last executing test programs:

2.110273828s ago: executing program 1 (id=3752):
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='sessionid\x00')
readv(r0, &(0x7f00000000c0)=[{0x0, 0x5}, {&(0x7f0000000100)=""/98, 0x62}], 0x2)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="3b0f6bb1b2313d9c64140dd07b6dbc489ca766a9182a1ee753e480bf7ccd96e20397a2ce64c99eb4541f4f2adc72ca1a27c61d7a1adda2613d73335d4be9a0d9526ae2e3f7867c07aa2a54ca4a97f72096b2e1a0903dc40613365a2f397c78602f4544ec35a67de13906b2e1a5606c4117cc689202bee0f60e53397ea948bbbcaca73c92375442f7323ee2a45393ae0c4b80145a1c75a1619ab35e238f60959ffeb2f90c23aad47f8e82501d85566c440601afe2dccd0a5d478177e0b87921311317e476c884632e3f04ec12a0e34660368d25a298a33f605be09b9b5801ea625dc003b5f5588deddc8d7c97", 0xec)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r2)
sendmsg$NL80211_CMD_GET_WIPHY(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="59bb22bd7000000020001100000008002b01"], 0x28}}, 0x0)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r8, 0x65, 0x2, &(0x7f0000000400)=0x2, 0x4)
setsockopt$CAN_RAW_FILTER(r8, 0x65, 0x1, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r9=>0x0})
bind$can_raw(r8, &(0x7f0000000040)={0x1d, r9}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f00000004c0)={0x9c, r7, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x2}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0xff}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x1}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x1}, @ETHTOOL_A_LINKINFO_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x7}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4}, 0x4008084)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)={0xf0, r6, 0xe701ac47a3d23ecd, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xc1, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe8m\xe9\x1d\xaagQl\x7f\tKt\fc\x1f\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=E0\xe8R\x83'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}]}, 0xf0}}, 0x0)

2.077981508s ago: executing program 1 (id=3753):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x9c, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000100)={'wg1\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000010c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000d0000000c00018008000100", @ANYRES32=r4], 0x20}}, 0x0)

2.063927848s ago: executing program 1 (id=3755):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x10000000000ac6}, 0x18)
r1 = io_uring_setup(0x177c, &(0x7f00000002c0)={0x0, 0x572e, 0x2, 0x0, 0xfffffffe})
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x840}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

2.037207448s ago: executing program 1 (id=3756):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2], 0x0, 0x40002, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRES16=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000fedbdf25080000001800028014000380100001800400030008000100050000000c00018008000100", @ANYRES32=r5], 0x38}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f00000012c0)={'team0\x00', <r6=>0x0})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000001380)={'syztnl1\x00', &(0x7f0000001300)={'gre0\x00', <r7=>0x0, 0x10, 0x0, 0x15c3ea4a, 0x2, {{0x16, 0x4, 0x0, 0x3, 0x58, 0x64, 0x0, 0xff, 0x29, 0x0, @loopback, @local, {[@ssrr={0x89, 0xb, 0xb1, [@rand_addr=0x64010102, @multicast2]}, @lsrr={0x83, 0x7, 0x15, [@dev={0xac, 0x14, 0x14, 0x35}]}, @noop, @timestamp_prespec={0x44, 0xc, 0xbb, 0x3, 0x3, [{@empty, 0x8}]}, @timestamp_addr={0x44, 0xc, 0xf3, 0x1, 0x6, [{@empty, 0x4}]}, @rr={0x7, 0x17, 0xe4, [@rand_addr=0x64010100, @private=0xa010100, @private=0xa010102, @loopback, @dev={0xac, 0x14, 0x14, 0x10}]}]}}}}})
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000002100)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000020c0)={&(0x7f00000013c0)={0xcd8, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [{{0x8}, {0x1f0, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfff}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xe21}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}]}}, {{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xeb}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x5, 0x1, 0x2, 0x1ff}, {0x1, 0x12, 0x4, 0x1}, {0x401, 0x1, 0x3, 0x6}, {0x5, 0x1, 0xfb, 0x3f}, {0x1, 0x8, 0x6, 0x962}, {0x3, 0x9, 0x3, 0x40}, {0x3c, 0xa0, 0x0, 0x5}]}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}]}}, {{0x8}, {0x1f8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7fffffff}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}]}}, {{0x8}, {0x240, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xc6b4}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x8, 0x6, 0x6}, {0xfff9, 0x34, 0x0, 0x1}, {0x9, 0xfe, 0xc0, 0x4}, {0x4, 0x1, 0x0, 0x7}, {0xe, 0x1, 0x3, 0x2}, {0x1ff, 0x9, 0x7f, 0x7}, {0x6, 0x1, 0x3, 0x4}, {0x7f, 0x3, 0xff, 0x76}, {0x5, 0x4, 0x6, 0x7}, {0x8, 0x7, 0x40, 0x9}]}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x1, 0x6, 0x5, 0x8}, {0x400, 0x6, 0xc, 0xfffeffff}, {0x40, 0x6, 0x4, 0x80}, {0x7, 0x32, 0x8, 0x2}, {0xf36, 0x5, 0x2c, 0xc8}, {0x8001, 0x1, 0x1, 0xf5}, {0xc, 0xe, 0x5, 0xfffffffc}, {0x3, 0xb7, 0x78, 0x2}, {0x8, 0x4, 0x2, 0x9}, {0x7, 0xfa, 0x6, 0x10000}]}}}]}}, {{0x8}, {0x168, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xa2}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x10000}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x1c8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x608}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x10}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8}, {0x80, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8}}, {0x8, 0x6, r5}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r6}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x9e}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x800}}}]}}]}, 0xcd8}, 0x1, 0x0, 0x0, 0x808}, 0x4008801)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
unshare(0x64000600)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x6c, 0x30, 0xb, 0x0, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x1ff, 0x5e, 0x6, 0x36b, 0x4}, 0x3}}, @TCA_MPLS_BOS={0x5}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x84}, 0x10000000)

1.280864525s ago: executing program 3 (id=3766):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x10000000000ac6}, 0x18)
r1 = io_uring_setup(0x177c, &(0x7f00000002c0)={0x0, 0x572e, 0x2, 0x0, 0xfffffffe})
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x840}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

1.255019885s ago: executing program 3 (id=3767):
unshare(0x22020600)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
pipe(0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x1, @perf_config_ext, 0x115c68, 0x0, 0x0, 0x0, 0x5f4d, 0x1, 0xfffa, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
creat(&(0x7f00000001c0)='./file0\x00', 0x88)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)

1.242906015s ago: executing program 4 (id=3768):
r0 = epoll_create(0x3ff)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0000000})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000280))
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r1}, 0x8)
r5 = socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYRESOCT=r5], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)

1.214392515s ago: executing program 4 (id=3769):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="180100000000002000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000040)={0x80, 0x8, 0x2, 0xfffffffc})

1.161319325s ago: executing program 4 (id=3772):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0x8000003d)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x4)
fcntl$notify(r4, 0x402, 0x3c)
close_range(r3, r4, 0x0)

1.150429075s ago: executing program 3 (id=3774):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00'}, 0x10)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000a0000000000ff00ff010000000000000000000000000001000001000000000000000000e0ff00000000000000bd0000000000000000000000e4ec010000000040000000000000000000000000000000000000013da51fd47aa2e2f70000000000000000000000000000000000000000000000000000000000000067ff000000000000"], 0x310)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='\n\x00\x00\x00\b\x00\x00\x00B\x00\x00\x00@\x00\x00', @ANYRES32, @ANYRES64=r0, @ANYRES16, @ANYRES32, @ANYBLOB="00000000050000000000000000000000000000000000000000000000de4cd8c31cb4c5155367c77bac599978da1dcca161c9837334d86d14b9fac79c85dd735817d8da1e594fbbf3af17a652485fc4e56502bef530fecb6d0dbda7b8fb1797b1bc30103ea589afa6de320dcb730f3038d972852b93daf678b6f3f6666822cefa79eb64c35b40af9774a132b48481a9211aced01fbbfc438b834371ba373b7341efc5640e6813f062fc"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x4, 0xefff}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x54, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x28, 0x3, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x18, 0xb, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd8}}, 0x0)

1.109304884s ago: executing program 1 (id=3775):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000ffef00000000000200800000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b3030000000000008500000083000000bf09000000008a1ac9bda585b3db8b8700005509010000000000950000000000da00bf00010000000000b702ecffffff00008500000085000000b70000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

1.068365965s ago: executing program 4 (id=3776):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6(0xa, 0x40000080806, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r4, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
ioctl$TIOCL_GETKMSGREDIRECT(r2, 0x4bfa, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x437, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x50483}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_INDEX={0x8, 0x15, 0x77365}]}}}]}, 0x44}}, 0x0)
mknod$loop(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x8000, 0x0)

1.063378095s ago: executing program 1 (id=3777):
dup(0xffffffffffffffff)
r0 = open(0x0, 0x44542, 0x82)
ftruncate(r0, 0xee72)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
move_pages(0x0, 0x20000000000001ab, &(0x7f0000000000), 0x0, &(0x7f0000000000)=[0x0], 0x0)

962.123454ms ago: executing program 4 (id=3780):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x10000000000ac6}, 0x18)
r1 = io_uring_setup(0x177c, &(0x7f00000002c0)={0x0, 0x572e, 0x2, 0x0, 0xfffffffe})
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x840}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

840.801853ms ago: executing program 4 (id=3781):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={<r3=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e23, @local}]}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000180)={0x7, 0x8002, 0x374, 0x10000, r3}, &(0x7f00000001c0)=0x10)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x492492492492846, 0x0)
fcntl$setstatus(r1, 0x4, 0x42000)
ppoll(&(0x7f00000000c0)=[{r1, 0x200}], 0x1, 0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@keyring)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001180)=ANY=[@ANYBLOB="300000002000010000000000000000000200000000000000000000000c0014400000000000000000050013"], 0x30}}, 0x0)

425.531502ms ago: executing program 2 (id=3786):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0x8000003d)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x4)
fcntl$notify(r4, 0x402, 0x3c)
close_range(r3, r4, 0x0)

425.064062ms ago: executing program 2 (id=3787):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x10, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))

361.999492ms ago: executing program 2 (id=3788):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000008bc0)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7}, 0x1c, &(0x7f0000001440)}}], 0x1, 0x20006811)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f00000000c0)={0x9}, 0x10)
getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, 0x0, &(0x7f0000000280))
write(r2, &(0x7f0000000040)="240000001a005f0214f9f507000909000a000000000000000000000004001e0000000000", 0x24)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x2, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = open(0x0, 0x0, 0x4)
fcntl$notify(r3, 0x402, 0x3c)
mknod(0x0, 0x80, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb440013030e000a000d000000ba80000012", 0x2d}], 0x1}, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_migrate_pages_start\x00', r5}, 0x18)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000100), 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r6, 0x40086607, 0x20001419)

260.992691ms ago: executing program 0 (id=3790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x9c, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), 0xffffffffffffffff)
r3 = socket$netlink(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000100)={'wg1\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000010c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000d0000000c00018008000100", @ANYRES32=r5], 0x20}}, 0x0)

260.606781ms ago: executing program 3 (id=3791):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0x10000000000ac6}, 0x18)
r1 = io_uring_setup(0x177c, &(0x7f00000002c0)={0x0, 0x572e, 0x2, 0x0, 0xfffffffe})
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x840}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

231.919901ms ago: executing program 0 (id=3792):
r0 = epoll_create(0x3ff)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0000000})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000280))
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r1}, 0x8)
r5 = socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYRESOCT=r5], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)

217.190821ms ago: executing program 3 (id=3793):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="180100000000002000000000000000001819", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000040)={0x80, 0x8, 0x2, 0xfffffffc})

178.975141ms ago: executing program 0 (id=3794):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd28, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}, {0x2, 0xb}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xed]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0)

126.017911ms ago: executing program 3 (id=3795):
r0 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x77, 0x141301)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
close_range(0xffffffffffffffff, r0, 0x0)

116.483201ms ago: executing program 0 (id=3796):
unshare(0x22020600)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
pipe(0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x1, @perf_config_ext, 0x115c68, 0x0, 0x0, 0x0, 0x5f4d, 0x1, 0xfffa, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
creat(&(0x7f00000001c0)='./file0\x00', 0x88)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)

53.51742ms ago: executing program 2 (id=3797):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0x8000003d)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x4)
fcntl$notify(r4, 0x402, 0x3c)
close_range(r3, r4, 0x0)

43.16327ms ago: executing program 0 (id=3798):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x10, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))

29.2211ms ago: executing program 2 (id=3799):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
bind$inet6(r1, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f00000002c0)="9e", 0x1a005, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000c80)='|', 0x1, 0xbcff, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x6, 0x10}, 0xc)
sendmsg$inet6(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)='h', 0x34000}], 0x1}, 0x0)

470.18µs ago: executing program 0 (id=3800):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300002095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_io_uring_setup(0x3665, &(0x7f0000000100)={0x0, 0x0, 0x2, 0x0, 0xfffffffd}, 0x0, 0x0) (fail_nth: 11)

0s ago: executing program 2 (id=3801):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
listen(r2, 0x402)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x862b01)
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2250)
r4 = socket$inet6(0xa, 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f00000005c0)={0x34, 0x2e, 0x503, 0x0, 0x0, "", [@nested={0x21, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0xc, 0xf, 0x0, 0x0, @u64}, @generic='\'']}]}, 0x34}], 0x1}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r4, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x1, 0x4)
sendmsg$inet6(r4, &(0x7f0000000000)={&(0x7f0000000340)={0xa, 0x4e24, 0x1000000080000, @loopback}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="100000000000000029"], 0x18}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

