x151/0x1b7
[  268.557539][ T5046]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  268.562837][ T5046]  dump_stack+0x15/0x17
[  268.566822][ T5046]  should_fail+0x3c0/0x510
[  268.571087][ T5046]  __should_failslab+0x9f/0xe0
[  268.575690][ T5046]  should_failslab+0x9/0x20
[  268.580012][ T5046]  kmem_cache_alloc+0x4f/0x2f0
[  268.584634][ T5046]  ? vm_area_dup+0x26/0x1d0
[  268.588957][ T5046]  ? __kasan_check_read+0x11/0x20
[  268.593821][ T5046]  vm_area_dup+0x26/0x1d0
[  268.597985][ T5046]  dup_mmap+0x6b8/0xea0
07:00:11 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0)

[  268.602650][ T5046]  ? __delayed_free_task+0x20/0x20
[  268.607595][ T5046]  ? mm_init+0x807/0x960
[  268.611673][ T5046]  dup_mm+0x91/0x330
[  268.615406][ T5046]  copy_mm+0x108/0x1b0
[  268.619316][ T5046]  copy_process+0x1295/0x3250
[  268.623819][ T5046]  ? check_stack_object+0xf7/0x130
[  268.628798][ T5046]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  268.633726][ T5046]  ? copy_clone_args_from_user+0x6cf/0x790
[  268.639360][ T5046]  kernel_clone+0x22d/0x990
[  268.643697][ T5046]  ? dup_mmap+0xea0/0xea0
[  268.647864][ T5046]  ? create_io_thread+0x1e0/0x1e0
[  268.652807][ T5046]  ? file_end_write+0x1b0/0x1b0
[  268.657499][ T5046]  __x64_sys_clone3+0x375/0x3a0
[  268.662181][ T5046]  ? __ia32_sys_clone+0x300/0x300
[  268.667041][ T5046]  ? ksys_write+0x25f/0x2c0
[  268.671382][ T5046]  ? debug_smp_processor_id+0x17/0x20
[  268.676589][ T5046]  do_syscall_64+0x44/0xd0
[  268.680843][ T5046]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  268.686567][ T5046] RIP: 0033:0x7f8e237f0639
[  268.690990][ T5046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  268.710496][ T5046] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  268.719350][ T5046] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  268.727158][ T5046] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  268.734968][ T5046] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  268.742790][ T5046] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  268.750592][ T5046] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  268.758406][ T5046]  </TASK>
07:00:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:12 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0)

07:00:12 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000240857470000850000000f05b1e5aebef3fd8dbeabd0eae0b977adb63452f3e7f5112058dd81455012c145b8ed5b03ba9ce97942b04341c002cec400"/83], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0)
fcntl$setlease(r1, 0x400, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 45)

07:00:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x41, 0x0, 0x0}, 0x58)

07:00:12 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000240857470000850000000f05b1e5aebef3fd8dbeabd0eae0b977adb63452f3e7f5112058dd81455012c145b8ed5b03ba9ce97942b04341c002cec400"/83], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0)
fcntl$setlease(r1, 0x400, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:12 executing program 4:
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x3ad9a206a7d4a568}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x80, 0x4e}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x168}]}, 0x28}, 0x1, 0x0, 0x0, 0x4800}, 0x404c801)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000480)='.log\x00', 0x20100, 0x182)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x600}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x30, r1, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void, @val={0xc, 0x99, {0x100, 0x64}}}}, [@NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_NETNS_FD={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x60080)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0xa0001, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r3)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x50, r4, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x3}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x4c}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xf}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x50}, 0x1, 0x0, 0x0, 0x4804}, 0x40)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_MPATH(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r5, 0x1, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x5, 0x2f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000000)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r12, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendmsg$nl_route_sched(r8, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003", @ANYRESOCT, @ANYRESDEC=r7, @ANYRES8=r2, @ANYRES64=r4, @ANYBLOB="17fa92ddcd29868902c22e923e958a665be54d7486eae173756a1a0f21012cf89d36b28769bd4442d3f45ad8a823adf5ff8697876cd5ec5b6c3e4342a60b81341185329e94a07150dfa2e2c5e62755a3273d4c91ca8f96363eebbc795b0391049d311d0232a7e035e16f07e6833d534f8e1efd063ea0c11c94e6405fa9c2e252e2fbce748668f4322322cdab9536c30b196bc9fe319f341825580794f15b903c04f502a8f6b0405fd6120e3b027d46c855261a80d2aed2e6469e6be1d98b94119801649f194b46a46a130ee90baf8243a36aba7be3d715ec0ce030b42e48ad1828ee17acc59243ca951f0e9d1029fdbcdd3616c3949d2099aacc33339d5c7eebef51670e3f1699df7ca2b2190a59868c64fc79e91e3d89fb5563815a60bc7be7827bb4a3a2597df2b8f9f7e7fd43a30f233aae19aa4ee25e8f44fd924ec9fda3ed62b27763918d9569ca85e1a051b4f30e5d949b119b7927f5e018919625265e8f56eef71ffd6d61968e4935cb2c5d911b7f26f182916b3a00f9cb12ee575cc743af58ec323f4fbd22759b9ba4aff9d48d48a0b187921f170fdddc03fa917f11515ff19473aa050a738494cee18a76b8db2e90d999bb1f7e7d9abbe82cc98eb24120a750c344eda348fca1deda589315d36c2e54e5652b8a6ebf9e9fd2e6b16454d45b0d14eadc402db45a894800e85aea3dad53db9974cb97d45a34b9de5d63012cfc187ec96ef87ee84882ac469a0a92dad993db9feabb42df34b3c9e8d28708c413730b108fedd8ba55387b5267a836ac0bc00db42c7ced4654935a1948d125a3170a08884a87929cc99e1abae7a1344aef59b276bebfd9748e426a842bcbeda13a61c598257cea24735626218b8144dccb74e10070e2ccb19e6b36f724fac8ce078faec7d33f2e5bd273359b4c5b4eda37c5c21f9bbbfc66b741a725e30a5abfe63552f9e3ffbaf2a2c22b4f35a74f9ef1bb2409e143f530fdefd2728e13eaf831c3817af101ee84803e2680191dd03f26e5f185618189885b4aa1bcab7510a1e1b5bcd9984fac3b6b34d695f2cacf1ed38cac4803019834494be5d83dec50ede6a4031cf84adda5105cb200a6b3891badcec651afb497e9ca210e4058320bf67af3de224455ce50c93f634c2c75f1c23ff64a20fd9ccd086e8480286a90974d59d053507ec19cfce464bc58d625073c66aca82921f453c5cf67fb98a6d7f29c592e704c553a628c8d999bf11090c8678a589f4f947bdf6b7fd313a2080dfcf9806ece5ff329dbc3999caed907473577e7b1de912563832cee213c333e39be01529a5650b40485814858925c19f267ef5bf8d1cc21d9e0d38439e751aec4fe3d9510b9916b77d23f65c91c2f03aa9310eab455edb4f1fab9976f9583475ccd282b5925404284f72423fff99b9138bdb1536948dbf1a82c883f66c555a7432ac1b34637b25377852c032ad55b91191be1c68060239b75e4988e3d2640b2e8d3306c7013b4f4f8b038c8a479a1552b9f3a4a5f590aacb3156df09b2514b181494ccf54e027602b512792b785698355ce45a1356ac71b1696f6309d431abbd8520455e4751621a0dd9b487cae96a238b2cc2f34ce5b079719963f57826d781954dbda96692e3c6c3534a3fa267b4b3eb908ba8d23fbdce16f3056f3b5f6ab2dea4c81f03a2818b7004dca08dc24d47384ad5b051014108e7914c3b2dcbe280693a1512091f6480bfd532aaa5a72d2f2a1c9b277112a74372971aa9cc14029cc789aa0987b282ce34dcd2dcc0ae2df963705edee78c0fc3eeaae65cb25dda5ebf7a4e6a6622bdbab9bcf4b6ab5fbfcf6e11c7dd85018f649a7831cd59d646e7b124ca448fa522489fa65d7b4bd3f5e8327f9155df674367d800c836a60241766cc81ef0739f25959ee80a2c63117df809f1dd97c9ce428f9609a73778fc255d342b5eaa4516312f9bba653e39de9cd44f3ffd21b3624cbb88aa7bc56bc06c9ae2f2cc00d5713b0d6e8e2d6a2a3afe369db93d225b667cb0a75a4b92422900ce38c13d90ddea1bc79dd5494134b8b1cb36a51f829195c1d6c7dd0b5c6a082fbc70fdddccb52664e721a06ae5fa3ed4ff06d1efaf070257127777d273e4d6380cfeb213780d7055350fbc30d5876c8885f43604c7f29a08cb00f3bee6900491c9d978a9f443e2cc581c03206f8273ecf0cdb529db8728304bb7f1f0832bb64bffb34772d3669bb90c8880d4c3804a10e028cfc00f935af441e4391d46c38059c2bac53533b9e38f82da2a40c7c05f25cd51820ea37e32a9b86e12ee7681bd85b0a425363102ef05bad2663c449d321dc71b509354bc7ecd9f7914ae3792450d1a0756070e5cf2a1c7cf1534c36f8123168e87a8b1a1804c6c644d87dfbb754302cb6abe7b34c17921c32075b3e8da5e5da292d4844d4fab8536f0ef1d82e07636eb7bf366d403bfdfa07c64c635c43baad933f12ab265afe68095a5d31cd1b06a3cc48b4631fad91a75c1a774db999a23ad8a5af5b7bb4e6c38052b6c24e21f573abc55186a742588dfeda44ca8ed4bda04af390b0594ebb3e9684e5e3b74f4563ae2c732eaeba8f020fa9ca63a58e5660c4e6ef3f61def3b93a32a90d792e6d869d2d947c22629291ec705edf4e179bd4319a41cbfb9a77e3db086f315aaadd547affc64d63bed636552d989c6318ce3c26bf2bb42925390230433862ad429deebe59512f9dec76d35d68ffa0b982d4f99a8bbe665a05a79d8974beac5b0f79feead881c50c715db547e69eaf1396d5d04a8f2784977411f3b6a57feb00e279288f13d299a7e7f373f9c2f18fc2fb4b576e89da6c920cf487a2c41d086a25f2e9d9544d6abed731e64ae0fc01e0b085e2379f6d6bcaeab7064b153e99dec57c2f4db1b28efc382dc4171565024e6ad45fc5a4ee6be2c4aed65db4a1e54c8a9bcd7e27bee216a8c1d54445e488d00640b382a81ce35420e2067f37e717c6255e4182fc66c644b42eee7c478a20d5028db1e7e9acbe1daf13a2cddada5e296ab5335fd0df7ff8c01c3816e20097702ab7b8a617b738d1677a55565e5f5401221302b453f6956fb9edc1107c7b3d03bb4429eabf5387dfe20ab96531d537a556ae804cedc65c9f53324a4295f1c39eb8e4911ed51064efa7f73fe32e4eba876ea01723ada05674f22137567bee520cdc542e31c45f9a8681de85bedc3c15e0949bc1b8df6faa97af88e5dbeefb151b9c8edb64656e656e859d75bec8dcb45510dd3b8d1f52b9825d07e90ea653cb3fc3a0a55d95f58788b48b9cd209ed9409b2d98b1ffb112fa6dfbfb69ca918fd2807372f0c90d2e53c1410cb2fa276b1a4d7a90dfb360c3b90e6c73f21f684a1b0696036e73157e27a2b78ae40330ad941cb763876386f5301763c127d11a56833e60b0026ef8138ceb3ffb2bdfcc5b8e6b58d66e4194666f3606a89ff20c105e25782d8e9a3925773637327f4ba8af56b7142e1567f3b75ea7273f72ac311244f412bdf1b8db9c1f617360e52b1c74b6e7c0c5f90e5227323c5de4d6c7ccbb2d356abc7d74e62c97badf5527a8fde9c94a9cb128883f4fc86fd553beebd7df598b48d364c7646c9af3f4c1159999b5725949a78b3e52a7bd7cc3ae45b5d78ef4a2be027cbb5a3e92e9450bd8f8d9154aeb8ec2fb92f2f9d6e7c28855fc499af8f550a4815f968a43b9b67627bb9b282231af111845afa91bd6dfb5bab2ca3566129b9e1ac68a1d72548ec12555f9062662d98ade799bf541ba8f090c4a6365843162b3bdd65a45218af4c99c71ef6f1f2cfb48927e4d197e0908943f8a18496be27680f0e01fd9a86d666e9c0e638882b409904d55069d70ca151f06f7eda5ff8f92229ca033e5825fd1440d104223b8f04748ab0fa0db182134f4df0524937752635b376481ef3db9d1b34abccd0ccd4e7595f1acde3d282696f05cff6cde157d8d3b5d1db0ad3de91b6ba6dc4f4234c4635d92312d3e51ce2898ea74a5d3a0f0a26b94dc44a1a23cf0c1e12aa18ff5eeb4303d56b0c18db50cba7397ddf9e3102e71df418cab61e4d02e7629bd979432b17c22784a3ff53c480435076cfcd1eb1f65577f2bf69165ae3b92487e0f9663f654700fe2224352c31fbb8a82bd02606d2f542dd214809a744c299b13a400b1da14a37ee944b32d865e942df1b1ef92afec01af9ca0eacf05bb8e66e52296d683464461b3c8e804d1687e04587e9f18b7680362d32e4028550912479581b2b6e3298623a563fce61109151766c55219a049b793132dc6581c50c49b60b30ed038c1acdbdae125445271a556dd2b32357bf4202ad255635f59163c059ec395399ba2a350c51f4465288e17e7fe8436577265167dcd4cafd53f0db406e96ccb71c69b69e70376de0011c799add5ceb5509b21a52373488c6d1a24637171a7448fc1570a0e91451b37389f0a4e091712ed06163386d4d533ea0d6dadceccdf462b92aa93ba26d9736513f3f179c772a25476630fda4e750b885eac0894afdda8812368b25727a90c5322ca4873361ca961565b644a092d0e69a3ae1a3f5613e39ea3c831b158b877ca74c07e48ac4b4532749e0cce8f362d66d606be770a8ee168a395e1af6824e8cf21515375ad29b3157aa0ffe068d6fee1bfad7b047685f24d6232b804ac9136ceec5bdaece4dc95756139b1bca5834e8ba2fe8018df5fef4bc5c95926c8432f886e601e29ab9e43275c3842d736576f25a925ae5a0ba7747da01d64b748e57dd4ca1e12e8aa50cf2eccfe0febd63130afb36c8456baa31d2af69cde83509b7f236d7723d04f9714c1cb2e64cabbdf3e36a2ef7b59803deb864aa85760c536a35c72e7d243a26ddfe8873776d85bc9166427052ea2f9bd516684b3c9b09bdc3a0842d243e68e82edc70302ba3f02899dec7198e4061ada5f5add78c3be89fe69466dd8b5773c280f02f40b375da7ea2e25f61708fc4842bf3b86e49deef0d288f086918141340cff5e97f7c3b3b3e8bf5d1b5aec7729bddb9d3a2e1fe9251c04754043db6cb66618923963e254a597503c7a7ac2c00f7ba318bba5ab65758d981ff420f2e8977e7896b3d93c2c55187b749170a7a3ab6e453650e26bf84b233d803ece4d051f5dc124b757a087e50f3d8a359ea9839ba930f7e079d9daccfb75932168b35181ecd8992f16c7a0e8c3ead849997cb293d4c0b0646e7f39ea003456c4bac769ddc6955deb511614bd650be26a36febbb06def9683f11e7a5f29d9283bb0b30461af1dfc8839d73cf92839443ca643b58dd302bf2e1d114b841db0d67b8bd6ed2d3db76571110fa883bde866a40ba772567253a1ad97b56e371b4f4229e790c06efaa725ae86beec53fc6ae7ac9f26311edc9e22c74a4eeb6cb03be22763ce1283c31f21e8ae6819063385a8135a832180aa04cc5a6b253b0d2d51d4fcf8b36f0b54be17b6b8742aaba2f46e16a2a80d6788d71c3c957894414dd7acc5e4f644cd6e83cfd740c2d4df3a14fd2da9c2c39b11ab23677f5c5d191bce29e6107b9e50211e923192267f6e1b872881a18192a16128ae52783d9fe4085c593857b31840e70c2cf8b745b5914925ed8c6304c3115244357b50186efa2b39c5f08d1f990c7f8cac9483dcf4bb8fd99c94b0176da78eda049956bd37d8785b96cb5076835ca2a4cded82d7cd2ac25453b5f6d5672b08b3f20dc881c4df371a6b5e765f49e0366adad9147001374d8f7647488a8a8dc0512be968375ab89e04adb9e075b4b40ca3a12571895164faacbd8b1b69e8fcd31dfc9abc5", @ANYRESOCT=r11, @ANYRESOCT=r12, @ANYRES8=r0], 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)=@mpls_getnetconf={0x3c, 0x52, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x7fff}, @NETCONFA_IFINDEX={0x8, 0x1, r11}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0xb132}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8a9d}]}, 0x3c}}, 0x8040)

07:00:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:12 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)={0xd4, r0, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x13}}}}, [@NL80211_ATTR_SMPS_MODE={0x5}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x170c}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x40}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xa}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x390}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}], @acl_policy=[@NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]]}, 0xd4}, 0x1, 0x0, 0x0, 0x24000001}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:12 executing program 4:
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x3ad9a206a7d4a568}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x80, 0x4e}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x168}]}, 0x28}, 0x1, 0x0, 0x0, 0x4800}, 0x404c801) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000480)='.log\x00', 0x20100, 0x182) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x600}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x30, r1, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void, @val={0xc, 0x99, {0x100, 0x64}}}}, [@NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_NETNS_FD={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x60080) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0xa0001, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r3)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x50, r4, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x3}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x4c}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xf}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x50}, 0x1, 0x0, 0x0, 0x4804}, 0x40)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_MPATH(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r5, 0x1, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x5, 0x2f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000000) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r12, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendmsg$nl_route_sched(r8, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003", @ANYRESOCT, @ANYRESDEC=r7, @ANYRES8=r2, @ANYRES64=r4, @ANYBLOB="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", @ANYRESOCT=r11, @ANYRESOCT=r12, @ANYRES8=r0], 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)=@mpls_getnetconf={0x3c, 0x52, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x7fff}, @NETCONFA_IFINDEX={0x8, 0x1, r11}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0xb132}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8a9d}]}, 0x3c}}, 0x8040)

07:00:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  268.853302][ T5095] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  268.875394][ T5102] FAULT_INJECTION: forcing a failure.
[  268.875394][ T5102] name failslab, interval 1, probability 0, space 0, times 0
[  268.904326][ T5102] CPU: 1 PID: 5102 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  268.914324][ T5102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  268.924216][ T5102] Call Trace:
[  268.927334][ T5102]  <TASK>
[  268.930113][ T5102]  dump_stack_lvl+0x151/0x1b7
[  268.934622][ T5102]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  268.940196][ T5102]  ? do_syscall_64+0x44/0xd0
[  268.944614][ T5102]  dump_stack+0x15/0x17
[  268.948598][ T5102]  should_fail+0x3c0/0x510
[  268.952877][ T5102]  __should_failslab+0x9f/0xe0
[  268.957457][ T5102]  should_failslab+0x9/0x20
[  268.961790][ T5102]  kmem_cache_alloc+0x4f/0x2f0
[  268.966389][ T5102]  ? anon_vma_clone+0xa1/0x4f0
[  268.970993][ T5102]  anon_vma_clone+0xa1/0x4f0
[  268.975419][ T5102]  anon_vma_fork+0x91/0x4f0
[  268.979760][ T5102]  ? anon_vma_name+0x4c/0x70
[  268.984186][ T5102]  dup_mmap+0x750/0xea0
[  268.988178][ T5102]  ? __delayed_free_task+0x20/0x20
[  268.993123][ T5102]  ? mm_init+0x807/0x960
[  268.997208][ T5102]  dup_mm+0x91/0x330
[  269.000940][ T5102]  copy_mm+0x108/0x1b0
[  269.004852][ T5102]  copy_process+0x1295/0x3250
[  269.009370][ T5102]  ? check_stack_object+0xf7/0x130
[  269.014388][ T5102]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  269.019340][ T5102]  ? copy_clone_args_from_user+0x6cf/0x790
[  269.024979][ T5102]  kernel_clone+0x22d/0x990
[  269.029318][ T5102]  ? dup_mmap+0xea0/0xea0
[  269.033487][ T5102]  ? create_io_thread+0x1e0/0x1e0
[  269.038343][ T5102]  ? file_end_write+0x1b0/0x1b0
[  269.043043][ T5102]  __x64_sys_clone3+0x375/0x3a0
[  269.047717][ T5102]  ? __ia32_sys_clone+0x300/0x300
[  269.052578][ T5102]  ? ksys_write+0x25f/0x2c0
[  269.056919][ T5102]  ? debug_smp_processor_id+0x17/0x20
[  269.062124][ T5102]  do_syscall_64+0x44/0xd0
[  269.066381][ T5102]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  269.072107][ T5102] RIP: 0033:0x7f8e237f0639
[  269.076450][ T5102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  269.095887][ T5102] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:12 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)={0xd4, r0, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x13}}}}, [@NL80211_ATTR_SMPS_MODE={0x5}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x170c}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x40}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xa}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x390}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}], @acl_policy=[@NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]]}, 0xd4}, 0x1, 0x0, 0x0, 0x24000001}, 0x0) (async, rerun: 64)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x700, 0x0, 0x0}, 0x58)

07:00:12 executing program 4:
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x3ad9a206a7d4a568}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x80, 0x4e}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x168}]}, 0x28}, 0x1, 0x0, 0x0, 0x4800}, 0x404c801)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000480)='.log\x00', 0x20100, 0x182) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x600}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x30, r1, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void, @val={0xc, 0x99, {0x100, 0x64}}}}, [@NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_NETNS_FD={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x60080)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0) (async)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0xa0001, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r3)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x50, r4, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x3}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x4c}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xf}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x50}, 0x1, 0x0, 0x0, 0x4804}, 0x40)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_MPATH(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r5, 0x1, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x5, 0x2f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000000) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0) (async)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r12, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendmsg$nl_route_sched(r8, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003", @ANYRESOCT, @ANYRESDEC=r7, @ANYRES8=r2, @ANYRES64=r4, @ANYBLOB="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", @ANYRESOCT=r11, @ANYRESOCT=r12, @ANYRES8=r0], 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)=@mpls_getnetconf={0x3c, 0x52, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x7fff}, @NETCONFA_IFINDEX={0x8, 0x1, r11}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0xb132}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8a9d}]}, 0x3c}}, 0x8040)

07:00:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x1f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  269.104132][ T5102] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  269.112065][ T5102] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  269.120623][ T5102] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  269.128435][ T5102] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  269.136245][ T5102] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  269.144076][ T5102]  </TASK>
07:00:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 46)

07:00:12 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_rx_abort\x00', r0}, 0x10)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)

07:00:12 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)={0xd4, r0, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x13}}}}, [@NL80211_ATTR_SMPS_MODE={0x5}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x170c}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x40}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xa}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x390}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}], @acl_policy=[@NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]]}, 0xd4}, 0x1, 0x0, 0x0, 0x24000001}, 0x0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:12 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_rx_abort\x00', r0}, 0x10)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_rx_abort\x00', r0}, 0x10) (async)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(0xffffffffffffffff, 0x0, 0x0) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
dup(r1) (async)

07:00:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x900, 0x0, 0x0}, 0x58)

07:00:12 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_rx_abort\x00', r0}, 0x10)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_rx_abort\x00', r0}, 0x10) (async)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(0xffffffffffffffff, 0x0, 0x0) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
dup(r1) (async)

[  269.262369][ T5150] FAULT_INJECTION: forcing a failure.
[  269.262369][ T5150] name failslab, interval 1, probability 0, space 0, times 0
[  269.275071][ T5150] CPU: 1 PID: 5150 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  269.285036][ T5150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  269.294932][ T5150] Call Trace:
[  269.298056][ T5150]  <TASK>
[  269.300833][ T5150]  dump_stack_lvl+0x151/0x1b7
[  269.305343][ T5150]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  269.310641][ T5150]  dump_stack+0x15/0x17
[  269.314635][ T5150]  should_fail+0x3c0/0x510
[  269.318977][ T5150]  __should_failslab+0x9f/0xe0
[  269.323571][ T5150]  should_failslab+0x9/0x20
[  269.327912][ T5150]  kmem_cache_alloc+0x4f/0x2f0
[  269.332513][ T5150]  ? anon_vma_clone+0xa1/0x4f0
[  269.337114][ T5150]  anon_vma_clone+0xa1/0x4f0
[  269.341539][ T5150]  anon_vma_fork+0x91/0x4f0
[  269.345877][ T5150]  ? anon_vma_name+0x4c/0x70
[  269.351176][ T5150]  dup_mmap+0x750/0xea0
[  269.355169][ T5150]  ? __delayed_free_task+0x20/0x20
[  269.360113][ T5150]  ? mm_init+0x807/0x960
[  269.364191][ T5150]  dup_mm+0x91/0x330
[  269.367940][ T5150]  copy_mm+0x108/0x1b0
[  269.371830][ T5150]  copy_process+0x1295/0x3250
[  269.376347][ T5150]  ? check_stack_object+0xf7/0x130
[  269.381290][ T5150]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  269.386236][ T5150]  ? copy_clone_args_from_user+0x6cf/0x790
[  269.391888][ T5150]  kernel_clone+0x22d/0x990
[  269.396221][ T5150]  ? dup_mmap+0xea0/0xea0
[  269.400385][ T5150]  ? create_io_thread+0x1e0/0x1e0
[  269.405420][ T5150]  ? file_end_write+0x1b0/0x1b0
[  269.410108][ T5150]  __x64_sys_clone3+0x375/0x3a0
[  269.414792][ T5150]  ? __ia32_sys_clone+0x300/0x300
[  269.419653][ T5150]  ? ksys_write+0x25f/0x2c0
[  269.423996][ T5150]  ? debug_smp_processor_id+0x17/0x20
[  269.429201][ T5150]  do_syscall_64+0x44/0xd0
[  269.433455][ T5150]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  269.439181][ T5150] RIP: 0033:0x7f8e237f0639
[  269.443435][ T5150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  269.462877][ T5150] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  269.471123][ T5150] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  269.478931][ T5150] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  269.486925][ T5150] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  269.494816][ T5150] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  269.502638][ T5150] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  269.510472][ T5150]  </TASK>
07:00:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:12 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae03, 0x2f)
sendfile(r0, r2, &(0x7f0000000080)=0x3f, 0x7)
getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f0000000000)=""/56, &(0x7f0000000040)=0x38)
readv(r1, 0x0, 0x0)

07:00:12 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffe7c812cfcfca730000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r1, 0x8, 0x0, 0xffffffffffffff8d, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000140)=0x3)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendfile(r3, r4, 0x0, 0xfffffffffffffe01)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000280))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x4e24, @rand_addr=0x64010102}, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x30}}, 0x3f, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)='nr0\x00', 0x3, 0x2, 0x7d})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r6, 0x0, 0x0)
r7 = fsopen(&(0x7f00000000c0)='sysfs\x00', 0x0)
sendfile(r6, r7, &(0x7f0000000100)=0x5, 0xfffffffffffff39c)

07:00:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 47)

07:00:12 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async, rerun: 32)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async, rerun: 32)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 32)
ioctl$KVM_CREATE_VM(r3, 0xae03, 0x2f) (async)
sendfile(r0, r2, &(0x7f0000000080)=0x3f, 0x7) (async)
getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f0000000000)=""/56, &(0x7f0000000040)=0x38)
readv(r1, 0x0, 0x0)

07:00:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf00, 0x0, 0x0}, 0x58)

07:00:12 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffe7c812cfcfca730000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r1, 0x8, 0x0, 0xffffffffffffff8d, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10) (async)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000140)=0x3) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendfile(r3, r4, 0x0, 0xfffffffffffffe01) (async)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000280))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x4e24, @rand_addr=0x64010102}, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x30}}, 0x3f, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)='nr0\x00', 0x3, 0x2, 0x7d})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r6, 0x0, 0x0) (async)
r7 = fsopen(&(0x7f00000000c0)='sysfs\x00', 0x0)
sendfile(r6, r7, &(0x7f0000000100)=0x5, 0xfffffffffffff39c)

07:00:12 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffe7c812cfcfca730000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r1, 0x8, 0x0, 0xffffffffffffff8d, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000140)=0x3)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendfile(r3, r4, 0x0, 0xfffffffffffffe01)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000280))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x4e24, @rand_addr=0x64010102}, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x30}}, 0x3f, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)='nr0\x00', 0x3, 0x2, 0x7d})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r6, 0x0, 0x0)
r7 = fsopen(&(0x7f00000000c0)='sysfs\x00', 0x0)
sendfile(r6, r7, &(0x7f0000000100)=0x5, 0xfffffffffffff39c)
pipe(&(0x7f0000000080)) (async)
close(r0) (async)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffe7c812cfcfca730000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r1, 0x8, 0x0, 0xffffffffffffff8d, 0x10, 0x0}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10) (async)
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000140)=0x3) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
sendfile(r3, r4, 0x0, 0xfffffffffffffe01) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000280)) (async)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x4e24, @rand_addr=0x64010102}, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x30}}, 0x3f, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000180)='nr0\x00', 0x3, 0x2, 0x7d}) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r6, 0x0, 0x0) (async)
fsopen(&(0x7f00000000c0)='sysfs\x00', 0x0) (async)
sendfile(r6, r7, &(0x7f0000000100)=0x5, 0xfffffffffffff39c) (async)

[  269.572194][   T30] audit: type=1400 audit(1668668412.930:198): avc:  denied  { getopt } for  pid=5166 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000400000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae03, 0x2f) (async)
sendfile(r0, r2, &(0x7f0000000080)=0x3f, 0x7)
getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f0000000000)=""/56, &(0x7f0000000040)=0x38) (async)
readv(r1, 0x0, 0x0)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000400000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  269.669363][ T5197] FAULT_INJECTION: forcing a failure.
[  269.669363][ T5197] name failslab, interval 1, probability 0, space 0, times 0
[  269.684829][ T5197] CPU: 0 PID: 5197 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  269.695012][ T5197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  269.704902][ T5197] Call Trace:
[  269.708109][ T5197]  <TASK>
[  269.710887][ T5197]  dump_stack_lvl+0x151/0x1b7
[  269.715409][ T5197]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  269.720703][ T5197]  dump_stack+0x15/0x17
[  269.724691][ T5197]  should_fail+0x3c0/0x510
[  269.728970][ T5197]  __should_failslab+0x9f/0xe0
[  269.733542][ T5197]  should_failslab+0x9/0x20
[  269.737886][ T5197]  kmem_cache_alloc+0x4f/0x2f0
[  269.742478][ T5197]  ? anon_vma_clone+0xa1/0x4f0
[  269.747079][ T5197]  anon_vma_clone+0xa1/0x4f0
[  269.751517][ T5197]  anon_vma_fork+0x91/0x4f0
[  269.755845][ T5197]  ? anon_vma_name+0x4c/0x70
[  269.760274][ T5197]  dup_mmap+0x750/0xea0
[  269.764271][ T5197]  ? __delayed_free_task+0x20/0x20
[  269.769212][ T5197]  ? mm_init+0x807/0x960
[  269.773292][ T5197]  dup_mm+0x91/0x330
[  269.777024][ T5197]  copy_mm+0x108/0x1b0
[  269.780931][ T5197]  copy_process+0x1295/0x3250
[  269.785533][ T5197]  ? check_stack_object+0xf7/0x130
[  269.790483][ T5197]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  269.795425][ T5197]  ? copy_clone_args_from_user+0x6cf/0x790
[  269.801066][ T5197]  kernel_clone+0x22d/0x990
[  269.805492][ T5197]  ? dup_mmap+0xea0/0xea0
[  269.809659][ T5197]  ? create_io_thread+0x1e0/0x1e0
[  269.814526][ T5197]  ? file_end_write+0x1b0/0x1b0
[  269.819205][ T5197]  __x64_sys_clone3+0x375/0x3a0
[  269.823891][ T5197]  ? __ia32_sys_clone+0x300/0x300
[  269.828781][ T5197]  ? ksys_write+0x25f/0x2c0
[  269.833092][ T5197]  ? debug_smp_processor_id+0x17/0x20
[  269.838995][ T5197]  do_syscall_64+0x44/0xd0
[  269.843248][ T5197]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  269.848974][ T5197] RIP: 0033:0x7f8e237f0639
[  269.853228][ T5197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  269.872672][ T5197] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  269.880913][ T5197] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  269.888728][ T5197] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  269.896536][ T5197] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  269.904361][ T5197] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  269.912421][ T5197] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
07:00:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x4100}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2800)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000000)={"ddaae44dd4e6b4d614eb47bb9419ba8c", <r3=>0x0, 0x0, {0x95, 0x8}, {0x2914, 0xffffffff}, 0x1, [0x1, 0x0, 0x3ff, 0xdf, 0x101, 0xeaf6, 0xff, 0x7, 0x1, 0x4, 0x2, 0x6, 0x7, 0x8b6b, 0x8, 0x8]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f0000000180)={{r1}, r3, 0x10, @inherit={0x58, &(0x7f0000000100)={0x1, 0x2, 0x2, 0x728, {0xa, 0x2, 0x6, 0xffffffffffffff7f, 0x3f}, [0x7, 0x3]}}, @devid})
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000400000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

[  269.920242][ T5197]  </TASK>
07:00:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 48)

07:00:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='virtio_transport_alloc_pkt\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_get_implied_cluster_alloc_exit\x00', r0}, 0x10)
readv(r1, 0x0, 0x0)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2800) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000000)={"ddaae44dd4e6b4d614eb47bb9419ba8c", <r3=>0x0, 0x0, {0x95, 0x8}, {0x2914, 0xffffffff}, 0x1, [0x1, 0x0, 0x3ff, 0xdf, 0x101, 0xeaf6, 0xff, 0x7, 0x1, 0x4, 0x2, 0x6, 0x7, 0x8b6b, 0x8, 0x8]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f0000000180)={{r1}, r3, 0x10, @inherit={0x58, &(0x7f0000000100)={0x1, 0x2, 0x2, 0x728, {0xa, 0x2, 0x6, 0xffffffffffffff7f, 0x3f}, [0x7, 0x3]}}, @devid}) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='virtio_transport_alloc_pkt\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_get_implied_cluster_alloc_exit\x00', r0}, 0x10)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='virtio_transport_alloc_pkt\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_get_implied_cluster_alloc_exit\x00', r0}, 0x10) (async)
readv(r1, 0x0, 0x0) (async)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2800) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000000)={"ddaae44dd4e6b4d614eb47bb9419ba8c", <r3=>0x0, 0x0, {0x95, 0x8}, {0x2914, 0xffffffff}, 0x1, [0x1, 0x0, 0x3ff, 0xdf, 0x101, 0xeaf6, 0xff, 0x7, 0x1, 0x4, 0x2, 0x6, 0x7, 0x8b6b, 0x8, 0x8]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f0000000180)={{r1}, r3, 0x10, @inherit={0x58, &(0x7f0000000100)={0x1, 0x2, 0x2, 0x728, {0xa, 0x2, 0x6, 0xffffffffffffff7f, 0x3f}, [0x7, 0x3]}}, @devid}) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='virtio_transport_alloc_pkt\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_get_implied_cluster_alloc_exit\x00', r0}, 0x10) (async)
readv(r1, 0x0, 0x0)

07:00:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x7000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1f00, 0x0, 0x0}, 0x58)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r5])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000340)={{{@in=@local, @in6}}, {{@in6=@ipv4={""/10, ""/2, @dev}}, 0x0, @in6=@private2}}, &(0x7f0000000440)=0xe8)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r7])
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000006c0)=<r8=>0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r9=>0x0)
setresuid(0xffffffffffffffff, r9, 0xffffffffffffffff)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001900)=<r10=>0x0)
sendmmsg$unix(r3, &(0x7f0000001980)=[{{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000080)="69ae1e954c3ff59e27285768fa1d31357d821e45b34c3b46f2941c10ffeedb1710a25849f99d55467a1bbb829850e1c6ad6635c27a8172444e645655b11e79846206520d243a2ccbc2806423b1fe8ac7bc064b9530b143aad5e5d47cc2afb9b3b0", 0x61}, {&(0x7f0000000100)="99fa47a52b3969ddd94e1582aeb786425df676d4bfbd4610c1cf2b56b3b973904201bc792d8429b4e99965703a8dbebf08c9", 0x32}, {&(0x7f0000001a40)="de31af7254075c240a995b1729ccc37ee99067abe75baff60385a62ad0af4bf9f1e326ae0dbfd03b83098167986a31700989a44839f012814069db18c2634dc352aee1691ef912c7c94b30d838893dd02212bc1766ea40590e1df5141c3533778e0b1767ed40e1ffcede051567b67051d5acdb75340ef684e189479fcc31a58366b7ad13220874f37289480e2874112654ddc41215866234eb12e0f8111c3261bc6c970f36008d141d5197c9daaa694a22bb7bfc19e0dffe7f11bf758194085e19f762a147635428144bfa24e2710f5d35bbdb1bc0900cad5961a8bde43be37b066b2d9e7927622ffb7f20e9e611f0c102e7a3bf88ef1216b2be46653888ab7cec06009e274a5035c60c83c61842abed45e40b19f146c56d068a7319a4493adb12981405763ff793459a61", 0xcc}, {&(0x7f0000000240)="02ca294eb2f21ad9e1441174b6a85168d8322fb3a189675d71193469fe0f059cb29761db0e6409bc2d36bd396c3ea97b2cad2ddf2c55ebbc4a9fb17b621e2830e2c2657751ed47b84c0a8869857a3e7569787c6785ae58c15f2062c3e7bc48351a98ce71fe0ed6b2b88cddea8f71b930b442f1c4dadcd122e656bba755624e2676a7be273f537f454c4cf2ddd99e3d25ee22512964c1b761f56acf80e95f3de4b9eac3d7070c9136f48f70c53b25067b", 0xb0}], 0x10000146, &(0x7f0000000480), 0x40}}, {{&(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000540)="f4a87d870c168e642658390c28acaa39f1fd05eeeefea1c0d611385b37734782e38c90380051d4bff26bc1af347c97b0d1626fca4c1a48279e8030dc6e451f988abcde73cb2af2b06f88e601bb4243510dd3f2474e60dd0144a3ec7f1d2d90760cd3ac01", 0x64}, {&(0x7f00000005c0)="4da997e431bd45eafc52ee", 0xb}, {&(0x7f0000000600)="a8876c35823aaa4b5749bffa0265eca6fa74491e2c22a50af37b04896b96472ac3fc2b086761b2e4f319198b86d910d43a65ae9062d5565554d1e37df07e568f154b9ab234407901bf0deef6210af7690c313c", 0x53}], 0x3, &(0x7f0000000700)=[@cred={{0x1c, 0x1, 0x2, {r8, r9, 0xee00}}}], 0x20}}, {{&(0x7f0000000740)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000018c0)=[{&(0x7f00000007c0)="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", 0x1000}, {&(0x7f00000017c0)="469da34778375142413869c47936fe50ab1026fbff27b5d6fafd5b744927e679e87a50b7c14500679402b280fafe4742da431aec9af519d32e7f1845cfdeff3eedef8b5d0e0a2ca4444d9cc64535dd07d559a39b045e0dac5852829bb06fe6f9f945a786049589626263a8c41826b29a443cb9d359737800d186a76a9049349e17e68a64f74e39e12b703533849576b9f307133d5504e00b39c2af43b97261099ced382a580137de60e66018b17c89c15f4fdaf0d57667fdbacd48e93bcb370c4d72d58eb04236b19fe6", 0xca}], 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000a6b3e1877faa7b4b8932dee36f36410000"], 0x38, 0x50}}], 0x3, 0x40095)
readv(r1, 0x0, 0x0)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004000000850000009900000018220000", @ANYRES32, @ANYBLOB="000000000900000018290020", @ANYRES32, @ANYBLOB="00030000000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x46e, 0x45, &(0x7f0000000140)=""/69, 0x41000, 0x16, '\x00', 0x0, 0x12, r1, 0x8, &(0x7f00000001c0)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x4b6e1664, 0x7fff}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000000300)=[r3, 0x1, r4]}, 0x80)
r6 = openat$cgroup_procs(r3, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r4, 0x5000940e, &(0x7f0000000400)={{r6}, "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"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

[  270.042989][ T5241] FAULT_INJECTION: forcing a failure.
[  270.042989][ T5241] name failslab, interval 1, probability 0, space 0, times 0
[  270.070436][ T5241] CPU: 0 PID: 5241 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  270.080442][ T5241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  270.090326][ T5241] Call Trace:
[  270.093454][ T5241]  <TASK>
[  270.096227][ T5241]  dump_stack_lvl+0x151/0x1b7
[  270.100744][ T5241]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  270.106044][ T5241]  ? vma_interval_tree_augment_rotate+0x210/0x210
[  270.112418][ T5241]  dump_stack+0x15/0x17
[  270.116409][ T5241]  should_fail+0x3c0/0x510
[  270.120664][ T5241]  __should_failslab+0x9f/0xe0
[  270.125347][ T5241]  should_failslab+0x9/0x20
[  270.129685][ T5241]  kmem_cache_alloc+0x4f/0x2f0
[  270.134283][ T5241]  ? anon_vma_fork+0xf7/0x4f0
[  270.138813][ T5241]  anon_vma_fork+0xf7/0x4f0
[  270.143148][ T5241]  ? anon_vma_name+0x4c/0x70
[  270.147568][ T5241]  dup_mmap+0x750/0xea0
[  270.151564][ T5241]  ? __delayed_free_task+0x20/0x20
[  270.156504][ T5241]  ? mm_init+0x807/0x960
[  270.160584][ T5241]  dup_mm+0x91/0x330
[  270.164317][ T5241]  copy_mm+0x108/0x1b0
[  270.168225][ T5241]  copy_process+0x1295/0x3250
[  270.172738][ T5241]  ? check_stack_object+0xf7/0x130
[  270.177684][ T5241]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  270.182635][ T5241]  ? copy_clone_args_from_user+0x6cf/0x790
[  270.188275][ T5241]  kernel_clone+0x22d/0x990
[  270.192613][ T5241]  ? dup_mmap+0xea0/0xea0
[  270.196788][ T5241]  ? create_io_thread+0x1e0/0x1e0
[  270.201642][ T5241]  ? file_end_write+0x1b0/0x1b0
[  270.206326][ T5241]  __x64_sys_clone3+0x375/0x3a0
[  270.211044][ T5241]  ? __ia32_sys_clone+0x300/0x300
[  270.215872][ T5241]  ? ksys_write+0x25f/0x2c0
[  270.220210][ T5241]  ? debug_smp_processor_id+0x17/0x20
[  270.225424][ T5241]  do_syscall_64+0x44/0xd0
[  270.229672][ T5241]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  270.235406][ T5241] RIP: 0033:0x7f8e237f0639
[  270.239655][ T5241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  270.259100][ T5241] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  270.267340][ T5241] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  270.275339][ T5241] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  270.283147][ T5241] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
07:00:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 49)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r5])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000340)={{{@in=@local, @in6}}, {{@in6=@ipv4={""/10, ""/2, @dev}}, 0x0, @in6=@private2}}, &(0x7f0000000440)=0xe8)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r7])
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000006c0)=<r8=>0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r9=>0x0)
setresuid(0xffffffffffffffff, r9, 0xffffffffffffffff)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001900)=<r10=>0x0)
sendmmsg$unix(r3, &(0x7f0000001980)=[{{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000080)="69ae1e954c3ff59e27285768fa1d31357d821e45b34c3b46f2941c10ffeedb1710a25849f99d55467a1bbb829850e1c6ad6635c27a8172444e645655b11e79846206520d243a2ccbc2806423b1fe8ac7bc064b9530b143aad5e5d47cc2afb9b3b0", 0x61}, {&(0x7f0000000100)="99fa47a52b3969ddd94e1582aeb786425df676d4bfbd4610c1cf2b56b3b973904201bc792d8429b4e99965703a8dbebf08c9", 0x32}, {&(0x7f0000001a40)="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", 0xcc}, {&(0x7f0000000240)="02ca294eb2f21ad9e1441174b6a85168d8322fb3a189675d71193469fe0f059cb29761db0e6409bc2d36bd396c3ea97b2cad2ddf2c55ebbc4a9fb17b621e2830e2c2657751ed47b84c0a8869857a3e7569787c6785ae58c15f2062c3e7bc48351a98ce71fe0ed6b2b88cddea8f71b930b442f1c4dadcd122e656bba755624e2676a7be273f537f454c4cf2ddd99e3d25ee22512964c1b761f56acf80e95f3de4b9eac3d7070c9136f48f70c53b25067b", 0xb0}], 0x10000146, &(0x7f0000000480), 0x40}}, {{&(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000540)="f4a87d870c168e642658390c28acaa39f1fd05eeeefea1c0d611385b37734782e38c90380051d4bff26bc1af347c97b0d1626fca4c1a48279e8030dc6e451f988abcde73cb2af2b06f88e601bb4243510dd3f2474e60dd0144a3ec7f1d2d90760cd3ac01", 0x64}, {&(0x7f00000005c0)="4da997e431bd45eafc52ee", 0xb}, {&(0x7f0000000600)="a8876c35823aaa4b5749bffa0265eca6fa74491e2c22a50af37b04896b96472ac3fc2b086761b2e4f319198b86d910d43a65ae9062d5565554d1e37df07e568f154b9ab234407901bf0deef6210af7690c313c", 0x53}], 0x3, &(0x7f0000000700)=[@cred={{0x1c, 0x1, 0x2, {r8, r9, 0xee00}}}], 0x20}}, {{&(0x7f0000000740)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000018c0)=[{&(0x7f00000007c0)="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", 0x1000}, {&(0x7f00000017c0)="469da34778375142413869c47936fe50ab1026fbff27b5d6fafd5b744927e679e87a50b7c14500679402b280fafe4742da431aec9af519d32e7f1845cfdeff3eedef8b5d0e0a2ca4444d9cc64535dd07d559a39b045e0dac5852829bb06fe6f9f945a786049589626263a8c41826b29a443cb9d359737800d186a76a9049349e17e68a64f74e39e12b703533849576b9f307133d5504e00b39c2af43b97261099ced382a580137de60e66018b17c89c15f4fdaf0d57667fdbacd48e93bcb370c4d72d58eb04236b19fe6", 0xca}], 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000a6b3e1877faa7b4b8932dee36f36410000"], 0x38, 0x50}}], 0x3, 0x40095)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000080)) (async)
close(r2) (async)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) (async)
getresgid(&(0x7f0000000040), &(0x7f0000000180), &(0x7f0000000240)) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r5]) (async)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000340)={{{@in=@local, @in6}}, {{@in6=@ipv4={""/10, ""/2, @dev}}, 0x0, @in6=@private2}}, &(0x7f0000000440)=0xe8) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) (async)
getresgid(&(0x7f0000000040), &(0x7f0000000180), &(0x7f0000000240)) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r7]) (async)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000006c0)) (async)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)) (async)
setresuid(0xffffffffffffffff, r9, 0xffffffffffffffff) (async)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001900)) (async)
sendmmsg$unix(r3, &(0x7f0000001980)=[{{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000080)="69ae1e954c3ff59e27285768fa1d31357d821e45b34c3b46f2941c10ffeedb1710a25849f99d55467a1bbb829850e1c6ad6635c27a8172444e645655b11e79846206520d243a2ccbc2806423b1fe8ac7bc064b9530b143aad5e5d47cc2afb9b3b0", 0x61}, {&(0x7f0000000100)="99fa47a52b3969ddd94e1582aeb786425df676d4bfbd4610c1cf2b56b3b973904201bc792d8429b4e99965703a8dbebf08c9", 0x32}, {&(0x7f0000001a40)="de31af7254075c240a995b1729ccc37ee99067abe75baff60385a62ad0af4bf9f1e326ae0dbfd03b83098167986a31700989a44839f012814069db18c2634dc352aee1691ef912c7c94b30d838893dd02212bc1766ea40590e1df5141c3533778e0b1767ed40e1ffcede051567b67051d5acdb75340ef684e189479fcc31a58366b7ad13220874f37289480e2874112654ddc41215866234eb12e0f8111c3261bc6c970f36008d141d5197c9daaa694a22bb7bfc19e0dffe7f11bf758194085e19f762a147635428144bfa24e2710f5d35bbdb1bc0900cad5961a8bde43be37b066b2d9e7927622ffb7f20e9e611f0c102e7a3bf88ef1216b2be46653888ab7cec06009e274a5035c60c83c61842abed45e40b19f146c56d068a7319a4493adb12981405763ff793459a61", 0xcc}, {&(0x7f0000000240)="02ca294eb2f21ad9e1441174b6a85168d8322fb3a189675d71193469fe0f059cb29761db0e6409bc2d36bd396c3ea97b2cad2ddf2c55ebbc4a9fb17b621e2830e2c2657751ed47b84c0a8869857a3e7569787c6785ae58c15f2062c3e7bc48351a98ce71fe0ed6b2b88cddea8f71b930b442f1c4dadcd122e656bba755624e2676a7be273f537f454c4cf2ddd99e3d25ee22512964c1b761f56acf80e95f3de4b9eac3d7070c9136f48f70c53b25067b", 0xb0}], 0x10000146, &(0x7f0000000480), 0x40}}, {{&(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000540)="f4a87d870c168e642658390c28acaa39f1fd05eeeefea1c0d611385b37734782e38c90380051d4bff26bc1af347c97b0d1626fca4c1a48279e8030dc6e451f988abcde73cb2af2b06f88e601bb4243510dd3f2474e60dd0144a3ec7f1d2d90760cd3ac01", 0x64}, {&(0x7f00000005c0)="4da997e431bd45eafc52ee", 0xb}, {&(0x7f0000000600)="a8876c35823aaa4b5749bffa0265eca6fa74491e2c22a50af37b04896b96472ac3fc2b086761b2e4f319198b86d910d43a65ae9062d5565554d1e37df07e568f154b9ab234407901bf0deef6210af7690c313c", 0x53}], 0x3, &(0x7f0000000700)=[@cred={{0x1c, 0x1, 0x2, {r8, r9, 0xee00}}}], 0x20}}, {{&(0x7f0000000740)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000018c0)=[{&(0x7f00000007c0)="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", 0x1000}, {&(0x7f00000017c0)="469da34778375142413869c47936fe50ab1026fbff27b5d6fafd5b744927e679e87a50b7c14500679402b280fafe4742da431aec9af519d32e7f1845cfdeff3eedef8b5d0e0a2ca4444d9cc64535dd07d559a39b045e0dac5852829bb06fe6f9f945a786049589626263a8c41826b29a443cb9d359737800d186a76a9049349e17e68a64f74e39e12b703533849576b9f307133d5504e00b39c2af43b97261099ced382a580137de60e66018b17c89c15f4fdaf0d57667fdbacd48e93bcb370c4d72d58eb04236b19fe6", 0xca}], 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000a6b3e1877faa7b4b8932dee36f36410000"], 0x38, 0x50}}], 0x3, 0x40095) (async)
readv(r1, 0x0, 0x0) (async)

07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2) (async)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4) (async)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004000000850000009900000018220000", @ANYRES32, @ANYBLOB="000000000900000018290020", @ANYRES32, @ANYBLOB="00030000000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x46e, 0x45, &(0x7f0000000140)=""/69, 0x41000, 0x16, '\x00', 0x0, 0x12, r1, 0x8, &(0x7f00000001c0)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x4b6e1664, 0x7fff}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000000300)=[r3, 0x1, r4]}, 0x80) (async)
r6 = openat$cgroup_procs(r3, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r4, 0x5000940e, &(0x7f0000000400)={{r6}, "d01993c133465ab2b8bae80b5454e869c3461ecfafb28a83fc5fb37bb038061dfd5a709d6692057ed65414c4b8f22f3c7eaf5c78423df151b545678d3cab0d9eee504cbe16f7f3bebebe6570feb1be0362ff8918b34237cd11d78fcb0228ae4f58996ff6bf2976c4fa903bd4a2d568e10d97ecdfb00260d247b33a3b9741c25803008bfc16816d99c22e6725e69a08557243411599ef6fa725c8be806ee78897dd766087b183127ad78d9a0b1a21a45c27c088979734a40c60260ebaf875341764f0dbd3c18ea00ce59c4d999881816fc2ebeebfcca24a9ff4604bcfb918fc08e10c85296c263a239185e49ed693b8612c69643544624df7e571df45bb817db315fbeb61acd3c222f0f19f85a919d5c2e796c92b37861b8a2ee216b3a4651954987bd79813b1ae58057e122d89a842b62ab391664605be9f1bb15642f43565cf1d9ade02537462385c80196f322c6aff168137bc9396231a76af98a3856a010c90625baecb749a0e1af1f667efa6b38f40fa93cf2422d7f26148095126a5a6927a8f0d4852d73a2470af450ee4f4157bc0b6eac75c0a9933afae77329215b702574c40c3f2afe7dc971ed5389635708f761881f0831fc2a8146b3ee00a7aa3f3cb5a2101cde3132b5f51af0793c2a188fa2b3112f489da0f5acf015b5d82f63ed7c2054ca8a4a6bf05e05876226963ce30239163af318a65b26e07ae2899dd04af7cffdddecd85507e05afe8601f52903c8044a114c08900d9431c44603b7232d1e710fd7a15b3f1c144039a38084b2487fbce6f340567ef5d6be7254c72be97619c2e76e5614422fece757b51d702effbbfac954a58fd59fc81a9a2f9c6e13b18aa436a03ee49dcd45fbaecf86dd4c453ae310b6156f7966ece6da6a0f5c4b0e9b097fa612aa1ae47750dc24456e22441d7074f854428f069d83d82baf29303cc0c7400be4fc958f1151f76e451191a01e064f305297cf9b327ead7614584c928e60e411af9e3bd394f40e1b6735bb08ab73ad2032db55bde998d4649551ba4898528479461229d3ec2f4e7f665d8688218d79e3b184bcb87c361c65eab00404591aa43e6c2ab61f24d7921d0ccf604c53814961182dae6778cc0a85e9437b68017530630b5cc6f9c26dcb4c5e1ab351dc0a7dc9fc5b5a7520c13bcb335112d300d243a966f29f8754109bdb905d3ea00c5d173d932592994de1330fccf8b17ebe72158690d7aed4b9c0653bccf89c9d1e2d57bf11f7877beea125f5211c26d402b4744bd0faefd1481fcf64fe3acee637a17de0020c9bc609eb802f7a925ffbf1fd95bc3e77c8570824770ae24f1a98503c90896e269400889b9a4e1e65ea97c5d8f30679f3897eaaa8eda7d14d4c4c3bcb63363f2ec450642a166865c05d63f97008ca93d51250b24a8713a5ed1db5a734d84522d95d24bb5f487fdad682fb5c3dbca4d23f4e3ea5cfcf8fcce3a7759c6812d62a96abfcc312e849c73bfc25fe639e17a25ae39372694536bff1d31e2b129488f0ac5273e9e823a37bc2082f7220c4f804584ba88ab82352516034150c170d46c20d5dc677df03257960a836700a2b0405e82d82f43c674504f60c7982f883519f20d533167e0678f2f015ab0e1df5090a41039bcc1854b689e364a680f9b7c4a25ff0b68fca748680d7a0d8b92f1fc404442c88bd5190adaf99921bf6bb524b3c14178061a25403690600a53c96ecdf6e0bf3e9fc376b111b5abb258ad68f0865f36a76557512ecf41c5bd755bb6175d04a034bb1405e6bc698147ad47e786d1d12ebafd49a66263cd629de8cf740bd41c8686e86a2bd9d816c769101ab6e1f4ca1ca80bd4335d3d8098635e68089b274666a30f0c13e4f7f8244a7a99b93c0f2f818dd3c46ddda986a3a7b70af9beaab2a703e9328578a00f25a39bcfc14867cc110b7ee971e0e1265748d2fa0557961782c829e09fc0fe4e9bcfbb7b97b4331b44f965efec25088705e0dfec36b8ebe561aa7a0e1ca6493a641f1a58be7f15454c6346cf7e388079cb66588d4a31eb731e744d71ba604e3cf87bd25c05ca2e9a6dd6a69f0516d965118408e0c41e322dae8c140d6de20fc05932ec29445fec6e587d29b223c9c3d422ecdda0f226ff345c4b29614ea0117c3029388d3ab63727c100d27316fd8fe168406787a2ab6e4d569e3d44b954875577e7a1b2d70bee3e5c8e10a10e0cc037c044c69f4a1d812d6107539aaeb17211455c1f149b6b8d148b6de6b1729940fdce64e27b25627a60558cb17c36a73b7a62fe1a048e4ceb3f85f3b8deba8326083fdb66779a0f6b5cb0fb687be16eaf1b9eb10f5428670100d74ef957653b34be11fab6f45d11d9e1557c20f943572425b9e8920934c6c3b00d9f48fd4853636abc5c4227a83fc59900d40fc905a44f84bb1c28c861b652c04f85f13ea412f758bf607b750c4629b1729d1a6d135665392ca9b49116dd103f81e0f3f575fc11101a0a14cb79d504fda8143faefd8b68f91f8bfb781c3c4bfe40c447d0aab7ae8c89bcbc298a7afa7af04cd6eb7ef0f7280227ac1cac566cafc65db86385f0e5e85fcab01080ceebad7cfb51875320c16be918f12f8fd07db7d5c75fa4c97ef338cfbbb7d52bf9702e494781ec972e03c2447cabc901f734a81b53d558df9a759e184acd8f10636872c56d5de3b8929aed714ff51d588ed98705bbd09bd81eef477efc1917ef4fad67a4e75b0c3c5c3358098c936f316c405a6e29418dd6ecddc8cc70f28cc7de786bb3f6d2ce75e863880d572b036f0f0cd6a57fbe81a9e6caa6cd8d172d20f8ced488786690ffa36092277bdc12293f626eabd78d06921bdd6b1a0c95ea4a01c371eafcee109cbe3775303562d24b8f1b5061efe3bde77e053460771946aa08af6a738d360130f8f3a7075c18c2f4b814685197ebdc01585608ad0b08703bde841b3cdb6b264594b03e1a4cf4f5706c3d432ba6ad755116f5e457c6b8e4558f05d902fe28ad44dbfa24610748f18c6320312f1bbb97e927106c02ac034e756f448b4759978fad67efed86b9fda59affa1c401d60f6cef78c95a3138ef403bd9bc3a8f58567f4d4a3034a39d10b5837d6439d58b98cea67d5a01bcec07b9d1abcd96e720a6773512673fc6e77581d8b31dfe5e6bd48c519cf0a26374cec513db6cbcd20dfa9fef59016957dce13f9521f9a52382d0cbcc3362728ddd7039230321b7ebcbd0d05db7419653ad15cab00eb1d01132f93663ff29f3d2725c0a1210291c2570b8e8613602c05089407bfcfcc8ffef65cbda132851b30782d125091e6a86066b04ff32679283b2619d1e4d4c1e05fb30d1e12356a5ca482f186eca746ae5576a54ab00b910146f533ed520a18d459e49cfd364f36784e01e31d26c87de107e05073988e0501394aec8afa4e11f0be800bc1d7f92504fb737c97d7385ac1dc0535d628cb1e4b37323677e11b8919102eefc1ffd4082fff05b733caef3acad80567730fda93f9f7d68b509b00654e8e9bd798511abb17f8a947685e44025e36cbc4f8c1feb8962f259912754ec627278a3a9d3bedea1806571f4d18f42899d8c7e8f0d28ff8c6bfe214da1a6645e90e02c58a7bd3b7f0e074539dca8297965c7e3006f1fc688374bfd75cc1a1ee7ce9be3f162ce2cddcf4e68b76073cad1517856f5ca7e74bb782ee495fb656b8d155e9372971a10d2ad8f484be81f11be0802e9406da05accd500ab0163fde6c5ccd43b283c2906ed708b8999e8ddd00b00d3d44b00cc589a6ee0f8e0258b81f02fa86ae10991dee8fd1f9c1f048d28fd5be6542601b12fd16a9bac2c3aeab0c9d7c46ec8af7982953b792c07bd0d169193902b9b41faf865e406384d00a0cf25dcc93bee60570d16424b81b72b79f5919c41814c26ed0198373887391184850526b97b283f05e946bb9ae199cc001127f2cace22f61dee13451e7626774ff47b5e28254d368a8200495706db1f4d73fa45b086a48dba247a45f67cc61290c627d7d19c6f520b0f69ebab1ac389a787dab9dc9682e0bbd09535ac30a84c816c70f5d44921c1fee0e648569e1db9ff862378e02e64d04e5ca6255aa412fbf6d1e2cf3afc20a36dc94d9e485db614732702ea3c8c2389722cc63ef9cc0496e5a6d0fb669eaf5e281d0ba2f1b21ee944f607f69bac69147024619a5ebcba6d50ac2ef88cb735495857fa1a99b31af7ae55962042181ac8688996058fb802285e9b5c2fdd5ffe0034617c4502380bba877fe0a3e1d0747740a721aaf114305c0c98007a9cfd9eccb83d50506e0205ad9631a3c67917deb5f0e99cbadf0260ab8591a229e0c7ed2037a0ee03a091b3d46bfca1fcb5a0554ae0ca227eb20d0f8b25a25be402290cb6386ba404d96d02aa53b5aa939420298f3e95725c443d4218760af9535d856941bf5d50fba6a002388e0b0afd7463564ac18b4be56aa440c41d5d1603a539d6220bcd6aae6b9481bb246f37a9b33b6b3f6af500999cbd29d0325bf59dcd2eeff2b64ffc15a6b12c7761b7f848525c692dd2e396398687ae8355d10b66890e44832442d1f1e2aaa5da7e0eb431e2cc25d6a4252dfbc59b1617dd73216b5c6a5444ce55fa228e28a1dff96a9c2f04285fcb58cfd05d3ee35d973b77af880dc3d9065529a440461018be8509f4e7cec3ff50fc8aa8ecfc9a3cf05e6009673442c65737862515e7e7bf6dc1172533547c09e7189c85f53cee9254a390d86a37a300ac57f60c6dff69388881b63e9d654f50f9b7d0a2dc8c137e873059dc640fbc602e7885510d3dde0a43299dfcc3217f7c8730d2a26e72cc18512c0a693222c199e0ccc2d4a3ec45c38d3718a2c78a49c690468613612a31a611814c470846228d774fd4e1abb46047d0570d15d233500eaac34c85a8454efdaee4d1accc91731e680db92cedd8a440ad0a7849ec94eede92e0cb682b95f5a59bab60deef2d0270939ff1c475587baf8a3edf5e5df87ff4c7709594f4ee92bf8786c96602ceb38787e96371c20f5ccca28d436d4a3476d74a2ab7c403fd017d686bb402809f040d58a7f6a4429f1691eb45f5814b804e0a2fe1ce8cb4cde90f1e091e460393537c3d4995e1882d48a819d38334ba3aac1a415479a0fd8230c545218231db9b031b0937082010df92c115b8d31f567bee715117143f300f9d898fd4ccc7dc8b0f9fb3271ed6420025a1834ecd061ed3780b7aaaef4086b1fbd0e82f93fca5f19700fffbeb8bedce2ddcf9c72be0db296fb2cc0dc13026e9f678bdda506072579c92ce0714482b4948868cb9eece2130e7bddff3599f969118685d0a217cee256b10e9604a79d3bf16b0ca0be20a912b9942db889f8b6133814ce2e6347d2c8be772aa176caa3aa51b0a203e7e11b85e37e15a6b7f9df849bde0227398a9f75879fafc8cfca8a7ada2dbfb771fe5e44dc4dab17ed4f169ddb62d6e5f6660ddb5d592d985dbf01add6ec80988a54d4b2cf21fd50d1af2206b8bdfe390820b427d14b2706bf8b9e70d9aef4a4f1569009f9b531793dff41cab1c821f75c23a54984246a9d73c292618ce0b4ba6fa001c5994f6b850ad141331927a441426383ec2d3246270b75d40f0ea84529f6e3161f54191b7d09ec718014cb40c52a38fef98899d2a515ecf6e05f339a25ad71481f1d423c2a0a983baf7619ab3972321f1e2cac88aa1c7fd8bdb54a6a076ade80738ecfb577073aba4056628321753eb50b4b81192af6a4b3fc17a51a4effb06b17c9a9235f79c15f089a2c9eff1eb4ba32c7c"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

07:00:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:13 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2) (async, rerun: 64)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async, rerun: 64)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r5])
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000340)={{{@in=@local, @in6}}, {{@in6=@ipv4={""/10, ""/2, @dev}}, 0x0, @in6=@private2}}, &(0x7f0000000440)=0xe8) (async, rerun: 64)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) (async, rerun: 64)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r7]) (async)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000006c0)=<r8=>0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r9=>0x0)
setresuid(0xffffffffffffffff, r9, 0xffffffffffffffff) (async)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001900)=<r10=>0x0)
sendmmsg$unix(r3, &(0x7f0000001980)=[{{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000080)="69ae1e954c3ff59e27285768fa1d31357d821e45b34c3b46f2941c10ffeedb1710a25849f99d55467a1bbb829850e1c6ad6635c27a8172444e645655b11e79846206520d243a2ccbc2806423b1fe8ac7bc064b9530b143aad5e5d47cc2afb9b3b0", 0x61}, {&(0x7f0000000100)="99fa47a52b3969ddd94e1582aeb786425df676d4bfbd4610c1cf2b56b3b973904201bc792d8429b4e99965703a8dbebf08c9", 0x32}, {&(0x7f0000001a40)="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", 0xcc}, {&(0x7f0000000240)="02ca294eb2f21ad9e1441174b6a85168d8322fb3a189675d71193469fe0f059cb29761db0e6409bc2d36bd396c3ea97b2cad2ddf2c55ebbc4a9fb17b621e2830e2c2657751ed47b84c0a8869857a3e7569787c6785ae58c15f2062c3e7bc48351a98ce71fe0ed6b2b88cddea8f71b930b442f1c4dadcd122e656bba755624e2676a7be273f537f454c4cf2ddd99e3d25ee22512964c1b761f56acf80e95f3de4b9eac3d7070c9136f48f70c53b25067b", 0xb0}], 0x10000146, &(0x7f0000000480), 0x40}}, {{&(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000540)="f4a87d870c168e642658390c28acaa39f1fd05eeeefea1c0d611385b37734782e38c90380051d4bff26bc1af347c97b0d1626fca4c1a48279e8030dc6e451f988abcde73cb2af2b06f88e601bb4243510dd3f2474e60dd0144a3ec7f1d2d90760cd3ac01", 0x64}, {&(0x7f00000005c0)="4da997e431bd45eafc52ee", 0xb}, {&(0x7f0000000600)="a8876c35823aaa4b5749bffa0265eca6fa74491e2c22a50af37b04896b96472ac3fc2b086761b2e4f319198b86d910d43a65ae9062d5565554d1e37df07e568f154b9ab234407901bf0deef6210af7690c313c", 0x53}], 0x3, &(0x7f0000000700)=[@cred={{0x1c, 0x1, 0x2, {r8, r9, 0xee00}}}], 0x20}}, {{&(0x7f0000000740)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000018c0)=[{&(0x7f00000007c0)="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", 0x1000}, {&(0x7f00000017c0)="469da34778375142413869c47936fe50ab1026fbff27b5d6fafd5b744927e679e87a50b7c14500679402b280fafe4742da431aec9af519d32e7f1845cfdeff3eedef8b5d0e0a2ca4444d9cc64535dd07d559a39b045e0dac5852829bb06fe6f9f945a786049589626263a8c41826b29a443cb9d359737800d186a76a9049349e17e68a64f74e39e12b703533849576b9f307133d5504e00b39c2af43b97261099ced382a580137de60e66018b17c89c15f4fdaf0d57667fdbacd48e93bcb370c4d72d58eb04236b19fe6", 0xca}], 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000a6b3e1877faa7b4b8932dee36f36410000"], 0x38, 0x50}}], 0x3, 0x40095) (async)
readv(r1, 0x0, 0x0)

[  270.290973][ T5241] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  270.298773][ T5241] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  270.306686][ T5241]  </TASK>
07:00:13 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004000000850000009900000018220000", @ANYRES32, @ANYBLOB="000000000900000018290020", @ANYRES32, @ANYBLOB="00030000000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x46e, 0x45, &(0x7f0000000140)=""/69, 0x41000, 0x16, '\x00', 0x0, 0x12, r1, 0x8, &(0x7f00000001c0)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x4b6e1664, 0x7fff}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000000300)=[r3, 0x1, r4]}, 0x80)
r6 = openat$cgroup_procs(r3, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r4, 0x5000940e, &(0x7f0000000400)={{r6}, "d01993c133465ab2b8bae80b5454e869c3461ecfafb28a83fc5fb37bb038061dfd5a709d6692057ed65414c4b8f22f3c7eaf5c78423df151b545678d3cab0d9eee504cbe16f7f3bebebe6570feb1be0362ff8918b34237cd11d78fcb0228ae4f58996ff6bf2976c4fa903bd4a2d568e10d97ecdfb00260d247b33a3b9741c25803008bfc16816d99c22e6725e69a08557243411599ef6fa725c8be806ee78897dd766087b183127ad78d9a0b1a21a45c27c088979734a40c60260ebaf875341764f0dbd3c18ea00ce59c4d999881816fc2ebeebfcca24a9ff4604bcfb918fc08e10c85296c263a239185e49ed693b8612c69643544624df7e571df45bb817db315fbeb61acd3c222f0f19f85a919d5c2e796c92b37861b8a2ee216b3a4651954987bd79813b1ae58057e122d89a842b62ab391664605be9f1bb15642f43565cf1d9ade02537462385c80196f322c6aff168137bc9396231a76af98a3856a010c90625baecb749a0e1af1f667efa6b38f40fa93cf2422d7f26148095126a5a6927a8f0d4852d73a2470af450ee4f4157bc0b6eac75c0a9933afae77329215b702574c40c3f2afe7dc971ed5389635708f761881f0831fc2a8146b3ee00a7aa3f3cb5a2101cde3132b5f51af0793c2a188fa2b3112f489da0f5acf015b5d82f63ed7c2054ca8a4a6bf05e05876226963ce30239163af318a65b26e07ae2899dd04af7cffdddecd85507e05afe8601f52903c8044a114c08900d9431c44603b7232d1e710fd7a15b3f1c144039a38084b2487fbce6f340567ef5d6be7254c72be97619c2e76e5614422fece757b51d702effbbfac954a58fd59fc81a9a2f9c6e13b18aa436a03ee49dcd45fbaecf86dd4c453ae310b6156f7966ece6da6a0f5c4b0e9b097fa612aa1ae47750dc24456e22441d7074f854428f069d83d82baf29303cc0c7400be4fc958f1151f76e451191a01e064f305297cf9b327ead7614584c928e60e411af9e3bd394f40e1b6735bb08ab73ad2032db55bde998d4649551ba4898528479461229d3ec2f4e7f665d8688218d79e3b184bcb87c361c65eab00404591aa43e6c2ab61f24d7921d0ccf604c53814961182dae6778cc0a85e9437b68017530630b5cc6f9c26dcb4c5e1ab351dc0a7dc9fc5b5a7520c13bcb335112d300d243a966f29f8754109bdb905d3ea00c5d173d932592994de1330fccf8b17ebe72158690d7aed4b9c0653bccf89c9d1e2d57bf11f7877beea125f5211c26d402b4744bd0faefd1481fcf64fe3acee637a17de0020c9bc609eb802f7a925ffbf1fd95bc3e77c8570824770ae24f1a98503c90896e269400889b9a4e1e65ea97c5d8f30679f3897eaaa8eda7d14d4c4c3bcb63363f2ec450642a166865c05d63f97008ca93d51250b24a8713a5ed1db5a734d84522d95d24bb5f487fdad682fb5c3dbca4d23f4e3ea5cfcf8fcce3a7759c6812d62a96abfcc312e849c73bfc25fe639e17a25ae39372694536bff1d31e2b129488f0ac5273e9e823a37bc2082f7220c4f804584ba88ab82352516034150c170d46c20d5dc677df03257960a836700a2b0405e82d82f43c674504f60c7982f883519f20d533167e0678f2f015ab0e1df5090a41039bcc1854b689e364a680f9b7c4a25ff0b68fca748680d7a0d8b92f1fc404442c88bd5190adaf99921bf6bb524b3c14178061a25403690600a53c96ecdf6e0bf3e9fc376b111b5abb258ad68f0865f36a76557512ecf41c5bd755bb6175d04a034bb1405e6bc698147ad47e786d1d12ebafd49a66263cd629de8cf740bd41c8686e86a2bd9d816c769101ab6e1f4ca1ca80bd4335d3d8098635e68089b274666a30f0c13e4f7f8244a7a99b93c0f2f818dd3c46ddda986a3a7b70af9beaab2a703e9328578a00f25a39bcfc14867cc110b7ee971e0e1265748d2fa0557961782c829e09fc0fe4e9bcfbb7b97b4331b44f965efec25088705e0dfec36b8ebe561aa7a0e1ca6493a641f1a58be7f15454c6346cf7e388079cb66588d4a31eb731e744d71ba604e3cf87bd25c05ca2e9a6dd6a69f0516d965118408e0c41e322dae8c140d6de20fc05932ec29445fec6e587d29b223c9c3d422ecdda0f226ff345c4b29614ea0117c3029388d3ab63727c100d27316fd8fe168406787a2ab6e4d569e3d44b954875577e7a1b2d70bee3e5c8e10a10e0cc037c044c69f4a1d812d6107539aaeb17211455c1f149b6b8d148b6de6b1729940fdce64e27b25627a60558cb17c36a73b7a62fe1a048e4ceb3f85f3b8deba8326083fdb66779a0f6b5cb0fb687be16eaf1b9eb10f5428670100d74ef957653b34be11fab6f45d11d9e1557c20f943572425b9e8920934c6c3b00d9f48fd4853636abc5c4227a83fc59900d40fc905a44f84bb1c28c861b652c04f85f13ea412f758bf607b750c4629b1729d1a6d135665392ca9b49116dd103f81e0f3f575fc11101a0a14cb79d504fda8143faefd8b68f91f8bfb781c3c4bfe40c447d0aab7ae8c89bcbc298a7afa7af04cd6eb7ef0f7280227ac1cac566cafc65db86385f0e5e85fcab01080ceebad7cfb51875320c16be918f12f8fd07db7d5c75fa4c97ef338cfbbb7d52bf9702e494781ec972e03c2447cabc901f734a81b53d558df9a759e184acd8f10636872c56d5de3b8929aed714ff51d588ed98705bbd09bd81eef477efc1917ef4fad67a4e75b0c3c5c3358098c936f316c405a6e29418dd6ecddc8cc70f28cc7de786bb3f6d2ce75e863880d572b036f0f0cd6a57fbe81a9e6caa6cd8d172d20f8ced488786690ffa36092277bdc12293f626eabd78d06921bdd6b1a0c95ea4a01c371eafcee109cbe3775303562d24b8f1b5061efe3bde77e053460771946aa08af6a738d360130f8f3a7075c18c2f4b814685197ebdc01585608ad0b08703bde841b3cdb6b264594b03e1a4cf4f5706c3d432ba6ad755116f5e457c6b8e4558f05d902fe28ad44dbfa24610748f18c6320312f1bbb97e927106c02ac034e756f448b4759978fad67efed86b9fda59affa1c401d60f6cef78c95a3138ef403bd9bc3a8f58567f4d4a3034a39d10b5837d6439d58b98cea67d5a01bcec07b9d1abcd96e720a6773512673fc6e77581d8b31dfe5e6bd48c519cf0a26374cec513db6cbcd20dfa9fef59016957dce13f9521f9a52382d0cbcc3362728ddd7039230321b7ebcbd0d05db7419653ad15cab00eb1d01132f93663ff29f3d2725c0a1210291c2570b8e8613602c05089407bfcfcc8ffef65cbda132851b30782d125091e6a86066b04ff32679283b2619d1e4d4c1e05fb30d1e12356a5ca482f186eca746ae5576a54ab00b910146f533ed520a18d459e49cfd364f36784e01e31d26c87de107e05073988e0501394aec8afa4e11f0be800bc1d7f92504fb737c97d7385ac1dc0535d628cb1e4b37323677e11b8919102eefc1ffd4082fff05b733caef3acad80567730fda93f9f7d68b509b00654e8e9bd798511abb17f8a947685e44025e36cbc4f8c1feb8962f259912754ec627278a3a9d3bedea1806571f4d18f42899d8c7e8f0d28ff8c6bfe214da1a6645e90e02c58a7bd3b7f0e074539dca8297965c7e3006f1fc688374bfd75cc1a1ee7ce9be3f162ce2cddcf4e68b76073cad1517856f5ca7e74bb782ee495fb656b8d155e9372971a10d2ad8f484be81f11be0802e9406da05accd500ab0163fde6c5ccd43b283c2906ed708b8999e8ddd00b00d3d44b00cc589a6ee0f8e0258b81f02fa86ae10991dee8fd1f9c1f048d28fd5be6542601b12fd16a9bac2c3aeab0c9d7c46ec8af7982953b792c07bd0d169193902b9b41faf865e406384d00a0cf25dcc93bee60570d16424b81b72b79f5919c41814c26ed0198373887391184850526b97b283f05e946bb9ae199cc001127f2cace22f61dee13451e7626774ff47b5e28254d368a8200495706db1f4d73fa45b086a48dba247a45f67cc61290c627d7d19c6f520b0f69ebab1ac389a787dab9dc9682e0bbd09535ac30a84c816c70f5d44921c1fee0e648569e1db9ff862378e02e64d04e5ca6255aa412fbf6d1e2cf3afc20a36dc94d9e485db614732702ea3c8c2389722cc63ef9cc0496e5a6d0fb669eaf5e281d0ba2f1b21ee944f607f69bac69147024619a5ebcba6d50ac2ef88cb735495857fa1a99b31af7ae55962042181ac8688996058fb802285e9b5c2fdd5ffe0034617c4502380bba877fe0a3e1d0747740a721aaf114305c0c98007a9cfd9eccb83d50506e0205ad9631a3c67917deb5f0e99cbadf0260ab8591a229e0c7ed2037a0ee03a091b3d46bfca1fcb5a0554ae0ca227eb20d0f8b25a25be402290cb6386ba404d96d02aa53b5aa939420298f3e95725c443d4218760af9535d856941bf5d50fba6a002388e0b0afd7463564ac18b4be56aa440c41d5d1603a539d6220bcd6aae6b9481bb246f37a9b33b6b3f6af500999cbd29d0325bf59dcd2eeff2b64ffc15a6b12c7761b7f848525c692dd2e396398687ae8355d10b66890e44832442d1f1e2aaa5da7e0eb431e2cc25d6a4252dfbc59b1617dd73216b5c6a5444ce55fa228e28a1dff96a9c2f04285fcb58cfd05d3ee35d973b77af880dc3d9065529a440461018be8509f4e7cec3ff50fc8aa8ecfc9a3cf05e6009673442c65737862515e7e7bf6dc1172533547c09e7189c85f53cee9254a390d86a37a300ac57f60c6dff69388881b63e9d654f50f9b7d0a2dc8c137e873059dc640fbc602e7885510d3dde0a43299dfcc3217f7c8730d2a26e72cc18512c0a693222c199e0ccc2d4a3ec45c38d3718a2c78a49c690468613612a31a611814c470846228d774fd4e1abb46047d0570d15d233500eaac34c85a8454efdaee4d1accc91731e680db92cedd8a440ad0a7849ec94eede92e0cb682b95f5a59bab60deef2d0270939ff1c475587baf8a3edf5e5df87ff4c7709594f4ee92bf8786c96602ceb38787e96371c20f5ccca28d436d4a3476d74a2ab7c403fd017d686bb402809f040d58a7f6a4429f1691eb45f5814b804e0a2fe1ce8cb4cde90f1e091e460393537c3d4995e1882d48a819d38334ba3aac1a415479a0fd8230c545218231db9b031b0937082010df92c115b8d31f567bee715117143f300f9d898fd4ccc7dc8b0f9fb3271ed6420025a1834ecd061ed3780b7aaaef4086b1fbd0e82f93fca5f19700fffbeb8bedce2ddcf9c72be0db296fb2cc0dc13026e9f678bdda506072579c92ce0714482b4948868cb9eece2130e7bddff3599f969118685d0a217cee256b10e9604a79d3bf16b0ca0be20a912b9942db889f8b6133814ce2e6347d2c8be772aa176caa3aa51b0a203e7e11b85e37e15a6b7f9df849bde0227398a9f75879fafc8cfca8a7ada2dbfb771fe5e44dc4dab17ed4f169ddb62d6e5f6660ddb5d592d985dbf01add6ec80988a54d4b2cf21fd50d1af2206b8bdfe390820b427d14b2706bf8b9e70d9aef4a4f1569009f9b531793dff41cab1c821f75c23a54984246a9d73c292618ce0b4ba6fa001c5994f6b850ad141331927a441426383ec2d3246270b75d40f0ea84529f6e3161f54191b7d09ec718014cb40c52a38fef98899d2a515ecf6e05f339a25ad71481f1d423c2a0a983baf7619ab3972321f1e2cac88aa1c7fd8bdb54a6a076ade80738ecfb577073aba4056628321753eb50b4b81192af6a4b3fc17a51a4effb06b17c9a9235f79c15f089a2c9eff1eb4ba32c7c"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)) (async)
close(r2) (async)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)) (async)
close(r4) (async)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000004000000850000009900000018220000", @ANYRES32, @ANYBLOB="000000000900000018290020", @ANYRES32, @ANYBLOB="00030000000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x46e, 0x45, &(0x7f0000000140)=""/69, 0x41000, 0x16, '\x00', 0x0, 0x12, r1, 0x8, &(0x7f00000001c0)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x8, 0x4b6e1664, 0x7fff}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000000300)=[r3, 0x1, r4]}, 0x80) (async)
openat$cgroup_procs(r3, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r4, 0x5000940e, &(0x7f0000000400)={{r6}, "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"}) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r7, 0x0, 0x0) (async)

