_of_memory+0x9af/0xbe0
[  854.371172][T28774]  ? css_next_descendant_pre+0x11c/0x140
[  854.376838][T28774]  mem_cgroup_out_of_memory+0x13e/0x190
[  854.382429][T28774]  try_charge_memcg+0x508/0x7f0
[  854.387304][T28774]  charge_memcg+0x50/0xc0
[  854.391695][T28774]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[  854.397715][T28774]  __read_swap_cache_async+0x236/0x480
[  854.403285][T28774]  swap_cluster_readahead+0x279/0x3f0
[  854.408742][T28774]  swapin_readahead+0xe4/0x6f0
[  854.413545][T28774]  ? __lruvec_stat_mod_folio+0xdb/0x120
[  854.419186][T28774]  ? swap_cache_get_folio+0x77/0x210
[  854.424633][T28774]  do_swap_page+0x31b/0x2550
[  854.429296][T28774]  ? __rcu_read_lock+0x36/0x50
[  854.434098][T28774]  ? __pfx_default_wake_function+0x10/0x10
[  854.439943][T28774]  handle_mm_fault+0x8e4/0x2ac0
[  854.444828][T28774]  exc_page_fault+0x3b9/0x650
[  854.449600][T28774]  asm_exc_page_fault+0x26/0x30
[  854.454603][T28774] RIP: 0033:0x7fa7231e28c8
[  854.459064][T28774] Code: 31 d2 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d f8 52 2f 00 00 0f 8e 99 fd ff ff e8 d1 d6 fe ff 49 39 c4 72 64 0f 1f 40 00 <69> 3d c6 2d e2 00 e8 03 00 00 48 8d 1d c7 36 2f 00 e8 c2 de 12 00
[  854.478748][T28774] RSP: 002b:00007ffc6a0eeb40 EFLAGS: 00010216
[  854.484888][T28774] RAX: 00000000000cff7b RBX: 00007fa7234d7ba0 RCX: 00000000000cfc38
[  854.492874][T28774] RDX: 0000000000000343 RSI: 00007ffc6a0eeb20 RDI: 0000000000000001
[  854.500852][T28774] RBP: 00007fa7234d7ba0 R08: 0000000031c5d36c R09: 7fffffffffffffff
[  854.508823][T28774] R10: 00007fa724011038 R11: 0000000000000010 R12: 00000000000cff99
[  854.516810][T28774] R13: 00007ffc6a0eec40 R14: 0000000000000032 R15: ffffffffffffffff
[  854.524831][T28774]  </TASK>
[  854.528304][T28774] memory: usage 307196kB, limit 307200kB, failcnt 502
[  854.535245][T28774] memory+swap: usage 307360kB, limit 9007199254740988kB, failcnt 0
[  854.543348][T28774] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[  854.550703][T28774] Memory cgroup stats for /syz4:
[  854.551102][T28774] cache 0
[  854.559207][T28774] rss 0
[  854.561983][T28774] shmem 0
[  854.564965][T28774] mapped_file 0
[  854.568653][T28774] dirty 0
[  854.571641][T28774] writeback 0
[  854.574936][T28774] workingset_refault_anon 103
[  854.579741][T28774] workingset_refault_file 567
[  854.584430][T28774] swap 167936
[  854.587782][T28774] swapcached 16384
[  854.591562][T28774] pgpgin 1563094
[  854.595116][T28774] pgpgout 1563090
[  854.598952][T28774] pgfault 1578687
[  854.602721][T28774] pgmajfault 72
[  854.606199][T28774] inactive_anon 16384
[  854.610190][T28774] active_anon 0
[  854.613949][T28774] inactive_file 0
[  854.617597][T28774] active_file 0
[  854.621070][T28774] unevictable 0
[  854.624581][T28774] hierarchical_memory_limit 314572800
[  854.630037][T28774] hierarchical_memsw_limit 9223372036854771712
[  854.636251][T28774] total_cache 0
[  854.639754][T28774] total_rss 0
[  854.643182][T28774] total_shmem 0
[  854.646842][T28774] total_mapped_file 0
[  854.650849][T28774] total_dirty 0
[  854.654423][T28774] total_writeback 0
[  854.658369][T28774] total_workingset_refault_anon 103
[  854.663600][T28774] total_workingset_refault_file 567
[  854.668902][T28774] total_swap 167936
[  854.672729][T28774] total_swapcached 16384
[  854.677014][T28774] total_pgpgin 1563094
[  854.681092][T28774] total_pgpgout 1563090
[  854.685292][T28774] total_pgfault 1578688
[  854.689529][T28774] total_pgmajfault 72
[  854.693763][T28774] total_inactive_anon 16384
[  854.698318][T28774] total_active_anon 0
[  854.702320][T28774] total_inactive_file 0
[  854.706520][T28774] total_active_file 0
[  854.710579][T28774] total_unevictable 0
[  854.714577][T28774] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.7310,pid=28774,uid=0
[  854.729384][T28774] Memory cgroup out of memory: Killed process 28774 (syz.4.7310) total-vm:95196kB, anon-rss:596kB, file-rss:22176kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000
[  854.850519][T28838] loop0: detected capacity change from 0 to 1764
[  855.038492][T28868] loop0: detected capacity change from 0 to 1764
[  855.077398][T28869] loop1: detected capacity change from 0 to 164
[  855.089108][T28869] Unable to read rock-ridge attributes
[  855.100766][T28877] FAULT_INJECTION: forcing a failure.