65256][T10895] bond2 (unregistering): Released all slaves
[  151.933707][T10908] netlink: 'syz.0.2866': attribute type 30 has an invalid length.
[  151.960478][T10915] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  151.979629][   T29] audit: type=1326 audit(1737922461.247:9538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10912 comm="syz.1.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  152.003956][   T29] audit: type=1326 audit(1737922461.247:9539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10912 comm="syz.1.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  152.147515][T10931] __nla_validate_parse: 8 callbacks suppressed
[  152.147532][T10931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2876'.
[  152.163728][T10930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2875'.
[  152.163970][T10931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2876'.
[  152.180770][T10924] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2873'.
[  152.183002][T10930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2875'.
[  152.331475][T10942] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  152.359164][T10938] kernel profiling enabled (shift: 9)
[  152.569412][T10953] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2886'.
[  152.659666][T10954] ip6gretap0 speed is unknown, defaulting to 1000
[  152.678342][T10954] lo speed is unknown, defaulting to 1000
[  152.723722][T10965] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2887'.
[  152.746935][T10965] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2887'.
[  152.805297][T10970] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2888'.
[  152.829477][T10954] chnl_net:caif_netlink_parms(): no params data found
[  152.918836][T10954] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.926289][T10954] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.953480][T10981] netlink: 'syz.3.2891': attribute type 30 has an invalid length.
[  152.971924][T10954] bridge_slave_0: entered allmulticast mode
[  152.991735][T10954] bridge_slave_0: entered promiscuous mode
[  153.020194][T10954] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.027514][T10954] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.074769][T10954] bridge_slave_1: entered allmulticast mode
[  153.094313][T10954] bridge_slave_1: entered promiscuous mode
[  153.149528][T10954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.177600][T10954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.224267][T10954] team0: Port device team_slave_0 added
[  153.237109][T10954] team0: Port device team_slave_1 added
[  153.273984][T10954] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.281157][T10954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.307279][T10954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.366384][T10954] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.373428][T10954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.399476][T10954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.448268][T10998] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2897'.
[  153.458990][T11000] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  153.495191][T10954] hsr_slave_0: entered promiscuous mode
[  153.504937][T10954] hsr_slave_1: entered promiscuous mode
[  153.513863][T10954] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  153.523481][T10954] Cannot create hsr debugfs directory
[  153.660788][T10954] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.703641][T11014] netlink: 'syz.1.2904': attribute type 30 has an invalid length.
[  153.746939][T10954] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.817849][T10954] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.899907][T10954] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.034616][T10954] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  154.047137][T10954] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  154.061532][T10954] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  154.087613][T10954] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  154.099635][T11032] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  154.167919][T10954] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.189428][T10954] 8021q: adding VLAN 0 to HW filter on device team0
[  154.201831][ T3403] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.208935][ T3403] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.223553][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.230687][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[  154.275317][T10954] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  154.285913][T10954] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  154.328365][T11042] FAULT_INJECTION: forcing a failure.
[  154.328365][T11042] name failslab, interval 1, probability 0, space 0, times 0
[  154.341140][T11042] CPU: 0 UID: 0 PID: 11042 Comm: syz.4.2915 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  154.341170][T11042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  154.341184][T11042] Call Trace:
[  154.341190][T11042]  <TASK>
[  154.341230][T11042]  dump_stack_lvl+0xf2/0x150
[  154.341262][T11042]  dump_stack+0x15/0x1a
[  154.341340][T11042]  should_fail_ex+0x223/0x230
[  154.341372][T11042]  should_failslab+0x8f/0xb0
[  154.341473][T11042]  __kmalloc_node_noprof+0xad/0x410
[  154.341506][T11042]  ? __vmalloc_node_range_noprof+0x3dc/0xe80
[  154.341534][T11042]  __vmalloc_node_range_noprof+0x3dc/0xe80
[  154.341564][T11042]  ? bsearch+0x98/0xc0
[  154.341612][T11042]  ? rep_movs_alternative+0x13/0x70
[  154.341654][T11042]  ? selinux_capable+0x1f2/0x260
[  154.341721][T11042]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  154.341755][T11042]  __vmalloc_noprof+0x5e/0x70
[  154.341833][T11042]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  154.341866][T11042]  bpf_prog_alloc_no_stats+0x49/0x380
[  154.341894][T11042]  ? bpf_prog_alloc+0x28/0x150
[  154.341922][T11042]  bpf_prog_alloc+0x3a/0x150
[  154.341948][T11042]  bpf_prog_load+0x4d0/0x1070
[  154.341992][T11042]  ? __rcu_read_unlock+0x4e/0x70
[  154.342032][T11042]  __sys_bpf+0x463/0x7a0
[  154.342073][T11042]  __x64_sys_bpf+0x43/0x50
[  154.342098][T11042]  x64_sys_call+0x2914/0x2dc0
[  154.342123][T11042]  do_syscall_64+0xc9/0x1c0
[  154.342164][T11042]  ? clear_bhb_loop+0x55/0xb0
[  154.342191][T11042]  ? clear_bhb_loop+0x55/0xb0
[  154.342223][T11042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.342323][T11042] RIP: 0033:0x7ffb8294cd29
[  154.342338][T11042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.342389][T11042] RSP: 002b:00007ffb80fb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  154.342411][T11042] RAX: ffffffffffffffda RBX: 00007ffb82b65fa0 RCX: 00007ffb8294cd29
[  154.342426][T11042] RDX: 0000000000000094 RSI: 00000000200000c0 RDI: 0000000000000005
[  154.342440][T11042] RBP: 00007ffb80fb7090 R08: 0000000000000000 R09: 0000000000000000
[  154.342451][T11042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.342461][T11042] R13: 0000000000000000 R14: 00007ffb82b65fa0 R15: 00007ffdb5efd068
[  154.342479][T11042]  </TASK>
[  154.342487][T11042] syz.4.2915: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  154.404614][T10954] 8021q: adding VLAN 0 to HW filter on device batadv0
[  154.404966][T11042] ,cpuset=/,mems_allowed=0
[  154.596658][T11042] CPU: 0 UID: 0 PID: 11042 Comm: syz.4.2915 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  154.596689][T11042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  154.596710][T11042] Call Trace:
[  154.596719][T11042]  <TASK>
[  154.596728][T11042]  dump_stack_lvl+0xf2/0x150
[  154.596762][T11042]  dump_stack+0x15/0x1a
[  154.596817][T11042]  warn_alloc+0x145/0x1b0
[  154.596852][T11042]  __vmalloc_node_range_noprof+0x473/0xe80
[  154.596883][T11042]  ? bsearch+0x98/0xc0
[  154.596922][T11042]  ? selinux_capable+0x1f2/0x260
[  154.596960][T11042]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  154.596992][T11042]  __vmalloc_noprof+0x5e/0x70
[  154.597021][T11042]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  154.597047][T11042]  bpf_prog_alloc_no_stats+0x49/0x380
[  154.597149][T11042]  ? bpf_prog_alloc+0x28/0x150
[  154.597179][T11042]  bpf_prog_alloc+0x3a/0x150
[  154.597203][T11042]  bpf_prog_load+0x4d0/0x1070
[  154.597230][T11042]  ? __rcu_read_unlock+0x4e/0x70
[  154.597264][T11042]  __sys_bpf+0x463/0x7a0
[  154.597353][T11042]  __x64_sys_bpf+0x43/0x50
[  154.597440][T11042]  x64_sys_call+0x2914/0x2dc0
[  154.597499][T11042]  do_syscall_64+0xc9/0x1c0
[  154.597522][T11042]  ? clear_bhb_loop+0x55/0xb0
[  154.597572][T11042]  ? clear_bhb_loop+0x55/0xb0
[  154.597600][T11042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.597631][T11042] RIP: 0033:0x7ffb8294cd29
[  154.597724][T11042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.597742][T11042] RSP: 002b:00007ffb80fb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  154.597829][T11042] RAX: ffffffffffffffda RBX: 00007ffb82b65fa0 RCX: 00007ffb8294cd29
[  154.597841][T11042] RDX: 0000000000000094 RSI: 00000000200000c0 RDI: 0000000000000005
[  154.597852][T11042] RBP: 00007ffb80fb7090 R08: 0000000000000000 R09: 0000000000000000
[  154.597864][T11042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.597878][T11042] R13: 0000000000000000 R14: 00007ffb82b65fa0 R15: 00007ffdb5efd068
[  154.597902][T11042]  </TASK>
[  154.598042][T11042] Mem-Info:
[  154.651116][T10954] veth0_vlan: entered promiscuous mode
[  154.653527][T11042] active_anon:5494 inactive_anon:2 isolated_anon:0
[  154.653527][T11042]  active_file:10409 inactive_file:12378 isolated_file:0
[  154.653527][T11042]  unevictable:0 dirty:310 writeback:0
[  154.653527][T11042]  slab_reclaimable:2846 slab_unreclaimable:21893
[  154.653527][T11042]  mapped:29643 shmem:286 pagetables:759
[  154.653527][T11042]  sec_pagetables:0 bounce:0
[  154.653527][T11042]  kernel_misc_reclaimable:0
[  154.653527][T11042]  free:1885809 free_pcp:3172 free_cma:0
[  154.691736][T10954] veth1_vlan: entered promiscuous mode
[  154.693884][T11042] Node 0 active_anon:21976kB inactive_anon:8kB active_file:41636kB inactive_file:49512kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:118572kB dirty:1240kB writeback:0kB shmem:1144kB writeback_tmp:0kB kernel_stack:3456kB pagetables:3036kB sec_pagetables:0kB all_unreclaimable? no
[  154.741181][T10954] veth0_macvtap: entered promiscuous mode
[  154.751286][T11042] Node 0 
[  154.787695][T10954] veth1_macvtap: entered promiscuous mode
[  154.791756][T11042] DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  154.835312][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.856373][T11042] lowmem_reserve[]:
[  154.861758][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.889628][T11042]  0 2885 7863 0
[  154.889672][T11042] Node 0 DMA32 free:2950872kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954504kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  154.895440][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.898383][T11042] lowmem_reserve[]: 0 0 4978 0
[  154.898437][T11042] Node 0 Normal free:4576760kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:21976kB inactive_anon:8kB active_file:41636kB inactive_file:49512kB unevictable:0kB writepending:1240kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:9184kB local_pcp:772kB free_cma:0kB
[  154.904155][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.904183][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.904197][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.904210][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.930474][T11042] lowmem_reserve[]: 0
[  154.940885][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.944699][T11042]  0 0 0
[  155.089693][T11042] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  155.102621][T11042] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950872kB
[  155.118959][T11042] Node 0 Normal: 308*4kB (UME) 741*8kB (UM) 432*16kB (UM) 233*32kB (UM) 208*64kB (UME) 73*128kB (UME) 67*256kB (UME) 39*512kB (UME) 24*1024kB (UME) 47*2048kB (UME) 1068*4096kB (UM) = 4576664kB
[  155.138405][T11042] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  155.141847][T10954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.147730][T11042] 23103 total pagecache pages
[  155.147741][T11042] 2 pages in swap cache
[  155.147749][T11042] Free swap  = 124596kB
[  155.147757][T11042] Total swap = 124996kB
[  155.147765][T11042] 2097051 pages RAM
[  155.176005][T11042] 0 pages HighMem/MovableOnly
[  155.180706][T11042] 80033 pages reserved
[  155.188343][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.199632][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.209976][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.220425][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.230289][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.240835][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.250713][T10954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  155.261276][T10954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.278947][T10954] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.299067][T10954] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.307864][T10954] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.316644][T10954] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.325384][T10954] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.382959][T11076] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  155.428775][T11081] wg2: entered promiscuous mode
[  155.433768][T11081] wg2: entered allmulticast mode
[  155.454098][T11079] Process accounting resumed
[  155.493645][T11091] Cannot find del_set index 0 as target
[  155.526969][T11096] RDS: rds_bind could not find a transport for ::ffff:172.30.1.4, load rds_tcp or rds_rdma?
[  155.591839][T11101] netlink: 'syz.3.2931': attribute type 10 has an invalid length.
[  155.604881][T11101] veth0_vlan: left promiscuous mode
[  155.611158][T11101] veth0_vlan: entered promiscuous mode
[  155.621823][T11101] team0: Device veth0_vlan failed to register rx_handler
[  156.025702][   T29] kauditd_printk_skb: 26 callbacks suppressed
[  156.025719][   T29] audit: type=1326 audit(1737922465.267:9566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.055382][   T29] audit: type=1326 audit(1737922465.267:9567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.079218][   T29] audit: type=1326 audit(1737922465.277:9568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.102856][   T29] audit: type=1326 audit(1737922465.277:9569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.126409][   T29] audit: type=1326 audit(1737922465.277:9570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.150024][   T29] audit: type=1326 audit(1737922465.277:9571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.173669][   T29] audit: type=1326 audit(1737922465.277:9573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.197324][   T29] audit: type=1326 audit(1737922465.277:9572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.220859][   T29] audit: type=1326 audit(1737922465.277:9574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.244386][   T29] audit: type=1326 audit(1737922465.277:9575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11119 comm="syz.0.2938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  156.440100][T11127] FAULT_INJECTION: forcing a failure.