07:00:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x10fff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58)

07:00:13 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf64(r2, 0x0, 0xfe30)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000086e204000000000000000001850000000f00000095", @ANYRES16=r1], &(0x7f0000000100)='syzkaller\x00', 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r2, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r3}, 0x10)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000)=0x6, 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:13 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$can_bcm(0x1d, 0x2, 0x2)
readv(r0, 0x0, 0x0)

07:00:13 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf64(r2, 0x0, 0xfe30) (async, rerun: 64)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000086e204000000000000000001850000000f00000095", @ANYRES16=r1], &(0x7f0000000100)='syzkaller\x00', 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r2, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r3}, 0x10) (async)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000)=0x6, 0x1) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

[  270.382986][ T5263] FAULT_INJECTION: forcing a failure.
[  270.382986][ T5263] name failslab, interval 1, probability 0, space 0, times 0
[  270.432600][ T5263] CPU: 1 PID: 5263 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  270.442696][ T5263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  270.452582][ T5263] Call Trace:
[  270.455825][ T5263]  <TASK>
[  270.458596][ T5263]  dump_stack_lvl+0x151/0x1b7
[  270.463114][ T5263]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  270.468406][ T5263]  dump_stack+0x15/0x17
[  270.472391][ T5263]  should_fail+0x3c0/0x510
[  270.476648][ T5263]  __should_failslab+0x9f/0xe0
[  270.481241][ T5263]  should_failslab+0x9/0x20
[  270.485585][ T5263]  kmem_cache_alloc+0x4f/0x2f0
[  270.490411][ T5263]  ? anon_vma_fork+0x1b9/0x4f0
[  270.495037][ T5263]  anon_vma_fork+0x1b9/0x4f0
[  270.499439][ T5263]  dup_mmap+0x750/0xea0
[  270.503442][ T5263]  ? __delayed_free_task+0x20/0x20
[  270.508378][ T5263]  ? mm_init+0x807/0x960
[  270.512464][ T5263]  dup_mm+0x91/0x330
[  270.516276][ T5263]  copy_mm+0x108/0x1b0
[  270.520183][ T5263]  copy_process+0x1295/0x3250
[  270.524695][ T5263]  ? check_stack_object+0xf7/0x130
[  270.529652][ T5263]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  270.534590][ T5263]  ? copy_clone_args_from_user+0x6cf/0x790
[  270.540233][ T5263]  kernel_clone+0x22d/0x990
[  270.544572][ T5263]  ? dup_mmap+0xea0/0xea0
[  270.548736][ T5263]  ? create_io_thread+0x1e0/0x1e0
[  270.553596][ T5263]  ? file_end_write+0x1b0/0x1b0
[  270.558284][ T5263]  __x64_sys_clone3+0x375/0x3a0
[  270.562970][ T5263]  ? __ia32_sys_clone+0x300/0x300
[  270.567836][ T5263]  ? ksys_write+0x25f/0x2c0
[  270.572172][ T5263]  ? debug_smp_processor_id+0x17/0x20
[  270.577383][ T5263]  do_syscall_64+0x44/0xd0
[  270.581638][ T5263]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  270.587363][ T5263] RIP: 0033:0x7f8e237f0639
[  270.591619][ T5263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  270.611063][ T5263] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  270.619299][ T5263] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
07:00:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x3ffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 50)

07:00:14 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
readv(r0, 0x0, 0x0)

07:00:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x41000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:14 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
pipe(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf64(r2, 0x0, 0xfe30)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000086e204000000000000000001850000000f00000095", @ANYRES16=r1], &(0x7f0000000100)='syzkaller\x00', 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r2, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r3}, 0x10)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000)=0x6, 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3580, 0x0, 0x0}, 0x58)

[  270.627119][ T5263] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  270.634930][ T5263] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  270.642841][ T5263] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  270.650651][ T5263] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  270.662115][ T5263]  </TASK>
07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff6f}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x8, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x20603, 0x4060}, [@IFLA_LINKMODE={0x5, 0x11, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x881)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r3, 0x0, 0x0)

07:00:14 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
readv(r0, 0x0, 0x0)

07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff6f}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}) (rerun: 64)
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x8, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x20603, 0x4060}, [@IFLA_LINKMODE={0x5, 0x11, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x881) (async)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r3, 0x0, 0x0)

[  270.732313][ T5294] FAULT_INJECTION: forcing a failure.
[  270.732313][ T5294] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  270.755965][ T5294] CPU: 0 PID: 5294 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  270.766307][ T5294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  270.776223][ T5294] Call Trace:
[  270.779323][ T5294]  <TASK>
07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000004002a1a55cca6cd000000000000000000000082aa5c76b4852b017cbd75efb60cd542a09b583c7bec0425b5eab70bcb28f1730a22073f1b5403ac60648f6c4193717e712a676a745edb8e09798104893fd79be0d887243d92c889e884038514fd15159b4dbd258fb2889c900c906350bbb954c3383648db6d5beab0bc9a017b9ad800e98e8434be5f15f761ac9fe9801fd4d263210343ddc3f2c5cef5b9f430cb6badc7b01d026b79624cd3321ff3531429cdcd0edfaa01e9994b448d18a2eea4f0dfdd04d85818ae7746059add4892c5d6176a30aff96ba11a5ac10af33ae3108d63dbafa4a8777ccc860fa5dce88229d918199c8ff61422f3d7e810f0fbf00b7ef7a47f977db8b26a4cb83d82083ce14dd573a6524b97c328c53776cf23b20410b0522c5681cd22aa0a106cce601cc0dce9ac6f03f9009faff8d80ad5264a1948529b0f0e35ff4c119289c8e370e714db8c8a31b1dd096eb1ff3c675ade1abea78dc407cb7185c46afd922a4ecd9c01a431d33bb9aaebffc929ac9641b29cb97662e5133e79679e819e3b182132294ce830138a4a46e8261b5cd6cd935f637c552e480e1ca2c65a5a4ea7ceeb7dbec9962308868ec3dd611f00d3514cdf67"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff6f}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x8, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x20603, 0x4060}, [@IFLA_LINKMODE={0x5, 0x11, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x881)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r3, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff6f}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
pipe(&(0x7f0000000080)) (async)
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x8, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x20603, 0x4060}, [@IFLA_LINKMODE={0x5, 0x11, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x881) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r3, 0x0, 0x0) (async)

07:00:14 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES32=r1], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x43}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f00000000c0)=""/85, &(0x7f0000000140)=0x55)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r3, 0x0, 0x0)

[  270.782105][ T5294]  dump_stack_lvl+0x151/0x1b7
[  270.786619][ T5294]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  270.791913][ T5294]  dump_stack+0x15/0x17
[  270.796522][ T5294]  should_fail+0x3c0/0x510
[  270.800772][ T5294]  should_fail_alloc_page+0x58/0x70
[  270.805803][ T5294]  __alloc_pages+0x1de/0x7c0
[  270.810236][ T5294]  ? __count_vm_events+0x30/0x30
[  270.815006][ T5294]  ? __this_cpu_preempt_check+0x13/0x20
[  270.820558][ T5294]  ? __mod_node_page_state+0xac/0xf0
[  270.825691][ T5294]  pte_alloc_one+0x73/0x1b0
07:00:14 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES32=r1], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x43}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f00000000c0)=""/85, &(0x7f0000000140)=0x55) (async, rerun: 64)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
readv(r3, 0x0, 0x0)

[  270.830026][ T5294]  ? pfn_modify_allowed+0x2e0/0x2e0
[  270.835144][ T5294]  __pte_alloc+0x86/0x350
[  270.839312][ T5294]  ? free_pgtables+0x210/0x210
[  270.843904][ T5294]  ? _raw_spin_lock+0xa3/0x1b0
[  270.848512][ T5294]  ? _raw_spin_trylock_bh+0x1d0/0x1d0
[  270.853716][ T5294]  ? __kernel_text_address+0x9a/0x110
[  270.859051][ T5294]  copy_pte_range+0x1b1f/0x20b0
[  270.863700][ T5294]  ? __kunmap_atomic+0x80/0x80
[  270.868300][ T5294]  ? __kasan_slab_alloc+0xc4/0xe0
[  270.873159][ T5294]  ? __kasan_slab_alloc+0xb2/0xe0
[  270.878016][ T5294]  ? kmem_cache_alloc+0x189/0x2f0
[  270.882895][ T5294]  ? vm_area_dup+0x26/0x1d0
[  270.887217][ T5294]  ? dup_mmap+0x6b8/0xea0
[  270.891381][ T5294]  ? dup_mm+0x91/0x330
[  270.895284][ T5294]  ? copy_mm+0x108/0x1b0
[  270.899364][ T5294]  ? copy_process+0x1295/0x3250
[  270.904051][ T5294]  ? kernel_clone+0x22d/0x990
[  270.908567][ T5294]  ? __x64_sys_clone3+0x375/0x3a0
[  270.913426][ T5294]  ? do_syscall_64+0x44/0xd0
[  270.917853][ T5294]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  270.923758][ T5294]  copy_page_range+0xc1e/0x1090
[  270.928445][ T5294]  ? pfn_valid+0x1e0/0x1e0
[  270.932701][ T5294]  dup_mmap+0x99f/0xea0
[  270.936696][ T5294]  ? __delayed_free_task+0x20/0x20
[  270.941638][ T5294]  ? mm_init+0x807/0x960
[  270.945716][ T5294]  dup_mm+0x91/0x330
[  270.949447][ T5294]  copy_mm+0x108/0x1b0
[  270.953358][ T5294]  copy_process+0x1295/0x3250
[  270.957864][ T5294]  ? check_stack_object+0xf7/0x130
[  270.962813][ T5294]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  270.967847][ T5294]  ? copy_clone_args_from_user+0x6cf/0x790
[  270.973489][ T5294]  kernel_clone+0x22d/0x990
[  270.977893][ T5294]  ? dup_mmap+0xea0/0xea0
[  270.981991][ T5294]  ? create_io_thread+0x1e0/0x1e0
[  270.986854][ T5294]  ? file_end_write+0x1b0/0x1b0
[  270.991549][ T5294]  __x64_sys_clone3+0x375/0x3a0
[  270.996228][ T5294]  ? __ia32_sys_clone+0x300/0x300
[  271.001088][ T5294]  ? ksys_write+0x25f/0x2c0
[  271.005427][ T5294]  ? debug_smp_processor_id+0x17/0x20
[  271.010648][ T5294]  do_syscall_64+0x44/0xd0
[  271.014902][ T5294]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  271.020619][ T5294] RIP: 0033:0x7f8e237f0639
[  271.024879][ T5294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  271.045789][ T5294] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  271.054034][ T5294] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  271.061842][ T5294] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  271.069655][ T5294] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  271.077480][ T5294] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  271.085277][ T5294] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  271.093092][ T5294]  </TASK>
07:00:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x40000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:14 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES32=r1], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x43}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r2}, 0x10) (async)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f00000000c0)=""/85, &(0x7f0000000140)=0x55) (async)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r3, 0x0, 0x0)

07:00:14 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r0, 0x0, 0x0)

07:00:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 51)

07:00:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xa002c0dc}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58)

07:00:14 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r0, 0x0, 0x0)

07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1801001400000400eb17885a35fc000f0000009500"/31], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fscache_cache\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r2, 0x1)
readv(r1, 0x0, 0x0)

07:00:14 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r0, 0x0, 0x0)

07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1801001400000400eb17885a35fc000f0000009500"/31], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fscache_cache\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r2, 0x1) (async)
readv(r1, 0x0, 0x0)

07:00:14 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x72303, 0x0)
sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="6c000000f5d2b628e5bf6522af975dc0ca38924284165f98dc6b80baebea8f32ea3fd046d4361142933ff7b5794ad2f3b170d21f925247fb8e23fb1572fefcf6138d54f4871a0ff623384da14b2b05bb4517f5a8f4b186db6ac0209e1b429c9b169336b66a3c1f3bbfd5750e6d1f78735634", @ANYRES16=0x0, @ANYBLOB="280027bd7000fcdbdf257f00000021003400a042e1f54a71be885a0bd95aa1cbc1ae1c9d19afd0210900b49ca91ecb00000014005500d4cb756a7f8e009838b5df27052307380a003400010101010101000014005500f38f6de0c7c996eb258977a4148b43cb"], 0x6c}, 0x1, 0x0, 0x0, 0x20000004}, 0x804)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

[  271.194558][   T30] audit: type=1400 audit(1668668414.550:199): avc:  denied  { shutdown } for  pid=5360 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
07:00:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xdcc002a0}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  271.236364][ T5374] FAULT_INJECTION: forcing a failure.
[  271.236364][ T5374] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  271.250189][ T5374] CPU: 0 PID: 5374 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  271.260173][ T5374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  271.270072][ T5374] Call Trace:
[  271.273196][ T5374]  <TASK>
[  271.277700][ T5374]  dump_stack_lvl+0x151/0x1b7
[  271.282213][ T5374]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  271.287596][ T5374]  ? __kasan_check_write+0x14/0x20
[  271.292548][ T5374]  ? __set_page_owner+0x2ee/0x310
[  271.297548][ T5374]  dump_stack+0x15/0x17
[  271.301539][ T5374]  should_fail+0x3c0/0x510
[  271.305805][ T5374]  should_fail_alloc_page+0x58/0x70
[  271.310830][ T5374]  __alloc_pages+0x1de/0x7c0
[  271.315253][ T5374]  ? __count_vm_events+0x30/0x30
[  271.320168][ T5374]  ? __count_vm_events+0x30/0x30
[  271.324939][ T5374]  ? __kasan_check_write+0x14/0x20
[  271.329888][ T5374]  ? _raw_spin_lock+0xa3/0x1b0
[  271.334584][ T5374]  __pmd_alloc+0xb1/0x550
[  271.338737][ T5374]  ? kmem_cache_alloc+0x189/0x2f0
[  271.343867][ T5374]  ? anon_vma_fork+0x1b9/0x4f0
[  271.348467][ T5374]  ? __pud_alloc+0x260/0x260
[  271.352997][ T5374]  ? __pud_alloc+0x218/0x260
[  271.357661][ T5374]  ? do_handle_mm_fault+0x2370/0x2370
[  271.362864][ T5374]  ? __mmu_notifier_invalidate_range_start+0x656/0x6e0
[  271.369560][ T5374]  copy_page_range+0xd04/0x1090
[  271.374438][ T5374]  ? pfn_valid+0x1e0/0x1e0
[  271.378663][ T5374]  dup_mmap+0x99f/0xea0
[  271.382657][ T5374]  ? __delayed_free_task+0x20/0x20
[  271.387606][ T5374]  ? mm_init+0x807/0x960
[  271.391683][ T5374]  dup_mm+0x91/0x330
[  271.395424][ T5374]  copy_mm+0x108/0x1b0
[  271.399320][ T5374]  copy_process+0x1295/0x3250
[  271.403851][ T5374]  ? check_stack_object+0xf7/0x130
[  271.408785][ T5374]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  271.413728][ T5374]  ? copy_clone_args_from_user+0x6cf/0x790
[  271.419369][ T5374]  kernel_clone+0x22d/0x990
[  271.423707][ T5374]  ? dup_mmap+0xea0/0xea0
[  271.427964][ T5374]  ? create_io_thread+0x1e0/0x1e0
[  271.432830][ T5374]  ? file_end_write+0x1b0/0x1b0
[  271.437511][ T5374]  __x64_sys_clone3+0x375/0x3a0
[  271.442199][ T5374]  ? __ia32_sys_clone+0x300/0x300
[  271.447143][ T5374]  ? ksys_write+0x25f/0x2c0
[  271.451486][ T5374]  ? debug_smp_processor_id+0x17/0x20
[  271.456703][ T5374]  do_syscall_64+0x44/0xd0
[  271.460953][ T5374]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  271.466675][ T5374] RIP: 0033:0x7f8e237f0639
[  271.470926][ T5374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  271.490369][ T5374] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  271.498612][ T5374] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  271.506425][ T5374] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  271.514328][ T5374] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  271.522137][ T5374] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  271.529943][ T5374] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
07:00:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1801001400000400eb17885a35fc000f0000009500"/31], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fscache_cache\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r2, 0x1) (async)
readv(r1, 0x0, 0x0)

07:00:14 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x72303, 0x0)
sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="6c000000f5d2b628e5bf6522af975dc0ca38924284165f98dc6b80baebea8f32ea3fd046d4361142933ff7b5794ad2f3b170d21f925247fb8e23fb1572fefcf6138d54f4871a0ff623384da14b2b05bb4517f5a8f4b186db6ac0209e1b429c9b169336b66a3c1f3bbfd5750e6d1f78735634", @ANYRES16=0x0, @ANYBLOB="280027bd7000fcdbdf257f00000021003400a042e1f54a71be885a0bd95aa1cbc1ae1c9d19afd0210900b49ca91ecb00000014005500d4cb756a7f8e009838b5df27052307380a003400010101010101000014005500f38f6de0c7c996eb258977a4148b43cb"], 0x6c}, 0x1, 0x0, 0x0, 0x20000004}, 0x804) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 52)

07:00:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58)

07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r1, 0x0, 0x0)

[  271.537761][ T5374]  </TASK>
07:00:14 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x72303, 0x0)
sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="6c000000f5d2b628e5bf6522af975dc0ca38924284165f98dc6b80baebea8f32ea3fd046d4361142933ff7b5794ad2f3b170d21f925247fb8e23fb1572fefcf6138d54f4871a0ff623384da14b2b05bb4517f5a8f4b186db6ac0209e1b429c9b169336b66a3c1f3bbfd5750e6d1f78735634", @ANYRES16=0x0, @ANYBLOB="280027bd7000fcdbdf257f00000021003400a042e1f54a71be885a0bd95aa1cbc1ae1c9d19afd0210900b49ca91ecb00000014005500d4cb756a7f8e009838b5df27052307380a003400010101010101000014005500f38f6de0c7c996eb258977a4148b43cb"], 0x6c}, 0x1, 0x0, 0x0, 0x20000004}, 0x804) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xf5ffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:14 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r1, 0x0, 0x0) (async)

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000034c0)=ANY=[@ANYBLOB="f41800002d00000425bd7000fddbdf2500000000", @ANYBLOB="9595712915e5b554363ba7c07095e413376ec92e44231bb93b3a7bfe27c57f27c438a5d11a62e0b329d9804e2545ff3fc201b729941240bd0efae62c6eb0f242859d713d7f1ca00dc3039b816db1771573c5a648bb2d8d9a7d2a26d4c7c9149f17a7b2b6925a294850d2539012c0fdd0823ac7ff4e1fe502490ef39d55b46285b965d5c2456bf71bf2d86656863ce76cecd3188f357d4721b321d05551465736ff61d5f0c01d72988376fa064e6d9a216e2f86c4699d", @ANYBLOB="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"], 0x18f4}, 0x1, 0x0, 0x0, 0x800}, 0x60004000)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x840, 0x0)
bind$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0xc4401, 0x0)
bind$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
readv(r2, 0x0, 0x19)

[  271.634367][ T5413] FAULT_INJECTION: forcing a failure.
[  271.634367][ T5413] name failslab, interval 1, probability 0, space 0, times 0
[  271.649254][   T30] audit: type=1400 audit(1668668415.010:200): avc:  denied  { read } for  pid=5414 comm="syz-executor.4" name="loop-control" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  271.652563][ T5413] CPU: 1 PID: 5413 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  271.676992][   T30] audit: type=1400 audit(1668668415.010:201): avc:  denied  { open } for  pid=5414 comm="syz-executor.4" path="/dev/loop-control" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  271.683627][ T5413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  271.683639][ T5413] Call Trace:
[  271.683645][ T5413]  <TASK>
[  271.683651][ T5413]  dump_stack_lvl+0x151/0x1b7
[  271.709008][   T30] audit: type=1400 audit(1668668415.010:202): avc:  denied  { bind } for  pid=5414 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  271.718437][ T5413]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  271.718464][ T5413]  dump_stack+0x15/0x17
[  271.758103][ T5413]  should_fail+0x3c0/0x510
[  271.762351][ T5413]  __should_failslab+0x9f/0xe0
[  271.766950][ T5413]  should_failslab+0x9/0x20
[  271.771292][ T5413]  kmem_cache_alloc+0x4f/0x2f0
[  271.775898][ T5413]  ? vm_area_dup+0x26/0x1d0
[  271.780232][ T5413]  vm_area_dup+0x26/0x1d0
[  271.784398][ T5413]  dup_mmap+0x6b8/0xea0
[  271.788391][ T5413]  ? __delayed_free_task+0x20/0x20
[  271.793337][ T5413]  ? mm_init+0x807/0x960
[  271.797416][ T5413]  dup_mm+0x91/0x330
[  271.801148][ T5413]  copy_mm+0x108/0x1b0
[  271.805056][ T5413]  copy_process+0x1295/0x3250
[  271.809567][ T5413]  ? check_stack_object+0xf7/0x130
[  271.814520][ T5413]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  271.819461][ T5413]  ? copy_clone_args_from_user+0x6cf/0x790
[  271.825113][ T5413]  kernel_clone+0x22d/0x990
[  271.829445][ T5413]  ? dup_mmap+0xea0/0xea0
[  271.833610][ T5413]  ? create_io_thread+0x1e0/0x1e0
[  271.838476][ T5413]  ? file_end_write+0x1b0/0x1b0
[  271.843158][ T5413]  __x64_sys_clone3+0x375/0x3a0
[  271.847843][ T5413]  ? __ia32_sys_clone+0x300/0x300
[  271.852719][ T5413]  ? ksys_write+0x25f/0x2c0
[  271.857046][ T5413]  ? debug_smp_processor_id+0x17/0x20
[  271.862253][ T5413]  do_syscall_64+0x44/0xd0
[  271.866504][ T5413]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  271.872243][ T5413] RIP: 0033:0x7f8e237f0639
[  271.876493][ T5413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  271.895930][ T5413] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  271.904179][ T5413] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  271.911982][ T5413] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  271.919883][ T5413] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  271.927806][ T5413] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000034c0)=ANY=[@ANYBLOB="f41800002d00000425bd7000fddbdf2500000000", @ANYBLOB="9595712915e5b554363ba7c07095e413376ec92e44231bb93b3a7bfe27c57f27c438a5d11a62e0b329d9804e2545ff3fc201b729941240bd0efae62c6eb0f242859d713d7f1ca00dc3039b816db1771573c5a648bb2d8d9a7d2a26d4c7c9149f17a7b2b6925a294850d2539012c0fdd0823ac7ff4e1fe502490ef39d55b46285b965d5c2456bf71bf2d86656863ce76cecd3188f357d4721b321d05551465736ff61d5f0c01d72988376fa064e6d9a216e2f86c4699d", @ANYBLOB="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"], 0x18f4}, 0x1, 0x0, 0x0, 0x800}, 0x60004000)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x840, 0x0)
bind$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0xc4401, 0x0)
bind$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)
readv(r2, 0x0, 0x19)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000034c0)=ANY=[@ANYBLOB="f41800002d00000425bd7000fddbdf2500000000", @ANYBLOB="9595712915e5b554363ba7c07095e413376ec92e44231bb93b3a7bfe27c57f27c438a5d11a62e0b329d9804e2545ff3fc201b729941240bd0efae62c6eb0f242859d713d7f1ca00dc3039b816db1771573c5a648bb2d8d9a7d2a26d4c7c9149f17a7b2b6925a294850d2539012c0fdd0823ac7ff4e1fe502490ef39d55b46285b965d5c2456bf71bf2d86656863ce76cecd3188f357d4721b321d05551465736ff61d5f0c01d72988376fa064e6d9a216e2f86c4699d", @ANYBLOB="e0ff0b000200ffffffff0a0008000b000100000007000100667700003404020008040200040402000800000000feffffb20e00000100000000000000090000000180000001800000ff07000009000000ff0f0000850c0000580d0000030000000300000000000000050000000300000007000000080000000300000070f3ffff01000100000000000000000000010000000018000a0000000100008005000000040000000001000001000000ffffffff01000000a4570000ff03000008000000810000000300000006000000c40d000007000000000000000000000000040000e0ffffff03000000ffffff7f08000000010000006b08000000000000ff0000002300000002000000018000000800000001000000200000000700000002000000001000008100000030060000060000000600000006000000400000000400000002000000060000001008000000000000ff070000020000003e0400000300000008000000010400000300000004000000ff0100000b0d00000010000005000000ff0700000000000007000000ffffffff04000000d25b0000090000000500000004000000835f0000ffff000009000000090000001f00000009000000ff0f0000bf0f000000000100050000000100000007000000080000000000000007000000f70e000000100000090000000600000007000000b06a000406000000040000007f00000000400000030000009c0d0000d7000000000800003f000000af00000092890000070000000000000003000000020000000800000001800000040000000200000080000000050000007500000006000000070000000000005003000000843600000600000005000000030000000104000003000000010100000002000009000000040000000200000000000000040000000900000000000000010000001f0000001400000005000000000000000000010001000080050000000100000003000000ffffff7f000000800000000006000000ac7500000100010001800000950000008000000009000000f606000007000000000200000500000010000000010000001c000000d006000000000080030000000600000008000000a90b000002000000040000000300000001fcffff537a0000010001000100010003000000030000000200000000080000bb00000009000000060000003f00000000000080050000000900000032c80000050000000ec4dc180010000001040000200000000000000002000000000000028a73ffff08000000090000000100000006000000010000000300000000000000710500001f00000007000000050000000000000005000000ff070000090000000800000040000000090000000100000040000000c7244040080000003d3cffff0000000009000000000000000000000009000000ffffffffff7f000007000000080000000300000000000000ff0300000300000009000000b50000001400030064756d6d7930000000000000000000001400030069705f767469300000000000000000000b000100666c6f77657200002000020006002500000000001400100000000000000000000000000000000000060005000300000008000b00050000000a000100626173696300000044140200cc0b03000001080009000100766c616e00000000280002800600040088a800001c000200f3000000e000000000000020040000000000000003000000ad000600707c7fd9569bff91e9cfee4698301bdc11ee16af6da848d1ff371374ae9414c21b6efc54eddcc9a7b48f5d0dffe89ff45932ca7524cf10467256e12905b51d820b1e409e05e945ebb9a6ede790486da49989adf13286683a30ff10472297d44dc3d42814da979a3722a53556b100679f1793497265b02c6ab7c580a00c02f2088e2ea5bc3d2063c0f26ee568d7a81e71f49bccec2f0d2f57c53925db3038f72b30cd02835e92bced1c0000000c00070000000000000000000c00080003000000000000005801110009000100766c616e00000000540002800600040088a800001c000200040000000500000005000000070000000700000001000000050006000300000005000600030000001c00020005000000ca0000000500000006000000302c000002000000dc0006006241604e9c2683e2790bf8e2c4d66e605e8722a8dcfa7017da6f8379c35acbabd18e91edc822074cd98da87c52fc31cfa5ec51494e70ce913767a01363b430e7fb18802bc45887ca1a8072856f161a57625c9a0810c28908f5008cc215050cd6b18b33f9c30b30fc37326ce06bcbbc3b3eccdcf8addf2da7e8d25e326d75344b500afb57efaeb645d1d29a56b068a5dbd2123b351c8f7ed6b216d22525aad99a7a7514471ca69708cce9db177336b380f6c94d80d0c08886f447371ef4573289ec45c6b5b560840699eb81ef74787f477e4e4afdb86884fa0c00070001000000010000000c000800010000000200000064051f000b000100706f6c69636500005c04028008000500ff0f000008000400018000000c00080000000000000000000c000900a80000000000000008000500100000000c00080009000000000000000c00080007000000000000000c000900a202000000000000040403008924ffff6d0000000100000040000000bb000000a307000004000000020000007a08000001040000001000000000000011a200000300000001000000ffffffff0700000005000000000400000600000000000018ffff000000000100010000002e00000000000000f30000000700000008000000df0800000000000004000000ff00000004000000000000043f000000006000001f000000010000009500000001040000ff000000030000000100000020000000040000008193d57e2faf05b65715cf069a072c00000002000000050000000800000007000000000000000200000003000000040000000700000004000000ff030000beda00004f0d00000600000003000000010000000200000000000000b6f5ffff040000000500000009000000060000000700000005000000070000000600000000000000ff7f000008000000050000000600000020000000400000000900000001000080000000000100010005000000ffffff7f0200000000010000ffff0000040000000500000000001800010000800400000007000000018000000000000800fcffff05000000060000007d0b0000294a0000ff07000040000000ef000000010000000700000006000000ff0000000200000006000000ff7f00000600000001000000020000000104000009000000ff000000ff0f00000700000005000000010000000700000000080000070000000700000040000000f70d0000c30400001017bd0a00000000ff00000001010000f7ffffff000000807f000000040000001586000004000000ffff0000060000000200000006000000040000000300000003000000040000000300000000000000060000000500000000000000080000000104000003000000ffff00000200000002000000030000000180000004000000000400000001000000f8ffff020000006f43000001000000b6000000810000000080000001010000010000000500000081ffffff050000007fffffff08000000161e0000000400000900000008000000080000000010000003000000200000003a989920050000000000200000002001ffffff7f00000000ff010000000100002000000008000000e00000000300000005090000060000000900000004000000040000009c000000f2e4000008000000030000000500000005000000fbffffffffffffff7093000001000000010000000000e000000000800030000081000000ba030000bf27000008000000ff7f000004000000fffffffffede000007000000010000000500000020000000010000009500000004000000e10c000007000000ff07000002000000ffffffff040000000700000002000000020000000100000000000080f9ffffff41ef000009000000ff7f00000100000040000000070000000200000005000000000000002000000001000000dd120000dd000600472ed2117916a8b8cf3b9bc521f76cd2fcf64782047f0990df228331ca5ca057858a89925daf6e6cf303f4b6e14d5528a447a31a80bc0449a01e96b25bb2572959f47551c2c24d5daa5c2f0bf02fd1c2250e02ddf0caac2234bf9a4bd19b13c575aba2c4fb8c29046984ebf95e64abbc10ffd1b601a413c9a34c4386d57e4cbe9a09878cb6c58a319d01921545af655b1643684cbd87d79b4daf246bcae34f0ebde82decee99e8b04669a0809729fca4a9dfa2fe9e7ed54d25746cbfa7c23bc74f69961d2cadc8850de0729efa7858ecd55034abd4add1705e0002000c00070001000000000000000c0008000200000001000000dc00050009000100766c616e000000001c000280050006000700000006000400810000000600040088a8000095000600d6c60844a93a6ece8d7ff69da23e153636ad120509b63c488fc8d903862836adc32a640925b1fb7210aee9d82f4478c0b3de48b74d523b9320dc70b195eee14e0946dd6be70cdcbfc2c600f0937dd677d0b8f4bbb77e8817be7feefb40a06b16ac872d74ab337ab4c9da8f4722aa63f18cc612d24c07e60fc8e110d13b441aeccf2ee59b7b408806f6447bd86612fe1e640000000c00070001000000010000000c0008000200000000000000300116000b000100736b626d6f640000300002800600050003000000240002000000000006000200070000004000000007000000000000000000000000000000d500060049222203900372411ab5195ce177e971926ece5409beaa16abe1d5b1ff836b5f52e24622e1c6a7efd1a982df7a2bb4f1feae05b81ea17b2c6d05f5ca7209c74003dff66326003549ed017edb953cdd20ce69cbaeac740bcf9b1774b6fa604c3757e31ab6a30e3b0d364567d993d93a1a5579cfc3b77ce23ee8a57abe73d37578bcc8293554314aad98cac40a22d9ef36f9902410f9e68076f46c89ff8fa4039df8291bcf622de26c4f0a8f9772f2e127a545f18ae23eda3d11ce0e1e365caf23ea92933413e56bcda7cef3d18e0c539aa60000000c00070000000000000000000c0008000100000002000000c000160007000100637400002000028006000d004e220000140008006c9599ce3002752ffeea99078a69918d7a000600f536f096e09e254eabea69f408b4c35dc667ae11b9f8d7e9ed9619524efdd7c5c9a84563e2b908e7a1c715d38042cddf9e13a024c79662d0d79764feb76d1c9e9caa0d8bc8de2db4df960e3066d8503f9e9fcbc81c2de1d782758824074fb9541e21531fdb28d178dc2cb50458f10f58b773e4458eee00000c00070000000000000000000c000800020000000200000040010500090001006d706c7300000000600002800500070006000000050007001f00000005000700f00000000600040091000000050007000100000005000600050000001c000200080000000010000002000000000000000100000003000000050007001a0000000500080000000000b8000600de78a36ec2139fe7aca45933423e63deefbdc38cbb63858204dc6cee75e4dc91f8f0b8eaea37d711453f20b9c9ba81a90d4c416a053352c12cc7b5478be23dc762991431785453479ef82f6f494da7975895c980238edd26f035818c2649756220242b4c4dcd0afe1a4d4705a1b0db636b1ac8947e4838f342ed077b21f816b576a7afb0f73068d327bf346d11bafc8f46129a886ad0f5d437a5456dbcbed7fdc89d54ee39b10c00070000000000000000000c0008000200000002000000100004000c0008000500000000000000200004000c000800810000000000000008000500308c00000800040001010000440804000c000900af010000000000000c00080007000000000000000404020000000000a0000000f8ffffff01000000080000003ba5000004000000fdc0aa3a720000009d000000040000000900000000000000090000000000000009000000010000000500000001000000060000000800000008000000a00700000004000000800000ffffff7f00000000040000000700000001010000008000000600000002000000fb05000004000000000000000100010035a50000000000000180000000000000b15c000000000000ffff0000010000000100000000000000ff0000000300000001000000030000000200000008000000047f8c0d0200000000040000080000000200000007000000ff0f0000ffffffffff0300004e00000003000000020000000001000001000000030000000900000000000080b22c0000040000003f000000070000000008000000000000ff0f00000500000004000000804d0000ff0f000080000000030000000600000006000000200000000900000005000000fdffffff07000000ff7f000001800000fcffffff000000000000008008000000800000002000000009000000800000000700000002000000030000000180000001010000f3ffffff000000000000200009000000070000000004000004000000d50000000180000003000000ffffffff6c05000003000000010000006a000000050000000600000009000000070000002000000005000000ff030000fb33000002000000ff0100000000000009000000080000006186000063000000860000000400000000000000010000000900000007000000080000000000000020000000880c0000070000000000000000000000ffffff7fe244000001000000feffffffff0f0000ec00000001000000ff7f00000600000006000000030000000700000004000000cb0000000900000001000000ff000000e1ffffff330000000200000003000000feffffff07000000ff030000000000008000000079080000ff00000006000000050000004c010000010400000700000000020000000002000008000000010000070000000800000006000000040000000b1e0000200000002000000001000000ff7f000004000000050000000001000002000000020000000300000003000000f8ffffff010400000600000009000000ffffff7f010000003f000000018000000700000020000000ffff0000040000000000000004000000020000000100000001000000990600000300000004000000070000000fd500000300000004000000010000000700000006000000040000000400000005000000ff0700000700000001000100000000000500000003000000df0400000004000009000000ea0000000600000008000000030000000700000007000000090000005a0000000600000002000000000000000400000009000000ff03000000800000060000000c00080001000100000000000c0008005e0900000000000008000400ec647d2104040300030000007f00000000000000000100000800000080000000030000008d7800000000000000000000ff00000001000000050000000800000009000000ff01000005000000080000007f05000026edffff07000000ff0300000300000001f8ffff0700000000f8ffff010000000500000095f8ffff02000000000001007100000001010000600600000900000005000000fd000000000100000002000000020000000001007f0000000800000000000000ff7f0000feffffff0500000001040000c3d8000080000000001000008f01000004000000040000008037000007000000495b0000d70b0000c00100004000000001feffffffffffff03000000ddfc000040000000640a000008000000ff0f000003000000000200006400000040000000f48a08000000000001000100000800000200000003000000010001000001000000000000050000000600000000000000ff00000005000000740000000000008000fcffff7bea0000050000000700000006000000b00f00000000008001010000ada60000050000000500000000000000008000000400000005000000010000800000000005000000ff0f00000800000000000000ffff0000090000000400000029ff0000e80000000800000001000000ffffffffbefbffffd60b000000800000090000000500000000000080000000020600000000000000feffffff018000002c00000003000000420b000009000000000000000300000000800000030000000400000005000000ffffffff070000000000000001000100ff7f0000ff0f00003f00000009000000050000000000000001000000010000000008000003000000050000000800000001000000305300000104000000000000ff00000005000000090000000300000001000000cd0900004c6e00007f00000001040000138f00007852ffff8b000000ff01000001000000535a00000000000008000000000000003f00000008000000070000003f00000004000000ff070000791b0000000800000900000007000000010100004808fffffbffffff92ffffffffffffff0900000000010000400000000400000004000000020000000000000000000000faffffff02000000400000007f000000af0000000000010008000000070000000400000000080000b60000000080000004000000a10f000000000000ff0700000200000000feffff09000000000001000000000001800000010000000400000002000000f68400000600000000080000f90b00000900000008000000080000000800000006000000ffffff7f80ffffff0300000007000000000000000400000000000080400000000900000001000100ee000000040000000900000007000000010000000100000004000000e2090000880600000010000000000000eaffffff020000002c1e7ab19591d224c9fd65cf6a6c867059d9900d54c07237ca71e20227af4c718365e32544ed72c0bb12b9684e8ca94765d37fb20cdf7edecb6dda5cd2d3ed3f06a463c894e42f88f1986b7768ecae0a1cbaf8dfa13ffdd821e0991d42864f96d9c5388ba901897e2c45436a34f4c3eec5ee788031497a3bf4cfd282e3fc9b30de6308c00826a11c8503b390d058892eec50e65ad2cb8c0cd2ee"], 0x18f4}, 0x1, 0x0, 0x0, 0x800}, 0x60004000) (async)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x840, 0x0) (async)
bind$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) (async)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0xc4401, 0x0) (async)
bind$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) (async)
readv(r2, 0x0, 0x19) (async)

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r1, 0x0, 0x0)

07:00:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x700000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4100, 0x0, 0x0}, 0x58)

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000034c0)=ANY=[@ANYBLOB="f41800002d00000425bd7000fddbdf2500000000", @ANYBLOB="9595712915e5b554363ba7c07095e413376ec92e44231bb93b3a7bfe27c57f27c438a5d11a62e0b329d9804e2545ff3fc201b729941240bd0efae62c6eb0f242859d713d7f1ca00dc3039b816db1771573c5a648bb2d8d9a7d2a26d4c7c9149f17a7b2b6925a294850d2539012c0fdd0823ac7ff4e1fe502490ef39d55b46285b965d5c2456bf71bf2d86656863ce76cecd3188f357d4721b321d05551465736ff61d5f0c01d72988376fa064e6d9a216e2f86c4699d", @ANYBLOB="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"], 0x18f4}, 0x1, 0x0, 0x0, 0x800}, 0x60004000)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x840, 0x0)
bind$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) (async)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0xc4401, 0x0)
bind$bt_sco(r2, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) (async)
readv(r2, 0x0, 0x19)

[  271.935595][ T5413] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  271.943428][ T5413]  </TASK>
07:00:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 53)

07:00:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfbffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000100), 0xffffffffffffffff)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x10, r4, 0x14cbc000)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r5, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r6)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0)
sendmsg$GTP_CMD_DELPDP(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r1, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@GTPA_TID={0xc, 0x3, 0x2}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048060}, 0x48044)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r8, 0x0, 0x0)

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000001680)=[{{&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10, &(0x7f0000001580)=[{&(0x7f0000000040)="d4d265cb03cbc298abc4f40f7404c5cfc0439f6f0452cba103c1e0d5049242ad96620ef2a2fb10d2e64f7d3af2527d67641daf9064cb58ce7a60af098437e8f16ef4885aa08c6be1534d7e903413fe3ad094398520bc0d30f02199429d3b032cd4a294197bea910fcac2341f6fd96b3a9c3bfa37374f113a92e95491449c296de4b513838f0d65ad79557bef55f3f14b463edbf1849919aeda7a3d5fb4dfa0c6c21eb1c85524d25b339f4487294699d88d51aec96f13826400b8e22b46f80f43150c59109f4dee7f3825f1f14b8f5679e519db757e400373047041fef9b1f6e31722fa4ce0", 0xe5}, {&(0x7f0000000140)="e069a7c1390a016383e381b0356f5b55d6398762a87e00be49615503265863ac41393fcf0808bf3921c8a1374de7c85dc98a28fcd07c2a6748ab7941c0de18e4484dc0bfaba06f5997f1135d10328fe65015fe82f14a684c6efe25dc32254c459f38d2bc04cce1ee60cfe0f3babd126f94e41ed71962ff4e212a6704122d8ffb533ba7eb46482a33a3a95929aeed14a7f47f176a5b169adbd0814e31a6007d555daea38fcbc09b513363dcd8bb35df800f5908a5c9d6411690467d9df23cc2adc01b384b599a0c0e77b4613765c6615177d3", 0xd2}, {&(0x7f0000000240)="c5c706890466218e155c3e928e5360566dccd60c29ac70b8510381d9616e41c39e20683ae2ea5daf45405293e9738b0ced4f4c9879a8b3b2b5e6ef3dd885999a9f6087a06a4f6e834dfe90d31e5a3a8478d35205a1985565fc4924cab3d1c246020e0da7bbea1067d4ab32fa63bb450f830b5bc9291535fee5b564d111a82a81114b32fbae0940321572", 0x8a}, {&(0x7f0000000300)="32d28127159d5d2eba494a1b77c096f7c0a832c3b1b5c1c59be4bf7c55be3488f393dbdf32c092c0996c57ddcf92bd3310ab7d88f6c096b19cfc25bfbffbf671ba09bdd97dfef97f11b3fdfecff8b60db727c7b4b10946bbbe7c64271632ce8eea3cb9c71111abcacb9e5aff6db3cf5a5dd6875dc6e1b10bcedd", 0x7a}, {&(0x7f0000000380)="2c13acf31be1f6ff6442843c9d70a04fee27e72098fd80dab08b20ac3b7e1eff7dd65551c435b5e967a715d36ef6c8f41bcdd148276bacb4116a4a41fdd88411198f8260aedf3377eed94e34bf8105b2ff49b64aa13293bbe85e5fb237a3537b824abba51c529c7cf427823168506b48afa23c62b4f70667237dc375f559a8b896ce78d2e1358275ce157c5e3eaf8d6a49292fdcda5182e65fffb331e1a2aec8b9f9d5c7c8b0f2fcd27e62fde8cb87da1e485c85c30f06467a6c0c025a4a6fc217e07df3bc4cede28eb2a90fac2fb4a51010f4f4ac54", 0xd6}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="beaf22ba361052306d5092e330b650aac1848f1313363137154c25fc4b56ced3a0d33268150600377f7ae9f66139901bac0ef78052137e161fce1b15c7810679878cf8d877c1ed433f59d31f76a73f3d4231a6dca58390b5e140fd3093a6c0f2036ab91e0ceee34031aacd833c189f5baa7ad88c4f9f08ae944789c241f2db00512bf9", 0x83}, {&(0x7f0000001540)}], 0x8, &(0x7f0000001600)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3d9c}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}], 0x68}}], 0x1, 0x4000010)

07:00:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x8035, 0x0, 0x0}, 0x58)

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000100), 0xffffffffffffffff)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x10, r4, 0x14cbc000)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r5, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r6)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0)
sendmsg$GTP_CMD_DELPDP(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r1, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@GTPA_TID={0xc, 0x3, 0x2}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048060}, 0x48044)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r8, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_genetlink_get_family_id$gtp(&(0x7f0000000100), 0xffffffffffffffff) (async)
pipe(&(0x7f0000000080)) (async)
close(r2) (async)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x10, r4, 0x14cbc000) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r5, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)) (async)
close(r6) (async)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0) (async)
sendmsg$GTP_CMD_DELPDP(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r1, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@GTPA_TID={0xc, 0x3, 0x2}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048060}, 0x48044) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r8, 0x0, 0x0) (async)

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
sendmmsg$inet(r0, &(0x7f0000001680)=[{{&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10, &(0x7f0000001580)=[{&(0x7f0000000040)="d4d265cb03cbc298abc4f40f7404c5cfc0439f6f0452cba103c1e0d5049242ad96620ef2a2fb10d2e64f7d3af2527d67641daf9064cb58ce7a60af098437e8f16ef4885aa08c6be1534d7e903413fe3ad094398520bc0d30f02199429d3b032cd4a294197bea910fcac2341f6fd96b3a9c3bfa37374f113a92e95491449c296de4b513838f0d65ad79557bef55f3f14b463edbf1849919aeda7a3d5fb4dfa0c6c21eb1c85524d25b339f4487294699d88d51aec96f13826400b8e22b46f80f43150c59109f4dee7f3825f1f14b8f5679e519db757e400373047041fef9b1f6e31722fa4ce0", 0xe5}, {&(0x7f0000000140)="e069a7c1390a016383e381b0356f5b55d6398762a87e00be49615503265863ac41393fcf0808bf3921c8a1374de7c85dc98a28fcd07c2a6748ab7941c0de18e4484dc0bfaba06f5997f1135d10328fe65015fe82f14a684c6efe25dc32254c459f38d2bc04cce1ee60cfe0f3babd126f94e41ed71962ff4e212a6704122d8ffb533ba7eb46482a33a3a95929aeed14a7f47f176a5b169adbd0814e31a6007d555daea38fcbc09b513363dcd8bb35df800f5908a5c9d6411690467d9df23cc2adc01b384b599a0c0e77b4613765c6615177d3", 0xd2}, {&(0x7f0000000240)="c5c706890466218e155c3e928e5360566dccd60c29ac70b8510381d9616e41c39e20683ae2ea5daf45405293e9738b0ced4f4c9879a8b3b2b5e6ef3dd885999a9f6087a06a4f6e834dfe90d31e5a3a8478d35205a1985565fc4924cab3d1c246020e0da7bbea1067d4ab32fa63bb450f830b5bc9291535fee5b564d111a82a81114b32fbae0940321572", 0x8a}, {&(0x7f0000000300)="32d28127159d5d2eba494a1b77c096f7c0a832c3b1b5c1c59be4bf7c55be3488f393dbdf32c092c0996c57ddcf92bd3310ab7d88f6c096b19cfc25bfbffbf671ba09bdd97dfef97f11b3fdfecff8b60db727c7b4b10946bbbe7c64271632ce8eea3cb9c71111abcacb9e5aff6db3cf5a5dd6875dc6e1b10bcedd", 0x7a}, {&(0x7f0000000380)="2c13acf31be1f6ff6442843c9d70a04fee27e72098fd80dab08b20ac3b7e1eff7dd65551c435b5e967a715d36ef6c8f41bcdd148276bacb4116a4a41fdd88411198f8260aedf3377eed94e34bf8105b2ff49b64aa13293bbe85e5fb237a3537b824abba51c529c7cf427823168506b48afa23c62b4f70667237dc375f559a8b896ce78d2e1358275ce157c5e3eaf8d6a49292fdcda5182e65fffb331e1a2aec8b9f9d5c7c8b0f2fcd27e62fde8cb87da1e485c85c30f06467a6c0c025a4a6fc217e07df3bc4cede28eb2a90fac2fb4a51010f4f4ac54", 0xd6}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="beaf22ba361052306d5092e330b650aac1848f1313363137154c25fc4b56ced3a0d33268150600377f7ae9f66139901bac0ef78052137e161fce1b15c7810679878cf8d877c1ed433f59d31f76a73f3d4231a6dca58390b5e140fd3093a6c0f2036ab91e0ceee34031aacd833c189f5baa7ad88c4f9f08ae944789c241f2db00512bf9", 0x83}, {&(0x7f0000001540)}], 0x8, &(0x7f0000001600)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3d9c}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}], 0x68}}], 0x1, 0x4000010)

07:00:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xf0ff1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  272.041249][   T30] audit: type=1400 audit(1668668415.390:203): avc:  denied  { write } for  pid=5453 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  272.090445][ T5466] FAULT_INJECTION: forcing a failure.
[  272.090445][ T5466] name failslab, interval 1, probability 0, space 0, times 0
[  272.105152][ T5466] CPU: 0 PID: 5466 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  272.115222][ T5466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  272.125294][ T5466] Call Trace:
[  272.128414][ T5466]  <TASK>
[  272.131202][ T5466]  dump_stack_lvl+0x151/0x1b7
[  272.135824][ T5466]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  272.141086][ T5466]  dump_stack+0x15/0x17
[  272.145163][ T5466]  should_fail+0x3c0/0x510
[  272.149424][ T5466]  __should_failslab+0x9f/0xe0
[  272.154106][ T5466]  should_failslab+0x9/0x20
[  272.158451][ T5466]  kmem_cache_alloc+0x4f/0x2f0
[  272.163042][ T5466]  ? vm_area_dup+0x26/0x1d0
[  272.167385][ T5466]  vm_area_dup+0x26/0x1d0
[  272.171553][ T5466]  dup_mmap+0x6b8/0xea0
[  272.175542][ T5466]  ? __delayed_free_task+0x20/0x20
[  272.180489][ T5466]  ? mm_init+0x807/0x960
[  272.184568][ T5466]  dup_mm+0x91/0x330
[  272.188300][ T5466]  copy_mm+0x108/0x1b0
[  272.192206][ T5466]  copy_process+0x1295/0x3250
[  272.196724][ T5466]  ? check_stack_object+0xf7/0x130
[  272.201673][ T5466]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  272.206613][ T5466]  ? copy_clone_args_from_user+0x6cf/0x790
[  272.212257][ T5466]  kernel_clone+0x22d/0x990
[  272.216685][ T5466]  ? dup_mmap+0xea0/0xea0
[  272.220849][ T5466]  ? create_io_thread+0x1e0/0x1e0
[  272.225710][ T5466]  ? file_end_write+0x1b0/0x1b0
[  272.230398][ T5466]  __x64_sys_clone3+0x375/0x3a0
[  272.235084][ T5466]  ? __ia32_sys_clone+0x300/0x300
[  272.239943][ T5466]  ? ksys_write+0x25f/0x2c0
[  272.244291][ T5466]  ? debug_smp_processor_id+0x17/0x20
[  272.249490][ T5466]  do_syscall_64+0x44/0xd0
[  272.253756][ T5466]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  272.261470][ T5466] RIP: 0033:0x7f8e237f0639
[  272.265721][ T5466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
sendmmsg$inet(r0, &(0x7f0000001680)=[{{&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10, &(0x7f0000001580)=[{&(0x7f0000000040)="d4d265cb03cbc298abc4f40f7404c5cfc0439f6f0452cba103c1e0d5049242ad96620ef2a2fb10d2e64f7d3af2527d67641daf9064cb58ce7a60af098437e8f16ef4885aa08c6be1534d7e903413fe3ad094398520bc0d30f02199429d3b032cd4a294197bea910fcac2341f6fd96b3a9c3bfa37374f113a92e95491449c296de4b513838f0d65ad79557bef55f3f14b463edbf1849919aeda7a3d5fb4dfa0c6c21eb1c85524d25b339f4487294699d88d51aec96f13826400b8e22b46f80f43150c59109f4dee7f3825f1f14b8f5679e519db757e400373047041fef9b1f6e31722fa4ce0", 0xe5}, {&(0x7f0000000140)="e069a7c1390a016383e381b0356f5b55d6398762a87e00be49615503265863ac41393fcf0808bf3921c8a1374de7c85dc98a28fcd07c2a6748ab7941c0de18e4484dc0bfaba06f5997f1135d10328fe65015fe82f14a684c6efe25dc32254c459f38d2bc04cce1ee60cfe0f3babd126f94e41ed71962ff4e212a6704122d8ffb533ba7eb46482a33a3a95929aeed14a7f47f176a5b169adbd0814e31a6007d555daea38fcbc09b513363dcd8bb35df800f5908a5c9d6411690467d9df23cc2adc01b384b599a0c0e77b4613765c6615177d3", 0xd2}, {&(0x7f0000000240)="c5c706890466218e155c3e928e5360566dccd60c29ac70b8510381d9616e41c39e20683ae2ea5daf45405293e9738b0ced4f4c9879a8b3b2b5e6ef3dd885999a9f6087a06a4f6e834dfe90d31e5a3a8478d35205a1985565fc4924cab3d1c246020e0da7bbea1067d4ab32fa63bb450f830b5bc9291535fee5b564d111a82a81114b32fbae0940321572", 0x8a}, {&(0x7f0000000300)="32d28127159d5d2eba494a1b77c096f7c0a832c3b1b5c1c59be4bf7c55be3488f393dbdf32c092c0996c57ddcf92bd3310ab7d88f6c096b19cfc25bfbffbf671ba09bdd97dfef97f11b3fdfecff8b60db727c7b4b10946bbbe7c64271632ce8eea3cb9c71111abcacb9e5aff6db3cf5a5dd6875dc6e1b10bcedd", 0x7a}, {&(0x7f0000000380)="2c13acf31be1f6ff6442843c9d70a04fee27e72098fd80dab08b20ac3b7e1eff7dd65551c435b5e967a715d36ef6c8f41bcdd148276bacb4116a4a41fdd88411198f8260aedf3377eed94e34bf8105b2ff49b64aa13293bbe85e5fb237a3537b824abba51c529c7cf427823168506b48afa23c62b4f70667237dc375f559a8b896ce78d2e1358275ce157c5e3eaf8d6a49292fdcda5182e65fffb331e1a2aec8b9f9d5c7c8b0f2fcd27e62fde8cb87da1e485c85c30f06467a6c0c025a4a6fc217e07df3bc4cede28eb2a90fac2fb4a51010f4f4ac54", 0xd6}, {&(0x7f0000000480)="fc1e5b43d84a446f3088c9bbf3a8a212d926af793a7797aa16ec65049fb916323b13ceddcbe9fac0ee7745a41eb190698b0b357ccb379ecbac2a174f327cd1cfe590b5e39eeef6ad9cca76eb5898d10d1468f868705d9e0ed7defa1a9a76cc7aad24b3c6abb976b436051da2c277bb2bc6cc82a7c43ad589ec3b8aeb73a63a01f24070c2d4de44448d9d16a10eff6ac8120acf6a89a7d455e4b8fd69bb7205b6d612dfe0ae91bddb9916c76ea24652ff9c257727ab3f98f66e53116c81960a163865ebe18bae1e3e67836a605224d4eb00970896deebd3926dcb980dcbbf00a38e687264bd77b9d58203a294471b6110a38141003f00d4932888a874cd971fdd3cbbea41c2a2a34e8a43c775d369c3831ab768a65f500adb66f131fb7fa45e63d8740b6ef59035cb330a8041e4d179a8f3d57f26bb9a7cb7f4ff22c22d1572261b27075a3c8a32943c6734d428af7acb4ef643b3e16ee6acba53f13e9f0aa218c9d2e55d90868f6c9dc11bb3e2ac88774479c20dc5186c450e94dba4ff89596d3794a9a49e9a66e935df576ce1730b7c852edee16324cc6b2bad351321e8b0f6e9bf464e898824aaab357c321fa5daacccaa81d6a9a2ac8aace13e321b5658bd49dd2250acbc582778ce01f0a0f884e3656c246ce73dad67f4b2259df30e0d324ab2cfabe9596d1d4e12e8eaa948b32726bfd1c3cf05275c11e4b7999aae3edfd419779ba9f796a20cfb6addf74365345a9bf999cf2cebcd7d661d18f7b9c9c3364b990a54280904b12dbae1ed7c77dcc6d55dd6f5d0ae7d28b9cd8f472a4ce6b4f52fca967db15c35e8bb6faf0fa324d02ad4370fe19b4388311388fa4e9b77eaa93a1cfd26de1735840fe5e6421d7b3f794b1fd52731a65903c5ba6cf8dec48a13568ef7c0d85bbc5338fa5690f3e4786c1174db3c6513134d2e89e8b342f00d3b117ccf59d26936a2998eacf3f6c45ee227b6ab2797fb89a55017a9eb1f87d17f712c8f1f56e390c98400aad7821f89cb84e78a8145456203b97597dafa7623d52ff84a2b823a040b53339c5ed71f3d1a1d5952bdaf51d64b7ca35daffe8a3a05a07f558de0c072d8535ae0ecaeda044b4123db41ee04f61d67eb7301599e99457d8547ed6b5350e7c6703dcba5c95b3fe177f527ba76d0493b86a1ed200545393a1a4eafa53180ca4e15aba83bf067f6f66fca6a11dae5de5c8906cfede0dfba6c96d9b32f25864fa6e6f2bed2b52e52509a6c08014408667f8f8945a6f5ef4ae741af0af365b0d944a98ce6a1d2990a3912287378cd5adf156510c8b60e0b80c74dff0dd0a27a47225739637e91e651eff3ebb6068dbc28e039984e0bc097433fb73d3b9335bda45933c331636400948d3644fc6565776c6e83890344b9b333702281f06b7b24ba709be8a25680a501b6931d1797aee83a1e741c4c54c0de8369a6e277685a87527e9b48385bcb34bbdc492201178da2b00b6fb038a9f7b8279bede0346866d3f70e07e4f8e5be0bbdb264c3f5555f057685ba7f4afeef7c2aeacbd163450889b834e4ce541546c516fd0a1f760bb6163863e8c4e9880f09df919f67600d1dd550bb53cc6c04487bd9533bc3c480ad8ba3689e9fbb820901c75ca4c2760db272c3486d0b01226dca4d21dd115e881b1e7e698bd4d8cc55c7c9d4d090dad0aeb5164fc575b4ed8639dfb7d72f9a5158d38dd01da6d5da683b216dec1ac9cd3b11cc0dc77cb5c94a39e36314df6fe2ec38825fc62ba2f5ed77572284f71d5722b8b067c5137ce7bc26c5a74b5fe7047fc85343594e2b9263bcb77e86ecef80cd5181c8ca681311b3a2063a14ce7a73f100d86a278668bf2d4aa5e76c6878e5a85727b1b646335733c33d0e256f2679cb6a8c6da5e2df6f09933bb6fd9046305a6a58a92118566a3c0a9a843d8980b51b54065c9294cdde4f4c6596529700367e8e699244d572c48c5a4a036ce15565033b3d3b2f55250a9d8df85f9b292e18d1955113a5694484dd48e33f52cc7cecddfcad49e95b2c0667a604676f8db69008e66c9314340fc8344bbe389e3aa1b4b68c12a055956294cd40a575908b5fbfd7a87a74c2db788b08bb8bbbd9f51b0ed6a1915b970c22aab9952124131fd2d492c67c2cebaccc748ef8b16a4af770ebb202ce15778eca8bf33cee12a7592f8a7ec7eaaa7cbcccbc79b4abab693cf37c3df531bb601973d3a8f7e2be785061af3096590b2e59e9cdc0c1d7dc2b68cedd5c14c5aa3ab98aec0b66335f9016daa19e86db275648385f150b4aced31528f4189489cdc66e6d1749c0734066b5f2db3d6ed3a1a5caf098130a29aeb854af8dd92e9ad8437c7f6a7cb4f638e3a04abc38fb494520273be4165b405d22917e8d1d471a0b93f06834010732af10b6118576963092183e7073cb7ea30e87e5986ca6414a5557fdbc1fd114dd5e9fff48bf8a0648666cc199aa10a694e138540b0c4b7a1118147d5d818cd0172f7d4f02ce8099e9ff67982e8f7506b6ff3671a7eef3102f0701c379223c57cc81fa25c81ea0c951948a2c7b50c4d3f3c54242aa885e0c970750519735f79a2198c633092e8e0903f93716e3be0d8b5af79de7324ee7b3f52036d04ed74418e35cd448c0f0960c7b8abeb7a14712d00e7fbe781a596af1c9357681db9b1bcc89d0bbc295f5459a5c5436d97f20ba4ffb880ee028e3db15d8fb280d8a1de3b9f19516313957e400e0501f76d4b32db9c21ca709191627c569ef27ff96447751113eee68c1d9f776f13b24e95aa43f9b8c7038916b2dda7cf2c226e61cc0bf3015f6a6871c16fb0fd48e2bcac1497a1c17493ff5644cfac74277bb92cc36380805300a666ddda19c8eb68259023bc96f106afcfa3ce0ca2ee3d25a949e96367a6e268cec01b0d460a4433c108bae6dfa906bbc9cd97eabb369a629edc048916a498350a1028231d88059e3c9dc9ff08355fb8de241e0d01f659a0559c19c532fb06d1670bcc51563e0e1cc0345ddcff6822e54443372f26422f3188942958301e3b6d9ee029920559c46f1433e5550c778f30daf3fd2eb7755bd6daaad27189c0e73d97090597a3520065412db4adebb961dfee50f966caaab1b0aa963e0196119533382abb89c02edbf375f5eac4fc220e553165cd96d8144b8a99101a365b2dcf2252a6ca89bad1e978d167e30cae9dfcd4a5515f64595e8170bab343efd7054faea89b19d48430c629ff676e292796628c189f48b24bca821a6ea8d0442fc1f20200e80b376fbc1fc10cb076a15da88f50c2559a7f11eb5fc41f8305dc24a58306a055b6484f319d568c298d1ef264b82d85cae4dfc42f194d7414a697008b2d34b90b0c179b91fcd3234e937a3092fe6dfbe5eafd6446be1a5462581359c787d541c63d43b43f8ad1f94da076877c725f8847661a5b85ded97887836ef72603e2617ddcddcee708dd45068bbb37393ac5a0bbf770d705557d7a3ea1f62c2176b66bed5a5a3e7356ad2abf176b128e1d8cb4edb15aa6537634113fb7a78d993dba7e80ca274cad57a9229b2bbf3603bebd34d0e48be74a847a5173461eabc7ef6ff84adfaf725e6078edf5e62f8bf8dfc04049fd963b1333361363bee33a4b754908262ec0116f8cc0b018fcd9fcf6c57b18c3b5a3068bee7e22d8bc79b2ad02e7d283c55b7c5ace1c60242aa7ad9949825cf51562bc66bd56834f9d1d9f55756e9463950ea8bf873edda7c14d98072afcd87707bf05d8c7961d1cb1fb11230bcd3e16e330f7a87a8f230f4937cc60734192e9a0f87a5ea219ae0dd6b71b2fb17c7fb06a83a251141b6742869b9456ded2067f7aeed428876e796edbceb63e0aa1c17d1d4dbed51225b1c81ba16e5f16baf9a30c709c5db4ef31541747795debbc7cee7fc6b46ac29a67f684b42f1cca08ae7bbf719ca8842243f51ca5702d3145c64a7887dde7bfc5a8062131c80da7cdb0e1a19a5a240f0b1f1c078c41213c17eafbc3cdb50716a93c0e28ab053890a6aed5ccf6d46cea15e0ca5f57f7bc292821d34d6074fff4bfe605e56b07af81b84921f82eb9fddb78cfb413f1bcfd47e21d76d999a38280bccde178b4a401e18dfddd15e0c92ac9f5e7bdebf10f8a192bd4e3be676b1599d44693ce0f939083ce22c896052c576c8a0228eb6ded4f6713a75921f03a17a52e432b1cd92bc34d474754803ea2bbae98300dd99716c19b87ed12970680c0fbbabd0cd91c61a4ac0687bc6a71847cff668819db6568e624587136e6c0b0272fae2cd1caaec3ebbd6403e2f8db4c83344b21fb558bda230f3b768b498e68a575c938dfb043eebae2e201bdbb4f9d23652a044a0c5d634eb403bb0b4bd01da0d139ca26872a0a5ebde0f5ac566a213b4b27d8e3b5b64432f31f37690d19a42c161cb11c79955bb6795e09165f34bb096a56233c248122f71f7a0318d16a7d1a66c97eb5d39fea8cbd982c1b1d04bcd6c8a4207cc4a300194ae9b41c9d375045fb7a1ee487d8f7d4f521ff8a86b4f34993bcbcf30d70bca6885651e824026fea73dcbe2cc0990726c1c418bcbbee56f76e287dd048bc2e9131d1aadc5338ee39fa7c3ff15b61ae41be740ee4c19cef586718c76f07ea3f6d61da1d7afd621a0efc1275c14197c5dc37b732222f611f5240ddbc0398e5ce75682d246e66ab3c60ae9b8db886e9d2b90515aae16a2da6f013ef28049e6681e96ca45f1f0b7a24af5916e21feb6aac89f9bda6b78be83dc290028dd17df077e61b2adf75730ac4e3d5b31e6da7e4d30e4ba18af6eaa9b2285e6a01cdc1f9b29cfc3fa8719e3d2c6adf125c446dfc9ecab4c06ba4b32b9e8c1585e5863214c126949883efe8c21bc38ff4b25927d9eb90cff9cf811371944a6bec446e3c8f95110d27053cfb0ba4f7f989c2a25e15203e6ed1884a06de004b633380d22e8d865f18ef4ae2565f60e7a43c19e694ecbe001f2fbeb0cd2c63a83fd22a1bf25afbb77d8357bd5c2cb2792cadac857eab8ac32b84a2b37019c986990e4b613f3ee73cffdf1064126988c4808408c8dcb4b91bbcaf81a4ad0956db08dea9675fadab7e30e22841f7eafea2aac0fbf121000b2dffe460c9809ff71415d130cd855450c0d27af49d883c0f5d70cce4587031ec255a1f0dd840bf9e092ef7ae73e97217d239c23cc475434f27e18739c201a0a4957efdfd63c13b608194d35c6891d13b52de6fdba784c0dc6fb5efac6ca03c737f179a44da5a0a0d66eb58d8780f6c0ceeaff762cc9ab79dba571cf8be0388360e7f063d6471b6050f4e2cb5e723810c4fb861ea69b483e86704e1e95462190a33e7350a57f71336299bd4a8de99950608f9d34c5be81d625f224eb6b1f4ea3fe0e96d1dde624f764635e9a0ba062b4203197d7cc6b5d0043d53573b1bfa4665b8f1089bcc427950f6fcfe6441850b45eafd678bd4dd8b33415738dff4d8fdef69e24fd6f9ded73355cb623ff3eb506d7d081d6f5e3baa9ee3269ba282654b20888814ad240ea79e503b2cc08d3e4eb744527e7d64738d203ca4bcb0356dcc2b1cf7e4a3a6f22c436317198bd828939a0149de1cf8dde5dab9a876f347d34e5b35008527578fb2936c7243b11a6d18228e99e71fb7e52eedd31a09b6805ce27a58902aee4d664ceffc1458dabaa7b625224e1787db919e10d411aa7123d3c25bb1002416ad8543000dfcfa682b79333faedc7b24e31a02d6b61e4e2dd0a88535c5f2c9545fcd8c57ce4b66bcf3319a0b3d17eeaa18ea17377fcff88c0ecf3669b0d4a1c783a4b61b6770e4295999709", 0x1000}, {&(0x7f0000001480)="beaf22ba361052306d5092e330b650aac1848f1313363137154c25fc4b56ced3a0d33268150600377f7ae9f66139901bac0ef78052137e161fce1b15c7810679878cf8d877c1ed433f59d31f76a73f3d4231a6dca58390b5e140fd3093a6c0f2036ab91e0ceee34031aacd833c189f5baa7ad88c4f9f08ae944789c241f2db00512bf9", 0x83}, {&(0x7f0000001540)}], 0x8, &(0x7f0000001600)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3d9c}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}], 0x68}}], 0x1, 0x4000010)

07:00:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfeffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000100), 0xffffffffffffffff)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x10, r4, 0x14cbc000)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r5, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r6)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0)
sendmsg$GTP_CMD_DELPDP(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r1, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@GTPA_TID={0xc, 0x3, 0x2}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048060}, 0x48044)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r8, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_genetlink_get_family_id$gtp(&(0x7f0000000100), 0xffffffffffffffff) (async)
pipe(&(0x7f0000000080)) (async)
close(r2) (async)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x10, r4, 0x14cbc000) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r5, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)) (async)
close(r6) (async)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0) (async)
sendmsg$GTP_CMD_DELPDP(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r1, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@GTPA_TID={0xc, 0x3, 0x2}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048060}, 0x48044) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r8, 0x0, 0x0) (async)

[  272.285160][ T5466] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  272.293407][ T5466] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  272.301353][ T5466] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  272.309240][ T5466] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  272.317052][ T5466] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  272.324864][ T5466] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  272.332864][ T5466]  </TASK>
07:00:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3ffff, 0x0, 0x0}, 0x58)

07:00:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 54)

07:00:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='xen_mc_entry\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000001700)=0x4)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f00000000c0)={0x0, r2})

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='xen_mc_entry\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000001700)=0x4) (async)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f00000000c0)={0x0, r2})

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/msg\x00', 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r1, 0x12, 0x2, &(0x7f0000000200)=""/4096, &(0x7f0000000040)=0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='ext4_es_shrink\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000001c0)=0x63, 0x2)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r7, 0x112, 0xb, &(0x7f00000001c0), 0x2)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000001200)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, 0x1, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, 0x14)
close(r7)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
fcntl$setstatus(r8, 0x4, 0x400)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
bind$bt_sco(r0, &(0x7f0000000180)={0x1f, @none}, 0x8)
splice(r9, &(0x7f0000000100)=0x80000000, r8, &(0x7f0000000140)=0x8, 0x5, 0x0)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r5, 0x0, 0x0)

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/msg\x00', 0x0, 0x0) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r1, 0x12, 0x2, &(0x7f0000000200)=""/4096, &(0x7f0000000040)=0x1000) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='ext4_es_shrink\x00', r0}, 0x10) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async, rerun: 64)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000001c0)=0x63, 0x2) (async)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r7, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async, rerun: 64)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000001200)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, 0x1, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, 0x14) (async, rerun: 64)
close(r7) (async)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
fcntl$setstatus(r8, 0x4, 0x400) (async)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async, rerun: 64)
bind$bt_sco(r0, &(0x7f0000000180)={0x1f, @none}, 0x8) (async, rerun: 64)
splice(r9, &(0x7f0000000100)=0x80000000, r8, &(0x7f0000000140)=0x8, 0x5, 0x0)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r5, 0x0, 0x0)

07:00:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xff0f0100}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x40000, 0x0, 0x0}, 0x58)

07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='xen_mc_entry\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000001700)=0x4)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f00000000c0)={0x0, r2})

07:00:15 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/msg\x00', 0x0, 0x0) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r1, 0x12, 0x2, &(0x7f0000000200)=""/4096, &(0x7f0000000040)=0x1000) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='ext4_es_shrink\x00', r0}, 0x10) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 32)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async, rerun: 32)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000001c0)=0x63, 0x2) (async)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r7, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000001200)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, 0x1, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, 0x14)
close(r7) (async)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
fcntl$setstatus(r8, 0x4, 0x400) (async, rerun: 64)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async, rerun: 64)
bind$bt_sco(r0, &(0x7f0000000180)={0x1f, @none}, 0x8) (rerun: 64)
splice(r9, &(0x7f0000000100)=0x80000000, r8, &(0x7f0000000140)=0x8, 0x5, 0x0)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r5, 0x0, 0x0)

07:00:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x2000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  272.501379][ T5519] FAULT_INJECTION: forcing a failure.
[  272.501379][ T5519] name failslab, interval 1, probability 0, space 0, times 0
[  272.521026][ T5519] CPU: 1 PID: 5519 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  272.531017][ T5519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  272.541959][ T5519] Call Trace:
[  272.545085][ T5519]  <TASK>
07:00:15 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f000000951be3c7093ccc817f2cb9817dfe46008de41dd3d30456dcae1bff8fb3bc3630866439bf5ffe75dac0dab3928a20bb6f8ac28808d8494ebffce02927d0782def195b278fd9fb071131abcdd1fd9d0b8bbb109f0ed3ce233ef8b6e882adcf"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x2, &(0x7f0000000140)=@raw=[@map_fd={0x18, 0x8}], &(0x7f0000000180)='syzkaller\x00', 0x7f, 0xf6, &(0x7f0000000280)=""/246, 0x41100, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x4, 0x1, 0x7f0}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0x1, 0xffffffffffffffff]}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000600)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000480)=@raw=[@map_val={0x18, 0xa, 0x2, 0x0, r1}, @exit, @exit], &(0x7f00000004c0)='GPL\x00', 0x6, 0x2c, &(0x7f0000000500)=""/44, 0x41000, 0xb, '\x00', r6, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000580)={0x1, 0x8, 0x80000000, 0x6c27}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[r8, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r9]}, 0x80)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r11, 0x0, 0x0)

[  272.547866][ T5519]  dump_stack_lvl+0x151/0x1b7
[  272.552458][ T5519]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  272.557755][ T5519]  ? do_syscall_64+0x44/0xd0
[  272.562354][ T5519]  dump_stack+0x15/0x17
[  272.565108][ T5524] __nla_validate_parse: 2 callbacks suppressed
[  272.565128][ T5524] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  272.566522][ T5519]  should_fail+0x3c0/0x510
[  272.566550][ T5519]  __should_failslab+0x9f/0xe0
[  272.590470][ T5519]  should_failslab+0x9/0x20
[  272.594810][ T5519]  kmem_cache_alloc+0x4f/0x2f0
[  272.599534][ T5519]  ? anon_vma_clone+0xa1/0x4f0
[  272.604133][ T5519]  anon_vma_clone+0xa1/0x4f0
[  272.608559][ T5519]  anon_vma_fork+0x91/0x4f0
[  272.612933][ T5519]  ? anon_vma_name+0x4c/0x70
[  272.617411][ T5519]  dup_mmap+0x750/0xea0
[  272.621406][ T5519]  ? __delayed_free_task+0x20/0x20
[  272.626624][ T5519]  ? mm_init+0x807/0x960
[  272.630702][ T5519]  dup_mm+0x91/0x330
[  272.634541][ T5519]  copy_mm+0x108/0x1b0
[  272.638445][ T5519]  copy_process+0x1295/0x3250
[  272.643045][ T5519]  ? check_stack_object+0xf7/0x130
[  272.647990][ T5519]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  272.652936][ T5519]  ? copy_clone_args_from_user+0x6cf/0x790
[  272.658576][ T5519]  kernel_clone+0x22d/0x990
[  272.662914][ T5519]  ? dup_mmap+0xea0/0xea0
[  272.667084][ T5519]  ? create_io_thread+0x1e0/0x1e0
[  272.671944][ T5519]  ? file_end_write+0x1b0/0x1b0
[  272.676637][ T5519]  __x64_sys_clone3+0x375/0x3a0
[  272.681321][ T5519]  ? __ia32_sys_clone+0x300/0x300
[  272.686362][ T5519]  ? ksys_write+0x25f/0x2c0
[  272.690696][ T5519]  ? debug_smp_processor_id+0x17/0x20
[  272.695903][ T5519]  do_syscall_64+0x44/0xd0
[  272.700160][ T5519]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  272.705886][ T5519] RIP: 0033:0x7f8e237f0639
[  272.710133][ T5519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  272.729767][ T5519] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  272.738023][ T5519] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
07:00:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 55)

07:00:16 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x1e)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x68)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000000000)={{r0}, "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"})
readv(r1, 0x0, 0x0)

07:00:16 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f000000951be3c7093ccc817f2cb9817dfe46008de41dd3d30456dcae1bff8fb3bc3630866439bf5ffe75dac0dab3928a20bb6f8ac28808d8494ebffce02927d0782def195b278fd9fb071131abcdd1fd9d0b8bbb109f0ed3ce233ef8b6e882adcf"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x2, &(0x7f0000000140)=@raw=[@map_fd={0x18, 0x8}], &(0x7f0000000180)='syzkaller\x00', 0x7f, 0xf6, &(0x7f0000000280)=""/246, 0x41100, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x4, 0x1, 0x7f0}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0x1, 0xffffffffffffffff]}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r3 = socket(0x10, 0x3, 0x0) (async, rerun: 64)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r5 = socket(0x10, 0x2, 0x0) (rerun: 64)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}) (rerun: 64)
close(r9) (async, rerun: 64)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async, rerun: 64)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000600)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000480)=@raw=[@map_val={0x18, 0xa, 0x2, 0x0, r1}, @exit, @exit], &(0x7f00000004c0)='GPL\x00', 0x6, 0x2c, &(0x7f0000000500)=""/44, 0x41000, 0xb, '\x00', r6, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000580)={0x1, 0x8, 0x80000000, 0x6c27}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[r8, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r9]}, 0x80) (async)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r11, 0x0, 0x0)