[  855.100766][T28877] name failslab, interval 1, probability 0, space 0, times 0
[  855.108698][T28869] Unable to read rock-ridge attributes
[  855.113411][T28877] CPU: 0 UID: 0 PID: 28877 Comm: syz.0.7341 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  855.113444][T28877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  855.113466][T28877] Call Trace:
[  855.113474][T28877]  <TASK>
[  855.113484][T28877]  dump_stack_lvl+0xf2/0x150
[  855.150370][T28877]  dump_stack+0x15/0x1a
[  855.154572][T28877]  should_fail_ex+0x223/0x230
[  855.159281][T28877]  should_failslab+0x8f/0xb0
[  855.163915][T28877]  kmem_cache_alloc_node_noprof+0x59/0x320
[  855.169751][T28877]  ? __alloc_skb+0x10b/0x310
[  855.174366][T28877]  __alloc_skb+0x10b/0x310
[  855.178963][T28877]  netlink_alloc_large_skb+0xad/0xe0
[  855.184277][T28877]  netlink_sendmsg+0x3b4/0x6e0
[  855.189050][T28877]  ? __pfx_netlink_sendmsg+0x10/0x10
[  855.194417][T28877]  __sock_sendmsg+0x140/0x180
[  855.199150][T28877]  ____sys_sendmsg+0x312/0x410
[  855.203939][T28877]  __sys_sendmmsg+0x227/0x4b0
[  855.208719][T28877]  __x64_sys_sendmmsg+0x57/0x70
[  855.213638][T28877]  x64_sys_call+0x29aa/0x2dc0
[  855.218384][T28877]  do_syscall_64+0xc9/0x1c0
[  855.222971][T28877]  ? clear_bhb_loop+0x55/0xb0
[  855.227664][T28877]  ? clear_bhb_loop+0x55/0xb0
[  855.232411][T28877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  855.238352][T28877] RIP: 0033:0x7f52a5620849
[  855.242770][T28877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  855.262406][T28877] RSP: 002b:00007f52a3c97058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  855.270846][T28877] RAX: ffffffffffffffda RBX: 00007f52a57e5fa0 RCX: 00007f52a5620849
[  855.278869][T28877] RDX: 04000000000001f2 RSI: 0000000020000000 RDI: 0000000000000004
[  855.286847][T28877] RBP: 00007f52a3c970a0 R08: 0000000000000000 R09: 0000000000000000
[  855.294891][T28877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  855.302922][T28877] R13: 0000000000000000 R14: 00007f52a57e5fa0 R15: 00007ffe4845bdf8
[  855.310905][T28877]  </TASK>
[  855.389455][T28885] wireguard2: entered promiscuous mode
[  855.395142][T28885] wireguard2: entered allmulticast mode
[  855.684841][T28922] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (165)
[  856.281756][T28942] loop1: detected capacity change from 0 to 8192
[  856.289446][T28942] vfat: Unknown parameter 'ÿÿÿÿ00000000000000000007'
[  856.633584][T28967] pimreg: entered allmulticast mode
[  856.639696][T28967] pimreg: left allmulticast mode
[  856.720680][T28974] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  856.727295][T28974] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  856.735094][T28974] vhci_hcd vhci_hcd.0: Device attached
[  856.788509][T28979] vhci_hcd: connection closed
[  856.788786][ T9228] vhci_hcd: stop threads
[  856.797821][ T9228] vhci_hcd: release socket
[  856.802254][ T9228] vhci_hcd: disconnect device
[  856.815887][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x7
[  856.823447][T18092] hid-generic 0000:0000:0000.0023: ignoring exceeding usage max
[  856.835318][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.851872][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.859405][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.866869][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.874507][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.881951][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.889448][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.896990][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.904421][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.911848][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.919273][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.927070][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.934500][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.942023][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.949497][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.957040][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.964477][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.971929][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.979378][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.986797][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  856.994252][T18092] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  857.004959][T18092] hid-generic 0000:0000:0000.0023: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  857.719852][T29017] FAULT_INJECTION: forcing a failure.