[  156.440100][T11127] name failslab, interval 1, probability 0, space 0, times 0
[  156.452888][T11127] CPU: 1 UID: 0 PID: 11127 Comm: syz.1.2940 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  156.452932][T11127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  156.452992][T11127] Call Trace:
[  156.452998][T11127]  <TASK>
[  156.453005][T11127]  dump_stack_lvl+0xf2/0x150
[  156.453035][T11127]  dump_stack+0x15/0x1a
[  156.453056][T11127]  should_fail_ex+0x223/0x230
[  156.453150][T11127]  should_failslab+0x8f/0xb0
[  156.453174][T11127]  __kmalloc_noprof+0xab/0x3f0
[  156.453212][T11127]  ? kernfs_fop_write_iter+0xe1/0x2c0
[  156.453315][T11127]  ? selinux_file_permission+0x22a/0x360
[  156.453345][T11127]  kernfs_fop_write_iter+0xe1/0x2c0
[  156.453376][T11127]  vfs_write+0x77b/0x920
[  156.453398][T11127]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  156.453438][T11127]  ksys_write+0xe8/0x1b0
[  156.453464][T11127]  __x64_sys_write+0x42/0x50
[  156.453549][T11127]  x64_sys_call+0x287e/0x2dc0
[  156.453577][T11127]  do_syscall_64+0xc9/0x1c0
[  156.453607][T11127]  ? clear_bhb_loop+0x55/0xb0
[  156.453654][T11127]  ? clear_bhb_loop+0x55/0xb0
[  156.453680][T11127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.453710][T11127] RIP: 0033:0x7f6d37e6cd29
[  156.453726][T11127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.453828][T11127] RSP: 002b:00007f6d364d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  156.453851][T11127] RAX: ffffffffffffffda RBX: 00007f6d38085fa0 RCX: 00007f6d37e6cd29
[  156.453864][T11127] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000003
[  156.453954][T11127] RBP: 00007f6d364d7090 R08: 0000000000000000 R09: 0000000000000000
[  156.453968][T11127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.453982][T11127] R13: 0000000000000000 R14: 00007f6d38085fa0 R15: 00007ffe751fb1c8
[  156.454004][T11127]  </TASK>
[  156.648472][T11125] block device autoloading is deprecated and will be removed.
[  156.675581][T11125] syz.0.2939: attempt to access beyond end of device
[  156.675581][T11125] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  156.690181][T11131] tipc: Started in network mode
[  156.695075][T11131] tipc: Node identity 7, cluster identity 5
[  156.701112][T11131] tipc: Node number set to 7
[  156.721306][T11139] netlink: 'syz.4.2945': attribute type 30 has an invalid length.
[  156.754594][T11149] syz.0.2948: attempt to access beyond end of device
[  156.754594][T11149] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  156.814345][T11154] netlink: 'syz.0.2950': attribute type 4 has an invalid length.
[  156.924682][T11172] netlink: 'syz.1.2959': attribute type 29 has an invalid length.
[  156.933719][T11172] netlink: 'syz.1.2959': attribute type 29 has an invalid length.
[  157.026831][T11185] FAULT_INJECTION: forcing a failure.
[  157.026831][T11185] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.039967][T11185] CPU: 0 UID: 0 PID: 11185 Comm: syz.1.2963 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  157.039993][T11185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  157.040017][T11185] Call Trace:
[  157.040025][T11185]  <TASK>
[  157.040033][T11185]  dump_stack_lvl+0xf2/0x150
[  157.040065][T11185]  dump_stack+0x15/0x1a
[  157.040133][T11185]  should_fail_ex+0x223/0x230
[  157.040164][T11185]  should_fail+0xb/0x10
[  157.040193][T11185]  should_fail_usercopy+0x1a/0x20
[  157.040231][T11185]  _copy_to_user+0x20/0xa0
[  157.040308][T11185]  simple_read_from_buffer+0xa0/0x110
[  157.040391][T11185]  proc_fail_nth_read+0xf9/0x140
[  157.040483][T11185]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.040506][T11185]  vfs_read+0x19b/0x6f0
[  157.040524][T11185]  ? __rcu_read_unlock+0x4e/0x70
[  157.040604][T11185]  ? __fget_files+0x17c/0x1c0
[  157.040640][T11185]  ksys_read+0xe8/0x1b0
[  157.040664][T11185]  __x64_sys_read+0x42/0x50
[  157.040749][T11185]  x64_sys_call+0x2874/0x2dc0
[  157.040781][T11185]  do_syscall_64+0xc9/0x1c0
[  157.040866][T11185]  ? clear_bhb_loop+0x55/0xb0
[  157.040898][T11185]  ? clear_bhb_loop+0x55/0xb0
[  157.040931][T11185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.040959][T11185] RIP: 0033:0x7f6d37e6b73c
[  157.040973][T11185] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  157.040991][T11185] RSP: 002b:00007f6d364d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.041033][T11185] RAX: ffffffffffffffda RBX: 00007f6d38085fa0 RCX: 00007f6d37e6b73c
[  157.041048][T11185] RDX: 000000000000000f RSI: 00007f6d364d70a0 RDI: 0000000000000007
[  157.041062][T11185] RBP: 00007f6d364d7090 R08: 0000000000000000 R09: 0000000000000000
[  157.041076][T11185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.041090][T11185] R13: 0000000000000000 R14: 00007f6d38085fa0 R15: 00007ffe751fb1c8
[  157.041109][T11185]  </TASK>
[  157.269195][T11188] __nla_validate_parse: 13 callbacks suppressed
[  157.269211][T11188] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2965'.
[  157.279835][T11190] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2964'.
[  157.299219][T11188] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2965'.
[  157.462876][T11217] netlink: 'syz.2.2973': attribute type 21 has an invalid length.
[  157.488364][T11221] netlink: 'syz.2.2975': attribute type 30 has an invalid length.
[  157.709665][T11244] FAULT_INJECTION: forcing a failure.
[  157.709665][T11244] name failslab, interval 1, probability 0, space 0, times 0
[  157.722420][T11244] CPU: 1 UID: 0 PID: 11244 Comm: syz.1.2983 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  157.722449][T11244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  157.722472][T11244] Call Trace:
[  157.722479][T11244]  <TASK>
[  157.722487][T11244]  dump_stack_lvl+0xf2/0x150
[  157.722519][T11244]  dump_stack+0x15/0x1a
[  157.722543][T11244]  should_fail_ex+0x223/0x230
[  157.722638][T11244]  should_failslab+0x8f/0xb0
[  157.722666][T11244]  kmem_cache_alloc_noprof+0x52/0x320
[  157.722739][T11244]  ? dst_alloc+0xc0/0x100
[  157.722765][T11244]  dst_alloc+0xc0/0x100
[  157.722789][T11244]  ip_route_output_key_hash_rcu+0xb90/0x12d0
[  157.722866][T11244]  ip_route_output_flow+0x76/0x120
[  157.722904][T11244]  udp_sendmsg+0xe79/0x1310
[  157.722941][T11244]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  157.723013][T11244]  ? avc_has_perm+0xd4/0x160
[  157.723047][T11244]  ? __pfx_udp_sendmsg+0x10/0x10
[  157.723080][T11244]  inet_sendmsg+0xaf/0xd0
[  157.723105][T11244]  __sock_sendmsg+0x102/0x180
[  157.723219][T11244]  ____sys_sendmsg+0x312/0x410
[  157.723255][T11244]  __sys_sendmmsg+0x227/0x4b0
[  157.723313][T11244]  __x64_sys_sendmmsg+0x57/0x70
[  157.723347][T11244]  x64_sys_call+0x29aa/0x2dc0
[  157.723384][T11244]  do_syscall_64+0xc9/0x1c0
[  157.723433][T11244]  ? clear_bhb_loop+0x55/0xb0
[  157.723459][T11244]  ? clear_bhb_loop+0x55/0xb0
[  157.723486][T11244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.723518][T11244] RIP: 0033:0x7f6d37e6cd29
[  157.723533][T11244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.723586][T11244] RSP: 002b:00007f6d364d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  157.723605][T11244] RAX: ffffffffffffffda RBX: 00007f6d38085fa0 RCX: 00007f6d37e6cd29
[  157.723617][T11244] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000003
[  157.723635][T11244] RBP: 00007f6d364d7090 R08: 0000000000000000 R09: 0000000000000000
[  157.723646][T11244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.723658][T11244] R13: 0000000000000000 R14: 00007f6d38085fa0 R15: 00007ffe751fb1c8
[  157.723743][T11244]  </TASK>
[  157.951759][T11241] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2982'.
[  158.101222][T11268] netlink: 'syz.1.2994': attribute type 30 has an invalid length.
[  158.131168][T11270] siw: device registration error -23
[  158.215705][T11280] FAULT_INJECTION: forcing a failure.
[  158.215705][T11280] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.228857][T11280] CPU: 1 UID: 0 PID: 11280 Comm: syz.0.2999 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  158.228945][T11280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  158.228958][T11280] Call Trace:
[  158.228964][T11280]  <TASK>
[  158.228971][T11280]  dump_stack_lvl+0xf2/0x150
[  158.229004][T11280]  dump_stack+0x15/0x1a
[  158.229055][T11280]  should_fail_ex+0x223/0x230
[  158.229088][T11280]  should_fail+0xb/0x10
[  158.229116][T11280]  should_fail_usercopy+0x1a/0x20
[  158.229206][T11280]  _copy_to_user+0x20/0xa0
[  158.229233][T11280]  simple_read_from_buffer+0xa0/0x110
[  158.229261][T11280]  proc_fail_nth_read+0xf9/0x140
[  158.229310][T11280]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  158.229338][T11280]  vfs_read+0x19b/0x6f0
[  158.229428][T11280]  ? __rcu_read_unlock+0x4e/0x70
[  158.229487][T11280]  ? __fget_files+0x17c/0x1c0
[  158.229516][T11280]  ksys_read+0xe8/0x1b0
[  158.229535][T11280]  __x64_sys_read+0x42/0x50
[  158.229635][T11280]  x64_sys_call+0x2874/0x2dc0
[  158.229667][T11280]  do_syscall_64+0xc9/0x1c0
[  158.229696][T11280]  ? clear_bhb_loop+0x55/0xb0
[  158.229730][T11280]  ? clear_bhb_loop+0x55/0xb0
[  158.229756][T11280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.229833][T11280] RIP: 0033:0x7fad8881b73c
[  158.229851][T11280] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  158.229873][T11280] RSP: 002b:00007fad86e87030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  158.229950][T11280] RAX: ffffffffffffffda RBX: 00007fad88a35fa0 RCX: 00007fad8881b73c
[  158.229962][T11280] RDX: 000000000000000f RSI: 00007fad86e870a0 RDI: 0000000000000008
[  158.229973][T11280] RBP: 00007fad86e87090 R08: 0000000000000000 R09: 0000000000000000
[  158.229985][T11280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.229998][T11280] R13: 0000000000000000 R14: 00007fad88a35fa0 R15: 00007ffe73176588
[  158.230021][T11280]  </TASK>
[  158.320723][T11284] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.374775][T11286] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3001'.
[  158.381103][T11284] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.389271][T11286] tipc: Started in network mode
[  158.389284][T11286] tipc: Node identity 7, cluster identity 5
[  158.468826][T11286] tipc: Node number set to 7
[  158.558851][T11291] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  158.753992][T11304] siw: device registration error -23
[  158.812785][T11309] netlink: 'syz.2.3010': attribute type 30 has an invalid length.
[  158.959796][T11313] can: request_module (can-proto-0) failed.
[  159.080062][T11324] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3013'.
[  159.161585][T11329] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  159.830856][T11349] netlink: 'syz.0.3024': attribute type 25 has an invalid length.
[  159.879794][T11349] loop0: detected capacity change from 0 to 1024
[  159.896307][T11349] EXT4-fs: Ignoring removed nobh option
[  159.912356][T11349] EXT4-fs: quotafile must be on filesystem root
[  160.016040][T11353] netlink: 'syz.0.3025': attribute type 30 has an invalid length.
[  160.169572][T11363] Invalid ELF header magic: != ELF
[  160.190930][T11363] netlink: 'syz.3.3030': attribute type 3 has an invalid length.
[  160.241442][T11365] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3031'.
[  160.337563][T11371] loop0: detected capacity change from 0 to 2048
[  160.379324][T11371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.406957][T11353] EXT4-fs (loop0): Online resizing not supported with bigalloc
[  160.526197][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.569626][T11383] ip6gretap0 speed is unknown, defaulting to 1000
[  160.587355][T11383] lo speed is unknown, defaulting to 1000
[  161.120521][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  161.120539][   T29] audit: type=1326 audit(1737922470.387:9734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.174068][   T29] audit: type=1326 audit(1737922470.387:9735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.197721][   T29] audit: type=1326 audit(1737922470.387:9736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.221376][   T29] audit: type=1326 audit(1737922470.387:9737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.245037][   T29] audit: type=1326 audit(1737922470.387:9738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.268620][   T29] audit: type=1326 audit(1737922470.387:9739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.292131][   T29] audit: type=1326 audit(1737922470.387:9740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.315649][   T29] audit: type=1326 audit(1737922470.387:9741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.339291][   T29] audit: type=1326 audit(1737922470.387:9742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.362898][   T29] audit: type=1326 audit(1737922470.417:9743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11400 comm="syz.1.3042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  161.573011][T11411] netlink: 'syz.1.3047': attribute type 30 has an invalid length.
[  161.792752][T11416] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  161.898268][T11429] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3052'.
[  162.014538][T11439] 9pnet_fd: Insufficient options for proto=fd
[  162.050699][T11442] loop0: detected capacity change from 0 to 512
[  162.059598][T11442] EXT4-fs: Ignoring removed oldalloc option
[  162.060223][T11444] netlink: 84 bytes leftover after parsing attributes in process `syz.4.3060'.
[  162.089105][T11442] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.3061: Parent and EA inode have the same ino 15
[  162.101928][T11442] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.3061: Parent and EA inode have the same ino 15
[  162.116799][T11442] EXT4-fs (loop0): 1 orphan inode deleted
[  162.122871][T11442] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.797221][T11456] FAULT_INJECTION: forcing a failure.
[  162.797221][T11456] name failslab, interval 1, probability 0, space 0, times 0
[  162.810024][T11456] CPU: 1 UID: 0 PID: 11456 Comm: syz.1.3065 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  162.810054][T11456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  162.810068][T11456] Call Trace:
[  162.810075][T11456]  <TASK>
[  162.810083][T11456]  dump_stack_lvl+0xf2/0x150
[  162.810117][T11456]  dump_stack+0x15/0x1a
[  162.810143][T11456]  should_fail_ex+0x223/0x230
[  162.810215][T11456]  should_failslab+0x8f/0xb0
[  162.810283][T11456]  kmem_cache_alloc_node_noprof+0x59/0x320
[  162.810316][T11456]  ? __alloc_skb+0x10b/0x310
[  162.810344][T11456]  __alloc_skb+0x10b/0x310
[  162.810369][T11456]  ctrl_getfamily+0x2c3/0x3b0
[  162.810417][T11456]  genl_rcv_msg+0x61b/0x6c0
[  162.810436][T11456]  ? __pfx_ctrl_getfamily+0x10/0x10
[  162.810453][T11456]  ? cmp_ex_search+0x56/0x70
[  162.810482][T11456]  netlink_rcv_skb+0x12c/0x230
[  162.810507][T11456]  ? __pfx_genl_rcv_msg+0x10/0x10
[  162.810583][T11456]  genl_rcv+0x28/0x40
[  162.810599][T11456]  netlink_unicast+0x599/0x670