07:00:16 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x1e) (async)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x68) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000000000)={{r0}, "6e43ffd9db3c8b163deb4a51193223402e1b23ee3a0ef555ab6c22e1fd85e76b953393695e4d6efe7ce58fa9f47939e7560b62c9a2ee118149f74e49321bc9016f7cb26f2cd971599ea8c6776a4db48a7e2835d9525ead13aff56dd2b0a4d898b26705d6f8a2729ed86c19eb81f4cfb201f1790acf587e535bf6a04b27429362a22958e4b85a8663ef4433622b4bb55c141df5f7a19fd656ab0f5c524b50f085f63e9bb4d95b9b01d76e4a7d14a9e07daf8ac52d119ae6146ae867ba7d820ee0b1212bb1b660858035cbf67075a731244b12a80faff9ae2568fac744077be4621eba0bb0bdfa9837903d25e35adc3398027685db2158584072ab5f2d0834d54670285911aca05cad635b6928f25c18d5794d168032d68976b1ecf2c28eccb6fd2f5f6f781055c426332b5622850e57cd71712a07d73cd8c793b00b2844c0e5a94f82cc8e1302b40236786f1c2a3ab94f759cccf93db7dde6809078c2746ca9fb4d1f3970ac1e2b0c88c8dfa31d01d5503e2fa1b0360f78268b9b487ba4755a74e53dc1e0fa95f47670a8b7e44e3a4fd511023bbb0349d73320e86b08da1b12e1dc86588da18025498c24cf3cf39c808cc431b82bdfc3074c45a8de8582e84f1fd1f7fe28a2fbc72e8e1497b168c6e9e59c8532b84423b663c4f8ab0d615f68d2b2e684f6f68ae0ae71308d48f7d6d2546141e980f16748d65a8294b896675088e8d70979c11e4eabbedc8ebf5162c1104579844173e762e82ce9650fb96ec083987fbbf4e6756f52d4a60e33a5407223b799cc2cb58f6e2092e0a31ac6363a25c441111d6289327cfee7beed833bd35a9d69f23bc528fda90222b6e462ed8d28927575a736c8ce1ad1cae291f597add717700d737ea173d679aaa9dc28056d6b84d29800fda50df50b1a453df4de5cb180470763cf0b173e6dbef2e900173cbe51c372689574a275dce760d6568fa691091160aaec4f93d43ef9f67fe0cc3532f4c908b1cd5262e0b95f93607a529b51114b01cd81204f23242e60bef3fb288c0ef569eb12cb87a5a8f85ad65916bb7defa8dd2695cce18cbece83d899e85bc993fcf6c3db8d691f44a5ffa96177e4ff13ad041a14a733b99326970c4260427332702a3aa2f96898b32359dbb7ea920b95418e6bed949ad84c9beb16ae89a291dec34989264dc7fe5eb8c4fef6f9ce3c9b4a1d3276bbcaa4285d15c72159824482f67a9edb22d560056b4aa9407ac30675a8f6a77ec03f8006c48c705eab95dc3787e91dc842c7a702cfcd2fea7fd3dedcaed96f3cd56da1a5174389fdd987ac334cd51b66830d4db6dddb1c24ba66b15a1ebdb020725b230654a9d442008bf3b042810cc9175b1b9c1d9c1481b61d736196793ec14679ee7b01db37d6d4c7808fd32cfb637697bfcbdb13aef942d03a8e49b06d35eaffa78d140134f16bf7980347367ea6ba166db08d0a7775197420fb4b27d586e3daafc7232a8291b197b6f711d5a716dbd5c2ce2ad700d32b45dff965286f5e585d2d905e30bb3a20bc45f11a3785f6ce430c08d9e4e3ed81de03d3c8433bf16f232180f3705a654782b613a4c4de51c5678881b71d6729e369c7bd0738ee863e0a014a6a7b041801fd5b86319ddc1cee12132615f731b1d1cf4d7603b49ead36635a87a6e9936524a59720eecc3cf96e526b886404c7c5d134241525889b43632d10706dc23d09b2e2f927d0c5f478ee8c2cede8e69f6cf0d7a264bdb600ae3ceed4c646fac519ee21a145fa9677e4cf3c8409c03fcf15338647c89637fc077ab4057ebec514c5350121fd01b145e2d85fdb8feeea57c397fc01aa63f222cd398f5567a70deb43aa4b69e903fdf528e9c3930e5b84a5d52d03a801f8df56c865fffaf02ee9cbfbfbb753d462503b3be6fd0625ea358ad1f69daceece40cd51d75b01da8cb27dcb484a7100c98c1fc95a8f68c6809cd2d24947956318bfd886847ffaae19c35fc76b569c37e742dbe8eed6be25a44532eeab0c939c159c8a71b7c65eaf122ba6bb5363ae10bf8ddbec7535c1124ca4e08d346141e23d2043f7c3137ac99e2b25204715b61b90c364bd18c4327bba1702b7cdb958a21d7844b4b86e93f07959444a02cd0f294ddb7e4276e4f0a49375e444edcdfe4f1f69d34c5170e29b4c4a3ca99ddfb9949db19d7f15c86ae359daeacf2ce75c40bbb1d2b83dfb662f38c32d574f8bac432b70bb3a29552c7304bc8ea2601eadff6341be3ca1d73f94e9925a799cad927b2ef442cc5f25cbd504dce20ecb35469d84d085253a8e8b1a261f26f6c98ea1f4254de78868450c8fe5032796406845bd289f1202a309578bf1022e8369ff3ea739bfd5b45c464d258619968b0d4a4f016057a134451b671d565f8052abf1feaed49a9359b4c3ce3893f518289957367754fb7f4a0f96b6b483a709270feb74e5a61c72085f4c9432e60554098a0ed3bd537e4aa2c81a0f9cf6bf2f04b52840893ffa9532c6cb95a8e8aa0b1619504313ddec89b5a5d06b968d27da09ea85edec1b5b63429fbcf946a0130f0eddc2f5de1c38f401ad2538d8a597e49cb2250e2c06af2ac04569e84f15d72f1d2ff1ef6afa2c1ef828fe1c736dc9d67cc30164a795da268d7826e0ffd4b9a88effe37629b32afbbd8065a4899b19a1170fed33484fcab25d85151d79057ee3bef2ca3805e7481b2117bdacb49cd146d2e2a95248bb1dc7fcc63618b20f96d75b861101378690873bb356377b0e51149243611fb2519b9287324c415252e03176ef58e0cdeea1ec6ab4b69e5bea11c061730b58ff0374c5dad9785d36505579526fa54f8da57fa2f68859fbaef546cdc0602646bb002f673879863fb3e229aeda1049c55526ca6b4cf8257ba7d48f665e79c86103a1b8d8feeb67e3b83a6eb40f6b2b672b0c5f5327551a869772c634572494de85a280f60dc5dfa1f3efa74fb1560ac72ca54a63e22ed85a61a95a2232ea3f1b3d45796e95dc19a2afe8520ec349c1518311692777fe5ac22d4a1163466db97813da50aa1085eb48fe6485e8ceff6b2deffa2183ef58eb45553d33d6324a9f0e6475a28345764431b0702a73a7f190a8b58a795a69d405cb02446a107409198d2f2bc95de7607f2c3c57f15fe0c88affa483d7c0cd15bd66677279d6fb05904c051bd52955b0c146845e12a800cab8c8809f167768e330034e397ed8e251ad4c884d7b34ff3dd57f81c78cd1da0bb027a612a163ac54e1a49513627b59cc0ff799f0b9232010c75e0f9cedb700b6af3fb5fe2003e894a11b665f4396c4fae0110e477e68b273ea4c6c9dc7cfbe66f7523204ed23be28d47b97b21fab05da969406263a7c2aaec481430cb4703c822d52f929ce2f146548af30d7c35cf84837ae6ddf75abc634f7a162405a1f41096398954ccf515735bdc4ed9549229af30d98339f24e2c859413a5a2d6c50062439090890949bab4392b79e7a46a736a955383e90b107d28fb5059fbcedf80f587f4240592786de4c0408c755f9096ecdfcd24e6e353546e232376ce65538c9c53e96334e36f741125d75e255a5e58aaa1c01849d66123d9ffce213e411da5ff453e4d319d5b6e85575508ed2dc1f153b2a627942a52895f89533f77644d96bb2acdde63bdd24d8d7af2248205d4e2a0b0eaf422ac3fadd60f1d86cbbd896056a496db68eea75f00c6f9842b36a872fe5acb252616b269d4568885ec160fabc4e9febbbd191867550296b56d27212ea04e330f4b202cc1a7c4900ea9e8cd2c723b062bbcc329c00e0ba8f132974b143d5e7e83b1642dd1736d7b0b395e5fa78a5bb3a3d7e030711a1b3a3e3b54f9f3a453f764f81ff2978c5e642a0f18809f1f8fad94aa7b729052d51e24fb01f3466c9d0931d9103370cc994026c4d3dc708dafbebcd70f2258e312788749fbc878269d4a20bd6d17c6d86430ee50dc84cd61b53d28cfdf7d0e6436aff277ef585e3788282109d76bc176782b1a87f32bce79f3acee65003723e525ffda5704d3fdefcffb1f8bc6532d5991d33815bc85d19e3d48e4e58a12cde0e644011eb94bbe8b2b6d2ba31c2e9b3c58bf05fce854493df0d53c5f3c4187a7ee9fe9bc03cbac6cc4639dc75f4b2973dae3808438a72c99943992f15b6ea61bc98af602e3451cda734beaa3a34e410eb2c272cdbf833173b2719ed28390105ecb26f63d341ead50e3ac26078fa2eb6d522f7af97268b22689839a01db0148fc0741619644d815229a667b8bf527e5dfccfb423aacf603dc96165dfece25b6dc98d8298b56fd8bb16732f8bf153ba7ecf6c82b6e1efc3acbc73dc33a0727dbf003de2882cb5fff62c5391633d05ca5f9b4809bb157605dd62bbc3dc372354091c6f4a06a189a18ae472893d1b854955708acce3fba916051c9232002fb3a645320e00882641530836e5582cb56adecbdbf1772523c5f3b03b978aeb90e8aa3f291619c33bee9a80bd4286966b1c5a110fb2e074e09aa76c72a92c75b999cc89465ff7596592b47ed74985c3f310934a5394046b38c43abb1715eb4d94af24f07f836fda97632818c4ee7a7b584ed7466e741030c3cdfe3975faf593f2ff707edf4079c922aa108f06998ceba2eacb91d8c15fb5a63714a4028b6134eb5c535e188be2dd975b133625b29c7b22cafa91447a41177db0e87d7650b1ad8ef9645b3272503806802a08eb32c25d33c9ea42a642ded31136a7f8f0059d391a660af7b07e98bada49ddceadf5d854e06f2f1e9e1fdc974469927c86d03ffa2f40137a7df9fe6ba0832b80d9bf9d09d1ab202d8940f40e5173176e5b0871562385512135da18f51aa8a96c32bea727624dff11c1dabe99f6f8d639bb8b28d799dd5aad710d5751c11f78a36b24a2e8daec6e66a679e05321c3ab98526697dd641fefa1ae93a6f0fff4adec72e9d01d0f7d63ea7c70e33d5fdcf6082518b36e3f71c855306c0fd16c7d93ca7faed76a87a496ad2c1848bc539574a9d39fc8a2a18d4b872988218eeaf704bcd9c1359b69cf6c3e8b40b8bed5cb734e5e3e9fc4b523cfe644b3de14586886f6b838b129a8bcaf397e2922e85e92a293a024d3e00e4858aab7bc5c42209288d09e58be5d8c98c407c765a1428a3b86a62f13d5c5373bdcf9ac20b792061c24a8efb55b314deabfe3e700afe05b632fe7f3b6f23d7b4e6b206a6bc920c4516944c1ec6baf5beee4ed6a3f952e6c1f850c27f59ade4bb6571c810be160229782baac44c9445de233cb373df052fad82594359e24d19b8131a174a702079475cbe17dab924d4843eaca9226b8c9b5f2a4e883fcd56006babc8c0095341f2cfa5cb34aacae1f8a9a83d80711e1ef6b14ea0674ab249004542ddc0c2472ad4e08144bf25863bbb235d79e1b2df35a5224b21bd1c50eca4b8dc0ecc2fa1a4f21fee3383dd8baf8138c6a3e5a55e3a1e156a1fbf1adcca428183b8f79f7f345936e22a82c2d1076cad9d9316c1672027935378a5c008da9b9dff7dd92a942399e9e71ab58cb8ff78f31cd2174ed383543ee9a9bf9a163ea2bb146f1553738b660866c1a1ab614260765911163493fdb566b495a495f26861665e6956b02fa707749ed3301ff4a7b4d7bd4f53b5da326c9b413088aec3ef885715db0c436a991d52659ff54d3a8f67cbcaebae269b5547aabe326eaef01b6d29a6520a5ab1cd3715f5fd7a72b2337ad05cb7e67be2f2a170234173f738447fce447f4e55f63a30fe4b7562a1694ff7c73bbd455ed779471f9a167b28a36c8dba1d68632c11e"})
readv(r1, 0x0, 0x0)

07:00:16 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f000000951be3c7093ccc817f2cb9817dfe46008de41dd3d30456dcae1bff8fb3bc3630866439bf5ffe75dac0dab3928a20bb6f8ac28808d8494ebffce02927d0782def195b278fd9fb071131abcdd1fd9d0b8bbb109f0ed3ce233ef8b6e882adcf"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x2, &(0x7f0000000140)=@raw=[@map_fd={0x18, 0x8}], &(0x7f0000000180)='syzkaller\x00', 0x7f, 0xf6, &(0x7f0000000280)=""/246, 0x41100, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x4, 0x1, 0x7f0}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0x1, 0xffffffffffffffff]}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9) (async, rerun: 32)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async, rerun: 32)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000600)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000480)=@raw=[@map_val={0x18, 0xa, 0x2, 0x0, r1}, @exit, @exit], &(0x7f00000004c0)='GPL\x00', 0x6, 0x2c, &(0x7f0000000500)=""/44, 0x41000, 0xb, '\x00', r6, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000580)={0x1, 0x8, 0x80000000, 0x6c27}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[r8, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r9]}, 0x80) (async)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r11, 0x0, 0x0)

07:00:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xffff0300}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  272.745901][ T5519] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  272.753938][ T5519] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  272.761742][ T5519] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  272.769560][ T5519] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  272.777482][ T5519]  </TASK>
07:00:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58)

07:00:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x4000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:16 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x1e)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x68) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000000000)={{r0}, "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"}) (async, rerun: 32)
readv(r1, 0x0, 0x0) (rerun: 32)

[  272.834393][ T5545] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  272.865577][ T5544] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
07:00:16 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x12102, 0x40)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl0\x00', <r3=>0x0, 0x29, 0x0, 0xd6, 0x9, 0x4, @ipv4={'\x00', '\xff\xff', @loopback}, @empty, 0x10, 0x7, 0x9, 0x81}})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_elf64(r4, 0x0, 0xfe30)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x4, <r5=>0x0}, 0x8)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0)
writev(r10, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r11 = dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, [@map_idx_val={0x18, 0xb, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x7fffffff}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x6a0}, @generic={0x8, 0x1, 0xc, 0x7, 0x81}, @alu={0x7, 0x1, 0x3, 0x4, 0x2, 0x4, 0xffffffffffffffe1}, @call={0x85, 0x0, 0x0, 0xbd}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @exit]}, &(0x7f0000000180)='syzkaller\x00', 0x4ad, 0x33, &(0x7f00000001c0)=""/51, 0x41000, 0x2, '\x00', r3, 0xd, r4, 0x8, &(0x7f0000000380)={0x1, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x4, 0xa, 0x7fffffff, 0x92f2}, 0x10, r5, r0, 0x0, &(0x7f0000000440)=[r6, r7, r10, r11, 0xffffffffffffffff]}, 0x80)
readv(r1, 0x0, 0x0)

[  272.887376][ T5567] FAULT_INJECTION: forcing a failure.
[  272.887376][ T5567] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  272.923912][ T5567] CPU: 1 PID: 5567 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  272.933993][ T5567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  272.943883][ T5567] Call Trace:
[  272.947004][ T5567]  <TASK>
[  272.949782][ T5567]  dump_stack_lvl+0x151/0x1b7
[  272.954993][ T5567]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  272.960302][ T5567]  dump_stack+0x15/0x17
[  272.966461][ T5567]  should_fail+0x3c0/0x510
[  272.970705][ T5567]  should_fail_alloc_page+0x58/0x70
[  272.975829][ T5567]  __alloc_pages+0x1de/0x7c0
[  272.980353][ T5567]  ? __count_vm_events+0x30/0x30
[  272.985124][ T5567]  ? __this_cpu_preempt_check+0x13/0x20
[  272.990509][ T5567]  ? __mod_node_page_state+0xac/0xf0
[  272.995623][ T5567]  pte_alloc_one+0x73/0x1b0
[  272.999962][ T5567]  ? pfn_modify_allowed+0x2e0/0x2e0
[  273.004994][ T5567]  __pte_alloc+0x86/0x350
[  273.009160][ T5567]  ? free_pgtables+0x210/0x210
[  273.013759][ T5567]  ? _raw_spin_lock+0xa3/0x1b0
[  273.019925][ T5567]  ? _raw_spin_trylock_bh+0x1d0/0x1d0
[  273.025132][ T5567]  ? __kernel_text_address+0x9a/0x110
[  273.030511][ T5567]  copy_pte_range+0x1b1f/0x20b0
[  273.035202][ T5567]  ? __kunmap_atomic+0x80/0x80
[  273.039808][ T5567]  ? __kasan_slab_alloc+0xc4/0xe0
[  273.044669][ T5567]  ? __kasan_slab_alloc+0xb2/0xe0
[  273.050136][ T5567]  ? kmem_cache_alloc+0x189/0x2f0
[  273.054994][ T5567]  ? vm_area_dup+0x26/0x1d0
[  273.059337][ T5567]  ? dup_mmap+0x6b8/0xea0
[  273.063499][ T5567]  ? dup_mm+0x91/0x330
[  273.067397][ T5567]  ? copy_mm+0x108/0x1b0
[  273.071477][ T5567]  ? copy_process+0x1295/0x3250
[  273.076166][ T5567]  ? kernel_clone+0x22d/0x990
[  273.080677][ T5567]  ? __x64_sys_clone3+0x375/0x3a0
[  273.085543][ T5567]  ? do_syscall_64+0x44/0xd0
[  273.089997][ T5567]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  273.095871][ T5567]  copy_page_range+0xc1e/0x1090
[  273.100559][ T5567]  ? pfn_valid+0x1e0/0x1e0
[  273.104987][ T5567]  dup_mmap+0x99f/0xea0
[  273.108976][ T5567]  ? __delayed_free_task+0x20/0x20
[  273.113924][ T5567]  ? mm_init+0x807/0x960
[  273.118001][ T5567]  dup_mm+0x91/0x330
[  273.121731][ T5567]  copy_mm+0x108/0x1b0
[  273.125636][ T5567]  copy_process+0x1295/0x3250
[  273.130154][ T5567]  ? check_stack_object+0xf7/0x130
[  273.135097][ T5567]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  273.140045][ T5567]  ? copy_clone_args_from_user+0x6cf/0x790
[  273.145699][ T5567]  kernel_clone+0x22d/0x990
[  273.150035][ T5567]  ? dup_mmap+0xea0/0xea0
[  273.154200][ T5567]  ? create_io_thread+0x1e0/0x1e0
[  273.159057][ T5567]  ? file_end_write+0x1b0/0x1b0
[  273.163742][ T5567]  __x64_sys_clone3+0x375/0x3a0
[  273.168697][ T5567]  ? __ia32_sys_clone+0x300/0x300
[  273.173548][ T5567]  ? ksys_write+0x25f/0x2c0
[  273.177890][ T5567]  ? debug_smp_processor_id+0x17/0x20
[  273.183094][ T5567]  do_syscall_64+0x44/0xd0
[  273.187347][ T5567]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  273.193072][ T5567] RIP: 0033:0x7f8e237f0639
[  273.197329][ T5567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  273.217249][ T5567] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  273.225489][ T5567] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
07:00:16 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x12102, 0x40) (async, rerun: 32)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl0\x00', <r3=>0x0, 0x29, 0x0, 0xd6, 0x9, 0x4, @ipv4={'\x00', '\xff\xff', @loopback}, @empty, 0x10, 0x7, 0x9, 0x81}}) (async, rerun: 32)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_elf64(r4, 0x0, 0xfe30)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x4, <r5=>0x0}, 0x8)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}) (rerun: 32)
close(r7) (async, rerun: 32)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async, rerun: 32)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9) (async)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async, rerun: 64)
writev(r10, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async, rerun: 64)
r11 = dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, [@map_idx_val={0x18, 0xb, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x7fffffff}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x6a0}, @generic={0x8, 0x1, 0xc, 0x7, 0x81}, @alu={0x7, 0x1, 0x3, 0x4, 0x2, 0x4, 0xffffffffffffffe1}, @call={0x85, 0x0, 0x0, 0xbd}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @exit]}, &(0x7f0000000180)='syzkaller\x00', 0x4ad, 0x33, &(0x7f00000001c0)=""/51, 0x41000, 0x2, '\x00', r3, 0xd, r4, 0x8, &(0x7f0000000380)={0x1, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x4, 0xa, 0x7fffffff, 0x92f2}, 0x10, r5, r0, 0x0, &(0x7f0000000440)=[r6, r7, r10, r11, 0xffffffffffffffff]}, 0x80) (async)
readv(r1, 0x0, 0x0)

07:00:16 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'ip6tnl0\x00', <r0=>0x0, 0x29, 0x1, 0x4, 0xfff, 0x18, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x700, 0x8, 0x11472c4b}})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
r2 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x202d40, 0x0)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200), 0x4000, 0x0)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/cgroups\x00', 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x400, 0x8cd, 0x2000004, 0x1, r9, 0xb799, '\x00', r0, 0xffffffffffffffff, 0x0, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1, &(0x7f0000000000)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000040)='syzkaller\x00', 0x7f, 0x0, 0x0, 0x40f00, 0x0, '\x00', r0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xc, 0xffffff16, 0x54}, 0x10, 0x0, r1, 0x0, &(0x7f0000000300)=[r2, 0x1, r3, r4, r5, r7, r10]}, 0x80)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r11, 0x0, 0x0)

07:00:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 56)

07:00:16 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'ip6tnl0\x00', <r0=>0x0, 0x29, 0x1, 0x4, 0xfff, 0x18, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x700, 0x8, 0x11472c4b}})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
r2 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x202d40, 0x0)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200), 0x4000, 0x0)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/cgroups\x00', 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x400, 0x8cd, 0x2000004, 0x1, r9, 0xb799, '\x00', r0, 0xffffffffffffffff, 0x0, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1, &(0x7f0000000000)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000040)='syzkaller\x00', 0x7f, 0x0, 0x0, 0x40f00, 0x0, '\x00', r0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xc, 0xffffff16, 0x54}, 0x10, 0x0, r1, 0x0, &(0x7f0000000300)=[r2, 0x1, r3, r4, r5, r7, r10]}, 0x80)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x31) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'ip6tnl0\x00', 0x0, 0x29, 0x1, 0x4, 0xfff, 0x18, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x700, 0x8, 0x11472c4b}}) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x202d40, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200), 0x4000, 0x0) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r5) (async)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/cgroups\x00', 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x400, 0x8cd, 0x2000004, 0x1, r9, 0xb799, '\x00', r0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1, &(0x7f0000000000)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000040)='syzkaller\x00', 0x7f, 0x0, 0x0, 0x40f00, 0x0, '\x00', r0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xc, 0xffffff16, 0x54}, 0x10, 0x0, r1, 0x0, &(0x7f0000000300)=[r2, 0x1, r3, r4, r5, r7, r10]}, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r11, 0x0, 0x0) (async)

07:00:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x5000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfffffff5}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58)

[  273.233309][ T5567] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  273.241113][ T5567] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  273.248934][ T5567] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  273.256736][ T5567] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  273.264552][ T5567]  </TASK>
07:00:16 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = open(&(0x7f00000000c0)='./file0\x00', 0x12102, 0x40)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl0\x00', <r3=>0x0, 0x29, 0x0, 0xd6, 0x9, 0x4, @ipv4={'\x00', '\xff\xff', @loopback}, @empty, 0x10, 0x7, 0x9, 0x81}})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_elf64(r4, 0x0, 0xfe30)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x4, <r5=>0x0}, 0x8)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0)
writev(r10, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r11 = dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, [@map_idx_val={0x18, 0xb, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x7fffffff}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x6a0}, @generic={0x8, 0x1, 0xc, 0x7, 0x81}, @alu={0x7, 0x1, 0x3, 0x4, 0x2, 0x4, 0xffffffffffffffe1}, @call={0x85, 0x0, 0x0, 0xbd}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @exit]}, &(0x7f0000000180)='syzkaller\x00', 0x4ad, 0x33, &(0x7f00000001c0)=""/51, 0x41000, 0x2, '\x00', r3, 0xd, r4, 0x8, &(0x7f0000000380)={0x1, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x4, 0xa, 0x7fffffff, 0x92f2}, 0x10, r5, r0, 0x0, &(0x7f0000000440)=[r6, r7, r10, r11, 0xffffffffffffffff]}, 0x80)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
open(&(0x7f00000000c0)='./file0\x00', 0x12102, 0x40) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl0\x00', 0x0, 0x29, 0x0, 0xd6, 0x9, 0x4, @ipv4={'\x00', '\xff\xff', @loopback}, @empty, 0x10, 0x7, 0x9, 0x81}}) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r4, 0x0, 0xfe30) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x4}, 0x8) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r9) (async)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async)
writev(r10, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
dup(r0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1c, 0xe, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, [@map_idx_val={0x18, 0xb, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x7fffffff}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x6a0}, @generic={0x8, 0x1, 0xc, 0x7, 0x81}, @alu={0x7, 0x1, 0x3, 0x4, 0x2, 0x4, 0xffffffffffffffe1}, @call={0x85, 0x0, 0x0, 0xbd}, @exit, @cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @exit]}, &(0x7f0000000180)='syzkaller\x00', 0x4ad, 0x33, &(0x7f00000001c0)=""/51, 0x41000, 0x2, '\x00', r3, 0xd, r4, 0x8, &(0x7f0000000380)={0x1, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x4, 0xa, 0x7fffffff, 0x92f2}, 0x10, r5, r0, 0x0, &(0x7f0000000440)=[r6, r7, r10, r11, 0xffffffffffffffff]}, 0x80) (async)
readv(r1, 0x0, 0x0) (async)

07:00:16 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x141000, 0x118, 0x8}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_mb_release_inode_pa\x00', r0}, 0x10)

07:00:16 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x31) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'ip6tnl0\x00', <r0=>0x0, 0x29, 0x1, 0x4, 0xfff, 0x18, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x700, 0x8, 0x11472c4b}}) (rerun: 64)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
r2 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x202d40, 0x0)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200), 0x4000, 0x0)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5) (async)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async, rerun: 64)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/cgroups\x00', 0x0, 0x0) (rerun: 64)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x400, 0x8cd, 0x2000004, 0x1, r9, 0xb799, '\x00', r0, 0xffffffffffffffff, 0x0, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1, &(0x7f0000000000)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000000040)='syzkaller\x00', 0x7f, 0x0, 0x0, 0x40f00, 0x0, '\x00', r0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xc, 0xffffff16, 0x54}, 0x10, 0x0, r1, 0x0, &(0x7f0000000300)=[r2, 0x1, r3, r4, r5, r7, r10]}, 0x80) (async)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r11, 0x0, 0x0)

[  273.372956][ T5619] FAULT_INJECTION: forcing a failure.
[  273.372956][ T5619] name failslab, interval 1, probability 0, space 0, times 0
[  273.390736][ T5619] CPU: 0 PID: 5619 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  273.400732][ T5619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  273.410623][ T5619] Call Trace:
[  273.413750][ T5619]  <TASK>
[  273.416609][ T5619]  dump_stack_lvl+0x151/0x1b7
[  273.421124][ T5619]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  273.426419][ T5619]  dump_stack+0x15/0x17
[  273.430429][ T5619]  should_fail+0x3c0/0x510
[  273.434751][ T5619]  __should_failslab+0x9f/0xe0
[  273.439351][ T5619]  should_failslab+0x9/0x20
[  273.443711][ T5619]  kmem_cache_alloc+0x4f/0x2f0
[  273.448475][ T5619]  ? vm_area_dup+0x26/0x1d0
[  273.452814][ T5619]  vm_area_dup+0x26/0x1d0
[  273.456970][ T5619]  dup_mmap+0x6b8/0xea0
[  273.460964][ T5619]  ? __delayed_free_task+0x20/0x20
[  273.465910][ T5619]  ? mm_init+0x807/0x960
[  273.469986][ T5619]  dup_mm+0x91/0x330
[  273.473721][ T5619]  copy_mm+0x108/0x1b0
[  273.477634][ T5619]  copy_process+0x1295/0x3250
[  273.482142][ T5619]  ? check_stack_object+0xf7/0x130
[  273.487096][ T5619]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  273.492033][ T5619]  ? copy_clone_args_from_user+0x6cf/0x790
[  273.497679][ T5619]  kernel_clone+0x22d/0x990
[  273.502013][ T5619]  ? dup_mmap+0xea0/0xea0
[  273.506181][ T5619]  ? create_io_thread+0x1e0/0x1e0
[  273.511040][ T5619]  ? file_end_write+0x1b0/0x1b0
[  273.515727][ T5619]  __x64_sys_clone3+0x375/0x3a0
[  273.520506][ T5619]  ? __ia32_sys_clone+0x300/0x300
[  273.525371][ T5619]  ? ksys_write+0x25f/0x2c0
[  273.529739][ T5619]  ? debug_smp_processor_id+0x17/0x20
[  273.534911][ T5619]  do_syscall_64+0x44/0xd0
[  273.539166][ T5619]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  273.544907][ T5619] RIP: 0033:0x7f8e237f0639
[  273.549149][ T5619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:00:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57)

07:00:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x7000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x141000, 0x118, 0x8}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_mb_release_inode_pa\x00', r0}, 0x10)

07:00:17 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r0, 0x0, 0x0)

[  273.570877][ T5619] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  273.579176][ T5619] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  273.586987][ T5619] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  273.596052][ T5619] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  273.603859][ T5619] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  273.611675][ T5619] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  273.619493][ T5619]  </TASK>
07:00:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58)

07:00:17 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x14) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (rerun: 64)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r0, 0x0, 0x0)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x141000, 0x118, 0x8}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_mb_release_inode_pa\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
openat2(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x141000, 0x118, 0x8}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r2, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='ext4_mb_release_inode_pa\x00', r0}, 0x10) (async)

07:00:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfffffffb}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:17 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x14) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
readv(r0, 0x0, 0x0) (async)

07:00:17 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ishtp_dump\x00', r0}, 0x10)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendfile(r2, r0, &(0x7f00000000c0)=0x6, 0x1)
lseek(r0, 0x3, 0x4)
readv(r1, 0x0, 0x0)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendfile(r2, r0, &(0x7f00000000c0)=0x6, 0x1)
lseek(r0, 0x3, 0x4)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
sendfile(r2, r0, &(0x7f00000000c0)=0x6, 0x1) (async)
lseek(r0, 0x3, 0x4) (async)
readv(r1, 0x0, 0x0) (async)

[  273.749894][ T5676] FAULT_INJECTION: forcing a failure.
[  273.749894][ T5676] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  273.763612][ T5676] CPU: 1 PID: 5676 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  273.773592][ T5676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  273.783490][ T5676] Call Trace:
[  273.786611][ T5676]  <TASK>
[  273.789391][ T5676]  dump_stack_lvl+0x151/0x1b7
[  273.793901][ T5676]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  273.799201][ T5676]  dump_stack+0x15/0x17
[  273.803189][ T5676]  should_fail+0x3c0/0x510
[  273.807561][ T5676]  should_fail_alloc_page+0x58/0x70
[  273.812679][ T5676]  __alloc_pages+0x1de/0x7c0
[  273.817107][ T5676]  ? __count_vm_events+0x30/0x30
[  273.821884][ T5676]  ? __this_cpu_preempt_check+0x13/0x20
[  273.827260][ T5676]  ? __mod_node_page_state+0xac/0xf0
[  273.832382][ T5676]  pte_alloc_one+0x73/0x1b0
[  273.836721][ T5676]  ? pfn_modify_allowed+0x2e0/0x2e0
[  273.841760][ T5676]  __pte_alloc+0x86/0x350
[  273.846101][ T5676]  ? free_pgtables+0x210/0x210
[  273.850695][ T5676]  ? _raw_spin_lock+0xa3/0x1b0
[  273.855467][ T5676]  ? _raw_spin_trylock_bh+0x1d0/0x1d0
[  273.860680][ T5676]  ? __kernel_text_address+0x9a/0x110
[  273.865883][ T5676]  copy_pte_range+0x1b1f/0x20b0
[  273.871010][ T5676]  ? __kunmap_atomic+0x80/0x80
[  273.875608][ T5676]  ? __kasan_slab_alloc+0xc4/0xe0
[  273.880469][ T5676]  ? __kasan_slab_alloc+0xb2/0xe0
[  273.885325][ T5676]  ? kmem_cache_alloc+0x189/0x2f0
[  273.890185][ T5676]  ? vm_area_dup+0x26/0x1d0
[  273.894523][ T5676]  ? dup_mmap+0x6b8/0xea0
[  273.898691][ T5676]  ? dup_mm+0x91/0x330
[  273.902594][ T5676]  ? copy_mm+0x108/0x1b0
[  273.906696][ T5676]  ? copy_process+0x1295/0x3250
[  273.911364][ T5676]  ? kernel_clone+0x22d/0x990
[  273.915877][ T5676]  ? __x64_sys_clone3+0x375/0x3a0
[  273.920826][ T5676]  ? do_syscall_64+0x44/0xd0
[  273.925249][ T5676]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  273.931177][ T5676]  copy_page_range+0xc1e/0x1090
[  273.935840][ T5676]  ? pfn_valid+0x1e0/0x1e0
[  273.940093][ T5676]  dup_mmap+0x99f/0xea0
[  273.944087][ T5676]  ? __delayed_free_task+0x20/0x20
[  273.949119][ T5676]  ? mm_init+0x807/0x960
[  273.953286][ T5676]  dup_mm+0x91/0x330
[  273.957019][ T5676]  copy_mm+0x108/0x1b0
[  273.960921][ T5676]  copy_process+0x1295/0x3250
[  273.965448][ T5676]  ? check_stack_object+0xf7/0x130
[  273.970391][ T5676]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  273.975339][ T5676]  ? copy_clone_args_from_user+0x6cf/0x790
[  273.980983][ T5676]  kernel_clone+0x22d/0x990
[  273.985310][ T5676]  ? dup_mmap+0xea0/0xea0
[  273.989475][ T5676]  ? create_io_thread+0x1e0/0x1e0
[  273.994335][ T5676]  ? file_end_write+0x1b0/0x1b0
[  273.999023][ T5676]  __x64_sys_clone3+0x375/0x3a0
[  274.003710][ T5676]  ? __ia32_sys_clone+0x300/0x300
[  274.008570][ T5676]  ? ksys_write+0x25f/0x2c0
[  274.012914][ T5676]  ? debug_smp_processor_id+0x17/0x20
[  274.018122][ T5676]  do_syscall_64+0x44/0xd0
[  274.022374][ T5676]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  274.028106][ T5676] RIP: 0033:0x7f8e237f0639
[  274.032419][ T5676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  274.051933][ T5676] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  274.060173][ T5676] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  274.067986][ T5676] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  274.075794][ T5676] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  274.083615][ T5676] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  274.091419][ T5676] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
07:00:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58)

07:00:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x8000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:17 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ishtp_dump\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ishtp_dump\x00', r0}, 0x10) (async)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
sendfile(r2, r0, &(0x7f00000000c0)=0x6, 0x1) (async)
lseek(r0, 0x3, 0x4)
readv(r1, 0x0, 0x0)

07:00:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2000000, 0x0, 0x0}, 0x58)

07:00:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  274.099232][ T5676]  </TASK>
07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x1f, 0x8002)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x386, 0x1, 0x9, 0x400, r1, 0x7a724be8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x1}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8)
readv(r2, 0x0, 0x0)

07:00:17 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ishtp_dump\x00', r0}, 0x10)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
r1 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x1f, 0x8002)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x386, 0x1, 0x9, 0x400, r1, 0x7a724be8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x1}, 0x48) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8)
readv(r2, 0x0, 0x0)

07:00:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x9000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:17 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='prq_report\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000000000400000000001f000000850000000f00000095544db0ff327379f840e31e0ef2e75ec2d58c47beaf810a194120700b133535423a215536643fecacd713f511a81cc7929282d07955459220cb8c3ddfbe0f402ad46343f64d561b60b18222a627a29e54c4bdf870e0bc1a209c9f8157b25700cde4e1286b146875a5c93429e3675da54edfae95fca026c3ee7a907f1158e30f5d75a778d958159411b364dee54d8c7faba11cd24a46b7e0f98da87795c3207b715b6001bbbea7c8601533b1a0bbac60ac341f0198d9adffcaad8df11bd700cf16af7adefc9918c16f26e561d717953c4a0f178706558d79645d2ac41aff54e3dbdeecaab6ed8f58c5acacbbab600c91a82c04f2d1e654f4986d9887cebd0443e203b9f1bd03be7dc41b3a9cc714e394ef29b89e03bc49c3c2d21c3885ccb6f24e9af3d369d16043ed5c52dbc289fa8e1208953b92ffaa70fa08dfa1b3f5de49a63c3c11941617405606aae6a25fd92af393b3033e051ed9f808fafd7627c9b6a8330a87f0f0893dc378bdd465972ad5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x1f, 0x8002)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x386, 0x1, 0x9, 0x400, r1, 0x7a724be8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x1}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8) (async)
readv(r2, 0x0, 0x0)

[  274.249662][ T5721] FAULT_INJECTION: forcing a failure.
[  274.249662][ T5721] name failslab, interval 1, probability 0, space 0, times 0
[  274.262137][ T5721] CPU: 0 PID: 5721 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  274.272056][ T5721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  274.282178][ T5721] Call Trace:
[  274.285300][ T5721]  <TASK>
[  274.288073][ T5721]  dump_stack_lvl+0x151/0x1b7
[  274.292599][ T5721]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  274.297883][ T5721]  dump_stack+0x15/0x17
[  274.301876][ T5721]  should_fail+0x3c0/0x510
[  274.306135][ T5721]  __should_failslab+0x9f/0xe0
[  274.310726][ T5721]  should_failslab+0x9/0x20
[  274.315066][ T5721]  kmem_cache_alloc+0x4f/0x2f0
[  274.319763][ T5721]  ? vm_area_dup+0x26/0x1d0
[  274.324105][ T5721]  vm_area_dup+0x26/0x1d0
[  274.328260][ T5721]  dup_mmap+0x6b8/0xea0
[  274.332252][ T5721]  ? __delayed_free_task+0x20/0x20
[  274.337199][ T5721]  ? mm_init+0x807/0x960
[  274.341276][ T5721]  dup_mm+0x91/0x330
[  274.345013][ T5721]  copy_mm+0x108/0x1b0
[  274.349004][ T5721]  copy_process+0x1295/0x3250
[  274.353516][ T5721]  ? check_stack_object+0xf7/0x130
[  274.358471][ T5721]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  274.363432][ T5721]  ? copy_clone_args_from_user+0x6cf/0x790
[  274.369056][ T5721]  kernel_clone+0x22d/0x990
[  274.373395][ T5721]  ? dup_mmap+0xea0/0xea0
[  274.377556][ T5721]  ? create_io_thread+0x1e0/0x1e0
[  274.382425][ T5721]  ? file_end_write+0x1b0/0x1b0
[  274.387105][ T5721]  __x64_sys_clone3+0x375/0x3a0
[  274.391894][ T5721]  ? __ia32_sys_clone+0x300/0x300
[  274.396744][ T5721]  ? ksys_write+0x25f/0x2c0
[  274.401081][ T5721]  ? debug_smp_processor_id+0x17/0x20
[  274.406285][ T5721]  do_syscall_64+0x44/0xd0
[  274.410538][ T5721]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  274.416267][ T5721] RIP: 0033:0x7f8e237f0639
[  274.420698][ T5721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  274.440136][ T5721] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 59)

07:00:17 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='prq_report\x00', r1}, 0x10) (rerun: 64)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:17 executing program 1:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x101240, 0x0)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000041}, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@bloom_filter={0x1e, 0x0, 0x800, 0x0, 0x0, r0, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x5, 0xc}, 0x48)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x9, &(0x7f0000000380)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0xf, 0x0, 0x0, 0x0, 0x200}, @exit, @map_val={0x18, 0xb, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x2, 0x0, 0x1, 0x2, 0x100, 0xfffffffffffffffc}], &(0x7f0000000400)='syzkaller\x00', 0x7fff, 0x12, &(0x7f0000000440)=""/18, 0x41100, 0x1, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000480)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x2, 0x6, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[0xffffffffffffffff, r0, 0x1, r0]}, 0x80)
readv(r2, 0x0, 0x0)

07:00:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xffffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000000, 0x0, 0x0}, 0x58)

07:00:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xf000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:17 executing program 1:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x101240, 0x0)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000041}, 0x1) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@bloom_filter={0x1e, 0x0, 0x800, 0x0, 0x0, r0, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x5, 0xc}, 0x48)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4) (async)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x9, &(0x7f0000000380)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0xf, 0x0, 0x0, 0x0, 0x200}, @exit, @map_val={0x18, 0xb, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x2, 0x0, 0x1, 0x2, 0x100, 0xfffffffffffffffc}], &(0x7f0000000400)='syzkaller\x00', 0x7fff, 0x12, &(0x7f0000000440)=""/18, 0x41100, 0x1, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000480)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x2, 0x6, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[0xffffffffffffffff, r0, 0x1, r0]}, 0x80)
readv(r2, 0x0, 0x0)

[  274.448382][ T5721] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  274.456205][ T5721] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  274.464006][ T5721] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  274.471815][ T5721] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  274.479627][ T5721] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  274.487442][ T5721]  </TASK>
07:00:17 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='prq_report\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r0) (async)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='prq_report\x00', r1}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r2, 0x0, 0x0) (async)

07:00:17 executing program 1:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x101240, 0x0)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000041}, 0x1) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@bloom_filter={0x1e, 0x0, 0x800, 0x0, 0x0, r0, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x5, 0xc}, 0x48) (async)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x9, &(0x7f0000000380)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @exit, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0xf, 0x0, 0x0, 0x0, 0x200}, @exit, @map_val={0x18, 0xb, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x2, 0x0, 0x1, 0x2, 0x100, 0xfffffffffffffffc}], &(0x7f0000000400)='syzkaller\x00', 0x7fff, 0x12, &(0x7f0000000440)=""/18, 0x41100, 0x1, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f0000000480)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x2, 0x6, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[0xffffffffffffffff, r0, 0x1, r0]}, 0x80)
readv(r2, 0x0, 0x0)

07:00:17 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

07:00:17 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
r3 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x1, 0x1, 0x0, 0x1, {0xa, 0x4e20, 0x7fff, @dev={0xfe, 0x80, '\x00', 0x3a}, 0xffffffff}}}, 0x32)
readv(r0, 0x0, 0x0)

07:00:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0}, 0x58)

[  274.590412][ T5760] FAULT_INJECTION: forcing a failure.
[  274.590412][ T5760] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  274.603769][ T5760] CPU: 1 PID: 5760 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  274.613750][ T5760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  274.623646][ T5760] Call Trace:
[  274.626766][ T5760]  <TASK>
[  274.629540][ T5760]  dump_stack_lvl+0x151/0x1b7
[  274.634055][ T5760]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  274.639348][ T5760]  ? __kasan_check_write+0x14/0x20
[  274.644295][ T5760]  ? __set_page_owner+0x2ee/0x310
[  274.649159][ T5760]  dump_stack+0x15/0x17
[  274.653149][ T5760]  should_fail+0x3c0/0x510
[  274.657403][ T5760]  should_fail_alloc_page+0x58/0x70
[  274.662437][ T5760]  __alloc_pages+0x1de/0x7c0
[  274.666865][ T5760]  ? __count_vm_events+0x30/0x30
[  274.671636][ T5760]  ? __count_vm_events+0x30/0x30
[  274.676412][ T5760]  ? __kasan_check_write+0x14/0x20
[  274.681355][ T5760]  ? _raw_spin_lock+0xa3/0x1b0
[  274.685959][ T5760]  __pmd_alloc+0xb1/0x550
[  274.690123][ T5760]  ? kmem_cache_alloc+0x189/0x2f0
[  274.695027][ T5760]  ? anon_vma_fork+0x1b9/0x4f0
[  274.699584][ T5760]  ? __pud_alloc+0x260/0x260
[  274.704010][ T5760]  ? __pud_alloc+0x218/0x260
[  274.708434][ T5760]  ? do_handle_mm_fault+0x2370/0x2370
[  274.713826][ T5760]  ? __mmu_notifier_invalidate_range_start+0x656/0x6e0
[  274.720501][ T5760]  copy_page_range+0xd04/0x1090
[  274.725191][ T5760]  ? pfn_valid+0x1e0/0x1e0
[  274.729441][ T5760]  dup_mmap+0x99f/0xea0
[  274.733435][ T5760]  ? __delayed_free_task+0x20/0x20
[  274.738386][ T5760]  ? mm_init+0x807/0x960
[  274.742458][ T5760]  dup_mm+0x91/0x330
[  274.746193][ T5760]  copy_mm+0x108/0x1b0
[  274.750100][ T5760]  copy_process+0x1295/0x3250
[  274.754645][ T5760]  ? check_stack_object+0xf7/0x130
[  274.759559][ T5760]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  274.764525][ T5760]  ? copy_clone_args_from_user+0x6cf/0x790
[  274.770154][ T5760]  kernel_clone+0x22d/0x990
[  274.774486][ T5760]  ? dup_mmap+0xea0/0xea0
[  274.778654][ T5760]  ? create_io_thread+0x1e0/0x1e0
[  274.783511][ T5760]  ? file_end_write+0x1b0/0x1b0
[  274.788210][ T5760]  __x64_sys_clone3+0x375/0x3a0
[  274.792886][ T5760]  ? __ia32_sys_clone+0x300/0x300
[  274.797748][ T5760]  ? ksys_write+0x25f/0x2c0
[  274.802087][ T5760]  ? debug_smp_processor_id+0x17/0x20
[  274.807297][ T5760]  do_syscall_64+0x44/0xd0
[  274.811547][ T5760]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  274.817276][ T5760] RIP: 0033:0x7f8e237f0639
[  274.821532][ T5760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:00:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 60)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
r3 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x1, 0x1, 0x0, 0x1, {0xa, 0x4e20, 0x7fff, @dev={0xfe, 0x80, '\x00', 0x3a}, 0xffffffff}}}, 0x32) (async)
readv(r0, 0x0, 0x0)

07:00:18 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 32)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
readv(r1, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

07:00:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x7000000, 0x0, 0x0}, 0x58)

07:00:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async, rerun: 64)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async, rerun: 64)
r3 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x1, 0x1, 0x0, 0x1, {0xa, 0x4e20, 0x7fff, @dev={0xfe, 0x80, '\x00', 0x3a}, 0xffffffff}}}, 0x32) (async)
readv(r0, 0x0, 0x0)

[  274.840974][ T5760] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  274.849218][ T5760] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  274.857028][ T5760] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  274.864836][ T5760] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  274.872665][ T5760] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  274.880462][ T5760] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  274.888277][ T5760]  </TASK>
07:00:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3, 0x0, 0x0}, 0x58)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x80000, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x8, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x40}, [@btf_id={0x18, 0x8, 0x3, 0x0, 0x5}, @generic={0x9, 0x7, 0x9, 0x3, 0x5a}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0xee, &(0x7f00000000c0)=""/238, 0x41100, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0xb, 0x3, 0x75e7}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r0, 0x1, 0x1, 0x1, r1, 0xffffffffffffffff]}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffefb)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)
dup(r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
bind$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)

07:00:18 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async, rerun: 32)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x80000, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x8, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x40}, [@btf_id={0x18, 0x8, 0x3, 0x0, 0x5}, @generic={0x9, 0x7, 0x9, 0x3, 0x5a}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0xee, &(0x7f00000000c0)=""/238, 0x41100, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0xb, 0x3, 0x75e7}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r0, 0x1, 0x1, 0x1, r1, 0xffffffffffffffff]}, 0x80) (async)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffefb) (async, rerun: 32)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
readv(r4, 0x0, 0x0) (async)
dup(r3) (async)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
bind$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)

07:00:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x9000000, 0x0, 0x0}, 0x58)

[  274.987459][ T5803] FAULT_INJECTION: forcing a failure.
[  274.987459][ T5803] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  275.010156][ T5803] CPU: 0 PID: 5803 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  275.020159][ T5803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  275.030060][ T5803] Call Trace:
[  275.033174][ T5803]  <TASK>
[  275.035948][ T5803]  dump_stack_lvl+0x151/0x1b7
[  275.040460][ T5803]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  275.045751][ T5803]  dump_stack+0x15/0x17
[  275.049744][ T5803]  should_fail+0x3c0/0x510
[  275.054001][ T5803]  should_fail_alloc_page+0x58/0x70
[  275.059035][ T5803]  __alloc_pages+0x1de/0x7c0
[  275.063455][ T5803]  ? __count_vm_events+0x30/0x30
[  275.068241][ T5803]  ? dup_mm+0x91/0x330
[  275.072133][ T5803]  ? copy_mm+0x108/0x1b0
[  275.076215][ T5803]  ? copy_process+0x1295/0x3250
[  275.080911][ T5803]  ? kernel_clone+0x22d/0x990
[  275.085414][ T5803]  ? __x64_sys_clone3+0x375/0x3a0
[  275.090276][ T5803]  pte_alloc_one+0x73/0x1b0
[  275.094616][ T5803]  ? pfn_modify_allowed+0x2e0/0x2e0
[  275.099650][ T5803]  ? __kasan_check_write+0x14/0x20
[  275.104605][ T5803]  ? __set_page_owner+0x2ee/0x310
[  275.109458][ T5803]  __pte_alloc+0x86/0x350
[  275.113625][ T5803]  ? post_alloc_hook+0x1ab/0x1b0
[  275.118401][ T5803]  ? free_pgtables+0x210/0x210
[  275.122997][ T5803]  ? get_page_from_freelist+0x38b/0x400
[  275.128380][ T5803]  copy_pte_range+0x1b1f/0x20b0
[  275.133067][ T5803]  ? __kunmap_atomic+0x80/0x80
[  275.137665][ T5803]  ? __pud_alloc+0x260/0x260
[  275.142090][ T5803]  ? __pud_alloc+0x218/0x260
[  275.146520][ T5803]  ? do_handle_mm_fault+0x2370/0x2370
[  275.151726][ T5803]  copy_page_range+0xc1e/0x1090
[  275.156416][ T5803]  ? pfn_valid+0x1e0/0x1e0
[  275.160666][ T5803]  dup_mmap+0x99f/0xea0
[  275.164661][ T5803]  ? __delayed_free_task+0x20/0x20
[  275.169605][ T5803]  ? mm_init+0x807/0x960
[  275.173685][ T5803]  dup_mm+0x91/0x330
[  275.177419][ T5803]  copy_mm+0x108/0x1b0
[  275.181323][ T5803]  copy_process+0x1295/0x3250
[  275.185837][ T5803]  ? check_stack_object+0xf7/0x130
[  275.190782][ T5803]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  275.195731][ T5803]  ? copy_clone_args_from_user+0x6cf/0x790
[  275.201373][ T5803]  kernel_clone+0x22d/0x990
[  275.205711][ T5803]  ? dup_mmap+0xea0/0xea0
[  275.209876][ T5803]  ? create_io_thread+0x1e0/0x1e0
[  275.214736][ T5803]  ? file_end_write+0x1b0/0x1b0
[  275.219427][ T5803]  __x64_sys_clone3+0x375/0x3a0
[  275.224114][ T5803]  ? __ia32_sys_clone+0x300/0x300
[  275.228974][ T5803]  ? ksys_write+0x25f/0x2c0
[  275.233311][ T5803]  ? debug_smp_processor_id+0x17/0x20
[  275.238521][ T5803]  do_syscall_64+0x44/0xd0
[  275.242770][ T5803]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  275.248500][ T5803] RIP: 0033:0x7f8e237f0639
[  275.252754][ T5803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  275.272198][ T5803] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  275.280440][ T5803] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
07:00:18 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xaf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 61)

07:00:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4, 0x0, 0x0}, 0x58)

07:00:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x1f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x80000, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x8, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x40}, [@btf_id={0x18, 0x8, 0x3, 0x0, 0x5}, @generic={0x9, 0x7, 0x9, 0x3, 0x5a}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0xee, &(0x7f00000000c0)=""/238, 0x41100, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0xb, 0x3, 0x75e7}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r0, 0x1, 0x1, 0x1, r1, 0xffffffffffffffff]}, 0x80) (async, rerun: 32)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffefb)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0) (async)
dup(r3) (async, rerun: 64)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
bind$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)

07:00:18 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xaf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 64)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
readv(r1, 0x0, 0x0)

[  275.288251][ T5803] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  275.296065][ T5803] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  275.303887][ T5803] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  275.311686][ T5803] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  275.319501][ T5803]  </TASK>
07:00:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf000000, 0x0, 0x0}, 0x58)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='snd_soc_dapm_path\x00', r1}, 0x10)

07:00:18 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xaf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x1ffff000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:18 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='snd_soc_dapm_path\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='snd_soc_dapm_path\x00', r1}, 0x10) (async)

[  275.424461][ T5831] FAULT_INJECTION: forcing a failure.
[  275.424461][ T5831] name failslab, interval 1, probability 0, space 0, times 0
[  275.441878][ T5831] CPU: 0 PID: 5831 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  275.451870][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  275.461761][ T5831] Call Trace:
[  275.464884][ T5831]  <TASK>
[  275.467662][ T5831]  dump_stack_lvl+0x151/0x1b7
[  275.472182][ T5831]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  275.477567][ T5831]  dump_stack+0x15/0x17
[  275.481551][ T5831]  should_fail+0x3c0/0x510
[  275.485805][ T5831]  __should_failslab+0x9f/0xe0
[  275.490405][ T5831]  should_failslab+0x9/0x20
[  275.494915][ T5831]  kmem_cache_alloc+0x4f/0x2f0
[  275.499514][ T5831]  ? vm_area_dup+0x26/0x1d0
[  275.503855][ T5831]  vm_area_dup+0x26/0x1d0
[  275.508022][ T5831]  dup_mmap+0x6b8/0xea0
[  275.512024][ T5831]  ? __delayed_free_task+0x20/0x20
[  275.516962][ T5831]  ? mm_init+0x807/0x960
[  275.521051][ T5831]  dup_mm+0x91/0x330
[  275.524776][ T5831]  copy_mm+0x108/0x1b0
[  275.528678][ T5831]  copy_process+0x1295/0x3250
[  275.533196][ T5831]  ? check_stack_object+0xf7/0x130
[  275.538139][ T5831]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  275.543086][ T5831]  ? copy_clone_args_from_user+0x6cf/0x790
[  275.548729][ T5831]  kernel_clone+0x22d/0x990
[  275.553067][ T5831]  ? dup_mmap+0xea0/0xea0
[  275.557233][ T5831]  ? create_io_thread+0x1e0/0x1e0
[  275.562101][ T5831]  ? file_end_write+0x1b0/0x1b0
[  275.566783][ T5831]  __x64_sys_clone3+0x375/0x3a0
[  275.571472][ T5831]  ? __ia32_sys_clone+0x300/0x300
[  275.576340][ T5831]  ? ksys_write+0x25f/0x2c0
[  275.580675][ T5831]  ? debug_smp_processor_id+0x17/0x20
[  275.585876][ T5831]  do_syscall_64+0x44/0xd0
[  275.590133][ T5831]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  275.595857][ T5831] RIP: 0033:0x7f8e237f0639
[  275.600111][ T5831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:00:19 executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='xprtrdma_err_vers\x00'}, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x7, 0x0, 0x0}, 0x58)

[  275.619581][ T5831] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  275.627811][ T5831] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  275.636300][ T5831] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  275.644296][ T5831] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  275.652102][ T5831] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  275.659911][ T5831] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  275.667727][ T5831]  </TASK>
07:00:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 62)

07:00:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58)

07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='snd_soc_dapm_path\x00', r1}, 0x10)

07:00:19 executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='xprtrdma_err_vers\x00'}, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:19 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
bind$bt_sco(r2, &(0x7f00000000c0)={0x1f, @none}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_free_inode\x00', r0}, 0x10)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:19 executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='xprtrdma_err_vers\x00'}, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='xprtrdma_err_vers\x00'}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)

07:00:19 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
bind$bt_sco(r2, &(0x7f00000000c0)={0x1f, @none}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_free_inode\x00', r0}, 0x10)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
bind$bt_sco(r2, &(0x7f00000000c0)={0x1f, @none}, 0x8) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_free_inode\x00', r0}, 0x10) (async)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000)) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)

07:00:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58)

07:00:19 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
bind$bt_sco(r2, &(0x7f00000000c0)={0x1f, @none}, 0x8) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_free_inode\x00', r0}, 0x10) (async)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000))
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:19 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
sendmsg$TIPC_NL_KEY_FLUSH(r3, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)={0x3e0, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}]}, @TIPC_NLA_MEDIA={0x1c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}, @TIPC_NLA_BEARER={0x114, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00', 0x1ff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x3f, @local, 0x40}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x7, @local, 0xfffffff7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @empty, 0x400}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x4000, @ipv4={'\x00', '\xff\xff', @local}, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e20, @local}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffff800}]}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}]}, @TIPC_NLA_NODE={0xb8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "02a2a5984bd2d9d28e7257d580b6b5e2846953d55ea772c1f4dab7388b07ea6d521e64c4d42fa8d1db7ba49dad18e5202a310d5a041c014c56a6b57023f4b5b6cf025edf5fc63a433c86688e141be857b5e59006544dd11f0a4aed55dcb021a6d4158ba1cf076e03b36f5d68612b28499d949dad0cd4ef7010ead1f4f8b8bf29d35f930029d97a11d1f614d8d60c7eff8d5fc31cc3fe1c374a888b31341a8c09"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x81}]}, @TIPC_NLA_NODE={0xe8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xa}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xad, 0x3, "3fba5d3362805b1bb532bf923a9719b5b2c332708cac2b85ec67d09cba499226d11956a4274ddbf3e66590bfdf551855362b0da615df55133e7a1185530312d9fdd98ac7625c8aca3be81cd21b962bbb796c3240e891a0aa6debc81e6a147f2c75485c7616f9565f2a7744a7dd697e517e9edd8679b9830a812836b542243d91c42e8909d3c8d76e1eff7c4be01c6c49ee9b38cec8858b43a085b9bf9c2a305bdda79f8411b8de84b1"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x20}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xad7}]}, @TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_MEDIA={0x94, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd25}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc7cd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x22004004}, 0x40080)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fsi_master_write\x00', r4}, 0x10)
readv(r2, 0x0, 0x0)
splice(0xffffffffffffffff, &(0x7f0000000280)=0x100000001000, r1, &(0x7f0000000700)=0x9, 0xffffffffffffff7f, 0x7082181812e37a47)

07:00:19 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001200)=@bpf_lsm={0x1d, 0xc, &(0x7f0000001080)=@raw=[@alu={0x4, 0x1, 0x4, 0x9, 0x8, 0x4, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0xa643, 0x0, 0x0, 0x0, 0x4}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}, @map_val={0x18, 0x4, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xfffffbdb}, @alu={0x4, 0x1, 0x4, 0x3, 0x1, 0xfffffffffffffff4, 0xfffffffffffffffc}], &(0x7f0000001100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000001140)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000001180)={0x1, 0x2, 0x0, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000011c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001040)={0xffffffffffffffff, &(0x7f0000000000)="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", &(0x7f0000001000)=@udp6, 0x2}, 0x20)

[  275.807460][ T5895] FAULT_INJECTION: forcing a failure.
[  275.807460][ T5895] name failslab, interval 1, probability 0, space 0, times 0
[  275.834587][ T5895] CPU: 1 PID: 5895 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  275.844669][ T5895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  275.854569][ T5895] Call Trace:
[  275.857687][ T5895]  <TASK>
[  275.860460][ T5895]  dump_stack_lvl+0x151/0x1b7
[  275.864981][ T5895]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  275.870274][ T5895]  ? do_syscall_64+0x44/0xd0
[  275.874705][ T5895]  dump_stack+0x15/0x17
[  275.878683][ T5895]  should_fail+0x3c0/0x510
[  275.882936][ T5895]  __should_failslab+0x9f/0xe0
[  275.887534][ T5895]  should_failslab+0x9/0x20
[  275.891876][ T5895]  kmem_cache_alloc+0x4f/0x2f0
[  275.896478][ T5895]  ? anon_vma_clone+0xa1/0x4f0
[  275.901075][ T5895]  anon_vma_clone+0xa1/0x4f0
[  275.905503][ T5895]  anon_vma_fork+0x91/0x4f0
[  275.909843][ T5895]  ? anon_vma_name+0x4c/0x70
[  275.914273][ T5895]  dup_mmap+0x750/0xea0
[  275.918264][ T5895]  ? __delayed_free_task+0x20/0x20
[  275.923214][ T5895]  ? mm_init+0x807/0x960
[  275.927293][ T5895]  dup_mm+0x91/0x330
[  275.931019][ T5895]  copy_mm+0x108/0x1b0
[  275.934927][ T5895]  copy_process+0x1295/0x3250
[  275.939442][ T5895]  ? check_stack_object+0xf7/0x130
[  275.944386][ T5895]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  275.949332][ T5895]  ? copy_clone_args_from_user+0x6cf/0x790
[  275.954977][ T5895]  kernel_clone+0x22d/0x990
[  275.959315][ T5895]  ? dup_mmap+0xea0/0xea0
[  275.963482][ T5895]  ? create_io_thread+0x1e0/0x1e0
[  275.968341][ T5895]  ? file_end_write+0x1b0/0x1b0
[  275.973028][ T5895]  __x64_sys_clone3+0x375/0x3a0
[  275.977717][ T5895]  ? __ia32_sys_clone+0x300/0x300
[  275.982582][ T5895]  ? ksys_write+0x25f/0x2c0
[  275.986929][ T5895]  ? debug_smp_processor_id+0x17/0x20
[  275.992127][ T5895]  do_syscall_64+0x44/0xd0
[  275.996376][ T5895]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  276.002106][ T5895] RIP: 0033:0x7f8e237f0639
[  276.006358][ T5895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  276.025799][ T5895] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  276.034046][ T5895] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  276.041856][ T5895] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  276.049667][ T5895] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
07:00:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 63)

07:00:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1f000000, 0x0, 0x0}, 0x58)

07:00:19 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001200)=@bpf_lsm={0x1d, 0xc, &(0x7f0000001080)=@raw=[@alu={0x4, 0x1, 0x4, 0x9, 0x8, 0x4, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0xa643, 0x0, 0x0, 0x0, 0x4}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}, @map_val={0x18, 0x4, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xfffffbdb}, @alu={0x4, 0x1, 0x4, 0x3, 0x1, 0xfffffffffffffff4, 0xfffffffffffffffc}], &(0x7f0000001100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000001140)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000001180)={0x1, 0x2, 0x0, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000011c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001040)={0xffffffffffffffff, &(0x7f0000000000)="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", &(0x7f0000001000)=@udp6, 0x2}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001200)=@bpf_lsm={0x1d, 0xc, &(0x7f0000001080)=@raw=[@alu={0x4, 0x1, 0x4, 0x9, 0x8, 0x4, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0xa643, 0x0, 0x0, 0x0, 0x4}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}, @map_val={0x18, 0x4, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xfffffbdb}, @alu={0x4, 0x1, 0x4, 0x3, 0x1, 0xfffffffffffffff4, 0xfffffffffffffffc}], &(0x7f0000001100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000001140)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000001180)={0x1, 0x2, 0x0, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000011c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r2, 0x0, 0x0) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001040)={0xffffffffffffffff, &(0x7f0000000000)="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", &(0x7f0000001000)=@udp6, 0x2}, 0x20) (async)

07:00:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:19 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async, rerun: 32)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}) (rerun: 32)
close(r3) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r3, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)={0x3e0, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}]}, @TIPC_NLA_MEDIA={0x1c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}, @TIPC_NLA_BEARER={0x114, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00', 0x1ff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x3f, @local, 0x40}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x7, @local, 0xfffffff7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @empty, 0x400}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x4000, @ipv4={'\x00', '\xff\xff', @local}, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e20, @local}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffff800}]}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}]}, @TIPC_NLA_NODE={0xb8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "02a2a5984bd2d9d28e7257d580b6b5e2846953d55ea772c1f4dab7388b07ea6d521e64c4d42fa8d1db7ba49dad18e5202a310d5a041c014c56a6b57023f4b5b6cf025edf5fc63a433c86688e141be857b5e59006544dd11f0a4aed55dcb021a6d4158ba1cf076e03b36f5d68612b28499d949dad0cd4ef7010ead1f4f8b8bf29d35f930029d97a11d1f614d8d60c7eff8d5fc31cc3fe1c374a888b31341a8c09"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x81}]}, @TIPC_NLA_NODE={0xe8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xa}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xad, 0x3, "3fba5d3362805b1bb532bf923a9719b5b2c332708cac2b85ec67d09cba499226d11956a4274ddbf3e66590bfdf551855362b0da615df55133e7a1185530312d9fdd98ac7625c8aca3be81cd21b962bbb796c3240e891a0aa6debc81e6a147f2c75485c7616f9565f2a7744a7dd697e517e9edd8679b9830a812836b542243d91c42e8909d3c8d76e1eff7c4be01c6c49ee9b38cec8858b43a085b9bf9c2a305bdda79f8411b8de84b1"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x20}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xad7}]}, @TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_MEDIA={0x94, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd25}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc7cd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x22004004}, 0x40080)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fsi_master_write\x00', r4}, 0x10)
readv(r2, 0x0, 0x0)
splice(0xffffffffffffffff, &(0x7f0000000280)=0x100000001000, r1, &(0x7f0000000700)=0x9, 0xffffffffffffff7f, 0x7082181812e37a47)

[  276.057479][ T5895] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  276.065288][ T5895] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  276.073103][ T5895]  </TASK>
07:00:19 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001200)=@bpf_lsm={0x1d, 0xc, &(0x7f0000001080)=@raw=[@alu={0x4, 0x1, 0x4, 0x9, 0x8, 0x4, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0xa643, 0x0, 0x0, 0x0, 0x4}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x5}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}, @map_val={0x18, 0x4, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xfffffbdb}, @alu={0x4, 0x1, 0x4, 0x3, 0x1, 0xfffffffffffffff4, 0xfffffffffffffffc}], &(0x7f0000001100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000001140)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000001180)={0x1, 0x2, 0x0, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000011c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001040)={0xffffffffffffffff, &(0x7f0000000000)="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", &(0x7f0000001000)=@udp6, 0x2}, 0x20)

07:00:19 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
sendmsg$TIPC_NL_KEY_FLUSH(r3, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)={0x3e0, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}]}, @TIPC_NLA_MEDIA={0x1c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}, @TIPC_NLA_BEARER={0x114, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00', 0x1ff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x3f, @local, 0x40}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x7, @local, 0xfffffff7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @empty, 0x400}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x4000, @ipv4={'\x00', '\xff\xff', @local}, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e20, @local}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffff800}]}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}]}, @TIPC_NLA_NODE={0xb8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "02a2a5984bd2d9d28e7257d580b6b5e2846953d55ea772c1f4dab7388b07ea6d521e64c4d42fa8d1db7ba49dad18e5202a310d5a041c014c56a6b57023f4b5b6cf025edf5fc63a433c86688e141be857b5e59006544dd11f0a4aed55dcb021a6d4158ba1cf076e03b36f5d68612b28499d949dad0cd4ef7010ead1f4f8b8bf29d35f930029d97a11d1f614d8d60c7eff8d5fc31cc3fe1c374a888b31341a8c09"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x81}]}, @TIPC_NLA_NODE={0xe8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xa}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xad, 0x3, "3fba5d3362805b1bb532bf923a9719b5b2c332708cac2b85ec67d09cba499226d11956a4274ddbf3e66590bfdf551855362b0da615df55133e7a1185530312d9fdd98ac7625c8aca3be81cd21b962bbb796c3240e891a0aa6debc81e6a147f2c75485c7616f9565f2a7744a7dd697e517e9edd8679b9830a812836b542243d91c42e8909d3c8d76e1eff7c4be01c6c49ee9b38cec8858b43a085b9bf9c2a305bdda79f8411b8de84b1"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x20}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xad7}]}, @TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_MEDIA={0x94, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd25}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc7cd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x22004004}, 0x40080)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fsi_master_write\x00', r4}, 0x10)
readv(r2, 0x0, 0x0)
splice(0xffffffffffffffff, &(0x7f0000000280)=0x100000001000, r1, &(0x7f0000000700)=0x9, 0xffffffffffffff7f, 0x7082181812e37a47)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000080)) (async)
close(r3) (async)
sendmsg$TIPC_NL_KEY_FLUSH(r3, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)={0x3e0, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x5}]}, @TIPC_NLA_MEDIA={0x1c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}, @TIPC_NLA_BEARER={0x114, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x40}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00', 0x1ff}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x3f, @local, 0x40}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x7, @local, 0xfffffff7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @empty, 0x400}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x4000, @ipv4={'\x00', '\xff\xff', @local}, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e20, @local}}}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffff800}]}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}]}, @TIPC_NLA_NODE={0xb8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "02a2a5984bd2d9d28e7257d580b6b5e2846953d55ea772c1f4dab7388b07ea6d521e64c4d42fa8d1db7ba49dad18e5202a310d5a041c014c56a6b57023f4b5b6cf025edf5fc63a433c86688e141be857b5e59006544dd11f0a4aed55dcb021a6d4158ba1cf076e03b36f5d68612b28499d949dad0cd4ef7010ead1f4f8b8bf29d35f930029d97a11d1f614d8d60c7eff8d5fc31cc3fe1c374a888b31341a8c09"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x81}]}, @TIPC_NLA_NODE={0xe8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xa}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xad, 0x3, "3fba5d3362805b1bb532bf923a9719b5b2c332708cac2b85ec67d09cba499226d11956a4274ddbf3e66590bfdf551855362b0da615df55133e7a1185530312d9fdd98ac7625c8aca3be81cd21b962bbb796c3240e891a0aa6debc81e6a147f2c75485c7616f9565f2a7744a7dd697e517e9edd8679b9830a812836b542243d91c42e8909d3c8d76e1eff7c4be01c6c49ee9b38cec8858b43a085b9bf9c2a305bdda79f8411b8de84b1"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x20}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xad7}]}, @TIPC_NLA_SOCK={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1f}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_MEDIA={0x94, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd25}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc7cd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x22004004}, 0x40080) (async)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0) (async)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='fsi_master_write\x00', r4}, 0x10) (async)
readv(r2, 0x0, 0x0) (async)
splice(0xffffffffffffffff, &(0x7f0000000280)=0x100000001000, r1, &(0x7f0000000700)=0x9, 0xffffffffffffff7f, 0x7082181812e37a47) (async)

07:00:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x9, 0x0, 0x0}, 0x58)

07:00:19 executing program 1:
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000300)="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", 0x1000}, {&(0x7f00000000c0)="6ce0365935", 0x5}, {&(0x7f0000001300)="92aca1c948133d48a6f9b7914b9cefedc4671a26e1e5473adb898f31255287c30817e90ba582abcfea5168267cfba44c3af68879219dddd85f56f9b2cf429945b0a24cbda73a226599a1f7d443d1ed41796afb99643c5330e88f872594ccab35cb4d4c53104546f56fdc54d695726d6380a57be0972190fc13fc3cdcc372c2ee4af93e1e6abfb5fc547d97c90a2a6e90ac95f4dfbdc595c0f4735990a0d257d5b9908630703be01589a9df07f357bbc7d5a2a9bd60c728060ba586cb6f9fac26e6147486be7c8c65393a4e9d5b38450ef2479b5f78fbce2af19d1ab54b9be1e521aabb84a10b67e87d19084e0a54bb0cb0bd2d122a8bf18a124522a4ad5347fa9e8ad2d86d2f63e905dcf57125318ceb52281c59b1cb69ae997bd8fa767e993041a58906cd053a7c9b615856e2438a604d7c06468f459b355b300e9cca9ddfcd84df27870391db9f96f1d742dba7e2197822438724d64cb4256c48fd5fe45f67284a699fbc21a3c6f516116dfff4d8ff6271d9ab7b6be034153d24ef2d6da2696acd7a713aecc15273693953d0515b4bc5c2f21aea937e631a8f3ebbda7b75e8033a5c52a2bfd62d32b4b3b667a84116643765bcbea98b654b87f2691652150a356988bc92f90b9b4a560558996db4d6091f4fd97207520eef1bbc59a04aa9588ec3c9a3c09914e62c0f5e48d5eb27f494d9d219d5be9b407659ddf1e44a812981dd0d5028613d1e1052219daba1f46365113ec3677e7eba819298fdddbd17341325832fb002f5f0ab1235c00b8adcbe60f020211943f12370331385a240d4296387bb33d1ee58fc4916337706ed3a710e393daf974b964880cd4a0d15015375c61aeb8b9b611ef2aedcfe939a4ed224cf42704a85045b7e50854737bf87b7e0174c7c7e2d273aca867d63a1ead2b9dd60f3479c0e17c421a96c1b08966a960cee117f9a550df917051163828cc7bdef52fed4c08ff5f0bebdbad9478313dd0d63b08a7601049efa42a05d87dc83b595afb0491fde22f51f978733c9ca5c5bffcf473db9992703a68b87e4c6840edb56ed82a3876855590859869fff1a2dc0e0841a094355b6d424e95561d1489f1157cc2a9a6e17516749c3971d903d57c8db77d998fd40f3e3b8f5cf30f33622cc0a7cae84fc2b7e2ce68dc6c8805cec70fd691c74c12d802c6f3d78821ed95d4c84e6919ae5bec3786b416bbbe1cb4ee8d9fbe112abdefb359b25753e703ea2eda69de2739c56040fb86e86d77411347f14c958483e4fbf80f7dfa9db297a49e7055c1e920bc4c95c95fb94192e3ecaa03ebc877a4a2deab75b1281aff6b078830f2e3199a370a1c11e844d0fc266ec2fe539bc9e90e232bce6d4cf27d93c5b13407e3d5b06e2e239b337678f8bf57fed20632a21830ca0756888d1da041a26a821c1c261284d178b1e35c943be42faf6de904ad545473e838bbc0c3c07a75c442418e9d6c8ece01c1fabdcbf77235eaa47c055e72c6723ecb2a0c9efb7fdf22dd1fac6b30a049201d3d3b129d03ee07a5acd45514495406459f6eb0e9e6b83e004d73b354a80c8c0a2c81a6a66695a87ce62f4e1c247fce189be63096683c0b24deb3aa579295cb5b62ebe731b2e55d700cb2111249f4bf4bacba347e2ffeef2df04e97a628141e2f12bf32e7d694e724b8c185164f91cc5a5ac2f0c201c793baf78fa361296c33237285d8ec5f804ed49291abd34048f9370fb82e1a9113910fe28aa0623953db10c6b1c06e661f43c2b8dfabc892d1cadbf309b087a5dae5c4d13aac6309bd0c11fd5a4da716eb1339633415cb635462e912f994bcf85ffe949dd650b643b37fd41459654bf1b8569a8d5a360d8cc8bdb5ec009639cfbd9f459f70a75c54f5d428439d392ba1459f1fd1837804c3208398c5bb878aedf1a3668dd71cdba9aef48bedf95eb29cc2c63641ee17f8b0054ecaaf729ebb2067bb153f8fc62f913af45a421dcf446bd4b9b29278337e56d0d15ab865eb1aa3efa6053af4f1d3da3cc3282809324a3cf6fec5bfc78aba7e3aeb01f69ad1207dbb6d358dc26fd1027728807116710d86f045237908aa5140dcc5f58ad67cdcd67e6aa8b2b9db61339144701f7d2f7f2dd904dd95771e856e2153590b64745812f48f999492006805289b2a8544aca4745feec19d48df4f41a532bd4a0849b8ae9f1c062c8cce4cc57f765b3df3f5bb2bbb4e522057bf6ed97f81ed1106c70901b2ec6e8e530a942ba053e13c65094581be8f95784198e8166c5c6cb5514d7ace1bc7bb2bf7a5fce63bd266e569e76baa8d5f9c7b3b2b714f91e7a05ca1c9d928510517c4ef5a96b6b1c749786b7a10e11b0c272a8df29ca1cff61e56e1093f138eb1c95f0da8d3b776fe0e95db02ff08ab8542d990194b27d0725286d8f328f26b073c39732c32b70a450783ad4147b626384364cbee8440c09fc466a1acd939821523d713504ce71c2828d162182fb233fe675ac3dc1565f2ece12a53eb5f6e1d07051c3d1d36a97c5066084e4c4afd0a29485b19b84009d172f5fd8616be6c080ad65130b9f8bb84d8b54312f49948fd73be97c8500e95ceb676035c0e96debccb30ecd0c9e8b2b480489ee1753d184575a53e3a1b9d75f67c56faecfcaf20778360c014a4a2a5128e49c6f3085465d1453aef41b309515924f5607a16dfcba911fd62cbe17f24cf65fc09c1fdbb818efb8261fafcd76f7477b34a1ea539ce7050ab97c1da579285f839bb800cba84b29e835cd7126c043b0fc3ba1d55e0e0bc121329e66bb2fa1c6c605be58b8febb8a1592a516bdc4805c4f48a225871af613b67d33afb7fcf351ad1d225f618bde334b79c0a81b72dc876e09ecc8ccc0f5839395c5c97b642292b04fa6c9e18566cd2b6cca6e79b71947e5700e96eca066a3fa71acaeabac72251f40c6e839daeb13b73defb920ad5717a539bbfefcb17a39636786339939fda3ed5f322db3c6fd39a50a7fb66281a160d9bad03398821a7df0a373e9220c6112101aba78170ff0f4920b9af63f657d7dfc85210abb6f381e771b7ad9e8888c7a452e95635429b1a0b4245122acaeea6ac8702d0daff7e7ded79e56c9f2887b355a428435436e85e05c8ed30a9f0b3eee2ad9b090adad64c6dca7af2d3f8a7e6a1f52da179007e40488d4e5557bb44e1ccc91215beb3d0f0d0664874e8228e0f4f4d6ff443498cab8855f5c5c7ad4fc55371b2eb6509977fbc93b544ee393e1bc70cbb91cb857794ab12d965a7cf96c48ba1eded8580836d990c39e8e9ae95b69c0204522114e03ebd9472f95f3b7b56e6c8a5b947bd1fb3d512973f4879270daa5bb5b3efa1ff060af0fa54889f867ccb6929ee82394976e8a68dc5321fa47a7c15d9f95e36824ae03a13ef7e9bf249071e87b255fd8909d59a5163a81f7b209d12eb56a9f4a477307f3a17bc34473f4da7bee7ed13ff564ae8131f0add7f6eff3b68780df344e4131ba3f10a052f041a508114f284be7bced5dd91d34f033238a9a0936d60bc2b774d1c2e0c2541ccdc027f447144b9803dab593fc48c7aaaddd69b0fd13032cc733261455c479705c2896c052e11c9dd472027d02d5a2337ff1ef1cfa5e9cc35f3197ad7a0e2744ddf811a0182ac3189a7d4f94528a1ebf324e797796d614934b6c35d95b521a46aab16245cc3c0762ba680df7e791e609638c8ee9bc205a0546b612d18f666319dee3928327fef0a284f675d920acac8a171b5d5c7f6d8961c3da55d7560a3a412d18cff38b36490c1f20b050eaa35ce543d138d1b5ff4aeb48db495e37e7d90f58428d2cb11c1984aadb8e263ab4c0e861540da8a145cf789b6f2d3794724e38cfaac4e91f03f9b23fe4a4a4621d0164015c6081285f183f79c787531883b26e30a9aba5c4a50e2939d3efaaab684fcf62fc568b4871c5eb4d282cd840ab3331721e0a765ff5fbe204668aef07dd40afca9eadcb04c166fdf962450d1d0e14905e59a180c9a7c3629f07e0c4ec058c916430d229311f0fc8a16f62a50f06d83b8cc370d462d4e62199b0f3845c84320f3b80b1a77a6406bfe71ac56971bb8d3c407eba453a559756cf820b60b522482089a99dae3c7e783a53b18cd0561a18f44536f935b588a363f18678e3724065a3014d5df105da3935e6674f4543a159ca51cd2ccc4d86fb873d714f3ee6c957b3b4139dcb27d10d7a34ba80d6b0331c8d9ff4f2f5cc36dc3d03044b81588eb9f6f92d4a59cd8828a8b6e1239c8d214192d6ead785e000efb6991fdec2d51035bb405e5e16440fed82302c746a6defdc44a9ddead45c88672a9ace591d8517a2232428a58b5594443c13bea69a8f59cd8255d2b0fcf34fa822ea573c63410d42371bf862d757d4697ad770cac18741215a528b241a3d7cb812a356035eeed6b18618f5736ee86600ad55bfc44948d5f48f37d14104889601db32ea98c73f14ee0d2d309bb4a3d619f787662f856fdd6626199b49b6d9009712b7a345df5a74d94b42bfad900cc91befcf2760d4358c8610556493292d0c3cf49df35e36d72aaabc56e0b7e9eda78c423e4f42dea44ae235974797c5ca17739170aa94a1825cbe34a8fc5072635697a01759dca18b92cfe60fc820d690179447c866310d40ea0785630ebb8d852bec3791e27e15a9ae1f8dfdcd8b0f335e94975ebe53af1f2ed73d98b7868c1a2b010399c706ed8fd44f71cee912c58e4f468320b86208b791becfdeb554d85b0c8f22ea72ab54e6f47c72e1c69d277d66fea34dc61b7529d7108356a8176d8c0367053bd02e4309220724a4236bd363e4480414dfafcb278984be2de59d46c5ef93fb3e77f7b5d554a44c66cfb0645c6739b9fe682b1c8afc6eca56ecc47ad5e8c839821a4954e532b0650fb2931064f2ebb5a0c3abbc58689bc291060b0d8e34cc230f635cd0f16566eb3b1125f13f84fe5cc449aff800ec6b6cde35f5d3434252c743fd7aeabb9b50036aa23205fa07ba8926903c4ee1f136d1346db925b0ca4c7aaf18ac75af99b4585390db081381b329a8e12064de0162d3a19b99b2e040d8c852de9503e23cbb76318bad53c2f7690408e4495f7c49cb489f1843e04db6f8fc654455f029f92394b9b63b35d94bc22841c83480641cafbcd13fdde2376ae92ed0c2308864061cba61417d73f5f42d01d495edb45bab462c4d4aaec167a7205cc3ba793f25f40cd991dee191966e127d537adb39c3188cc044c9a70839c5e11029c92ab35dac56c1567b0602f78dfb6c8f8678382a97b9c85b83207c7665a04075650df4914df7d394d20a94a3900ffe0ea72a9ce4e072941bd6c6c9c7587b85c3f4cf1fd56713840728ebced4db550a6b88dcd45f95e793c218323fce15f78ab0876472db68028c36c797e732ecbeea6d0d4e839f5a560b390a79c8b0a0c3f178ebbfc5afc137fa1b396063ca54d24872e780175fa170647281fd10a95a97805de486d4f24b30db11c0efd3f7e1fec063965296da317e87a37443c060c583540bbfdede2f84aaad8a5c4e1040cb0247ed237150b63c43b571e7cd979ff6f7c6c9da837c89ab1d1415600f3c10ae2b411526c231d0e3c4ea8ee6b63d9d2590fcf0fecfc12d3f8a6d87e2f0246e37692fd6453e538a6e30ac696de893055e93363cbeca825b32bb5debc7578461bf6ab51f2431347e160b25b83118d083368c4d76055c00f0892cd863cc3b223000117aeeee115a1b44316970cca3c0b79d14d724b5ddc2070ffbf64656289732bacb974e5c43bdda772b939242d5251bff10cd4dcade", 0x1000}, {&(0x7f0000000100)="45911d5ffbb8", 0x6}, {&(0x7f0000002300)="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", 0xfd}, {&(0x7f0000002400)="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", 0xfd}], 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000040)=[@mss={0x2, 0x7ff}, @window={0x3, 0x7f, 0x3f}, @mss={0x2, 0x6}, @mss={0x2, 0x900}], 0x4)