[  857.719852][T29017] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  857.733062][T29017] CPU: 1 UID: 0 PID: 29017 Comm: syz.1.7379 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  857.743491][T29017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  857.753566][T29017] Call Trace:
[  857.756858][T29017]  <TASK>
[  857.759798][T29017]  dump_stack_lvl+0xf2/0x150
[  857.764521][T29017]  dump_stack+0x15/0x1a
[  857.768707][T29017]  should_fail_ex+0x223/0x230
[  857.773505][T29017]  should_fail+0xb/0x10
[  857.777800][T29017]  should_fail_usercopy+0x1a/0x20
[  857.782851][T29017]  _copy_to_user+0x20/0xa0
[  857.787302][T29017]  simple_read_from_buffer+0xa0/0x110
[  857.792780][T29017]  proc_fail_nth_read+0xf9/0x140
[  857.797770][T29017]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  857.803342][T29017]  vfs_read+0x1a2/0x700
[  857.807573][T29017]  ? __rcu_read_unlock+0x4e/0x70
[  857.812532][T29017]  ? __fget_files+0x17c/0x1c0
[  857.817238][T29017]  ksys_read+0xe8/0x1b0
[  857.821480][T29017]  __x64_sys_read+0x42/0x50
[  857.825996][T29017]  x64_sys_call+0x2874/0x2dc0
[  857.830694][T29017]  do_syscall_64+0xc9/0x1c0
[  857.835231][T29017]  ? clear_bhb_loop+0x55/0xb0
[  857.840029][T29017]  ? clear_bhb_loop+0x55/0xb0
[  857.844846][T29017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  857.850826][T29017] RIP: 0033:0x7f9bb27ef25c
[  857.855288][T29017] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[  857.874926][T29017] RSP: 002b:00007f9bb0e67050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  857.883405][T29017] RAX: ffffffffffffffda RBX: 00007f9bb29b5fa0 RCX: 00007f9bb27ef25c
[  857.891388][T29017] RDX: 000000000000000f RSI: 00007f9bb0e670b0 RDI: 0000000000000008
[  857.899597][T29017] RBP: 00007f9bb0e670a0 R08: 0000000000000000 R09: 0000000000000000
[  857.907571][T29017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  857.915543][T29017] R13: 0000000000000000 R14: 00007f9bb29b5fa0 R15: 00007ffc8176b7b8
[  857.923564][T29017]  </TASK>
[  858.270373][T29070] loop0: detected capacity change from 0 to 1024
[  858.284077][T29070] EXT4-fs: Ignoring removed orlov option
[  858.289865][T29070] EXT4-fs: Ignoring removed nomblk_io_submit option
[  858.304640][T29075] __nla_validate_parse: 19 callbacks suppressed
[  858.304658][T29075] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7396'.
[  858.330255][T29070] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  858.483064][T29086] sg_write: data in/out 231/42 bytes for SCSI command 0x0-- guessing data in;
[  858.483064][T29086]    program syz.2.7398 not setting count and/or reply_len properly
[  858.521499][T29086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7398'.
[  858.531832][T29086] IPVS: Error joining to the multicast group
[  858.588750][T29095] binfmt_misc: register: failed to install interpreter file ./file0
[  858.689062][T23914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  858.718179][T29103] netlink: 56 bytes leftover after parsing attributes in process `syz.0.7404'.