[  162.810625][T11456]  netlink_sendmsg+0x5cc/0x6e0
[  162.810712][T11456]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.810738][T11456]  __sock_sendmsg+0x140/0x180
[  162.810829][T11456]  __sys_sendto+0x1a8/0x230
[  162.810878][T11456]  __x64_sys_sendto+0x78/0x90
[  162.810910][T11456]  x64_sys_call+0x29fa/0x2dc0
[  162.810996][T11456]  do_syscall_64+0xc9/0x1c0
[  162.811017][T11456]  ? clear_bhb_loop+0x55/0xb0
[  162.811045][T11456]  ? clear_bhb_loop+0x55/0xb0
[  162.811121][T11456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.811144][T11456] RIP: 0033:0x7f6d37e6ebbc
[  162.811157][T11456] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  162.811172][T11456] RSP: 002b:00007f6d364d5ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  162.811188][T11456] RAX: ffffffffffffffda RBX: 00007f6d364d5fc0 RCX: 00007f6d37e6ebbc
[  162.811201][T11456] RDX: 000000000000001c RSI: 00007f6d364d6010 RDI: 0000000000000006
[  162.811277][T11456] RBP: 0000000000000000 R08: 00007f6d364d5f14 R09: 000000000000000c
[  162.811287][T11456] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[  162.811297][T11456] R13: 00007f6d364d5f68 R14: 00007f6d364d6010 R15: 0000000000000000
[  162.811314][T11456]  </TASK>
[  163.060108][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.076460][T11458] netlink: 'syz.3.3068': attribute type 30 has an invalid length.
[  163.110691][T11464] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  163.267896][T11479] FAULT_INJECTION: forcing a failure.
[  163.267896][T11479] name failslab, interval 1, probability 0, space 0, times 0
[  163.280604][T11479] CPU: 1 UID: 0 PID: 11479 Comm: syz.1.3072 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  163.280634][T11479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  163.280694][T11479] Call Trace:
[  163.280700][T11479]  <TASK>
[  163.280707][T11479]  dump_stack_lvl+0xf2/0x150
[  163.280740][T11479]  dump_stack+0x15/0x1a
[  163.280767][T11479]  should_fail_ex+0x223/0x230
[  163.280875][T11479]  should_failslab+0x8f/0xb0
[  163.280904][T11479]  kmem_cache_alloc_noprof+0x52/0x320
[  163.280954][T11479]  ? getname_flags+0x81/0x3b0
[  163.280982][T11479]  getname_flags+0x81/0x3b0
[  163.281010][T11479]  getname+0x17/0x20
[  163.281065][T11479]  __se_sys_mq_unlink+0x56/0x210
[  163.281094][T11479]  __x64_sys_mq_unlink+0x1f/0x30
[  163.281119][T11479]  x64_sys_call+0x2a5e/0x2dc0
[  163.281173][T11479]  do_syscall_64+0xc9/0x1c0
[  163.281195][T11479]  ? clear_bhb_loop+0x55/0xb0
[  163.281221][T11479]  ? clear_bhb_loop+0x55/0xb0
[  163.281273][T11479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.281306][T11479] RIP: 0033:0x7f6d37e6cd29
[  163.281392][T11479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.281410][T11479] RSP: 002b:00007f6d364d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  163.281428][T11479] RAX: ffffffffffffffda RBX: 00007f6d38085fa0 RCX: 00007f6d37e6cd29
[  163.281440][T11479] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  163.281451][T11479] RBP: 00007f6d364d7090 R08: 0000000000000000 R09: 0000000000000000
[  163.281464][T11479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.281478][T11479] R13: 0000000000000000 R14: 00007f6d38085fa0 R15: 00007ffe751fb1c8
[  163.281500][T11479]  </TASK>
[  163.705903][T11499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3077'.
[  163.715246][T11499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3077'.
[  164.212056][T11506] FAULT_INJECTION: forcing a failure.
[  164.212056][T11506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.225167][T11506] CPU: 1 UID: 0 PID: 11506 Comm: syz.4.3082 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  164.225187][T11506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  164.225198][T11506] Call Trace:
[  164.225203][T11506]  <TASK>
[  164.225210][T11506]  dump_stack_lvl+0xf2/0x150
[  164.225233][T11506]  dump_stack+0x15/0x1a
[  164.225251][T11506]  should_fail_ex+0x223/0x230
[  164.225429][T11506]  should_fail+0xb/0x10
[  164.225452][T11506]  should_fail_usercopy+0x1a/0x20
[  164.225480][T11506]  strncpy_from_user+0x25/0x210
[  164.225609][T11506]  strncpy_from_user_nofault+0x66/0xe0
[  164.225641][T11506]  bpf_probe_read_user_str+0x2a/0x70
[  164.225668][T11506]  bpf_prog_bc7c5c6b9645592f+0x3e/0x40
[  164.225681][T11506]  bpf_trace_run4+0x114/0x1e0
[  164.225703][T11506]  __traceiter_sched_switch+0x3b/0x60
[  164.225758][T11506]  __schedule+0x81a/0x930
[  164.225787][T11506]  __cond_resched+0x28/0x50
[  164.225812][T11506]  __se_sys_close_range+0x20e/0x2f0
[  164.225863][T11506]  __x64_sys_close_range+0x43/0x50
[  164.225886][T11506]  x64_sys_call+0x2411/0x2dc0
[  164.225910][T11506]  do_syscall_64+0xc9/0x1c0
[  164.225930][T11506]  ? clear_bhb_loop+0x55/0xb0
[  164.225979][T11506]  ? clear_bhb_loop+0x55/0xb0
[  164.226072][T11506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.226094][T11506] RIP: 0033:0x7ffb8294cd29
[  164.226187][T11506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.226248][T11506] RSP: 002b:00007ffb80fb7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  164.226263][T11506] RAX: ffffffffffffffda RBX: 00007ffb82b65fa0 RCX: 00007ffb8294cd29
[  164.226274][T11506] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  164.226284][T11506] RBP: 00007ffb80fb7090 R08: 0000000000000000 R09: 0000000000000000
[  164.226380][T11506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.226390][T11506] R13: 0000000000000000 R14: 00007ffb82b65fa0 R15: 00007ffdb5efd068
[  164.226405][T11506]  </TASK>
[  164.508094][T11510] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  164.553695][T11517] netlink: 'syz.4.3087': attribute type 30 has an invalid length.
[  164.613861][T11525] IPVS: set_ctl: invalid protocol: 135 172.30.1.4:20003
[  164.861996][T11544] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3095'.
[  164.873181][T11544] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3095'.
[  164.925350][T11547] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  165.144258][T11573] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3104'.
[  165.160963][T11573] FAULT_INJECTION: forcing a failure.
[  165.160963][T11573] name failslab, interval 1, probability 0, space 0, times 0
[  165.173628][T11573] CPU: 1 UID: 0 PID: 11573 Comm: syz.2.3104 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  165.173655][T11573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  165.173668][T11573] Call Trace:
[  165.173673][T11573]  <TASK>
[  165.173680][T11573]  dump_stack_lvl+0xf2/0x150
[  165.173757][T11573]  dump_stack+0x15/0x1a
[  165.173843][T11573]  should_fail_ex+0x223/0x230
[  165.173876][T11573]  ? qdisc_get_rtab+0x1a3/0x2c0
[  165.173894][T11573]  should_failslab+0x8f/0xb0
[  165.173919][T11573]  __kmalloc_cache_noprof+0x4e/0x320
[  165.173987][T11573]  qdisc_get_rtab+0x1a3/0x2c0
[  165.174011][T11573]  tbf_change+0x126/0xca0
[  165.174065][T11573]  ? stack_trace_save+0x61/0x90
[  165.174092][T11573]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  165.174122][T11573]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  165.174247][T11573]  ? rtnetlink_rcv+0x1c/0x30
[  165.174271][T11573]  ? netlink_unicast+0x599/0x670
[  165.174300][T11573]  ? netlink_sendmsg+0x5cc/0x6e0
[  165.174331][T11573]  ? __sock_sendmsg+0x140/0x180
[  165.174431][T11573]  ? ____sys_sendmsg+0x312/0x410
[  165.174461][T11573]  ? __sys_sendmsg+0x19d/0x230
[  165.174490][T11573]  ? __x64_sys_sendmsg+0x46/0x50
[  165.174551][T11573]  ? read_tsc+0x9/0x20
[  165.174614][T11573]  tbf_init+0x72/0x90
[  165.174641][T11573]  ? __pfx_tbf_init+0x10/0x10
[  165.174742][T11573]  qdisc_create+0x6c1/0xae0
[  165.174764][T11573]  ? __nla_parse+0x40/0x60
[  165.174786][T11573]  tc_modify_qdisc+0x668/0x1100
[  165.174895][T11573]  ? ns_capable+0x7d/0xb0
[  165.174977][T11573]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  165.175073][T11573]  rtnetlink_rcv_msg+0x6aa/0x710
[  165.175102][T11573]  ? ref_tracker_free+0x3a5/0x410
[  165.175129][T11573]  ? __dev_queue_xmit+0x186/0x2090
[  165.175165][T11573]  netlink_rcv_skb+0x12c/0x230
[  165.175198][T11573]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  165.175238][T11573]  rtnetlink_rcv+0x1c/0x30
[  165.175265][T11573]  netlink_unicast+0x599/0x670
[  165.175379][T11573]  netlink_sendmsg+0x5cc/0x6e0
[  165.175421][T11573]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.175459][T11573]  __sock_sendmsg+0x140/0x180
[  165.175504][T11573]  ____sys_sendmsg+0x312/0x410
[  165.175585][T11573]  __sys_sendmsg+0x19d/0x230
[  165.175640][T11573]  __x64_sys_sendmsg+0x46/0x50
[  165.175672][T11573]  x64_sys_call+0x2734/0x2dc0
[  165.175746][T11573]  do_syscall_64+0xc9/0x1c0
[  165.175774][T11573]  ? clear_bhb_loop+0x55/0xb0
[  165.175860][T11573]  ? clear_bhb_loop+0x55/0xb0
[  165.175887][T11573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.175959][T11573] RIP: 0033:0x7f4e1d85cd29
[  165.175977][T11573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.175998][T11573] RSP: 002b:00007f4e1bec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  165.176018][T11573] RAX: ffffffffffffffda RBX: 00007f4e1da75fa0 RCX: 00007f4e1d85cd29
[  165.176030][T11573] RDX: 0000000000000000 RSI: 0000000020001200 RDI: 0000000000000006
[  165.176041][T11573] RBP: 00007f4e1bec7090 R08: 0000000000000000 R09: 0000000000000000
[  165.176052][T11573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.176063][T11573] R13: 0000000000000000 R14: 00007f4e1da75fa0 R15: 00007fffde0dc6a8
[  165.176130][T11573]  </TASK>
[  165.488978][T11573] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  165.498892][T11575] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3105'.
[  165.540210][T11581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3106'.
[  165.549608][T11581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3106'.
[  165.592718][T11586] netlink: 'syz.4.3108': attribute type 30 has an invalid length.
[  165.686207][T11596] siw: device registration error -23
[  165.722247][T11601] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  165.800477][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3117'.
[  165.813718][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3117'.
[  165.992204][T11621] FAULT_INJECTION: forcing a failure.
[  165.992204][T11621] name failslab, interval 1, probability 0, space 0, times 0
[  166.004960][T11621] CPU: 1 UID: 0 PID: 11621 Comm: syz.4.3120 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  166.004987][T11621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  166.005002][T11621] Call Trace:
[  166.005010][T11621]  <TASK>
[  166.005018][T11621]  dump_stack_lvl+0xf2/0x150
[  166.005053][T11621]  dump_stack+0x15/0x1a
[  166.005122][T11621]  should_fail_ex+0x223/0x230
[  166.005154][T11621]  ? __request_module+0x1ba/0x3e0
[  166.005213][T11621]  should_failslab+0x8f/0xb0
[  166.005297][T11621]  __kmalloc_cache_noprof+0x4e/0x320
[  166.005337][T11621]  ? tcp_ca_find_autoload+0x85/0xf0
[  166.005374][T11621]  __request_module+0x1ba/0x3e0
[  166.005400][T11621]  ? capable+0x7c/0xb0
[  166.005446][T11621]  ? security_capable+0x81/0x90
[  166.005479][T11621]  tcp_ca_find_autoload+0x85/0xf0
[  166.005507][T11621]  tcp_ca_get_key_by_name+0x25/0x90
[  166.005657][T11621]  ip_fib_metrics_init+0x163/0x480
[  166.005742][T11621]  ? should_failslab+0x8f/0xb0
[  166.005783][T11621]  fib_create_info+0x748/0x1550
[  166.005821][T11621]  fib_table_insert+0x10d/0xf90
[  166.005887][T11621]  ? fib_trie_table+0xce/0xf0
[  166.005926][T11621]  inet_rtm_newroute+0xa3/0x140
[  166.005963][T11621]  ? __pfx_inet_rtm_newroute+0x10/0x10
[  166.005994][T11621]  rtnetlink_rcv_msg+0x6aa/0x710
[  166.006029][T11621]  ? ref_tracker_free+0x3a5/0x410
[  166.006070][T11621]  netlink_rcv_skb+0x12c/0x230
[  166.006189][T11621]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  166.006226][T11621]  rtnetlink_rcv+0x1c/0x30
[  166.006327][T11621]  netlink_unicast+0x599/0x670
[  166.006365][T11621]  netlink_sendmsg+0x5cc/0x6e0
[  166.006422][T11621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  166.006521][T11621]  __sock_sendmsg+0x140/0x180
[  166.006558][T11621]  __sys_sendto+0x1a8/0x230
[  166.006655][T11621]  __x64_sys_sendto+0x78/0x90
[  166.006686][T11621]  x64_sys_call+0x29fa/0x2dc0
[  166.006719][T11621]  do_syscall_64+0xc9/0x1c0
[  166.006748][T11621]  ? clear_bhb_loop+0x55/0xb0
[  166.006873][T11621]  ? clear_bhb_loop+0x55/0xb0
[  166.006899][T11621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.006951][T11621] RIP: 0033:0x7ffb8294cd29
[  166.006968][T11621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.006990][T11621] RSP: 002b:00007ffb80fb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  166.007039][T11621] RAX: ffffffffffffffda RBX: 00007ffb82b65fa0 RCX: 00007ffb8294cd29
[  166.007054][T11621] RDX: 0000000000000078 RSI: 0000000020000000 RDI: 0000000000000003
[  166.007069][T11621] RBP: 00007ffb80fb7090 R08: 0000000000000000 R09: 0000000000000000
[  166.007083][T11621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.007094][T11621] R13: 0000000000000000 R14: 00007ffb82b65fa0 R15: 00007ffdb5efd068
[  166.007115][T11621]  </TASK>
[  166.363339][T11636] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  166.421402][   T29] kauditd_printk_skb: 45 callbacks suppressed
[  166.421416][   T29] audit: type=1326 audit(1737922475.687:9789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.428468][T11641] FAULT_INJECTION: forcing a failure.
[  166.428468][T11641] name failslab, interval 1, probability 0, space 0, times 0
[  166.453360][   T29] audit: type=1326 audit(1737922475.687:9790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.463996][T11641] CPU: 1 UID: 0 PID: 11641 Comm: syz.3.3128 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  166.464075][T11641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  166.464091][T11641] Call Trace:
[  166.464100][T11641]  <TASK>
[  166.464110][T11641]  dump_stack_lvl+0xf2/0x150
[  166.464144][T11641]  dump_stack+0x15/0x1a
[  166.464214][T11641]  should_fail_ex+0x223/0x230
[  166.464251][T11641]  should_failslab+0x8f/0xb0
[  166.464275][T11641]  kmem_cache_alloc_node_noprof+0x59/0x320
[  166.464320][T11641]  ? __alloc_skb+0x10b/0x310
[  166.464349][T11641]  __alloc_skb+0x10b/0x310
[  166.464399][T11641]  ? audit_log_start+0x34c/0x6b0
[  166.464439][T11641]  audit_log_start+0x368/0x6b0
[  166.464531][T11641]  ? exc_page_fault+0x4fc/0x650
[  166.464558][T11641]  audit_seccomp+0x4b/0x130
[  166.464592][T11641]  __seccomp_filter+0x6fa/0x1180
[  166.464633][T11641]  __secure_computing+0x9f/0x1c0
[  166.464660][T11641]  syscall_trace_enter+0xd1/0x1f0
[  166.464763][T11641]  ? fpregs_assert_state_consistent+0x83/0xa0
[  166.464811][T11641]  do_syscall_64+0xaa/0x1c0
[  166.464840][T11641]  ? clear_bhb_loop+0x55/0xb0
[  166.464873][T11641]  ? clear_bhb_loop+0x55/0xb0
[  166.464906][T11641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.464957][T11641] RIP: 0033:0x7ffbf97ab73c
[  166.464976][T11641] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  166.465015][T11641] RSP: 002b:00007ffbf7e17030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  166.465083][T11641] RAX: ffffffffffffffda RBX: 00007ffbf99c5fa0 RCX: 00007ffbf97ab73c