07:00:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58)

07:00:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  276.168368][ T5934] FAULT_INJECTION: forcing a failure.
[  276.168368][ T5934] name failslab, interval 1, probability 0, space 0, times 0
[  276.205019][ T5934] CPU: 1 PID: 5934 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  276.215022][ T5934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  276.224914][ T5934] Call Trace:
[  276.228034][ T5934]  <TASK>
[  276.230818][ T5934]  dump_stack_lvl+0x151/0x1b7
[  276.235326][ T5934]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  276.240621][ T5934]  ? vma_interval_tree_augment_rotate+0x210/0x210
[  276.246870][ T5934]  dump_stack+0x15/0x17
[  276.250864][ T5934]  should_fail+0x3c0/0x510
[  276.255116][ T5934]  __should_failslab+0x9f/0xe0
[  276.259716][ T5934]  should_failslab+0x9/0x20
[  276.264068][ T5934]  kmem_cache_alloc+0x4f/0x2f0
[  276.268656][ T5934]  ? anon_vma_fork+0xf7/0x4f0
[  276.273170][ T5934]  anon_vma_fork+0xf7/0x4f0
[  276.277509][ T5934]  ? anon_vma_name+0x4c/0x70
[  276.281935][ T5934]  dup_mmap+0x750/0xea0
[  276.285930][ T5934]  ? __delayed_free_task+0x20/0x20
[  276.290876][ T5934]  ? mm_init+0x807/0x960
[  276.294957][ T5934]  dup_mm+0x91/0x330
[  276.298686][ T5934]  copy_mm+0x108/0x1b0
[  276.302591][ T5934]  copy_process+0x1295/0x3250
[  276.307108][ T5934]  ? check_stack_object+0xf7/0x130
[  276.312055][ T5934]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  276.317000][ T5934]  ? copy_clone_args_from_user+0x6cf/0x790
[  276.322646][ T5934]  kernel_clone+0x22d/0x990
[  276.326983][ T5934]  ? dup_mmap+0xea0/0xea0
[  276.331145][ T5934]  ? create_io_thread+0x1e0/0x1e0
[  276.336008][ T5934]  ? file_end_write+0x1b0/0x1b0
[  276.340738][ T5934]  __x64_sys_clone3+0x375/0x3a0
[  276.345390][ T5934]  ? __ia32_sys_clone+0x300/0x300
[  276.350246][ T5934]  ? ksys_write+0x25f/0x2c0
[  276.354691][ T5934]  ? debug_smp_processor_id+0x17/0x20
[  276.359877][ T5934]  do_syscall_64+0x44/0xd0
[  276.364128][ T5934]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  276.369857][ T5934] RIP: 0033:0x7f8e237f0639
[  276.374113][ T5934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  276.393557][ T5934] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  276.401797][ T5934] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  276.409606][ T5934] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
07:00:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 64)

07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
readv(r0, 0x0, 0x0) (async, rerun: 64)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (rerun: 64)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000040)=[@mss={0x2, 0x7ff}, @window={0x3, 0x7f, 0x3f}, @mss={0x2, 0x6}, @mss={0x2, 0x900}], 0x4)

07:00:19 executing program 1:
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000300)="561769268ae8c969e6bd08a76ab854f45a154e6f4096087184ea2b2181aae910bca4cfa70921fa33355722042c44547942102f34c180365f77d31ad5906e6fee912d3d212980bdbd3e8d956c5420947982fd8c048b731463e26443dc37443f14dfbdbe233297a797e2962019e47df4da5bc6c087f92ffa3f1a6705cc0c5de809e2f81d578b1ee5a184fe10f468bc8f338b2ce9d5995e7f8e6a4d1c4c8f5eb2ed1d44d19ae8cdb3cb857854a76426a7dcfd9f4512ff9a342c8099824e246c3b540218e26022556878a108e1ba77f3dd926b45e2d547ef7f67584702bcc0dd5b768562ff780b0039b09396de315c9773b2d0bc6035687729301b1befe5f61613a75d3e0e0da2cf6f68030cb68c9634550470644862265d356d1c230adf71da89bb7f0e3dbd39bca7ae14173c46ad0ee7f68de3a6c8e40f3319635be95e442add845567a73386f104412e92990e667bc45d7f3da654f47e8ea3ba67f8c061855de6c9d506d88471c6ca7477dcf89c35d64da61992eeeb252a41780f88301c59da63c4003f713ab6d8d1635b6fc98f7f2645f261567b8ce444ec8db198d25580be30a4da859d58c2a9ca1d94c12f1b17914426540f98a5c566b6c4ce437bf6173491a99e33e44e5e5f82dc157bd38f186fde5f1b29efc070d654ae9897128147237fb006f62482bac3a1c92b692f2ec569ff9db25f040d6b7232d8c4b2a761239bbb98b843b6c1b68e4461eaa17e9ad15fa77f3d372dc1d74c3ab7f955206056d7c27727abbb96ad991026ea49ae6c1fda6076589384374e250d3168cc33354d26c4d31178ac759173af9abfa9c43618c523c1067aaf47c3f27e45b56d88d656fa1a75e963313dbee87460c30f6379b57ab7fc1845476e8ce34bb59f985da3854693f276c19b0fe65960989a14b57571d21d73f33400f270164fa47e30ff37fe6eb8732f8280fc49a18279221eecf2e9fa412e31de11116c268b2e6071f8735b2b7101e577422f4d5d494de5e727f8eaf28f5769252d13489d7ae9e2e18731772251d67c73b40da6125a52be8cffce107bafac99dc8f8202482deee577f88ee1b286446f4c48d1c036f7aa2d6b16cd0800985adeca4250f5e30edee439c5ead52562c0619d59822950ed4398b3cc143ee8420759fcf3ab1615f25729a60a8cc89660c275d19f8571ffb8a4109929caa800f6813446e0239fc18eca89a59fdb49c02361d0141d7eb72bf68afc4104bc2b5a6a7fbd4b898f722c05986aa2803d0370fac639d67f03163bf763f1e5456b8a7cd376993fa5aa4300bdbc81f959df53f628841b26baf1f7b144e23d8c967bfb5cedf51a8377fe8aed5ce971e37f7250d0c31735096383d7379b020b590d2e49a8d28b94d363675a8ed558d5160480d24eb69097db5fe4ec1a01d559ac710658bd14b32df8ff9851929f0bea91e17f8d411f89323734522bcc65c2af14930f2025d9db5407f20d3877fbc6eda8612e019aa9378ec219a1b078bf2359b7c8de5ab3847ee9505dca587efe86daab351438be9849fd7e7fad6eb7de1dc159d5cff5c73412227ade0af7a4d77d57b7fa4c666398afc4ea0897b1e422796c083f703bf13f6098fdd5f5caf2e3efdf1da25a93edd1922a79e237298253efe2190fa01863e75259be0dcd29246d5f2f251a93924f50e4ee45b5361ef29a7c65462f71a576b72effcb6e7ee475f6fa4fc663ec7616d1d7594bc135e7ff4e1ff8d45d35ed08ccdc5c7d78f06623ec3a9b68fc9374dd9a484c2fe349c1bb27706d8b8b7553f0c1a9c498cdd0fa3bbe7f0559e3707510304436adf4493ad30cc229d784cb79ce7050684448a078b7fbc634a888ee3b9127bf5296373f6a81c4e0ae15a04c2091f1135dbcd6613f2a62a205e1e84000ac8a01f19e5e03dcb2d1bd12da7a458fe76b32258d0081f69ca5c495bae7b6817c0ca45f6a4c9f41ef4e04e86d85034cffbe7779073bfd7ac0c306b232f314969db1a1fdf280ff45b8367ca2ac31e142d6f52b8e1d24f84d1bda7c95eca5d73778265d24f9447fcce1c97df859efc39388d0842ace6854f7acbd242105217932c9d887431d4926aadafff23c54828e47e1958f22e3db3462ed97b9c2791260a5e7ce06b2db808e2b5d86de20e1d4871048533387f1da274a7f78a869c66bdf6b7b75ddcf7f8ac4813f1efb0c9cd4dfcc62064ac8adac7f3697bd7ea5a94ad59b3de5a55acbc720d813ba061f41d6d2970d1dbb92b6fe92ce40da9af6b296739ad62189eebda0c27b40ffbc4e77e740fd155fb8faf037b0967bbebc4ff45a0787af719d6a59df2c4e5c5e55d929ca07dc5b5760ab517884163cb63cac4a9c879df6364d3a92a9eb763ae41cbe7a104dc81a1b9bf15bbcd87e443e1128d7c06a9fdb20f2aa0ecb93b02c389cd56bbb9b9e6c8a49d702033c23a35f2035f3a556262c37956e32661a391a25292d61765c6a71297185181214188ecadf10deae167c1873c008041b04b6b5dc79d2d1192ac38c3a28c4c0a8a9b399bdb6033b7466d6602c41793c28f819e4fbddef9838105522aa74a93efd6e3978396dc16f894bf69e3a5f9689e3947e84b6b65302de37dd671a4222d2bc2e43c44e556f1cd54baf325669eb7600bf4df5b047258227e9635c80e621bc8d9bfe3abf051532e75c512d599565ee397283a23ee894d3c0d3d6f7ffdae2b2fa57e3492292fd61170599041aaaf6e291e305db1d64514d97bc198f0a930910f4e816d8ddeafda6ba10f9531c0d39505f988b4f0251eba31d50510a0d4580aa8fc12f55f1cd56bd223d17ab10eab323a2452c72a8478ebbf6f255e5a4b19daa30e0dbfc21d85b20760cfa1c122763051858cd4e0a6c8b41bff1ed714402de2dfd691f9132726678a851a2eaea5e21093f758b7c16b60ff3fe08efa6e45710e29120a5d7091de310126ad92daaed91f264a849396b75c244fdd12c8c2d5c4271bd4581163e782f6562831fac6ecc1da361e88ccaa36f3643a3e6930266dd5bc59d4a3fc59e190d90619265d83a5066ab800fda1c36cca2ea12b4bf58772143126e70094120e391dea85b11bc9d59a6aad3d26b9d5042d4d434af13b6c0ad61f4755f23df751416e7c031933b18f951aad3702916952b61e5e7b826590b16fd7000f5144a0b514645aba4ffc3a8779e5fd7dd1d8dabcbf620c5ff996f0bbb3b2ba7b882e2ae55922a4293e98b32de444696a71abf18df536c6e3e2716b704831fde969c0c5f33444cab5fcc0d64ee10a9c0ad95572d08dd221447bd2d33c16125456319ea9c4ca9b4492535273c538a76fdca3acb00367e596d7ddb039e2f06a4077c3613197b54705b79ea9f4d36615e7574fb5d901149498f26105ad4328dc64d15814980a7ababaa7a46c044df1a83bdb72f3aa38db246a1b7b50f4de38e641aba88138af83b2c350853f9b70daa27a6ecf5bff773e6701686c32bfec02c62d81797b9f3bf5ea91fe3e16920ab2361b4c255d3269b963dd1248d13223ab5de45d1aae91caa5e484239e57fee710537e2849852329f250719819cfe9d8a2a99b7ba263f1fa82c0e265e03b31a029ecc0eac949f4600a229e75c23f31f3cef392fac7ff7a916860e7d68924423f155e2b869e59e5e4bd6629cfd69da53e4999f6bf003872584c5ff602cf2cd17e6e4036a72d5c1322a07a0a79e0ad9d9d9feba57d8c75ca35c56f4666899ee2b02351efcd5cb4080a5bd136148eb2ea12b635fc794062dd0f689f29a3210fab9f63ccd3cd99198008f9aaab49a202b1755c1aba4638e3858869ec4b07be55ffcdfd5f30c63f4f3894c3c38fd61958156fa7e686d2703333827d948f4363231f81c648e4a64e13a282a030290b3e647477b70c0abf388f3ec342cf8d036fdc76488e536ee1feee0b5be9470fd01915da0328373a8ebc5b936c47ece622b3d39584334fd6b22587682f47c61bd3915c3607bf7132c328c09b35ce7635a7a973bec70e6c2a958c315230afb6ec6a3c19e5a216155d8cdb3f1f0a49182069bc01251f143707d887eae521ba48afef99cfe8953128cbcec548417c5554a34912a3db81d2094627297e03cf6c9c5338d7f51f3ae2113b499e12b74c5f169732d564f1db2d5240c5deb3335ad199e39586044bc1b1b823055c42de4aa44e4cfeac15d7fa1ccbe76df2e8e6ed6df0b418c7e848f0284dd7042770d6fddbd97b2e701e2b7b858f4dc688593448270696f0490076485e3b1a4cbae61e1d3d6ae7cd6732a2661ff2e77da2e2b819e7aceb085454aaaf3edfff0763378d8f0ebca7950fb496b4b592a609dabbc2d1c34945426573cfa85a60c1402db4c36e09e9b449fa3356e83ddacd68205b3a54a9ab987e88eb975a24f2b945441dfbf82533ea7ab22b00f605944d9701fe69115abab03a39a5e9c7c8bfa2ba3c89e567f2acbe902acb600281f2139508c9b84baee3ca657844a79a7574f41e16a41f6c204462dc5d1a2424890da7c9a3740774b278e66dc07a933b751401510e411b8fbad79ca2b26772ba11e86f40617f758eb4aeb83dac39a367d5c23963e3bd1ebc5cb4674db7ba986c52180b33b83f8b32cf11ee09e16a30d1b172088e295558ace740b9c7fff4afda1521f8a3563aef07c7e8a489d028a80e80da391051386b21f632b4995e5422a80e6f963e569bcc51529e82c0ed15244eab3c65263d1e3e3066528ca87584f585e14f071f63d047739e22e4e2ae6eab1df4488a05e76f2e7d2436bef84b0f2425bd83d4b8235f79d54f2503f3909c3e293d302309f2956aa0fe30ed641ddf3a2d17af61d841a4a92d3e0e805fec50c32f83c4c53c55a40f86c1d49b63e9371bb5f6a00a804f78d4bf231caeaef632cc4a49e68a7308c27e508cd2e2a27ee599b7728cec893be362d5d85ac736729b0cb3d2ddb73498a2ebcad367f7cae187cb85711be952e1e77c7b58bfed4f32c6f57a8d8d6199467f7bda596644c36ed3455e340247d7416cb03a36dad63fcc3bc65192383744f63485834604e740afa812c4ca78383bf94825d922ba4b7c7197545ae5e563cdbf3d99982addcd02df0890b9dde902ed7f71666546fd42d5b8ebdd53b0fb8bc1f571ed84de75f04c2550d4cb10ebc63ce8af79162a0f3f035cf5be52f5ac9b37efb0de7881f6ba03b82740f3bbe34a0db5b5672dfa437352e7dd77848de8ff8f9d1512b306f2487a83434900fa413ce5978008b9225a53245f809130a8bfe55eae3b60f9f30d9760d9f738c1ee878d9c7161d3c91b4d0d1c4858bd626725372913115b557286fae1f1e2ad8ea5e662bffe40ee9aae9ddd701f891240fa652a0ff6f153accfbb8c4a5966fb7e882557151d4de43e533fd4154e021eba72355346185cfc6b11d37d98974ee5d839f18898c46bc34a320e32838a530fe896f3ec1be91804828d89f803271a03b662e1192bfd3a6068aa18e7ae6d1fea423bd6673c42d81e5da5f0b532da58c5f285a9aee1fcd479a56d730fc074dd5f659559fc177553c17f48de989d677f9dccc29beae1d3ac12311714b7a728ec65ec202109871bf3f5dd7076fbe8e7ed5358d384f8535fd488a0e5ebe4f6d93e513d4984472444b60d2cefd1429e2383a64eb48d6818ae1810b02ef70127fd0810760201817021dc12d209f8b12aeb7285d511c8fd88ddcc3e8963f2d6e742c50221537b22c863fdc7a06f4a01b6a72b3f18e104f57978dbb086c97e5a828d25a1356512a86fd78bae710135d2430ae7b981375ece8f398b22c4c5d909f03393f2c8a5f136114bb02696a239d9141b45d88", 0x1000}, {&(0x7f00000000c0)="6ce0365935", 0x5}, {&(0x7f0000001300)="92aca1c948133d48a6f9b7914b9cefedc4671a26e1e5473adb898f31255287c30817e90ba582abcfea5168267cfba44c3af68879219dddd85f56f9b2cf429945b0a24cbda73a226599a1f7d443d1ed41796afb99643c5330e88f872594ccab35cb4d4c53104546f56fdc54d695726d6380a57be0972190fc13fc3cdcc372c2ee4af93e1e6abfb5fc547d97c90a2a6e90ac95f4dfbdc595c0f4735990a0d257d5b9908630703be01589a9df07f357bbc7d5a2a9bd60c728060ba586cb6f9fac26e6147486be7c8c65393a4e9d5b38450ef2479b5f78fbce2af19d1ab54b9be1e521aabb84a10b67e87d19084e0a54bb0cb0bd2d122a8bf18a124522a4ad5347fa9e8ad2d86d2f63e905dcf57125318ceb52281c59b1cb69ae997bd8fa767e993041a58906cd053a7c9b615856e2438a604d7c06468f459b355b300e9cca9ddfcd84df27870391db9f96f1d742dba7e2197822438724d64cb4256c48fd5fe45f67284a699fbc21a3c6f516116dfff4d8ff6271d9ab7b6be034153d24ef2d6da2696acd7a713aecc15273693953d0515b4bc5c2f21aea937e631a8f3ebbda7b75e8033a5c52a2bfd62d32b4b3b667a84116643765bcbea98b654b87f2691652150a356988bc92f90b9b4a560558996db4d6091f4fd97207520eef1bbc59a04aa9588ec3c9a3c09914e62c0f5e48d5eb27f494d9d219d5be9b407659ddf1e44a812981dd0d5028613d1e1052219daba1f46365113ec3677e7eba819298fdddbd17341325832fb002f5f0ab1235c00b8adcbe60f020211943f12370331385a240d4296387bb33d1ee58fc4916337706ed3a710e393daf974b964880cd4a0d15015375c61aeb8b9b611ef2aedcfe939a4ed224cf42704a85045b7e50854737bf87b7e0174c7c7e2d273aca867d63a1ead2b9dd60f3479c0e17c421a96c1b08966a960cee117f9a550df917051163828cc7bdef52fed4c08ff5f0bebdbad9478313dd0d63b08a7601049efa42a05d87dc83b595afb0491fde22f51f978733c9ca5c5bffcf473db9992703a68b87e4c6840edb56ed82a3876855590859869fff1a2dc0e0841a094355b6d424e95561d1489f1157cc2a9a6e17516749c3971d903d57c8db77d998fd40f3e3b8f5cf30f33622cc0a7cae84fc2b7e2ce68dc6c8805cec70fd691c74c12d802c6f3d78821ed95d4c84e6919ae5bec3786b416bbbe1cb4ee8d9fbe112abdefb359b25753e703ea2eda69de2739c56040fb86e86d77411347f14c958483e4fbf80f7dfa9db297a49e7055c1e920bc4c95c95fb94192e3ecaa03ebc877a4a2deab75b1281aff6b078830f2e3199a370a1c11e844d0fc266ec2fe539bc9e90e232bce6d4cf27d93c5b13407e3d5b06e2e239b337678f8bf57fed20632a21830ca0756888d1da041a26a821c1c261284d178b1e35c943be42faf6de904ad545473e838bbc0c3c07a75c442418e9d6c8ece01c1fabdcbf77235eaa47c055e72c6723ecb2a0c9efb7fdf22dd1fac6b30a049201d3d3b129d03ee07a5acd45514495406459f6eb0e9e6b83e004d73b354a80c8c0a2c81a6a66695a87ce62f4e1c247fce189be63096683c0b24deb3aa579295cb5b62ebe731b2e55d700cb2111249f4bf4bacba347e2ffeef2df04e97a628141e2f12bf32e7d694e724b8c185164f91cc5a5ac2f0c201c793baf78fa361296c33237285d8ec5f804ed49291abd34048f9370fb82e1a9113910fe28aa0623953db10c6b1c06e661f43c2b8dfabc892d1cadbf309b087a5dae5c4d13aac6309bd0c11fd5a4da716eb1339633415cb635462e912f994bcf85ffe949dd650b643b37fd41459654bf1b8569a8d5a360d8cc8bdb5ec009639cfbd9f459f70a75c54f5d428439d392ba1459f1fd1837804c3208398c5bb878aedf1a3668dd71cdba9aef48bedf95eb29cc2c63641ee17f8b0054ecaaf729ebb2067bb153f8fc62f913af45a421dcf446bd4b9b29278337e56d0d15ab865eb1aa3efa6053af4f1d3da3cc3282809324a3cf6fec5bfc78aba7e3aeb01f69ad1207dbb6d358dc26fd1027728807116710d86f045237908aa5140dcc5f58ad67cdcd67e6aa8b2b9db61339144701f7d2f7f2dd904dd95771e856e2153590b64745812f48f999492006805289b2a8544aca4745feec19d48df4f41a532bd4a0849b8ae9f1c062c8cce4cc57f765b3df3f5bb2bbb4e522057bf6ed97f81ed1106c70901b2ec6e8e530a942ba053e13c65094581be8f95784198e8166c5c6cb5514d7ace1bc7bb2bf7a5fce63bd266e569e76baa8d5f9c7b3b2b714f91e7a05ca1c9d928510517c4ef5a96b6b1c749786b7a10e11b0c272a8df29ca1cff61e56e1093f138eb1c95f0da8d3b776fe0e95db02ff08ab8542d990194b27d0725286d8f328f26b073c39732c32b70a450783ad4147b626384364cbee8440c09fc466a1acd939821523d713504ce71c2828d162182fb233fe675ac3dc1565f2ece12a53eb5f6e1d07051c3d1d36a97c5066084e4c4afd0a29485b19b84009d172f5fd8616be6c080ad65130b9f8bb84d8b54312f49948fd73be97c8500e95ceb676035c0e96debccb30ecd0c9e8b2b480489ee1753d184575a53e3a1b9d75f67c56faecfcaf20778360c014a4a2a5128e49c6f3085465d1453aef41b309515924f5607a16dfcba911fd62cbe17f24cf65fc09c1fdbb818efb8261fafcd76f7477b34a1ea539ce7050ab97c1da579285f839bb800cba84b29e835cd7126c043b0fc3ba1d55e0e0bc121329e66bb2fa1c6c605be58b8febb8a1592a516bdc4805c4f48a225871af613b67d33afb7fcf351ad1d225f618bde334b79c0a81b72dc876e09ecc8ccc0f5839395c5c97b642292b04fa6c9e18566cd2b6cca6e79b71947e5700e96eca066a3fa71acaeabac72251f40c6e839daeb13b73defb920ad5717a539bbfefcb17a39636786339939fda3ed5f322db3c6fd39a50a7fb66281a160d9bad03398821a7df0a373e9220c6112101aba78170ff0f4920b9af63f657d7dfc85210abb6f381e771b7ad9e8888c7a452e95635429b1a0b4245122acaeea6ac8702d0daff7e7ded79e56c9f2887b355a428435436e85e05c8ed30a9f0b3eee2ad9b090adad64c6dca7af2d3f8a7e6a1f52da179007e40488d4e5557bb44e1ccc91215beb3d0f0d0664874e8228e0f4f4d6ff443498cab8855f5c5c7ad4fc55371b2eb6509977fbc93b544ee393e1bc70cbb91cb857794ab12d965a7cf96c48ba1eded8580836d990c39e8e9ae95b69c0204522114e03ebd9472f95f3b7b56e6c8a5b947bd1fb3d512973f4879270daa5bb5b3efa1ff060af0fa54889f867ccb6929ee82394976e8a68dc5321fa47a7c15d9f95e36824ae03a13ef7e9bf249071e87b255fd8909d59a5163a81f7b209d12eb56a9f4a477307f3a17bc34473f4da7bee7ed13ff564ae8131f0add7f6eff3b68780df344e4131ba3f10a052f041a508114f284be7bced5dd91d34f033238a9a0936d60bc2b774d1c2e0c2541ccdc027f447144b9803dab593fc48c7aaaddd69b0fd13032cc733261455c479705c2896c052e11c9dd472027d02d5a2337ff1ef1cfa5e9cc35f3197ad7a0e2744ddf811a0182ac3189a7d4f94528a1ebf324e797796d614934b6c35d95b521a46aab16245cc3c0762ba680df7e791e609638c8ee9bc205a0546b612d18f666319dee3928327fef0a284f675d920acac8a171b5d5c7f6d8961c3da55d7560a3a412d18cff38b36490c1f20b050eaa35ce543d138d1b5ff4aeb48db495e37e7d90f58428d2cb11c1984aadb8e263ab4c0e861540da8a145cf789b6f2d3794724e38cfaac4e91f03f9b23fe4a4a4621d0164015c6081285f183f79c787531883b26e30a9aba5c4a50e2939d3efaaab684fcf62fc568b4871c5eb4d282cd840ab3331721e0a765ff5fbe204668aef07dd40afca9eadcb04c166fdf962450d1d0e14905e59a180c9a7c3629f07e0c4ec058c916430d229311f0fc8a16f62a50f06d83b8cc370d462d4e62199b0f3845c84320f3b80b1a77a6406bfe71ac56971bb8d3c407eba453a559756cf820b60b522482089a99dae3c7e783a53b18cd0561a18f44536f935b588a363f18678e3724065a3014d5df105da3935e6674f4543a159ca51cd2ccc4d86fb873d714f3ee6c957b3b4139dcb27d10d7a34ba80d6b0331c8d9ff4f2f5cc36dc3d03044b81588eb9f6f92d4a59cd8828a8b6e1239c8d214192d6ead785e000efb6991fdec2d51035bb405e5e16440fed82302c746a6defdc44a9ddead45c88672a9ace591d8517a2232428a58b5594443c13bea69a8f59cd8255d2b0fcf34fa822ea573c63410d42371bf862d757d4697ad770cac18741215a528b241a3d7cb812a356035eeed6b18618f5736ee86600ad55bfc44948d5f48f37d14104889601db32ea98c73f14ee0d2d309bb4a3d619f787662f856fdd6626199b49b6d9009712b7a345df5a74d94b42bfad900cc91befcf2760d4358c8610556493292d0c3cf49df35e36d72aaabc56e0b7e9eda78c423e4f42dea44ae235974797c5ca17739170aa94a1825cbe34a8fc5072635697a01759dca18b92cfe60fc820d690179447c866310d40ea0785630ebb8d852bec3791e27e15a9ae1f8dfdcd8b0f335e94975ebe53af1f2ed73d98b7868c1a2b010399c706ed8fd44f71cee912c58e4f468320b86208b791becfdeb554d85b0c8f22ea72ab54e6f47c72e1c69d277d66fea34dc61b7529d7108356a8176d8c0367053bd02e4309220724a4236bd363e4480414dfafcb278984be2de59d46c5ef93fb3e77f7b5d554a44c66cfb0645c6739b9fe682b1c8afc6eca56ecc47ad5e8c839821a4954e532b0650fb2931064f2ebb5a0c3abbc58689bc291060b0d8e34cc230f635cd0f16566eb3b1125f13f84fe5cc449aff800ec6b6cde35f5d3434252c743fd7aeabb9b50036aa23205fa07ba8926903c4ee1f136d1346db925b0ca4c7aaf18ac75af99b4585390db081381b329a8e12064de0162d3a19b99b2e040d8c852de9503e23cbb76318bad53c2f7690408e4495f7c49cb489f1843e04db6f8fc654455f029f92394b9b63b35d94bc22841c83480641cafbcd13fdde2376ae92ed0c2308864061cba61417d73f5f42d01d495edb45bab462c4d4aaec167a7205cc3ba793f25f40cd991dee191966e127d537adb39c3188cc044c9a70839c5e11029c92ab35dac56c1567b0602f78dfb6c8f8678382a97b9c85b83207c7665a04075650df4914df7d394d20a94a3900ffe0ea72a9ce4e072941bd6c6c9c7587b85c3f4cf1fd56713840728ebced4db550a6b88dcd45f95e793c218323fce15f78ab0876472db68028c36c797e732ecbeea6d0d4e839f5a560b390a79c8b0a0c3f178ebbfc5afc137fa1b396063ca54d24872e780175fa170647281fd10a95a97805de486d4f24b30db11c0efd3f7e1fec063965296da317e87a37443c060c583540bbfdede2f84aaad8a5c4e1040cb0247ed237150b63c43b571e7cd979ff6f7c6c9da837c89ab1d1415600f3c10ae2b411526c231d0e3c4ea8ee6b63d9d2590fcf0fecfc12d3f8a6d87e2f0246e37692fd6453e538a6e30ac696de893055e93363cbeca825b32bb5debc7578461bf6ab51f2431347e160b25b83118d083368c4d76055c00f0892cd863cc3b223000117aeeee115a1b44316970cca3c0b79d14d724b5ddc2070ffbf64656289732bacb974e5c43bdda772b939242d5251bff10cd4dcade", 0x1000}, {&(0x7f0000000100)="45911d5ffbb8", 0x6}, {&(0x7f0000002300)="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", 0xfd}, {&(0x7f0000002400)="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", 0xfd}], 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000300)="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", 0x1000}, {&(0x7f00000000c0)="6ce0365935", 0x5}, {&(0x7f0000001300)="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", 0x1000}, {&(0x7f0000000100)="45911d5ffbb8", 0x6}, {&(0x7f0000002300)="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", 0xfd}, {&(0x7f0000002400)="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", 0xfd}], 0x6) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)

[  276.417420][ T5934] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  276.425231][ T5934] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  276.433043][ T5934] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  276.440860][ T5934]  </TASK>
07:00:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf, 0x0, 0x0}, 0x58)

07:00:19 executing program 1:
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000300)="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", 0x1000}, {&(0x7f00000000c0)="6ce0365935", 0x5}, {&(0x7f0000001300)="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", 0x1000}, {&(0x7f0000000100)="45911d5ffbb8", 0x6}, {&(0x7f0000002300)="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", 0xfd}, {&(0x7f0000002400)="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", 0xfd}], 0x6) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0x41000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000040)=[@mss={0x2, 0x7ff}, @window={0x3, 0x7f, 0x3f}, @mss={0x2, 0x6}, @mss={0x2, 0x900}], 0x4)

07:00:19 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="180100686ebbfc59222d8308e0b1cb3386e7c5d784b8e4f6d8dbad009522af8e6563fdd82f1001e2db967e94d24b3d03000000cd9189be1cd11610d9a63cf08933e785fb5b48950105cd179b297c9301000000a017b823d749b5dbf58d4090fbb5a4eeac2dbb8391339bf52b2299a10ddccb7e354749cee49bf31799ad55685ad2cf6309e3cda913caa217e7489c6c1df728b26a16489f4a60c022a057ca5ecaf25a5bff963518babe9b148a34ef4d25c6d405c90c55d6aa91085a49b570d74d4eea991ec55ea68f16b679"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe9d)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000200)={0xffffffffffffffff, 0x81, 0x10}, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x8, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x5, 0x5, 0x0, 0xa}, @jmp={0x5, 0x0, 0x0, 0x9, 0x3, 0x8}, @jmp={0x5, 0x1, 0x2, 0x6, 0x7, 0xc, 0x4}, @map_idx={0x18, 0xa}, @map_fd={0x18, 0x9, 0x1, 0x0, r1}], &(0x7f0000000040)='syzkaller\x00', 0x7ff, 0xf1, &(0x7f0000000080)=""/241, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x2, 0x2}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x7, 0x5, 0x14a2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000240)=[r3, 0x1, 0xffffffffffffffff, r4, 0x1, 0xffffffffffffffff]}, 0x80)
readv(r0, 0x0, 0x0)

07:00:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58)

07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe9d) (async, rerun: 64)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2) (async)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000200)={0xffffffffffffffff, 0x81, 0x10}, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x8, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x5, 0x5, 0x0, 0xa}, @jmp={0x5, 0x0, 0x0, 0x9, 0x3, 0x8}, @jmp={0x5, 0x1, 0x2, 0x6, 0x7, 0xc, 0x4}, @map_idx={0x18, 0xa}, @map_fd={0x18, 0x9, 0x1, 0x0, r1}], &(0x7f0000000040)='syzkaller\x00', 0x7ff, 0xf1, &(0x7f0000000080)=""/241, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x2, 0x2}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x7, 0x5, 0x14a2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000240)=[r3, 0x1, 0xffffffffffffffff, r4, 0x1, 0xffffffffffffffff]}, 0x80) (async)
readv(r0, 0x0, 0x0)

07:00:19 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="180100686ebbfc59222d8308e0b1cb3386e7c5d784b8e4f6d8dbad009522af8e6563fdd82f1001e2db967e94d24b3d03000000cd9189be1cd11610d9a63cf08933e785fb5b48950105cd179b297c9301000000a017b823d749b5dbf58d4090fbb5a4eeac2dbb8391339bf52b2299a10ddccb7e354749cee49bf31799ad55685ad2cf6309e3cda913caa217e7489c6c1df728b26a16489f4a60c022a057ca5ecaf25a5bff963518babe9b148a34ef4d25c6d405c90c55d6aa91085a49b570d74d4eea991ec55ea68f16b679"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="180100686ebbfc59222d8308e0b1cb3386e7c5d784b8e4f6d8dbad009522af8e6563fdd82f1001e2db967e94d24b3d03000000cd9189be1cd11610d9a63cf08933e785fb5b48950105cd179b297c9301000000a017b823d749b5dbf58d4090fbb5a4eeac2dbb8391339bf52b2299a10ddccb7e354749cee49bf31799ad55685ad2cf6309e3cda913caa217e7489c6c1df728b26a16489f4a60c022a057ca5ecaf25a5bff963518babe9b148a34ef4d25c6d405c90c55d6aa91085a49b570d74d4eea991ec55ea68f16b679"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)

[  276.551327][ T5979] FAULT_INJECTION: forcing a failure.
[  276.551327][ T5979] name failslab, interval 1, probability 0, space 0, times 0
[  276.570295][ T5979] CPU: 0 PID: 5979 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  276.580286][ T5979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  276.590263][ T5979] Call Trace:
[  276.593489][ T5979]  <TASK>
[  276.596256][ T5979]  dump_stack_lvl+0x151/0x1b7
[  276.600963][ T5979]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  276.606270][ T5979]  ? vma_interval_tree_augment_rotate+0x210/0x210
[  276.612591][ T5979]  dump_stack+0x15/0x17
[  276.616584][ T5979]  should_fail+0x3c0/0x510
[  276.621014][ T5979]  __should_failslab+0x9f/0xe0
[  276.625616][ T5979]  should_failslab+0x9/0x20
[  276.629948][ T5979]  kmem_cache_alloc+0x4f/0x2f0
[  276.634546][ T5979]  ? anon_vma_fork+0xf7/0x4f0
[  276.639066][ T5979]  anon_vma_fork+0xf7/0x4f0
[  276.643418][ T5979]  ? anon_vma_name+0x4c/0x70
[  276.648779][ T5979]  dup_mmap+0x750/0xea0
[  276.652773][ T5979]  ? __delayed_free_task+0x20/0x20
[  276.657721][ T5979]  ? mm_init+0x807/0x960
[  276.661800][ T5979]  dup_mm+0x91/0x330
[  276.665548][ T5979]  copy_mm+0x108/0x1b0
[  276.669437][ T5979]  copy_process+0x1295/0x3250
[  276.673953][ T5979]  ? check_stack_object+0xf7/0x130
[  276.678900][ T5979]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  276.683845][ T5979]  ? copy_clone_args_from_user+0x6cf/0x790
[  276.689490][ T5979]  kernel_clone+0x22d/0x990
[  276.693826][ T5979]  ? dup_mmap+0xea0/0xea0
[  276.698000][ T5979]  ? create_io_thread+0x1e0/0x1e0
[  276.702852][ T5979]  ? file_end_write+0x1b0/0x1b0
[  276.707540][ T5979]  __x64_sys_clone3+0x375/0x3a0
[  276.712226][ T5979]  ? __ia32_sys_clone+0x300/0x300
[  276.717091][ T5979]  ? ksys_write+0x25f/0x2c0
[  276.721427][ T5979]  ? debug_smp_processor_id+0x17/0x20
[  276.726644][ T5979]  do_syscall_64+0x44/0xd0
[  276.730897][ T5979]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  276.736622][ T5979] RIP: 0033:0x7f8e237f0639
[  276.740870][ T5979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  276.760311][ T5979] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  276.768555][ T5979] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  276.776366][ T5979] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  276.784353][ T5979] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  276.792162][ T5979] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
07:00:19 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe9d) (rerun: 64)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async, rerun: 32)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff}) (rerun: 32)
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r2)
splice(r2, 0x0, r3, 0x0, 0x200, 0x0) (async, rerun: 64)
writev(r3, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (rerun: 64)
r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000200)={0xffffffffffffffff, 0x81, 0x10}, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x8, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x5, 0x5, 0x0, 0xa}, @jmp={0x5, 0x0, 0x0, 0x9, 0x3, 0x8}, @jmp={0x5, 0x1, 0x2, 0x6, 0x7, 0xc, 0x4}, @map_idx={0x18, 0xa}, @map_fd={0x18, 0x9, 0x1, 0x0, r1}], &(0x7f0000000040)='syzkaller\x00', 0x7ff, 0xf1, &(0x7f0000000080)=""/241, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x2, 0x2}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x7, 0x5, 0x14a2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000240)=[r3, 0x1, 0xffffffffffffffff, r4, 0x1, 0xffffffffffffffff]}, 0x80)
readv(r0, 0x0, 0x0)

07:00:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 65)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x45)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x80)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="180100686ebbfc59222d8308e0b1cb3386e7c5d784b8e4f6d8dbad009522af8e6563fdd82f1001e2db967e94d24b3d03000000cd9189be1cd11610d9a63cf08933e785fb5b48950105cd179b297c9301000000a017b823d749b5dbf58d4090fbb5a4eeac2dbb8391339bf52b2299a10ddccb7e354749cee49bf31799ad55685ad2cf6309e3cda913caa217e7489c6c1df728b26a16489f4a60c022a057ca5ecaf25a5bff963518babe9b148a34ef4d25c6d405c90c55d6aa91085a49b570d74d4eea991ec55ea68f16b679"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58)

[  276.799977][ T5979] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  276.807797][ T5979]  </TASK>
07:00:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xf5ffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x24af02a0, 0x0, 0x0}, 0x58)

07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f0000004919ed6cd55c873b0400000000000000d17c2948883930e82b833e8a19240bf092baceea0b19a397425e3ebad0bbc1e56c7abbf915ba9ef4fa5b89d64c017f9b4c9a5a5f0fb60a4bd7b4dc6a8ee16bd56273ce251d29d8cab4"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x45)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x80) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f0000004919ed6cd55c873b0400000000000000d17c2948883930e82b833e8a19240bf092baceea0b19a397425e3ebad0bbc1e56c7abbf915ba9ef4fa5b89d64c017f9b4c9a5a5f0fb60a4bd7b4dc6a8ee16bd56273ce251d29d8cab4"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x41, 0x0, 0x0}, 0x58)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x45) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (rerun: 64)
creat(&(0x7f0000000000)='./file0\x00', 0x80)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

[  276.893994][ T6011] FAULT_INJECTION: forcing a failure.
[  276.893994][ T6011] name failslab, interval 1, probability 0, space 0, times 0
[  276.918076][ T6011] CPU: 1 PID: 6011 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  276.928075][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  276.937972][ T6011] Call Trace:
[  276.941096][ T6011]  <TASK>
07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x28, 0x9a1, 0x4)
r1 = dup2(r0, 0xffffffffffffffff)
r2 = dup2(r0, r0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_elf64(r3, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0)
writev(r5, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0)=0x1, 0x2)
dup(r6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x7, &(0x7f0000000000)=@raw=[@alu={0x4, 0x0, 0x7, 0x2, 0x3, 0xffffffffffffffff, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x20}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1ff}], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x44, &(0x7f0000000080)=""/68, 0x41000, 0x1d, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f0000000100)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x4, 0x6, 0xf, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0xffffffffffffffff, r2, r3, r5, 0xffffffffffffffff]}, 0x80)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

[  276.943872][ T6011]  dump_stack_lvl+0x151/0x1b7
[  276.948386][ T6011]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  276.953681][ T6011]  dump_stack+0x15/0x17
[  276.957674][ T6011]  should_fail+0x3c0/0x510
[  276.961927][ T6011]  __should_failslab+0x9f/0xe0
[  276.966525][ T6011]  should_failslab+0x9/0x20
[  276.970884][ T6011]  kmem_cache_alloc+0x4f/0x2f0
[  276.975465][ T6011]  ? vm_area_dup+0x26/0x1d0
[  276.979804][ T6011]  vm_area_dup+0x26/0x1d0
[  276.983973][ T6011]  dup_mmap+0x6b8/0xea0
[  276.987967][ T6011]  ? __delayed_free_task+0x20/0x20
[  276.992911][ T6011]  ? mm_init+0x807/0x960
[  276.996986][ T6011]  dup_mm+0x91/0x330
[  277.000718][ T6011]  copy_mm+0x108/0x1b0
[  277.004659][ T6011]  copy_process+0x1295/0x3250
[  277.009136][ T6011]  ? check_stack_object+0xf7/0x130
[  277.014087][ T6011]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  277.019032][ T6011]  ? copy_clone_args_from_user+0x6cf/0x790
[  277.024674][ T6011]  kernel_clone+0x22d/0x990
[  277.029012][ T6011]  ? dup_mmap+0xea0/0xea0
[  277.033177][ T6011]  ? create_io_thread+0x1e0/0x1e0
[  277.038040][ T6011]  ? file_end_write+0x1b0/0x1b0
[  277.042736][ T6011]  __x64_sys_clone3+0x375/0x3a0
[  277.047413][ T6011]  ? __ia32_sys_clone+0x300/0x300
[  277.052273][ T6011]  ? ksys_write+0x25f/0x2c0
[  277.056617][ T6011]  ? debug_smp_processor_id+0x17/0x20
[  277.061820][ T6011]  do_syscall_64+0x44/0xd0
[  277.066072][ T6011]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  277.071805][ T6011] RIP: 0033:0x7f8e237f0639
[  277.076055][ T6011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  277.095504][ T6011] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  277.103744][ T6011] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  277.111638][ T6011] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  277.119468][ T6011] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  277.128219][ T6011] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  277.136729][ T6011] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
07:00:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 66)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x28, 0x9a1, 0x4)
r1 = dup2(r0, 0xffffffffffffffff)
r2 = dup2(r0, r0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_elf64(r3, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0)
writev(r5, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0)=0x1, 0x2)
dup(r6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x7, &(0x7f0000000000)=@raw=[@alu={0x4, 0x0, 0x7, 0x2, 0x3, 0xffffffffffffffff, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x20}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1ff}], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x44, &(0x7f0000000080)=""/68, 0x41000, 0x1d, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f0000000100)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x4, 0x6, 0xf, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0xffffffffffffffff, r2, r3, r5, 0xffffffffffffffff]}, 0x80)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
fallocate(0xffffffffffffffff, 0x28, 0x9a1, 0x4) (async)
dup2(r0, 0xffffffffffffffff) (async)
dup2(r0, r0) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r3, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)) (async)
close(r4) (async)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0) (async)
writev(r5, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0)=0x1, 0x2) (async)
dup(r6) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x7, &(0x7f0000000000)=@raw=[@alu={0x4, 0x0, 0x7, 0x2, 0x3, 0xffffffffffffffff, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x20}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1ff}], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x44, &(0x7f0000000080)=""/68, 0x41000, 0x1d, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f0000000100)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x4, 0x6, 0xf, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0xffffffffffffffff, r2, r3, r5, 0xffffffffffffffff]}, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r7, 0x0, 0x0) (async)

07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f0000004919ed6cd55c873b0400000000000000d17c2948883930e82b833e8a19240bf092baceea0b19a397425e3ebad0bbc1e56c7abbf915ba9ef4fa5b89d64c017f9b4c9a5a5f0fb60a4bd7b4dc6a8ee16bd56273ce251d29d8cab4"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58)

[  277.144543][ T6011]  </TASK>
07:00:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfbffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x28, 0x9a1, 0x4) (async)
r1 = dup2(r0, 0xffffffffffffffff) (async)
r2 = dup2(r0, r0) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_elf64(r3, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4) (async)
splice(r4, 0x0, r5, 0x0, 0x200, 0x0) (async)
writev(r5, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0)=0x1, 0x2)
dup(r6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x7, &(0x7f0000000000)=@raw=[@alu={0x4, 0x0, 0x7, 0x2, 0x3, 0xffffffffffffffff, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x20}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1ff}], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x44, &(0x7f0000000080)=""/68, 0x41000, 0x1d, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f0000000100)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x4, 0x6, 0xf, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000180)=[0xffffffffffffffff, r2, r3, r5, 0xffffffffffffffff]}, 0x80) (async)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_io_uring_complete(0x0)
openat$cgroup_ro(r3, &(0x7f0000000380)='blkio.bfq.group_wait_time\x00', 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='numa_maps\x00')
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
write$binfmt_elf64(r9, 0x0, 0xfe30)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x7, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x286, 0x0, 0x0, 0x0, 0x5980}, [@map_val={0x18, 0x7, 0x2, 0x0, r1}, @ldst={0x0, 0x2, 0x0, 0xb, 0x3, 0x18}, @call={0x85, 0x0, 0x0, 0x53}]}, &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x41000, 0x8, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xd, 0xb89, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[r8, r9]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r10, 0x0, 0x0)

07:00:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x70, 0x0, 0x0}, 0x58)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffffe)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffffe) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30) (async, rerun: 64)
r2 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
r3 = syz_io_uring_complete(0x0)
openat$cgroup_ro(r3, &(0x7f0000000380)='blkio.bfq.group_wait_time\x00', 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async, rerun: 64)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (rerun: 64)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async, rerun: 64)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async, rerun: 64)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='numa_maps\x00') (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
write$binfmt_elf64(r9, 0x0, 0xfe30) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x7, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x286, 0x0, 0x0, 0x0, 0x5980}, [@map_val={0x18, 0x7, 0x2, 0x0, r1}, @ldst={0x0, 0x2, 0x0, 0xb, 0x3, 0x18}, @call={0x85, 0x0, 0x0, 0x53}]}, &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x41000, 0x8, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xd, 0xb89, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[r8, r9]}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r10, 0x0, 0x0)

[  277.227049][ T6059] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  277.240471][ T6064] FAULT_INJECTION: forcing a failure.
[  277.240471][ T6064] name failslab, interval 1, probability 0, space 0, times 0
07:00:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58)

[  277.275677][ T6064] CPU: 0 PID: 6064 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  277.285849][ T6064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  277.295749][ T6064] Call Trace:
[  277.298863][ T6064]  <TASK>
[  277.301768][ T6064]  dump_stack_lvl+0x151/0x1b7
[  277.306270][ T6064]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  277.311567][ T6064]  dump_stack+0x15/0x17
[  277.315482][ T6066] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  277.315560][ T6064]  should_fail+0x3c0/0x510
[  277.328932][ T6064]  __should_failslab+0x9f/0xe0
[  277.333527][ T6064]  should_failslab+0x9/0x20
[  277.337864][ T6064]  kmem_cache_alloc+0x4f/0x2f0
[  277.342465][ T6064]  ? vm_area_dup+0x26/0x1d0
[  277.346805][ T6064]  vm_area_dup+0x26/0x1d0
[  277.350969][ T6064]  dup_mmap+0x6b8/0xea0
[  277.354975][ T6064]  ? __delayed_free_task+0x20/0x20
[  277.359912][ T6064]  ? mm_init+0x807/0x960
[  277.364016][ T6064]  dup_mm+0x91/0x330
[  277.367722][ T6064]  copy_mm+0x108/0x1b0
[  277.371625][ T6064]  copy_process+0x1295/0x3250
[  277.376141][ T6064]  ? check_stack_object+0xf7/0x130
[  277.381088][ T6064]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  277.386483][ T6064]  ? copy_clone_args_from_user+0x6cf/0x790
[  277.392110][ T6064]  kernel_clone+0x22d/0x990
[  277.396459][ T6064]  ? dup_mmap+0xea0/0xea0
[  277.400616][ T6064]  ? create_io_thread+0x1e0/0x1e0
[  277.405475][ T6064]  ? file_end_write+0x1b0/0x1b0
[  277.410171][ T6064]  __x64_sys_clone3+0x375/0x3a0
[  277.414867][ T6064]  ? __ia32_sys_clone+0x300/0x300
[  277.419711][ T6064]  ? ksys_write+0x25f/0x2c0
[  277.424055][ T6064]  ? debug_smp_processor_id+0x17/0x20
[  277.429258][ T6064]  do_syscall_64+0x44/0xd0
[  277.433512][ T6064]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  277.439237][ T6064] RIP: 0033:0x7f8e237f0639
[  277.443582][ T6064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  277.463031][ T6064] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 67)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffffe)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffffe) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)

07:00:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x41000000, 0x0, 0x0}, 0x58)

07:00:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfeffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x300, 0x0, 0x0}, 0x58)

[  277.471263][ T6064] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  277.479075][ T6064] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  277.486974][ T6064] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  277.494800][ T6064] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  277.502621][ T6064] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  277.510419][ T6064]  </TASK>
[  277.517721][ T6066] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
07:00:20 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = syz_io_uring_complete(0x0)
openat$cgroup_ro(r3, &(0x7f0000000380)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) (async)
r4 = socket(0x10, 0x3, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r6 = socket(0x10, 0x2, 0x0) (rerun: 64)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='numa_maps\x00') (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
write$binfmt_elf64(r9, 0x0, 0xfe30)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x7, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x286, 0x0, 0x0, 0x0, 0x5980}, [@map_val={0x18, 0x7, 0x2, 0x0, r1}, @ldst={0x0, 0x2, 0x0, 0xb, 0x3, 0x18}, @call={0x85, 0x0, 0x0, 0x53}]}, &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x41000, 0x8, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0xd, 0xb89, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[r8, r9]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r10, 0x0, 0x0)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000600", @ANYRES16=r2, @ANYBLOB="1d080000000000000000100000000c0001800800030000000000"], 0x20}}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, r2, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20004080)
readv(r0, 0x0, 0x0)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000600", @ANYRES16=r2, @ANYBLOB="1d080000000000000000100000000c0001800800030000000000"], 0x20}}, 0x0) (async)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, r2, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20004080) (async)
readv(r0, 0x0, 0x0)

07:00:20 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="20000600", @ANYRES16=r2, @ANYBLOB="1d080000000000000000100000000c0001800800030000000000"], 0x20}}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, r2, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20004080)
readv(r0, 0x0, 0x0)

07:00:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x700, 0x0, 0x0}, 0x58)

[  277.589636][ T6100] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f00000000c0)=""/131, &(0x7f0000000180)=0x83)

07:00:21 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32, @ANYRES8=r0], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000244500000000408e0000000000000000", @ANYRESOCT=r3, @ANYBLOB="0000b87b10bef5c2aebc817a81ffbc6a0ab32d38a71ecac3ff002d9d5388560000000800010068a3c1e0c2eaf20894fb3759"], 0x48}, 0x1, 0x0, 0x0, 0xc810}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0], 0x0, 0x8, &(0x7f0000000280)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000540)={'syztnl2\x00', &(0x7f00000004c0)={'ip6tnl0\x00', <r13=>0x0, 0x4, 0x6, 0x3, 0x3, 0x8, @empty, @private1, 0x20, 0x8000, 0x7e5, 0x8f}})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r14=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f00000005c0)={'tunl0\x00', <r15=>0x0, 0x1, 0x10091, 0x34, 0x9, {{0x17, 0x4, 0x0, 0x9, 0x5c, 0x65, 0x0, 0x81, 0x29, 0x0, @local, @loopback, {[@rr={0x7, 0xf, 0x7b, [@empty, @multicast2, @multicast1]}, @generic={0x88, 0x2}, @rr={0x7, 0x1b, 0xbd, [@broadcast, @broadcast, @local, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x16}, @dev={0xac, 0x14, 0x14, 0x3b}]}, @end, @ssrr={0x89, 0xb, 0xb8, [@multicast2, @dev={0xac, 0x14, 0x14, 0x3d}]}, @ra={0x94, 0x4}, @ssrr={0x89, 0xb, 0xe, [@rand_addr=0x64010101, @remote]}]}}}}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000a40)={0x218, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}]}]}, 0x218}}, 0x4)

[  277.639474][ T6120] FAULT_INJECTION: forcing a failure.
[  277.639474][ T6120] name failslab, interval 1, probability 0, space 0, times 0
[  277.654547][ T6120] CPU: 0 PID: 6120 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  277.664547][ T6120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  277.674448][ T6120] Call Trace:
[  277.677577][ T6120]  <TASK>
[  277.680357][ T6120]  dump_stack_lvl+0x151/0x1b7
[  277.684854][ T6120]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  277.688068][ T6124] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  277.690150][ T6120]  dump_stack+0x15/0x17
[  277.690179][ T6120]  should_fail+0x3c0/0x510
[  277.705310][ T6124] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  277.709259][ T6120]  __should_failslab+0x9f/0xe0
[  277.709293][ T6120]  should_failslab+0x9/0x20
[  277.709308][ T6120]  kmem_cache_alloc+0x4f/0x2f0
[  277.709325][ T6120]  ? vm_area_dup+0x26/0x1d0
[  277.736451][ T6120]  vm_area_dup+0x26/0x1d0
[  277.740613][ T6120]  dup_mmap+0x6b8/0xea0
[  277.744632][ T6120]  ? __delayed_free_task+0x20/0x20
[  277.749562][ T6120]  ? mm_init+0x807/0x960
[  277.753631][ T6120]  dup_mm+0x91/0x330
[  277.757371][ T6120]  copy_mm+0x108/0x1b0
[  277.761270][ T6120]  copy_process+0x1295/0x3250
[  277.765782][ T6120]  ? check_stack_object+0xf7/0x130
[  277.770729][ T6120]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  277.775854][ T6120]  ? copy_clone_args_from_user+0x6cf/0x790
[  277.781506][ T6120]  kernel_clone+0x22d/0x990
[  277.785831][ T6120]  ? dup_mmap+0xea0/0xea0
[  277.790001][ T6120]  ? create_io_thread+0x1e0/0x1e0
[  277.794870][ T6120]  ? file_end_write+0x1b0/0x1b0
[  277.799552][ T6120]  __x64_sys_clone3+0x375/0x3a0
[  277.804232][ T6120]  ? __ia32_sys_clone+0x300/0x300
[  277.809094][ T6120]  ? ksys_write+0x25f/0x2c0
[  277.813432][ T6120]  ? debug_smp_processor_id+0x17/0x20
[  277.818646][ T6120]  do_syscall_64+0x44/0xd0
[  277.822893][ T6120]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  277.828619][ T6120] RIP: 0033:0x7f8e237f0639
[  277.832873][ T6120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  277.852406][ T6120] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  277.860647][ T6120] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  277.868461][ T6120] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  277.876270][ T6120] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
07:00:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 68)

07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 64)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
readv(r1, 0x0, 0x0) (async)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f00000000c0)=""/131, &(0x7f0000000180)=0x83)

07:00:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xff0f0100}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x80350000, 0x0, 0x0}, 0x58)

07:00:21 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32, @ANYRES8=r0], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000244500000000408e0000000000000000", @ANYRESOCT=r3, @ANYBLOB="0000b87b10bef5c2aebc817a81ffbc6a0ab32d38a71ecac3ff002d9d5388560000000800010068a3c1e0c2eaf20894fb3759"], 0x48}, 0x1, 0x0, 0x0, 0xc810}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0) (async)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0], 0x0, 0x8, &(0x7f0000000280)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000340)}}, 0x10) (async)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000540)={'syztnl2\x00', &(0x7f00000004c0)={'ip6tnl0\x00', <r13=>0x0, 0x4, 0x6, 0x3, 0x3, 0x8, @empty, @private1, 0x20, 0x8000, 0x7e5, 0x8f}}) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r14=>0x0}) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f00000005c0)={'tunl0\x00', <r15=>0x0, 0x1, 0x10091, 0x34, 0x9, {{0x17, 0x4, 0x0, 0x9, 0x5c, 0x65, 0x0, 0x81, 0x29, 0x0, @local, @loopback, {[@rr={0x7, 0xf, 0x7b, [@empty, @multicast2, @multicast1]}, @generic={0x88, 0x2}, @rr={0x7, 0x1b, 0xbd, [@broadcast, @broadcast, @local, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x16}, @dev={0xac, 0x14, 0x14, 0x3b}]}, @end, @ssrr={0x89, 0xb, 0xb8, [@multicast2, @dev={0xac, 0x14, 0x14, 0x3d}]}, @ra={0x94, 0x4}, @ssrr={0x89, 0xb, 0xe, [@rand_addr=0x64010101, @remote]}]}}}}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000a40)={0x218, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}]}]}, 0x218}}, 0x4)

07:00:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x900, 0x0, 0x0}, 0x58)

[  277.884531][ T6120] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  277.892327][ T6120] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  277.900143][ T6120]  </TASK>
07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f00000000c0)=""/131, &(0x7f0000000180)=0x83)

07:00:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xa002af24, 0x0, 0x0}, 0x58)

07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
sendfile(0xffffffffffffffff, r1, &(0x7f00000000c0)=0x1, 0x4fc8)
readv(0xffffffffffffffff, 0x0, 0x0)
readv(r0, &(0x7f0000000280)=[{&(0x7f0000000100)=""/170, 0xaa}, {&(0x7f0000000300)=""/186, 0xba}, {&(0x7f00000003c0)=""/95, 0x5f}, {&(0x7f00000001c0)}], 0x4)

07:00:21 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32, @ANYRES8=r0], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000244500000000408e0000000000000000", @ANYRESOCT=r3, @ANYBLOB="0000b87b10bef5c2aebc817a81ffbc6a0ab32d38a71ecac3ff002d9d5388560000000800010068a3c1e0c2eaf20894fb3759"], 0x48}, 0x1, 0x0, 0x0, 0xc810}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0) (async)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0], 0x0, 0x8, &(0x7f0000000280)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000540)={'syztnl2\x00', &(0x7f00000004c0)={'ip6tnl0\x00', <r13=>0x0, 0x4, 0x6, 0x3, 0x3, 0x8, @empty, @private1, 0x20, 0x8000, 0x7e5, 0x8f}}) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r14=>0x0}) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000640)={'ip_vti0\x00', &(0x7f00000005c0)={'tunl0\x00', <r15=>0x0, 0x1, 0x10091, 0x34, 0x9, {{0x17, 0x4, 0x0, 0x9, 0x5c, 0x65, 0x0, 0x81, 0x29, 0x0, @local, @loopback, {[@rr={0x7, 0xf, 0x7b, [@empty, @multicast2, @multicast1]}, @generic={0x88, 0x2}, @rr={0x7, 0x1b, 0xbd, [@broadcast, @broadcast, @local, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x16}, @dev={0xac, 0x14, 0x14, 0x3b}]}, @end, @ssrr={0x89, 0xb, 0xb8, [@multicast2, @dev={0xac, 0x14, 0x14, 0x3d}]}, @ra={0x94, 0x4}, @ssrr={0x89, 0xb, 0xe, [@rand_addr=0x64010101, @remote]}]}}}}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000a40)={0x218, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}]}]}, 0x218}}, 0x4)

[  277.962276][ T6138] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
07:00:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xffff0300}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
sendfile(0xffffffffffffffff, r1, &(0x7f00000000c0)=0x1, 0x4fc8)
readv(0xffffffffffffffff, 0x0, 0x0)
readv(r0, &(0x7f0000000280)=[{&(0x7f0000000100)=""/170, 0xaa}, {&(0x7f0000000300)=""/186, 0xba}, {&(0x7f00000003c0)=""/95, 0x5f}, {&(0x7f00000001c0)}], 0x4)

[  278.009559][ T6162] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  278.035067][ T6171] FAULT_INJECTION: forcing a failure.
[  278.035067][ T6171] name failslab, interval 1, probability 0, space 0, times 0
[  278.048015][ T6171] CPU: 0 PID: 6171 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  278.057989][ T6171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  278.067884][ T6171] Call Trace:
[  278.071006][ T6171]  <TASK>
[  278.073787][ T6171]  dump_stack_lvl+0x151/0x1b7
[  278.078300][ T6171]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  278.083768][ T6171]  dump_stack+0x15/0x17
[  278.087759][ T6171]  should_fail+0x3c0/0x510
[  278.092011][ T6171]  __should_failslab+0x9f/0xe0
[  278.096613][ T6171]  should_failslab+0x9/0x20
[  278.100950][ T6171]  kmem_cache_alloc+0x4f/0x2f0
[  278.105550][ T6171]  ? vm_area_dup+0x26/0x1d0
[  278.109889][ T6171]  vm_area_dup+0x26/0x1d0
[  278.114058][ T6171]  dup_mmap+0x6b8/0xea0
[  278.118057][ T6171]  ? __delayed_free_task+0x20/0x20
[  278.122996][ T6171]  ? mm_init+0x807/0x960
[  278.127085][ T6171]  dup_mm+0x91/0x330
[  278.130818][ T6171]  copy_mm+0x108/0x1b0
[  278.134713][ T6171]  copy_process+0x1295/0x3250
[  278.139226][ T6171]  ? check_stack_object+0xf7/0x130
[  278.144174][ T6171]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  278.149120][ T6171]  ? copy_clone_args_from_user+0x6cf/0x790
[  278.154764][ T6171]  kernel_clone+0x22d/0x990
[  278.159105][ T6171]  ? dup_mmap+0xea0/0xea0
[  278.163274][ T6171]  ? create_io_thread+0x1e0/0x1e0
[  278.168132][ T6171]  ? file_end_write+0x1b0/0x1b0
[  278.172815][ T6171]  __x64_sys_clone3+0x375/0x3a0
[  278.177505][ T6171]  ? __ia32_sys_clone+0x300/0x300
[  278.182362][ T6171]  ? ksys_write+0x25f/0x2c0
[  278.186706][ T6171]  ? debug_smp_processor_id+0x17/0x20
[  278.191911][ T6171]  do_syscall_64+0x44/0xd0
[  278.196163][ T6171]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  278.201900][ T6171] RIP: 0033:0x7f8e237f0639
[  278.206145][ T6171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  278.225587][ T6171] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  278.233829][ T6171] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  278.241643][ T6171] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  278.249453][ T6171] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
07:00:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 69)

07:00:21 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='fsi_master_gpio_break\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe27)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x808c2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='target_cmd_complete\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYRES16=r0, @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c0001006272696467650bf2949415c4f1ea52fe8eec6758486585dad2ee39d48eca5842988b275b8d3e485aff88670d3c684cf2ad9e79569e4af381b2d1ce25caee84c9831745c5410dc827cfe730"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x800}, [@generic={0x2, 0x4, 0x5, 0x2, 0x7}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}]}, &(0x7f0000000180)='GPL\x00', 0xff, 0x6d, &(0x7f00000001c0)=""/109, 0x40f00, 0x6, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x80001, 0xd, 0xffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2]}, 0x80)

07:00:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf5ffffff, 0x0, 0x0}, 0x58)

07:00:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf00, 0x0, 0x0}, 0x58)

07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
sendfile(0xffffffffffffffff, r1, &(0x7f00000000c0)=0x1, 0x4fc8)
readv(0xffffffffffffffff, 0x0, 0x0)
readv(r0, &(0x7f0000000280)=[{&(0x7f0000000100)=""/170, 0xaa}, {&(0x7f0000000300)=""/186, 0xba}, {&(0x7f00000003c0)=""/95, 0x5f}, {&(0x7f00000001c0)}], 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
sendfile(0xffffffffffffffff, r1, &(0x7f00000000c0)=0x1, 0x4fc8) (async)
readv(0xffffffffffffffff, 0x0, 0x0) (async)
readv(r0, &(0x7f0000000280)=[{&(0x7f0000000100)=""/170, 0xaa}, {&(0x7f0000000300)=""/186, 0xba}, {&(0x7f00000003c0)=""/95, 0x5f}, {&(0x7f00000001c0)}], 0x4) (async)

[  278.257266][ T6171] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  278.265086][ T6171] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  278.272893][ T6171]  </TASK>
07:00:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfffffff5}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:21 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='fsi_master_gpio_break\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe27) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x808c2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='target_cmd_complete\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket(0x10, 0x3, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async, rerun: 64)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (rerun: 64)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYRES16=r0, @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c0001006272696467650bf2949415c4f1ea52fe8eec6758486585dad2ee39d48eca5842988b275b8d3e485aff88670d3c684cf2ad9e79569e4af381b2d1ce25caee84c9831745c5410dc827cfe730"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x800}, [@generic={0x2, 0x4, 0x5, 0x2, 0x7}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}]}, &(0x7f0000000180)='GPL\x00', 0xff, 0x6d, &(0x7f00000001c0)=""/109, 0x40f00, 0x6, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x80001, 0xd, 0xffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2]}, 0x80)

[  278.331118][   T30] audit: type=1400 audit(1668668421.680:204): avc:  denied  { write } for  pid=6178 comm="syz-executor.4" name="net" dev="proc" ino=58376 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  278.354782][   T30] audit: type=1400 audit(1668668421.680:205): avc:  denied  { add_name } for  pid=6178 comm="syz-executor.4" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
07:00:21 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='fsi_master_gpio_break\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe27)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x808c2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='target_cmd_complete\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYRES16=r0, @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c0001006272696467650bf2949415c4f1ea52fe8eec6758486585dad2ee39d48eca5842988b275b8d3e485aff88670d3c684cf2ad9e79569e4af381b2d1ce25caee84c9831745c5410dc827cfe730"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x800}, [@generic={0x2, 0x4, 0x5, 0x2, 0x7}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}]}, &(0x7f0000000180)='GPL\x00', 0xff, 0x6d, &(0x7f00000001c0)=""/109, 0x40f00, 0x6, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x80001, 0xd, 0xffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2]}, 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='fsi_master_gpio_break\x00', r0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe27) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x808c2, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='target_cmd_complete\x00', r2}, 0x10) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r6, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
sendmsg$nl_route(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYRES16=r0, @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c0001006272696467650bf2949415c4f1ea52fe8eec6758486585dad2ee39d48eca5842988b275b8d3e485aff88670d3c684cf2ad9e79569e4af381b2d1ce25caee84c9831745c5410dc827cfe730"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r7, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x800}, [@generic={0x2, 0x4, 0x5, 0x2, 0x7}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}]}, &(0x7f0000000180)='GPL\x00', 0xff, 0x6d, &(0x7f00000001c0)=""/109, 0x40f00, 0x6, '\x00', r7, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x80001, 0xd, 0xffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2]}, 0x80) (async)

[  278.389066][   T30] audit: type=1400 audit(1668668421.680:206): avc:  denied  { create } for  pid=6178 comm="syz-executor.4" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
07:00:21 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180100000000040000000000000000008500bdfe2bc557a6ab16b8111a2c69921c1000000f00000095cdfa1429976f101c1ca72cf8434e58cf4026b2d44287853e591c276373c1b541513e63"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_tracing={0x1a, 0x2, &(0x7f0000000540)=ANY=[@ANYBLOB="184444ae16c5cdc97c789b026a41da5c"], &(0x7f0000000580)='GPL\x00', 0x10000, 0x27, &(0x7f00000005c0)=""/39, 0x41000, 0x5, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0xb, 0x0, 0x10001}, 0x10, 0x332e, r0}, 0x80)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000300)={'team0\x00', <r4=>0x0})
r5 = syz_btf_id_by_name$bpf_lsm(&(0x7f00000003c0)='bpf_lsm_inode_getxattr\x00')
r6 = openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000700), 0x1, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
r9 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000800), 0x214240, 0x0)
r10 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000940)='cgroup.procs\x00', 0x2, 0x0)
r11 = open_tree(r1, &(0x7f0000000b00)='./file0\x00', 0x88000)
r12 = pidfd_open(0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={<r13=>0xffffffffffffffff, <r14=>0xffffffffffffffff})
close(r13)
splice(r13, 0x0, r14, 0x0, 0x200, 0x0)
r15 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r15, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r16 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r16, 0x112, 0xb, &(0x7f00000001c0), 0x2)
io_submit(0x0, 0x7, &(0x7f0000000dc0)=[&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000780)="c29ef91a994f1f1af25434bf60c08c0a8451da6d62ab22e21e8a577f844bf327aa9b8d6b6caefcf9f834ffbbedd99de31c16872eda11", 0x36, 0x9, 0x0, 0x2, r7}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x8, 0x0, r9, &(0x7f0000000840)="112998f038e2fd00b06873aaf82ed1766e6fc7823b9f52d2b874ccd24cab957a32b56542f60e357388bdf6156042dd44e6e000a2d55b2bc30675ef82dd3acb952b95a350eeebf9bfacf8e3df27bf8c9ee8b50fb73e2f49440f7c603606f69356a5a346e9440dd1bc1e1b3c29028ef5aa8d64735f127642c48baa8d6d2d1d10d74730ab631b809b601d4bd80c132e038ac2e39d54ea7625c23423efa579148ffe4dda145cf9218ca70ce99756cc92d580", 0xb0, 0x401, 0x0, 0x2}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x5, 0x6, r10, &(0x7f0000000980)="7b0357186d2af1f694293ad89066cfa6d22e2d212e59df6ea2db9ba8be0a473d485ea01602aa410cdb70024b796732e1ce446157a611fd2b48a3c60a6a8898fca700338d590fc1fdb22e077040c85bbe2e2d6d797eb62d99f0c863253284d80c912a06e4c22e8e16970b37cb9dfea4331e5f", 0x72, 0x5}, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x1, 0x95, r3, &(0x7f0000000a40)="86efb094362f8406337cb50e9253422c397f69213795ef851ace0795a056ea2f5b908b937916d5394a30ebde542c75b6e0246f2c5695222485bbb620bae676b36e4cf03523d63e93e34737a34b3307685536e2be5d73af953854dceb1db31e5b08f5980c72f65d0aa6657254903e44259425227ee9d42c720e5a5774c9cee2283078c8b984eb8bdac69ae849c71cfd59bb2ccd7cdb9e8ef00126e9fd3098794a1124d27eb7a15713d92d4c04bf582fff4de26a", 0xb3, 0xffffffffffffffff, 0x0, 0x2, r11}, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x8, 0x8000, r12, &(0x7f0000000b80)="6c573e16dad204327c641b96a94933aa9b4ff3717a166407d5511039565ab71bbc5da3edcdc085296bbdf28e6003e3123bb84b2017fe8b49016e1a27993bf216172a66bfad3ac66a6effc3f1770592ef974f7e2bce", 0x55, 0x48e3, 0x0, 0x3, r13}, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0xfffc, r15, &(0x7f0000000c40)="ed9325", 0x3, 0x100000000, 0x0, 0x1}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x3, 0x0, r16, &(0x7f0000000cc0)="6e1292eec193418e9d6b871e72689682923f0dc4a354652aebdda51da104b7644a68e23f1aa7020af1d476eda9bb7cfc4757d26ffffb571b133c5b6d0ee4e85a02eb0c4484aaac4d0c872af1e989bd89a611c79994bb2e6cd1cd819986a1903d25f37f1907a946eca7bcdb0f6a659732824b2e87358229747fc413db1b48357508c326c9be9ed24e4b3ebecd780ab95568ee8ebc5042bba35d1e5d0d0d7a01f1759e", 0xa2, 0x10001, 0x0, 0x1}])
r17 = openat2(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x40800, 0x2, 0x2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1e, 0x9, &(0x7f00000000c0)=@raw=[@alu={0x4, 0x0, 0x2, 0x7, 0x9, 0xfffffffffffffff8, 0xfffffffffffffff0}, @cb_func={0x18, 0xb, 0x4, 0x0, 0x6}, @alu={0x7, 0x0, 0xe, 0x9, 0x9, 0x10, 0xffffffffffffffff}, @map_fd={0x18, 0x9}, @cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffa}, @alu={0x7, 0x1, 0xa, 0xb, 0x5, 0x100, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x7f, &(0x7f0000000280)=""/127, 0x0, 0x2, '\x00', r4, 0x17, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x2, 0x0, 0x1, 0x7}, 0x10, r5, r0, 0x0, &(0x7f0000000480)=[r17, 0xffffffffffffffff, 0xffffffffffffffff, 0x1]}, 0x80)

07:00:21 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_update_reserve_space\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

[  278.423796][   T30] audit: type=1400 audit(1668668421.680:207): avc:  denied  { associate } for  pid=6178 comm="syz-executor.4" name="pfkey" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  278.451610][ T6207] FAULT_INJECTION: forcing a failure.
[  278.451610][ T6207] name failslab, interval 1, probability 0, space 0, times 0
[  278.466627][ T6207] CPU: 0 PID: 6207 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  278.476627][ T6207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  278.486512][ T6207] Call Trace:
07:00:21 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0) (async)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_update_reserve_space\x00', r1}, 0x10) (async, rerun: 64)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
readv(r2, 0x0, 0x0)

07:00:21 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}) (rerun: 64)
close(r0) (async)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
writev(r1, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_update_reserve_space\x00', r1}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

[  278.489634][ T6207]  <TASK>
[  278.492412][ T6207]  dump_stack_lvl+0x151/0x1b7
[  278.496927][ T6207]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  278.502228][ T6207]  dump_stack+0x15/0x17
[  278.506216][ T6207]  should_fail+0x3c0/0x510
[  278.510467][ T6207]  __should_failslab+0x9f/0xe0
[  278.515064][ T6207]  should_failslab+0x9/0x20
[  278.519407][ T6207]  kmem_cache_alloc+0x4f/0x2f0
[  278.524015][ T6207]  ? vm_area_dup+0x26/0x1d0
[  278.528437][ T6207]  vm_area_dup+0x26/0x1d0
[  278.532597][ T6207]  dup_mmap+0x6b8/0xea0
[  278.536591][ T6207]  ? __delayed_free_task+0x20/0x20
[  278.541538][ T6207]  ? mm_init+0x807/0x960
[  278.545617][ T6207]  dup_mm+0x91/0x330
[  278.549354][ T6207]  copy_mm+0x108/0x1b0
[  278.553256][ T6207]  copy_process+0x1295/0x3250
[  278.557769][ T6207]  ? check_stack_object+0xf7/0x130
[  278.562867][ T6207]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  278.567811][ T6207]  ? copy_clone_args_from_user+0x6cf/0x790
[  278.573462][ T6207]  kernel_clone+0x22d/0x990
[  278.577792][ T6207]  ? dup_mmap+0xea0/0xea0
[  278.582133][ T6207]  ? create_io_thread+0x1e0/0x1e0
[  278.587017][ T6207]  ? file_end_write+0x1b0/0x1b0
[  278.591683][ T6207]  __x64_sys_clone3+0x375/0x3a0
[  278.596365][ T6207]  ? __ia32_sys_clone+0x300/0x300
[  278.602479][ T6207]  ? ksys_write+0x25f/0x2c0
[  278.606784][ T6207]  ? debug_smp_processor_id+0x17/0x20
[  278.611990][ T6207]  do_syscall_64+0x44/0xd0
[  278.616242][ T6207]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  278.622054][ T6207] RIP: 0033:0x7f8e237f0639
[  278.626306][ T6207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  278.645759][ T6207] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  278.653992][ T6207] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  278.661805][ T6207] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  278.669618][ T6207] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  278.677430][ T6207] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
07:00:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 70)