[  858.888448][T29111] loop0: detected capacity change from 0 to 164
[  859.057503][T29111] loop0: detected capacity change from 0 to 2048
[  859.077303][T29111] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  859.308719][T29146] Â: renamed from vlan0 (while UP)
[  859.376894][T29150] wireguard2: entered promiscuous mode
[  859.382574][T29150] wireguard2: entered allmulticast mode
[  859.458901][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  859.465935][T29165] syz.2.7422[29165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  859.467953][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  859.474360][T29165] syz.2.7422[29165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  859.484719][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  859.489251][T29165] syz.2.7422[29165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  859.521744][   T29] kauditd_printk_skb: 352 callbacks suppressed
[  859.521760][   T29] audit: type=1326 audit(2000000010.888:13391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.563062][   T29] audit: type=1326 audit(2000000010.888:13392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.586911][   T29] audit: type=1326 audit(2000000010.888:13393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.610505][   T29] audit: type=1326 audit(2000000010.888:13394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.634216][   T29] audit: type=1326 audit(2000000010.888:13395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.657864][   T29] audit: type=1326 audit(2000000010.888:13396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.681462][   T29] audit: type=1326 audit(2000000010.888:13397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f478ecb77e7 code=0x7ffc0000
[  859.705034][   T29] audit: type=1326 audit(2000000010.888:13398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f478ec5c189 code=0x7ffc0000
[  859.728643][   T29] audit: type=1326 audit(2000000010.888:13399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.752360][   T29] audit: type=1326 audit(2000000010.888:13400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29163 comm="syz.2.7422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f478ecc0849 code=0x7ffc0000
[  859.776472][T29170] FAULT_INJECTION: forcing a failure.
[  859.776472][T29170] name failslab, interval 1, probability 0, space 0, times 0
[  859.786161][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  859.789184][T29170] CPU: 1 UID: 0 PID: 29170 Comm: syz.4.7423 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  859.798023][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  859.808423][T29170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  859.819518][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  859.827394][T29170] Call Trace:
[  859.827406][T29170]  <TASK>
[  859.842637][T29170]  dump_stack_lvl+0xf2/0x150
[  859.847244][T29170]  dump_stack+0x15/0x1a
[  859.851528][T29170]  should_fail_ex+0x223/0x230
[  859.856297][T29170]  should_failslab+0x8f/0xb0
[  859.860944][T29170]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  859.866810][T29170]  ? __d_alloc+0x3d/0x340
[  859.871238][T29170]  __d_alloc+0x3d/0x340
[  859.875447][T29170]  d_alloc_pseudo+0x1e/0x80
[  859.879956][T29170]  alloc_file_pseudo+0x70/0x140
[  859.884812][T29170]  sock_alloc_file+0x9b/0x1c0
[  859.889499][T29170]  __sys_socketpair+0x2b0/0x430
[  859.894356][T29170]  __x64_sys_socketpair+0x52/0x60
[  859.899515][T29170]  x64_sys_call+0x1cad/0x2dc0
[  859.904219][T29170]  do_syscall_64+0xc9/0x1c0
[  859.908818][T29170]  ? clear_bhb_loop+0x55/0xb0
[  859.913505][T29170]  ? clear_bhb_loop+0x55/0xb0
[  859.918334][T29170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  859.924302][T29170] RIP: 0033:0x7fa72331279a
[  859.928716][T29170] Code: 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 35 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  859.948487][T29170] RSP: 002b:00007fa721986f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  859.956983][T29170] RAX: ffffffffffffffda RBX: 00007fa7234d5f00 RCX: 00007fa72331279a
[  859.965022][T29170] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  859.973061][T29170] RBP: 00007fa7219870a0 R08: 0000000000000000 R09: 0000000000000000
[  859.981061][T29170] R10: 00007fa721986fb8 R11: 0000000000000246 R12: 0000000000000004
[  859.989058][T29170] R13: 0000000000000000 R14: 00007fa7234d5fa0 R15: 00007ffc6a0ee9d8
[  859.997131][T29170]  </TASK>
[  860.033342][T29161] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7420'.
[  860.344927][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x7
[  860.352433][T13790] hid-generic 0000:0000:0000.0024: ignoring exceeding usage max
[  860.364441][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.379482][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.387067][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.394504][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.402122][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.409594][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.417090][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.424507][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.432128][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.439601][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.447016][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.454651][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.462246][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.469661][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.477349][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.484786][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.492296][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.499701][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.507444][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.514883][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.522404][T13790] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  860.533332][T13790] hid-generic 0000:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  860.588120][T29232] netlink: 'syz.6.7444': attribute type 1 has an invalid length.