[  166.465098][T11641] RDX: 000000000000000f RSI: 00007ffbf7e170a0 RDI: 0000000000000005
[  166.465113][T11641] RBP: 00007ffbf7e17090 R08: 0000000000000000 R09: 0000000000000000
[  166.465127][T11641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.465170][T11641] R13: 0000000000000000 R14: 00007ffbf99c5fa0 R15: 00007ffde977df68
[  166.465193][T11641]  </TASK>
[  166.465203][T11641] audit: audit_lost=26 audit_rate_limit=0 audit_backlog_limit=64
[  166.487511][   T29] audit: type=1326 audit(1737922475.687:9791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.487552][   T29] audit: type=1326 audit(1737922475.687:9792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.487580][   T29] audit: type=1326 audit(1737922475.687:9793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.498015][T11641] audit: out of memory in audit_log_start
[  166.771797][   T29] audit: type=1326 audit(1737922475.687:9794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.795351][   T29] audit: type=1326 audit(1737922475.697:9795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbf97acd29 code=0x7ffc0000
[  166.818863][   T29] audit: type=1326 audit(1737922475.697:9796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11640 comm="syz.3.3128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffbf97ab690 code=0x7ffc0000
[  167.199439][T11672] loop0: detected capacity change from 0 to 512
[  167.227423][T11672] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.241877][T11672] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.386936][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.609220][T11684] netlink: 'syz.3.3145': attribute type 30 has an invalid length.
[  168.018121][T11695] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.069081][T11695] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.119530][T11695] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.183580][T11695] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.255346][T11695] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.269679][T11695] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.281472][T11695] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.295039][T11695] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.368725][T11713] netlink: 'syz.1.3156': attribute type 30 has an invalid length.
[  169.011329][T11734] __nla_validate_parse: 7 callbacks suppressed
[  169.011411][T11734] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3164'.
[  169.091478][T11737] FAULT_INJECTION: forcing a failure.
[  169.091478][T11737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.104646][T11737] CPU: 0 UID: 0 PID: 11737 Comm: syz.4.3165 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  169.104699][T11737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  169.104711][T11737] Call Trace:
[  169.104718][T11737]  <TASK>
[  169.104725][T11737]  dump_stack_lvl+0xf2/0x150
[  169.104756][T11737]  dump_stack+0x15/0x1a
[  169.104782][T11737]  should_fail_ex+0x223/0x230
[  169.104867][T11737]  should_fail+0xb/0x10
[  169.104892][T11737]  should_fail_usercopy+0x1a/0x20
[  169.104920][T11737]  _copy_to_user+0x20/0xa0
[  169.104939][T11737]  simple_read_from_buffer+0xa0/0x110
[  169.104970][T11737]  proc_fail_nth_read+0xf9/0x140
[  169.104990][T11737]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  169.105058][T11737]  vfs_read+0x19b/0x6f0
[  169.105073][T11737]  ? __rcu_read_unlock+0x4e/0x70
[  169.105092][T11737]  ? __fget_files+0x17c/0x1c0
[  169.105117][T11737]  ksys_read+0xe8/0x1b0
[  169.105134][T11737]  __x64_sys_read+0x42/0x50
[  169.105150][T11737]  x64_sys_call+0x2874/0x2dc0
[  169.105179][T11737]  do_syscall_64+0xc9/0x1c0
[  169.105266][T11737]  ? clear_bhb_loop+0x55/0xb0
[  169.105303][T11737]  ? clear_bhb_loop+0x55/0xb0
[  169.105331][T11737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.105359][T11737] RIP: 0033:0x7ffb8294b73c
[  169.105377][T11737] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  169.105399][T11737] RSP: 002b:00007ffb80fb7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  169.105420][T11737] RAX: ffffffffffffffda RBX: 00007ffb82b65fa0 RCX: 00007ffb8294b73c
[  169.105458][T11737] RDX: 000000000000000f RSI: 00007ffb80fb70a0 RDI: 0000000000000006
[  169.105520][T11737] RBP: 00007ffb80fb7090 R08: 0000000000000000 R09: 0000000000000000
[  169.105534][T11737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.105548][T11737] R13: 0000000000000000 R14: 00007ffb82b65fa0 R15: 00007ffdb5efd068
[  169.105610][T11737]  </TASK>
[  169.338756][T11745] netlink: 'syz.3.3168': attribute type 30 has an invalid length.
[  169.560248][T11762] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3173'.
[  169.647129][T11767] FAULT_INJECTION: forcing a failure.
[  169.647129][T11767] name failslab, interval 1, probability 0, space 0, times 0
[  169.659927][T11767] CPU: 1 UID: 0 PID: 11767 Comm: syz.1.3178 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  169.660010][T11767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  169.660022][T11767] Call Trace:
[  169.660027][T11767]  <TASK>
[  169.660035][T11767]  dump_stack_lvl+0xf2/0x150
[  169.660067][T11767]  dump_stack+0x15/0x1a
[  169.660092][T11767]  should_fail_ex+0x223/0x230
[  169.660129][T11767]  should_failslab+0x8f/0xb0
[  169.660187][T11767]  kmem_cache_alloc_node_noprof+0x59/0x320
[  169.660229][T11767]  ? __alloc_skb+0x10b/0x310
[  169.660259][T11767]  __alloc_skb+0x10b/0x310
[  169.660287][T11767]  netlink_alloc_large_skb+0xad/0xe0
[  169.660360][T11767]  netlink_sendmsg+0x3b4/0x6e0
[  169.660441][T11767]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.660526][T11767]  __sock_sendmsg+0x140/0x180
[  169.660568][T11767]  ____sys_sendmsg+0x312/0x410
[  169.660605][T11767]  __sys_sendmsg+0x19d/0x230
[  169.660646][T11767]  __x64_sys_sendmsg+0x46/0x50
[  169.660719][T11767]  x64_sys_call+0x2734/0x2dc0
[  169.660753][T11767]  do_syscall_64+0xc9/0x1c0
[  169.660776][T11767]  ? clear_bhb_loop+0x55/0xb0
[  169.660802][T11767]  ? clear_bhb_loop+0x55/0xb0
[  169.660852][T11767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.660885][T11767] RIP: 0033:0x7f6d37e6cd29
[  169.660903][T11767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.660931][T11767] RSP: 002b:00007f6d364d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.660953][T11767] RAX: ffffffffffffffda RBX: 00007f6d38085fa0 RCX: 00007f6d37e6cd29
[  169.660968][T11767] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  169.660983][T11767] RBP: 00007f6d364d7090 R08: 0000000000000000 R09: 0000000000000000
[  169.660997][T11767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.661011][T11767] R13: 0000000000000000 R14: 00007f6d38085fa0 R15: 00007ffe751fb1c8
[  169.661033][T11767]  </TASK>
[  169.912708][T11771] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3180'.
[  169.922454][T11771] tipc: Started in network mode
[  169.927609][T11771] tipc: Node identity 7, cluster identity 5
[  169.933627][T11771] tipc: Node number set to 7
[  170.166761][T11777] IPv6: sit1: Disabled Multicast RS
[  170.308925][T11785] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3184'.
[  170.330797][T11785] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  170.522038][T11796] netlink: 'syz.0.3189': attribute type 30 has an invalid length.
[  170.539281][T11798] netlink: 'syz.2.3190': attribute type 21 has an invalid length.
[  170.597735][T11798] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3190'.
[  170.606871][T11798] netlink: 'syz.2.3190': attribute type 1 has an invalid length.
[  170.699993][T11798] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.960484][T11803] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3192'.
[  170.986265][T11808] loop0: detected capacity change from 0 to 2048
[  171.008125][T11808] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.031193][T11796] EXT4-fs (loop0): Online resizing not supported with bigalloc
[  171.068119][T11816] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3195'.
[  171.085763][T11816] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3195'.
[  171.144009][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.267965][T11821] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3196'.
[  171.308232][T11823] siw: device registration error -23
[  171.896794][T11850] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  171.929900][T11852] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3206'.
[  171.989482][   T29] kauditd_printk_skb: 112 callbacks suppressed
[  171.989496][   T29] audit: type=1400 audit(1737922481.257:9909): avc:  denied  { unmount } for  pid=10357 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  172.482309][   T29] audit: type=1326 audit(1737922481.747:9910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.1.3217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.601727][   T29] audit: type=1326 audit(1737922481.777:9911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.1.3217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.625459][   T29] audit: type=1326 audit(1737922481.777:9912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.1.3217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.649080][   T29] audit: type=1326 audit(1737922481.777:9913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.1.3217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.672696][   T29] audit: type=1326 audit(1737922481.777:9914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.1.3217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.696359][   T29] audit: type=1326 audit(1737922481.777:9915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.1.3217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.719887][   T29] audit: type=1326 audit(1737922481.777:9916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.742982][   T29] audit: type=1326 audit(1737922481.777:9917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  172.766071][   T29] audit: type=1326 audit(1737922481.777:9918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d37e6cd29 code=0x7ffc0000
[  173.033692][T11904] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  173.109724][T11913] siw: device registration error -23
[  173.216330][T11921] ip6gretap0 speed is unknown, defaulting to 1000
[  173.223391][T11921] lo speed is unknown, defaulting to 1000
[  173.272805][T11926] block device autoloading is deprecated and will be removed.
[  173.395282][T11921] ip6gre1: entered allmulticast mode
[  174.047004][T11944] siw: device registration error -23
[  174.157032][T11950] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  174.211004][T11956] FAULT_INJECTION: forcing a failure.
[  174.211004][T11956] name failslab, interval 1, probability 0, space 0, times 0
[  174.223918][T11956] CPU: 1 UID: 0 PID: 11956 Comm: syz.2.3241 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  174.223949][T11956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  174.223964][T11956] Call Trace:
[  174.223970][T11956]  <TASK>
[  174.223977][T11956]  dump_stack_lvl+0xf2/0x150
[  174.224007][T11956]  dump_stack+0x15/0x1a
[  174.224031][T11956]  should_fail_ex+0x223/0x230
[  174.224062][T11956]  should_failslab+0x8f/0xb0
[  174.224089][T11956]  kmem_cache_alloc_noprof+0x52/0x320
[  174.224128][T11956]  ? vm_area_alloc+0xac/0x130
[  174.224157][T11956]  vm_area_alloc+0xac/0x130
[  174.224184][T11956]  __mmap_region+0x6b5/0x1400
[  174.224245][T11956]  mmap_region+0x164/0x1e0
[  174.224271][T11956]  do_mmap+0x732/0xbb0
[  174.224300][T11956]  vm_mmap_pgoff+0x16d/0x2d0
[  174.224333][T11956]  ksys_mmap_pgoff+0xd0/0x330
[  174.224361][T11956]  ? syscall_trace_enter+0x104/0x1f0
[  174.224389][T11956]  ? fpregs_assert_state_consistent+0x83/0xa0
[  174.224431][T11956]  x64_sys_call+0x1940/0x2dc0
[  174.224462][T11956]  do_syscall_64+0xc9/0x1c0
[  174.224490][T11956]  ? clear_bhb_loop+0x55/0xb0
[  174.224516][T11956]  ? clear_bhb_loop+0x55/0xb0
[  174.224541][T11956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.224566][T11956] RIP: 0033:0x7f4e1d85cd63
[  174.224580][T11956] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  174.224601][T11956] RSP: 002b:00007f4e1bec6e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  174.224622][T11956] RAX: ffffffffffffffda RBX: 000000000000061a RCX: 00007f4e1d85cd63
[  174.224637][T11956] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  174.224651][T11956] RBP: 0000000020000702 R08: 00000000ffffffff R09: 0000000000000000
[  174.224666][T11956] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000007
[  174.224681][T11956] R13: 00007f4e1bec6ef0 R14: 00007f4e1bec6eb0 R15: 0000000020000d40
[  174.224710][T11956]  </TASK>
[  174.473820][T11960] netlink: 'syz.3.3243': attribute type 13 has an invalid length.
[  174.481905][T11960] __nla_validate_parse: 1 callbacks suppressed
[  174.481921][T11960] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3243'.
[  174.514829][T11965] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3242'.
[  174.732940][T11974] ip6gretap0 speed is unknown, defaulting to 1000
[  174.741530][T11974] lo speed is unknown, defaulting to 1000
[  174.812206][T11974] chnl_net:caif_netlink_parms(): no params data found
[  174.860142][T11974] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.867284][T11974] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.874719][T11974] bridge_slave_0: entered allmulticast mode
[  174.881664][T11974] bridge_slave_0: entered promiscuous mode
[  174.889128][T11974] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.896337][T11974] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.903754][T11974] bridge_slave_1: entered allmulticast mode
[  174.910278][T11974] bridge_slave_1: entered promiscuous mode
[  174.930024][T11974] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.956642][T11974] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  175.002990][T11974] team0: Port device team_slave_0 added
[  175.016807][T11974] team0: Port device team_slave_1 added
[  175.046545][T11974] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.053532][T11974] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.079619][T11974] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  175.126327][T11974] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.126727][T11991] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  175.133306][T11974] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.133338][T11974] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  175.185784][T11974] hsr_slave_0: entered promiscuous mode
[  175.191947][T11974] hsr_slave_1: entered promiscuous mode
[  175.198086][T11974] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  175.205824][T11974] Cannot create hsr debugfs directory
[  175.487030][T11974] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  175.501859][T11974] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  175.511649][T11974] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  175.528867][T11974] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  175.559134][T11974] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.566244][T11974] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.573746][T11974] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.580863][T11974] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.650122][T11974] 8021q: adding VLAN 0 to HW filter on device bond0