07:00:22 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r1, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffff0008000100687462001c000200180002000300000000"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000140)={'tunl0\x00', <r12=>0x0, 0x40, 0x7, 0x1, 0x1, {{0xb, 0x4, 0x0, 0x2, 0x2c, 0x64, 0x0, 0x6, 0x4, 0x0, @rand_addr=0x64010100, @empty, {[@timestamp={0x44, 0xc, 0xe4, 0x0, 0x1, [0x7, 0x6]}, @generic={0x98, 0xa, "628e85630d3fb5fd"}]}}}}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000026c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002680)={&(0x7f0000000200)=@deltfilter={0x244c, 0x2d, 0x200, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xfff1}, {0xffe0}, {0x7, 0xe}}, [@TCA_RATE={0x6, 0x5, {0xf8, 0x8}}, @filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xb2}]}}, @TCA_RATE={0x6, 0x5, {0x32, 0xff}}, @filter_kind_options=@f_route={{0xa}, {0x23f8, 0x2, [@TCA_ROUTE4_ACT={0xa84, 0x6, [@m_mirred={0xfc, 0x0, 0x0, 0x0, {{0xb}, {0x4}, {0xd0, 0x6, "02a7e70eb22d2ca244f8c9e8f27ed1c7edb38f370f6f840f27461c5befc25e859616acbc2b0d88d851e349b5b3df021081a4851521c6da75207641737e1223ccdefd44e90569ac081b2dda2b06058f42f9089c5ece405ee3011b7f2211e9e1ec61e813a285db00f55ae36642b377901fab8be1ecd439251498a3bcad8a4042bd03ded70a7bfe38088a5970bf6e7c06b1a1c47d023a46533667ea568d1c0fd6ef4fcb7c5a90149c2e99e754557b54a485452a1285c4cd0de50347d25184c8b42aa371a79fa0dd741a825f34f0"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_gact={0x100, 0x1b, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x1, 0x83d, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x15c0, 0x4}}, @TCA_GACT_PARMS={0x18, 0x2, {0x9, 0x3, 0x8, 0x3ff, 0xa7}}]}, {0xa1, 0x6, "3f865c299207b859e7fa1fc7c1619c329c998acc42789a4fc8d742aea4ad315b5f52b1ce149530977ef5f0f673ad12be845d7cd71bd672c11fffa2339d7798549c372efe47dd5f33703f42bc6f722707f0192839f13b063ac640db407821e00341aae8f2c3f1530ee56937dc846bbbb312179aa992bd0fb337d6c22c3d0298ea33366671a26b54a2285c9cbdb7f7f71c27edbb7e3f7ae84fb61c90a075"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_nat={0x15c, 0x12, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x7, 0xffffffcf, 0x20000000, 0x6cf, 0x10000}, @local, @rand_addr=0x64010100}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x20, 0x5, 0x6, 0x718}, @dev={0xac, 0x14, 0x14, 0x2d}, @broadcast, 0xff, 0x1}}]}, {0xe2, 0x6, "e64b5df80077183328df4b38f2f89118e53f32226f129abb825906e3371975b88a3a76ce84b6780f85d530770c3b0dbb284baf21c8a1613583881dabdd4da75895c15df95687104ca8874c3dae413679bc3e78187f2f1bdaa366326f6ffcfbdc1410a4624e5f7c75f9576e40f2e529d1766cc6f280ef4001a14643b56336fefc0970a4db351aadbc848cc8d38975bb5850dd525be952f575beea98abcfa8a0d7d52855f383c20f12578df0b447dde2ff2cb5750353c3ffc1243a0e61483a3da7c0aa0ef07f59b505709db4750d78a1c03a288c87135a961c5c8c4c374663"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_xt={0x58, 0x1d, 0x0, 0x0, {{0x7}, {0x30, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x14c, 0x2, 0x0, 0x0, {{0xd}, {0x74, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xf95, 0x7, 0x4, 0xfffff0a5, 0x319}, 0x1f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x4, 0x6, 0x7}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x8001, 0x4, 0x8, 0x1a3}, 0x5}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3f, 0x9, 0x8, 0xfffffffa, 0x6}, 0x8}}]}, {0xac, 0x6, "fa3bf2b2ff55a084c4fbfe19319fa6f28c9099b4e3b76d35a32eea516598b528a220cac8cdc3d7c07dbd658767bbb59d0010721b065040f104d725edb93cf9f0441acb9b0f3756a282d0c14303b0c30bb851648a3483b3cb8537c3ae1c3df51ceb9e9937ccde4fbe51b24bc97cbecc492b05e668c322d7174ad00c59958b8be23fe915af46d810a8ccd753cc60f70c8321ae1ecf406cfe086fec7ee81ad9d6b39cc041ad08401fae"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_csum={0x174, 0xb, 0x0, 0x0, {{0x9}, {0x90, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3, 0xffff, 0x4, 0xddf3, 0xffffffff}, 0x33}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x8001, 0x3, 0x9, 0x9}, 0x5b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x1ff, 0x8, 0x6, 0xcc7}, 0xa}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x8000, 0x7, 0x5, 0xffffffff}, 0x74}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x6, 0xfff, 0x6, 0xf130, 0x4}, 0x27}}]}, {0xbc, 0x6, "9b6d153da49e867b886c29074cb77f016085a98193d903a23ebd83eb3e335b679459fd8db4f71676243d68da0b1a0e61786566a60565d3f8ab55c70250b76a41822af2e683a667d5fd1bf62b6b6c296a83d06b4a1b312fd580b378313a6f1021137cf0761bd6be77e1ff2d1b7b8e4c195ac050f0865592db609126af6bf7e20f9c85821b53a89aa1d2b99ec2f58b835b1899f2f6a562fd51b7c9a3dcf59040978d96aca97c77ab42ab981eb81014c9612f096981dd1cb6b1"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_xt={0x138, 0x17, 0x0, 0x0, {{0x7}, {0x90, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x3f, 0x6, {0x1, 'raw\x00', 0x70, 0x417, "0e3449351b8d15abbb02f2b7958fe23568b2828a2b"}}, @TCA_IPT_HOOK={0x8, 0x2, 0x4}, @TCA_IPT_HOOK={0x8}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_HOOK={0x8}]}, {0x81, 0x6, "1db0a40505ea528d33f753563171caf72b723f29ca7cee38ee8dd7895210d74923a11b5369ce5207ee0cd063c0853196c98b840527da91dc82d7652bae64e304f77d828fe23aacebc016764b3b01bde15862734ccfee9295d7017154ba34c485a483e22ec292aca691342d606533e97a0978017a75095ec92b2c8a805b"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_nat={0x1d0, 0x1c, 0x0, 0x0, {{0x8}, {0x11c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x401, 0x8, 0xb526, 0x9}, @remote, @broadcast, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x3, 0xffffffff, 0x10000000, 0x4, 0x7fffffff}, @rand_addr=0x64010102, @rand_addr=0x64010102, 0xffffff00, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xff, 0x9, 0x6, 0x2, 0x100}, @local, @broadcast, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x101, 0x3, 0xffffffffffffffff, 0x38c00000, 0xec}, @private=0xa010100, @local, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x20, 0x101, 0xffffffffcffffffc, 0x6, 0x81}, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0x7f, 0x10000000, 0x9, 0x7}, @local, @broadcast, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0x3, 0x20000000, 0x9, 0x4}, @multicast2, @rand_addr=0x64010102, 0xff000000}}]}, {0x8d, 0x6, "d4e4c71c2c9c21158854d9175f08030f872cceb4983667a45e576c503d2aab7176029d7c94a93bf2fd2c30f31bd288f97cf52ec2aa73bd5ba957c9120818b0d688572a0b3133478d96cbd853984d7397d0cc6d64f8fbba288816092f8272184bbd8680da3a6d07c47b7035afb450fbe5ad6a94d965ce35bcca76ec54fbe3a03c59f7d29e89bc3e2978"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbedit={0x108, 0xb, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x9, 0xc, 0x0, 0x800000, 0x8}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}]}, {0xb9, 0x6, "c1a3070553620795404d05bfd4b13547f8c3a8f74f054125b298e674adb8afdcf35a340830d726f473a171ce9005dd7c5f7a143b73799144ed180ae2ef5bab32b7dfd31d560e0f9f9c26ed3e4311a9ee6ac43828719657d035aafbd4d7eb377bf4feacf749993977aaa4c2717e5f10c9b2765769ab1f59fa80f482c0e657eb1446038919fd28eb0e84c27963c92436546bb40dd95f2ccf9ce83bcdf7887b81afbba99a8f7273d0dc71666bff43729c6cda623c9801"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_POLICE={0x80, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_TBF={0x3c, 0x1, {0x2cf0, 0x1, 0x1000, 0x18000, 0x4, {0xe4, 0x0, 0x3a70, 0x200, 0x0, 0x3}, {0x8, 0x0, 0xe, 0x8000, 0x400, 0x5e}, 0x10001, 0x2, 0x9}}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RESULT={0x8, 0x5, 0x800}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x10001}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x2}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x5}]}, @TCA_ROUTE4_FROM={0x8, 0x3, 0xc9}, @TCA_ROUTE4_POLICE={0x30, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x7365}, @TCA_POLICE_RESULT={0x8, 0x5, 0x5}, @TCA_POLICE_RESULT={0x8, 0x5, 0x87}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xa90b}]}, @TCA_ROUTE4_ACT={0x13e0, 0x6, [@m_mirred={0x21c, 0xb, 0x0, 0x0, {{0xb}, {0x124, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x5d6e, 0x4, 0x7fffffffdffffff8, 0x1f, 0x3}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc3d, 0x4, 0x4, 0x425, 0xbb2}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x264, 0x7, 0x10000000, 0x200, 0x9}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x80, 0x9, 0x6, 0x800, 0x8}, 0x2, r1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x3, 0x0, 0xfa2c, 0x3}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7f, 0x800, 0x3, 0x93, 0x58}, 0x3, r6}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0xebd, 0x0, 0x2, 0x3}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x7, 0x5, 0x6}, 0x1, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc4d, 0xdc, 0x8, 0x8, 0x1}, 0x2, r12}}]}, {0xcd, 0x6, "3f7d7b2d47dbc0eaec7a8170636cf97a9d0af922083cd2c9be9e24841156c9413779f1b1a125410b8a71a6fddf58874941d9b942fdef0c010b8bfc8029d75b2556c7a0621abf452ff7a79da2c2d4ae834cdd9d058f5213cc32edd2d314b49393e93a065dcb2f9aa3d33b9cd9601299fc24c753da98ec4164db478b99c51d0c375fb684de862d781339081f7fa8df2212ad33cea1be8ad9b909ab69d2c8700b1c5d7e3216def25d133d94a7d90a6cc658764642ec505b39afa77518a521d1df791619b453360cb4025a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_xt={0x1080, 0x15, 0x0, 0x0, {{0x7}, {0x1030, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x102a, 0x6, {0x401, 'filter\x00', 0x0, 0x100, "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"}}]}, {0x2a, 0x6, "13fcb9a7a6edd52dce2fc438ac4c4aa4baa85f815aa78341eabec508008ee56eb87b707e75fc"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1}}}}, @m_xt={0x94, 0x20, 0x0, 0x0, {{0x7}, {0x40, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_INDEX={0x8, 0x3, 0x8}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_INDEX={0x8, 0x3, 0x40}]}, {0x30, 0x6, "d1e98cf3ca57e7d49df3f2f9a35a2265c4e245a564a2ee74a4432e6c620adec35e51d5b9fa107e369bb267a4"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbedit={0xac, 0x17, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x5}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x1}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x1}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}]}, {0x56, 0x6, "042ecf183408edf7acc4783a778614e0bcaf55296830a8bc32c6effdeb1b2efce4dac53ee2cdc409a477b29040f33ecb6104e8cacba7e707ae5f8d8f31df080086fd738a93ae291f048184b34db543992ea0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1c6a8d1d53b1eae7}}}}]}, @TCA_ROUTE4_POLICE={0x60, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x763abfe3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x55}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x10000000, 0x3ff, 0x7fff, 0x8, {0x2, 0x2, 0x7fff, 0x3, 0x33, 0x800}, {0x6, 0x0, 0x3e, 0x6, 0x1}, 0x3cab8d10, 0x7, 0x81}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xad90}]}, @TCA_ROUTE4_POLICE={0x470, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x6, 0x7fffffff, 0x4c1f, 0x7, {0x3, 0x2, 0x4, 0x4, 0x7f, 0xff}, {0x6, 0x2, 0x80, 0x6, 0x8639, 0x8}, 0x8, 0x2, 0x2556}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1, 0x6, 0x4, 0xfffffffb, 0x9, 0x4, 0x0, 0x9, 0x71, 0xb98b, 0x8000, 0x1ff, 0x6f, 0x838d, 0xdcd, 0x5, 0x400, 0x1, 0x0, 0x400, 0x8, 0x5, 0x40, 0x9, 0x20, 0x1f, 0x100, 0x2000, 0xfff, 0x2, 0x9, 0x1, 0x8000, 0x6, 0x87, 0x401, 0x5, 0xf4, 0xff, 0x1, 0x3, 0x1, 0xfffffffd, 0x0, 0xfffffbff, 0xffff, 0x1, 0xffffffff, 0x0, 0x5, 0xba, 0x7, 0x1, 0x5f63, 0x578, 0x80000, 0x2, 0x1, 0xfffffffa, 0x9, 0x39d7, 0x10000, 0x3, 0x7, 0x7, 0x1, 0xde, 0xfffffffb, 0x1, 0x8, 0x8000, 0x7, 0x1, 0x3, 0x6, 0x8, 0x3, 0x6, 0x5, 0x1, 0x36, 0x80000000, 0x7165, 0xfff, 0x5, 0x3, 0x8, 0x1, 0x6, 0x3, 0x0, 0x7, 0x1, 0xfffffff9, 0xfffffffa, 0x7, 0x1, 0x0, 0x8, 0x20, 0xff, 0x8, 0x4, 0x3, 0x2, 0x3ff, 0x7, 0xff, 0x3, 0xfffffff9, 0x36d, 0x2, 0x1f, 0x6ece, 0x9, 0x9, 0x7, 0x2, 0x0, 0x1f00, 0x7fc00, 0x10000, 0x0, 0x800, 0x41, 0xfffffffa, 0x6, 0x1, 0x7, 0x100, 0x1, 0x80000000, 0xca, 0x4, 0x7, 0x3, 0x5fa0, 0x40, 0x1, 0x6e, 0x6, 0xb8, 0x5, 0x100, 0x0, 0xff, 0x1f, 0x0, 0x2, 0x3, 0x100, 0x0, 0x9, 0xe9, 0x1f, 0x5, 0x7, 0x4c, 0x1, 0xffff, 0x4, 0x5, 0x2df7, 0x4, 0x63, 0x3, 0x1, 0x0, 0xffff, 0x8, 0x180, 0x7, 0x1, 0x354209f5, 0x0, 0x36bc3e98, 0x5, 0x1, 0x7, 0x3f, 0x9, 0xe9f3, 0xffffffff, 0x9, 0x3ff, 0x8000, 0x4, 0x7, 0x5, 0x7fffffff, 0x2, 0x5, 0x3ff, 0x6c, 0x9, 0x7fffffff, 0x3, 0x9, 0x7fff, 0x200, 0x10000, 0x9, 0x800, 0x8ae, 0x7, 0x8, 0x7d7f, 0x7fffffff, 0x1, 0x200, 0x5, 0x47, 0x8, 0x6, 0x401, 0x1, 0x8, 0x6, 0x101, 0xa855, 0x6, 0x3, 0x7fffffff, 0x8, 0xde2, 0x0, 0x1d, 0x10001, 0xbc, 0x6, 0x9, 0x6, 0x9, 0x9, 0x81, 0x7, 0x4, 0x7fff, 0x6, 0x40, 0x30000, 0x587, 0x7, 0x5, 0x0, 0x0, 0x3, 0x80, 0x1, 0x0, 0xc3, 0x8, 0xfff, 0x5, 0x101, 0x1]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8000}, @TCA_POLICE_RESULT={0x8, 0x5, 0xffff}]}]}}]}, 0x244c}, 0x1, 0x0, 0x0, 0x4}, 0xc018800)

07:00:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xfbffffff, 0x0, 0x0}, 0x58)

[  278.685243][ T6207] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  278.693054][ T6207]  </TASK>
07:00:22 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180100000000040000000000000000008500bdfe2bc557a6ab16b8111a2c69921c1000000f00000095cdfa1429976f101c1ca72cf8434e58cf4026b2d44287853e591c276373c1b541513e63"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_tracing={0x1a, 0x2, &(0x7f0000000540)=ANY=[@ANYBLOB="184444ae16c5cdc97c789b026a41da5c"], &(0x7f0000000580)='GPL\x00', 0x10000, 0x27, &(0x7f00000005c0)=""/39, 0x41000, 0x5, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0xb, 0x0, 0x10001}, 0x10, 0x332e, r0}, 0x80) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000300)={'team0\x00', <r4=>0x0}) (async)
r5 = syz_btf_id_by_name$bpf_lsm(&(0x7f00000003c0)='bpf_lsm_inode_getxattr\x00') (async)
r6 = openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000700), 0x1, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
r9 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000800), 0x214240, 0x0)
r10 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000940)='cgroup.procs\x00', 0x2, 0x0)
r11 = open_tree(r1, &(0x7f0000000b00)='./file0\x00', 0x88000)
r12 = pidfd_open(0xffffffffffffffff, 0x0) (async)
pipe(&(0x7f0000000080)={<r13=>0xffffffffffffffff, <r14=>0xffffffffffffffff})
close(r13)
splice(r13, 0x0, r14, 0x0, 0x200, 0x0) (async)
r15 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r15, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r16 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r16, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
io_submit(0x0, 0x7, &(0x7f0000000dc0)=[&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000780)="c29ef91a994f1f1af25434bf60c08c0a8451da6d62ab22e21e8a577f844bf327aa9b8d6b6caefcf9f834ffbbedd99de31c16872eda11", 0x36, 0x9, 0x0, 0x2, r7}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x8, 0x0, r9, &(0x7f0000000840)="112998f038e2fd00b06873aaf82ed1766e6fc7823b9f52d2b874ccd24cab957a32b56542f60e357388bdf6156042dd44e6e000a2d55b2bc30675ef82dd3acb952b95a350eeebf9bfacf8e3df27bf8c9ee8b50fb73e2f49440f7c603606f69356a5a346e9440dd1bc1e1b3c29028ef5aa8d64735f127642c48baa8d6d2d1d10d74730ab631b809b601d4bd80c132e038ac2e39d54ea7625c23423efa579148ffe4dda145cf9218ca70ce99756cc92d580", 0xb0, 0x401, 0x0, 0x2}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x5, 0x6, r10, &(0x7f0000000980)="7b0357186d2af1f694293ad89066cfa6d22e2d212e59df6ea2db9ba8be0a473d485ea01602aa410cdb70024b796732e1ce446157a611fd2b48a3c60a6a8898fca700338d590fc1fdb22e077040c85bbe2e2d6d797eb62d99f0c863253284d80c912a06e4c22e8e16970b37cb9dfea4331e5f", 0x72, 0x5}, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x1, 0x95, r3, &(0x7f0000000a40)="86efb094362f8406337cb50e9253422c397f69213795ef851ace0795a056ea2f5b908b937916d5394a30ebde542c75b6e0246f2c5695222485bbb620bae676b36e4cf03523d63e93e34737a34b3307685536e2be5d73af953854dceb1db31e5b08f5980c72f65d0aa6657254903e44259425227ee9d42c720e5a5774c9cee2283078c8b984eb8bdac69ae849c71cfd59bb2ccd7cdb9e8ef00126e9fd3098794a1124d27eb7a15713d92d4c04bf582fff4de26a", 0xb3, 0xffffffffffffffff, 0x0, 0x2, r11}, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x8, 0x8000, r12, &(0x7f0000000b80)="6c573e16dad204327c641b96a94933aa9b4ff3717a166407d5511039565ab71bbc5da3edcdc085296bbdf28e6003e3123bb84b2017fe8b49016e1a27993bf216172a66bfad3ac66a6effc3f1770592ef974f7e2bce", 0x55, 0x48e3, 0x0, 0x3, r13}, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0xfffc, r15, &(0x7f0000000c40)="ed9325", 0x3, 0x100000000, 0x0, 0x1}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x3, 0x0, r16, &(0x7f0000000cc0)="6e1292eec193418e9d6b871e72689682923f0dc4a354652aebdda51da104b7644a68e23f1aa7020af1d476eda9bb7cfc4757d26ffffb571b133c5b6d0ee4e85a02eb0c4484aaac4d0c872af1e989bd89a611c79994bb2e6cd1cd819986a1903d25f37f1907a946eca7bcdb0f6a659732824b2e87358229747fc413db1b48357508c326c9be9ed24e4b3ebecd780ab95568ee8ebc5042bba35d1e5d0d0d7a01f1759e", 0xa2, 0x10001, 0x0, 0x1}]) (async)
r17 = openat2(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x40800, 0x2, 0x2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1e, 0x9, &(0x7f00000000c0)=@raw=[@alu={0x4, 0x0, 0x2, 0x7, 0x9, 0xfffffffffffffff8, 0xfffffffffffffff0}, @cb_func={0x18, 0xb, 0x4, 0x0, 0x6}, @alu={0x7, 0x0, 0xe, 0x9, 0x9, 0x10, 0xffffffffffffffff}, @map_fd={0x18, 0x9}, @cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffa}, @alu={0x7, 0x1, 0xa, 0xb, 0x5, 0x100, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x7f, &(0x7f0000000280)=""/127, 0x0, 0x2, '\x00', r4, 0x17, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x2, 0x0, 0x1, 0x7}, 0x10, r5, r0, 0x0, &(0x7f0000000480)=[r17, 0xffffffffffffffff, 0xffffffffffffffff, 0x1]}, 0x80)

07:00:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfffffffb}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58)

[  278.749867][ T6248] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  278.800705][ T6248] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'.
[  278.813896][ T6245] FAULT_INJECTION: forcing a failure.
[  278.813896][ T6245] name failslab, interval 1, probability 0, space 0, times 0
[  278.849319][ T6248] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  278.862657][ T6245] CPU: 1 PID: 6245 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  278.872648][ T6245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  278.882548][ T6245] Call Trace:
[  278.885669][ T6245]  <TASK>
[  278.888455][ T6245]  dump_stack_lvl+0x151/0x1b7
[  278.892963][ T6245]  ? bfq_pos_tree_add_move+0x43e/0x43e
07:00:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, 0x0}, 0x58)

07:00:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xfeffffff, 0x0, 0x0}, 0x58)

07:00:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1f00, 0x0, 0x0}, 0x58)

[  278.898259][ T6245]  dump_stack+0x15/0x17
[  278.902244][ T6245]  should_fail+0x3c0/0x510
[  278.906503][ T6245]  __should_failslab+0x9f/0xe0
[  278.911099][ T6245]  should_failslab+0x9/0x20
[  278.915455][ T6245]  kmem_cache_alloc+0x4f/0x2f0
[  278.920128][ T6245]  ? anon_vma_fork+0x1b9/0x4f0
[  278.924727][ T6245]  anon_vma_fork+0x1b9/0x4f0
[  278.929161][ T6245]  dup_mmap+0x750/0xea0
[  278.933147][ T6245]  ? __delayed_free_task+0x20/0x20
[  278.938090][ T6245]  ? mm_init+0x807/0x960
[  278.942168][ T6245]  dup_mm+0x91/0x330
[  278.945929][ T6245]  copy_mm+0x108/0x1b0
[  278.949807][ T6245]  copy_process+0x1295/0x3250
[  278.954324][ T6245]  ? check_stack_object+0xf7/0x130
[  278.959267][ T6245]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  278.964220][ T6245]  ? copy_clone_args_from_user+0x6cf/0x790
[  278.969861][ T6245]  kernel_clone+0x22d/0x990
[  278.974193][ T6245]  ? dup_mmap+0xea0/0xea0
[  278.978362][ T6245]  ? create_io_thread+0x1e0/0x1e0
[  278.983218][ T6245]  ? file_end_write+0x1b0/0x1b0
[  278.987906][ T6245]  __x64_sys_clone3+0x375/0x3a0
[  278.992593][ T6245]  ? __ia32_sys_clone+0x300/0x300
[  278.997471][ T6245]  ? ksys_write+0x25f/0x2c0
[  279.001798][ T6245]  ? debug_smp_processor_id+0x17/0x20
[  279.007003][ T6245]  do_syscall_64+0x44/0xd0
[  279.011254][ T6245]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  279.016985][ T6245] RIP: 0033:0x7f8e237f0639
[  279.021238][ T6245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  279.040683][ T6245] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:22 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r1, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async, rerun: 64)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffff0008000100687462001c000200180002000300000000"], 0x48}}, 0x0) (async, rerun: 64)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000140)={'tunl0\x00', <r12=>0x0, 0x40, 0x7, 0x1, 0x1, {{0xb, 0x4, 0x0, 0x2, 0x2c, 0x64, 0x0, 0x6, 0x4, 0x0, @rand_addr=0x64010100, @empty, {[@timestamp={0x44, 0xc, 0xe4, 0x0, 0x1, [0x7, 0x6]}, @generic={0x98, 0xa, "628e85630d3fb5fd"}]}}}}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000026c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002680)={&(0x7f0000000200)=@deltfilter={0x244c, 0x2d, 0x200, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xfff1}, {0xffe0}, {0x7, 0xe}}, [@TCA_RATE={0x6, 0x5, {0xf8, 0x8}}, @filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xb2}]}}, @TCA_RATE={0x6, 0x5, {0x32, 0xff}}, @filter_kind_options=@f_route={{0xa}, {0x23f8, 0x2, [@TCA_ROUTE4_ACT={0xa84, 0x6, [@m_mirred={0xfc, 0x0, 0x0, 0x0, {{0xb}, {0x4}, {0xd0, 0x6, "02a7e70eb22d2ca244f8c9e8f27ed1c7edb38f370f6f840f27461c5befc25e859616acbc2b0d88d851e349b5b3df021081a4851521c6da75207641737e1223ccdefd44e90569ac081b2dda2b06058f42f9089c5ece405ee3011b7f2211e9e1ec61e813a285db00f55ae36642b377901fab8be1ecd439251498a3bcad8a4042bd03ded70a7bfe38088a5970bf6e7c06b1a1c47d023a46533667ea568d1c0fd6ef4fcb7c5a90149c2e99e754557b54a485452a1285c4cd0de50347d25184c8b42aa371a79fa0dd741a825f34f0"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_gact={0x100, 0x1b, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x1, 0x83d, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x15c0, 0x4}}, @TCA_GACT_PARMS={0x18, 0x2, {0x9, 0x3, 0x8, 0x3ff, 0xa7}}]}, {0xa1, 0x6, "3f865c299207b859e7fa1fc7c1619c329c998acc42789a4fc8d742aea4ad315b5f52b1ce149530977ef5f0f673ad12be845d7cd71bd672c11fffa2339d7798549c372efe47dd5f33703f42bc6f722707f0192839f13b063ac640db407821e00341aae8f2c3f1530ee56937dc846bbbb312179aa992bd0fb337d6c22c3d0298ea33366671a26b54a2285c9cbdb7f7f71c27edbb7e3f7ae84fb61c90a075"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_nat={0x15c, 0x12, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x7, 0xffffffcf, 0x20000000, 0x6cf, 0x10000}, @local, @rand_addr=0x64010100}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x20, 0x5, 0x6, 0x718}, @dev={0xac, 0x14, 0x14, 0x2d}, @broadcast, 0xff, 0x1}}]}, {0xe2, 0x6, "e64b5df80077183328df4b38f2f89118e53f32226f129abb825906e3371975b88a3a76ce84b6780f85d530770c3b0dbb284baf21c8a1613583881dabdd4da75895c15df95687104ca8874c3dae413679bc3e78187f2f1bdaa366326f6ffcfbdc1410a4624e5f7c75f9576e40f2e529d1766cc6f280ef4001a14643b56336fefc0970a4db351aadbc848cc8d38975bb5850dd525be952f575beea98abcfa8a0d7d52855f383c20f12578df0b447dde2ff2cb5750353c3ffc1243a0e61483a3da7c0aa0ef07f59b505709db4750d78a1c03a288c87135a961c5c8c4c374663"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_xt={0x58, 0x1d, 0x0, 0x0, {{0x7}, {0x30, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x14c, 0x2, 0x0, 0x0, {{0xd}, {0x74, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xf95, 0x7, 0x4, 0xfffff0a5, 0x319}, 0x1f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x4, 0x6, 0x7}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x8001, 0x4, 0x8, 0x1a3}, 0x5}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3f, 0x9, 0x8, 0xfffffffa, 0x6}, 0x8}}]}, {0xac, 0x6, "fa3bf2b2ff55a084c4fbfe19319fa6f28c9099b4e3b76d35a32eea516598b528a220cac8cdc3d7c07dbd658767bbb59d0010721b065040f104d725edb93cf9f0441acb9b0f3756a282d0c14303b0c30bb851648a3483b3cb8537c3ae1c3df51ceb9e9937ccde4fbe51b24bc97cbecc492b05e668c322d7174ad00c59958b8be23fe915af46d810a8ccd753cc60f70c8321ae1ecf406cfe086fec7ee81ad9d6b39cc041ad08401fae"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_csum={0x174, 0xb, 0x0, 0x0, {{0x9}, {0x90, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3, 0xffff, 0x4, 0xddf3, 0xffffffff}, 0x33}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x8001, 0x3, 0x9, 0x9}, 0x5b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x1ff, 0x8, 0x6, 0xcc7}, 0xa}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x8000, 0x7, 0x5, 0xffffffff}, 0x74}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x6, 0xfff, 0x6, 0xf130, 0x4}, 0x27}}]}, {0xbc, 0x6, "9b6d153da49e867b886c29074cb77f016085a98193d903a23ebd83eb3e335b679459fd8db4f71676243d68da0b1a0e61786566a60565d3f8ab55c70250b76a41822af2e683a667d5fd1bf62b6b6c296a83d06b4a1b312fd580b378313a6f1021137cf0761bd6be77e1ff2d1b7b8e4c195ac050f0865592db609126af6bf7e20f9c85821b53a89aa1d2b99ec2f58b835b1899f2f6a562fd51b7c9a3dcf59040978d96aca97c77ab42ab981eb81014c9612f096981dd1cb6b1"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_xt={0x138, 0x17, 0x0, 0x0, {{0x7}, {0x90, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x3f, 0x6, {0x1, 'raw\x00', 0x70, 0x417, "0e3449351b8d15abbb02f2b7958fe23568b2828a2b"}}, @TCA_IPT_HOOK={0x8, 0x2, 0x4}, @TCA_IPT_HOOK={0x8}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_HOOK={0x8}]}, {0x81, 0x6, "1db0a40505ea528d33f753563171caf72b723f29ca7cee38ee8dd7895210d74923a11b5369ce5207ee0cd063c0853196c98b840527da91dc82d7652bae64e304f77d828fe23aacebc016764b3b01bde15862734ccfee9295d7017154ba34c485a483e22ec292aca691342d606533e97a0978017a75095ec92b2c8a805b"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_nat={0x1d0, 0x1c, 0x0, 0x0, {{0x8}, {0x11c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x401, 0x8, 0xb526, 0x9}, @remote, @broadcast, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x3, 0xffffffff, 0x10000000, 0x4, 0x7fffffff}, @rand_addr=0x64010102, @rand_addr=0x64010102, 0xffffff00, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xff, 0x9, 0x6, 0x2, 0x100}, @local, @broadcast, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x101, 0x3, 0xffffffffffffffff, 0x38c00000, 0xec}, @private=0xa010100, @local, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x20, 0x101, 0xffffffffcffffffc, 0x6, 0x81}, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0x7f, 0x10000000, 0x9, 0x7}, @local, @broadcast, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0x3, 0x20000000, 0x9, 0x4}, @multicast2, @rand_addr=0x64010102, 0xff000000}}]}, {0x8d, 0x6, "d4e4c71c2c9c21158854d9175f08030f872cceb4983667a45e576c503d2aab7176029d7c94a93bf2fd2c30f31bd288f97cf52ec2aa73bd5ba957c9120818b0d688572a0b3133478d96cbd853984d7397d0cc6d64f8fbba288816092f8272184bbd8680da3a6d07c47b7035afb450fbe5ad6a94d965ce35bcca76ec54fbe3a03c59f7d29e89bc3e2978"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbedit={0x108, 0xb, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x9, 0xc, 0x0, 0x800000, 0x8}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}]}, {0xb9, 0x6, "c1a3070553620795404d05bfd4b13547f8c3a8f74f054125b298e674adb8afdcf35a340830d726f473a171ce9005dd7c5f7a143b73799144ed180ae2ef5bab32b7dfd31d560e0f9f9c26ed3e4311a9ee6ac43828719657d035aafbd4d7eb377bf4feacf749993977aaa4c2717e5f10c9b2765769ab1f59fa80f482c0e657eb1446038919fd28eb0e84c27963c92436546bb40dd95f2ccf9ce83bcdf7887b81afbba99a8f7273d0dc71666bff43729c6cda623c9801"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_POLICE={0x80, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_TBF={0x3c, 0x1, {0x2cf0, 0x1, 0x1000, 0x18000, 0x4, {0xe4, 0x0, 0x3a70, 0x200, 0x0, 0x3}, {0x8, 0x0, 0xe, 0x8000, 0x400, 0x5e}, 0x10001, 0x2, 0x9}}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RESULT={0x8, 0x5, 0x800}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x10001}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x2}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x5}]}, @TCA_ROUTE4_FROM={0x8, 0x3, 0xc9}, @TCA_ROUTE4_POLICE={0x30, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x7365}, @TCA_POLICE_RESULT={0x8, 0x5, 0x5}, @TCA_POLICE_RESULT={0x8, 0x5, 0x87}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xa90b}]}, @TCA_ROUTE4_ACT={0x13e0, 0x6, [@m_mirred={0x21c, 0xb, 0x0, 0x0, {{0xb}, {0x124, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x5d6e, 0x4, 0x7fffffffdffffff8, 0x1f, 0x3}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc3d, 0x4, 0x4, 0x425, 0xbb2}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x264, 0x7, 0x10000000, 0x200, 0x9}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x80, 0x9, 0x6, 0x800, 0x8}, 0x2, r1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x3, 0x0, 0xfa2c, 0x3}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7f, 0x800, 0x3, 0x93, 0x58}, 0x3, r6}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0xebd, 0x0, 0x2, 0x3}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x7, 0x5, 0x6}, 0x1, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc4d, 0xdc, 0x8, 0x8, 0x1}, 0x2, r12}}]}, {0xcd, 0x6, "3f7d7b2d47dbc0eaec7a8170636cf97a9d0af922083cd2c9be9e24841156c9413779f1b1a125410b8a71a6fddf58874941d9b942fdef0c010b8bfc8029d75b2556c7a0621abf452ff7a79da2c2d4ae834cdd9d058f5213cc32edd2d314b49393e93a065dcb2f9aa3d33b9cd9601299fc24c753da98ec4164db478b99c51d0c375fb684de862d781339081f7fa8df2212ad33cea1be8ad9b909ab69d2c8700b1c5d7e3216def25d133d94a7d90a6cc658764642ec505b39afa77518a521d1df791619b453360cb4025a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_xt={0x1080, 0x15, 0x0, 0x0, {{0x7}, {0x1030, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x102a, 0x6, {0x401, 'filter\x00', 0x0, 0x100, "7aaf0ec4d5d05e7482e16f53c9fb9d2a2afd68e37c577f29d646cf527022ce6266d5f4805ede22cdb464572f15230df787b7adfa64ab9608f7c8710cf2a354ef8e8eb2d329cadf69107afe503998dfb79fbb95221025e9dd9cbf7db8da19a2523f1ce2f5f6d0e422c4129fb3d722b05b526fd3f25408eeb13bc9a62fedcfd46f340524baf4dab2a6ad3f66d024188c06d755897dc1108963cafe546a64b9081520106d29a0fb7ce1fd42d5a31b03a19208fef12304e1a9bffd16f8eb4bc7a75d908cf82d6568ee376cd7f033120701f137e09e1bc9c4fd8443b90967d9ec644929482421cd620f0857a258e615169a77d7d10120dca3c286951846aa0bfbbb4f93cdedb5443fbd448bf46a33fc87523ab5d1aec0f658495e6ed89f5c382a24966db12da20caae42af871820826302a8b6c4deabd8ebb7672a53f12df5b5f2670850c1bba391aa9bb4d22ca032082e9fc73e758f251a5f82644d164ebcbbb0843249836322c0948f11a6e893b56fe9eb3a9095e196ee8828547051e2a257d1f90b3d9b815cc0e4aeba148cab2bbe950fd47902b7a82953ccd66f26f5e78c2ba4fdb85d9d55b5f1619b6ddca8658368c1cc9b3a35664a758481097e6a8deb7dc01a5a1fa16ea58bb41ac3e7ad332d6616d7b9cc458e4e9477565e5ea2a3c3186a9d05af34c4e9865bc0f1c73131243be2cb93564829f0078edfab5b6957bbdefa5e49d2a77671f9012e2cec7ee2023a0dc20724703cff992f3503ff7c4c0f0bcda1df7ed8f4156bf115f405ebf133d6f4634ddba26e2c4a8ed7239ebc0c84764c3c9502646adcb638583b506d567b322f5d3652fd3b5f7b099eaacfaacb7d7f664ac82ab2dc3af1a7a08b4242ee768e632408c7cb28aac321e37e9c1f95d256005899e8abcf890b537ea9f35334d3274a74761d41dc1621642b41355bd550fd9df8cfa63554561fe4d476543a9f6577a5a0b70a8e9fb443cb2d93396a4a0fa89cc39aba8992749c91c5bb04abdcb8f132f7078944e1fd809f70a526e68a307469572a057b8329690f5b4ccb50f42c9385dff59d7b45dd8fb2fba6387d7cd1b58de3c275f057d1ce17530cf58d1981c50f8a3d6c02f5910df8d28dab912b5c781316919a0ac6cbd30fecb41730accc1e2f4babc13b7533fda02ca69a838ab7787998e58ff8789f1cc0090ca1f01d762bf3b95ca7103ea6f51f89dca6011d12302b5c3c01a7412733b3b8e55dff7330a12ac355a42a1850c0e8853a7105c580bff53e46e2e885c6fd72b8fb9f2e72988b1cd52735b19786e035a77fd7e919374a3fab4631c0e386a1e64657e16753f3f0c4cc6e4edb4fa3d87431eac510e64ff9a9ef241a3d5f343355721636feda23fae32d598c51782aacf112279da6f3bea1fc708298d615c69c4ab40d5042a51f4058e269e1bd94e6f63f7e8232b2ed2fd1914e3d82e321473f2b20d85eae00d5a372192e07ec4add565f20c17783789751ef59a9eedab8714518bcca3aeece91634fdce2d728496b43296e3b66bb03b526bb24eae08614fb9fbe91f3e7cbb7b6aa441cff3da9f8701dfc6b547609bbec708a3d8c042d9227a8133c765b8803572ff23280ac3e96da4668c7b861aa0e7f0e42fa423e984f7441d6dc9b266249ac85134309e94114d055d49647b7aba2f8d4b7a1d79ba09e4dbf486107dd2e644b5697660e336d205e80309105f2ace4d35a4b8ce7211b06414b78ff842da38774a31db2a6ef32e8126616d40e35ccc12034438d15f54bda837e1b9b058ad28a2b0916729dd474ec373ac78be95925a392bd4928889f3603b4dbcaa5c2bcc22854c5724858bc229775126cbe5a42a8bdb962671cd3b7aa60d76f1c0a257d543c69ca58f6d2fec0c84910c5cde3b0b52f430aca79e26e5a51a26a9e76299c5ae7974b06a0b2662663a4ae9b54da7154ad6d348e1682ff858bc697710960e18f9b80ec0ab7999ef9be90108aa0e81786e48b7a4683dc8b730a69ea332ceee90e662c9e49fecb7da3dc3d247e8d672ea129b2161e08c30251d031905ee14847c521deec9e1458f7ca47936d49251708fa40a476b2d367a5849454124925eef575dd85fe2d912111397bd729d0a37099f3344769d154959f7509e5952f12732cb8654c3d097ab2c78cd2cab9158b62fe9409c46ab45ca45eb7fb9e2d711f6d40bd19a46779b76753eee9ec291db56ae39312120ea4a652960b66daca8482e5491cdcb8ac9fc099352fc50dc88143a7dc7102ee664adb9fb904976483c4d31e3655d47f9bed245b90034147e1d920a8dc798ab938893433a5877d92cfcf73b388723a40ef5dbc1e7f3a52d215b84280f45a26ed6035a49664576b03b8dd44dbd6e61857cb57296af4d4de5d93487e83a9fcb38cd7c334ef51829f7bfbb6726532d657c406331d367cfac1fe2e0ba35741f3a1a2592a2a188689e1ffb699bf709f1c417096a9438fa64c6eeaccea01878903e4ebd8f86fdfc960bdcdae067bd9d2d39fb96abceb3de6a4455fca3b66ca2edfa14a03eee1166365da92032a2d689162df606bc0b290117f168bdebe77120a358073efe460d8826a3035652891d31e7b17b52fb15b85958e2dcce1ae82b8b21a4d00fc29a5c5e50fb333296396ce7a56ac0c04e8d8b004a54bd22c0fae2c33d9f881b8b465c391a3b81d1287abdd7af4de403b80d1e0564cfc8fff7e29c65c462bacb7fc3163b8d011c1fe2fddbfd530b3f1365718a3672c908bd976c0f59106291312453987c5468748fc09720aee81940e9378859b05b5274e174090f3c9d0439c521cc60ccc08b1596f377c84e6dd849dad10c3b902352a027a5781d6f77397cbb72a85def2b0b6591de9c8ea85ef208335d7b3dd73a59dd24c3b7d9a7b0c85b5d7638fed9fb6d5d5beab73be8f40ae9dd81847e8d0baf937db28412652e20756233f386824b5d338d4f49d7c87e7cb7e91811582120e316a0618992bd642b281868456fafaaf63b2ec0411bf6117667a1a76ec7d42b7da7c58a4c68552841b06c0619d3768004369433b6cfed94d7e500b602bc9b27b9fe12ac7f29f708d06ece4d1d367fbcd17c704726372d328fed84c789566838dddea4331c7aa30d82f2a3c11e6d1a80e912440ac84f74b6575c5004690d99b069e69221cb25e84694acc87c7bc2b228347f71d9b041966042132fa0e3b35472edac711b1b860ef0dcae4c341b738107d48d2efcf3358bd1fdb5312d0957aa3d10e49a19c7d72e7497bf8566ab7056013118998bea0a070d2d08bf8f4a9fcd861b503e15202b5b230e307c7f230ce62c2aaafd19aa8d032a452ae0f66bedea483909012d68c26807cc394770150eee2cfcbef7071e27bff760c2d3e71c23d9f400f3dee52de409f02617a68fb8d4fd32d49ed96761d67f831e476c77301beb67e8c1227ca4d772459b16e447c48be33f2a0f509bcab010a884236ae406778e6198a0975973b158d1039faf1f23e7a7646b0f74dd9f04200dce4240314c1eb86f3d0bd33eec8c8d133f73e89761a328d4313a0f0ddfa2d4362b9864d59b812782f0347653751506f91a0d93f2b71f40568e0c8e6ef718da1a2ff013bebf51e64b0f91249a0c4d46ee632fda85c685ac12b2a0a5313a76bf47b481f70dbf5ccca975128da29a26a80c47f32a8bf01660599cb244b5de6e99336ce80188bbb43038cd525076361a053ca6009d88535b19f5aecbe89ebc11215a0fff97c3aeed48470a2082aee1c6d88853be390be5f51f47525bde962115d813da03982b0d46dfacc652515d7ac6049ff8807b5ffdb266489a75116c546c55eefd852ef59fe5abc755cb70da2e88143cd09d8baf53b522859dc760d97469c3cf39a4461de6f813240b319ac146f52c62bd3a485904c39fbca5d23e8a0eda2065f93f2aea53fdcae1d243e68e36d6aba5a4fae5820c1b3df9ff607c9d8ba24895e69ed41c4820571e343340abe99a265c0cd2b1322bd9d2cf5d539cedea81039e4ab33343935f3515f944c1705622bd54f37dfd72d071840128e6ec3ee43186ea1f76940d3e45894d060dcd5f3cec5e75e1b91d1dfc3cbb04c6fb4f43acc2eb02f2d82ea6e0fd9929da48e4af75ea85b9199565423404ee7a60a3ac6cb8e8d30591124d83abb37c3a989070fec27c39e7445683bc37f4720a57c36cfbeb7ef049cad877e74de8fba0519ca3792ebc73212845f544048d12a8854cd38f01ee7f75fea384a8d32daa22787cad8dbd7d5ae9e6e033fff1e42ae7c2e499fb97c6784ba929b27974ef2a877dc74fe3618020bc7bdd86ef76373cf5f022dfb13e467f2fc90edeebfa9a7cd69a96b9ef4ee4744b3496bef804ef84c32da911dfaf0aa7f49e4d04fe51e3480fda3192897977954211324b95e7bb34664f0851a1132b59e8ec575399f4f8f475359f3a6154ea2ba1f7b2694b2d7e9b185a957cc47817068d65f577dc6ee288cb96ea965b90f2b04f31cc5df52b8c104bca807a1e2535313a3a11a2259f00ae638dee46479361f41af8bc9d3e9a0b0d18ecdc464f6c5bafa6d046df3e70672d405da739a215f1bb97496761ca4366deaa6b393a5f8a4f178321bf08a3314cd51dc808fbb455d977d23437ae6a9ef274fc7d5712cea3969134ed7f0b4146d191f03a134213c29b6671cb2589af2bdb37c5fd8f33a34fb66f1e42aad325d421fe92c061fd0d3953834fcc54be31a11c201a9dfa6f2e5912b3aeef7bb3a4f017148ff4c86b58d5dc6c642fe7a608c1f0a0eee219bba0639add8e823c1d9e92b29c06a936968777bfd1fde2d1da5fb431f1f3d5b23cc6049c7f1240ccceb16b849dd04b9a40655e9e7313601728a3b640b2e51f32d881dd9490fa036510f05560a2098f8cf0d041e28924b7378473972401d74a792c2b781a4b14918dcadb8323581325b93c833ccbd1915fee63db7b2b6cf33cacebe56501f4ae6f780e41c8dc90b8f250e9b04a1008301887023ca820c635c17574b39d28df08e581bb591d1a2c0d8cee55d44bdd7dd68b703b4235b8dbe8b4a60f2e92b3e5304a420dd798277b8961a0086260c3d8986337efd7b2e7c984df93f0fffbb8c881f350fd915f4b3e99964b882cacb4fb998e237ba4891bfed7748dc4021e4d27168ee1601bf8ec781db631fc1c218457586b082b93d6cfa78d2989e8d5cef6ee9a0cc1bdd4fa31078b898fa28baa78e8b4a8fec5d2a1ef47ca795d7af0700692126065167987ff508c17b1bc52f872d7a22d4efbf8ab89c7f112e12d04fc9acb757c0bd1786b8b99367785da8015a4bb43c6fad8f75a1e3cb3a9a17eb49a43583687d7cbd2be03f702ded2087cd81551267bcd6d39ced9285a396c6f0fe57b4b4342bbaca23c5683532407bc08159243d8c482bf56652b3219ead33dc230fb834e1c6aafabaa63f93890ee49251f4d4a2f98ab0d503e76d1e7c39c0093b27747fa576bdb21238804928cda4745d9728bfcb9a2ba9b84d447bbf0a9192cc33ee9e8199964c1761a0c39ebb7a1869e84bff33b18918cf730b175adead54cd391a299033e2e00b4d46267ee269621285146bbeecaf35ff01a4ba586f9bdfb9d5d26d72f5ba3b5eab57f3c92e4b64fccdc6bc1fa076dd86a27ee32a6d25220ecd50059df4aed8eaa488f7028a868a4c3cd98ae47576a85a95c7e6ee9b34bde1d95b6fc1095ac447bf7ee884de907dd520d56b94eaf7b821370e91635b654e5106810558c8bbdc29a70e3b7e7293db1f26fa0037ac72e44c63d2ececc5132352260a6d5658e5e437abd3e57d326567a8d018ce33c80462ad7"}}]}, {0x2a, 0x6, "13fcb9a7a6edd52dce2fc438ac4c4aa4baa85f815aa78341eabec508008ee56eb87b707e75fc"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1}}}}, @m_xt={0x94, 0x20, 0x0, 0x0, {{0x7}, {0x40, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_INDEX={0x8, 0x3, 0x8}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_INDEX={0x8, 0x3, 0x40}]}, {0x30, 0x6, "d1e98cf3ca57e7d49df3f2f9a35a2265c4e245a564a2ee74a4432e6c620adec35e51d5b9fa107e369bb267a4"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbedit={0xac, 0x17, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x5}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x1}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x1}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}]}, {0x56, 0x6, "042ecf183408edf7acc4783a778614e0bcaf55296830a8bc32c6effdeb1b2efce4dac53ee2cdc409a477b29040f33ecb6104e8cacba7e707ae5f8d8f31df080086fd738a93ae291f048184b34db543992ea0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1c6a8d1d53b1eae7}}}}]}, @TCA_ROUTE4_POLICE={0x60, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x763abfe3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x55}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x10000000, 0x3ff, 0x7fff, 0x8, {0x2, 0x2, 0x7fff, 0x3, 0x33, 0x800}, {0x6, 0x0, 0x3e, 0x6, 0x1}, 0x3cab8d10, 0x7, 0x81}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xad90}]}, @TCA_ROUTE4_POLICE={0x470, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x6, 0x7fffffff, 0x4c1f, 0x7, {0x3, 0x2, 0x4, 0x4, 0x7f, 0xff}, {0x6, 0x2, 0x80, 0x6, 0x8639, 0x8}, 0x8, 0x2, 0x2556}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1, 0x6, 0x4, 0xfffffffb, 0x9, 0x4, 0x0, 0x9, 0x71, 0xb98b, 0x8000, 0x1ff, 0x6f, 0x838d, 0xdcd, 0x5, 0x400, 0x1, 0x0, 0x400, 0x8, 0x5, 0x40, 0x9, 0x20, 0x1f, 0x100, 0x2000, 0xfff, 0x2, 0x9, 0x1, 0x8000, 0x6, 0x87, 0x401, 0x5, 0xf4, 0xff, 0x1, 0x3, 0x1, 0xfffffffd, 0x0, 0xfffffbff, 0xffff, 0x1, 0xffffffff, 0x0, 0x5, 0xba, 0x7, 0x1, 0x5f63, 0x578, 0x80000, 0x2, 0x1, 0xfffffffa, 0x9, 0x39d7, 0x10000, 0x3, 0x7, 0x7, 0x1, 0xde, 0xfffffffb, 0x1, 0x8, 0x8000, 0x7, 0x1, 0x3, 0x6, 0x8, 0x3, 0x6, 0x5, 0x1, 0x36, 0x80000000, 0x7165, 0xfff, 0x5, 0x3, 0x8, 0x1, 0x6, 0x3, 0x0, 0x7, 0x1, 0xfffffff9, 0xfffffffa, 0x7, 0x1, 0x0, 0x8, 0x20, 0xff, 0x8, 0x4, 0x3, 0x2, 0x3ff, 0x7, 0xff, 0x3, 0xfffffff9, 0x36d, 0x2, 0x1f, 0x6ece, 0x9, 0x9, 0x7, 0x2, 0x0, 0x1f00, 0x7fc00, 0x10000, 0x0, 0x800, 0x41, 0xfffffffa, 0x6, 0x1, 0x7, 0x100, 0x1, 0x80000000, 0xca, 0x4, 0x7, 0x3, 0x5fa0, 0x40, 0x1, 0x6e, 0x6, 0xb8, 0x5, 0x100, 0x0, 0xff, 0x1f, 0x0, 0x2, 0x3, 0x100, 0x0, 0x9, 0xe9, 0x1f, 0x5, 0x7, 0x4c, 0x1, 0xffff, 0x4, 0x5, 0x2df7, 0x4, 0x63, 0x3, 0x1, 0x0, 0xffff, 0x8, 0x180, 0x7, 0x1, 0x354209f5, 0x0, 0x36bc3e98, 0x5, 0x1, 0x7, 0x3f, 0x9, 0xe9f3, 0xffffffff, 0x9, 0x3ff, 0x8000, 0x4, 0x7, 0x5, 0x7fffffff, 0x2, 0x5, 0x3ff, 0x6c, 0x9, 0x7fffffff, 0x3, 0x9, 0x7fff, 0x200, 0x10000, 0x9, 0x800, 0x8ae, 0x7, 0x8, 0x7d7f, 0x7fffffff, 0x1, 0x200, 0x5, 0x47, 0x8, 0x6, 0x401, 0x1, 0x8, 0x6, 0x101, 0xa855, 0x6, 0x3, 0x7fffffff, 0x8, 0xde2, 0x0, 0x1d, 0x10001, 0xbc, 0x6, 0x9, 0x6, 0x9, 0x9, 0x81, 0x7, 0x4, 0x7fff, 0x6, 0x40, 0x30000, 0x587, 0x7, 0x5, 0x0, 0x0, 0x3, 0x80, 0x1, 0x0, 0xc3, 0x8, 0xfff, 0x5, 0x101, 0x1]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8000}, @TCA_POLICE_RESULT={0x8, 0x5, 0xffff}]}]}}]}, 0x244c}, 0x1, 0x0, 0x0, 0x4}, 0xc018800)

[  279.048930][ T6245] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  279.056735][ T6245] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  279.064577][ T6245] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  279.072356][ T6245] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  279.080168][ T6245] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  279.087984][ T6245]  </TASK>
07:00:22 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="180100000000040000000000000000008500bdfe2bc557a6ab16b8111a2c69921c1000000f00000095cdfa1429976f101c1ca72cf8434e58cf4026b2d44287853e591c276373c1b541513e63"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0) (async)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_tracing={0x1a, 0x2, &(0x7f0000000540)=ANY=[@ANYBLOB="184444ae16c5cdc97c789b026a41da5c"], &(0x7f0000000580)='GPL\x00', 0x10000, 0x27, &(0x7f00000005c0)=""/39, 0x41000, 0x5, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0xb, 0x0, 0x10001}, 0x10, 0x332e, r0}, 0x80) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000300)={'team0\x00', <r4=>0x0})
r5 = syz_btf_id_by_name$bpf_lsm(&(0x7f00000003c0)='bpf_lsm_inode_getxattr\x00') (async)
r6 = openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000700), 0x1, 0x0) (async)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
r9 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000800), 0x214240, 0x0) (async)
r10 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000940)='cgroup.procs\x00', 0x2, 0x0) (async)
r11 = open_tree(r1, &(0x7f0000000b00)='./file0\x00', 0x88000) (async)
r12 = pidfd_open(0xffffffffffffffff, 0x0) (async)
pipe(&(0x7f0000000080)={<r13=>0xffffffffffffffff, <r14=>0xffffffffffffffff})
close(r13)
splice(r13, 0x0, r14, 0x0, 0x200, 0x0) (async)
r15 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r15, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r16 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r16, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
io_submit(0x0, 0x7, &(0x7f0000000dc0)=[&(0x7f00000007c0)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000780)="c29ef91a994f1f1af25434bf60c08c0a8451da6d62ab22e21e8a577f844bf327aa9b8d6b6caefcf9f834ffbbedd99de31c16872eda11", 0x36, 0x9, 0x0, 0x2, r7}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x8, 0x0, r9, &(0x7f0000000840)="112998f038e2fd00b06873aaf82ed1766e6fc7823b9f52d2b874ccd24cab957a32b56542f60e357388bdf6156042dd44e6e000a2d55b2bc30675ef82dd3acb952b95a350eeebf9bfacf8e3df27bf8c9ee8b50fb73e2f49440f7c603606f69356a5a346e9440dd1bc1e1b3c29028ef5aa8d64735f127642c48baa8d6d2d1d10d74730ab631b809b601d4bd80c132e038ac2e39d54ea7625c23423efa579148ffe4dda145cf9218ca70ce99756cc92d580", 0xb0, 0x401, 0x0, 0x2}, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x5, 0x6, r10, &(0x7f0000000980)="7b0357186d2af1f694293ad89066cfa6d22e2d212e59df6ea2db9ba8be0a473d485ea01602aa410cdb70024b796732e1ce446157a611fd2b48a3c60a6a8898fca700338d590fc1fdb22e077040c85bbe2e2d6d797eb62d99f0c863253284d80c912a06e4c22e8e16970b37cb9dfea4331e5f", 0x72, 0x5}, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x1, 0x95, r3, &(0x7f0000000a40)="86efb094362f8406337cb50e9253422c397f69213795ef851ace0795a056ea2f5b908b937916d5394a30ebde542c75b6e0246f2c5695222485bbb620bae676b36e4cf03523d63e93e34737a34b3307685536e2be5d73af953854dceb1db31e5b08f5980c72f65d0aa6657254903e44259425227ee9d42c720e5a5774c9cee2283078c8b984eb8bdac69ae849c71cfd59bb2ccd7cdb9e8ef00126e9fd3098794a1124d27eb7a15713d92d4c04bf582fff4de26a", 0xb3, 0xffffffffffffffff, 0x0, 0x2, r11}, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x8, 0x8000, r12, &(0x7f0000000b80)="6c573e16dad204327c641b96a94933aa9b4ff3717a166407d5511039565ab71bbc5da3edcdc085296bbdf28e6003e3123bb84b2017fe8b49016e1a27993bf216172a66bfad3ac66a6effc3f1770592ef974f7e2bce", 0x55, 0x48e3, 0x0, 0x3, r13}, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0xfffc, r15, &(0x7f0000000c40)="ed9325", 0x3, 0x100000000, 0x0, 0x1}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x3, 0x0, r16, &(0x7f0000000cc0)="6e1292eec193418e9d6b871e72689682923f0dc4a354652aebdda51da104b7644a68e23f1aa7020af1d476eda9bb7cfc4757d26ffffb571b133c5b6d0ee4e85a02eb0c4484aaac4d0c872af1e989bd89a611c79994bb2e6cd1cd819986a1903d25f37f1907a946eca7bcdb0f6a659732824b2e87358229747fc413db1b48357508c326c9be9ed24e4b3ebecd780ab95568ee8ebc5042bba35d1e5d0d0d7a01f1759e", 0xa2, 0x10001, 0x0, 0x1}])
r17 = openat2(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x40800, 0x2, 0x2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1e, 0x9, &(0x7f00000000c0)=@raw=[@alu={0x4, 0x0, 0x2, 0x7, 0x9, 0xfffffffffffffff8, 0xfffffffffffffff0}, @cb_func={0x18, 0xb, 0x4, 0x0, 0x6}, @alu={0x7, 0x0, 0xe, 0x9, 0x9, 0x10, 0xffffffffffffffff}, @map_fd={0x18, 0x9}, @cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffa}, @alu={0x7, 0x1, 0xa, 0xb, 0x5, 0x100, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x7f, &(0x7f0000000280)=""/127, 0x0, 0x2, '\x00', r4, 0x17, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x2, 0x0, 0x1, 0x7}, 0x10, r5, r0, 0x0, &(0x7f0000000480)=[r17, 0xffffffffffffffff, 0xffffffffffffffff, 0x1]}, 0x80)

07:00:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58)

[  279.135489][ T6279] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  279.181342][ T6280] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'.
07:00:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 71)

07:00:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xffff0300, 0x0, 0x0}, 0x58)

07:00:22 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r1, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r1, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffff0008000100687462001c000200180002000300000000"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0) (async)
r8 = socket(0x10, 0x3, 0x0) (async)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000140)={'tunl0\x00', <r12=>0x0, 0x40, 0x7, 0x1, 0x1, {{0xb, 0x4, 0x0, 0x2, 0x2c, 0x64, 0x0, 0x6, 0x4, 0x0, @rand_addr=0x64010100, @empty, {[@timestamp={0x44, 0xc, 0xe4, 0x0, 0x1, [0x7, 0x6]}, @generic={0x98, 0xa, "628e85630d3fb5fd"}]}}}}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000026c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002680)={&(0x7f0000000200)=@deltfilter={0x244c, 0x2d, 0x200, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xfff1}, {0xffe0}, {0x7, 0xe}}, [@TCA_RATE={0x6, 0x5, {0xf8, 0x8}}, @filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xb2}]}}, @TCA_RATE={0x6, 0x5, {0x32, 0xff}}, @filter_kind_options=@f_route={{0xa}, {0x23f8, 0x2, [@TCA_ROUTE4_ACT={0xa84, 0x6, [@m_mirred={0xfc, 0x0, 0x0, 0x0, {{0xb}, {0x4}, {0xd0, 0x6, "02a7e70eb22d2ca244f8c9e8f27ed1c7edb38f370f6f840f27461c5befc25e859616acbc2b0d88d851e349b5b3df021081a4851521c6da75207641737e1223ccdefd44e90569ac081b2dda2b06058f42f9089c5ece405ee3011b7f2211e9e1ec61e813a285db00f55ae36642b377901fab8be1ecd439251498a3bcad8a4042bd03ded70a7bfe38088a5970bf6e7c06b1a1c47d023a46533667ea568d1c0fd6ef4fcb7c5a90149c2e99e754557b54a485452a1285c4cd0de50347d25184c8b42aa371a79fa0dd741a825f34f0"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_gact={0x100, 0x1b, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x1, 0x83d, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x15c0, 0x4}}, @TCA_GACT_PARMS={0x18, 0x2, {0x9, 0x3, 0x8, 0x3ff, 0xa7}}]}, {0xa1, 0x6, "3f865c299207b859e7fa1fc7c1619c329c998acc42789a4fc8d742aea4ad315b5f52b1ce149530977ef5f0f673ad12be845d7cd71bd672c11fffa2339d7798549c372efe47dd5f33703f42bc6f722707f0192839f13b063ac640db407821e00341aae8f2c3f1530ee56937dc846bbbb312179aa992bd0fb337d6c22c3d0298ea33366671a26b54a2285c9cbdb7f7f71c27edbb7e3f7ae84fb61c90a075"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_nat={0x15c, 0x12, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x7, 0xffffffcf, 0x20000000, 0x6cf, 0x10000}, @local, @rand_addr=0x64010100}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x20, 0x5, 0x6, 0x718}, @dev={0xac, 0x14, 0x14, 0x2d}, @broadcast, 0xff, 0x1}}]}, {0xe2, 0x6, "e64b5df80077183328df4b38f2f89118e53f32226f129abb825906e3371975b88a3a76ce84b6780f85d530770c3b0dbb284baf21c8a1613583881dabdd4da75895c15df95687104ca8874c3dae413679bc3e78187f2f1bdaa366326f6ffcfbdc1410a4624e5f7c75f9576e40f2e529d1766cc6f280ef4001a14643b56336fefc0970a4db351aadbc848cc8d38975bb5850dd525be952f575beea98abcfa8a0d7d52855f383c20f12578df0b447dde2ff2cb5750353c3ffc1243a0e61483a3da7c0aa0ef07f59b505709db4750d78a1c03a288c87135a961c5c8c4c374663"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_xt={0x58, 0x1d, 0x0, 0x0, {{0x7}, {0x30, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_connmark={0x14c, 0x2, 0x0, 0x0, {{0xd}, {0x74, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xf95, 0x7, 0x4, 0xfffff0a5, 0x319}, 0x1f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x4, 0x6, 0x7}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x8001, 0x4, 0x8, 0x1a3}, 0x5}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3f, 0x9, 0x8, 0xfffffffa, 0x6}, 0x8}}]}, {0xac, 0x6, "fa3bf2b2ff55a084c4fbfe19319fa6f28c9099b4e3b76d35a32eea516598b528a220cac8cdc3d7c07dbd658767bbb59d0010721b065040f104d725edb93cf9f0441acb9b0f3756a282d0c14303b0c30bb851648a3483b3cb8537c3ae1c3df51ceb9e9937ccde4fbe51b24bc97cbecc492b05e668c322d7174ad00c59958b8be23fe915af46d810a8ccd753cc60f70c8321ae1ecf406cfe086fec7ee81ad9d6b39cc041ad08401fae"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_csum={0x174, 0xb, 0x0, 0x0, {{0x9}, {0x90, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3, 0xffff, 0x4, 0xddf3, 0xffffffff}, 0x33}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x8001, 0x3, 0x9, 0x9}, 0x5b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x1ff, 0x8, 0x6, 0xcc7}, 0xa}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x8000, 0x7, 0x5, 0xffffffff}, 0x74}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x6, 0xfff, 0x6, 0xf130, 0x4}, 0x27}}]}, {0xbc, 0x6, "9b6d153da49e867b886c29074cb77f016085a98193d903a23ebd83eb3e335b679459fd8db4f71676243d68da0b1a0e61786566a60565d3f8ab55c70250b76a41822af2e683a667d5fd1bf62b6b6c296a83d06b4a1b312fd580b378313a6f1021137cf0761bd6be77e1ff2d1b7b8e4c195ac050f0865592db609126af6bf7e20f9c85821b53a89aa1d2b99ec2f58b835b1899f2f6a562fd51b7c9a3dcf59040978d96aca97c77ab42ab981eb81014c9612f096981dd1cb6b1"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_xt={0x138, 0x17, 0x0, 0x0, {{0x7}, {0x90, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x3f, 0x6, {0x1, 'raw\x00', 0x70, 0x417, "0e3449351b8d15abbb02f2b7958fe23568b2828a2b"}}, @TCA_IPT_HOOK={0x8, 0x2, 0x4}, @TCA_IPT_HOOK={0x8}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_HOOK={0x8, 0x2, 0x1}, @TCA_IPT_HOOK={0x8}]}, {0x81, 0x6, "1db0a40505ea528d33f753563171caf72b723f29ca7cee38ee8dd7895210d74923a11b5369ce5207ee0cd063c0853196c98b840527da91dc82d7652bae64e304f77d828fe23aacebc016764b3b01bde15862734ccfee9295d7017154ba34c485a483e22ec292aca691342d606533e97a0978017a75095ec92b2c8a805b"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_nat={0x1d0, 0x1c, 0x0, 0x0, {{0x8}, {0x11c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x401, 0x8, 0xb526, 0x9}, @remote, @broadcast, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x3, 0xffffffff, 0x10000000, 0x4, 0x7fffffff}, @rand_addr=0x64010102, @rand_addr=0x64010102, 0xffffff00, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xff, 0x9, 0x6, 0x2, 0x100}, @local, @broadcast, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x101, 0x3, 0xffffffffffffffff, 0x38c00000, 0xec}, @private=0xa010100, @local, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x20, 0x101, 0xffffffffcffffffc, 0x6, 0x81}, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0x7f, 0x10000000, 0x9, 0x7}, @local, @broadcast, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0x3, 0x20000000, 0x9, 0x4}, @multicast2, @rand_addr=0x64010102, 0xff000000}}]}, {0x8d, 0x6, "d4e4c71c2c9c21158854d9175f08030f872cceb4983667a45e576c503d2aab7176029d7c94a93bf2fd2c30f31bd288f97cf52ec2aa73bd5ba957c9120818b0d688572a0b3133478d96cbd853984d7397d0cc6d64f8fbba288816092f8272184bbd8680da3a6d07c47b7035afb450fbe5ad6a94d965ce35bcca76ec54fbe3a03c59f7d29e89bc3e2978"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_skbedit={0x108, 0xb, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x9, 0xc, 0x0, 0x800000, 0x8}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}]}, {0xb9, 0x6, "c1a3070553620795404d05bfd4b13547f8c3a8f74f054125b298e674adb8afdcf35a340830d726f473a171ce9005dd7c5f7a143b73799144ed180ae2ef5bab32b7dfd31d560e0f9f9c26ed3e4311a9ee6ac43828719657d035aafbd4d7eb377bf4feacf749993977aaa4c2717e5f10c9b2765769ab1f59fa80f482c0e657eb1446038919fd28eb0e84c27963c92436546bb40dd95f2ccf9ce83bcdf7887b81afbba99a8f7273d0dc71666bff43729c6cda623c9801"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_POLICE={0x80, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_TBF={0x3c, 0x1, {0x2cf0, 0x1, 0x1000, 0x18000, 0x4, {0xe4, 0x0, 0x3a70, 0x200, 0x0, 0x3}, {0x8, 0x0, 0xe, 0x8000, 0x400, 0x5e}, 0x10001, 0x2, 0x9}}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RESULT={0x8, 0x5, 0x800}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x10001}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x2}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x5}]}, @TCA_ROUTE4_FROM={0x8, 0x3, 0xc9}, @TCA_ROUTE4_POLICE={0x30, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x7365}, @TCA_POLICE_RESULT={0x8, 0x5, 0x5}, @TCA_POLICE_RESULT={0x8, 0x5, 0x87}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xa90b}]}, @TCA_ROUTE4_ACT={0x13e0, 0x6, [@m_mirred={0x21c, 0xb, 0x0, 0x0, {{0xb}, {0x124, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x5d6e, 0x4, 0x7fffffffdffffff8, 0x1f, 0x3}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc3d, 0x4, 0x4, 0x425, 0xbb2}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x264, 0x7, 0x10000000, 0x200, 0x9}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x80, 0x9, 0x6, 0x800, 0x8}, 0x2, r1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x3, 0x0, 0xfa2c, 0x3}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7f, 0x800, 0x3, 0x93, 0x58}, 0x3, r6}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0xebd, 0x0, 0x2, 0x3}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x7, 0x5, 0x6}, 0x1, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc4d, 0xdc, 0x8, 0x8, 0x1}, 0x2, r12}}]}, {0xcd, 0x6, "3f7d7b2d47dbc0eaec7a8170636cf97a9d0af922083cd2c9be9e24841156c9413779f1b1a125410b8a71a6fddf58874941d9b942fdef0c010b8bfc8029d75b2556c7a0621abf452ff7a79da2c2d4ae834cdd9d058f5213cc32edd2d314b49393e93a065dcb2f9aa3d33b9cd9601299fc24c753da98ec4164db478b99c51d0c375fb684de862d781339081f7fa8df2212ad33cea1be8ad9b909ab69d2c8700b1c5d7e3216def25d133d94a7d90a6cc658764642ec505b39afa77518a521d1df791619b453360cb4025a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_xt={0x1080, 0x15, 0x0, 0x0, {{0x7}, {0x1030, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x102a, 0x6, {0x401, 'filter\x00', 0x0, 0x100, "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"}}]}, {0x2a, 0x6, "13fcb9a7a6edd52dce2fc438ac4c4aa4baa85f815aa78341eabec508008ee56eb87b707e75fc"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1}}}}, @m_xt={0x94, 0x20, 0x0, 0x0, {{0x7}, {0x40, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_INDEX={0x8, 0x3, 0x8}, @TCA_IPT_HOOK={0x8, 0x2, 0x3}, @TCA_IPT_INDEX={0x8, 0x3, 0x40}]}, {0x30, 0x6, "d1e98cf3ca57e7d49df3f2f9a35a2265c4e245a564a2ee74a4432e6c620adec35e51d5b9fa107e369bb267a4"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbedit={0xac, 0x17, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x5}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x1}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x1}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}]}, {0x56, 0x6, "042ecf183408edf7acc4783a778614e0bcaf55296830a8bc32c6effdeb1b2efce4dac53ee2cdc409a477b29040f33ecb6104e8cacba7e707ae5f8d8f31df080086fd738a93ae291f048184b34db543992ea0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1c6a8d1d53b1eae7}}}}]}, @TCA_ROUTE4_POLICE={0x60, 0x5, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x763abfe3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x55}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x10000000, 0x3ff, 0x7fff, 0x8, {0x2, 0x2, 0x7fff, 0x3, 0x33, 0x800}, {0x6, 0x0, 0x3e, 0x6, 0x1}, 0x3cab8d10, 0x7, 0x81}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xad90}]}, @TCA_ROUTE4_POLICE={0x470, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x6, 0x7fffffff, 0x4c1f, 0x7, {0x3, 0x2, 0x4, 0x4, 0x7f, 0xff}, {0x6, 0x2, 0x80, 0x6, 0x8639, 0x8}, 0x8, 0x2, 0x2556}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1, 0x6, 0x4, 0xfffffffb, 0x9, 0x4, 0x0, 0x9, 0x71, 0xb98b, 0x8000, 0x1ff, 0x6f, 0x838d, 0xdcd, 0x5, 0x400, 0x1, 0x0, 0x400, 0x8, 0x5, 0x40, 0x9, 0x20, 0x1f, 0x100, 0x2000, 0xfff, 0x2, 0x9, 0x1, 0x8000, 0x6, 0x87, 0x401, 0x5, 0xf4, 0xff, 0x1, 0x3, 0x1, 0xfffffffd, 0x0, 0xfffffbff, 0xffff, 0x1, 0xffffffff, 0x0, 0x5, 0xba, 0x7, 0x1, 0x5f63, 0x578, 0x80000, 0x2, 0x1, 0xfffffffa, 0x9, 0x39d7, 0x10000, 0x3, 0x7, 0x7, 0x1, 0xde, 0xfffffffb, 0x1, 0x8, 0x8000, 0x7, 0x1, 0x3, 0x6, 0x8, 0x3, 0x6, 0x5, 0x1, 0x36, 0x80000000, 0x7165, 0xfff, 0x5, 0x3, 0x8, 0x1, 0x6, 0x3, 0x0, 0x7, 0x1, 0xfffffff9, 0xfffffffa, 0x7, 0x1, 0x0, 0x8, 0x20, 0xff, 0x8, 0x4, 0x3, 0x2, 0x3ff, 0x7, 0xff, 0x3, 0xfffffff9, 0x36d, 0x2, 0x1f, 0x6ece, 0x9, 0x9, 0x7, 0x2, 0x0, 0x1f00, 0x7fc00, 0x10000, 0x0, 0x800, 0x41, 0xfffffffa, 0x6, 0x1, 0x7, 0x100, 0x1, 0x80000000, 0xca, 0x4, 0x7, 0x3, 0x5fa0, 0x40, 0x1, 0x6e, 0x6, 0xb8, 0x5, 0x100, 0x0, 0xff, 0x1f, 0x0, 0x2, 0x3, 0x100, 0x0, 0x9, 0xe9, 0x1f, 0x5, 0x7, 0x4c, 0x1, 0xffff, 0x4, 0x5, 0x2df7, 0x4, 0x63, 0x3, 0x1, 0x0, 0xffff, 0x8, 0x180, 0x7, 0x1, 0x354209f5, 0x0, 0x36bc3e98, 0x5, 0x1, 0x7, 0x3f, 0x9, 0xe9f3, 0xffffffff, 0x9, 0x3ff, 0x8000, 0x4, 0x7, 0x5, 0x7fffffff, 0x2, 0x5, 0x3ff, 0x6c, 0x9, 0x7fffffff, 0x3, 0x9, 0x7fff, 0x200, 0x10000, 0x9, 0x800, 0x8ae, 0x7, 0x8, 0x7d7f, 0x7fffffff, 0x1, 0x200, 0x5, 0x47, 0x8, 0x6, 0x401, 0x1, 0x8, 0x6, 0x101, 0xa855, 0x6, 0x3, 0x7fffffff, 0x8, 0xde2, 0x0, 0x1d, 0x10001, 0xbc, 0x6, 0x9, 0x6, 0x9, 0x9, 0x81, 0x7, 0x4, 0x7fff, 0x6, 0x40, 0x30000, 0x587, 0x7, 0x5, 0x0, 0x0, 0x3, 0x80, 0x1, 0x0, 0xc3, 0x8, 0xfff, 0x5, 0x101, 0x1]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8000}, @TCA_POLICE_RESULT={0x8, 0x5, 0xffff}]}]}}]}, 0x244c}, 0x1, 0x0, 0x0, 0x4}, 0xc018800)

07:00:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58)

07:00:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0}, 0x58)

07:00:22 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@ipv6_getnexthop={0x34, 0x6a, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@NHA_GROUPS={0x4}, @NHA_FDB={0x4}, @NHA_MASTER={0x8}, @NHA_ID={0x8}, @NHA_FDB={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x8011)
readv(r1, 0x0, 0x0)

07:00:22 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@ipv6_getnexthop={0x34, 0x6a, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@NHA_GROUPS={0x4}, @NHA_FDB={0x4}, @NHA_MASTER={0x8}, @NHA_ID={0x8}, @NHA_FDB={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x8011) (async)
readv(r1, 0x0, 0x0)

07:00:22 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8)
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000280)={0xa0, 0xfffffffffffffff5, r2, {{0x6, 0x0, 0x800, 0x1, 0x1, 0x313e, {0x1, 0xffffffffffff8000, 0xa34, 0x6, 0x3, 0xffffffffffffffff, 0x4, 0xfffffff7, 0x0, 0x4000, 0xffffffff, 0x0, 0xee00, 0x9, 0x7}}, {0x0, 0x3c}}}, 0xa0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0xb0, 0x0, 0x300, 0x7, 0x25dfdbfc, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3f10dc41f792dad}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbd7e1676ae9e0f1a}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x8001)
write$FUSE_WRITE(r0, &(0x7f0000000000)={0x18, 0x0, r3, {0x7}}, 0x18)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r6, 0x0, 0x0)

07:00:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xfffffff5, 0x0, 0x0}, 0x58)

07:00:22 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@ipv6_getnexthop={0x34, 0x6a, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@NHA_GROUPS={0x4}, @NHA_FDB={0x4}, @NHA_MASTER={0x8}, @NHA_ID={0x8}, @NHA_FDB={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x8011)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@ipv6_getnexthop={0x34, 0x6a, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@NHA_GROUPS={0x4}, @NHA_FDB={0x4}, @NHA_MASTER={0x8}, @NHA_ID={0x8}, @NHA_FDB={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x8011) (async)
readv(r1, 0x0, 0x0) (async)

07:00:22 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8)
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000280)={0xa0, 0xfffffffffffffff5, r2, {{0x6, 0x0, 0x800, 0x1, 0x1, 0x313e, {0x1, 0xffffffffffff8000, 0xa34, 0x6, 0x3, 0xffffffffffffffff, 0x4, 0xfffffff7, 0x0, 0x4000, 0xffffffff, 0x0, 0xee00, 0x9, 0x7}}, {0x0, 0x3c}}}, 0xa0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0xb0, 0x0, 0x300, 0x7, 0x25dfdbfc, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3f10dc41f792dad}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbd7e1676ae9e0f1a}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x8001)
write$FUSE_WRITE(r0, &(0x7f0000000000)={0x18, 0x0, r3, {0x7}}, 0x18)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r6, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) (async)
bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) (async)
read$FUSE(r0, &(0x7f0000004200)={0x2020}, 0x2020) (async)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000280)={0xa0, 0xfffffffffffffff5, r2, {{0x6, 0x0, 0x800, 0x1, 0x1, 0x313e, {0x1, 0xffffffffffff8000, 0xa34, 0x6, 0x3, 0xffffffffffffffff, 0x4, 0xfffffff7, 0x0, 0x4000, 0xffffffff, 0x0, 0xee00, 0x9, 0x7}}, {0x0, 0x3c}}}, 0xa0) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}}) (async)
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x8000}}) (async)
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020) (async)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50) (async)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50) (async)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0xb0, 0x0, 0x300, 0x7, 0x25dfdbfc, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3f10dc41f792dad}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbd7e1676ae9e0f1a}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x8001) (async)
write$FUSE_WRITE(r0, &(0x7f0000000000)={0x18, 0x0, r3, {0x7}}, 0x18) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r6, 0x0, 0x0) (async)

07:00:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58)

[  279.395059][ T6353] FAULT_INJECTION: forcing a failure.
[  279.395059][ T6353] name failslab, interval 1, probability 0, space 0, times 0
[  279.461115][ T6353] CPU: 0 PID: 6353 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  279.471119][ T6353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  279.481101][ T6353] Call Trace:
[  279.484222][ T6353]  <TASK>
[  279.487013][ T6353]  dump_stack_lvl+0x151/0x1b7
[  279.491517][ T6353]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  279.496814][ T6353]  ? do_syscall_64+0x44/0xd0
[  279.501241][ T6353]  dump_stack+0x15/0x17
[  279.505227][ T6353]  should_fail+0x3c0/0x510
[  279.509483][ T6353]  __should_failslab+0x9f/0xe0
[  279.514081][ T6353]  should_failslab+0x9/0x20
[  279.518422][ T6353]  kmem_cache_alloc+0x4f/0x2f0
[  279.523019][ T6353]  ? anon_vma_clone+0xa1/0x4f0
[  279.527620][ T6353]  anon_vma_clone+0xa1/0x4f0
[  279.532053][ T6353]  anon_vma_fork+0x91/0x4f0
[  279.536388][ T6353]  ? anon_vma_name+0x43/0x70
[  279.540827][ T6353]  dup_mmap+0x750/0xea0
[  279.544809][ T6353]  ? __delayed_free_task+0x20/0x20
[  279.550013][ T6353]  ? mm_init+0x807/0x960
[  279.554092][ T6353]  dup_mm+0x91/0x330
[  279.557823][ T6353]  copy_mm+0x108/0x1b0
[  279.561729][ T6353]  copy_process+0x1295/0x3250
[  279.566247][ T6353]  ? check_stack_object+0xf7/0x130
[  279.571191][ T6353]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  279.576137][ T6353]  ? copy_clone_args_from_user+0x6cf/0x790
[  279.581783][ T6353]  kernel_clone+0x22d/0x990
[  279.586121][ T6353]  ? dup_mmap+0xea0/0xea0
[  279.590285][ T6353]  ? create_io_thread+0x1e0/0x1e0
[  279.595148][ T6353]  ? file_end_write+0x1b0/0x1b0
[  279.599835][ T6353]  __x64_sys_clone3+0x375/0x3a0
[  279.604520][ T6353]  ? __ia32_sys_clone+0x300/0x300
[  279.609395][ T6353]  ? ksys_write+0x25f/0x2c0
[  279.613722][ T6353]  ? debug_smp_processor_id+0x17/0x20
[  279.618928][ T6353]  do_syscall_64+0x44/0xd0
[  279.623183][ T6353]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  279.628908][ T6353] RIP: 0033:0x7f8e237f0639
[  279.633162][ T6353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  279.652605][ T6353] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  279.661808][ T6353] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  279.669615][ T6353] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  279.677428][ T6353] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  279.685238][ T6353] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  279.693049][ T6353] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  279.700950][ T6353]  </TASK>
07:00:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 72)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) (async)
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000280)={0xa0, 0xfffffffffffffff5, r2, {{0x6, 0x0, 0x800, 0x1, 0x1, 0x313e, {0x1, 0xffffffffffff8000, 0xa34, 0x6, 0x3, 0xffffffffffffffff, 0x4, 0xfffffff7, 0x0, 0x4000, 0xffffffff, 0x0, 0xee00, 0x9, 0x7}}, {0x0, 0x3c}}}, 0xa0) (async, rerun: 32)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}}) (async, rerun: 32)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x8000}}) (async, rerun: 64)
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020) (rerun: 64)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x2849340}}, 0x50) (async)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0xb0, 0x0, 0x300, 0x7, 0x25dfdbfc, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3f10dc41f792dad}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbd7e1676ae9e0f1a}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x8001)
write$FUSE_WRITE(r0, &(0x7f0000000000)={0x18, 0x0, r3, {0x7}}, 0x18) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r6, 0x0, 0x0)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180185000003004000000000009c"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1d, 0xa, &(0x7f00000000c0)=@raw=[@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x5a4}, @alu={0x4, 0x0, 0x0, 0x3, 0x2, 0xffffffffffffffff, 0x8}, @call={0x85, 0x0, 0x0, 0x6a}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @map_fd={0x18, 0x1, 0x1, 0x0, r2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}], &(0x7f0000000140)='syzkaller\x00', 0x90000000, 0x3f, &(0x7f0000000180)=""/63, 0x0, 0x0, '\x00', 0x0, 0xa, r4, 0x8, &(0x7f00000001c0)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x2, 0x53d, 0x2}, 0x10, 0x0, r6}, 0x80)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

07:00:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4100, 0x0, 0x0}, 0x58)

07:00:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4, 0x0, 0x0}, 0x58)