[  860.647180][T29234] loop0: detected capacity change from 0 to 2048
[  860.688196][T29234] Alternate GPT is invalid, using primary GPT.
[  860.694632][T29234]  loop0: p1 p2 p3
[  860.778606][T29251] loop1: detected capacity change from 0 to 1024
[  860.794568][T29234] team0 (unregistering): Port device team_slave_0 removed
[  860.819807][T29251] EXT4-fs: Ignoring removed orlov option
[  860.825640][T29251] EXT4-fs: Ignoring removed nomblk_io_submit option
[  860.844665][T29234] team0 (unregistering): Port device team_slave_1 removed
[  860.868285][T29251] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  861.050223][T29313] FAULT_INJECTION: forcing a failure.
[  861.050223][T29313] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  861.063416][T29313] CPU: 0 UID: 0 PID: 29313 Comm: syz.6.7455 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  861.074015][T29313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  861.084097][T29313] Call Trace:
[  861.087386][T29313]  <TASK>
[  861.090339][T29313]  dump_stack_lvl+0xf2/0x150
[  861.094971][T29313]  dump_stack+0x15/0x1a
[  861.099157][T29313]  should_fail_ex+0x223/0x230
[  861.103859][T29313]  should_fail+0xb/0x10
[  861.108055][T29313]  should_fail_usercopy+0x1a/0x20
[  861.113137][T29313]  _copy_from_iter+0xd5/0xd00
[  861.117874][T29313]  ? kmalloc_reserve+0x16e/0x190
[  861.122826][T29313]  ? __build_skb_around+0x196/0x1f0
[  861.128098][T29313]  ? __alloc_skb+0x21f/0x310
[  861.132707][T29313]  ? __virt_addr_valid+0x1ed/0x250
[  861.137838][T29313]  ? __check_object_size+0x364/0x520
[  861.143156][T29313]  netlink_sendmsg+0x460/0x6e0
[  861.148006][T29313]  ? __pfx_netlink_sendmsg+0x10/0x10
[  861.153422][T29313]  __sock_sendmsg+0x140/0x180
[  861.158110][T29313]  ____sys_sendmsg+0x312/0x410
[  861.162897][T29313]  __sys_sendmsg+0x19d/0x230
[  861.167520][T29313]  __x64_sys_sendmsg+0x46/0x50
[  861.172308][T29313]  x64_sys_call+0x2734/0x2dc0
[  861.176994][T29313]  do_syscall_64+0xc9/0x1c0
[  861.181524][T29313]  ? clear_bhb_loop+0x55/0xb0
[  861.186307][T29313]  ? clear_bhb_loop+0x55/0xb0
[  861.191002][T29313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.196970][T29313] RIP: 0033:0x7f7c43450849
[  861.201392][T29313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.221009][T29313] RSP: 002b:00007f7c41ac7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  861.229519][T29313] RAX: ffffffffffffffda RBX: 00007f7c43615fa0 RCX: 00007f7c43450849
[  861.237497][T29313] RDX: 0000000020000004 RSI: 00000000200000c0 RDI: 0000000000000004
[  861.245478][T29313] RBP: 00007f7c41ac70a0 R08: 0000000000000000 R09: 0000000000000000
[  861.253454][T29313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  861.261498][T29313] R13: 0000000000000000 R14: 00007f7c43615fa0 R15: 00007ffc5b905f78
[  861.269483][T29313]  </TASK>
[  861.465864][T22072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  861.589774][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x7
[  861.597296][    T9] hid-generic 0000:0000:0000.0025: ignoring exceeding usage max
[  861.608824][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.621718][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.629196][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.636765][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.644199][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.651660][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.659200][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.666639][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.674232][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.681700][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.689130][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.696546][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.703988][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.711411][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.718815][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.726246][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.733696][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.741172][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.748645][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.756098][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.763539][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  861.774295][    T9] hid-generic 0000:0000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  861.840744][T29366] syzkaller0: entered allmulticast mode
[  861.971341][T29376] lo speed is unknown, defaulting to 1000
[  862.112550][T29406] netlink: 'syz.0.7476': attribute type 1 has an invalid length.