[  175.669357][T11974] 8021q: adding VLAN 0 to HW filter on device team0
[  175.680845][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.691225][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.714320][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.721449][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.735887][ T3403] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.743013][ T3403] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.765726][T12025] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3261'.
[  175.798062][T11974] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  175.886942][T11974] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.988704][T11974] veth0_vlan: entered promiscuous mode
[  175.992785][T12037] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  176.000011][T11974] veth1_vlan: entered promiscuous mode
[  176.026195][T11974] veth0_macvtap: entered promiscuous mode
[  176.035176][T11974] veth1_macvtap: entered promiscuous mode
[  176.048694][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.059354][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.069298][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.079838][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.089771][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.100358][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.110519][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.121036][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.130919][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.141403][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.152856][T11974] batman_adv: batadv0: Interface activated: batadv_slave_0
[  176.165984][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.176570][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.186783][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.197413][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.207376][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.218103][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.228045][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.238539][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.248401][T11974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.258863][T11974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.270449][T11974] batman_adv: batadv0: Interface activated: batadv_slave_1
[  176.279056][T11974] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.287834][T11974] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.296664][T11974] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.305385][T11974] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.318431][T12042] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3264'.
[  176.330772][T12042] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  177.145790][T12088] loop0: detected capacity change from 0 to 512
[  177.178468][T12088] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.191305][T12088] ext4 filesystem being mounted at /63/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  177.204320][   T29] kauditd_printk_skb: 94 callbacks suppressed
[  177.204337][   T29] audit: type=1326 audit(1737922486.467:10013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.234461][   T29] audit: type=1326 audit(1737922486.467:10014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.258148][   T29] audit: type=1326 audit(1737922486.467:10015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.281768][   T29] audit: type=1326 audit(1737922486.467:10016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.305396][   T29] audit: type=1326 audit(1737922486.467:10017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.308827][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.329416][   T29] audit: type=1326 audit(1737922486.467:10018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.361918][   T29] audit: type=1326 audit(1737922486.467:10019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.385538][   T29] audit: type=1326 audit(1737922486.467:10020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.409326][   T29] audit: type=1326 audit(1737922486.467:10021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.432993][   T29] audit: type=1326 audit(1737922486.467:10022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12087 comm="syz.0.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  177.526915][T12102] siw: device registration error -23
[  177.562908][T12111] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3287'.
[  177.572635][T12111] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  177.798228][T12138] siw: device registration error -23
[  177.888387][T12146] netlink: 50 bytes leftover after parsing attributes in process `syz.1.3300'.
[  177.999966][T12159] FAULT_INJECTION: forcing a failure.
[  177.999966][T12159] name failslab, interval 1, probability 0, space 0, times 0
[  178.012705][T12159] CPU: 1 UID: 0 PID: 12159 Comm: syz.4.3307 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  178.012735][T12159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  178.012831][T12159] Call Trace:
[  178.012837][T12159]  <TASK>
[  178.012843][T12159]  dump_stack_lvl+0xf2/0x150
[  178.012870][T12159]  dump_stack+0x15/0x1a
[  178.012895][T12159]  should_fail_ex+0x223/0x230
[  178.013012][T12159]  should_failslab+0x8f/0xb0
[  178.013043][T12159]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  178.013144][T12159]  ? match_strdup+0x37/0x40
[  178.013225][T12159]  kmemdup_nul+0x30/0x80
[  178.013244][T12159]  match_strdup+0x37/0x40
[  178.013263][T12159]  p9_client_create+0x25c/0xaf0
[  178.013298][T12159]  v9fs_session_init+0xf9/0xda0
[  178.013359][T12159]  ? should_fail_ex+0xd7/0x230
[  178.013385][T12159]  ? v9fs_mount+0x53/0x570
[  178.013406][T12159]  ? should_failslab+0x8f/0xb0
[  178.013426][T12159]  ? __kmalloc_cache_noprof+0x186/0x320
[  178.013526][T12159]  v9fs_mount+0x69/0x570
[  178.013549][T12159]  ? __pfx_v9fs_mount+0x10/0x10
[  178.013571][T12159]  legacy_get_tree+0x77/0xd0
[  178.013663][T12159]  vfs_get_tree+0x56/0x1e0
[  178.013682][T12159]  do_new_mount+0x227/0x690
[  178.013761][T12159]  path_mount+0x49b/0xb30
[  178.013854][T12159]  __se_sys_mount+0x27f/0x2d0
[  178.013922][T12159]  ? __bpf_trace_sys_enter+0x10/0x30
[  178.013944][T12159]  __x64_sys_mount+0x67/0x80
[  178.013965][T12159]  x64_sys_call+0x2c84/0x2dc0
[  178.013988][T12159]  do_syscall_64+0xc9/0x1c0
[  178.014072][T12159]  ? clear_bhb_loop+0x55/0xb0
[  178.014105][T12159]  ? clear_bhb_loop+0x55/0xb0
[  178.014131][T12159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.014156][T12159] RIP: 0033:0x7ffb8294cd29
[  178.014170][T12159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.014192][T12159] RSP: 002b:00007ffb80fb7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  178.014284][T12159] RAX: ffffffffffffffda RBX: 00007ffb82b65fa0 RCX: 00007ffb8294cd29
[  178.014295][T12159] RDX: 0000000020000b80 RSI: 0000000020000040 RDI: 0000000000000000
[  178.014305][T12159] RBP: 00007ffb80fb7090 R08: 00000000200005c0 R09: 0000000000000000
[  178.014315][T12159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  178.014325][T12159] R13: 0000000000000000 R14: 00007ffb82b65fa0 R15: 00007ffdb5efd068
[  178.014349][T12159]  </TASK>
[  178.413688][T12169] loop0: detected capacity change from 0 to 8192
[  178.425871][T12175] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  178.437013][T12169] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  178.437013][T12169] n'º|$@OOݱµ’-®+·el'
[  178.476689][T12166] ip6gretap0 speed is unknown, defaulting to 1000
[  178.483202][T12180] netlink: 'syz.2.3313': attribute type 30 has an invalid length.
[  178.506171][T12166] lo speed is unknown, defaulting to 1000
[  178.549528][ T1434] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.637068][ T1434] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.736893][T12166] chnl_net:caif_netlink_parms(): no params data found
[  178.789900][ T1434] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.815857][T12166] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.822952][T12166] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.830104][T12166] bridge_slave_0: entered allmulticast mode
[  178.837253][T12166] bridge_slave_0: entered promiscuous mode
[  178.846919][T12166] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.854059][T12166] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.863683][T12166] bridge_slave_1: entered allmulticast mode
[  178.870202][T12166] bridge_slave_1: entered promiscuous mode
[  178.879157][ T1434] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.917647][T12166] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  178.931518][T12209] ip6gretap0 speed is unknown, defaulting to 1000
[  178.939663][T12166] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  178.955027][T12209] lo speed is unknown, defaulting to 1000
[  178.970755][T12166] team0: Port device team_slave_0 added
[  178.988777][T12166] team0: Port device team_slave_1 added
[  179.249164][ T1434] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  179.261469][ T1434] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  179.273096][ T1434] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  179.284707][ T1434] bond0 (unregistering): Released all slaves
[  179.293155][T12166] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.300207][T12166] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.326294][T12166] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.343900][T12166] batman_adv: batadv0: Adding interface: batadv_slave_1
[  179.350901][T12166] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.377005][T12166] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  179.401016][ T1434] tipc: Left network mode
[  179.410316][ T1434] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.417822][ T1434] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.425596][ T1434] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  179.433113][ T1434] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.443501][ T1434] veth1_macvtap: left promiscuous mode
[  179.449734][ T1434] veth0_macvtap: left promiscuous mode
[  179.455407][ T1434] veth1_vlan: left promiscuous mode
[  179.460718][ T1434] veth0_vlan: left promiscuous mode
[  179.503573][T12213] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  179.542337][ T1434] team0 (unregistering): Port device team_slave_1 removed
[  179.553012][ T1434] team0 (unregistering): Port device team_slave_0 removed
[  179.587600][T12166] hsr_slave_0: entered promiscuous mode
[  179.593772][T12166] hsr_slave_1: entered promiscuous mode
[  179.599935][T12166] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  179.607674][T12166] Cannot create hsr debugfs directory
[  179.615006][T12215] siw: device registration error -23
[  179.753730][T12232] netlink: 'syz.3.3330': attribute type 30 has an invalid length.
[  179.859194][T12166] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  179.861734][T12239] loop3: detected capacity change from 0 to 2048
[  179.874608][T12166] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  179.883052][T12239] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.892546][T12166] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  179.905432][T12166] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  179.915318][T12232] EXT4-fs (loop3): Online resizing not supported with bigalloc
[  179.943552][T12166] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.957738][T12166] 8021q: adding VLAN 0 to HW filter on device team0
[  179.967556][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.974645][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.989411][T11974] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.990538][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.005614][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.029387][T12244] siw: device registration error -23
[  180.092033][T12166] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.114386][T12258] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  180.186614][T12166] veth0_vlan: entered promiscuous mode
[  180.194333][T12166] veth1_vlan: entered promiscuous mode
[  180.208789][T12166] veth0_macvtap: entered promiscuous mode
[  180.216106][T12166] veth1_macvtap: entered promiscuous mode
[  180.226487][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.236977][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.246939][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.257431][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.267324][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.277832][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.287710][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.298197][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.308340][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  180.318817][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.332686][T12166] batman_adv: batadv0: Interface activated: batadv_slave_0
[  180.343583][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.354116][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.364142][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.374731][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.384646][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.395229][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.405280][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.415790][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.425719][T12166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  180.436247][T12166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.447562][T12166] batman_adv: batadv0: Interface activated: batadv_slave_1
[  180.458318][T12166] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.467096][T12166] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  180.476022][T12166] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.484921][T12166] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.671737][T12284] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3341'.
[  181.151218][T12286] netlink: 'syz.3.3342': attribute type 30 has an invalid length.
[  181.249181][T12287] loop3: detected capacity change from 0 to 2048
[  181.276376][T12287] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.294100][T12286] EXT4-fs (loop3): Online resizing not supported with bigalloc
[  181.342973][T11974] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.460983][T12297] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  181.515124][T12299] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3345'.
[  181.524769][T12299] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3345'.
[  181.762660][T12328] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  181.805397][T12331] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3354'.
[  182.332336][T12362] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  182.366480][T12363] netlink: 'syz.4.3369': attribute type 4 has an invalid length.