07:00:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xfffffffb, 0x0, 0x0}, 0x58)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180185000003004000000000009c"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3) (async)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0) (async)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1d, 0xa, &(0x7f00000000c0)=@raw=[@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x5a4}, @alu={0x4, 0x0, 0x0, 0x3, 0x2, 0xffffffffffffffff, 0x8}, @call={0x85, 0x0, 0x0, 0x6a}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @map_fd={0x18, 0x1, 0x1, 0x0, r2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}], &(0x7f0000000140)='syzkaller\x00', 0x90000000, 0x3f, &(0x7f0000000180)=""/63, 0x0, 0x0, '\x00', 0x0, 0xa, r4, 0x8, &(0x7f00000001c0)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x2, 0x53d, 0x2}, 0x10, 0x0, r6}, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180185000003004000000000009c"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1d, 0xa, &(0x7f00000000c0)=@raw=[@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x5a4}, @alu={0x4, 0x0, 0x0, 0x3, 0x2, 0xffffffffffffffff, 0x8}, @call={0x85, 0x0, 0x0, 0x6a}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @map_fd={0x18, 0x1, 0x1, 0x0, r2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}], &(0x7f0000000140)='syzkaller\x00', 0x90000000, 0x3f, &(0x7f0000000180)=""/63, 0x0, 0x0, '\x00', 0x0, 0xa, r4, 0x8, &(0x7f00000001c0)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x2, 0x53d, 0x2}, 0x10, 0x0, r6}, 0x80)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180185000003004000000000009c"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
pipe(&(0x7f0000000080)) (async)
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)) (async)
close(r3) (async)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0) (async)
writev(r4, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)) (async)
close(r5) (async)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0) (async)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1d, 0xa, &(0x7f00000000c0)=@raw=[@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x5a4}, @alu={0x4, 0x0, 0x0, 0x3, 0x2, 0xffffffffffffffff, 0x8}, @call={0x85, 0x0, 0x0, 0x6a}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @map_fd={0x18, 0x1, 0x1, 0x0, r2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}], &(0x7f0000000140)='syzkaller\x00', 0x90000000, 0x3f, &(0x7f0000000180)=""/63, 0x0, 0x0, '\x00', 0x0, 0xa, r4, 0x8, &(0x7f00000001c0)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x2, 0x53d, 0x2}, 0x10, 0x0, r6}, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10)
pipe2(&(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x900)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@exit, @map_fd={0x18, 0x4, 0x1, 0x0, r0}, @jmp={0x5, 0x0, 0x1, 0x6, 0x8, 0xfffffffffffffff4, 0xfffffffffffffffc}, @call={0x85, 0x0, 0x0, 0x4e}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_fd, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @generic={0x8, 0x3, 0x8, 0x1, 0xe61}, @exit, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x67d5}]}, &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x8, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x0, 0x5, 0x7, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000240)=[r8, 0xffffffffffffffff, r9, 0xffffffffffffffff]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r11, 0x0, 0x0)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095f10d14b6567ae2ca8db9d77f7488927e66b5118d149051a99599db068287d9873ce83152a9fc3a330b0ac522e6c37bd2bdcd22dbfa639503a51e1b2ebce31b107f48a9523bf37e3eb41f7de12c656d756b6d"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10)
pipe2(&(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x900) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@exit, @map_fd={0x18, 0x4, 0x1, 0x0, r0}, @jmp={0x5, 0x0, 0x1, 0x6, 0x8, 0xfffffffffffffff4, 0xfffffffffffffffc}, @call={0x85, 0x0, 0x0, 0x4e}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_fd, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @generic={0x8, 0x3, 0x8, 0x1, 0xe61}, @exit, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x67d5}]}, &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x8, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x0, 0x5, 0x7, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000240)=[r8, 0xffffffffffffffff, r9, 0xffffffffffffffff]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
readv(r11, 0x0, 0x0)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095f10d14b6567ae2ca8db9d77f7488927e66b5118d149051a99599db068287d9873ce83152a9fc3a330b0ac522e6c37bd2bdcd22dbfa639503a51e1b2ebce31b107f48a9523bf37e3eb41f7de12c656d756b6d"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

[  279.845262][ T6392] FAULT_INJECTION: forcing a failure.
[  279.845262][ T6392] name failslab, interval 1, probability 0, space 0, times 0
[  279.862583][ T6392] CPU: 0 PID: 6392 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  279.872577][ T6392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  279.883824][ T6392] Call Trace:
[  279.886953][ T6392]  <TASK>
[  279.889726][ T6392]  dump_stack_lvl+0x151/0x1b7
[  279.894237][ T6392]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  279.899534][ T6392]  dump_stack+0x15/0x17
[  279.903526][ T6392]  should_fail+0x3c0/0x510
[  279.907779][ T6392]  __should_failslab+0x9f/0xe0
[  279.912386][ T6392]  should_failslab+0x9/0x20
[  279.916739][ T6392]  kmem_cache_alloc+0x4f/0x2f0
[  279.921310][ T6392]  ? anon_vma_clone+0xa1/0x4f0
[  279.925914][ T6392]  anon_vma_clone+0xa1/0x4f0
[  279.930343][ T6392]  anon_vma_fork+0x91/0x4f0
[  279.934681][ T6392]  ? anon_vma_name+0x43/0x70
[  279.939105][ T6392]  dup_mmap+0x750/0xea0
[  279.943098][ T6392]  ? __delayed_free_task+0x20/0x20
[  279.948045][ T6392]  ? mm_init+0x807/0x960
[  279.952124][ T6392]  dup_mm+0x91/0x330
[  279.955858][ T6392]  copy_mm+0x108/0x1b0
[  279.959768][ T6392]  copy_process+0x1295/0x3250
[  279.964277][ T6392]  ? check_stack_object+0xf7/0x130
[  279.969228][ T6392]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  279.974176][ T6392]  ? copy_clone_args_from_user+0x6cf/0x790
[  279.979811][ T6392]  kernel_clone+0x22d/0x990
[  279.984152][ T6392]  ? dup_mmap+0xea0/0xea0
[  279.988415][ T6392]  ? create_io_thread+0x1e0/0x1e0
[  279.993271][ T6392]  ? file_end_write+0x1b0/0x1b0
[  279.997955][ T6392]  __x64_sys_clone3+0x375/0x3a0
[  280.002644][ T6392]  ? __ia32_sys_clone+0x300/0x300
[  280.007504][ T6392]  ? ksys_write+0x25f/0x2c0
[  280.011846][ T6392]  ? debug_smp_processor_id+0x17/0x20
[  280.017050][ T6392]  do_syscall_64+0x44/0xd0
[  280.021306][ T6392]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  280.027035][ T6392] RIP: 0033:0x7f8e237f0639
[  280.031289][ T6392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  280.051116][ T6392] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  280.059369][ T6392] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  280.067172][ T6392] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  280.074989][ T6392] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  280.082805][ T6392] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  280.090608][ T6392] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  280.098419][ T6392]  </TASK>
07:00:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 73)

07:00:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x5, 0x0, 0x0}, 0x58)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) (async, rerun: 32)
pipe2(&(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x900) (async, rerun: 32)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}) (rerun: 64)
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@exit, @map_fd={0x18, 0x4, 0x1, 0x0, r0}, @jmp={0x5, 0x0, 0x1, 0x6, 0x8, 0xfffffffffffffff4, 0xfffffffffffffffc}, @call={0x85, 0x0, 0x0, 0x4e}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_fd, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @generic={0x8, 0x3, 0x8, 0x1, 0xe61}, @exit, @map_val={0x18, 0x1, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x67d5}]}, &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x8, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x0, 0x5, 0x7, 0x2}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000240)=[r8, 0xffffffffffffffff, r9, 0xffffffffffffffff]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2)
readv(r11, 0x0, 0x0)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095f10d14b6567ae2ca8db9d77f7488927e66b5118d149051a99599db068287d9873ce83152a9fc3a330b0ac522e6c37bd2bdcd22dbfa639503a51e1b2ebce31b107f48a9523bf37e3eb41f7de12c656d756b6d"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x7000, 0x0, 0x0}, 0x58)

07:00:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xfffffffe, 0x0, 0x0}, 0x58)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
close(r1)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080), 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
dup2(r0, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf64(r2, 0x0, 0xfe30)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="6970488afd583000efffffffffffffff", @ANYRES32=<r3=>0x0, @ANYBLOB="0700006000000007000000050000002800ffff000000000000000000635bb41c6401010100000006"]})
sendmsg$nl_route_sched(r2, &(0x7f0000000f40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000100)=@newchain={0x120, 0x64, 0x8, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9}, {0x6, 0xfff1}, {0xc, 0xffe0}}, [@filter_kind_options=@f_tcindex={{0xc}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x10001}, @filter_kind_options=@f_tcindex={{0xc}, {0x98, 0x2, [@TCA_TCINDEX_POLICE={0x7c, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1000, 0x3, 0xbc8, 0x0, 0x100, {0x1, 0x2, 0x9, 0xf6, 0xa166, 0x40}, {0x6, 0xade917cb0e29ee04, 0xc7f, 0x2, 0x4, 0x5}, 0x3, 0x7ff}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}]}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_HASH={0x8, 0x1, 0x8b3f}]}}, @TCA_CHAIN={0x8, 0xb, 0x18}, @filter_kind_options=@f_u32={{0x8}, {0x30, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'vlan0\x00'}, @TCA_U32_LINK={0x8, 0x3, 0x3ff}, @TCA_U32_LINK={0x8, 0x3, 0x705}, @TCA_U32_CLASSID={0x8, 0x1, {0x5, 0xffe0}}]}}]}, 0x120}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c90)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
close(r1)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async)
close(r1)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080), 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
dup2(r0, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf64(r2, 0x0, 0xfe30)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="6970488afd583000efffffffffffffff", @ANYRES32=<r3=>0x0, @ANYBLOB="0700006000000007000000050000002800ffff000000000000000000635bb41c6401010100000006"]})
sendmsg$nl_route_sched(r2, &(0x7f0000000f40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000100)=@newchain={0x120, 0x64, 0x8, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9}, {0x6, 0xfff1}, {0xc, 0xffe0}}, [@filter_kind_options=@f_tcindex={{0xc}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x10001}, @filter_kind_options=@f_tcindex={{0xc}, {0x98, 0x2, [@TCA_TCINDEX_POLICE={0x7c, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1000, 0x3, 0xbc8, 0x0, 0x100, {0x1, 0x2, 0x9, 0xf6, 0xa166, 0x40}, {0x6, 0xade917cb0e29ee04, 0xc7f, 0x2, 0x4, 0x5}, 0x3, 0x7ff}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}]}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_HASH={0x8, 0x1, 0x8b3f}]}}, @TCA_CHAIN={0x8, 0xb, 0x18}, @filter_kind_options=@f_u32={{0x8}, {0x30, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'vlan0\x00'}, @TCA_U32_LINK={0x8, 0x3, 0x3ff}, @TCA_U32_LINK={0x8, 0x3, 0x705}, @TCA_U32_CLASSID={0x8, 0x1, {0x5, 0xffe0}}]}}]}, 0x120}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c90)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
epoll_create1(0x0) (async)
socket$packet(0x11, 0x4000000000002, 0x300) (async)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080), 0x4) (async)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) (async)
dup2(r0, r1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r2, 0x0, 0xfe30) (async)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="6970488afd583000efffffffffffffff", @ANYRES32=0x0, @ANYBLOB="0700006000000007000000050000002800ffff000000000000000000635bb41c6401010100000006"]}) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000f40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000100)=@newchain={0x120, 0x64, 0x8, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9}, {0x6, 0xfff1}, {0xc, 0xffe0}}, [@filter_kind_options=@f_tcindex={{0xc}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x10001}, @filter_kind_options=@f_tcindex={{0xc}, {0x98, 0x2, [@TCA_TCINDEX_POLICE={0x7c, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1000, 0x3, 0xbc8, 0x0, 0x100, {0x1, 0x2, 0x9, 0xf6, 0xa166, 0x40}, {0x6, 0xade917cb0e29ee04, 0xc7f, 0x2, 0x4, 0x5}, 0x3, 0x7ff}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}]}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_HASH={0x8, 0x1, 0x8b3f}]}}, @TCA_CHAIN={0x8, 0xb, 0x18}, @filter_kind_options=@f_u32={{0x8}, {0x30, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'vlan0\x00'}, @TCA_U32_LINK={0x8, 0x3, 0x3ff}, @TCA_U32_LINK={0x8, 0x3, 0x705}, @TCA_U32_CLASSID={0x8, 0x1, {0x5, 0xffe0}}]}}]}, 0x120}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c90) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r4, 0x0, 0x0) (async)

07:00:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x7, 0x0, 0x0}, 0x58)

[  280.252765][ T6423] FAULT_INJECTION: forcing a failure.
[  280.252765][ T6423] name failslab, interval 1, probability 0, space 0, times 0
[  280.273324][ T6423] CPU: 1 PID: 6423 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  280.283321][ T6423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  280.293205][ T6423] Call Trace:
[  280.296416][ T6423]  <TASK>
[  280.299193][ T6423]  dump_stack_lvl+0x151/0x1b7
[  280.303707][ T6423]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  280.309286][ T6423]  dump_stack+0x15/0x17
[  280.313243][ T6423]  should_fail+0x3c0/0x510
[  280.317497][ T6423]  __should_failslab+0x9f/0xe0
[  280.322100][ T6423]  should_failslab+0x9/0x20
[  280.326459][ T6423]  kmem_cache_alloc+0x4f/0x2f0
[  280.331040][ T6423]  ? vm_area_dup+0x26/0x1d0
[  280.335377][ T6423]  vm_area_dup+0x26/0x1d0
[  280.339542][ T6423]  dup_mmap+0x6b8/0xea0
[  280.343541][ T6423]  ? __delayed_free_task+0x20/0x20
[  280.348487][ T6423]  ? mm_init+0x807/0x960
[  280.352560][ T6423]  dup_mm+0x91/0x330
[  280.356758][ T6423]  copy_mm+0x108/0x1b0
[  280.360658][ T6423]  copy_process+0x1295/0x3250
[  280.365176][ T6423]  ? check_stack_object+0xf7/0x130
[  280.370124][ T6423]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  280.375202][ T6423]  ? copy_clone_args_from_user+0x6cf/0x790
[  280.380964][ T6423]  kernel_clone+0x22d/0x990
[  280.385308][ T6423]  ? dup_mmap+0xea0/0xea0
[  280.389475][ T6423]  ? create_io_thread+0x1e0/0x1e0
[  280.394332][ T6423]  ? file_end_write+0x1b0/0x1b0
[  280.399021][ T6423]  __x64_sys_clone3+0x375/0x3a0
[  280.403706][ T6423]  ? __ia32_sys_clone+0x300/0x300
[  280.408738][ T6423]  ? ksys_write+0x25f/0x2c0
[  280.413079][ T6423]  ? debug_smp_processor_id+0x17/0x20
[  280.418286][ T6423]  do_syscall_64+0x44/0xd0
[  280.423497][ T6423]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  280.429272][ T6423] RIP: 0033:0x7f8e237f0639
[  280.433477][ T6423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  280.453545][ T6423] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  280.461797][ T6423] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  280.469600][ T6423] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  280.477411][ T6423] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  280.485223][ T6423] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  280.493033][ T6423] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  280.500980][ T6423]  </TASK>
07:00:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x10fff, 0x0, 0x0}, 0x58)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="01000080d5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1b0ee1f000, 0x0, 0x0}, 0x58)

07:00:23 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080), 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
dup2(r0, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_elf64(r2, 0x0, 0xfe30)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="6970488afd583000efffffffffffffff", @ANYRES32=<r3=>0x0, @ANYBLOB="0700006000000007000000050000002800ffff000000000000000000635bb41c6401010100000006"]})
sendmsg$nl_route_sched(r2, &(0x7f0000000f40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000100)=@newchain={0x120, 0x64, 0x8, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9}, {0x6, 0xfff1}, {0xc, 0xffe0}}, [@filter_kind_options=@f_tcindex={{0xc}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x10001}, @filter_kind_options=@f_tcindex={{0xc}, {0x98, 0x2, [@TCA_TCINDEX_POLICE={0x7c, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1000, 0x3, 0xbc8, 0x0, 0x100, {0x1, 0x2, 0x9, 0xf6, 0xa166, 0x40}, {0x6, 0xade917cb0e29ee04, 0xc7f, 0x2, 0x4, 0x5}, 0x3, 0x7ff}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}]}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_HASH={0x8, 0x1, 0x8b3f}]}}, @TCA_CHAIN={0x8, 0xb, 0x18}, @filter_kind_options=@f_u32={{0x8}, {0x30, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'vlan0\x00'}, @TCA_U32_LINK={0x8, 0x3, 0x3ff}, @TCA_U32_LINK={0x8, 0x3, 0x705}, @TCA_U32_CLASSID={0x8, 0x1, {0x5, 0xffe0}}]}}]}, 0x120}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c90)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
epoll_create1(0x0) (async)
socket$packet(0x11, 0x4000000000002, 0x300) (async)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080), 0x4) (async)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) (async)
dup2(r0, r1) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r2, 0x0, 0xfe30) (async)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="6970488afd583000efffffffffffffff", @ANYRES32=0x0, @ANYBLOB="0700006000000007000000050000002800ffff000000000000000000635bb41c6401010100000006"]}) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000f40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000100)=@newchain={0x120, 0x64, 0x8, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x9}, {0x6, 0xfff1}, {0xc, 0xffe0}}, [@filter_kind_options=@f_tcindex={{0xc}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x10001}, @filter_kind_options=@f_tcindex={{0xc}, {0x98, 0x2, [@TCA_TCINDEX_POLICE={0x7c, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1000, 0x3, 0xbc8, 0x0, 0x100, {0x1, 0x2, 0x9, 0xf6, 0xa166, 0x40}, {0x6, 0xade917cb0e29ee04, 0xc7f, 0x2, 0x4, 0x5}, 0x3, 0x7ff}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_RATE64={0xc, 0x8, 0x1}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}]}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_FALL_THROUGH={0x8, 0x4, 0x1}, @TCA_TCINDEX_HASH={0x8, 0x1, 0x8b3f}]}}, @TCA_CHAIN={0x8, 0xb, 0x18}, @filter_kind_options=@f_u32={{0x8}, {0x30, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'vlan0\x00'}, @TCA_U32_LINK={0x8, 0x3, 0x3ff}, @TCA_U32_LINK={0x8, 0x3, 0x705}, @TCA_U32_CLASSID={0x8, 0x1, {0x5, 0xffe0}}]}}]}, 0x120}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c90) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r4, 0x0, 0x0) (async)

07:00:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 74)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="01000080d5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 32)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
readv(r1, 0x0, 0x0)

07:00:23 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchmod(r0, 0x80)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r3=>0x0)
setresuid(0xffffffffffffffff, r3, 0xffffffffffffffff)
fstat(r1, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000001740)='./file0\x00', &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x100)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001840)="7adf5eb49fb1dcd18c70898eb05469e4c72cb1fca135c3d7c498df631b95d6a01537bb2d8e3a8e2fbe5a6a8077a5ed115b9e85ff4284fe23e90624f4eefb5e000000000000000407eed50d62d21cb344d4c0ad21350c4b018ffc0f256a1123babcd1909a656618e36643373ff423dc68a062b58bda34e9cf5c0006e00a099f18ec0f3200b9facef335b8958d6ae12a6b9d8768", 0x93}, {&(0x7f0000000180)="f2942887040105510aff8c8b3c4ef01558e4087bf1457d0fa89a39355b0696366ccad837b8d216e73461d019c3aa35539db58451c43218675d7d2c3fd9f855358d76b6a228a5f5f998d62e35c9f357fe", 0x50}, {&(0x7f0000000200)="12a88ca19545e3dbe91691353ebfe344466691fe74d942ee5c18cffe791213b2c21dd13acf22af77682000bcdec4c5493901a977bf3b132288a85def99de8982c83ce18ac7dd4dc28701fedbdda90eb39de48e90309f8674b5ffda783e95374af7047481d5594b929a89c054fa30cb53fceb22ed2f48f11294eb30b450dc5e3647a085924253d7b004631d40dadf9b0a4e36705f73c798c2331f1c11238e65db01eb2235bc135b9d2a975e6930d81cb3a0c00fff9cb953e622e2efbd0d48de53fe0387be39d211031a963e93ed86a8af3c57a50a92988ea3b51d458ceb458a913677ce3be4fdb3bb17968d9045617670ef7ce0aa8c3954", 0xf7}, {&(0x7f0000000300)="91574d8a458c2411bca617bdd3a877fc22c96a6e66a5e3817b1582a8bccdcabd3e2aa344b54ab2b7153679714e81fa4c12fac6b4d19b0516a6ca16cba5db793cf4e0", 0x42}, {&(0x7f0000000380)="a3822ce7a49f71cb2b953bea31c52af68db18fd243db7b938a44c0891109ea10b5c71f8015ad427729bc2cdf99", 0x2d}, {&(0x7f00000003c0)="1b62d0cee7c581d5f56de2c45d0e06cde3c47e36c57d3d1d0ebf44eb396ecdec2f5b0c9f7b94ea2e8249a819bc230000000000000000281e8851c086798c03ed1a7ab2c7f3c12c9de94d7e0043305d891854d584e7c43499b601b7b88fd244030be23892e228ba49b7f1", 0x6a}, {&(0x7f0000000440)="18edc82cad5f41ac2f86878a80db792714817f74953d66a44946d0d06e5b6a4e3d669782bcf00bdcb9b1a4b39adb7be24ae2b3cd9125160db0164a5fe5c6ed37224f77e19629fe8abd1de1f128d05475976d1dec0385cdfc6ada426744a48165977c39225f372f0e2793f8e4b47192296e99b1cfcc2722e13c76a000f48993e8966a2208363e316889be567ca1d6f6c8d0ec2f571c591ef4efef31d3428c2a58ac9fb02d39340a9d0a75f93e156e9fa222d44f07e46ef5f5019060a6b61c348417f84fb56c3c966659e2adb5844783f76532a95f532f72ad5f339dd3", 0xdc}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000001540)="f28f9b4781dfbdd6590612dcb0a1d343188e373b7768abd5447fa2d601eb27b54b400ccfc12531cc7e0ac37cb4", 0x2d}], 0x9, &(0x7f0000001800)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r5, r4}}}], 0x20}}], 0x1, 0x8000)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x26200, 0x0)
dup2(r2, r6)
readv(r1, 0x0, 0x0)

07:00:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="01000080d5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2a4d36c16000, 0x0, 0x0}, 0x58)

07:00:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3ffff, 0x0, 0x0}, 0x58)

07:00:23 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchmod(r0, 0x80)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r3=>0x0)
setresuid(0xffffffffffffffff, r3, 0xffffffffffffffff)
fstat(r1, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000001740)='./file0\x00', &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x100)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001840)="7adf5eb49fb1dcd18c70898eb05469e4c72cb1fca135c3d7c498df631b95d6a01537bb2d8e3a8e2fbe5a6a8077a5ed115b9e85ff4284fe23e90624f4eefb5e000000000000000407eed50d62d21cb344d4c0ad21350c4b018ffc0f256a1123babcd1909a656618e36643373ff423dc68a062b58bda34e9cf5c0006e00a099f18ec0f3200b9facef335b8958d6ae12a6b9d8768", 0x93}, {&(0x7f0000000180)="f2942887040105510aff8c8b3c4ef01558e4087bf1457d0fa89a39355b0696366ccad837b8d216e73461d019c3aa35539db58451c43218675d7d2c3fd9f855358d76b6a228a5f5f998d62e35c9f357fe", 0x50}, {&(0x7f0000000200)="12a88ca19545e3dbe91691353ebfe344466691fe74d942ee5c18cffe791213b2c21dd13acf22af77682000bcdec4c5493901a977bf3b132288a85def99de8982c83ce18ac7dd4dc28701fedbdda90eb39de48e90309f8674b5ffda783e95374af7047481d5594b929a89c054fa30cb53fceb22ed2f48f11294eb30b450dc5e3647a085924253d7b004631d40dadf9b0a4e36705f73c798c2331f1c11238e65db01eb2235bc135b9d2a975e6930d81cb3a0c00fff9cb953e622e2efbd0d48de53fe0387be39d211031a963e93ed86a8af3c57a50a92988ea3b51d458ceb458a913677ce3be4fdb3bb17968d9045617670ef7ce0aa8c3954", 0xf7}, {&(0x7f0000000300)="91574d8a458c2411bca617bdd3a877fc22c96a6e66a5e3817b1582a8bccdcabd3e2aa344b54ab2b7153679714e81fa4c12fac6b4d19b0516a6ca16cba5db793cf4e0", 0x42}, {&(0x7f0000000380)="a3822ce7a49f71cb2b953bea31c52af68db18fd243db7b938a44c0891109ea10b5c71f8015ad427729bc2cdf99", 0x2d}, {&(0x7f00000003c0)="1b62d0cee7c581d5f56de2c45d0e06cde3c47e36c57d3d1d0ebf44eb396ecdec2f5b0c9f7b94ea2e8249a819bc230000000000000000281e8851c086798c03ed1a7ab2c7f3c12c9de94d7e0043305d891854d584e7c43499b601b7b88fd244030be23892e228ba49b7f1", 0x6a}, {&(0x7f0000000440)="18edc82cad5f41ac2f86878a80db792714817f74953d66a44946d0d06e5b6a4e3d669782bcf00bdcb9b1a4b39adb7be24ae2b3cd9125160db0164a5fe5c6ed37224f77e19629fe8abd1de1f128d05475976d1dec0385cdfc6ada426744a48165977c39225f372f0e2793f8e4b47192296e99b1cfcc2722e13c76a000f48993e8966a2208363e316889be567ca1d6f6c8d0ec2f571c591ef4efef31d3428c2a58ac9fb02d39340a9d0a75f93e156e9fa222d44f07e46ef5f5019060a6b61c348417f84fb56c3c966659e2adb5844783f76532a95f532f72ad5f339dd3", 0xdc}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000001540)="f28f9b4781dfbdd6590612dcb0a1d343188e373b7768abd5447fa2d601eb27b54b400ccfc12531cc7e0ac37cb4", 0x2d}], 0x9, &(0x7f0000001800)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r5, r4}}}], 0x20}}], 0x1, 0x8000)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x26200, 0x0)
dup2(r2, r6)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
fchmod(r0, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)) (async)
setresuid(0xffffffffffffffff, r3, 0xffffffffffffffff) (async)
fstat(r1, &(0x7f00000016c0)) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000001740)='./file0\x00', &(0x7f0000001780), 0x100) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001840)="7adf5eb49fb1dcd18c70898eb05469e4c72cb1fca135c3d7c498df631b95d6a01537bb2d8e3a8e2fbe5a6a8077a5ed115b9e85ff4284fe23e90624f4eefb5e000000000000000407eed50d62d21cb344d4c0ad21350c4b018ffc0f256a1123babcd1909a656618e36643373ff423dc68a062b58bda34e9cf5c0006e00a099f18ec0f3200b9facef335b8958d6ae12a6b9d8768", 0x93}, {&(0x7f0000000180)="f2942887040105510aff8c8b3c4ef01558e4087bf1457d0fa89a39355b0696366ccad837b8d216e73461d019c3aa35539db58451c43218675d7d2c3fd9f855358d76b6a228a5f5f998d62e35c9f357fe", 0x50}, {&(0x7f0000000200)="12a88ca19545e3dbe91691353ebfe344466691fe74d942ee5c18cffe791213b2c21dd13acf22af77682000bcdec4c5493901a977bf3b132288a85def99de8982c83ce18ac7dd4dc28701fedbdda90eb39de48e90309f8674b5ffda783e95374af7047481d5594b929a89c054fa30cb53fceb22ed2f48f11294eb30b450dc5e3647a085924253d7b004631d40dadf9b0a4e36705f73c798c2331f1c11238e65db01eb2235bc135b9d2a975e6930d81cb3a0c00fff9cb953e622e2efbd0d48de53fe0387be39d211031a963e93ed86a8af3c57a50a92988ea3b51d458ceb458a913677ce3be4fdb3bb17968d9045617670ef7ce0aa8c3954", 0xf7}, {&(0x7f0000000300)="91574d8a458c2411bca617bdd3a877fc22c96a6e66a5e3817b1582a8bccdcabd3e2aa344b54ab2b7153679714e81fa4c12fac6b4d19b0516a6ca16cba5db793cf4e0", 0x42}, {&(0x7f0000000380)="a3822ce7a49f71cb2b953bea31c52af68db18fd243db7b938a44c0891109ea10b5c71f8015ad427729bc2cdf99", 0x2d}, {&(0x7f00000003c0)="1b62d0cee7c581d5f56de2c45d0e06cde3c47e36c57d3d1d0ebf44eb396ecdec2f5b0c9f7b94ea2e8249a819bc230000000000000000281e8851c086798c03ed1a7ab2c7f3c12c9de94d7e0043305d891854d584e7c43499b601b7b88fd244030be23892e228ba49b7f1", 0x6a}, {&(0x7f0000000440)="18edc82cad5f41ac2f86878a80db792714817f74953d66a44946d0d06e5b6a4e3d669782bcf00bdcb9b1a4b39adb7be24ae2b3cd9125160db0164a5fe5c6ed37224f77e19629fe8abd1de1f128d05475976d1dec0385cdfc6ada426744a48165977c39225f372f0e2793f8e4b47192296e99b1cfcc2722e13c76a000f48993e8966a2208363e316889be567ca1d6f6c8d0ec2f571c591ef4efef31d3428c2a58ac9fb02d39340a9d0a75f93e156e9fa222d44f07e46ef5f5019060a6b61c348417f84fb56c3c966659e2adb5844783f76532a95f532f72ad5f339dd3", 0xdc}, {&(0x7f0000000540)="c50fc34ee51eef339d4c0dbf38730ed2fa73fbb1860376c2b430b5472ea2316c086b317b4bac68cad435ff6a4e1a0e6ccbbcb3f817621ebfb473c848baa99ced9db57a5d805fb87222b8a4e4fa67cdc49a2759193743ccf0a8950c98c6958999882a2836b1d018e450dfc21a65f5235adbbecafeb3383c3491234cc0960f6e5d3fba21ff5364d2c1b1fa1e9559fed235c6c70dec289f3fe2bb477c6d1a2745c9e0b4b426d5e188ce3a9f0f1e18fd1653fe57fc10068ab153b310458b2139e0009a0d8537e10f318f97663e702c1f5486f10d7d3bb543e0fe2169af50727a094ec39d4f77d233cc129567ccbcf5e2a04efaaf0d8601443e8071e1ed6cf2760d598ce176e7717fd3451ff0d65d5a0067c5c4c37adfb0b5edd7f81f22022c1b376be10141df7504393c40f24dc407728d6adbd65860d6574be45fbf6481b4f633ca90c17e239af9dfde6ddd92509a7a30167aa0a395d83226ab344f558d31786810f4f8b1726d0dc8b3b4dd2fc39a7e4e186ccd2e3419ea63fb0c0a29790b91e6ff72c986f7ac137ae86317abd74172889572c139959591ca760af8caee04b56821732d5f90a918aa1b9b6deb3008f6a32714c36781b7fbf7957e50e96f03deeb4e754dcedea730893c11d1f136b3f28e5598072b723b67dc2ef971a9a6b5d1a1ba1e6d46a09aed72ee26b4619405e40d33bd5c4e1e43fa56ad4e0b07cdb07f7588e464d116bd3f75a70a2f38690ec86cd62a7910cd03ca9dc8340f21a99fe62bc0726473a719e5bf8ae16d1860189bbad98db55148c4e3fa2f3ed152f47a24a61282d4260dcd13eeb23e416d1a06fc7a2a2fc26bde77ca6c8c3da17a66d8c6b3f6253dee88b3c765c4f8420f8d01404a6284f0a93775e4d07de369255d65cceb57849d4879e182b538300b75779319feb1bc26c19e59cad22e5c2c606581dd60264bec1eb9f44d04ed2faedcc455d1790348cd4696d4750853b1a805b2c691902c523df91952d0df4875406a4f642638c60c3f4c8117e3641a605e918845224fcd0fb9077fd70d288e28170703a4880668822b5a6e3fdacf2e35a2227cbc4aadede771832400cbc8904c5e2a20cac7d273e0e175d8a16e9329b74fbb5aa3eec906e4b0b1f2dd3559342f73804ec9f46d1dcdf0a028ebf9e4e0f491be8bdb21ea7e76dd2c247c90f68f960a8d48d61b72a1c2905a27510c9460942bae60901455070ca6aadc5d4b0f8c7c13fed566408c78b99f1d9f3da09f5ee31a443ca838ab2c64c5d01e3cae21106f312e2ccff337c62ddcfe1fd12d6615f8948d296ec7e48f733b4a5b9739a8400cee7dfae0b2f4dac6ee81f6eb1bf8393c843c0e3dbde26efbf93fb4a49d29bd31e06c9f3114aafcf980711303b5cbeb529eba75e14a26ab8f9336f89491ccc8320b35d3faceb7c18f484e9c10a1843287f2060bb80ca97995e1bc0487eaf56b9b21d22b725f72c1b04ef23a20f86147e136cd2dffb51547c1aebf1c082aaba4faa8866f4c3143610e0f22ec5ab96453a6d81935206aaf8b8a13903a155de70a955626c370e854a7dbc5fc701ed33e459b9ed73dc84ca4570594a71766c7b39e90cd94bc28fdea7f801d73ada7fb13449b9ebd9ebc9200fedd2c463684fc2b81ccfc7b5cd7631139e1b50e940236de5fe1c226a8507606b99a53e9cb33bfdfa45666ae9326e8f21451df19c12504c5e6e1865455c194a81918b57635be51e0f17b4c123d4e8820665fa430b498741a0c27563dd26b1c6b2f9941fa5395b8eefcf7c8164e8fdffce3d2503190c367bf28f49371b7b15bf403aead0243e9158fb3e163b75bdd3210f147dc789179903ea714a0d498bc028bc4feaa67450bff40d6884b853254387b22870e30d6ff6d440b038c31cc919bff531a158ef9f982488c6baedbbebe26d331b7e582d014e58c1dadb8d2e20e1dd53b185ee9fc3ce7638ba3c5bea2059ac084397b6c4886faf16aee4b2738abf104cf2f310f50e3013043b71bec869329afceef7d55313068dd20128b88567ec1e288160ed98a24f8c674696f0afcc4c317c84af57b3bd8c72074cf05c63fa77befffbafcbb770d349041f9e05cbb964d0d61b83554b4d65db0c30cc088bb75fab4842c2fc36d63b985893e55820dc6a2e3990b9860cb80fbcde79084f28415736f701e1dacc9c96ca7cb17728d5169a535bbf12fa3ee5fe24ecc381d72f419bfa10beb86901c2ea24d6f87804005ad66ff844470bd6bfad7eb937442c1667c7be30bb5be06c567cc357716385f2c9b495c8e9c69b19f9b7db5cf7f72b994cb68a0681374e90aba0a50273f80e3454180df868a0b9909f49d2f44c171f3bd571be18233f8977572329fec1374ba736aee5312de521d690a4754d61cd1510cf142b43ae17fb86a8f17737276394ef83fd369bd4e127ef85e633d621241add249681b1d5cf10de2028b65b04164c2ee3c92fa701c2ea9637221792cdfb67f184d964cea8eff6cd9b002de7dbf871d5f1f8733963a3ac3c6a44119674b64fdd384cc5c7eedf564938b60a0244d3f17186d0888c04f38ded1ce8f5289526bc74ee611be4d70686562403fd3ca184b5ac17c3a2500b01c3a289148af74c5c552ac22199698c53fc35324e9d3e25b8a915046785eb65ce74eca2c27f42a0a87ef1187904c0b3b9ead9ab42b31963337ce97c7db59e7448b05639bf8b164c813199f47cd45de31f250a4093473b79047a447f5d33d699063cf97e2b73da27945404c0e69426d286c4c17ec53d4c085f78f1033c4746c1f644fcd501b35202b491b5c16150f821c370ebae0c1eee127d1e3b26d0aec5499c83994dcf4f653fc699d6de040612aa22c7f8c64a2643148cc3d1241fc643b68e3319c428e23f10847de9c21020f49a414c5e8be6ab582d65661c2979c94a67368313c5babd4702a147ebf935c0742bc0bafec065ed04b69af275e9cf3727783c51c3cbff003df8ba006cfbb30bf512f74899ee217d2eeca48d3194f06b3a231260a444ff2d064664d0fa6c4b5e87dd308b11836d4f30c9c97d959b6bc4b3d3adf8c0d7d03f769b3a62be75668e7456ed4a83405e96739e50819c60646518a4fef5d4b7bf5c7e8fa52ae20c3d9def32797283764182e54dbd871dc956bf7ded7da0ce795a22253323e8c5a78d42d87e0096f0ad7a04374a10e8e5dddf59b998eb54102580f06af531a8e3bcd4f8c204c313dacc67be00ac8b6dc075b3353407cc09689d4b87980029ad82e54f63746bb214dc1b4b500992a563f1d6f8bbf5d5b230c234bfcccc8c48329ab2ab2baf198814a34c8c15c16d5ec03bb518ecd2370666e220d808ab002e9c774f4e8de0077f09fcd3e9d6dc267a9002657eec6f98cf33a2ddffb7e1d53c81c58e5ac84a09795ba96a4ef171ea37e667caf4d7638b5b2da7fa7885e467764e6c06a750abca6a041cd4c50ce0fb40e67a8227c689761a8fd3a7cb55e2dff38b53ce09ddf17c9124282354fd723738ba3f599228f3ada7561555f584238dccaeaf86ce176337d8475c012c638568a00d55336d2bc7113e56c0a0289050b88baaed62a22d4cc8cde5a4b37cbc797f7f762840e0ab81d831cc92063031d594f0903eb709da17bacc8d782dda879fe7892aa0cf2c96256ab0bee9ddde9d62ce246b355327e0ddb9569deede539ddf499a73596b5170653bad1152728bf15587f7259e3fbb3b86f50f0f3d2c571b1d37c3ffb0871592347e4a88de15b618f75094545222866386b0e51dbf898957e5474b48ab3f47a52f809c9d1154279604132223ef9d9b68f3343649ee0de78d4c8f59fc282b3dded8e82c2dc01bd4f3059b0bbde23d8e1cd980beb47e0514fa32876d3510442933f103ed357917405b33e71823267aa829f63438c8e97295264dfd0b523a0b5b71fb1130a91f2c40a2fecfcb6e82cbb1d172a46bb1a72f36ac3ea14a180b51c7cac23bbea2ad640ffb3c1e9a518265dedfddfb4ab532d389158f832c0e59857687c7855b8b06c2500fcac3d04ec22e01f5042601a15c63e205e773a71a3914bce189b91d76c36fcebe9310f28e203e542375384f87ddba308c9dd0f5b79b5174ff3352fe67ac78b3ef2b46d556d50ffa89fdf68316a41975cfbb9cc4962b4ade8c4938e1a7526f5645e42d89d60b466af6beb7954fd9ad69e90352d35dd9088a6da009ab187ac606928d7b1bc14b76b91de647e21901b9f2b129702b0e135129fdb598b461826dbcf6cf7f0922b36b0c734d7a6f869fc818b2356bdd7ffe1b521ba54151d0c36208799dc44b7758e15c074c55255d7de429219e4fa645e0aa824b479d344f596285298c322c9de6052fc947536fe6c5f251822264c8c9ab148ec28d8541500b2867bca34c31cb9517ace9cf9fcca79c3325d5686ac135822f59c916328cc251850432ce631e947ceb31f9ba47aeb22a301c382e02872acf10d9d5fba704d18e1dfc06219e61247ea53b9caa0fe06695770043d6a461761601961ff4aea57cf472b6e88deff809f9532bbc35afd6c085a60d259f7ea0e3315cc6c0225bc8f7c2559ecf60fa78619d94341162bf08d844c1d123ca517acc585108ed9c20d0c03eb7d2ea11bdc47d20a9b4a0be9ab663eb0bc5a24e0ab7a4620b103bf3da0780eab75e1cc5679fbd1d9984454fdb9b4feebaef4508e7b0739296b024ef6882f56942e72ebc99fd98837eb76bcc0641a2447e6cc7a0e9673cd21f4910dd2498d90e065d85693a97ff44533e7506b65e3ad2a05eb5b9aeae7bd6f099980af038ebc3dcd624a533d954014400cc7d81f423f1982132e4088b29e644b6042578fa5c263a2b5856b86409809df0b7c1366c47a507237b995daccaa9e53cf312059af738e576cb07b6f323a427f69a45f65ff1d0e6789e5c34fa311ea634a5654316aa3044549046820cd11185804c0871d3a6a1f2e23c9066b213c3128377745116b550f8b10c6a9fa85fdc42eb06e41f4774d9a4778e76e653ffb7ff260de9904208d34151a9dfd7e0c2faccf1cee39929d12e54a0616fa8c568b59807345efaf41605f54d7cc014b8fbea5bb4a67cd17184af6c04009ed7a810e9ad7c6cf47067c41001753c36aa1c2aa7ee82869b3cbb389116c892f146ba960a966ee3c65897119cdb29ec79f515f76d32f7d5fd205da6cffcfe74745b89b9fe838f5859a1c15d9676b1bd650096613f160dfd57855fb05e77bc5dcd2f721f2e0f607e4d129677600cc3d6b7db1941d256cefc92eebd373a6ecaef35d8ec8552fdf11cdcc2c8b186e51936f17ac9672c409ffefd140540ea4c8c82a2ddaccbf1fb5b7be30d5361c4ae0913cb018b20c8feaf3d7754c7bc2c514c87a0cc15ce516252efb5898c4be7908d057e7ee04d42e3ab6badc060c7aed076f12880bb121fb19d142abc80ec36cd14015be81a530cf9b969e367d338d7e71917ce3ae1015cf34940c74da1b04c724615ce6354c8caae4e2b07bae452dfd5b3b336fe5e8e25b82a766092cd95ffff338dfa80f3c82f9eebbecf61a875cc8c1022d43a78b89e2d67e73e8015b6f9a72bbb1e61e40d38b5ef5b5eab4415cbf33e6296dc4d78708836eb21f06e5dc6ac0d1598651ec6726c8467349b4d6917ceb27d755656e0326beec9fccbca8104108370230f2cedc963ca6e9ec0f6ca49a8180d4f7ca4bfbbe254c567e7702b7b15a4e34b16e72d69e2a32cb25f450878f819a26177cc3515f5e1b143125c0091932c543ea3ffb9f6580ca8e6058b6d22602ee93a68bffee3879910aeb46a911c0370bd732551cc97affda5960", 0x1000}, {&(0x7f0000001540)="f28f9b4781dfbdd6590612dcb0a1d343188e373b7768abd5447fa2d601eb27b54b400ccfc12531cc7e0ac37cb4", 0x2d}], 0x9, &(0x7f0000001800)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r5, r4}}}], 0x20}}], 0x1, 0x8000) (async)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x26200, 0x0) (async)
dup2(r2, r6) (async)
readv(r1, 0x0, 0x0) (async)

07:00:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
r7 = syz_open_dev$vcsn(&(0x7f00000015c0), 0x81, 0x60000)
getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000001640)={<r8=>0x0, @remote, @initdev}, &(0x7f0000001680)=0xc)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000016c0)={'vcan0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000001800)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000017c0)={&(0x7f0000001700)={0xa0, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7f}, @ETHTOOL_A_CHANNELS_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7f}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x6}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x6596}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3f}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x5}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0xc000)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x20, &(0x7f00000001c0)={&(0x7f0000001300)=""/206, 0xce, <r10=>0x0, &(0x7f0000001400)=""/169, 0xa9}}, 0x10)
r11 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000014c0), 0x363000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x18, 0x6, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x5}, [@generic={0x0, 0x7, 0x1, 0x8, 0xe71}, @cb_func={0x18, 0x2, 0x4, 0x0, 0x8}]}, &(0x7f0000000100)='GPL\x00', 0xffff, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0xd, '\x00', r6, 0xe, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x5, 0x5}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xb, 0x9, 0xfffff9f6}, 0x10, r10, 0xffffffffffffffff, 0x0, &(0x7f0000001500)=[r11]}, 0x80)
readv(r1, 0x0, 0x0)

07:00:23 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchmod(r0, 0x80)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r3=>0x0)
setresuid(0xffffffffffffffff, r3, 0xffffffffffffffff)
fstat(r1, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000001740)='./file0\x00', &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x100)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001840)="7adf5eb49fb1dcd18c70898eb05469e4c72cb1fca135c3d7c498df631b95d6a01537bb2d8e3a8e2fbe5a6a8077a5ed115b9e85ff4284fe23e90624f4eefb5e000000000000000407eed50d62d21cb344d4c0ad21350c4b018ffc0f256a1123babcd1909a656618e36643373ff423dc68a062b58bda34e9cf5c0006e00a099f18ec0f3200b9facef335b8958d6ae12a6b9d8768", 0x93}, {&(0x7f0000000180)="f2942887040105510aff8c8b3c4ef01558e4087bf1457d0fa89a39355b0696366ccad837b8d216e73461d019c3aa35539db58451c43218675d7d2c3fd9f855358d76b6a228a5f5f998d62e35c9f357fe", 0x50}, {&(0x7f0000000200)="12a88ca19545e3dbe91691353ebfe344466691fe74d942ee5c18cffe791213b2c21dd13acf22af77682000bcdec4c5493901a977bf3b132288a85def99de8982c83ce18ac7dd4dc28701fedbdda90eb39de48e90309f8674b5ffda783e95374af7047481d5594b929a89c054fa30cb53fceb22ed2f48f11294eb30b450dc5e3647a085924253d7b004631d40dadf9b0a4e36705f73c798c2331f1c11238e65db01eb2235bc135b9d2a975e6930d81cb3a0c00fff9cb953e622e2efbd0d48de53fe0387be39d211031a963e93ed86a8af3c57a50a92988ea3b51d458ceb458a913677ce3be4fdb3bb17968d9045617670ef7ce0aa8c3954", 0xf7}, {&(0x7f0000000300)="91574d8a458c2411bca617bdd3a877fc22c96a6e66a5e3817b1582a8bccdcabd3e2aa344b54ab2b7153679714e81fa4c12fac6b4d19b0516a6ca16cba5db793cf4e0", 0x42}, {&(0x7f0000000380)="a3822ce7a49f71cb2b953bea31c52af68db18fd243db7b938a44c0891109ea10b5c71f8015ad427729bc2cdf99", 0x2d}, {&(0x7f00000003c0)="1b62d0cee7c581d5f56de2c45d0e06cde3c47e36c57d3d1d0ebf44eb396ecdec2f5b0c9f7b94ea2e8249a819bc230000000000000000281e8851c086798c03ed1a7ab2c7f3c12c9de94d7e0043305d891854d584e7c43499b601b7b88fd244030be23892e228ba49b7f1", 0x6a}, {&(0x7f0000000440)="18edc82cad5f41ac2f86878a80db792714817f74953d66a44946d0d06e5b6a4e3d669782bcf00bdcb9b1a4b39adb7be24ae2b3cd9125160db0164a5fe5c6ed37224f77e19629fe8abd1de1f128d05475976d1dec0385cdfc6ada426744a48165977c39225f372f0e2793f8e4b47192296e99b1cfcc2722e13c76a000f48993e8966a2208363e316889be567ca1d6f6c8d0ec2f571c591ef4efef31d3428c2a58ac9fb02d39340a9d0a75f93e156e9fa222d44f07e46ef5f5019060a6b61c348417f84fb56c3c966659e2adb5844783f76532a95f532f72ad5f339dd3", 0xdc}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000001540)="f28f9b4781dfbdd6590612dcb0a1d343188e373b7768abd5447fa2d601eb27b54b400ccfc12531cc7e0ac37cb4", 0x2d}], 0x9, &(0x7f0000001800)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r5, r4}}}], 0x20}}], 0x1, 0x8000)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x26200, 0x0)
dup2(r2, r6)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
fchmod(r0, 0x80) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)) (async)
setresuid(0xffffffffffffffff, r3, 0xffffffffffffffff) (async)
fstat(r1, &(0x7f00000016c0)) (async)
newfstatat(0xffffffffffffff9c, &(0x7f0000001740)='./file0\x00', &(0x7f0000001780), 0x100) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001680)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001580)=[{&(0x7f0000001840)="7adf5eb49fb1dcd18c70898eb05469e4c72cb1fca135c3d7c498df631b95d6a01537bb2d8e3a8e2fbe5a6a8077a5ed115b9e85ff4284fe23e90624f4eefb5e000000000000000407eed50d62d21cb344d4c0ad21350c4b018ffc0f256a1123babcd1909a656618e36643373ff423dc68a062b58bda34e9cf5c0006e00a099f18ec0f3200b9facef335b8958d6ae12a6b9d8768", 0x93}, {&(0x7f0000000180)="f2942887040105510aff8c8b3c4ef01558e4087bf1457d0fa89a39355b0696366ccad837b8d216e73461d019c3aa35539db58451c43218675d7d2c3fd9f855358d76b6a228a5f5f998d62e35c9f357fe", 0x50}, {&(0x7f0000000200)="12a88ca19545e3dbe91691353ebfe344466691fe74d942ee5c18cffe791213b2c21dd13acf22af77682000bcdec4c5493901a977bf3b132288a85def99de8982c83ce18ac7dd4dc28701fedbdda90eb39de48e90309f8674b5ffda783e95374af7047481d5594b929a89c054fa30cb53fceb22ed2f48f11294eb30b450dc5e3647a085924253d7b004631d40dadf9b0a4e36705f73c798c2331f1c11238e65db01eb2235bc135b9d2a975e6930d81cb3a0c00fff9cb953e622e2efbd0d48de53fe0387be39d211031a963e93ed86a8af3c57a50a92988ea3b51d458ceb458a913677ce3be4fdb3bb17968d9045617670ef7ce0aa8c3954", 0xf7}, {&(0x7f0000000300)="91574d8a458c2411bca617bdd3a877fc22c96a6e66a5e3817b1582a8bccdcabd3e2aa344b54ab2b7153679714e81fa4c12fac6b4d19b0516a6ca16cba5db793cf4e0", 0x42}, {&(0x7f0000000380)="a3822ce7a49f71cb2b953bea31c52af68db18fd243db7b938a44c0891109ea10b5c71f8015ad427729bc2cdf99", 0x2d}, {&(0x7f00000003c0)="1b62d0cee7c581d5f56de2c45d0e06cde3c47e36c57d3d1d0ebf44eb396ecdec2f5b0c9f7b94ea2e8249a819bc230000000000000000281e8851c086798c03ed1a7ab2c7f3c12c9de94d7e0043305d891854d584e7c43499b601b7b88fd244030be23892e228ba49b7f1", 0x6a}, {&(0x7f0000000440)="18edc82cad5f41ac2f86878a80db792714817f74953d66a44946d0d06e5b6a4e3d669782bcf00bdcb9b1a4b39adb7be24ae2b3cd9125160db0164a5fe5c6ed37224f77e19629fe8abd1de1f128d05475976d1dec0385cdfc6ada426744a48165977c39225f372f0e2793f8e4b47192296e99b1cfcc2722e13c76a000f48993e8966a2208363e316889be567ca1d6f6c8d0ec2f571c591ef4efef31d3428c2a58ac9fb02d39340a9d0a75f93e156e9fa222d44f07e46ef5f5019060a6b61c348417f84fb56c3c966659e2adb5844783f76532a95f532f72ad5f339dd3", 0xdc}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000001540)="f28f9b4781dfbdd6590612dcb0a1d343188e373b7768abd5447fa2d601eb27b54b400ccfc12531cc7e0ac37cb4", 0x2d}], 0x9, &(0x7f0000001800)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r5, r4}}}], 0x20}}], 0x1, 0x8000) (async)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x26200, 0x0) (async)
dup2(r2, r6) (async)
readv(r1, 0x0, 0x0) (async)

[  280.626855][ T6506] FAULT_INJECTION: forcing a failure.
[  280.626855][ T6506] name failslab, interval 1, probability 0, space 0, times 0
[  280.649396][ T6506] CPU: 0 PID: 6506 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  280.660182][ T6506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  280.670078][ T6506] Call Trace:
[  280.673198][ T6506]  <TASK>
[  280.676172][ T6506]  dump_stack_lvl+0x151/0x1b7
[  280.680663][ T6506]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  280.685959][ T6506]  ? vma_interval_tree_augment_rotate+0x210/0x210
[  280.692208][ T6506]  dump_stack+0x15/0x17
[  280.696197][ T6506]  should_fail+0x3c0/0x510
[  280.700460][ T6506]  __should_failslab+0x9f/0xe0
[  280.705048][ T6506]  should_failslab+0x9/0x20
[  280.709390][ T6506]  kmem_cache_alloc+0x4f/0x2f0
[  280.714001][ T6506]  ? anon_vma_fork+0xf7/0x4f0
[  280.718504][ T6506]  anon_vma_fork+0xf7/0x4f0
[  280.722843][ T6506]  ? anon_vma_name+0x43/0x70
[  280.727278][ T6506]  dup_mmap+0x750/0xea0
[  280.731260][ T6506]  ? __delayed_free_task+0x20/0x20
[  280.736211][ T6506]  ? mm_init+0x807/0x960
[  280.740287][ T6506]  dup_mm+0x91/0x330
[  280.744017][ T6506]  copy_mm+0x108/0x1b0
[  280.747924][ T6506]  copy_process+0x1295/0x3250
[  280.752438][ T6506]  ? check_stack_object+0xf7/0x130
[  280.757387][ T6506]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  280.762332][ T6506]  ? copy_clone_args_from_user+0x6cf/0x790
[  280.767975][ T6506]  kernel_clone+0x22d/0x990
[  280.772312][ T6506]  ? dup_mmap+0xea0/0xea0
[  280.776478][ T6506]  ? create_io_thread+0x1e0/0x1e0
[  280.781608][ T6506]  ? file_end_write+0x1b0/0x1b0
[  280.786302][ T6506]  __x64_sys_clone3+0x375/0x3a0
[  280.791010][ T6506]  ? __ia32_sys_clone+0x300/0x300
[  280.795844][ T6506]  ? ksys_write+0x25f/0x2c0
[  280.800184][ T6506]  ? debug_smp_processor_id+0x17/0x20
[  280.805392][ T6506]  do_syscall_64+0x44/0xd0
[  280.809645][ T6506]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  280.815463][ T6506] RIP: 0033:0x7f8e237f0639
[  280.819722][ T6506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  280.839241][ T6506] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  280.847485][ T6506] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  280.855404][ T6506] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  280.863286][ T6506] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
07:00:24 executing program 4:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
ioctl$KVM_GET_NESTED_STATE(r0, 0xc080aebe, &(0x7f0000000000)={{0x0, 0x0, 0x80}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000002080))
readv(r2, 0x0, 0x0)

07:00:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x9, 0x0, 0x0}, 0x58)

07:00:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 75)

07:00:24 executing program 4:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0) (async)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0) (async)
ioctl$KVM_GET_NESTED_STATE(r0, 0xc080aebe, &(0x7f0000000000)={{0x0, 0x0, 0x80}}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000002080)) (async)
readv(r2, 0x0, 0x0)

07:00:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x40000, 0x0, 0x0}, 0x58)

07:00:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x553a266a2000, 0x0, 0x0}, 0x58)

[  280.871178][ T6506] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  280.879003][ T6506] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  280.886809][ T6506]  </TASK>
07:00:24 executing program 4:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
splice(r0, 0x0, r1, 0x0, 0x200, 0x0)
ioctl$KVM_GET_NESTED_STATE(r0, 0xc080aebe, &(0x7f0000000000)={{0x0, 0x0, 0x80}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000002080))
readv(r2, 0x0, 0x0)

07:00:24 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
r7 = syz_open_dev$vcsn(&(0x7f00000015c0), 0x81, 0x60000) (async)
getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000001640)={<r8=>0x0, @remote, @initdev}, &(0x7f0000001680)=0xc)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000016c0)={'vcan0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000001800)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000017c0)={&(0x7f0000001700)={0xa0, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7f}, @ETHTOOL_A_CHANNELS_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7f}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x6}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x6596}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3f}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x5}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0xc000) (async)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x20, &(0x7f00000001c0)={&(0x7f0000001300)=""/206, 0xce, <r10=>0x0, &(0x7f0000001400)=""/169, 0xa9}}, 0x10)
r11 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000014c0), 0x363000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x18, 0x6, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x5}, [@generic={0x0, 0x7, 0x1, 0x8, 0xe71}, @cb_func={0x18, 0x2, 0x4, 0x0, 0x8}]}, &(0x7f0000000100)='GPL\x00', 0xffff, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0xd, '\x00', r6, 0xe, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x5, 0x5}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xb, 0x9, 0xfffff9f6}, 0x10, r10, 0xffffffffffffffff, 0x0, &(0x7f0000001500)=[r11]}, 0x80) (async)
readv(r1, 0x0, 0x0)

07:00:24 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
readv(r0, 0x0, 0x0)
r2 = socket(0x2b, 0x2, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f00000000c0)={r3, r0, 0x5, 0x60, &(0x7f0000000040)="7f8079d37b23695048a725fb9dcd9a4887489d26e6e49f7a911c1e4f95209b5954325d8a8cd771643ce5edf65c9d79c99c94e82e8f9215e31aa684f55c877e2f33ef981c94febb93f3ee609bdb6fae6e06d0430cda618ccc12a9868f32b7b423", 0x80, 0x40, 0x4, 0xf400, 0x8, 0x3, 0x9, 'syz1\x00'})

07:00:24 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
r7 = syz_open_dev$vcsn(&(0x7f00000015c0), 0x81, 0x60000) (async)
getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000001640)={<r8=>0x0, @remote, @initdev}, &(0x7f0000001680)=0xc)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000016c0)={'vcan0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000001800)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000017c0)={&(0x7f0000001700)={0xa0, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7f}, @ETHTOOL_A_CHANNELS_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x7f}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x6}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x6596}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3f}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x5}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0xc000) (async)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x20, &(0x7f00000001c0)={&(0x7f0000001300)=""/206, 0xce, <r10=>0x0, &(0x7f0000001400)=""/169, 0xa9}}, 0x10) (async)
r11 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000014c0), 0x363000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x18, 0x6, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x5}, [@generic={0x0, 0x7, 0x1, 0x8, 0xe71}, @cb_func={0x18, 0x2, 0x4, 0x0, 0x8}]}, &(0x7f0000000100)='GPL\x00', 0xffff, 0x1000, &(0x7f0000000300)=""/4096, 0x40f00, 0xd, '\x00', r6, 0xe, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x5, 0x5}, 0x8, 0x10, &(0x7f0000000180)={0x4, 0xb, 0x9, 0xfffff9f6}, 0x10, r10, 0xffffffffffffffff, 0x0, &(0x7f0000001500)=[r11]}, 0x80) (async)
readv(r1, 0x0, 0x0)

[  280.976086][   T30] audit: type=1400 audit(1668668424.330:208): avc:  denied  { connect } for  pid=6556 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  280.987777][ T6558] FAULT_INJECTION: forcing a failure.
[  280.987777][ T6558] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  281.009636][   T30] audit: type=1400 audit(1668668424.330:209): avc:  denied  { create } for  pid=6556 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  281.014469][ T6558] CPU: 1 PID: 6558 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  281.039340][ T6558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  281.049251][ T6558] Call Trace:
[  281.052357][ T6558]  <TASK>
[  281.055137][ T6558]  dump_stack_lvl+0x151/0x1b7
[  281.059661][ T6558]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  281.064939][ T6558]  dump_stack+0x15/0x17
[  281.068934][ T6558]  should_fail+0x3c0/0x510
[  281.073187][ T6558]  should_fail_alloc_page+0x58/0x70
[  281.078219][ T6558]  __alloc_pages+0x1de/0x7c0
[  281.082649][ T6558]  ? __count_vm_events+0x30/0x30
[  281.087441][ T6558]  ? __this_cpu_preempt_check+0x13/0x20
[  281.092798][ T6558]  ? __mod_node_page_state+0xac/0xf0
[  281.097922][ T6558]  pte_alloc_one+0x73/0x1b0
[  281.102263][ T6558]  ? pfn_modify_allowed+0x2e0/0x2e0
[  281.107298][ T6558]  __pte_alloc+0x86/0x350
[  281.111465][ T6558]  ? free_pgtables+0x210/0x210
[  281.116061][ T6558]  ? _raw_spin_lock+0xa3/0x1b0
[  281.120663][ T6558]  ? _raw_spin_trylock_bh+0x1d0/0x1d0
[  281.125868][ T6558]  ? __kernel_text_address+0x9a/0x110
[  281.131076][ T6558]  copy_pte_range+0x1b1f/0x20b0
[  281.135769][ T6558]  ? __kunmap_atomic+0x80/0x80
[  281.140364][ T6558]  ? __kasan_slab_alloc+0xc4/0xe0
[  281.145228][ T6558]  ? __kasan_slab_alloc+0xb2/0xe0
[  281.150086][ T6558]  ? kmem_cache_alloc+0x189/0x2f0
[  281.154947][ T6558]  ? vm_area_dup+0x26/0x1d0
[  281.159291][ T6558]  ? dup_mmap+0x6b8/0xea0
[  281.163448][ T6558]  ? dup_mm+0x91/0x330
[  281.167359][ T6558]  ? copy_mm+0x108/0x1b0
[  281.171432][ T6558]  ? copy_process+0x1295/0x3250
[  281.176132][ T6558]  ? kernel_clone+0x22d/0x990
[  281.180634][ T6558]  ? __x64_sys_clone3+0x375/0x3a0
[  281.185494][ T6558]  ? do_syscall_64+0x44/0xd0
[  281.189922][ T6558]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  281.195826][ T6558]  copy_page_range+0xc1e/0x1090
[  281.200518][ T6558]  ? pfn_valid+0x1e0/0x1e0
[  281.204775][ T6558]  dup_mmap+0x99f/0xea0
[  281.208768][ T6558]  ? __delayed_free_task+0x20/0x20
[  281.213715][ T6558]  ? mm_init+0x807/0x960
[  281.217815][ T6558]  dup_mm+0x91/0x330
[  281.221514][ T6558]  copy_mm+0x108/0x1b0
[  281.225425][ T6558]  copy_process+0x1295/0x3250
[  281.230556][ T6558]  ? check_stack_object+0xf7/0x130
[  281.235490][ T6558]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  281.240439][ T6558]  ? copy_clone_args_from_user+0x6cf/0x790
[  281.246079][ T6558]  kernel_clone+0x22d/0x990
[  281.250420][ T6558]  ? dup_mmap+0xea0/0xea0
[  281.254584][ T6558]  ? create_io_thread+0x1e0/0x1e0
[  281.259446][ T6558]  ? file_end_write+0x1b0/0x1b0
[  281.264134][ T6558]  __x64_sys_clone3+0x375/0x3a0
[  281.268818][ T6558]  ? __ia32_sys_clone+0x300/0x300
[  281.273680][ T6558]  ? ksys_write+0x25f/0x2c0
[  281.278020][ T6558]  ? debug_smp_processor_id+0x17/0x20
[  281.283235][ T6558]  do_syscall_64+0x44/0xd0
[  281.287478][ T6558]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  281.293311][ T6558] RIP: 0033:0x7f8e237f0639
[  281.297634][ T6558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  281.317076][ T6558] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:24 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
readv(r0, 0x0, 0x0) (async)
r2 = socket(0x2b, 0x2, 0x0) (async)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f00000000c0)={r3, r0, 0x5, 0x60, &(0x7f0000000040)="7f8079d37b23695048a725fb9dcd9a4887489d26e6e49f7a911c1e4f95209b5954325d8a8cd771643ce5edf65c9d79c99c94e82e8f9215e31aa684f55c877e2f33ef981c94febb93f3ee609bdb6fae6e06d0430cda618ccc12a9868f32b7b423", 0x80, 0x40, 0x4, 0xf400, 0x8, 0x3, 0x9, 'syz1\x00'})

07:00:24 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8) (async)
readv(r0, 0x0, 0x0)
r2 = socket(0x2b, 0x2, 0x0) (async)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f00000000c0)={r3, r0, 0x5, 0x60, &(0x7f0000000040)="7f8079d37b23695048a725fb9dcd9a4887489d26e6e49f7a911c1e4f95209b5954325d8a8cd771643ce5edf65c9d79c99c94e82e8f9215e31aa684f55c877e2f33ef981c94febb93f3ee609bdb6fae6e06d0430cda618ccc12a9868f32b7b423", 0x80, 0x40, 0x4, 0xf400, 0x8, 0x3, 0x9, 'syz1\x00'})

07:00:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 76)

[  281.325320][ T6558] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  281.333135][ T6558] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  281.340942][ T6558] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  281.348755][ T6558] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  281.356564][ T6558] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  281.364386][ T6558]  </TASK>
07:00:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf, 0x0, 0x0}, 0x58)

07:00:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000000000000, 0x0, 0x0}, 0x58)

07:00:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58)

07:00:24 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)

07:00:24 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)

07:00:24 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_elf64(r3, 0x0, 0xfe30)
r4 = fcntl$getown(r1, 0x9)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r5=>0x0)
setresuid(0xffffffffffffffff, r5, 0xffffffffffffffff)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r6=>0x0)
setresuid(0xffffffffffffffff, r6, 0xffffffffffffffff)
r7 = getpid()
r8 = open(&(0x7f0000001bc0)='./file0\x00', 0x1c801, 0x101)
fallocate(r8, 0x44, 0x4, 0x9)
sched_setscheduler(r7, 0x1, &(0x7f0000001700)=0x4)
getresuid(&(0x7f0000000280), &(0x7f0000000640), &(0x7f0000000680)=<r9=>0x0)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x113000, 0x0)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r12 = memfd_create(&(0x7f0000000700)='\x00', 0x3)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r13=>0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r14=>0x0)
setresuid(0xffffffffffffffff, r14, 0xffffffffffffffff)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000001cc0)={0x0, <r15=>0x0}, &(0x7f0000001c00)=0xc)
ioctl$NS_GET_OWNER_UID(r8, 0xb704, &(0x7f0000001c80)=<r16=>0x0)
setresuid(r14, r15, r16)
setresuid(0xffffffffffffffff, r13, 0xffffffffffffffff)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000001a40)=<r17=>0x0)
fstat(r2, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, <r18=>0x0})
sendmmsg$unix(r3, &(0x7f0000001b40)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000140)="6321ca1fe63b5b917176811b7a534e76a279cb4882cf26325633a6aa2b7652", 0x1f}, {&(0x7f0000000180)="a24f8dc21912b308c341675c081e894963e48a30bc808b0a65241da306a4f24bb476132c87a9fb008a478eac726bd548c2272a77c4f63ae38aa8bb9cd99e904dba4d37", 0x43}, {&(0x7f0000000300)="6804ca8fb823b735572b5b660683f777f646e8ad6f5b4cb1e20b6c1ef725db06fd2da32d47f049083bad0afcae9ee9ab6ba80210c9a5bf9a875585dc9437f84c5452597545cfd1bafc53745998482eeb488b89c6da20b40e835855af067d5ab06e47b6f14c657a7738ec308325e7692858d8a5ced6d8ebb6c86303470e", 0x7d}, {&(0x7f0000000380)="dae7d21a9e4065c6397ca196aa5637bc865c3d8308e9ae7911875d8183b2086cbe662853d775dcec3ed95a34630f5396385fe0aae08a76e4b4970d93f150d0b917d5ac647505066fa5ae1d4198bc0bdc9998a08bdecc3b713e60828f9c01f1d6cddae098105fe1b16eaa59299c6319bfed82ed46444379fc3c35a367544d3872c36615335d5f22630177274b08a8854db54f988f888143104ee93da9794e22bd886e6229ba623e27d5ebf3573762fa1563dc92924b", 0xb5}, {&(0x7f0000000440)="efe7100b7a361b74a8f266be5f7e26aa9b9102cf52fd66c4a6b4e2c14b928ec33a163c7bc93481ff047f2dcd6c0b2cc7863004a598b586a81ebf9a8a0788dc2db66cb982124ef7a82e3dfac0", 0x4c}, {&(0x7f00000004c0)="88a998ead934a75f447ef158f994ad1c4af2f2f3bc8b5c8044a17496e3e7b40814775b958b909f3c4b37ed1bda75f3e1eeafe4bf1e474b2b43df95c72d54cf2fd839d656", 0x44}, {&(0x7f0000000540)="e483c917e2767e4a51135a41a6ff3e71eda966c0a69e3552256980b9a9ed55c8fd9a89a3d7a6508a7f45d239c93f64f8f48b366f9e679992b91b75077e25377a808fa5691140aab03142a7a3c7b40d22ba38567990ffeb91a0cc", 0x5a}], 0x7, &(0x7f0000000740)=[@cred={{0x1c, 0x1, 0x2, {r4, r5, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r7, r9, 0xee00}}}, @rights={{0x38, 0x1, 0x1, [r10, 0xffffffffffffffff, r1, r0, r11, r2, r1, r0, r12, r0]}}], 0x98, 0x2197f3b5385aeb48}}, {{&(0x7f0000000800)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000000880)="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", 0x1000}, {&(0x7f0000001880)="bd12ad760e51ce1c99b204feddc26a4a8e49fbc591c70892c563e4b9317f9dfd98cdc008664066560320dd0d21da8c9701256d89494f3e872b24a4894183e6e9fd38e536d438469f59540348ef3ac05865498aa33e07e000b6f7a4b318611c6c95b1c0f18ff8c6650c38362a3694a1eb6be0207e79d75930a2e60275f82459b7a3d8a4df25be6302802ae1f8a9e0ec82aee7daa45e055f10be807c00e49da9eea5e999b4", 0xa4}, {&(0x7f0000001940)="67d07e96fcb9b1583b7861ef595186e5f1b7ea1217c9515f72ae8a1de70e24a9d9a4b9f3c2c4db25e1f42372bfde6242590fa71cef740c15ea91e6eb677ec21f33d44fe296d78492a9ce4cc22b199296ca6c34f79a93ddf4ffbfd43e4a5322d3decee628e60da7f3aaebe6f33913bb8c3381a67d7acfb44bb68f973a80669977ff056f0bfca9ce5c5c071adcc409845fa5a14f07440b", 0x96}], 0x3, &(0x7f0000001b00)=[@cred={{0x1c, 0x1, 0x2, {0x0, r13, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r17, 0xffffffffffffffff, r18}}}], 0x40, 0x4000889}}], 0x2, 0x40001)

07:00:24 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_elf64(r3, 0x0, 0xfe30) (async)
r4 = fcntl$getown(r1, 0x9) (async, rerun: 64)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r5=>0x0) (rerun: 64)
setresuid(0xffffffffffffffff, r5, 0xffffffffffffffff)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r6=>0x0)
setresuid(0xffffffffffffffff, r6, 0xffffffffffffffff) (async)
r7 = getpid() (async)
r8 = open(&(0x7f0000001bc0)='./file0\x00', 0x1c801, 0x101)
fallocate(r8, 0x44, 0x4, 0x9)
sched_setscheduler(r7, 0x1, &(0x7f0000001700)=0x4) (async)
getresuid(&(0x7f0000000280), &(0x7f0000000640), &(0x7f0000000680)=<r9=>0x0) (async)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x113000, 0x0)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r12 = memfd_create(&(0x7f0000000700)='\x00', 0x3) (async)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r13=>0x0)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r14=>0x0)
setresuid(0xffffffffffffffff, r14, 0xffffffffffffffff) (async)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000001cc0)={0x0, <r15=>0x0}, &(0x7f0000001c00)=0xc)
ioctl$NS_GET_OWNER_UID(r8, 0xb704, &(0x7f0000001c80)=<r16=>0x0)
setresuid(r14, r15, r16) (async, rerun: 64)
setresuid(0xffffffffffffffff, r13, 0xffffffffffffffff) (async, rerun: 64)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000001a40)=<r17=>0x0)
fstat(r2, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, <r18=>0x0})
sendmmsg$unix(r3, &(0x7f0000001b40)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000140)="6321ca1fe63b5b917176811b7a534e76a279cb4882cf26325633a6aa2b7652", 0x1f}, {&(0x7f0000000180)="a24f8dc21912b308c341675c081e894963e48a30bc808b0a65241da306a4f24bb476132c87a9fb008a478eac726bd548c2272a77c4f63ae38aa8bb9cd99e904dba4d37", 0x43}, {&(0x7f0000000300)="6804ca8fb823b735572b5b660683f777f646e8ad6f5b4cb1e20b6c1ef725db06fd2da32d47f049083bad0afcae9ee9ab6ba80210c9a5bf9a875585dc9437f84c5452597545cfd1bafc53745998482eeb488b89c6da20b40e835855af067d5ab06e47b6f14c657a7738ec308325e7692858d8a5ced6d8ebb6c86303470e", 0x7d}, {&(0x7f0000000380)="dae7d21a9e4065c6397ca196aa5637bc865c3d8308e9ae7911875d8183b2086cbe662853d775dcec3ed95a34630f5396385fe0aae08a76e4b4970d93f150d0b917d5ac647505066fa5ae1d4198bc0bdc9998a08bdecc3b713e60828f9c01f1d6cddae098105fe1b16eaa59299c6319bfed82ed46444379fc3c35a367544d3872c36615335d5f22630177274b08a8854db54f988f888143104ee93da9794e22bd886e6229ba623e27d5ebf3573762fa1563dc92924b", 0xb5}, {&(0x7f0000000440)="efe7100b7a361b74a8f266be5f7e26aa9b9102cf52fd66c4a6b4e2c14b928ec33a163c7bc93481ff047f2dcd6c0b2cc7863004a598b586a81ebf9a8a0788dc2db66cb982124ef7a82e3dfac0", 0x4c}, {&(0x7f00000004c0)="88a998ead934a75f447ef158f994ad1c4af2f2f3bc8b5c8044a17496e3e7b40814775b958b909f3c4b37ed1bda75f3e1eeafe4bf1e474b2b43df95c72d54cf2fd839d656", 0x44}, {&(0x7f0000000540)="e483c917e2767e4a51135a41a6ff3e71eda966c0a69e3552256980b9a9ed55c8fd9a89a3d7a6508a7f45d239c93f64f8f48b366f9e679992b91b75077e25377a808fa5691140aab03142a7a3c7b40d22ba38567990ffeb91a0cc", 0x5a}], 0x7, &(0x7f0000000740)=[@cred={{0x1c, 0x1, 0x2, {r4, r5, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r7, r9, 0xee00}}}, @rights={{0x38, 0x1, 0x1, [r10, 0xffffffffffffffff, r1, r0, r11, r2, r1, r0, r12, r0]}}], 0x98, 0x2197f3b5385aeb48}}, {{&(0x7f0000000800)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000000880)="0d6e8e2062cc0200afe9339eacd671a6f080d99dab349e6c2c7147d10fd18a4ae5d79c744e1b43413065ad220644e5cb2640a3c076f4fa99a5ef9171e245050203248f3f46d98460619f0aea8a9c465c5af6bdb2dda1c9af12864de66245789c20d9fdf1d73d449e13a39865c12a112b9487e41bc6654a1195efd853877efd52e3e44163f6d0ded5ad7f8c497b1cd58800d00a739e56dad7b40c6cc1b312c0fd4d03f4b7f9c0e1b31d0705d78a27d883156253fcf9ee492ecddab98cd398920dea17bcc8c034c2f44dbb7322118764129b442dbd26eb400dcfdaedc96eb197b0f6d821826bccf8347a3e4d78405230315c2f6d620a66f787a05336fe8165b1604cd84867999a8d6ee2f93fdb0d4391f040d32a22765f465c6e4bfdd896606baeee6529a4bcac8e50b4b9fb9b5b045c45ff166d632f43a061652114115dd08f6a6b4b3a8ff181c4fdf43f5065e77ff546d8b552fd17b6bffceebb0b5c5d10a42be11e9ebe9a2c95505b9a90f06a8cedd10f65227f2794a9ac4260bc52586c9aa1b0bbe963af3082798426b67955ef8e0548e06d3ab975a357bd747ea6aa7faf79eaecd571478c0cff6c5b0a45a66272f294da401f23c9175bc8a5767addbcd9da43206961fbcad4ce8d76a6b472a2030766fd5dd456eac47e849f0a0feb8ad50da595ae85303110659f88349d7f569876b2ba809f9911b161a92eaf7a17dcdfcfb164e8442557b1aa900bebe801955b4883d342f888a75bf335d5bf1f44bb75240be01b1670328d08ec3e96a770a77dbd2aeaf799031f298d1e90ed03260dd32f0484077379985edfc65932c92da02566cd40df08b162dd6b4fc1506288aaec03b566d5b4c91ab66fe6215ab833ceb695acbbbb49f23999c1c2a26ba0c2f5d7d3a9abd9709b6ad6da12ef83c3973d37c1e1547b6057aac92769169799be5bf19129d71fb3133dd505f7c85f0942f0db096fa89eb212113b1e85ba416c8b1fff93cc91cb185d68672bff610a37a5eee76e62273b30c745dc6abe66ca2e326ff5e6eba76153a535c071fe10e9862bc112d5ddaf094ddb0a08c4720b49e7b03f54e579a7717a607bc5ce68af063aa2ef60f5310560e1336e867f854a98bf8194a3455f409b022d4a9ba8afa8f8d1a7a9ce1169389e4102b0405de2d9070559085773954c6c6365fc53a4cb6b082d56563f305e71e712da701ffe33fc57b42ede01713e16a878a23ed1c0648e9d5ea5199a2cd6df894b14107725bae3f9f0189e7ca4fad66077f681894d7bbd3ec7a41e3ad6e9170f09b33bcb3bfb2601e19326a8a30d1be36de11ca8bd66b97c7f19b3a2c9477cd4376ad33ac3c10325bc1ae71bbd280d6639dfa86196b916abacf879f10ff8ee11f3ac0615a98cbcb362a4408f982a4b8aeb6049bf619074e01f1dc1743dc658e11ac9488c7ee67db79405da3afcc2b32150d9e809751f7c51f04a2332e9c0bac7954378d68d73df2ae4f77cc9a3169a675cac083c14f52bff0a62849b0943bc14f1ecf1c92048b9b8e45b7cb674a618bece721215e0e51677865bf17e0a2e16ec0574165dfdd37be51f0a3626f09447b60c698c1bb00a1fe459498a268444810e301ffe32069523aee11a1a3ea60df2f5f97ea1186463518b6a98955ca78ef26f6497200ea8dd68c164d4784e3f5bf18a89a1121b92952eef2e81b98d75e3ec2494d0bf87f77fb71b042a05b757301c309e52204221e51bbb588ad07dc879e35759727969243924b66da1cf4c9abbd25ead5d83e028990f7f4aa0db0171eca6abe29629702877280d9e7b0f539e14e50cf5579f4e84464586fa84e1e4aaa46166336214078e2f61e9dd104ab6fe7b8cd324feaba3d5ee7e16cfd2dfea2bca51ca2fa18972fb7bc059317a576a87b1a410b926ad63c831323fe4a56d529323af659ad87bd788ec2ffe28c6b0d7f8b1a0904d8039e5c6acd9b5880e6a2c57f6f428ea7bf00ba0fba2df66eeedd085c5e0833b7bbba7e1af8ef4568be82ba7dfab34f8aabefefa3d6b56e472ef09f1f4fb55d560eac4d913e69618bb14a8adb1430365fac1104e8eede21e0d822acc8b8c65c7d3a180ec861c15c01dc5328d36b96745aeca46fd05df0cd3f70775789eda5b4edafcc6e5e178ec5a8cdca636b1cadb12e829bfdc4e9af01271487e0f8dd0138dfe3ee6d7e1f4a827521dd99a1ae91d76c892620f876b01a0e2a09e0db80b9a46dbc4abc0a5db0de256015aafed8d7f7f2a14553092a2e1bb1062781476553d2a7860ea036f5bdf77f2ee9430df93beda02b32b4945e9c644bfe06a144745003e82e2f0f6053e1f494bf99a97b37836d4c557c759a5d6bead04d80e42f15d51d5f2b80401ccfaad41ea89f61342d9d1702d45dcef9b687250d2415cd2bf9d79a70abf9ee411b5f2b2d5f1fa3808e001caecbee89755f906a14ee1043cf4674f6df115721b6e73462ca834076f4d9abd85c606a8161035fe2fdb5c6b3f802cb3e5e6c62ea94e9049a46953af046a0e3ef26ee9a4a44da3ddc0d2db1b02273c537d2404bb540a3ec972ccfebe62fbb165e34d8636658ffcf8d22c097509b64b876f970bb3482b42c48c71606818f10f640dbf45e8e4e55b49aeb2a29b15824b3add030b3cef3f11ed819612d365ba2138d353e989622b7df95b86468da916eb8816795037718ecce44a26a38a0f75ad79625389712057ee1b2f9302f81524869c3580692db6d7bca6918cef03d894bc8cf25e65b37fc1262c27985511a7b85392f81d900d0d21da4c17be24d5808225375222e2488b130fddb862aceaabd8982d8204d18494710a81150b7a39fa311d52ca5dfcb66dbd4dda351979bacc50d0d638416de858a4058b891806034aebb4245da4e5c16c14a474bc947345a400c0e39fdd32c3b78be4bb98d47a88cc452aa14d3e35534a41ec5dd6f5f7ca4aee61793985cd72bc82a5bd16975e97acc31e903539dd09b8273816bb93e7d807f24c5d3f09862aca5dd1b6d68a58d94ddf5d5d2307c2e78b8a30245eca15216035ceae36123ac16b56d4a44c795fe0a893346251a8db5fbedd906dc6ebc5b0421a10f35426fe4a16fb65d17231edb2e5a2a406c749d599bf58b877b6f30403792ed1e60553496823daa19d1f162d86f03a772d94ab48da53f6e71f0bf828391cc58363ba3413d84dc9325829b2fc449e240f6df3d9cb2a2a6b2fb886ed19bd2b5882f2448361fd82686b8ec4bf0f8dfca62140047e1d5c83c016555dca75d9c3e7655b2f1d43c9d22107564aae8eab4d84018acf5dc5ca18b191850a7ad9b77c3494979363b150c1be8819060afc6617e5ace63f3f2ee382f280d49872029e17d8760477fc6787584871dc7f0e43ec4215313fcb28ae2a786d3a9289b1a65a008a33db8227c316f2ca53a2f05c89781c129bb2fcbd499f50684fa7d156ee6997f31ba3f95d5c248b00a11cde2654dda1527f1eb29a0fe32f7145138315cc023431dc8109d286c5d8d0453a0ec8c769be9b66a53aeeddab94a0d4fc2365a4d79cdcc38da6e5e3b9681fdb3245ae8337afc93ee6b644a533303ce562ec2bab126825c044ed5c068202e711c04475f1f251e7e47451a936e1bea894932719d0b74550381a5e948c2b7e5e0c2e1382a0f55ce81fb77e1165cedce2ffbfb9f6993a84e6b2838fa1e25a3b2232a79185b4d4e899865ff58f191e0e0e98bd327fc4c9b6e8bbe428ac278687877d0aed9f754d8acbfdd3a85cbdd39cfdbd2e71f353e7ec03f8d01dfeeb66b65d29d367043a72a02b2c801ab77a0e57df272997e727d3677e8cd437c9300622f525653f30ed9a2db58451ddd767144cc3175db0c5fe5bd0eeb0bf2839c5d94000271b9edcee1ae2918f0088cbba114f09f4a40424e9289f8d4a9db874af48026845217583454c6bd13f15368245a197f98ca11e0a5fc552bfbd930db58ebc2f950d5793dadd90b40c2c878ec3f6c6dabb5ec7b448796b2122ceeac89b1259bc5f46b3aa559fc0f1bc7dcdc5a66edf22667d17273bbcbcbbdf4bd9ec91eab3970f3b2972b63a375e9453a65d5bcc0cc56bdab894ab42df2c6a8ccbe3568d9c87799d5d7c410cc16fd829bf634509ab469edddbd462783934ef272df0ec2690f5a35307dcff9ea06ced8ec82de3c8031747e2334e40bbb6a734c3bfe4cb073bcddff82d34944e3eb81365cb1465adb3f8a2cabdd742cf0472a3b9fb4d455ebf5dbda0966bf3b24170012d7be8d6643d467a93b0cd4537eea5156c11274ce2addca2abe5008d9c063b3a3f465a011400b05110177763eddc408674397392a6d0a238156bc872e80118d1dd702e1c98bd2d75a9916c60dd11c2918e355a1488cf9720f56d907cb2380687c808d9a546a6fa905c69184e2d3c9db54a23b3a860d7fffd98c3c6aa736b86fac5021d92c41bef7c7227541dc8a35c1ed8410363ddcef4d72c1f2e869d93c611dfde7519374c451b0cc5774cf85211a8f28754ef71870952cdf05e7558d42154a7a53f56ba0372f5630dfd763923861f711d69103d04264aef74b80215a3502d94b84ffdea164a669c2aadf85e052774f88d783cec343a75acb75c4d8f59d0707762580b19fabc1aec118abfdb9e4569d24b7ad43c1a9a6f4dfab407b7d71ad19686c9a15a398c03cc43cc27610384c70f77108b0737f5d5b74f4764fe1a92c4d75210daa7f393b995c531c7ceb8f0c89105a9f3f5d9be5591486e5b7bbfa3519116011426d7d88bc4fa917aa451c55125807d88ee490f40b1d1ed5e9b980ddccb81a6f84af7d08c9eb6ce266fc52b448dd2b8ac4ef4b1fdd4050232ae7caf88a66604f92ab88a539fe068a7f1bfb695fca7798773f4ac8bceb71a170dea0e8e76b82dc3cf93ed866af42c1a3214b46d2e93362a095212ad1ed5c338ad98b7dac5ce78351d036f0103831ffbe1420dddf8770fdc9a718fe7c3186cbab9cdde50345bd382e832d31851811ad586c448f79d684e7f9c0f9e1021c9112860488cd331ff2e43d854617da39b3b70be5e0cdd917a52d1dd2718853100d71b661a16ea9324dcbd3e00d9bf938e91176970be4bc025976f9904b1335001b9e3093eba1e4479dc0d313c5451065e8da54920d51062b963e3c2027a8471c5882e80df8c0497808292899e9a1f572935db3adb1f82153e144dc8ed2fe5f76729b627889709b4bcee50697b695a8f4166df44700e3dbe017b8dc8c1d87fc02f5c1adff7467e9dd54dc02e6d8408f5e7054854aaa059b229618d9acf90864a309e9f85b90e796f4c25fb45f9cf84d573f38bdb0ab78f1bc832560411db9c21310abc8ea854ecbb6d914729e08c9cac3b64640ccb76d0d7884b4409f185a008aff773aaa818f09cddbe09820f04011d1f3f4b4be767fdf09b106b47fe9e50f15c9e50130e8ca195e0783ce7278db5b0dff836208d8e0f770b61c9f279768677f0dc20703ae135ae1931b169551e9d44dac095814ea88c69be4d1927ccaca24cbb66457d63f26c972b5abd1d4f0646c73eede93105a79b7ba70b8ac97e74516f9f8d33f5cca0f7d52618bb405ca7c5ab292ff76f1850280e5dafe42a28d1faa3fd9ce19fe7c1a054c016a265a14d9d7a52a9016ca5496cff1b5d3b093eae36dae345a1e162876bda5821ac846b5c2f3d19560e65b0fd9c4c27f873eff6f7a38ad7a6a2088b935df620c15c0e8e647a7c89d9fb7c453d509434f5043bd56c5b53c752724f1b59ec89044b1bd7f778ef9535c929875e154683d307c85c94bd23d7e158ece303c12ccc69d02d6fb700a1d411587f9220eb", 0x1000}, {&(0x7f0000001880)="bd12ad760e51ce1c99b204feddc26a4a8e49fbc591c70892c563e4b9317f9dfd98cdc008664066560320dd0d21da8c9701256d89494f3e872b24a4894183e6e9fd38e536d438469f59540348ef3ac05865498aa33e07e000b6f7a4b318611c6c95b1c0f18ff8c6650c38362a3694a1eb6be0207e79d75930a2e60275f82459b7a3d8a4df25be6302802ae1f8a9e0ec82aee7daa45e055f10be807c00e49da9eea5e999b4", 0xa4}, {&(0x7f0000001940)="67d07e96fcb9b1583b7861ef595186e5f1b7ea1217c9515f72ae8a1de70e24a9d9a4b9f3c2c4db25e1f42372bfde6242590fa71cef740c15ea91e6eb677ec21f33d44fe296d78492a9ce4cc22b199296ca6c34f79a93ddf4ffbfd43e4a5322d3decee628e60da7f3aaebe6f33913bb8c3381a67d7acfb44bb68f973a80669977ff056f0bfca9ce5c5c071adcc409845fa5a14f07440b", 0x96}], 0x3, &(0x7f0000001b00)=[@cred={{0x1c, 0x1, 0x2, {0x0, r13, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r17, 0xffffffffffffffff, r18}}}], 0x40, 0x4000889}}], 0x2, 0x40001)