[  862.918945][T29442] ==================================================================
[  862.927093][T29442] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping
[  862.934969][T29442] 
[  862.937301][T29442] write to 0xffffea0004878558 of 8 bytes by task 29397 on cpu 1:
[  862.945049][T29442]  __filemap_remove_folio+0x1ac/0x2c0
[  862.950499][T29442]  filemap_remove_folio+0x6b/0x1f0
[  862.955657][T29442]  truncate_inode_folio+0x42/0x50
[  862.960820][T29442]  shmem_undo_range+0x25b/0xa70
[  862.965706][T29442]  shmem_evict_inode+0x14d/0x530
[  862.970671][T29442]  evict+0x2f0/0x570
[  862.974602][T29442]  iput+0x42a/0x5b0
[  862.978422][T29442]  dentry_unlink_inode+0x24f/0x260
[  862.983546][T29442]  __dentry_kill+0x18b/0x4c0
[  862.988153][T29442]  dput+0x5c/0xd0
[  862.991783][T29442]  __fput+0x3fb/0x6d0
[  862.995763][T29442]  ____fput+0x1c/0x30
[  862.999748][T29442]  task_work_run+0x13a/0x1a0
[  863.004354][T29442]  do_exit+0x5dd/0x17f0
[  863.008533][T29442]  do_group_exit+0x102/0x150
[  863.013138][T29442]  get_signal+0xeb9/0x1000
[  863.017586][T29442]  arch_do_signal_or_restart+0x95/0x4b0
[  863.023150][T29442]  irqentry_exit_to_user_mode+0xa7/0x120
[  863.028835][T29442]  irqentry_exit+0x12/0x50
[  863.033269][T29442]  asm_exc_page_fault+0x26/0x30
[  863.038138][T29442] 
[  863.040463][T29442] read to 0xffffea0004878558 of 8 bytes by task 29442 on cpu 0:
[  863.048097][T29442]  folio_mapping+0xa0/0x120
[  863.052625][T29442]  evict_folios+0x2479/0x3240
[  863.057406][T29442]  try_to_shrink_lruvec+0x5d2/0x750
[  863.062637][T29442]  shrink_lruvec+0x22d/0x1840
[  863.067326][T29442]  shrink_node+0x603/0x1d80
[  863.071846][T29442]  do_try_to_free_pages+0x3c6/0xc50
[  863.077059][T29442]  try_to_free_mem_cgroup_pages+0x1e3/0x490
[  863.082967][T29442]  try_charge_memcg+0x2bc/0x7f0
[  863.087828][T29442]  obj_cgroup_charge_pages+0xbd/0x1a0
[  863.093211][T29442]  __memcg_kmem_charge_page+0x9d/0x170
[  863.098691][T29442]  __alloc_pages_noprof+0x1bc/0x340
[  863.103918][T29442]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  863.109309][T29442]  alloc_pages_noprof+0xe1/0x100
[  863.114263][T29442]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  863.120087][T29442]  __kvmalloc_node_noprof+0x121/0x170
[  863.125480][T29442]  ip_set_alloc+0x1f/0x30
[  863.129821][T29442]  hash_netiface_create+0x273/0x730
[  863.135057][T29442]  ip_set_create+0x359/0x8a0
[  863.139660][T29442]  nfnetlink_rcv_msg+0x4a9/0x570
[  863.144699][T29442]  netlink_rcv_skb+0x12c/0x230
[  863.149481][T29442]  nfnetlink_rcv+0x16c/0x15d0
[  863.154166][T29442]  netlink_unicast+0x599/0x670
[  863.158944][T29442]  netlink_sendmsg+0x5cc/0x6e0
[  863.163713][T29442]  __sock_sendmsg+0x140/0x180
[  863.168403][T29442]  ____sys_sendmsg+0x312/0x410
[  863.173185][T29442]  __sys_sendmsg+0x19d/0x230
[  863.177793][T29442]  __x64_sys_sendmsg+0x46/0x50
[  863.182574][T29442]  x64_sys_call+0x2734/0x2dc0
[  863.187284][T29442]  do_syscall_64+0xc9/0x1c0
[  863.191805][T29442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.197711][T29442] 
[  863.200033][T29442] value changed: 0xffff888117f65648 -> 0x0000000000000000
[  863.207139][T29442] 
[  863.209462][T29442] Reported by Kernel Concurrency Sanitizer on:
[  863.215609][T29442] CPU: 0 UID: 0 PID: 29442 Comm: syz.4.7483 Not tainted 6.12.0-syzkaller-12113-gbcc8eda6d349 #0
[  863.226119][T29442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  863.236179][T29442] ==================================================================