[  182.638237][T12366] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  182.892222][T12398] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3383'.
[  183.100900][T12410] FAULT_INJECTION: forcing a failure.
[  183.100900][T12410] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.114069][T12410] CPU: 1 UID: 0 PID: 12410 Comm: syz.4.3391 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  183.114094][T12410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  183.114109][T12410] Call Trace:
[  183.114117][T12410]  <TASK>
[  183.114163][T12410]  dump_stack_lvl+0xf2/0x150
[  183.114188][T12410]  dump_stack+0x15/0x1a
[  183.114206][T12410]  should_fail_ex+0x223/0x230
[  183.114270][T12410]  should_fail+0xb/0x10
[  183.114294][T12410]  should_fail_usercopy+0x1a/0x20
[  183.114323][T12410]  _copy_from_user+0x1c/0xa0
[  183.114430][T12410]  move_addr_to_kernel+0x82/0x120
[  183.114462][T12410]  __sys_sendto+0x12e/0x230
[  183.114491][T12410]  __x64_sys_sendto+0x78/0x90
[  183.114574][T12410]  x64_sys_call+0x29fa/0x2dc0
[  183.114596][T12410]  do_syscall_64+0xc9/0x1c0
[  183.114616][T12410]  ? clear_bhb_loop+0x55/0xb0
[  183.114638][T12410]  ? clear_bhb_loop+0x55/0xb0
[  183.114689][T12410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.114711][T12410] RIP: 0033:0x7f1c2cf9cd29
[  183.114724][T12410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.114739][T12410] RSP: 002b:00007f1c2b601038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  183.114755][T12410] RAX: ffffffffffffffda RBX: 00007f1c2d1b5fa0 RCX: 00007f1c2cf9cd29
[  183.114765][T12410] RDX: 0000000000000002 RSI: 0000000020000180 RDI: 0000000000000004
[  183.114775][T12410] RBP: 00007f1c2b601090 R08: 0000000020000040 R09: 0000000000000014
[  183.114811][T12410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.114827][T12410] R13: 0000000000000000 R14: 00007f1c2d1b5fa0 R15: 00007ffd09071238
[  183.114843][T12410]  </TASK>
[  183.352630][T12419] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  183.674562][T12435] netlink: 'syz.1.3402': attribute type 13 has an invalid length.
[  183.682532][T12435] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3402'.
[  183.697536][   T29] kauditd_printk_skb: 271 callbacks suppressed
[  183.697554][   T29] audit: type=1326 audit(1737922493.124:10294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="syz.0.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.739836][   T29] audit: type=1326 audit(1737922493.124:10295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="syz.0.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.749033][T12439] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  183.763584][   T29] audit: type=1326 audit(1737922493.124:10296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="syz.0.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.794393][   T29] audit: type=1326 audit(1737922493.124:10297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="syz.0.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.818066][   T29] audit: type=1326 audit(1737922493.124:10298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="syz.0.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.841795][   T29] audit: type=1326 audit(1737922493.124:10299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="syz.0.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.865384][   T29] audit: type=1326 audit(1737922493.124:10300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.888532][   T29] audit: type=1326 audit(1737922493.124:10301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.911584][   T29] audit: type=1326 audit(1737922493.124:10302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.934778][   T29] audit: type=1326 audit(1737922493.124:10303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12434 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad8881cd29 code=0x7ffc0000
[  183.966874][T12446] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  184.281532][T12463] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3411'.
[  184.881172][T12469] netlink: 'syz.4.3414': attribute type 13 has an invalid length.
[  184.889152][T12469] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3414'.
[  184.924178][T12473] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  184.941482][T12475] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3417'.
[  184.958647][T12475] 8021q: adding VLAN 0 to HW filter on device bond1
[  184.974917][T12475] dummy0: entered promiscuous mode
[  184.981904][T12475] dummy0: left promiscuous mode
[  185.138735][T12495] siw: device registration error -23
[  185.145325][T12495] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3421'.
[  185.155311][T12495] netlink: 'syz.1.3421': attribute type 4 has an invalid length.
[  185.754340][T12504] netlink: 'syz.0.3427': attribute type 13 has an invalid length.
[  185.762252][T12504] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3427'.
[  185.829748][T12508] netlink: 'syz.0.3439': attribute type 13 has an invalid length.
[  185.837745][T12508] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3439'.
[  185.916271][T12518] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3430'.
[  185.935393][T12520] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  185.970476][T12528] loop0: detected capacity change from 0 to 256
[  185.977476][T12528] FAT-fs (loop0): bogus logical sector size 8
[  185.983668][T12528] FAT-fs (loop0): Can't find a valid FAT filesystem
[  186.151556][T12543] netlink: 'syz.1.3442': attribute type 13 has an invalid length.
[  186.159534][T12543] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3442'.
[  186.205256][T12545] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3444'.
[  186.219589][T12553] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3446'.
[  186.384092][T12566] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  186.710941][T12572] netlink: 'syz.3.3457': attribute type 13 has an invalid length.
[  186.718908][T12572] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3457'.
[  186.787192][T12578] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3458'.
[  187.036986][T12593] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  187.073972][T12600] netlink: 'syz.3.3469': attribute type 13 has an invalid length.
[  187.081930][T12600] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3469'.
[  187.126205][T12606] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3467'.
[  187.400261][T12617] ip6gretap0 speed is unknown, defaulting to 1000
[  187.408083][T12617] lo speed is unknown, defaulting to 1000
[  187.928941][T12630] netlink: 'syz.1.3480': attribute type 13 has an invalid length.
[  188.205874][T12659] netlink: 'syz.0.3492': attribute type 13 has an invalid length.
[  188.857771][   T29] kauditd_printk_skb: 396 callbacks suppressed
[  188.857789][   T29] audit: type=1400 audit(1737922498.369:10700): avc:  denied  { read } for  pid=12679 comm="syz.1.3501" path="socket:[36629]" dev="sockfs" ino=36629 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  188.991135][T12692] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  189.073977][T12701] tipc: Started in network mode
[  189.078915][T12701] tipc: Node identity 7, cluster identity 5
[  189.084830][T12701] tipc: Node number set to 7
[  189.207898][T12709] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  189.264833][T12711] ip6gretap0 speed is unknown, defaulting to 1000
[  189.276855][T12711] lo speed is unknown, defaulting to 1000
[  189.291411][T12719] netlink: 'syz.4.3516': attribute type 30 has an invalid length.
[  190.029947][   T29] audit: type=1326 audit(1737922499.567:10701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.2.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.095799][   T29] audit: type=1326 audit(1737922499.597:10702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.2.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.119423][   T29] audit: type=1326 audit(1737922499.597:10703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.2.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.143380][   T29] audit: type=1326 audit(1737922499.597:10704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.2.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.167180][   T29] audit: type=1326 audit(1737922499.597:10705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="syz.2.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.190851][   T29] audit: type=1326 audit(1737922499.597:10706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.214128][   T29] audit: type=1326 audit(1737922499.597:10707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.237212][   T29] audit: type=1326 audit(1737922499.597:10708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.260529][   T29] audit: type=1326 audit(1737922499.597:10709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12735 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  190.308385][T12740] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  190.512319][T12751] netlink: 'syz.2.3528': attribute type 30 has an invalid length.
[  190.785345][T12757] __nla_validate_parse: 5 callbacks suppressed
[  190.785432][T12757] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3530'.
[  190.964160][T12764] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  191.153809][T12766] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  191.278189][T12768] netlink: 'syz.1.3535': attribute type 13 has an invalid length.
[  191.286156][T12768] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3535'.
[  191.442145][T12780] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3541'.
[  191.531630][T12788] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3542'.
[  191.750235][T12795] netlink: 'syz.2.3546': attribute type 13 has an invalid length.
[  191.758204][T12795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3546'.
[  191.961791][T12799] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  192.421115][T12812] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3554'.
[  192.465615][T12818] FAULT_INJECTION: forcing a failure.
[  192.465615][T12818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.478841][T12818] CPU: 0 UID: 0 PID: 12818 Comm: syz.4.3557 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  192.478929][T12818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  192.478946][T12818] Call Trace:
[  192.478954][T12818]  <TASK>
[  192.478963][T12818]  dump_stack_lvl+0xf2/0x150
[  192.478995][T12818]  dump_stack+0x15/0x1a
[  192.479024][T12818]  should_fail_ex+0x223/0x230
[  192.479056][T12818]  should_fail+0xb/0x10
[  192.479090][T12818]  should_fail_usercopy+0x1a/0x20
[  192.479136][T12818]  strncpy_from_user+0x25/0x210
[  192.479215][T12818]  ? selinux_file_permission+0x22a/0x360
[  192.479236][T12818]  ? __rcu_read_unlock+0x4e/0x70
[  192.479310][T12818]  path_removexattrat+0x81/0x4b0
[  192.479348][T12818]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  192.479391][T12818]  __x64_sys_fremovexattr+0x35/0x40
[  192.479572][T12818]  x64_sys_call+0x1c51/0x2dc0
[  192.479597][T12818]  do_syscall_64+0xc9/0x1c0
[  192.479623][T12818]  ? clear_bhb_loop+0x55/0xb0
[  192.479650][T12818]  ? clear_bhb_loop+0x55/0xb0
[  192.479757][T12818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.479788][T12818] RIP: 0033:0x7f1c2cf9cd29
[  192.479833][T12818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.479852][T12818] RSP: 002b:00007f1c2b601038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c7
[  192.479869][T12818] RAX: ffffffffffffffda RBX: 00007f1c2d1b5fa0 RCX: 00007f1c2cf9cd29
[  192.479882][T12818] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  192.479896][T12818] RBP: 00007f1c2b601090 R08: 0000000000000000 R09: 0000000000000000
[  192.479911][T12818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.479997][T12818] R13: 0000000000000000 R14: 00007f1c2d1b5fa0 R15: 00007ffd09071238
[  192.480017][T12818]  </TASK>
[  192.777995][T12829] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  192.817469][T12833] loop3: detected capacity change from 0 to 512
[  192.865762][T12833] EXT4-fs (loop3): 1 orphan inode deleted
[  192.873602][T12844] netlink: 'syz.4.3568': attribute type 13 has an invalid length.
[  192.881545][T12844] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3568'.
[  192.891237][ T1434] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 1
[  192.903074][T12833] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.936054][T12833] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.978108][T12833] FAULT_INJECTION: forcing a failure.
[  192.978108][T12833] name failslab, interval 1, probability 0, space 0, times 0
[  192.990817][T12833] CPU: 1 UID: 0 PID: 12833 Comm: syz.3.3564 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  192.990904][T12833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  192.990921][T12833] Call Trace:
[  192.990929][T12833]  <TASK>
[  192.990938][T12833]  dump_stack_lvl+0xf2/0x150
[  192.990970][T12833]  dump_stack+0x15/0x1a
[  192.991054][T12833]  should_fail_ex+0x223/0x230
[  192.991094][T12833]  should_failslab+0x8f/0xb0
[  192.991162][T12833]  kmem_cache_alloc_noprof+0x52/0x320
[  192.991202][T12833]  ? mb_cache_entry_create+0xf1/0x5a0
[  192.991309][T12833]  ? check_xattrs+0x5a5/0x780
[  192.991335][T12833]  mb_cache_entry_create+0xf1/0x5a0
[  192.991374][T12833]  ext4_xattr_get+0x281/0x580
[  192.991414][T12833]  ? __rcu_read_unlock+0x4e/0x70
[  192.991489][T12833]  ext4_xattr_security_get+0x32/0x40
[  192.991524][T12833]  ? __pfx_ext4_xattr_security_get+0x10/0x10
[  192.991561][T12833]  __vfs_getxattr+0x29f/0x2b0
[  192.991593][T12833]  cap_inode_need_killpriv+0x2e/0x50
[  192.991657][T12833]  security_inode_need_killpriv+0x33/0x70
[  192.991733][T12833]  file_remove_privs_flags+0x131/0x320
[  192.991766][T12833]  ? __rcu_read_unlock+0x4e/0x70
[  192.991789][T12833]  ? mntput_no_expire+0x70/0x3d0
[  192.991814][T12833]  file_modified_flags+0x34/0x320
[  192.991880][T12833]  file_modified+0x17/0x20
[  192.991917][T12833]  ext4_file_write_iter+0x9d4/0xf20
[  192.992032][T12833]  do_iter_readv_writev+0x403/0x4b0
[  192.992066][T12833]  vfs_writev+0x2d9/0x880
[  192.992100][T12833]  ? proc_fail_nth_write+0x12a/0x150
[  192.992139][T12833]  __se_sys_pwritev2+0x100/0x1c0
[  192.992167][T12833]  __x64_sys_pwritev2+0x78/0x90
[  192.992215][T12833]  x64_sys_call+0x2afe/0x2dc0
[  192.992248][T12833]  do_syscall_64+0xc9/0x1c0
[  192.992325][T12833]  ? clear_bhb_loop+0x55/0xb0
[  192.992351][T12833]  ? clear_bhb_loop+0x55/0xb0
[  192.992377][T12833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.992407][T12833] RIP: 0033:0x7f929c03cd29
[  192.992425][T12833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.992464][T12833] RSP: 002b:00007f929a6a1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  192.992487][T12833] RAX: ffffffffffffffda RBX: 00007f929c255fa0 RCX: 00007f929c03cd29
[  192.992500][T12833] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000004
[  192.992513][T12833] RBP: 00007f929a6a1090 R08: 0000000000000030 R09: 0000000000000003
[  192.992528][T12833] R10: 0000000000001200 R11: 0000000000000246 R12: 0000000000000001
[  192.992542][T12833] R13: 0000000000000000 R14: 00007f929c255fa0 R15: 00007ffe85bdbd38