07:00:24 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)

07:00:24 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x27, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0xfffffff9}, [@map_val={0x18, 0x1, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x3f}, @call={0x85, 0x0, 0x0, 0x4f}, @jmp={0x5, 0x1, 0xc, 0x1, 0xa, 0xfffffffffffffff8, 0x8}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @jmp={0x5, 0x0, 0x5, 0xc, 0x9, 0x4, 0xfffffffffffffffb}, @exit]}, &(0x7f00000001c0)='GPL\x00', 0x18, 0xd0, &(0x7f0000000300)=""/208, 0x60680, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x4, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x1, 0xb, 0xf, 0x99}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r2]}, 0x80)
splice(r6, &(0x7f00000005c0)=0x40, 0xffffffffffffffff, &(0x7f0000000600)=0x9, 0x4, 0xc)
syz_emit_ethernet(0x22, &(0x7f0000000200)={@remote, @empty, @void, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @link_local}}}}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000040)={0xa0000017})
readv(r1, 0x0, 0x0)
r7 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f00000000c0)={r8, r2, 0x1000, 0x40, &(0x7f0000000080)="5bd9029a247d0dc8a2baaf07ca61d98f31244f7971b0d6f63fa901f5394e562cbd9f009144214ca5bcee19d389c12b05eccb8da18de004ca689709581d61b5cb", 0x1, 0x40, 0x0, 0x5, 0x4, 0x3, 0x9, 'syz1\x00'})

07:00:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x700000, 0x0, 0x0}, 0x58)

07:00:24 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x27, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0xfffffff9}, [@map_val={0x18, 0x1, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x3f}, @call={0x85, 0x0, 0x0, 0x4f}, @jmp={0x5, 0x1, 0xc, 0x1, 0xa, 0xfffffffffffffff8, 0x8}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @jmp={0x5, 0x0, 0x5, 0xc, 0x9, 0x4, 0xfffffffffffffffb}, @exit]}, &(0x7f00000001c0)='GPL\x00', 0x18, 0xd0, &(0x7f0000000300)=""/208, 0x60680, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x4, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x1, 0xb, 0xf, 0x99}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r2]}, 0x80)
splice(r6, &(0x7f00000005c0)=0x40, 0xffffffffffffffff, &(0x7f0000000600)=0x9, 0x4, 0xc)
syz_emit_ethernet(0x22, &(0x7f0000000200)={@remote, @empty, @void, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @link_local}}}}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000040)={0xa0000017})
readv(r1, 0x0, 0x0)
r7 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f00000000c0)={r8, r2, 0x1000, 0x40, &(0x7f0000000080)="5bd9029a247d0dc8a2baaf07ca61d98f31244f7971b0d6f63fa901f5394e562cbd9f009144214ca5bcee19d389c12b05eccb8da18de004ca689709581d61b5cb", 0x1, 0x40, 0x0, 0x5, 0x4, 0x3, 0x9, 'syz1\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000000)) (async)
socket$packet(0x11, 0xa, 0x300) (async)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x27, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r5}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0xfffffff9}, [@map_val={0x18, 0x1, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x3f}, @call={0x85, 0x0, 0x0, 0x4f}, @jmp={0x5, 0x1, 0xc, 0x1, 0xa, 0xfffffffffffffff8, 0x8}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @jmp={0x5, 0x0, 0x5, 0xc, 0x9, 0x4, 0xfffffffffffffffb}, @exit]}, &(0x7f00000001c0)='GPL\x00', 0x18, 0xd0, &(0x7f0000000300)=""/208, 0x60680, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x4, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x1, 0xb, 0xf, 0x99}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r2]}, 0x80) (async)
splice(r6, &(0x7f00000005c0)=0x40, 0xffffffffffffffff, &(0x7f0000000600)=0x9, 0x4, 0xc) (async)
syz_emit_ethernet(0x22, &(0x7f0000000200)={@remote, @empty, @void, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @link_local}}}}, 0x0) (async)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000040)={0xa0000017}) (async)
readv(r1, 0x0, 0x0) (async)
pidfd_getfd(0xffffffffffffffff, r0, 0x0) (async)
socket$vsock_stream(0x28, 0x1, 0x0) (async)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f00000000c0)={r8, r2, 0x1000, 0x40, &(0x7f0000000080)="5bd9029a247d0dc8a2baaf07ca61d98f31244f7971b0d6f63fa901f5394e562cbd9f009144214ca5bcee19d389c12b05eccb8da18de004ca689709581d61b5cb", 0x1, 0x40, 0x0, 0x5, 0x4, 0x3, 0x9, 'syz1\x00'}) (async)

[  281.522492][ T6611] FAULT_INJECTION: forcing a failure.
[  281.522492][ T6611] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  281.538287][ T6611] CPU: 1 PID: 6611 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  281.548279][ T6611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  281.558183][ T6611] Call Trace:
[  281.561382][ T6611]  <TASK>
[  281.564159][ T6611]  dump_stack_lvl+0x151/0x1b7
[  281.568668][ T6611]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  281.574064][ T6611]  dump_stack+0x15/0x17
[  281.578046][ T6611]  should_fail+0x3c0/0x510
[  281.582296][ T6611]  should_fail_alloc_page+0x58/0x70
[  281.587342][ T6611]  __alloc_pages+0x1de/0x7c0
[  281.591765][ T6611]  ? __count_vm_events+0x30/0x30
[  281.596532][ T6611]  ? __this_cpu_preempt_check+0x13/0x20
[  281.601912][ T6611]  ? __mod_node_page_state+0xac/0xf0
[  281.607297][ T6611]  pte_alloc_one+0x73/0x1b0
[  281.611635][ T6611]  ? pfn_modify_allowed+0x2e0/0x2e0
[  281.618065][ T6611]  __pte_alloc+0x86/0x350
[  281.622221][ T6611]  ? free_pgtables+0x210/0x210
[  281.626822][ T6611]  ? _raw_spin_lock+0xa3/0x1b0
[  281.631423][ T6611]  ? _raw_spin_trylock_bh+0x1d0/0x1d0
[  281.636628][ T6611]  ? __kernel_text_address+0x9a/0x110
[  281.641840][ T6611]  copy_pte_range+0x1b1f/0x20b0
[  281.646526][ T6611]  ? __kunmap_atomic+0x80/0x80
[  281.651125][ T6611]  ? __kasan_slab_alloc+0xc4/0xe0
[  281.655993][ T6611]  ? __kasan_slab_alloc+0xb2/0xe0
[  281.660844][ T6611]  ? kmem_cache_alloc+0x189/0x2f0
[  281.665705][ T6611]  ? vm_area_dup+0x26/0x1d0
[  281.670044][ T6611]  ? dup_mmap+0x6b8/0xea0
[  281.674212][ T6611]  ? dup_mm+0x91/0x330
[  281.678115][ T6611]  ? copy_mm+0x108/0x1b0
[  281.682193][ T6611]  ? copy_process+0x1295/0x3250
[  281.686894][ T6611]  ? kernel_clone+0x22d/0x990
[  281.691394][ T6611]  ? __x64_sys_clone3+0x375/0x3a0
[  281.696259][ T6611]  ? do_syscall_64+0x44/0xd0
[  281.700684][ T6611]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  281.706590][ T6611]  copy_page_range+0xc1e/0x1090
[  281.711273][ T6611]  ? pfn_valid+0x1e0/0x1e0
[  281.715531][ T6611]  dup_mmap+0x99f/0xea0
[  281.719518][ T6611]  ? __delayed_free_task+0x20/0x20
[  281.724463][ T6611]  ? mm_init+0x807/0x960
[  281.728552][ T6611]  dup_mm+0x91/0x330
[  281.732274][ T6611]  copy_mm+0x108/0x1b0
[  281.740482][ T6611]  copy_process+0x1295/0x3250
[  281.744987][ T6611]  ? check_stack_object+0xf7/0x130
[  281.749939][ T6611]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  281.754879][ T6611]  ? copy_clone_args_from_user+0x6cf/0x790
[  281.760693][ T6611]  kernel_clone+0x22d/0x990
[  281.765031][ T6611]  ? dup_mmap+0xea0/0xea0
[  281.769198][ T6611]  ? create_io_thread+0x1e0/0x1e0
[  281.774058][ T6611]  ? file_end_write+0x1b0/0x1b0
[  281.778747][ T6611]  __x64_sys_clone3+0x375/0x3a0
[  281.783434][ T6611]  ? __ia32_sys_clone+0x300/0x300
[  281.788294][ T6611]  ? ksys_write+0x25f/0x2c0
[  281.792634][ T6611]  ? debug_smp_processor_id+0x17/0x20
[  281.797840][ T6611]  do_syscall_64+0x44/0xd0
[  281.802096][ T6611]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  281.807821][ T6611] RIP: 0033:0x7f8e237f0639
[  281.812077][ T6611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  281.831519][ T6611] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  281.839944][ T6611] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  281.847758][ T6611] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  281.855557][ T6611] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  281.863528][ T6611] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
07:00:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 77)

07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 32)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
readv(r2, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_elf64(r3, 0x0, 0xfe30) (async)
r4 = fcntl$getown(r1, 0x9) (async)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r5=>0x0)
setresuid(0xffffffffffffffff, r5, 0xffffffffffffffff) (async, rerun: 32)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r6=>0x0) (rerun: 32)
setresuid(0xffffffffffffffff, r6, 0xffffffffffffffff) (async, rerun: 64)
r7 = getpid() (async, rerun: 64)
r8 = open(&(0x7f0000001bc0)='./file0\x00', 0x1c801, 0x101)
fallocate(r8, 0x44, 0x4, 0x9)
sched_setscheduler(r7, 0x1, &(0x7f0000001700)=0x4) (async)
getresuid(&(0x7f0000000280), &(0x7f0000000640), &(0x7f0000000680)=<r9=>0x0) (async, rerun: 64)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x113000, 0x0) (rerun: 64)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r12 = memfd_create(&(0x7f0000000700)='\x00', 0x3)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r13=>0x0) (async)
getresuid(&(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)=<r14=>0x0)
setresuid(0xffffffffffffffff, r14, 0xffffffffffffffff) (async)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000001cc0)={0x0, <r15=>0x0}, &(0x7f0000001c00)=0xc)
ioctl$NS_GET_OWNER_UID(r8, 0xb704, &(0x7f0000001c80)=<r16=>0x0)
setresuid(r14, r15, r16)
setresuid(0xffffffffffffffff, r13, 0xffffffffffffffff)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000001a40)=<r17=>0x0) (async)
fstat(r2, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, <r18=>0x0})
sendmmsg$unix(r3, &(0x7f0000001b40)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000140)="6321ca1fe63b5b917176811b7a534e76a279cb4882cf26325633a6aa2b7652", 0x1f}, {&(0x7f0000000180)="a24f8dc21912b308c341675c081e894963e48a30bc808b0a65241da306a4f24bb476132c87a9fb008a478eac726bd548c2272a77c4f63ae38aa8bb9cd99e904dba4d37", 0x43}, {&(0x7f0000000300)="6804ca8fb823b735572b5b660683f777f646e8ad6f5b4cb1e20b6c1ef725db06fd2da32d47f049083bad0afcae9ee9ab6ba80210c9a5bf9a875585dc9437f84c5452597545cfd1bafc53745998482eeb488b89c6da20b40e835855af067d5ab06e47b6f14c657a7738ec308325e7692858d8a5ced6d8ebb6c86303470e", 0x7d}, {&(0x7f0000000380)="dae7d21a9e4065c6397ca196aa5637bc865c3d8308e9ae7911875d8183b2086cbe662853d775dcec3ed95a34630f5396385fe0aae08a76e4b4970d93f150d0b917d5ac647505066fa5ae1d4198bc0bdc9998a08bdecc3b713e60828f9c01f1d6cddae098105fe1b16eaa59299c6319bfed82ed46444379fc3c35a367544d3872c36615335d5f22630177274b08a8854db54f988f888143104ee93da9794e22bd886e6229ba623e27d5ebf3573762fa1563dc92924b", 0xb5}, {&(0x7f0000000440)="efe7100b7a361b74a8f266be5f7e26aa9b9102cf52fd66c4a6b4e2c14b928ec33a163c7bc93481ff047f2dcd6c0b2cc7863004a598b586a81ebf9a8a0788dc2db66cb982124ef7a82e3dfac0", 0x4c}, {&(0x7f00000004c0)="88a998ead934a75f447ef158f994ad1c4af2f2f3bc8b5c8044a17496e3e7b40814775b958b909f3c4b37ed1bda75f3e1eeafe4bf1e474b2b43df95c72d54cf2fd839d656", 0x44}, {&(0x7f0000000540)="e483c917e2767e4a51135a41a6ff3e71eda966c0a69e3552256980b9a9ed55c8fd9a89a3d7a6508a7f45d239c93f64f8f48b366f9e679992b91b75077e25377a808fa5691140aab03142a7a3c7b40d22ba38567990ffeb91a0cc", 0x5a}], 0x7, &(0x7f0000000740)=[@cred={{0x1c, 0x1, 0x2, {r4, r5, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r6, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {r7, r9, 0xee00}}}, @rights={{0x38, 0x1, 0x1, [r10, 0xffffffffffffffff, r1, r0, r11, r2, r1, r0, r12, r0]}}], 0x98, 0x2197f3b5385aeb48}}, {{&(0x7f0000000800)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000000880)="0d6e8e2062cc0200afe9339eacd671a6f080d99dab349e6c2c7147d10fd18a4ae5d79c744e1b43413065ad220644e5cb2640a3c076f4fa99a5ef9171e245050203248f3f46d98460619f0aea8a9c465c5af6bdb2dda1c9af12864de66245789c20d9fdf1d73d449e13a39865c12a112b9487e41bc6654a1195efd853877efd52e3e44163f6d0ded5ad7f8c497b1cd58800d00a739e56dad7b40c6cc1b312c0fd4d03f4b7f9c0e1b31d0705d78a27d883156253fcf9ee492ecddab98cd398920dea17bcc8c034c2f44dbb7322118764129b442dbd26eb400dcfdaedc96eb197b0f6d821826bccf8347a3e4d78405230315c2f6d620a66f787a05336fe8165b1604cd84867999a8d6ee2f93fdb0d4391f040d32a22765f465c6e4bfdd896606baeee6529a4bcac8e50b4b9fb9b5b045c45ff166d632f43a061652114115dd08f6a6b4b3a8ff181c4fdf43f5065e77ff546d8b552fd17b6bffceebb0b5c5d10a42be11e9ebe9a2c95505b9a90f06a8cedd10f65227f2794a9ac4260bc52586c9aa1b0bbe963af3082798426b67955ef8e0548e06d3ab975a357bd747ea6aa7faf79eaecd571478c0cff6c5b0a45a66272f294da401f23c9175bc8a5767addbcd9da43206961fbcad4ce8d76a6b472a2030766fd5dd456eac47e849f0a0feb8ad50da595ae85303110659f88349d7f569876b2ba809f9911b161a92eaf7a17dcdfcfb164e8442557b1aa900bebe801955b4883d342f888a75bf335d5bf1f44bb75240be01b1670328d08ec3e96a770a77dbd2aeaf799031f298d1e90ed03260dd32f0484077379985edfc65932c92da02566cd40df08b162dd6b4fc1506288aaec03b566d5b4c91ab66fe6215ab833ceb695acbbbb49f23999c1c2a26ba0c2f5d7d3a9abd9709b6ad6da12ef83c3973d37c1e1547b6057aac92769169799be5bf19129d71fb3133dd505f7c85f0942f0db096fa89eb212113b1e85ba416c8b1fff93cc91cb185d68672bff610a37a5eee76e62273b30c745dc6abe66ca2e326ff5e6eba76153a535c071fe10e9862bc112d5ddaf094ddb0a08c4720b49e7b03f54e579a7717a607bc5ce68af063aa2ef60f5310560e1336e867f854a98bf8194a3455f409b022d4a9ba8afa8f8d1a7a9ce1169389e4102b0405de2d9070559085773954c6c6365fc53a4cb6b082d56563f305e71e712da701ffe33fc57b42ede01713e16a878a23ed1c0648e9d5ea5199a2cd6df894b14107725bae3f9f0189e7ca4fad66077f681894d7bbd3ec7a41e3ad6e9170f09b33bcb3bfb2601e19326a8a30d1be36de11ca8bd66b97c7f19b3a2c9477cd4376ad33ac3c10325bc1ae71bbd280d6639dfa86196b916abacf879f10ff8ee11f3ac0615a98cbcb362a4408f982a4b8aeb6049bf619074e01f1dc1743dc658e11ac9488c7ee67db79405da3afcc2b32150d9e809751f7c51f04a2332e9c0bac7954378d68d73df2ae4f77cc9a3169a675cac083c14f52bff0a62849b0943bc14f1ecf1c92048b9b8e45b7cb674a618bece721215e0e51677865bf17e0a2e16ec0574165dfdd37be51f0a3626f09447b60c698c1bb00a1fe459498a268444810e301ffe32069523aee11a1a3ea60df2f5f97ea1186463518b6a98955ca78ef26f6497200ea8dd68c164d4784e3f5bf18a89a1121b92952eef2e81b98d75e3ec2494d0bf87f77fb71b042a05b757301c309e52204221e51bbb588ad07dc879e35759727969243924b66da1cf4c9abbd25ead5d83e028990f7f4aa0db0171eca6abe29629702877280d9e7b0f539e14e50cf5579f4e84464586fa84e1e4aaa46166336214078e2f61e9dd104ab6fe7b8cd324feaba3d5ee7e16cfd2dfea2bca51ca2fa18972fb7bc059317a576a87b1a410b926ad63c831323fe4a56d529323af659ad87bd788ec2ffe28c6b0d7f8b1a0904d8039e5c6acd9b5880e6a2c57f6f428ea7bf00ba0fba2df66eeedd085c5e0833b7bbba7e1af8ef4568be82ba7dfab34f8aabefefa3d6b56e472ef09f1f4fb55d560eac4d913e69618bb14a8adb1430365fac1104e8eede21e0d822acc8b8c65c7d3a180ec861c15c01dc5328d36b96745aeca46fd05df0cd3f70775789eda5b4edafcc6e5e178ec5a8cdca636b1cadb12e829bfdc4e9af01271487e0f8dd0138dfe3ee6d7e1f4a827521dd99a1ae91d76c892620f876b01a0e2a09e0db80b9a46dbc4abc0a5db0de256015aafed8d7f7f2a14553092a2e1bb1062781476553d2a7860ea036f5bdf77f2ee9430df93beda02b32b4945e9c644bfe06a144745003e82e2f0f6053e1f494bf99a97b37836d4c557c759a5d6bead04d80e42f15d51d5f2b80401ccfaad41ea89f61342d9d1702d45dcef9b687250d2415cd2bf9d79a70abf9ee411b5f2b2d5f1fa3808e001caecbee89755f906a14ee1043cf4674f6df115721b6e73462ca834076f4d9abd85c606a8161035fe2fdb5c6b3f802cb3e5e6c62ea94e9049a46953af046a0e3ef26ee9a4a44da3ddc0d2db1b02273c537d2404bb540a3ec972ccfebe62fbb165e34d8636658ffcf8d22c097509b64b876f970bb3482b42c48c71606818f10f640dbf45e8e4e55b49aeb2a29b15824b3add030b3cef3f11ed819612d365ba2138d353e989622b7df95b86468da916eb8816795037718ecce44a26a38a0f75ad79625389712057ee1b2f9302f81524869c3580692db6d7bca6918cef03d894bc8cf25e65b37fc1262c27985511a7b85392f81d900d0d21da4c17be24d5808225375222e2488b130fddb862aceaabd8982d8204d18494710a81150b7a39fa311d52ca5dfcb66dbd4dda351979bacc50d0d638416de858a4058b891806034aebb4245da4e5c16c14a474bc947345a400c0e39fdd32c3b78be4bb98d47a88cc452aa14d3e35534a41ec5dd6f5f7ca4aee61793985cd72bc82a5bd16975e97acc31e903539dd09b8273816bb93e7d807f24c5d3f09862aca5dd1b6d68a58d94ddf5d5d2307c2e78b8a30245eca15216035ceae36123ac16b56d4a44c795fe0a893346251a8db5fbedd906dc6ebc5b0421a10f35426fe4a16fb65d17231edb2e5a2a406c749d599bf58b877b6f30403792ed1e60553496823daa19d1f162d86f03a772d94ab48da53f6e71f0bf828391cc58363ba3413d84dc9325829b2fc449e240f6df3d9cb2a2a6b2fb886ed19bd2b5882f2448361fd82686b8ec4bf0f8dfca62140047e1d5c83c016555dca75d9c3e7655b2f1d43c9d22107564aae8eab4d84018acf5dc5ca18b191850a7ad9b77c3494979363b150c1be8819060afc6617e5ace63f3f2ee382f280d49872029e17d8760477fc6787584871dc7f0e43ec4215313fcb28ae2a786d3a9289b1a65a008a33db8227c316f2ca53a2f05c89781c129bb2fcbd499f50684fa7d156ee6997f31ba3f95d5c248b00a11cde2654dda1527f1eb29a0fe32f7145138315cc023431dc8109d286c5d8d0453a0ec8c769be9b66a53aeeddab94a0d4fc2365a4d79cdcc38da6e5e3b9681fdb3245ae8337afc93ee6b644a533303ce562ec2bab126825c044ed5c068202e711c04475f1f251e7e47451a936e1bea894932719d0b74550381a5e948c2b7e5e0c2e1382a0f55ce81fb77e1165cedce2ffbfb9f6993a84e6b2838fa1e25a3b2232a79185b4d4e899865ff58f191e0e0e98bd327fc4c9b6e8bbe428ac278687877d0aed9f754d8acbfdd3a85cbdd39cfdbd2e71f353e7ec03f8d01dfeeb66b65d29d367043a72a02b2c801ab77a0e57df272997e727d3677e8cd437c9300622f525653f30ed9a2db58451ddd767144cc3175db0c5fe5bd0eeb0bf2839c5d94000271b9edcee1ae2918f0088cbba114f09f4a40424e9289f8d4a9db874af48026845217583454c6bd13f15368245a197f98ca11e0a5fc552bfbd930db58ebc2f950d5793dadd90b40c2c878ec3f6c6dabb5ec7b448796b2122ceeac89b1259bc5f46b3aa559fc0f1bc7dcdc5a66edf22667d17273bbcbcbbdf4bd9ec91eab3970f3b2972b63a375e9453a65d5bcc0cc56bdab894ab42df2c6a8ccbe3568d9c87799d5d7c410cc16fd829bf634509ab469edddbd462783934ef272df0ec2690f5a35307dcff9ea06ced8ec82de3c8031747e2334e40bbb6a734c3bfe4cb073bcddff82d34944e3eb81365cb1465adb3f8a2cabdd742cf0472a3b9fb4d455ebf5dbda0966bf3b24170012d7be8d6643d467a93b0cd4537eea5156c11274ce2addca2abe5008d9c063b3a3f465a011400b05110177763eddc408674397392a6d0a238156bc872e80118d1dd702e1c98bd2d75a9916c60dd11c2918e355a1488cf9720f56d907cb2380687c808d9a546a6fa905c69184e2d3c9db54a23b3a860d7fffd98c3c6aa736b86fac5021d92c41bef7c7227541dc8a35c1ed8410363ddcef4d72c1f2e869d93c611dfde7519374c451b0cc5774cf85211a8f28754ef71870952cdf05e7558d42154a7a53f56ba0372f5630dfd763923861f711d69103d04264aef74b80215a3502d94b84ffdea164a669c2aadf85e052774f88d783cec343a75acb75c4d8f59d0707762580b19fabc1aec118abfdb9e4569d24b7ad43c1a9a6f4dfab407b7d71ad19686c9a15a398c03cc43cc27610384c70f77108b0737f5d5b74f4764fe1a92c4d75210daa7f393b995c531c7ceb8f0c89105a9f3f5d9be5591486e5b7bbfa3519116011426d7d88bc4fa917aa451c55125807d88ee490f40b1d1ed5e9b980ddccb81a6f84af7d08c9eb6ce266fc52b448dd2b8ac4ef4b1fdd4050232ae7caf88a66604f92ab88a539fe068a7f1bfb695fca7798773f4ac8bceb71a170dea0e8e76b82dc3cf93ed866af42c1a3214b46d2e93362a095212ad1ed5c338ad98b7dac5ce78351d036f0103831ffbe1420dddf8770fdc9a718fe7c3186cbab9cdde50345bd382e832d31851811ad586c448f79d684e7f9c0f9e1021c9112860488cd331ff2e43d854617da39b3b70be5e0cdd917a52d1dd2718853100d71b661a16ea9324dcbd3e00d9bf938e91176970be4bc025976f9904b1335001b9e3093eba1e4479dc0d313c5451065e8da54920d51062b963e3c2027a8471c5882e80df8c0497808292899e9a1f572935db3adb1f82153e144dc8ed2fe5f76729b627889709b4bcee50697b695a8f4166df44700e3dbe017b8dc8c1d87fc02f5c1adff7467e9dd54dc02e6d8408f5e7054854aaa059b229618d9acf90864a309e9f85b90e796f4c25fb45f9cf84d573f38bdb0ab78f1bc832560411db9c21310abc8ea854ecbb6d914729e08c9cac3b64640ccb76d0d7884b4409f185a008aff773aaa818f09cddbe09820f04011d1f3f4b4be767fdf09b106b47fe9e50f15c9e50130e8ca195e0783ce7278db5b0dff836208d8e0f770b61c9f279768677f0dc20703ae135ae1931b169551e9d44dac095814ea88c69be4d1927ccaca24cbb66457d63f26c972b5abd1d4f0646c73eede93105a79b7ba70b8ac97e74516f9f8d33f5cca0f7d52618bb405ca7c5ab292ff76f1850280e5dafe42a28d1faa3fd9ce19fe7c1a054c016a265a14d9d7a52a9016ca5496cff1b5d3b093eae36dae345a1e162876bda5821ac846b5c2f3d19560e65b0fd9c4c27f873eff6f7a38ad7a6a2088b935df620c15c0e8e647a7c89d9fb7c453d509434f5043bd56c5b53c752724f1b59ec89044b1bd7f778ef9535c929875e154683d307c85c94bd23d7e158ece303c12ccc69d02d6fb700a1d411587f9220eb", 0x1000}, {&(0x7f0000001880)="bd12ad760e51ce1c99b204feddc26a4a8e49fbc591c70892c563e4b9317f9dfd98cdc008664066560320dd0d21da8c9701256d89494f3e872b24a4894183e6e9fd38e536d438469f59540348ef3ac05865498aa33e07e000b6f7a4b318611c6c95b1c0f18ff8c6650c38362a3694a1eb6be0207e79d75930a2e60275f82459b7a3d8a4df25be6302802ae1f8a9e0ec82aee7daa45e055f10be807c00e49da9eea5e999b4", 0xa4}, {&(0x7f0000001940)="67d07e96fcb9b1583b7861ef595186e5f1b7ea1217c9515f72ae8a1de70e24a9d9a4b9f3c2c4db25e1f42372bfde6242590fa71cef740c15ea91e6eb677ec21f33d44fe296d78492a9ce4cc22b199296ca6c34f79a93ddf4ffbfd43e4a5322d3decee628e60da7f3aaebe6f33913bb8c3381a67d7acfb44bb68f973a80669977ff056f0bfca9ce5c5c071adcc409845fa5a14f07440b", 0x96}], 0x3, &(0x7f0000001b00)=[@cred={{0x1c, 0x1, 0x2, {0x0, r13, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r17, 0xffffffffffffffff, r18}}}], 0x40, 0x4000889}}], 0x2, 0x40001)

07:00:25 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 64)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
r4 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x27, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0xfffffff9}, [@map_val={0x18, 0x1, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x3f}, @call={0x85, 0x0, 0x0, 0x4f}, @jmp={0x5, 0x1, 0xc, 0x1, 0xa, 0xfffffffffffffff8, 0x8}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, @jmp={0x5, 0x0, 0x5, 0xc, 0x9, 0x4, 0xfffffffffffffffb}, @exit]}, &(0x7f00000001c0)='GPL\x00', 0x18, 0xd0, &(0x7f0000000300)=""/208, 0x60680, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x4, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x1, 0xb, 0xf, 0x99}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r2]}, 0x80)
splice(r6, &(0x7f00000005c0)=0x40, 0xffffffffffffffff, &(0x7f0000000600)=0x9, 0x4, 0xc) (async)
syz_emit_ethernet(0x22, &(0x7f0000000200)={@remote, @empty, @void, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @link_local}}}}, 0x0) (async)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r0, &(0x7f0000000040)={0xa0000017}) (async)
readv(r1, 0x0, 0x0) (async)
r7 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f00000000c0)={r8, r2, 0x1000, 0x40, &(0x7f0000000080)="5bd9029a247d0dc8a2baaf07ca61d98f31244f7971b0d6f63fa901f5394e562cbd9f009144214ca5bcee19d389c12b05eccb8da18de004ca689709581d61b5cb", 0x1, 0x40, 0x0, 0x5, 0x4, 0x3, 0x9, 'syz1\x00'})

07:00:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58)

07:00:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58)

07:00:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58)

[  281.871317][ T6611] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  281.879140][ T6611]  </TASK>
07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
connect$bt_sco(r3, &(0x7f00000000c0), 0x8)
readv(r2, 0x0, 0x0)

07:00:25 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
connect$bt_sco(r3, &(0x7f00000000c0), 0x8)
readv(r2, 0x0, 0x0)

07:00:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x206a263a550000, 0x0, 0x0}, 0x58)

07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
connect$bt_sco(r3, &(0x7f00000000c0), 0x8) (async)
readv(r2, 0x0, 0x0)

07:00:25 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)

[  282.003021][ T6650] FAULT_INJECTION: forcing a failure.
[  282.003021][ T6650] name failslab, interval 1, probability 0, space 0, times 0
[  282.028809][ T6650] CPU: 0 PID: 6650 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  282.038817][ T6650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  282.048712][ T6650] Call Trace:
[  282.051832][ T6650]  <TASK>
[  282.054714][ T6650]  dump_stack_lvl+0x151/0x1b7
[  282.059216][ T6650]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  282.064501][ T6650]  dump_stack+0x15/0x17
[  282.068497][ T6650]  should_fail+0x3c0/0x510
[  282.072746][ T6650]  __should_failslab+0x9f/0xe0
[  282.077603][ T6650]  should_failslab+0x9/0x20
[  282.081937][ T6650]  kmem_cache_alloc+0x4f/0x2f0
[  282.086537][ T6650]  ? anon_vma_fork+0x1b9/0x4f0
[  282.091144][ T6650]  anon_vma_fork+0x1b9/0x4f0
[  282.095563][ T6650]  dup_mmap+0x750/0xea0
[  282.099557][ T6650]  ? __delayed_free_task+0x20/0x20
[  282.104506][ T6650]  ? mm_init+0x807/0x960
[  282.108582][ T6650]  dup_mm+0x91/0x330
[  282.112324][ T6650]  copy_mm+0x108/0x1b0
[  282.116306][ T6650]  copy_process+0x1295/0x3250
[  282.120822][ T6650]  ? check_stack_object+0xf7/0x130
[  282.125775][ T6650]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  282.130713][ T6650]  ? copy_clone_args_from_user+0x6cf/0x790
[  282.136356][ T6650]  kernel_clone+0x22d/0x990
[  282.140700][ T6650]  ? dup_mmap+0xea0/0xea0
[  282.144878][ T6650]  ? create_io_thread+0x1e0/0x1e0
[  282.149918][ T6650]  ? file_end_write+0x1b0/0x1b0
[  282.155331][ T6650]  __x64_sys_clone3+0x375/0x3a0
[  282.160071][ T6650]  ? __ia32_sys_clone+0x300/0x300
[  282.165544][ T6650]  ? ksys_write+0x25f/0x2c0
[  282.169989][ T6650]  ? debug_smp_processor_id+0x17/0x20
[  282.175197][ T6650]  do_syscall_64+0x44/0xd0
[  282.179463][ T6650]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  282.185277][ T6650] RIP: 0033:0x7f8e237f0639
[  282.189519][ T6650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  282.209160][ T6650] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  282.217401][ T6650] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  282.225212][ T6650] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  282.233022][ T6650] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  282.240845][ T6650] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
07:00:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 78)

07:00:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x41, 0x0, 0x0}, 0x58)

07:00:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58)

07:00:25 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)

07:00:25 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xe1, 0x4, @vifc_lcl_addr=@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffffffffffff17)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x60c1364d2a0000, 0x0, 0x0}, 0x58)

07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000280)=[0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000380)=[{}], 0x8, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000006c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)=@can_delroute={0x8c, 0x19, 0x4, 0x70bd2d, 0x25dfdbfc, {0x1d, 0x1, 0x3}, [@CGW_FILTER={0xc, 0xb, {{0x4, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}}, @CGW_FILTER={0xc, 0xb, {{0x0, 0x1, 0x1}, {0x4, 0x1, 0x1, 0x1}}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0xfffffffffffffff9, 0x1, 0x81}}, @CGW_SRC_IF={0x8, 0x9, r6}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "6732604b5793c2b8"}}}, @CGW_CS_XOR={0x8, 0x5, {0x0, 0xfffffffffffffff8, 0x8, 0x81}}, @CGW_SRC_IF={0x8, 0x9, r7}, @CGW_LIM_HOPS={0x5, 0xd, 0x83}, @CGW_MOD_SET={0x15, 0x4, {{{0x4, 0x1}, 0x6, 0x3, 0x0, 0x0, "58eda14021ca56f7"}, 0x2}}, @CGW_LIM_HOPS={0x5, 0xd, 0xff}]}, 0x8c}}, 0x80)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@ipv6_deladdrlabel={0x38, 0x49, 0x4, 0x70bd2d, 0x25dfdbfb, {0xa, 0x0, 0x3f, 0x0, r11}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r12, 0x0, 0x0)

[  282.248646][ T6650] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  282.256468][ T6650]  </TASK>
07:00:25 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xe1, 0x4, @vifc_lcl_addr=@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffffffffffff17)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xe1, 0x4, @vifc_lcl_addr=@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffffffffffff17) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)

07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000280)=[0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000380)=[{}], 0x8, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000006c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)=@can_delroute={0x8c, 0x19, 0x4, 0x70bd2d, 0x25dfdbfc, {0x1d, 0x1, 0x3}, [@CGW_FILTER={0xc, 0xb, {{0x4, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}}, @CGW_FILTER={0xc, 0xb, {{0x0, 0x1, 0x1}, {0x4, 0x1, 0x1, 0x1}}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0xfffffffffffffff9, 0x1, 0x81}}, @CGW_SRC_IF={0x8, 0x9, r6}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "6732604b5793c2b8"}}}, @CGW_CS_XOR={0x8, 0x5, {0x0, 0xfffffffffffffff8, 0x8, 0x81}}, @CGW_SRC_IF={0x8, 0x9, r7}, @CGW_LIM_HOPS={0x5, 0xd, 0x83}, @CGW_MOD_SET={0x15, 0x4, {{{0x4, 0x1}, 0x6, 0x3, 0x0, 0x0, "58eda14021ca56f7"}, 0x2}}, @CGW_LIM_HOPS={0x5, 0xd, 0xff}]}, 0x8c}}, 0x80) (async)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@ipv6_deladdrlabel={0x38, 0x49, 0x4, 0x70bd2d, 0x25dfdbfb, {0xa, 0x0, 0x3f, 0x0, r11}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r12, 0x0, 0x0)

07:00:25 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0xe1, 0x4, @vifc_lcl_addr=@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffffffffffff17)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0)

07:00:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x70, 0x0, 0x0}, 0x58)

07:00:25 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000280)=[0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000380)=[{}], 0x8, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000006c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)=@can_delroute={0x8c, 0x19, 0x4, 0x70bd2d, 0x25dfdbfc, {0x1d, 0x1, 0x3}, [@CGW_FILTER={0xc, 0xb, {{0x4, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}}, @CGW_FILTER={0xc, 0xb, {{0x0, 0x1, 0x1}, {0x4, 0x1, 0x1, 0x1}}}, @CGW_CS_XOR={0x8, 0x5, {0x7, 0xfffffffffffffff9, 0x1, 0x81}}, @CGW_SRC_IF={0x8, 0x9, r6}, @CGW_MOD_XOR={0x15, 0x3, {{{0x2, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "6732604b5793c2b8"}}}, @CGW_CS_XOR={0x8, 0x5, {0x0, 0xfffffffffffffff8, 0x8, 0x81}}, @CGW_SRC_IF={0x8, 0x9, r7}, @CGW_LIM_HOPS={0x5, 0xd, 0x83}, @CGW_MOD_SET={0x15, 0x4, {{{0x4, 0x1}, 0x6, 0x3, 0x0, 0x0, "58eda14021ca56f7"}, 0x2}}, @CGW_LIM_HOPS={0x5, 0xd, 0xff}]}, 0x8c}}, 0x80) (async)
r8 = socket(0x10, 0x3, 0x0) (async)
r9 = socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r10, &(0x7f0000000080)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r11, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@ipv6_deladdrlabel={0x38, 0x49, 0x4, 0x70bd2d, 0x25dfdbfb, {0xa, 0x0, 0x3f, 0x0, r11}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r12, 0x0, 0x0)

[  282.373201][ T6690] FAULT_INJECTION: forcing a failure.
[  282.373201][ T6690] name failslab, interval 1, probability 0, space 0, times 0
[  282.406226][ T6690] CPU: 0 PID: 6690 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  282.416234][ T6690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  282.426131][ T6690] Call Trace:
[  282.429248][ T6690]  <TASK>
[  282.432022][ T6690]  dump_stack_lvl+0x151/0x1b7
[  282.436537][ T6690]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  282.441833][ T6690]  dump_stack+0x15/0x17
[  282.445820][ T6690]  should_fail+0x3c0/0x510
[  282.450077][ T6690]  __should_failslab+0x9f/0xe0
[  282.455677][ T6690]  should_failslab+0x9/0x20
[  282.460023][ T6690]  kmem_cache_alloc+0x4f/0x2f0
[  282.464611][ T6690]  ? vm_area_dup+0x26/0x1d0
[  282.468951][ T6690]  ? __kasan_check_read+0x11/0x20
[  282.474005][ T6690]  vm_area_dup+0x26/0x1d0
[  282.478149][ T6690]  dup_mmap+0x6b8/0xea0
[  282.482160][ T6690]  ? __delayed_free_task+0x20/0x20
[  282.487203][ T6690]  ? mm_init+0x807/0x960
[  282.491279][ T6690]  dup_mm+0x91/0x330
[  282.495009][ T6690]  copy_mm+0x108/0x1b0
[  282.498918][ T6690]  copy_process+0x1295/0x3250
[  282.503433][ T6690]  ? check_stack_object+0xf7/0x130
[  282.508513][ T6690]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  282.513460][ T6690]  ? copy_clone_args_from_user+0x6cf/0x790
[  282.519106][ T6690]  kernel_clone+0x22d/0x990
[  282.523451][ T6690]  ? dup_mmap+0xea0/0xea0
[  282.527609][ T6690]  ? create_io_thread+0x1e0/0x1e0
[  282.532469][ T6690]  ? file_end_write+0x1b0/0x1b0
[  282.537163][ T6690]  __x64_sys_clone3+0x375/0x3a0
[  282.541843][ T6690]  ? __ia32_sys_clone+0x300/0x300
[  282.546712][ T6690]  ? ksys_write+0x25f/0x2c0
[  282.551055][ T6690]  ? debug_smp_processor_id+0x17/0x20
[  282.556428][ T6690]  do_syscall_64+0x44/0xd0
[  282.560684][ T6690]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  282.566409][ T6690] RIP: 0033:0x7f8e237f0639
[  282.570672][ T6690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  282.590194][ T6690] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  282.598443][ T6690] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  282.606242][ T6690] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  282.614065][ T6690] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
07:00:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 79)

07:00:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf0e10e1b000000, 0x0, 0x0}, 0x58)

07:00:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2000000, 0x0, 0x0}, 0x58)

07:00:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x500, 0x0, 0x0}, 0x58)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000f000400953bc61ab70f67d94ffc2aa4d7b300000000606e070000002d84bbd147f0e0a60c22999702863469901094617c514709eefaaf481bc3c97446e75f1b00000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:26 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xe7407aadf3f0e545)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000f00)=0xc)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000001700)=0x4)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000f40)={{{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@local}, 0x0, @in=@empty}}, &(0x7f0000000440)=0xfffffffffffffdfc)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001080), 0x2, 0x0)
r8 = pidfd_open(0xffffffffffffffff, 0x0)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r10, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r11 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000010c0), 0x200, 0x0)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r12, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r13 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r13, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r14 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r15 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r15, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r16 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001100), 0x802, 0x0)
r17 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000080)="ad00697bacf5587c60398d3a2866a850121c1a75cef1e6ff35b32f8282a601672da95bdea2d6e28e50c491c3baa090dc3df57e5cb385efbab616b8d952fd60844abe3520c3c32c2fe1789c82cdacd969958afd73c0d3de823e33fe1997e028b7bfaf3a6645d9d72cb8693f6a51c5be6350a594fcc726f4454b21dfb2b3fad1507174ac6a818f57802005f0424ee4e4797e336efbaa18d0c138f16aa549ca4006d8b1dd1fae3c8daa1a98cd30cf1f5044d85c22eb343d19cbfeb721dcce9bc06880290e2d47", 0xc5}, {&(0x7f0000000180)="545fc19d2fc2ec433a0d553f856e2418c4dab9df68afcca01641caef6bf95a884bffce428dcb5c267b385b94dde4c483103b3f9e28825caf4b9896354ebb0bd852baf6b985ce8954e4f1db499314dcf014e267581f71698ac4", 0x59}, {&(0x7f0000000200)="2a87e23d73334ccae5e325f8e963b27f21a3d4fe445130458cece1f4829c4b4a3e0f6f71c21510eb4e27f71823921dea669cfebe70658ceee2c5068a", 0x3c}, {&(0x7f0000000240)="ec62e7e568c5cd5cf6668bb2297b2763bcb2ac5ce8bed583a4f0d22010270aa77db48dc362315d14f9c1adfabe2b423d011ff279dc6be18acd6dec6abc6e8329fb4407512a2918f4376f50c14041835d852f00472258feaa3d10db93385830e063ad4e2d90118b6f7439a3efc686470a966c919510841364d36a38252963a142c4ce3e260e3ceef11249302c1b038a5880696ec6a3", 0x95}, {&(0x7f0000000300)="bfefebd9384e5cb101632869f9e0fe4561f2ad5916765bf8b509814ec850351c0d700ce604026cccc081c8dd795224a616e326b74e4e42931327370b8c6981d5ba21dbbe8dafa42f60657584a61c2138fd341ae50785b74136c4a46a93df65a1a7febfeca4198c0dcae0bf195ef7fea0b4548b1519a6365d63", 0x79}], 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="100000020000007b8acdd56a9ea21e913061d14b21f705bf7030b8fb47052cb0f5efdf1d691dcad196c4455955bc3fc6d32950ccffde8e504a7c4cfa194e740a9717714908b42edb674c4de3fb58bacb18a81add234babd3b5bd5bfae5a219ac2f5a9e5031c2d0abbbcab3afc6ada09dd4a53b5568a9a4fd4ac54c42fd2acee5b49a4db38b1ec874c1c75e80f0f9478b", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="00000000100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00'], 0x88, 0x4}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000580)="e140e578d2fcffc26892e076ec3732706d9327336a4437f821875e97169c55bdf950942b3bea8c850d2109d2eba153908a37008014b95ec5f409c18bd3fb9b7bf85442e7b93e2ef6703dd41a4e8d65e8e0cedb7fcb9e977d3fd8ad9354c20b0dd7c2f535417c1cf8588762529899c51db64ec6508412436143090548756a7ba5016aa5d745d6d067d3991e574f0ec01267ccee123ea1fd3cc0be9fa978df17", 0x9f}], 0x1, &(0x7f0000000940)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, r0, r0]}}], 0x68, 0x4004880}}, {{&(0x7f00000009c0)=@file={0x1, '.\x00'}, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000a40)="5c6cd5eb4cd800cb312fe15fda292d4051af714c8b82dce456c051e20f0892e29d9bd3983fbd1c363450dd3b52b650c544c1b72c920f457ad3594a4d3373ca029512c0d824e03c1ddb70fbab7905a32a277f7850e942cb199d2993df53a4ba34b5d17fe27d5f0d999d91244a4571e1674e396503d115916c03ef908ba6fa52320a9bd409f88fa8421e3ddbeeaf99472644714b87e0915da508a3ee294076f4f6b122250685a355f56d1ee0dfe92cdd40bbe547c4412906f4e3e86e99ce07ea511e0bd3", 0xc3}, {&(0x7f0000000b40)="2683b408f634ae8c745614006f5e57e8b717cdd6a2c985740f653d9d79bb2429946144c30b5499b7e1a52944cad4de4fad06634739b70bc8fa5803059bbbfb5af408e475d1f384de4063abe3e273d80ca71952e976b986fc2d365fb1b45fd6a311343e226f37796b3dcb0e66ee1276345d04e2e36cd4a927129b547c892dca9c726aae5a14f705ca8abacd9147f6a46d4301f704a11f7ea4cff5bb4ce048fadbe3ccaf477b64d1ec5ea73ea168a2cee65798a0c53b5b2792bd01b79440b357a0ff81d8355e1ca3e0b8f8d1b5ca44e25cfdf289b83b49c6fcd0011ad57f6910498431f53b2926a47b03d3a50a6191773db6a9", 0xf2}, {&(0x7f0000000c40)}, {&(0x7f0000000c80)="0af711faba85faa315d156455df48aa950efd036a6d013a637f2f4202c9e3eb03af950888a1b83ad775c3f209641adda0dd26ea835fd179dd26a520d426e57c820aa9bed10981ce70a4e3dd5537b62113d8817913fff13779304f52d749b58b5cd24b066a5c5cab6bd38f0a0ea1b39b8a1a6980490b64a62801bdfc1e3d7b6aee22c4a3bd3b5182c77718d0086881081eccb83445420108ab5c2c7fcc2d5babe8ee726a27d94cea5387430d8637b49abe521a42d996ccbd6c0398d002a8a6d63cefc421239a85feb1c8ce87d008e11775701c36ec0d3c29c1ad2db2283918f", 0xdf}, {&(0x7f0000000d80)="0a928eef251e7ad9628464b54f6927f781922569acdc63215b891a7dcb5eafb9a525ecdff184d6543bf1ffd88a4146593177fe8c9b8c1018c1e7d104efdddb5a8aa43f9f60bce9552fd00edc3886", 0x4e}], 0x5, &(0x7f0000001140)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r2, r0, r1]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r3}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r4, r5}}}, @rights={{0x20, 0x1, 0x1, [r6, r7, r8, r9]}}, @rights={{0x2c, 0x1, 0x1, [r10, 0xffffffffffffffff, r0, r11, r12, r13, r1]}}, @rights={{0x20, 0x1, 0x1, [r14, r15, r16, r17]}}], 0x100, 0x84}}], 0x3, 0x40)
r18 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r18, 0x0, 0x0)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000f000400953bc61ab70f67d94ffc2aa4d7b300000000606e070000002d84bbd147f0e0a60c22999702863469901094617c514709eefaaf481bc3c97446e75f1b00000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async, rerun: 32)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
readv(r1, 0x0, 0x0)

[  282.621865][ T6690] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  282.629678][ T6690] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  282.637511][ T6690]  </TASK>
07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000f000400953bc61ab70f67d94ffc2aa4d7b300000000606e070000002d84bbd147f0e0a60c22999702863469901094617c514709eefaaf481bc3c97446e75f1b00000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000f000400953bc61ab70f67d94ffc2aa4d7b300000000606e070000002d84bbd147f0e0a60c22999702863469901094617c514709eefaaf481bc3c97446e75f1b00000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)

[  282.678927][   T30] audit: type=1400 audit(1668668426.030:210): avc:  denied  { read write } for  pid=6731 comm="syz-executor.4" name="uhid" dev="devtmpfs" ino=170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
07:00:26 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xe7407aadf3f0e545) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async, rerun: 64)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000f00)=0xc) (rerun: 64)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000001700)=0x4) (async)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000f40)={{{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@local}, 0x0, @in=@empty}}, &(0x7f0000000440)=0xfffffffffffffdfc) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001080), 0x2, 0x0) (async, rerun: 32)
r8 = pidfd_open(0xffffffffffffffff, 0x0) (async, rerun: 32)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r10, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r11 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000010c0), 0x200, 0x0) (async)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r12, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r13 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r13, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r14 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async, rerun: 32)
r15 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
setsockopt$bt_BT_VOICE(r15, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r16 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001100), 0x802, 0x0) (async)
r17 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000080)="ad00697bacf5587c60398d3a2866a850121c1a75cef1e6ff35b32f8282a601672da95bdea2d6e28e50c491c3baa090dc3df57e5cb385efbab616b8d952fd60844abe3520c3c32c2fe1789c82cdacd969958afd73c0d3de823e33fe1997e028b7bfaf3a6645d9d72cb8693f6a51c5be6350a594fcc726f4454b21dfb2b3fad1507174ac6a818f57802005f0424ee4e4797e336efbaa18d0c138f16aa549ca4006d8b1dd1fae3c8daa1a98cd30cf1f5044d85c22eb343d19cbfeb721dcce9bc06880290e2d47", 0xc5}, {&(0x7f0000000180)="545fc19d2fc2ec433a0d553f856e2418c4dab9df68afcca01641caef6bf95a884bffce428dcb5c267b385b94dde4c483103b3f9e28825caf4b9896354ebb0bd852baf6b985ce8954e4f1db499314dcf014e267581f71698ac4", 0x59}, {&(0x7f0000000200)="2a87e23d73334ccae5e325f8e963b27f21a3d4fe445130458cece1f4829c4b4a3e0f6f71c21510eb4e27f71823921dea669cfebe70658ceee2c5068a", 0x3c}, {&(0x7f0000000240)="ec62e7e568c5cd5cf6668bb2297b2763bcb2ac5ce8bed583a4f0d22010270aa77db48dc362315d14f9c1adfabe2b423d011ff279dc6be18acd6dec6abc6e8329fb4407512a2918f4376f50c14041835d852f00472258feaa3d10db93385830e063ad4e2d90118b6f7439a3efc686470a966c919510841364d36a38252963a142c4ce3e260e3ceef11249302c1b038a5880696ec6a3", 0x95}, {&(0x7f0000000300)="bfefebd9384e5cb101632869f9e0fe4561f2ad5916765bf8b509814ec850351c0d700ce604026cccc081c8dd795224a616e326b74e4e42931327370b8c6981d5ba21dbbe8dafa42f60657584a61c2138fd341ae50785b74136c4a46a93df65a1a7febfeca4198c0dcae0bf195ef7fea0b4548b1519a6365d63", 0x79}], 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="100000020000007b8acdd56a9ea21e913061d14b21f705bf7030b8fb47052cb0f5efdf1d691dcad196c4455955bc3fc6d32950ccffde8e504a7c4cfa194e740a9717714908b42edb674c4de3fb58bacb18a81add234babd3b5bd5bfae5a219ac2f5a9e5031c2d0abbbcab3afc6ada09dd4a53b5568a9a4fd4ac54c42fd2acee5b49a4db38b1ec874c1c75e80f0f9478b", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="00000000100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00'], 0x88, 0x4}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000580)="e140e578d2fcffc26892e076ec3732706d9327336a4437f821875e97169c55bdf950942b3bea8c850d2109d2eba153908a37008014b95ec5f409c18bd3fb9b7bf85442e7b93e2ef6703dd41a4e8d65e8e0cedb7fcb9e977d3fd8ad9354c20b0dd7c2f535417c1cf8588762529899c51db64ec6508412436143090548756a7ba5016aa5d745d6d067d3991e574f0ec01267ccee123ea1fd3cc0be9fa978df17", 0x9f}], 0x1, &(0x7f0000000940)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, r0, r0]}}], 0x68, 0x4004880}}, {{&(0x7f00000009c0)=@file={0x1, '.\x00'}, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000a40)="5c6cd5eb4cd800cb312fe15fda292d4051af714c8b82dce456c051e20f0892e29d9bd3983fbd1c363450dd3b52b650c544c1b72c920f457ad3594a4d3373ca029512c0d824e03c1ddb70fbab7905a32a277f7850e942cb199d2993df53a4ba34b5d17fe27d5f0d999d91244a4571e1674e396503d115916c03ef908ba6fa52320a9bd409f88fa8421e3ddbeeaf99472644714b87e0915da508a3ee294076f4f6b122250685a355f56d1ee0dfe92cdd40bbe547c4412906f4e3e86e99ce07ea511e0bd3", 0xc3}, {&(0x7f0000000b40)="2683b408f634ae8c745614006f5e57e8b717cdd6a2c985740f653d9d79bb2429946144c30b5499b7e1a52944cad4de4fad06634739b70bc8fa5803059bbbfb5af408e475d1f384de4063abe3e273d80ca71952e976b986fc2d365fb1b45fd6a311343e226f37796b3dcb0e66ee1276345d04e2e36cd4a927129b547c892dca9c726aae5a14f705ca8abacd9147f6a46d4301f704a11f7ea4cff5bb4ce048fadbe3ccaf477b64d1ec5ea73ea168a2cee65798a0c53b5b2792bd01b79440b357a0ff81d8355e1ca3e0b8f8d1b5ca44e25cfdf289b83b49c6fcd0011ad57f6910498431f53b2926a47b03d3a50a6191773db6a9", 0xf2}, {&(0x7f0000000c40)}, {&(0x7f0000000c80)="0af711faba85faa315d156455df48aa950efd036a6d013a637f2f4202c9e3eb03af950888a1b83ad775c3f209641adda0dd26ea835fd179dd26a520d426e57c820aa9bed10981ce70a4e3dd5537b62113d8817913fff13779304f52d749b58b5cd24b066a5c5cab6bd38f0a0ea1b39b8a1a6980490b64a62801bdfc1e3d7b6aee22c4a3bd3b5182c77718d0086881081eccb83445420108ab5c2c7fcc2d5babe8ee726a27d94cea5387430d8637b49abe521a42d996ccbd6c0398d002a8a6d63cefc421239a85feb1c8ce87d008e11775701c36ec0d3c29c1ad2db2283918f", 0xdf}, {&(0x7f0000000d80)="0a928eef251e7ad9628464b54f6927f781922569acdc63215b891a7dcb5eafb9a525ecdff184d6543bf1ffd88a4146593177fe8c9b8c1018c1e7d104efdddb5a8aa43f9f60bce9552fd00edc3886", 0x4e}], 0x5, &(0x7f0000001140)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r2, r0, r1]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r3}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r4, r5}}}, @rights={{0x20, 0x1, 0x1, [r6, r7, r8, r9]}}, @rights={{0x2c, 0x1, 0x1, [r10, 0xffffffffffffffff, r0, r11, r12, r13, r1]}}, @rights={{0x20, 0x1, 0x1, [r14, r15, r16, r17]}}], 0x100, 0x84}}], 0x3, 0x40) (async)
r18 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r18, 0x0, 0x0)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000000c0)=0x60, 0x2)
r2 = syz_io_uring_complete(0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x0, 0x81, 0x10, 0x7}, {0x0, 0x40, 0x0, 0x6}]}, 0x10)
readv(r1, 0x0, 0x0)

07:00:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3000000, 0x0, 0x0}, 0x58)

[  282.722839][   T30] audit: type=1400 audit(1668668426.060:211): avc:  denied  { open } for  pid=6731 comm="syz-executor.4" path="/dev/uhid" dev="devtmpfs" ino=170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  282.761436][ T6755] FAULT_INJECTION: forcing a failure.
07:00:26 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xe7407aadf3f0e545) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000f00)=0xc) (async)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000001700)=0x4)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000f40)={{{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@local}, 0x0, @in=@empty}}, &(0x7f0000000440)=0xfffffffffffffdfc) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001080), 0x2, 0x0) (async)
r8 = pidfd_open(0xffffffffffffffff, 0x0) (async)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r10, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r11 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000010c0), 0x200, 0x0)
r12 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r12, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r13 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r13, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r14 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r15 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r15, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r16 = openat$uhid(0xffffffffffffff9c, &(0x7f0000001100), 0x802, 0x0)
r17 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000080)="ad00697bacf5587c60398d3a2866a850121c1a75cef1e6ff35b32f8282a601672da95bdea2d6e28e50c491c3baa090dc3df57e5cb385efbab616b8d952fd60844abe3520c3c32c2fe1789c82cdacd969958afd73c0d3de823e33fe1997e028b7bfaf3a6645d9d72cb8693f6a51c5be6350a594fcc726f4454b21dfb2b3fad1507174ac6a818f57802005f0424ee4e4797e336efbaa18d0c138f16aa549ca4006d8b1dd1fae3c8daa1a98cd30cf1f5044d85c22eb343d19cbfeb721dcce9bc06880290e2d47", 0xc5}, {&(0x7f0000000180)="545fc19d2fc2ec433a0d553f856e2418c4dab9df68afcca01641caef6bf95a884bffce428dcb5c267b385b94dde4c483103b3f9e28825caf4b9896354ebb0bd852baf6b985ce8954e4f1db499314dcf014e267581f71698ac4", 0x59}, {&(0x7f0000000200)="2a87e23d73334ccae5e325f8e963b27f21a3d4fe445130458cece1f4829c4b4a3e0f6f71c21510eb4e27f71823921dea669cfebe70658ceee2c5068a", 0x3c}, {&(0x7f0000000240)="ec62e7e568c5cd5cf6668bb2297b2763bcb2ac5ce8bed583a4f0d22010270aa77db48dc362315d14f9c1adfabe2b423d011ff279dc6be18acd6dec6abc6e8329fb4407512a2918f4376f50c14041835d852f00472258feaa3d10db93385830e063ad4e2d90118b6f7439a3efc686470a966c919510841364d36a38252963a142c4ce3e260e3ceef11249302c1b038a5880696ec6a3", 0x95}, {&(0x7f0000000300)="bfefebd9384e5cb101632869f9e0fe4561f2ad5916765bf8b509814ec850351c0d700ce604026cccc081c8dd795224a616e326b74e4e42931327370b8c6981d5ba21dbbe8dafa42f60657584a61c2138fd341ae50785b74136c4a46a93df65a1a7febfeca4198c0dcae0bf195ef7fea0b4548b1519a6365d63", 0x79}], 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="100000020000007b8acdd56a9ea21e913061d14b21f705bf7030b8fb47052cb0f5efdf1d691dcad196c4455955bc3fc6d32950ccffde8e504a7c4cfa194e740a9717714908b42edb674c4de3fb58bacb18a81add234babd3b5bd5bfae5a219ac2f5a9e5031c2d0abbbcab3afc6ada09dd4a53b5568a9a4fd4ac54c42fd2acee5b49a4db38b1ec874c1c75e80f0f9478b", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="00000000100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00'], 0x88, 0x4}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000580)="e140e578d2fcffc26892e076ec3732706d9327336a4437f821875e97169c55bdf950942b3bea8c850d2109d2eba153908a37008014b95ec5f409c18bd3fb9b7bf85442e7b93e2ef6703dd41a4e8d65e8e0cedb7fcb9e977d3fd8ad9354c20b0dd7c2f535417c1cf8588762529899c51db64ec6508412436143090548756a7ba5016aa5d745d6d067d3991e574f0ec01267ccee123ea1fd3cc0be9fa978df17", 0x9f}], 0x1, &(0x7f0000000940)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, r0, r0]}}], 0x68, 0x4004880}}, {{&(0x7f00000009c0)=@file={0x1, '.\x00'}, 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000a40)="5c6cd5eb4cd800cb312fe15fda292d4051af714c8b82dce456c051e20f0892e29d9bd3983fbd1c363450dd3b52b650c544c1b72c920f457ad3594a4d3373ca029512c0d824e03c1ddb70fbab7905a32a277f7850e942cb199d2993df53a4ba34b5d17fe27d5f0d999d91244a4571e1674e396503d115916c03ef908ba6fa52320a9bd409f88fa8421e3ddbeeaf99472644714b87e0915da508a3ee294076f4f6b122250685a355f56d1ee0dfe92cdd40bbe547c4412906f4e3e86e99ce07ea511e0bd3", 0xc3}, {&(0x7f0000000b40)="2683b408f634ae8c745614006f5e57e8b717cdd6a2c985740f653d9d79bb2429946144c30b5499b7e1a52944cad4de4fad06634739b70bc8fa5803059bbbfb5af408e475d1f384de4063abe3e273d80ca71952e976b986fc2d365fb1b45fd6a311343e226f37796b3dcb0e66ee1276345d04e2e36cd4a927129b547c892dca9c726aae5a14f705ca8abacd9147f6a46d4301f704a11f7ea4cff5bb4ce048fadbe3ccaf477b64d1ec5ea73ea168a2cee65798a0c53b5b2792bd01b79440b357a0ff81d8355e1ca3e0b8f8d1b5ca44e25cfdf289b83b49c6fcd0011ad57f6910498431f53b2926a47b03d3a50a6191773db6a9", 0xf2}, {&(0x7f0000000c40)}, {&(0x7f0000000c80)="0af711faba85faa315d156455df48aa950efd036a6d013a637f2f4202c9e3eb03af950888a1b83ad775c3f209641adda0dd26ea835fd179dd26a520d426e57c820aa9bed10981ce70a4e3dd5537b62113d8817913fff13779304f52d749b58b5cd24b066a5c5cab6bd38f0a0ea1b39b8a1a6980490b64a62801bdfc1e3d7b6aee22c4a3bd3b5182c77718d0086881081eccb83445420108ab5c2c7fcc2d5babe8ee726a27d94cea5387430d8637b49abe521a42d996ccbd6c0398d002a8a6d63cefc421239a85feb1c8ce87d008e11775701c36ec0d3c29c1ad2db2283918f", 0xdf}, {&(0x7f0000000d80)="0a928eef251e7ad9628464b54f6927f781922569acdc63215b891a7dcb5eafb9a525ecdff184d6543bf1ffd88a4146593177fe8c9b8c1018c1e7d104efdddb5a8aa43f9f60bce9552fd00edc3886", 0x4e}], 0x5, &(0x7f0000001140)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r2, r0, r1]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r3}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r4, r5}}}, @rights={{0x20, 0x1, 0x1, [r6, r7, r8, r9]}}, @rights={{0x2c, 0x1, 0x1, [r10, 0xffffffffffffffff, r0, r11, r12, r13, r1]}}, @rights={{0x20, 0x1, 0x1, [r14, r15, r16, r17]}}], 0x100, 0x84}}], 0x3, 0x40) (async)
r18 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r18, 0x0, 0x0)

[  282.761436][ T6755] name failslab, interval 1, probability 0, space 0, times 0
[  282.786743][ T6755] CPU: 0 PID: 6755 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  282.796741][ T6755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  282.806630][ T6755] Call Trace:
[  282.809763][ T6755]  <TASK>
[  282.812537][ T6755]  dump_stack_lvl+0x151/0x1b7
[  282.817045][ T6755]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  282.822340][ T6755]  dump_stack+0x15/0x17
[  282.826330][ T6755]  should_fail+0x3c0/0x510
[  282.830585][ T6755]  __should_failslab+0x9f/0xe0
[  282.835183][ T6755]  should_failslab+0x9/0x20
[  282.839524][ T6755]  kmem_cache_alloc+0x4f/0x2f0
[  282.844132][ T6755]  ? vm_area_dup+0x26/0x1d0
[  282.848464][ T6755]  vm_area_dup+0x26/0x1d0
[  282.852630][ T6755]  dup_mmap+0x6b8/0xea0
[  282.856625][ T6755]  ? __delayed_free_task+0x20/0x20
[  282.861569][ T6755]  ? mm_init+0x807/0x960
[  282.865649][ T6755]  dup_mm+0x91/0x330
[  282.869380][ T6755]  copy_mm+0x108/0x1b0
[  282.873286][ T6755]  copy_process+0x1295/0x3250
[  282.877803][ T6755]  ? check_stack_object+0xf7/0x130
[  282.882748][ T6755]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  282.887693][ T6755]  ? copy_clone_args_from_user+0x6cf/0x790
[  282.893338][ T6755]  kernel_clone+0x22d/0x990
[  282.897677][ T6755]  ? dup_mmap+0xea0/0xea0
[  282.901844][ T6755]  ? create_io_thread+0x1e0/0x1e0
[  282.906702][ T6755]  ? file_end_write+0x1b0/0x1b0
[  282.911389][ T6755]  __x64_sys_clone3+0x375/0x3a0
[  282.916076][ T6755]  ? __ia32_sys_clone+0x300/0x300
[  282.920938][ T6755]  ? ksys_write+0x25f/0x2c0
[  282.925279][ T6755]  ? debug_smp_processor_id+0x17/0x20
[  282.930486][ T6755]  do_syscall_64+0x44/0xd0
[  282.934750][ T6755]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  282.940472][ T6755] RIP: 0033:0x7f8e237f0639
[  282.944719][ T6755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  282.964163][ T6755] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 80)

07:00:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x700, 0x0, 0x0}, 0x58)

07:00:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf0ff1f00000000, 0x0, 0x0}, 0x58)

[  282.972404][ T6755] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  282.980218][ T6755] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  282.988032][ T6755] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  282.995840][ T6755] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  283.003671][ T6755] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  283.011465][ T6755]  </TASK>
07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000000c0)=0x60, 0x2)
r2 = syz_io_uring_complete(0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x0, 0x81, 0x10, 0x7}, {0x0, 0x40, 0x0, 0x6}]}, 0x10)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000000c0)=0x60, 0x2) (async)
syz_io_uring_complete(0x0) (async)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x0, 0x81, 0x10, 0x7}, {0x0, 0x40, 0x0, 0x6}]}, 0x10) (async)
readv(r1, 0x0, 0x0) (async)

07:00:26 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)=@gettclass={0x24, 0x2a, 0x400, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0xfff3, 0x9}, {0xd, 0xe}, {0xfff3, 0x10}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x2000001)
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000000000)={0x0, 0x2})

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000000c0)=0x60, 0x2) (async)
r2 = syz_io_uring_complete(0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x0, 0x81, 0x10, 0x7}, {0x0, 0x40, 0x0, 0x6}]}, 0x10)
readv(r1, 0x0, 0x0)

07:00:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000000, 0x0, 0x0}, 0x58)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0xc)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:26 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)=@gettclass={0x24, 0x2a, 0x400, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0xfff3, 0x9}, {0xd, 0xe}, {0xfff3, 0x10}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x2000001) (async)
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000000000)={0x0, 0x2})

[  283.061470][ T6776] __nla_validate_parse: 13 callbacks suppressed
[  283.061486][ T6776] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
07:00:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x900, 0x0, 0x0}, 0x58)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0xc)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

[  283.124124][ T6778] FAULT_INJECTION: forcing a failure.
[  283.124124][ T6778] name failslab, interval 1, probability 0, space 0, times 0
[  283.145832][ T6778] CPU: 0 PID: 6778 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  283.155827][ T6778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  283.165726][ T6778] Call Trace:
[  283.168841][ T6778]  <TASK>
07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0xc)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

[  283.171617][ T6778]  dump_stack_lvl+0x151/0x1b7
[  283.172070][ T6804] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  283.176397][ T6778]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  283.191160][ T6778]  ? do_syscall_64+0x44/0xd0
[  283.195588][ T6778]  dump_stack+0x15/0x17
[  283.199572][ T6778]  should_fail+0x3c0/0x510
[  283.203827][ T6778]  __should_failslab+0x9f/0xe0
[  283.208774][ T6778]  should_failslab+0x9/0x20
[  283.213116][ T6778]  kmem_cache_alloc+0x4f/0x2f0
[  283.217807][ T6778]  ? anon_vma_clone+0xa1/0x4f0
[  283.222399][ T6778]  anon_vma_clone+0xa1/0x4f0
[  283.226825][ T6778]  anon_vma_fork+0x91/0x4f0
[  283.231158][ T6778]  ? anon_vma_name+0x43/0x70
[  283.235592][ T6778]  dup_mmap+0x750/0xea0
[  283.239585][ T6778]  ? __delayed_free_task+0x20/0x20
[  283.244558][ T6778]  ? mm_init+0x807/0x960
[  283.248611][ T6778]  dup_mm+0x91/0x330
[  283.252334][ T6778]  copy_mm+0x108/0x1b0
[  283.256242][ T6778]  copy_process+0x1295/0x3250
[  283.260759][ T6778]  ? check_stack_object+0xf7/0x130
[  283.265788][ T6778]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  283.270735][ T6778]  ? copy_clone_args_from_user+0x6cf/0x790
[  283.276376][ T6778]  kernel_clone+0x22d/0x990
[  283.280716][ T6778]  ? dup_mmap+0xea0/0xea0
[  283.284880][ T6778]  ? create_io_thread+0x1e0/0x1e0
[  283.289752][ T6778]  ? file_end_write+0x1b0/0x1b0
[  283.294430][ T6778]  __x64_sys_clone3+0x375/0x3a0
[  283.299115][ T6778]  ? __ia32_sys_clone+0x300/0x300
[  283.303976][ T6778]  ? ksys_write+0x25f/0x2c0
[  283.308316][ T6778]  ? debug_smp_processor_id+0x17/0x20
[  283.313530][ T6778]  do_syscall_64+0x44/0xd0
[  283.317789][ T6778]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  283.323505][ T6778] RIP: 0033:0x7f8e237f0639
[  283.327759][ T6778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  283.347200][ T6778] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  283.355444][ T6778] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  283.363274][ T6778] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
07:00:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 81)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000008000000000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = fcntl$dupfd(r0, 0x406, r0)
dup3(r0, r0, 0x80000)
fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv6_getnetconf={0x24, 0x52, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x5}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x11)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58)

07:00:26 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)=@gettclass={0x24, 0x2a, 0x400, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0xfff3, 0x9}, {0xd, 0xe}, {0xfff3, 0x10}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x2000001)
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000000000)={0x0, 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)=@gettclass={0x24, 0x2a, 0x400, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0xfff3, 0x9}, {0xd, 0xe}, {0xfff3, 0x10}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x2000001) (async)
ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000000000)={0x0, 0x2}) (async)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000008000000000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = fcntl$dupfd(r0, 0x406, r0)
dup3(r0, r0, 0x80000) (async)
fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv6_getnetconf={0x24, 0x52, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x5}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x11) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

[  283.371153][ T6778] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  283.378969][ T6778] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  283.386872][ T6778] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  283.394682][ T6778]  </TASK>
07:00:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x7000000, 0x0, 0x0}, 0x58)

07:00:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf00, 0x0, 0x0}, 0x58)

07:00:26 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000008000000000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r1 = fcntl$dupfd(r0, 0x406, r0)
dup3(r0, r0, 0x80000) (async, rerun: 64)
fcntl$dupfd(r1, 0x0, r1) (async, rerun: 64)
sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv6_getnetconf={0x24, 0x52, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x5}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x11) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:26 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00', <r5=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl0\x00', &(0x7f0000000300)={'syztnl1\x00', <r6=>0x0, 0x40, 0x20, 0x5, 0x8, {{0x3a, 0x4, 0x2, 0x1e, 0xe8, 0x68, 0x0, 0x3, 0x4, 0x0, @multicast2, @private=0xa010102, {[@timestamp_addr={0x44, 0x1c, 0x9f, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x41}, 0x7f}, {@multicast1, 0x3}, {@empty, 0x20}]}, @timestamp={0x44, 0x14, 0xc7, 0x0, 0x8, [0x10001, 0x4, 0xfff, 0x4]}, @noop, @timestamp_addr={0x44, 0x14, 0xe7, 0x1, 0x2, [{@rand_addr=0x64010101, 0x3ff}, {@dev={0xac, 0x14, 0x14, 0x26}}]}, @timestamp_addr={0x44, 0x2c, 0xce, 0x1, 0x9, [{@empty, 0xffff7637}, {@empty, 0x4}, {@remote, 0x8}, {@multicast2, 0x7}, {@local, 0x5}]}, @cipso={0x86, 0x60, 0xffffffffffffffff, [{0x0, 0xa, "1e15077261696f49"}, {0x5, 0x2}, {0x2, 0xe, "86f28804ffc38b4791b04f8a"}, {0x6, 0xa, "0e20375fce36c376"}, {0x0, 0x3, "ba"}, {0x7, 0x3, "a8"}, {0x1, 0x10, "02007398d37590ad0c00e6897118"}, {0x1, 0x11, "4e0c04a213687fc0d37ff2b5856e4a"}, {0x0, 0x3, '0'}, {0x1, 0xc, "4591e4588d2815c091e2"}]}]}}}}})
sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x318, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [{{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3f}}}]}}, {{0x8, 0x1, r4}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x230, 0x2, 0x0, 0x1, [{0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x7, 0x40, 0x8, 0x1f}, {0x59, 0x81, 0x0, 0x2}, {0x401, 0x0, 0x5}]}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffc01}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}]}}]}, 0x318}, 0x1, 0x0, 0x0, 0x20000040}, 0x8000)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r7}, 0x10)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r10 = socket$inet6(0xa, 0x4, 0x2)
dup2(r8, r10)
readv(r9, 0x0, 0x0)