[  192.992575][T12833]  </TASK>
[  193.276918][T12851] FAULT_INJECTION: forcing a failure.
[  193.276918][T12851] name failslab, interval 1, probability 0, space 0, times 0
[  193.289981][T12851] CPU: 1 UID: 0 PID: 12851 Comm: syz.4.3571 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  193.290019][T12851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  193.290033][T12851] Call Trace:
[  193.290039][T12851]  <TASK>
[  193.290046][T12851]  dump_stack_lvl+0xf2/0x150
[  193.290079][T12851]  dump_stack+0x15/0x1a
[  193.290105][T12851]  should_fail_ex+0x223/0x230
[  193.290143][T12851]  should_failslab+0x8f/0xb0
[  193.290173][T12851]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  193.290213][T12851]  ? __d_alloc+0x3d/0x340
[  193.290246][T12851]  ? inode_set_ctime_current+0x51c/0x7a0
[  193.290276][T12851]  __d_alloc+0x3d/0x340
[  193.290309][T12851]  d_alloc_pseudo+0x1e/0x80
[  193.290347][T12851]  alloc_file_pseudo+0x70/0x140
[  193.290387][T12851]  __shmem_file_setup+0x1bb/0x1f0
[  193.290419][T12851]  shmem_zero_setup+0x63/0xe0
[  193.290449][T12851]  __mmap_region+0xcf5/0x1400
[  193.290513][T12851]  mmap_region+0x164/0x1e0
[  193.290538][T12851]  do_mmap+0x732/0xbb0
[  193.290564][T12851]  vm_mmap_pgoff+0x16d/0x2d0
[  193.290597][T12851]  ksys_mmap_pgoff+0xd0/0x330
[  193.290627][T12851]  ? fpregs_assert_state_consistent+0x83/0xa0
[  193.290673][T12851]  x64_sys_call+0x1940/0x2dc0
[  193.290705][T12851]  do_syscall_64+0xc9/0x1c0
[  193.290733][T12851]  ? clear_bhb_loop+0x55/0xb0
[  193.290762][T12851]  ? clear_bhb_loop+0x55/0xb0
[  193.290788][T12851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.290820][T12851] RIP: 0033:0x7f1c2cf9cd29
[  193.290835][T12851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.290851][T12851] RSP: 002b:00007f1c2b601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  193.290869][T12851] RAX: ffffffffffffffda RBX: 00007f1c2d1b5fa0 RCX: 00007f1c2cf9cd29
[  193.290880][T12851] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000000020000000
[  193.290893][T12851] RBP: 00007f1c2b601090 R08: ffffffffffffffff R09: 0000000000000000
[  193.290908][T12851] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000001
[  193.290922][T12851] R13: 0000000000000000 R14: 00007f1c2d1b5fa0 R15: 00007ffd09071238
[  193.290943][T12851]  </TASK>
[  193.561900][T11974] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.601276][T12859] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3573'.
[  193.652558][T12870] loop3: detected capacity change from 0 to 1024
[  193.661501][T12870] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  193.690056][T12870] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.727645][T11974] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.751877][T12877] netlink: 'syz.3.3579': attribute type 13 has an invalid length.
[  193.759797][T12877] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3579'.
[  193.791074][T12879] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  194.120275][   T29] kauditd_printk_skb: 214 callbacks suppressed
[  194.120289][   T29] audit: type=1326 audit(1737922503.698:10923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="syz.3.3585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.165438][   T29] audit: type=1326 audit(1737922503.698:10924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="syz.3.3585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.189153][   T29] audit: type=1326 audit(1737922503.698:10925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="syz.3.3585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.212828][   T29] audit: type=1326 audit(1737922503.698:10926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="syz.3.3585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.236442][   T29] audit: type=1326 audit(1737922503.698:10927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.259516][   T29] audit: type=1326 audit(1737922503.698:10928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.282658][   T29] audit: type=1326 audit(1737922503.698:10929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.305855][   T29] audit: type=1326 audit(1737922503.698:10930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.328955][   T29] audit: type=1326 audit(1737922503.698:10931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.352124][   T29] audit: type=1326 audit(1737922503.698:10932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12888 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f929c03cd29 code=0x7ffc0000
[  194.478949][T12902] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  194.511070][T12910] netlink: 340 bytes leftover after parsing attributes in process `syz.4.3593'.
[  194.854592][T12946] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  195.461176][T12956] 9pnet_fd: Insufficient options for proto=fd
[  195.467470][T12955] 9pnet_fd: Insufficient options for proto=fd
[  195.479742][T12955] tipc: Enabled bearer <udp:syz2>, priority 10
[  195.576513][T12962] hub 2-0:1.0: USB hub found
[  195.581623][T12962] hub 2-0:1.0: 8 ports detected
[  195.948629][T12974] siw: device registration error -23
[  195.993589][T12976] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  196.085379][T12981] __nla_validate_parse: 3 callbacks suppressed
[  196.085413][T12981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3620'.
[  196.105470][T12983] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3621'.
[  196.114623][T12981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3620'.
[  196.411505][T12995] netlink: 'syz.4.3627': attribute type 13 has an invalid length.
[  196.419494][T12995] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3627'.
[  196.451249][T12999] siw: device registration error -23
[  196.495717][T13003] loop3: detected capacity change from 0 to 1764
[  196.504646][T13003] iso9660: Unknown parameter 'hidemxide'
[  196.545018][T13007] loop0: detected capacity change from 0 to 1024
[  196.552253][T13007] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  196.565388][T13007] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.601286][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.624512][T13017] loop3: detected capacity change from 0 to 1024
[  196.632565][T13017] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  196.647446][T13017] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.676281][T11974] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.752894][T13027] netlink: 'syz.3.3639': attribute type 13 has an invalid length.
[  196.760912][T13027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3639'.
[  196.885565][T13038] sg_write: data in/out 768/1 bytes for SCSI command 0x7d-- guessing data in;
[  196.885565][T13038]    program syz.1.3645 not setting count and/or reply_len properly
[  197.030792][T13054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3649'.
[  197.057910][T13054] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3649'.
[  197.154650][T13072] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3654'.
[  197.164048][T13072] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3654'.
[  197.190716][T13071] wg2: entered promiscuous mode
[  197.195710][T13071] wg2: entered allmulticast mode
[  197.489139][T13102] netlink: 'syz.2.3669': attribute type 13 has an invalid length.
[  197.497341][T13102] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3669'.
[  198.248267][T13130] netlink: 'syz.4.3680': attribute type 13 has an invalid length.
[  198.718279][T13162] netlink: 'syz.1.3694': attribute type 13 has an invalid length.
[  198.861344][T13171] loop0: detected capacity change from 0 to 1024
[  198.871589][T13171] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  198.884537][T13171] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.962027][T10954] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.982860][T13177] siw: device registration error -23
[  199.094980][T13188] netlink: 'syz.0.3705': attribute type 13 has an invalid length.
[  199.115317][T13190] FAULT_INJECTION: forcing a failure.
[  199.115317][T13190] name failslab, interval 1, probability 0, space 0, times 0
[  199.128038][T13190] CPU: 1 UID: 0 PID: 13190 Comm: syz.2.3706 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  199.128074][T13190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  199.128087][T13190] Call Trace:
[  199.128093][T13190]  <TASK>
[  199.128101][T13190]  dump_stack_lvl+0xf2/0x150
[  199.128134][T13190]  dump_stack+0x15/0x1a
[  199.128194][T13190]  should_fail_ex+0x223/0x230
[  199.128232][T13190]  should_failslab+0x8f/0xb0
[  199.128263][T13190]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  199.128329][T13190]  ? sock_alloc_inode+0x34/0xa0
[  199.128427][T13190]  sock_alloc_inode+0x34/0xa0
[  199.128470][T13190]  ? __pfx_sock_alloc_inode+0x10/0x10
[  199.128504][T13190]  alloc_inode+0x3c/0x160
[  199.128665][T13190]  new_inode_pseudo+0x15/0x20
[  199.128731][T13190]  __sock_create+0x12b/0x5a0
[  199.128753][T13190]  __sys_socketpair+0x17c/0x430
[  199.128775][T13190]  __x64_sys_socketpair+0x52/0x60
[  199.128797][T13190]  x64_sys_call+0x1cad/0x2dc0
[  199.128867][T13190]  do_syscall_64+0xc9/0x1c0
[  199.128891][T13190]  ? clear_bhb_loop+0x55/0xb0
[  199.128918][T13190]  ? clear_bhb_loop+0x55/0xb0
[  199.128945][T13190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.128971][T13190] RIP: 0033:0x7f4e1d85cd29
[  199.129055][T13190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.129073][T13190] RSP: 002b:00007f4e1bec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  199.129092][T13190] RAX: ffffffffffffffda RBX: 00007f4e1da75fa0 RCX: 00007f4e1d85cd29
[  199.129104][T13190] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a
[  199.129116][T13190] RBP: 00007f4e1bec7090 R08: 0000000000000000 R09: 0000000000000000
[  199.129128][T13190] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  199.129140][T13190] R13: 0000000000000000 R14: 00007f4e1da75fa0 R15: 00007fffde0dc6a8
[  199.129158][T13190]  </TASK>
[  199.129361][T13190] socket: no more sockets
[  199.375446][   T29] kauditd_printk_skb: 448 callbacks suppressed
[  199.375507][   T29] audit: type=1326 audit(1737922509.017:11381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="syz.2.3709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.415246][   T29] audit: type=1326 audit(1737922509.037:11382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="syz.2.3709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.438982][   T29] audit: type=1326 audit(1737922509.037:11383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="syz.2.3709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.462734][   T29] audit: type=1326 audit(1737922509.037:11384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="syz.2.3709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.486357][   T29] audit: type=1326 audit(1737922509.037:11385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.509586][   T29] audit: type=1326 audit(1737922509.037:11386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.517802][T13206] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  199.532729][   T29] audit: type=1326 audit(1737922509.037:11387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.563168][   T29] audit: type=1326 audit(1737922509.037:11388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.586322][   T29] audit: type=1326 audit(1737922509.037:11389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.609575][   T29] audit: type=1326 audit(1737922509.037:11390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13197 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e1d85cd29 code=0x7ffc0000
[  199.806269][T13225] loop0: detected capacity change from 0 to 4096
[  199.826071][T13225] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.842834][T13225] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.126919][T13248] ip6gretap0 speed is unknown, defaulting to 1000
[  200.134583][T13248] lo speed is unknown, defaulting to 1000
[  200.638187][T13266] xt_hashlimit: max too large, truncated to 1048576
[  200.666869][T13266] Cannot find set identified by id 0 to match
[  201.116082][T13310] __nla_validate_parse: 14 callbacks suppressed
[  201.116103][T13310] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3747'.
[  201.500952][T13333] ip6gretap0 speed is unknown, defaulting to 1000
[  201.507688][T13333] lo speed is unknown, defaulting to 1000
[  201.912733][ T6280] IPVS: starting estimator thread 0...
[  201.920729][T13338] loop0: detected capacity change from 0 to 128
[  201.934447][T13338] EXT4-fs: Mount option(s) incompatible with ext2
[  201.947917][T13343] geneve2: entered promiscuous mode
[  201.953251][T13343] geneve2: entered allmulticast mode
[  202.015995][T13340] IPVS: using max 2256 ests per chain, 112800 per kthread
[  202.846070][T13407] netlink: 'syz.2.3788': attribute type 30 has an invalid length.
[  203.094355][T13424] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  203.259625][T13436] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3801'.
[  203.272198][T13388] ==================================================================
[  203.280320][T13388] BUG: KCSAN: data-race in fasync_remove_entry / sock_wake_async
[  203.288073][T13388] 
[  203.290403][T13388] write to 0xffff888120c7c398 of 8 bytes by task 13389 on cpu 0:
[  203.298132][T13388]  fasync_remove_entry+0xd2/0x130
[  203.303189][T13388]  fasync_helper+0x96/0xc0
[  203.307632][T13388]  sock_fasync+0x5a/0xc0
[  203.311894][T13388]  __fput+0x5d2/0x640
[  203.315897][T13388]  ____fput+0x1c/0x30
[  203.319899][T13388]  task_work_run+0x13a/0x1a0
[  203.324518][T13388]  syscall_exit_to_user_mode+0xa8/0x120
[  203.330087][T13388]  do_syscall_64+0xd6/0x1c0
[  203.334603][T13388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.340508][T13388] 
[  203.342830][T13388] read to 0xffff888120c7c398 of 8 bytes by task 13388 on cpu 1:
[  203.350457][T13388]  sock_wake_async+0x2a/0x120
[  203.355137][T13388]  unix_write_space+0x135/0x140
[  203.360002][T13388]  sock_wfree+0x147/0x3b0
[  203.364441][T13388]  unix_destruct_scm+0xc5/0xf0
[  203.369234][T13388]  skb_release_head_state+0xbb/0x1b0
[  203.374543][T13388]  __kfree_skb+0x16/0x150
[  203.378889][T13388]  sk_skb_reason_drop+0xba/0x290
[  203.383859][T13388]  unix_release_sock+0x603/0x750
[  203.388825][T13388]  unix_release+0x57/0x80
[  203.393166][T13388]  sock_close+0x68/0x150
[  203.397438][T13388]  __fput+0x2ac/0x640
[  203.401440][T13388]  ____fput+0x1c/0x30
[  203.405439][T13388]  task_work_run+0x13a/0x1a0
[  203.410068][T13388]  syscall_exit_to_user_mode+0xa8/0x120
[  203.415628][T13388]  do_syscall_64+0xd6/0x1c0
[  203.420146][T13388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.426060][T13388] 
[  203.428387][T13388] value changed: 0xffff888118998210 -> 0x0000000000000000
[  203.435494][T13388] 
[  203.437820][T13388] Reported by Kernel Concurrency Sanitizer on:
[  203.443964][T13388] CPU: 1 UID: 0 PID: 13388 Comm: syz.4.3781 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0
[  203.454382][T13388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  203.464442][T13388] ==================================================================