[  283.443771][ T6820] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
07:00:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58)

07:00:26 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000380)={&(0x7f0000000280), 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, r3, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8e, 0x54}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}]}, 0x28}, 0x1, 0x0, 0x0, 0xc001}, 0x1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
write$binfmt_misc(r9, &(0x7f0000000600)={'syz0', "5f0070237442855a9d98c21627d7c8c4ae53c2b69934db3edf69d7de8e0ba182d9f52e7f5242ee44685a49e0cf429baedab433dbd58f8ab9f01305f48f6893051a127fd4c8fd2523d81b9f6dd237d7c51ffe6f775c9ac3ff62b8591b6d"}, 0x61)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
r10 = openat$cgroup_ro(r4, &(0x7f0000000500)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xd, 0x4, &(0x7f00000003c0)=@raw=[@btf_id={0x18, 0x9, 0x3, 0x0, 0x5}, @map_fd={0x18, 0xb, 0x1, 0x0, r4}], &(0x7f0000000400)='syzkaller\x00', 0x6, 0xc, &(0x7f0000000440)=""/12, 0x41100, 0x0, '\x00', 0x0, 0x2, r7, 0x8, &(0x7f0000000480)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xd, 0x4, 0x80000001}, 0x10, 0xffffffffffffffff, r6, 0x0, &(0x7f0000000540)=[r10, r1]}, 0x80)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2)
getsockopt$bt_sco_SCO_CONNINFO(r11, 0x11, 0x2, &(0x7f00000007c0)=""/157, &(0x7f0000000780)=0x9d)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xffff}, [@alu={0x7, 0x0, 0x1, 0xa, 0x9, 0xffffffffffffffc0, 0x8}]}, &(0x7f0000000040)='GPL\x00', 0x47, 0x55, &(0x7f0000000080)=""/85, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x0, 0x1, 0x4, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r1, r4, r6]}, 0x80)

[  283.496720][ T6857] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  283.522478][ T6862] FAULT_INJECTION: forcing a failure.
[  283.522478][ T6862] name failslab, interval 1, probability 0, space 0, times 0
07:00:26 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00', <r5=>0x0}) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl0\x00', &(0x7f0000000300)={'syztnl1\x00', <r6=>0x0, 0x40, 0x20, 0x5, 0x8, {{0x3a, 0x4, 0x2, 0x1e, 0xe8, 0x68, 0x0, 0x3, 0x4, 0x0, @multicast2, @private=0xa010102, {[@timestamp_addr={0x44, 0x1c, 0x9f, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x41}, 0x7f}, {@multicast1, 0x3}, {@empty, 0x20}]}, @timestamp={0x44, 0x14, 0xc7, 0x0, 0x8, [0x10001, 0x4, 0xfff, 0x4]}, @noop, @timestamp_addr={0x44, 0x14, 0xe7, 0x1, 0x2, [{@rand_addr=0x64010101, 0x3ff}, {@dev={0xac, 0x14, 0x14, 0x26}}]}, @timestamp_addr={0x44, 0x2c, 0xce, 0x1, 0x9, [{@empty, 0xffff7637}, {@empty, 0x4}, {@remote, 0x8}, {@multicast2, 0x7}, {@local, 0x5}]}, @cipso={0x86, 0x60, 0xffffffffffffffff, [{0x0, 0xa, "1e15077261696f49"}, {0x5, 0x2}, {0x2, 0xe, "86f28804ffc38b4791b04f8a"}, {0x6, 0xa, "0e20375fce36c376"}, {0x0, 0x3, "ba"}, {0x7, 0x3, "a8"}, {0x1, 0x10, "02007398d37590ad0c00e6897118"}, {0x1, 0x11, "4e0c04a213687fc0d37ff2b5856e4a"}, {0x0, 0x3, '0'}, {0x1, 0xc, "4591e4588d2815c091e2"}]}]}}}}})
sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x318, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [{{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3f}}}]}}, {{0x8, 0x1, r4}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x230, 0x2, 0x0, 0x1, [{0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x7, 0x40, 0x8, 0x1f}, {0x59, 0x81, 0x0, 0x2}, {0x401, 0x0, 0x5}]}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffc01}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}]}}]}, 0x318}, 0x1, 0x0, 0x0, 0x20000040}, 0x8000)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r7}, 0x10)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r10 = socket$inet6(0xa, 0x4, 0x2)
dup2(r8, r10)
readv(r9, 0x0, 0x0)

[  283.556059][ T6862] CPU: 0 PID: 6862 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  283.566057][ T6862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  283.575970][ T6862] Call Trace:
[  283.579071][ T6862]  <TASK>
[  283.581850][ T6862]  dump_stack_lvl+0x151/0x1b7
[  283.586362][ T6862]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  283.591655][ T6862]  ? vma_interval_tree_augment_rotate+0x210/0x210
[  283.597908][ T6862]  dump_stack+0x15/0x17
[  283.601896][ T6862]  should_fail+0x3c0/0x510
[  283.606149][ T6862]  __should_failslab+0x9f/0xe0
[  283.610750][ T6862]  should_failslab+0x9/0x20
[  283.615089][ T6862]  kmem_cache_alloc+0x4f/0x2f0
[  283.619691][ T6862]  ? anon_vma_fork+0xf7/0x4f0
[  283.624203][ T6862]  anon_vma_fork+0xf7/0x4f0
[  283.628543][ T6862]  ? anon_vma_name+0x43/0x70
[  283.632971][ T6862]  dup_mmap+0x750/0xea0
[  283.636966][ T6862]  ? __delayed_free_task+0x20/0x20
[  283.641927][ T6862]  ? mm_init+0x807/0x960
[  283.646077][ T6862]  dup_mm+0x91/0x330
[  283.649903][ T6862]  copy_mm+0x108/0x1b0
[  283.653805][ T6862]  copy_process+0x1295/0x3250
[  283.658329][ T6862]  ? check_stack_object+0xf7/0x130
[  283.663265][ T6862]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  283.668207][ T6862]  ? copy_clone_args_from_user+0x6cf/0x790
[  283.673852][ T6862]  kernel_clone+0x22d/0x990
[  283.678189][ T6862]  ? dup_mmap+0xea0/0xea0
[  283.682358][ T6862]  ? create_io_thread+0x1e0/0x1e0
[  283.687303][ T6862]  ? file_end_write+0x1b0/0x1b0
[  283.691992][ T6862]  __x64_sys_clone3+0x375/0x3a0
[  283.696680][ T6862]  ? __ia32_sys_clone+0x300/0x300
[  283.701540][ T6862]  ? ksys_write+0x25f/0x2c0
[  283.705879][ T6862]  ? debug_smp_processor_id+0x17/0x20
[  283.711259][ T6862]  do_syscall_64+0x44/0xd0
[  283.715598][ T6862]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  283.721336][ T6862] RIP: 0033:0x7f8e237f0639
[  283.725580][ T6862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  283.745021][ T6862] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  283.753449][ T6862] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  283.761258][ T6862] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  283.769074][ T6862] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  283.776882][ T6862] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  283.784692][ T6862] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  283.792640][ T6862]  </TASK>
[  283.798127][ T6862] ==================================================================
[  283.806020][ T6862] BUG: KASAN: use-after-free in vm_area_free+0x7e/0x230
[  283.812787][ T6862] Write of size 4 at addr ffff88810e6aad10 by task syz-executor.2/6862
[  283.820858][ T6862] 
[  283.823033][ T6862] CPU: 1 PID: 6862 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  283.833013][ T6862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  283.842908][ T6862] Call Trace:
[  283.846030][ T6862]  <TASK>
[  283.848808][ T6862]  dump_stack_lvl+0x151/0x1b7
[  283.853322][ T6862]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  283.858615][ T6862]  ? panic+0x727/0x727
[  283.862524][ T6862]  ? slab_free_freelist_hook+0xc9/0x1a0
[  283.867902][ T6862]  print_address_description+0x87/0x3d0
[  283.873293][ T6862]  kasan_report+0x1a6/0x1f0
[  283.877624][ T6862]  ? vm_area_free+0x7e/0x230
[  283.882048][ T6862]  ? vm_area_free+0x7e/0x230
[  283.886476][ T6862]  kasan_check_range+0x2aa/0x2e0
[  283.891252][ T6862]  __kasan_check_write+0x14/0x20
[  283.896023][ T6862]  vm_area_free+0x7e/0x230
[  283.900280][ T6862]  dup_mmap+0xbcd/0xea0
[  283.904271][ T6862]  ? __delayed_free_task+0x20/0x20
[  283.909217][ T6862]  ? mm_init+0x807/0x960
[  283.913301][ T6862]  dup_mm+0x91/0x330
[  283.917028][ T6862]  copy_mm+0x108/0x1b0
[  283.920970][ T6862]  copy_process+0x1295/0x3250
[  283.925451][ T6862]  ? check_stack_object+0xf7/0x130
[  283.930396][ T6862]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  283.935343][ T6862]  ? copy_clone_args_from_user+0x6cf/0x790
[  283.940986][ T6862]  kernel_clone+0x22d/0x990
[  283.945332][ T6862]  ? dup_mmap+0xea0/0xea0
[  283.949490][ T6862]  ? create_io_thread+0x1e0/0x1e0
[  283.954350][ T6862]  ? file_end_write+0x1b0/0x1b0
[  283.959039][ T6862]  __x64_sys_clone3+0x375/0x3a0
[  283.963753][ T6862]  ? __ia32_sys_clone+0x300/0x300
[  283.968586][ T6862]  ? ksys_write+0x25f/0x2c0
[  283.972924][ T6862]  ? debug_smp_processor_id+0x17/0x20
[  283.978160][ T6862]  do_syscall_64+0x44/0xd0
[  283.982383][ T6862]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  283.988112][ T6862] RIP: 0033:0x7f8e237f0639
[  283.992372][ T6862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  284.011812][ T6862] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  284.020053][ T6862] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  284.027862][ T6862] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  284.035675][ T6862] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  284.043486][ T6862] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  284.051304][ T6862] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  284.059112][ T6862]  </TASK>
[  284.061973][ T6862] 
[  284.064145][ T6862] Allocated by task 6778:
[  284.068315][ T6862]  __kasan_slab_alloc+0xb2/0xe0
[  284.073009][ T6862]  kmem_cache_alloc+0x189/0x2f0
[  284.077684][ T6862]  vm_area_dup+0x26/0x1d0
[  284.081847][ T6862]  dup_mmap+0x6b8/0xea0
[  284.085842][ T6862]  dup_mm+0x91/0x330
[  284.089574][ T6862]  copy_mm+0x108/0x1b0
[  284.093478][ T6862]  copy_process+0x1295/0x3250
[  284.097998][ T6862]  kernel_clone+0x22d/0x990
[  284.102333][ T6862]  __x64_sys_clone3+0x375/0x3a0
[  284.107022][ T6862]  do_syscall_64+0x44/0xd0
[  284.111271][ T6862]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  284.117001][ T6862] 
[  284.119169][ T6862] Freed by task 6815:
[  284.122990][ T6862]  kasan_set_track+0x4c/0x70
[  284.127419][ T6862]  kasan_set_free_info+0x23/0x40
[  284.132197][ T6862]  ____kasan_slab_free+0x126/0x160
[  284.137138][ T6862]  __kasan_slab_free+0x11/0x20
[  284.141735][ T6862]  slab_free_freelist_hook+0xc9/0x1a0
[  284.147054][ T6862]  kmem_cache_free+0x11a/0x2e0
[  284.151734][ T6862]  vm_area_free+0x1ae/0x230
[  284.156182][ T6862]  exit_mmap+0x5dd/0x7a0
[  284.160240][ T6862]  __mmput+0x95/0x300
[  284.164060][ T6862]  mmput+0x50/0x60
[  284.167620][ T6862]  exit_mm+0x50d/0x760
[  284.171526][ T6862]  do_exit+0x63c/0x24d0
[  284.175550][ T6862]  __ia32_sys_exit+0x0/0x40
[  284.179857][ T6862]  do_syscall_64+0x44/0xd0
[  284.184594][ T6862]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  284.190271][ T6862] 
[  284.192450][ T6862] The buggy address belongs to the object at ffff88810e6aacb8
[  284.192450][ T6862]  which belongs to the cache vm_area_struct of size 232
[  284.206677][ T6862] The buggy address is located 88 bytes inside of
[  284.206677][ T6862]  232-byte region [ffff88810e6aacb8, ffff88810e6aada0)
[  284.219699][ T6862] The buggy address belongs to the page:
[  284.225263][ T6862] page:ffffea000439aa80 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10e6aa
[  284.235416][ T6862] flags: 0x4000000000000200(slab|zone=1)
[  284.240897][ T6862] raw: 4000000000000200 ffffea000499c700 0000000700000007 ffff888100274d80
[  284.249482][ T6862] raw: 0000000000000000 00000000000d000d 00000001ffffffff 0000000000000000
[  284.257979][ T6862] page dumped because: kasan: bad access detected
[  284.264231][ T6862] page_owner tracks the page as allocated
[  284.269784][ T6862] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 589, ts 270409119153, free_ts 270392154082
[  284.285668][ T6862]  post_alloc_hook+0x1ab/0x1b0
[  284.290268][ T6862]  get_page_from_freelist+0x38b/0x400
[  284.295476][ T6862]  __alloc_pages+0x3a8/0x7c0
[  284.299904][ T6862]  allocate_slab+0x62/0x580
[  284.304252][ T6862]  ___slab_alloc+0x2e2/0x6f0
[  284.308668][ T6862]  __slab_alloc+0x4a/0x90
[  284.312834][ T6862]  kmem_cache_alloc+0x205/0x2f0
[  284.317533][ T6862]  vm_area_dup+0x26/0x1d0
[  284.321689][ T6862]  dup_mmap+0x6b8/0xea0
[  284.325680][ T6862]  dup_mm+0x91/0x330
[  284.329414][ T6862]  copy_mm+0x108/0x1b0
[  284.333328][ T6862]  copy_process+0x1295/0x3250
[  284.337829][ T6862]  kernel_clone+0x22d/0x990
[  284.342179][ T6862]  __x64_sys_clone+0x289/0x310
[  284.346773][ T6862]  do_syscall_64+0x44/0xd0
[  284.351028][ T6862]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  284.356761][ T6862] page last free stack trace:
[  284.361263][ T6862]  free_pcp_prepare+0x448/0x450
[  284.365955][ T6862]  free_unref_page+0x9c/0x370
[  284.370494][ T6862]  __free_pages+0xd8/0x100
[  284.374717][ T6862]  free_pages+0x7c/0x90
[  284.378709][ T6862]  pgd_free+0x1a1/0x1b0
[  284.382701][ T6862]  __mmdrop+0xb2/0x490
[  284.386696][ T6862]  __mmput+0x2f5/0x300
[  284.390600][ T6862]  mmput+0x50/0x60
[  284.394158][ T6862]  exit_mm+0x50d/0x760
[  284.398076][ T6862]  do_exit+0x63c/0x24d0
[  284.402068][ T6862]  do_group_exit+0x13a/0x300
[  284.406632][ T6862]  get_signal+0x77e/0x1600
[  284.410866][ T6862]  arch_do_signal_or_restart+0x9f/0x670
[  284.416247][ T6862]  exit_to_user_mode_loop+0xd4/0x110
[  284.421366][ T6862]  syscall_exit_to_user_mode+0x79/0xc0
[  284.426665][ T6862]  do_syscall_64+0x50/0xd0
[  284.430915][ T6862] 
[  284.433082][ T6862] Memory state around the buggy address:
[  284.438555][ T6862]  ffff88810e6aac00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[  284.446807][ T6862]  ffff88810e6aac80: fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb fb
07:00:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 82)

07:00:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x8000000, 0x0, 0x0}, 0x58)

07:00:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x200000000000000, 0x0, 0x0}, 0x58)

07:00:27 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000380)={&(0x7f0000000280), 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, r3, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8e, 0x54}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}]}, 0x28}, 0x1, 0x0, 0x0, 0xc001}, 0x1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
write$binfmt_misc(r9, &(0x7f0000000600)={'syz0', "5f0070237442855a9d98c21627d7c8c4ae53c2b69934db3edf69d7de8e0ba182d9f52e7f5242ee44685a49e0cf429baedab433dbd58f8ab9f01305f48f6893051a127fd4c8fd2523d81b9f6dd237d7c51ffe6f775c9ac3ff62b8591b6d"}, 0x61) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
r10 = openat$cgroup_ro(r4, &(0x7f0000000500)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xd, 0x4, &(0x7f00000003c0)=@raw=[@btf_id={0x18, 0x9, 0x3, 0x0, 0x5}, @map_fd={0x18, 0xb, 0x1, 0x0, r4}], &(0x7f0000000400)='syzkaller\x00', 0x6, 0xc, &(0x7f0000000440)=""/12, 0x41100, 0x0, '\x00', 0x0, 0x2, r7, 0x8, &(0x7f0000000480)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xd, 0x4, 0x80000001}, 0x10, 0xffffffffffffffff, r6, 0x0, &(0x7f0000000540)=[r10, r1]}, 0x80) (async)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
getsockopt$bt_sco_SCO_CONNINFO(r11, 0x11, 0x2, &(0x7f00000007c0)=""/157, &(0x7f0000000780)=0x9d)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xffff}, [@alu={0x7, 0x0, 0x1, 0xa, 0x9, 0xffffffffffffffc0, 0x8}]}, &(0x7f0000000040)='GPL\x00', 0x47, 0x55, &(0x7f0000000080)=""/85, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x0, 0x1, 0x4, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r1, r4, r6]}, 0x80)

07:00:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1f00, 0x0, 0x0}, 0x58)

07:00:27 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00', <r5=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl0\x00', &(0x7f0000000300)={'syztnl1\x00', <r6=>0x0, 0x40, 0x20, 0x5, 0x8, {{0x3a, 0x4, 0x2, 0x1e, 0xe8, 0x68, 0x0, 0x3, 0x4, 0x0, @multicast2, @private=0xa010102, {[@timestamp_addr={0x44, 0x1c, 0x9f, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x41}, 0x7f}, {@multicast1, 0x3}, {@empty, 0x20}]}, @timestamp={0x44, 0x14, 0xc7, 0x0, 0x8, [0x10001, 0x4, 0xfff, 0x4]}, @noop, @timestamp_addr={0x44, 0x14, 0xe7, 0x1, 0x2, [{@rand_addr=0x64010101, 0x3ff}, {@dev={0xac, 0x14, 0x14, 0x26}}]}, @timestamp_addr={0x44, 0x2c, 0xce, 0x1, 0x9, [{@empty, 0xffff7637}, {@empty, 0x4}, {@remote, 0x8}, {@multicast2, 0x7}, {@local, 0x5}]}, @cipso={0x86, 0x60, 0xffffffffffffffff, [{0x0, 0xa, "1e15077261696f49"}, {0x5, 0x2}, {0x2, 0xe, "86f28804ffc38b4791b04f8a"}, {0x6, 0xa, "0e20375fce36c376"}, {0x0, 0x3, "ba"}, {0x7, 0x3, "a8"}, {0x1, 0x10, "02007398d37590ad0c00e6897118"}, {0x1, 0x11, "4e0c04a213687fc0d37ff2b5856e4a"}, {0x0, 0x3, '0'}, {0x1, 0xc, "4591e4588d2815c091e2"}]}]}}}}})
sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x318, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [{{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3f}}}]}}, {{0x8, 0x1, r4}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x230, 0x2, 0x0, 0x1, [{0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x7, 0x40, 0x8, 0x1f}, {0x59, 0x81, 0x0, 0x2}, {0x401, 0x0, 0x5}]}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffc01}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}]}}]}, 0x318}, 0x1, 0x0, 0x0, 0x20000040}, 0x8000)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r7}, 0x10)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r10 = socket$inet6(0xa, 0x4, 0x2)
dup2(r8, r10)
readv(r9, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r3, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab) (async)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100)) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl0\x00', &(0x7f0000000300)={'syztnl1\x00', 0x0, 0x40, 0x20, 0x5, 0x8, {{0x3a, 0x4, 0x2, 0x1e, 0xe8, 0x68, 0x0, 0x3, 0x4, 0x0, @multicast2, @private=0xa010102, {[@timestamp_addr={0x44, 0x1c, 0x9f, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x41}, 0x7f}, {@multicast1, 0x3}, {@empty, 0x20}]}, @timestamp={0x44, 0x14, 0xc7, 0x0, 0x8, [0x10001, 0x4, 0xfff, 0x4]}, @noop, @timestamp_addr={0x44, 0x14, 0xe7, 0x1, 0x2, [{@rand_addr=0x64010101, 0x3ff}, {@dev={0xac, 0x14, 0x14, 0x26}}]}, @timestamp_addr={0x44, 0x2c, 0xce, 0x1, 0x9, [{@empty, 0xffff7637}, {@empty, 0x4}, {@remote, 0x8}, {@multicast2, 0x7}, {@local, 0x5}]}, @cipso={0x86, 0x60, 0xffffffffffffffff, [{0x0, 0xa, "1e15077261696f49"}, {0x5, 0x2}, {0x2, 0xe, "86f28804ffc38b4791b04f8a"}, {0x6, 0xa, "0e20375fce36c376"}, {0x0, 0x3, "ba"}, {0x7, 0x3, "a8"}, {0x1, 0x10, "02007398d37590ad0c00e6897118"}, {0x1, 0x11, "4e0c04a213687fc0d37ff2b5856e4a"}, {0x0, 0x3, '0'}, {0x1, 0xc, "4591e4588d2815c091e2"}]}]}}}}}) (async)
sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000440)={0x318, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {}, [{{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3f}}}]}}, {{0x8, 0x1, r4}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x230, 0x2, 0x0, 0x1, [{0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x7, 0x40, 0x8, 0x1f}, {0x59, 0x81, 0x0, 0x2}, {0x401, 0x0, 0x5}]}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffc01}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}]}}]}, 0x318}, 0x1, 0x0, 0x0, 0x20000040}, 0x8000) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r7}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
socket$inet6(0xa, 0x4, 0x2) (async)
dup2(r8, r10) (async)
readv(r9, 0x0, 0x0) (async)

[  284.454709][ T6862] >ffff88810e6aad00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  284.462596][ T6862]                          ^
[  284.467023][ T6862]  ffff88810e6aad80: fb fb fb fb fc fc fc fc fc fc fc fc fa fb fb fb
[  284.474920][ T6862]  ffff88810e6aae00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  284.482823][ T6862] ==================================================================
[  284.490726][ T6862] Disabling lock debugging due to kernel taint
07:00:27 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1) (async)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000380)={&(0x7f0000000280), 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, r3, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8e, 0x54}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}]}, 0x28}, 0x1, 0x0, 0x0, 0xc001}, 0x1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
write$binfmt_misc(r9, &(0x7f0000000600)={'syz0', "5f0070237442855a9d98c21627d7c8c4ae53c2b69934db3edf69d7de8e0ba182d9f52e7f5242ee44685a49e0cf429baedab433dbd58f8ab9f01305f48f6893051a127fd4c8fd2523d81b9f6dd237d7c51ffe6f775c9ac3ff62b8591b6d"}, 0x61) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
r10 = openat$cgroup_ro(r4, &(0x7f0000000500)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xd, 0x4, &(0x7f00000003c0)=@raw=[@btf_id={0x18, 0x9, 0x3, 0x0, 0x5}, @map_fd={0x18, 0xb, 0x1, 0x0, r4}], &(0x7f0000000400)='syzkaller\x00', 0x6, 0xc, &(0x7f0000000440)=""/12, 0x41100, 0x0, '\x00', 0x0, 0x2, r7, 0x8, &(0x7f0000000480)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xd, 0x4, 0x80000001}, 0x10, 0xffffffffffffffff, r6, 0x0, &(0x7f0000000540)=[r10, r1]}, 0x80) (async)
r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r11, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
getsockopt$bt_sco_SCO_CONNINFO(r11, 0x11, 0x2, &(0x7f00000007c0)=""/157, &(0x7f0000000780)=0x9d) (async)
writev(r6, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xffff}, [@alu={0x7, 0x0, 0x1, 0xa, 0x9, 0xffffffffffffffc0, 0x8}]}, &(0x7f0000000040)='GPL\x00', 0x47, 0x55, &(0x7f0000000080)=""/85, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000140)={0x0, 0x1, 0x4, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r1, r4, r6]}, 0x80)

07:00:27 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
fallocate(r0, 0x13, 0xfffffffffffffff8, 0x0)

07:00:27 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
fallocate(r0, 0x13, 0xfffffffffffffff8, 0x0)

07:00:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58)

[  284.547245][ T6891] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
07:00:27 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
fallocate(r0, 0x13, 0xfffffffffffffff8, 0x0)

07:00:27 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0x20, &(0x7f0000000500)={&(0x7f0000000440)=""/5, 0x5, <r7=>0x0, &(0x7f0000000480)=""/83, 0x53}}, 0x10)
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
close(r8)
splice(r8, 0x0, r9, 0x0, 0x200, 0x0)
r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r11)
splice(r11, 0x0, r12, 0x0, 0x200, 0x0)
r13 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000005c0), 0x3, 0x0)
r14 = creat(&(0x7f0000000600)='./file0\x00', 0x8)
pipe2(&(0x7f0000000640)={0xffffffffffffffff, <r15=>0xffffffffffffffff}, 0x84800)
pipe(&(0x7f0000000080)={<r16=>0xffffffffffffffff, <r17=>0xffffffffffffffff})
close(r16)
splice(r16, 0x0, r17, 0x0, 0x200, 0x0)
writev(r17, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xd, 0xd, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0xa5}, [@call={0x85, 0x0, 0x0, 0xb6}, @generic={0x81, 0x3, 0x9, 0x20, 0x2}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @map_val={0x18, 0x8}, @map_fd={0x18, 0xa}, @generic={0x6, 0x2, 0x8, 0x5, 0xbe}, @call={0x85, 0x0, 0x0, 0x77}]}, &(0x7f0000000280)='GPL\x00', 0x3, 0x15, &(0x7f0000000380)=""/21, 0x41100, 0x8, '\x00', 0x0, 0xf338d958fec33625, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0x4, 0x401, 0x5}, 0x10, r7, r8, 0x0, &(0x7f0000000680)=[0x1, r10, r1, r11, r13, r14, r15, 0xffffffffffffffff, r17]}, 0x80)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@delchain={0x44, 0x65, 0x1, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xffe0, 0x3}, {0x10, 0x10}, {0xb, 0x65dcb133468a3d58}}, [@TCA_CHAIN={0x8}, @TCA_CHAIN={0x8, 0xb, 0x30b0}, @TCA_RATE={0x6, 0x5, {0xfc, 0xf8}}, @TCA_RATE={0x6, 0x5, {0x1f}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc840}, 0x40001)

[  284.614408][ T6920] FAULT_INJECTION: forcing a failure.
[  284.614408][ T6920] name failslab, interval 1, probability 0, space 0, times 0
[  284.628924][ T6920] CPU: 0 PID: 6920 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  284.640325][ T6920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  284.650199][ T6920] Call Trace:
[  284.653320][ T6920]  <TASK>
[  284.656100][ T6920]  dump_stack_lvl+0x151/0x1b7
[  284.660611][ T6920]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  284.665907][ T6920]  dump_stack+0x15/0x17
[  284.669896][ T6920]  should_fail+0x3c0/0x510
[  284.674157][ T6920]  __should_failslab+0x9f/0xe0
[  284.678748][ T6920]  should_failslab+0x9/0x20
[  284.683092][ T6920]  kmem_cache_alloc+0x4f/0x2f0
[  284.688127][ T6920]  ? anon_vma_fork+0x1b9/0x4f0
[  284.692723][ T6920]  anon_vma_fork+0x1b9/0x4f0
[  284.697152][ T6920]  dup_mmap+0x750/0xea0
[  284.701155][ T6920]  ? __delayed_free_task+0x20/0x20
[  284.706101][ T6920]  ? mm_init+0x807/0x960
[  284.710171][ T6920]  dup_mm+0x91/0x330
[  284.713902][ T6920]  copy_mm+0x108/0x1b0
[  284.717807][ T6920]  copy_process+0x1295/0x3250
[  284.722323][ T6920]  ? check_stack_object+0xf7/0x130
[  284.727358][ T6920]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  284.732302][ T6920]  ? copy_clone_args_from_user+0x6cf/0x790
[  284.737946][ T6920]  kernel_clone+0x22d/0x990
[  284.742284][ T6920]  ? dup_mmap+0xea0/0xea0
[  284.746450][ T6920]  ? create_io_thread+0x1e0/0x1e0
[  284.751312][ T6920]  ? file_end_write+0x1b0/0x1b0
[  284.756004][ T6920]  __x64_sys_clone3+0x375/0x3a0
[  284.760685][ T6920]  ? __ia32_sys_clone+0x300/0x300
[  284.765555][ T6920]  ? ksys_write+0x25f/0x2c0
[  284.769888][ T6920]  ? debug_smp_processor_id+0x17/0x20
[  284.775092][ T6920]  do_syscall_64+0x44/0xd0
[  284.779344][ T6920]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  284.785069][ T6920] RIP: 0033:0x7f8e237f0639
[  284.789337][ T6920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
07:00:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 83)

07:00:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x9000000, 0x0, 0x0}, 0x58)

07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x2, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x7}], &(0x7f0000000040)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x5, 0xe7a, 0xf3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)=[r2, r3, r5, 0x1, 0x1, 0xffffffffffffffff, r8]}, 0x80)

07:00:28 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0) (async, rerun: 32)
r2 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0x20, &(0x7f0000000500)={&(0x7f0000000440)=""/5, 0x5, <r7=>0x0, &(0x7f0000000480)=""/83, 0x53}}, 0x10) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}) (rerun: 64)
close(r8)
splice(r8, 0x0, r9, 0x0, 0x200, 0x0) (async, rerun: 64)
r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r11) (async)
splice(r11, 0x0, r12, 0x0, 0x200, 0x0) (async)
r13 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000005c0), 0x3, 0x0)
r14 = creat(&(0x7f0000000600)='./file0\x00', 0x8) (async, rerun: 32)
pipe2(&(0x7f0000000640)={0xffffffffffffffff, <r15=>0xffffffffffffffff}, 0x84800) (rerun: 32)
pipe(&(0x7f0000000080)={<r16=>0xffffffffffffffff, <r17=>0xffffffffffffffff})
close(r16) (async)
splice(r16, 0x0, r17, 0x0, 0x200, 0x0) (async, rerun: 64)
writev(r17, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xd, 0xd, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0xa5}, [@call={0x85, 0x0, 0x0, 0xb6}, @generic={0x81, 0x3, 0x9, 0x20, 0x2}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @map_val={0x18, 0x8}, @map_fd={0x18, 0xa}, @generic={0x6, 0x2, 0x8, 0x5, 0xbe}, @call={0x85, 0x0, 0x0, 0x77}]}, &(0x7f0000000280)='GPL\x00', 0x3, 0x15, &(0x7f0000000380)=""/21, 0x41100, 0x8, '\x00', 0x0, 0xf338d958fec33625, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0x4, 0x401, 0x5}, 0x10, r7, r8, 0x0, &(0x7f0000000680)=[0x1, r10, r1, r11, r13, r14, r15, 0xffffffffffffffff, r17]}, 0x80) (async, rerun: 32)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (rerun: 32)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async, rerun: 32)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@delchain={0x44, 0x65, 0x1, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xffe0, 0x3}, {0x10, 0x10}, {0xb, 0x65dcb133468a3d58}}, [@TCA_CHAIN={0x8}, @TCA_CHAIN={0x8, 0xb, 0x30b0}, @TCA_RATE={0x6, 0x5, {0xfc, 0xf8}}, @TCA_RATE={0x6, 0x5, {0x1f}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc840}, 0x40001) (rerun: 32)

07:00:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x400000000000000, 0x0, 0x0}, 0x58)

[  284.808768][ T6920] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  284.817036][ T6920] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  284.829423][ T6920] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  284.837235][ T6920] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  284.845045][ T6920] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  284.852861][ T6920] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  284.860677][ T6920]  </TASK>
07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x2, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x7}], &(0x7f0000000040)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x5, 0xe7a, 0xf3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)=[r2, r3, r5, 0x1, 0x1, 0xffffffffffffffff, r8]}, 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)) (async)
close(r3) (async)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r5) (async)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x2, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x7}], &(0x7f0000000040)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x5, 0xe7a, 0xf3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)=[r2, r3, r5, 0x1, 0x1, 0xffffffffffffffff, r8]}, 0x80) (async)

07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}) (rerun: 64)
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
writev(r2, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r3)
splice(r3, 0x0, r4, 0x0, 0x200, 0x0) (async, rerun: 32)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}) (rerun: 32)
close(r5) (async)
splice(r5, 0x0, r6, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
close(r7) (async)
splice(r7, 0x0, r8, 0x0, 0x200, 0x0) (async)
writev(r8, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x2, &(0x7f0000000000)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x7}], &(0x7f0000000040)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x3, 0x3}, 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x5, 0xe7a, 0xf3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)=[r2, r3, r5, 0x1, 0x1, 0xffffffffffffffff, r8]}, 0x80)

07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
r1 = accept4(r0, &(0x7f0000000000)=@pppoe, &(0x7f0000000080)=0x80, 0x800)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8)

07:00:28 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58)

[  284.934718][ T6938] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  284.953386][ T6938] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  284.966918][ T6938] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 32)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
r1 = accept4(r0, &(0x7f0000000000)=@pppoe, &(0x7f0000000080)=0x80, 0x800)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8)

07:00:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf000000, 0x0, 0x0}, 0x58)

07:00:28 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0x20, &(0x7f0000000500)={&(0x7f0000000440)=""/5, 0x5, <r7=>0x0, &(0x7f0000000480)=""/83, 0x53}}, 0x10) (async)
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
close(r8)
splice(r8, 0x0, r9, 0x0, 0x200, 0x0) (async)
r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) (async)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r11)
splice(r11, 0x0, r12, 0x0, 0x200, 0x0)
r13 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000005c0), 0x3, 0x0) (async)
r14 = creat(&(0x7f0000000600)='./file0\x00', 0x8) (async, rerun: 64)
pipe2(&(0x7f0000000640)={0xffffffffffffffff, <r15=>0xffffffffffffffff}, 0x84800) (async, rerun: 64)
pipe(&(0x7f0000000080)={<r16=>0xffffffffffffffff, <r17=>0xffffffffffffffff})
close(r16) (async, rerun: 32)
splice(r16, 0x0, r17, 0x0, 0x200, 0x0) (rerun: 32)
writev(r17, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xd, 0xd, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0xa5}, [@call={0x85, 0x0, 0x0, 0xb6}, @generic={0x81, 0x3, 0x9, 0x20, 0x2}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @map_val={0x18, 0x8}, @map_fd={0x18, 0xa}, @generic={0x6, 0x2, 0x8, 0x5, 0xbe}, @call={0x85, 0x0, 0x0, 0x77}]}, &(0x7f0000000280)='GPL\x00', 0x3, 0x15, &(0x7f0000000380)=""/21, 0x41100, 0x8, '\x00', 0x0, 0xf338d958fec33625, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0x4, 0x401, 0x5}, 0x10, r7, r8, 0x0, &(0x7f0000000680)=[0x1, r10, r1, r11, r13, r14, r15, 0xffffffffffffffff, r17]}, 0x80)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@delchain={0x44, 0x65, 0x1, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0xffe0, 0x3}, {0x10, 0x10}, {0xb, 0x65dcb133468a3d58}}, [@TCA_CHAIN={0x8}, @TCA_CHAIN={0x8, 0xb, 0x30b0}, @TCA_RATE={0x6, 0x5, {0xfc, 0xf8}}, @TCA_RATE={0x6, 0x5, {0x1f}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc840}, 0x40001)

[  284.978271][ T6938] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  285.004603][ T6942] FAULT_INJECTION: forcing a failure.
[  285.004603][ T6942] name failslab, interval 1, probability 0, space 0, times 0
[  285.034658][ T6942] CPU: 0 PID: 6942 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  285.046042][ T6942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  285.057501][ T6942] Call Trace:
[  285.060622][ T6942]  <TASK>
[  285.063395][ T6942]  dump_stack_lvl+0x151/0x1b7
[  285.067907][ T6942]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  285.073208][ T6942]  dump_stack+0x15/0x17
[  285.077225][ T6942]  should_fail+0x3c0/0x510
[  285.081449][ T6942]  __should_failslab+0x9f/0xe0
[  285.086047][ T6942]  should_failslab+0x9/0x20
[  285.090386][ T6942]  kmem_cache_alloc+0x4f/0x2f0
[  285.094991][ T6942]  ? anon_vma_fork+0x1b9/0x4f0
[  285.099587][ T6942]  anon_vma_fork+0x1b9/0x4f0
[  285.104015][ T6942]  dup_mmap+0x750/0xea0
[  285.108012][ T6942]  ? __delayed_free_task+0x20/0x20
[  285.112953][ T6942]  ? mm_init+0x807/0x960
[  285.117032][ T6942]  dup_mm+0x91/0x330
[  285.120766][ T6942]  copy_mm+0x108/0x1b0
[  285.124670][ T6942]  copy_process+0x1295/0x3250
[  285.129188][ T6942]  ? check_stack_object+0xf7/0x130
[  285.134134][ T6942]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  285.139080][ T6942]  ? copy_clone_args_from_user+0x6cf/0x790
[  285.144722][ T6942]  kernel_clone+0x22d/0x990
[  285.149062][ T6942]  ? dup_mmap+0xea0/0xea0
[  285.153229][ T6942]  ? create_io_thread+0x1e0/0x1e0
[  285.158088][ T6942]  ? file_end_write+0x1b0/0x1b0
[  285.162773][ T6942]  __x64_sys_clone3+0x375/0x3a0
[  285.167460][ T6942]  ? __ia32_sys_clone+0x300/0x300
[  285.172322][ T6942]  ? ksys_write+0x25f/0x2c0
[  285.176663][ T6942]  ? debug_smp_processor_id+0x17/0x20
[  285.181869][ T6942]  do_syscall_64+0x44/0xd0
[  285.186124][ T6942]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  285.191849][ T6942] RIP: 0033:0x7f8e237f0639
[  285.196103][ T6942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  285.215544][ T6942] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  285.223787][ T6942] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
07:00:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 84)

07:00:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x700000000000000, 0x0, 0x0}, 0x58)

07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
r1 = accept4(r0, &(0x7f0000000000)=@pppoe, &(0x7f0000000080)=0x80, 0x800)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r0, 0x0, 0x0) (async)
accept4(r0, &(0x7f0000000000)=@pppoe, &(0x7f0000000080)=0x80, 0x800) (async)
bind$bt_sco(r1, &(0x7f00000000c0), 0x8) (async)

07:00:28 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f00000000c0)={0x1, 0x0, 0xee, 0x9, @vifc_lcl_ifindex, @empty}, 0x10)
readv(r1, 0x0, 0x0)

07:00:28 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58)

[  285.231600][ T6942] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  285.239499][ T6942] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  285.247314][ T6942] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
[  285.255297][ T6942] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  285.263223][ T6942]  </TASK>
07:00:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58)

07:00:28 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000430020485889cafc0d1f2a251c000000"], 0x14}}, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_tables_targets\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r7 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000300)={0xffffffffffffffff}, 0x4)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r10 = fcntl$getown(r2, 0x9)
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r12=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r11, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r12])
sendmmsg$unix(r1, &(0x7f0000000400)=[{{&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000200)="94aa6d73c7978ef738391be92db52a96cf7c5c59107f283a65c9bcb3666739776bd52de10a74daffa6310b9340f0fa704dc1674ed80b7db71091df59ebe6e70a400be54f2c169e77d4a853a834196d348c7651304ccec04eabc82035fa49a9101902d1b12a892b79f3626ee586cb8786dfb6890086d29b4160016caa0772c9cb765b01cd5dbf571d9e13d9", 0x8b}], 0x1, &(0x7f0000000340)=[@rights={{0x30, 0x1, 0x1, [r2, r1, 0xffffffffffffffff, r4, r1, r5, r6, r7]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee00}}}, @rights={{0x1c, 0x1, 0x1, [r1, r8, r9]}}, @rights={{0x18, 0x1, 0x1, [r1, r3]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0xffffffffffffffff, r12}}}], 0xa8, 0x30}}], 0x1, 0x2400c085)
readv(r3, 0x0, 0xb4)
fallocate(0xffffffffffffffff, 0x41, 0x4, 0x4)

07:00:28 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000430020485889cafc0d1f2a251c000000"], 0x14}}, 0x0) (async)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_tables_targets\x00') (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r7 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000300)={0xffffffffffffffff}, 0x4)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r10 = fcntl$getown(r2, 0x9) (async)
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r12=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r11, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r12])
sendmmsg$unix(r1, &(0x7f0000000400)=[{{&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000200)="94aa6d73c7978ef738391be92db52a96cf7c5c59107f283a65c9bcb3666739776bd52de10a74daffa6310b9340f0fa704dc1674ed80b7db71091df59ebe6e70a400be54f2c169e77d4a853a834196d348c7651304ccec04eabc82035fa49a9101902d1b12a892b79f3626ee586cb8786dfb6890086d29b4160016caa0772c9cb765b01cd5dbf571d9e13d9", 0x8b}], 0x1, &(0x7f0000000340)=[@rights={{0x30, 0x1, 0x1, [r2, r1, 0xffffffffffffffff, r4, r1, r5, r6, r7]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee00}}}, @rights={{0x1c, 0x1, 0x1, [r1, r8, r9]}}, @rights={{0x18, 0x1, 0x1, [r1, r3]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0xffffffffffffffff, r12}}}], 0xa8, 0x30}}], 0x1, 0x2400c085)
readv(r3, 0x0, 0xb4)
fallocate(0xffffffffffffffff, 0x41, 0x4, 0x4)

07:00:28 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f00000000c0)={0x1, 0x0, 0xee, 0x9, @vifc_lcl_ifindex, @empty}, 0x10)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f00000000c0)={0x1, 0x0, 0xee, 0x9, @vifc_lcl_ifindex, @empty}, 0x10) (async)
readv(r1, 0x0, 0x0) (async)

07:00:28 executing program 4:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000430020485889cafc0d1f2a251c000000"], 0x14}}, 0x0) (async)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_tables_targets\x00') (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
setsockopt$bt_BT_VOICE(r5, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r7 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000300)={0xffffffffffffffff}, 0x4) (async)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r8, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r9, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async, rerun: 32)
r10 = fcntl$getown(r2, 0x9) (rerun: 32)
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) (async)
getresgid(&(0x7f0000000040), &(0x7f0000000180)=<r12=>0x0, &(0x7f0000000240))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r11, @ANYBLOB=',rootmode=000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r12]) (async, rerun: 64)
sendmmsg$unix(r1, &(0x7f0000000400)=[{{&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000200)="94aa6d73c7978ef738391be92db52a96cf7c5c59107f283a65c9bcb3666739776bd52de10a74daffa6310b9340f0fa704dc1674ed80b7db71091df59ebe6e70a400be54f2c169e77d4a853a834196d348c7651304ccec04eabc82035fa49a9101902d1b12a892b79f3626ee586cb8786dfb6890086d29b4160016caa0772c9cb765b01cd5dbf571d9e13d9", 0x8b}], 0x1, &(0x7f0000000340)=[@rights={{0x30, 0x1, 0x1, [r2, r1, 0xffffffffffffffff, r4, r1, r5, r6, r7]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee00}}}, @rights={{0x1c, 0x1, 0x1, [r1, r8, r9]}}, @rights={{0x18, 0x1, 0x1, [r1, r3]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0xffffffffffffffff, r12}}}], 0xa8, 0x30}}], 0x1, 0x2400c085) (rerun: 64)
readv(r3, 0x0, 0xb4) (async)
fallocate(0xffffffffffffffff, 0x41, 0x4, 0x4)

[  285.365621][ T7003] FAULT_INJECTION: forcing a failure.
[  285.365621][ T7003] name failslab, interval 1, probability 0, space 0, times 0
[  285.388673][ T7003] CPU: 0 PID: 7003 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  285.400057][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  285.410036][ T7003] Call Trace:
[  285.413156][ T7003]  <TASK>
[  285.415937][ T7003]  dump_stack_lvl+0x151/0x1b7
[  285.420449][ T7003]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  285.425744][ T7003]  dump_stack+0x15/0x17
[  285.429736][ T7003]  should_fail+0x3c0/0x510
[  285.433989][ T7003]  __should_failslab+0x9f/0xe0
[  285.438586][ T7003]  should_failslab+0x9/0x20
[  285.442926][ T7003]  kmem_cache_alloc+0x4f/0x2f0
[  285.447629][ T7003]  ? vm_area_dup+0x26/0x1d0
[  285.451967][ T7003]  vm_area_dup+0x26/0x1d0
[  285.456117][ T7003]  dup_mmap+0x6b8/0xea0
[  285.460122][ T7003]  ? __delayed_free_task+0x20/0x20
[  285.465066][ T7003]  ? mm_init+0x807/0x960
[  285.469139][ T7003]  dup_mm+0x91/0x330
[  285.472870][ T7003]  copy_mm+0x108/0x1b0
[  285.476777][ T7003]  copy_process+0x1295/0x3250
[  285.481293][ T7003]  ? check_stack_object+0xf7/0x130
[  285.486238][ T7003]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  285.491184][ T7003]  ? copy_clone_args_from_user+0x6cf/0x790
[  285.496828][ T7003]  kernel_clone+0x22d/0x990
[  285.501163][ T7003]  ? dup_mmap+0xea0/0xea0
[  285.505340][ T7003]  ? create_io_thread+0x1e0/0x1e0
[  285.510284][ T7003]  ? file_end_write+0x1b0/0x1b0
[  285.514979][ T7003]  __x64_sys_clone3+0x375/0x3a0
[  285.519652][ T7003]  ? __ia32_sys_clone+0x300/0x300
[  285.524606][ T7003]  ? ksys_write+0x25f/0x2c0
[  285.528939][ T7003]  ? debug_smp_processor_id+0x17/0x20
[  285.534152][ T7003]  do_syscall_64+0x44/0xd0
[  285.538401][ T7003]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  285.544127][ T7003] RIP: 0033:0x7f8e237f0639
[  285.548385][ T7003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  285.567981][ T7003] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  285.576199][ T7003] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  285.584021][ T7003] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  285.591829][ T7003] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  285.599719][ T7003] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  285.607531][ T7003] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
07:00:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x900000000000000, 0x0, 0x0}, 0x58)

07:00:28 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x58)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

[  285.615368][ T7003]  </TASK>
07:00:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 85)

07:00:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4100, 0x0, 0x0}, 0x58)

07:00:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1f000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x58) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$MRT_DEL_VIF(0xffffffffffffffff, 0x0, 0xcb, &(0x7f00000000c0)={0x1, 0x0, 0xee, 0x9, @vifc_lcl_ifindex, @empty}, 0x10) (async)
readv(r1, 0x0, 0x0)

07:00:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf00000000000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x58) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
ioctl$SIOCGSTAMP(r4, 0x8906, &(0x7f00000001c0))
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@bridge_delneigh={0x1c, 0x1d, 0x100, 0x5c, 0x25dfdbff, {0x7, 0x0, 0x0, r6, 0x0, 0x40, 0xb}}, 0x1c}, 0x1, 0x0, 0x0, 0x890}, 0x1)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x5a, 0x46, &(0x7f0000000080)="eb6f28e0ad584103195b4c668b789d3ea0f7b0778ef65304aa71b3322c6c70fba38dfdc0b5a45f47a44b9a0be1683cbe68c2b2770a76904296cdd74a6eb4f4cab1225d42587e6c89d540fd56e5d13858db9fec40c5f0e4778a73", &(0x7f0000000100)=""/70, 0xfffffff8, 0x0, 0x11, 0x68, &(0x7f0000000180)="b2153a4dc85bde9f60e738c44ad22b7dbc", &(0x7f0000000240)="cecc3fc1a94dd4928d66777cf45a5db1763bf2659820ef88437a60facbd7185fd62c240d2c1b970b33f445a2aaaf59ea1f1aeaab6269fa8e83ee9559f30d8af84cbe4ea47c2aae6f824b926b2f6ca906213abcb09eed47c3b8ee6ae7f124cff9fe4c47bc97c04b9d", 0x1, 0x9}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_elf64(r4, 0x0, 0xfe30)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x42}, [@call={0x85, 0x0, 0x0, 0xc0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x20}]}, &(0x7f0000000340)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000380)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x5, 0x3, 0xfb35, 0x40800}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r4, r1, r3, r3]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='spi_message_done\x00', r3}, 0x48)
readv(r2, 0x0, 0x0)

[  285.728364][ T7048] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  285.739412][ T7049] FAULT_INJECTION: forcing a failure.
[  285.739412][ T7049] name failslab, interval 1, probability 0, space 0, times 0
[  285.753227][ T7049] CPU: 1 PID: 7049 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  285.764606][ T7049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  285.774491][ T7049] Call Trace:
07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x5a, 0x46, &(0x7f0000000080)="eb6f28e0ad584103195b4c668b789d3ea0f7b0778ef65304aa71b3322c6c70fba38dfdc0b5a45f47a44b9a0be1683cbe68c2b2770a76904296cdd74a6eb4f4cab1225d42587e6c89d540fd56e5d13858db9fec40c5f0e4778a73", &(0x7f0000000100)=""/70, 0xfffffff8, 0x0, 0x11, 0x68, &(0x7f0000000180)="b2153a4dc85bde9f60e738c44ad22b7dbc", &(0x7f0000000240)="cecc3fc1a94dd4928d66777cf45a5db1763bf2659820ef88437a60facbd7185fd62c240d2c1b970b33f445a2aaaf59ea1f1aeaab6269fa8e83ee9559f30d8af84cbe4ea47c2aae6f824b926b2f6ca906213abcb09eed47c3b8ee6ae7f124cff9fe4c47bc97c04b9d", 0x1, 0x9}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_elf64(r4, 0x0, 0xfe30) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x42}, [@call={0x85, 0x0, 0x0, 0xc0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x20}]}, &(0x7f0000000340)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000380)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x5, 0x3, 0xfb35, 0x40800}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r4, r1, r3, r3]}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='spi_message_done\x00', r3}, 0x48) (async)
readv(r2, 0x0, 0x0)

[  285.777612][ T7049]  <TASK>
[  285.780389][ T7049]  dump_stack_lvl+0x151/0x1b7
[  285.784912][ T7049]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  285.790212][ T7049]  dump_stack+0x15/0x17
[  285.794191][ T7049]  should_fail+0x3c0/0x510
[  285.798445][ T7049]  __should_failslab+0x9f/0xe0
[  285.803050][ T7049]  should_failslab+0x9/0x20
[  285.807391][ T7049]  kmem_cache_alloc+0x4f/0x2f0
[  285.811980][ T7049]  ? vm_area_dup+0x26/0x1d0
[  285.816324][ T7049]  ? __kasan_check_read+0x11/0x20
[  285.821189][ T7049]  vm_area_dup+0x26/0x1d0
[  285.825348][ T7049]  dup_mmap+0x6b8/0xea0
[  285.829356][ T7049]  ? __delayed_free_task+0x20/0x20
[  285.834289][ T7049]  ? mm_init+0x807/0x960
[  285.838368][ T7049]  dup_mm+0x91/0x330
[  285.842100][ T7049]  copy_mm+0x108/0x1b0
[  285.846006][ T7049]  copy_process+0x1295/0x3250
[  285.850528][ T7049]  ? check_stack_object+0xf7/0x130
[  285.855463][ T7049]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  285.860410][ T7049]  ? copy_clone_args_from_user+0x6cf/0x790
[  285.866056][ T7049]  kernel_clone+0x22d/0x990
[  285.870401][ T7049]  ? dup_mmap+0xea0/0xea0
[  285.874570][ T7049]  ? create_io_thread+0x1e0/0x1e0
[  285.879507][ T7049]  ? file_end_write+0x1b0/0x1b0
[  285.884192][ T7049]  __x64_sys_clone3+0x375/0x3a0
[  285.888978][ T7049]  ? __ia32_sys_clone+0x300/0x300
[  285.893828][ T7049]  ? ksys_write+0x25f/0x2c0
[  285.898167][ T7049]  ? debug_smp_processor_id+0x17/0x20
[  285.903383][ T7049]  do_syscall_64+0x44/0xd0
[  285.907626][ T7049]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  285.913354][ T7049] RIP: 0033:0x7f8e237f0639
[  285.917617][ T7049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  285.937406][ T7049] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  285.945642][ T7049] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  285.953452][ T7049] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  285.961263][ T7049] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  285.969078][ T7049] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
07:00:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x7000, 0x0, 0x0}, 0x58)

07:00:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 86)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x5a, 0x46, &(0x7f0000000080)="eb6f28e0ad584103195b4c668b789d3ea0f7b0778ef65304aa71b3322c6c70fba38dfdc0b5a45f47a44b9a0be1683cbe68c2b2770a76904296cdd74a6eb4f4cab1225d42587e6c89d540fd56e5d13858db9fec40c5f0e4778a73", &(0x7f0000000100)=""/70, 0xfffffff8, 0x0, 0x11, 0x68, &(0x7f0000000180)="b2153a4dc85bde9f60e738c44ad22b7dbc", &(0x7f0000000240)="cecc3fc1a94dd4928d66777cf45a5db1763bf2659820ef88437a60facbd7185fd62c240d2c1b970b33f445a2aaaf59ea1f1aeaab6269fa8e83ee9559f30d8af84cbe4ea47c2aae6f824b926b2f6ca906213abcb09eed47c3b8ee6ae7f124cff9fe4c47bc97c04b9d", 0x1, 0x9}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_elf64(r4, 0x0, 0xfe30)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x42}, [@call={0x85, 0x0, 0x0, 0xc0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x20}]}, &(0x7f0000000340)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000380)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x5, 0x3, 0xfb35, 0x40800}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r4, r1, r3, r3]}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='spi_message_done\x00', r3}, 0x48)
readv(r2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x5a, 0x46, &(0x7f0000000080)="eb6f28e0ad584103195b4c668b789d3ea0f7b0778ef65304aa71b3322c6c70fba38dfdc0b5a45f47a44b9a0be1683cbe68c2b2770a76904296cdd74a6eb4f4cab1225d42587e6c89d540fd56e5d13858db9fec40c5f0e4778a73", &(0x7f0000000100)=""/70, 0xfffffff8, 0x0, 0x11, 0x68, &(0x7f0000000180)="b2153a4dc85bde9f60e738c44ad22b7dbc", &(0x7f0000000240)="cecc3fc1a94dd4928d66777cf45a5db1763bf2659820ef88437a60facbd7185fd62c240d2c1b970b33f445a2aaaf59ea1f1aeaab6269fa8e83ee9559f30d8af84cbe4ea47c2aae6f824b926b2f6ca906213abcb09eed47c3b8ee6ae7f124cff9fe4c47bc97c04b9d", 0x1, 0x9}, 0x48) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r4, 0x0, 0xfe30) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x42}, [@call={0x85, 0x0, 0x0, 0xc0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x20}]}, &(0x7f0000000340)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000380)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000003c0)={0x5, 0x3, 0xfb35, 0x40800}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r4, r1, r3, r3]}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='spi_message_done\x00', r3}, 0x48) (async)
readv(r2, 0x0, 0x0) (async)

07:00:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1ffff000, 0x0, 0x0}, 0x58)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
ioctl$SIOCGSTAMP(r4, 0x8906, &(0x7f00000001c0)) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@bridge_delneigh={0x1c, 0x1d, 0x100, 0x5c, 0x25dfdbff, {0x7, 0x0, 0x0, r6, 0x0, 0x40, 0xb}}, 0x1c}, 0x1, 0x0, 0x0, 0x890}, 0x1) (async)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

[  285.976887][ T7049] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  285.984705][ T7049]  </TASK>
07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f00000001c0), 0x2)
ioctl$SIOCGSTAMP(r4, 0x8906, &(0x7f00000001c0))
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@bridge_delneigh={0x1c, 0x1d, 0x100, 0x5c, 0x25dfdbff, {0x7, 0x0, 0x0, r6, 0x0, 0x40, 0xb}}, 0x1c}, 0x1, 0x0, 0x0, 0x890}, 0x1) (async)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r7, 0x0, 0x0)

07:00:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x1f00000000000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x10fff, 0x0, 0x0}, 0x58)

07:00:29 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
r2 = dup2(r0, r1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r7, &(0x7f0000000080)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r8, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r11)
splice(r11, 0x0, r12, 0x0, 0x200, 0x0)
writev(r12, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000140)=@bpf_tracing={0x1a, 0x7, &(0x7f0000000000)=@raw=[@map_val={0x18, 0xa, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0xffffff36}, @alu={0x4, 0x1, 0x2, 0x8, 0x0, 0x20, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x7, 0x32, &(0x7f0000000080)=""/50, 0x40f00, 0x4, '\x00', r8, 0x17, r9, 0x8, &(0x7f00000000c0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000100)={0x0, 0x9, 0x1, 0x7}, 0x10, 0x2c56, r12}, 0x80)
readv(r3, 0x0, 0x0)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010008000004000000000000000000850000000f0000006fecd95bdbc0dd7315ff54d7d795"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:29 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r2 = dup2(r0, r1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0) (async)
getsockname$packet(r7, &(0x7f0000000080)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r8, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0) (async)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9) (async)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r11)
splice(r11, 0x0, r12, 0x0, 0x200, 0x0) (async)
writev(r12, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000140)=@bpf_tracing={0x1a, 0x7, &(0x7f0000000000)=@raw=[@map_val={0x18, 0xa, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0xffffff36}, @alu={0x4, 0x1, 0x2, 0x8, 0x0, 0x20, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x7, 0x32, &(0x7f0000000080)=""/50, 0x40f00, 0x4, '\x00', r8, 0x17, r9, 0x8, &(0x7f00000000c0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000100)={0x0, 0x9, 0x1, 0x7}, 0x10, 0x2c56, r12}, 0x80)
readv(r3, 0x0, 0x0)

[  286.112393][ T7105] FAULT_INJECTION: forcing a failure.
[  286.112393][ T7105] name failslab, interval 1, probability 0, space 0, times 0
[  286.141178][ T7105] CPU: 0 PID: 7105 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  286.152561][ T7105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
07:00:29 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
r2 = dup2(r0, r1) (async)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r7, &(0x7f0000000080)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r8, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r8, @ANYBLOB="00000000ffffffff0000000008000100687462001c0002001800020003"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {}, {0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8}]}}]}, 0x40}}, 0x0)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r9)
splice(r9, 0x0, r10, 0x0, 0x200, 0x0) (async)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r11) (async)
splice(r11, 0x0, r12, 0x0, 0x200, 0x0)
writev(r12, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000140)=@bpf_tracing={0x1a, 0x7, &(0x7f0000000000)=@raw=[@map_val={0x18, 0xa, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0xffffff36}, @alu={0x4, 0x1, 0x2, 0x8, 0x0, 0x20, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x7, 0x32, &(0x7f0000000080)=""/50, 0x40f00, 0x4, '\x00', r8, 0x17, r9, 0x8, &(0x7f00000000c0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000100)={0x0, 0x9, 0x1, 0x7}, 0x10, 0x2c56, r12}, 0x80) (async)
readv(r3, 0x0, 0x0)

[  286.162458][ T7105] Call Trace:
[  286.165587][ T7105]  <TASK>
[  286.168358][ T7105]  dump_stack_lvl+0x151/0x1b7
[  286.172871][ T7105]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  286.178343][ T7105]  dump_stack+0x15/0x17
[  286.182332][ T7105]  should_fail+0x3c0/0x510
[  286.186585][ T7105]  __should_failslab+0x9f/0xe0
[  286.191184][ T7105]  should_failslab+0x9/0x20
[  286.195537][ T7105]  kmem_cache_alloc+0x4f/0x2f0
[  286.200125][ T7105]  ? vm_area_dup+0x26/0x1d0
[  286.204464][ T7105]  ? __kasan_check_read+0x11/0x20
[  286.209322][ T7105]  vm_area_dup+0x26/0x1d0
[  286.213485][ T7105]  dup_mmap+0x6b8/0xea0
[  286.217492][ T7105]  ? __delayed_free_task+0x20/0x20
[  286.222682][ T7105]  ? mm_init+0x807/0x960
[  286.226854][ T7105]  dup_mm+0x91/0x330
[  286.230584][ T7105]  copy_mm+0x108/0x1b0
[  286.234489][ T7105]  copy_process+0x1295/0x3250
[  286.239004][ T7105]  ? check_stack_object+0xf7/0x130
[  286.244038][ T7105]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  286.248992][ T7105]  ? copy_clone_args_from_user+0x6cf/0x790
[  286.254635][ T7105]  kernel_clone+0x22d/0x990
[  286.258981][ T7105]  ? dup_mmap+0xea0/0xea0
[  286.263134][ T7105]  ? create_io_thread+0x1e0/0x1e0
[  286.267995][ T7105]  ? file_end_write+0x1b0/0x1b0
[  286.272688][ T7105]  __x64_sys_clone3+0x375/0x3a0
[  286.277459][ T7105]  ? __ia32_sys_clone+0x300/0x300
[  286.282319][ T7105]  ? ksys_write+0x25f/0x2c0
[  286.286660][ T7105]  ? debug_smp_processor_id+0x17/0x20
[  286.291986][ T7105]  do_syscall_64+0x44/0xd0
[  286.296238][ T7105]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  286.301972][ T7105] RIP: 0033:0x7f8e237f0639
[  286.306216][ T7105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  286.325660][ T7105] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  286.334196][ T7105] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  286.342006][ T7105] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  286.349817][ T7105] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
07:00:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 87)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='btrfs_setup_cluster\x00', r1}, 0x10)
readv(r0, 0x0, 0x0)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010008000004000000000000000000850000000f0000006fecd95bdbc0dd7315ff54d7d795"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010008000004000000000000000000850000000f0000006fecd95bdbc0dd7315ff54d7d795"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)

07:00:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3ffff, 0x0, 0x0}, 0x58)

07:00:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010008000004000000000000000000850000000f0000006fecd95bdbc0dd7315ff54d7d795"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='btrfs_setup_cluster\x00', r1}, 0x10) (async)
readv(r0, 0x0, 0x0)

[  286.357630][ T7105] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  286.365443][ T7105] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  286.373255][ T7105]  </TASK>
07:00:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x40000, 0x0, 0x0}, 0x58)

07:00:29 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, 0x0, 0xfe30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='btrfs_setup_cluster\x00', r1}, 0x10)
readv(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
pipe(&(0x7f0000000200)) (async)
write$binfmt_elf64(r1, 0x0, 0xfe30) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='btrfs_setup_cluster\x00', r1}, 0x10) (async)
readv(r0, 0x0, 0x0) (async)

07:00:29 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801f3ffff84000098994888fcdc0472641efe4f000f003f009500"/41], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x24af02a0ffffffff, 0x0, 0x0}, 0x58)

[  286.494178][ T7140] FAULT_INJECTION: forcing a failure.
[  286.494178][ T7140] name failslab, interval 1, probability 0, space 0, times 0
[  286.511827][ T7140] CPU: 1 PID: 7140 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  286.523212][ T7140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  286.533107][ T7140] Call Trace:
[  286.536227][ T7140]  <TASK>
[  286.539007][ T7140]  dump_stack_lvl+0x151/0x1b7
[  286.543520][ T7140]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  286.548824][ T7140]  ? do_syscall_64+0x44/0xd0
[  286.553248][ T7140]  dump_stack+0x15/0x17
[  286.557233][ T7140]  should_fail+0x3c0/0x510
[  286.561488][ T7140]  __should_failslab+0x9f/0xe0
[  286.566088][ T7140]  should_failslab+0x9/0x20
[  286.570428][ T7140]  kmem_cache_alloc+0x4f/0x2f0
[  286.575028][ T7140]  ? anon_vma_clone+0xa1/0x4f0
[  286.579633][ T7140]  anon_vma_clone+0xa1/0x4f0
[  286.584062][ T7140]  anon_vma_fork+0x91/0x4f0
[  286.588393][ T7140]  ? anon_vma_name+0x4c/0x70
[  286.592821][ T7140]  dup_mmap+0x750/0xea0
[  286.596814][ T7140]  ? __delayed_free_task+0x20/0x20
[  286.601758][ T7140]  ? mm_init+0x807/0x960
[  286.605837][ T7140]  dup_mm+0x91/0x330
[  286.609575][ T7140]  copy_mm+0x108/0x1b0
[  286.613487][ T7140]  copy_process+0x1295/0x3250
[  286.617989][ T7140]  ? check_stack_object+0xf7/0x130
[  286.622934][ T7140]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  286.627894][ T7140]  ? copy_clone_args_from_user+0x6cf/0x790
[  286.633524][ T7140]  kernel_clone+0x22d/0x990
[  286.637864][ T7140]  ? dup_mmap+0xea0/0xea0
[  286.642034][ T7140]  ? create_io_thread+0x1e0/0x1e0
[  286.646892][ T7140]  ? file_end_write+0x1b0/0x1b0
[  286.651576][ T7140]  __x64_sys_clone3+0x375/0x3a0
[  286.656264][ T7140]  ? __ia32_sys_clone+0x300/0x300
[  286.661128][ T7140]  ? ksys_write+0x25f/0x2c0
[  286.665463][ T7140]  ? debug_smp_processor_id+0x17/0x20
[  286.670675][ T7140]  do_syscall_64+0x44/0xd0
[  286.674928][ T7140]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  286.680653][ T7140] RIP: 0033:0x7f8e237f0639
[  286.684909][ T7140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  286.704446][ T7140] RSP: 002b:00007f8e22564038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  286.712682][ T7140] RAX: ffffffffffffffda RBX: 00007f8e23910f80 RCX: 00007f8e237f0639
[  286.720491][ T7140] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22564050
[  286.728314][ T7140] RBP: 00007f8e225641d0 R08: 0000000000000000 R09: 0000000000000058
[  286.736114][ T7140] R10: 00007f8e22564050 R11: 0000000000000246 R12: 0000000000000058
07:00:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 88)

07:00:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58)

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801f3ffff84000098994888fcdc0472641efe4f000f003f009500"/41], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffd5d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x401, 0x30, &(0x7f0000000000)="d3e9b2e38c422ee5349ea1e1e98d0ece0a48ced3ceb73614684e8cb2e8d52f498ce4a1a09aa31333859a1553bb079f58", 0x1, 0x1}]})

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801f3ffff84000098994888fcdc0472641efe4f000f003f009500"/41], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffd5d) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (rerun: 64)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x401, 0x30, &(0x7f0000000000)="d3e9b2e38c422ee5349ea1e1e98d0ece0a48ced3ceb73614684e8cb2e8d52f498ce4a1a09aa31333859a1553bb079f58", 0x1, 0x1}]})

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl0\x00', <r3=>0x0, 0x4, 0x58, 0x42, 0xffff, 0x0, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40, 0x700, 0x5243, 0x9}})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

[  286.743937][ T7140] R13: 00007ffcb4e61b5f R14: 00007f8e22564300 R15: 0000000000022000
[  286.751740][ T7140]  </TASK>
07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffd5d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r0, 0x0, 0x0) (async)
ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x401, 0x30, &(0x7f0000000000)="d3e9b2e38c422ee5349ea1e1e98d0ece0a48ced3ceb73614684e8cb2e8d52f498ce4a1a09aa31333859a1553bb079f58", 0x1, 0x1}]})

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl0\x00', <r3=>0x0, 0x4, 0x58, 0x42, 0xffff, 0x0, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40, 0x700, 0x5243, 0x9}})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
pipe(&(0x7f0000000080)) (async)
close(r1) (async)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl0\x00', 0x0, 0x4, 0x58, 0x42, 0xffff, 0x0, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40, 0x700, 0x5243, 0x9}}) (async)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r4, 0x0, 0x0) (async)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
splice(r0, &(0x7f0000000000)=0x9, r1, &(0x7f0000000040)=0x9d, 0x100, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

07:00:30 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58)

[  286.872109][ T7203] FAULT_INJECTION: forcing a failure.
[  286.872109][ T7203] name failslab, interval 1, probability 0, space 0, times 0
[  286.884782][ T7203] CPU: 1 PID: 7203 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  286.896134][ T7203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  286.906026][ T7203] Call Trace:
[  286.909149][ T7203]  <TASK>
[  286.911926][ T7203]  dump_stack_lvl+0x151/0x1b7
[  286.916661][ T7203]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  286.921946][ T7203]  dump_stack+0x15/0x17
[  286.925946][ T7203]  should_fail+0x3c0/0x510
[  286.930191][ T7203]  __should_failslab+0x9f/0xe0
[  286.934797][ T7203]  should_failslab+0x9/0x20
[  286.939132][ T7203]  kmem_cache_alloc+0x4f/0x2f0
[  286.943730][ T7203]  ? anon_vma_fork+0x1b9/0x4f0
[  286.948328][ T7203]  anon_vma_fork+0x1b9/0x4f0
[  286.952756][ T7203]  dup_mmap+0x750/0xea0
[  286.956747][ T7203]  ? __delayed_free_task+0x20/0x20
[  286.961697][ T7203]  ? mm_init+0x807/0x960
[  286.965782][ T7203]  dup_mm+0x91/0x330
[  286.969516][ T7203]  copy_mm+0x108/0x1b0
[  286.973419][ T7203]  copy_process+0x1295/0x3250
[  286.977931][ T7203]  ? check_stack_object+0xf7/0x130
[  286.982963][ T7203]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  286.987995][ T7203]  ? copy_clone_args_from_user+0x6cf/0x790
[  286.993641][ T7203]  kernel_clone+0x22d/0x990
[  286.997976][ T7203]  ? dup_mmap+0xea0/0xea0
[  287.002138][ T7203]  ? create_io_thread+0x1e0/0x1e0
[  287.007001][ T7203]  ? file_end_write+0x1b0/0x1b0
[  287.011693][ T7203]  __x64_sys_clone3+0x375/0x3a0
[  287.016376][ T7203]  ? __ia32_sys_clone+0x300/0x300
[  287.021235][ T7203]  ? ksys_write+0x25f/0x2c0
[  287.025578][ T7203]  ? debug_smp_processor_id+0x17/0x20
[  287.030783][ T7203]  do_syscall_64+0x44/0xd0
[  287.035036][ T7203]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  287.040766][ T7203] RIP: 0033:0x7f8e237f0639
[  287.045017][ T7203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  287.064457][ T7203] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
07:00:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 89)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2)
splice(r0, &(0x7f0000000000)=0x9, r1, &(0x7f0000000040)=0x9d, 0x100, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
splice(r0, &(0x7f0000000000)=0x9, r1, &(0x7f0000000040)=0x9d, 0x100, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r2, 0x0, 0x0) (async)

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
splice(r1, 0x0, r2, 0x0, 0x200, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl0\x00', <r3=>0x0, 0x4, 0x58, 0x42, 0xffff, 0x0, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40, 0x700, 0x5243, 0x9}})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r4, 0x0, 0x0)

07:00:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x41000000, 0x0, 0x0}, 0x58)

07:00:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x700000, 0x0, 0x0}, 0x58)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000001c0), 0x2) (async)
splice(r0, &(0x7f0000000000)=0x9, r1, &(0x7f0000000040)=0x9d, 0x100, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r2, 0x0, 0x0)

[  287.072704][ T7203] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  287.080603][ T7203] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  287.088412][ T7203] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  287.096222][ T7203] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  287.104034][ T7203] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  287.111849][ T7203]  </TASK>
07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000040000000000e4ffffff850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team0\x00', <r1=>0x0})
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x121000, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x13, r2, 0x2e969000)
write$binfmt_elf64(r3, 0x0, 0xfe30)
r4 = syz_open_dev$vcsa(&(0x7f0000000400), 0x6, 0x6280)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r5, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r6)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000700)={'syztnl1\x00', &(0x7f0000000680)={'syztnl1\x00', r1, 0x40, 0x700, 0x2, 0x4, {{0x12, 0x4, 0x3, 0x30, 0x48, 0x67, 0x0, 0x9, 0x29, 0x0, @local, @multicast2, {[@ra={0x94, 0x4, 0x1}, @generic={0x82, 0xd, "e968a298ea7fe41397e7c6"}, @timestamp_prespec={0x44, 0xc, 0x86, 0x3, 0x4, [{@rand_addr=0x64010101, 0x6}]}, @noop, @timestamp_prespec={0x44, 0xc, 0x93, 0x3, 0xd, [{@broadcast, 0x1ff}]}, @timestamp={0x44, 0x8, 0x10, 0x0, 0x9, [0x1000]}]}}}}})
splice(r6, 0x0, r7, 0x0, 0x200, 0x0)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000740)={0x0, r2}, 0x10)
preadv(r8, &(0x7f0000000a40)=[{&(0x7f0000000780)=""/88, 0x58}, {&(0x7f0000000800)=""/117, 0x75}, {&(0x7f0000000880)=""/173, 0xad}, {&(0x7f0000000940)=""/3, 0x3}, {&(0x7f0000000980)=""/13, 0xd}, {&(0x7f00000009c0)=""/18, 0x12}, {&(0x7f0000000a00)=""/30, 0x1e}], 0x7, 0x7f, 0x0)
write(0xffffffffffffffff, &(0x7f0000000540)="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", 0xfd)
writev(r7, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r9 = openat$incfs(0xffffffffffffffff, &(0x7f0000000440)='.log\x00', 0x8200, 0xe)
pipe2$watch_queue(&(0x7f0000000640), 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x2, &(0x7f00000000c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @jmp={0x5, 0x1, 0x0, 0x0, 0x1, 0xffffffffffffffe0, 0xffffffffffffffff}], &(0x7f0000000100)='syzkaller\x00', 0x400, 0xd8, &(0x7f0000000300)=""/216, 0x41000, 0x1d, '\x00', r1, 0x0, r2, 0x8, &(0x7f00000001c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000000280)={0x3, 0x2, 0xffff, 0xc3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000480)=[r3, r4, 0xffffffffffffffff, r5, r7, r9, 0x1]}, 0x80)
close(r0)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r10, 0x0, 0x0)

07:00:30 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$hidraw(&(0x7f0000000000), 0x3f, 0x185343)
readv(r0, 0x0, 0x0)

07:00:30 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58)

07:00:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xa002c0dc, 0x0, 0x0}, 0x58)

07:00:30 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$hidraw(&(0x7f0000000000), 0x3f, 0x185343)
readv(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_open_dev$hidraw(&(0x7f0000000000), 0x3f, 0x185343) (async)
readv(r0, 0x0, 0x0) (async)

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000040000000000e4ffffff850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team0\x00', <r1=>0x0})
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x121000, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x13, r2, 0x2e969000)
write$binfmt_elf64(r3, 0x0, 0xfe30) (async)
r4 = syz_open_dev$vcsa(&(0x7f0000000400), 0x6, 0x6280) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r5, 0x0, 0xfe30) (async)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r6) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000700)={'syztnl1\x00', &(0x7f0000000680)={'syztnl1\x00', r1, 0x40, 0x700, 0x2, 0x4, {{0x12, 0x4, 0x3, 0x30, 0x48, 0x67, 0x0, 0x9, 0x29, 0x0, @local, @multicast2, {[@ra={0x94, 0x4, 0x1}, @generic={0x82, 0xd, "e968a298ea7fe41397e7c6"}, @timestamp_prespec={0x44, 0xc, 0x86, 0x3, 0x4, [{@rand_addr=0x64010101, 0x6}]}, @noop, @timestamp_prespec={0x44, 0xc, 0x93, 0x3, 0xd, [{@broadcast, 0x1ff}]}, @timestamp={0x44, 0x8, 0x10, 0x0, 0x9, [0x1000]}]}}}}}) (async)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0) (async)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000740)={0x0, r2}, 0x10)
preadv(r8, &(0x7f0000000a40)=[{&(0x7f0000000780)=""/88, 0x58}, {&(0x7f0000000800)=""/117, 0x75}, {&(0x7f0000000880)=""/173, 0xad}, {&(0x7f0000000940)=""/3, 0x3}, {&(0x7f0000000980)=""/13, 0xd}, {&(0x7f00000009c0)=""/18, 0x12}, {&(0x7f0000000a00)=""/30, 0x1e}], 0x7, 0x7f, 0x0)
write(0xffffffffffffffff, &(0x7f0000000540)="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", 0xfd) (async)
writev(r7, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
r9 = openat$incfs(0xffffffffffffffff, &(0x7f0000000440)='.log\x00', 0x8200, 0xe) (async)
pipe2$watch_queue(&(0x7f0000000640), 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x2, &(0x7f00000000c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @jmp={0x5, 0x1, 0x0, 0x0, 0x1, 0xffffffffffffffe0, 0xffffffffffffffff}], &(0x7f0000000100)='syzkaller\x00', 0x400, 0xd8, &(0x7f0000000300)=""/216, 0x41000, 0x1d, '\x00', r1, 0x0, r2, 0x8, &(0x7f00000001c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000000280)={0x3, 0x2, 0xffff, 0xc3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000480)=[r3, r4, 0xffffffffffffffff, r5, r7, r9, 0x1]}, 0x80) (async)
close(r0)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r10, 0x0, 0x0)

[  287.198961][   T30] audit: type=1400 audit(1668668430.550:212): avc:  denied  { map } for  pid=7230 comm="syz-executor.1" path="/proc/7230/net/pfkey" dev="proc" ino=4026532438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  287.227792][ T7238] FAULT_INJECTION: forcing a failure.
[  287.227792][ T7238] name failslab, interval 1, probability 0, space 0, times 0
[  287.242128][ T7238] CPU: 1 PID: 7238 Comm: syz-executor.2 Tainted: G    B             5.15.74-syzkaller-00001-g4ec71a9ec769 #0
[  287.253507][ T7238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  287.263395][ T7238] Call Trace:
[  287.266521][ T7238]  <TASK>
[  287.269301][ T7238]  dump_stack_lvl+0x151/0x1b7
[  287.273810][ T7238]  ? bfq_pos_tree_add_move+0x43e/0x43e
[  287.279108][ T7238]  dump_stack+0x15/0x17
[  287.283097][ T7238]  should_fail+0x3c0/0x510
[  287.287351][ T7238]  __should_failslab+0x9f/0xe0
[  287.291949][ T7238]  should_failslab+0x9/0x20
[  287.296291][ T7238]  kmem_cache_alloc+0x4f/0x2f0
[  287.300890][ T7238]  ? anon_vma_fork+0x1b9/0x4f0
[  287.305499][ T7238]  anon_vma_fork+0x1b9/0x4f0
[  287.309919][ T7238]  dup_mmap+0x750/0xea0
[  287.313912][ T7238]  ? __delayed_free_task+0x20/0x20
[  287.318857][ T7238]  ? mm_init+0x807/0x960
[  287.322935][ T7238]  dup_mm+0x91/0x330
[  287.326670][ T7238]  copy_mm+0x108/0x1b0
[  287.330573][ T7238]  copy_process+0x1295/0x3250
[  287.335091][ T7238]  ? check_stack_object+0xf7/0x130
[  287.340036][ T7238]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[  287.344980][ T7238]  ? copy_clone_args_from_user+0x6cf/0x790
[  287.350627][ T7238]  kernel_clone+0x22d/0x990
[  287.355136][ T7238]  ? dup_mmap+0xea0/0xea0
[  287.359301][ T7238]  ? create_io_thread+0x1e0/0x1e0
[  287.364165][ T7238]  ? file_end_write+0x1b0/0x1b0
[  287.368851][ T7238]  __x64_sys_clone3+0x375/0x3a0
[  287.373537][ T7238]  ? __ia32_sys_clone+0x300/0x300
[  287.379701][ T7238]  ? ksys_write+0x25f/0x2c0
[  287.384042][ T7238]  ? debug_smp_processor_id+0x17/0x20
[  287.389246][ T7238]  do_syscall_64+0x44/0xd0
[  287.393500][ T7238]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  287.399230][ T7238] RIP: 0033:0x7f8e237f0639
[  287.403481][ T7238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  287.422925][ T7238] RSP: 002b:00007f8e22543038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  287.431166][ T7238] RAX: ffffffffffffffda RBX: 00007f8e23911050 RCX: 00007f8e237f0639
[  287.438977][ T7238] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f8e22543050
[  287.446789][ T7238] RBP: 00007f8e225431d0 R08: 0000000000000000 R09: 0000000000000058
[  287.454775][ T7238] R10: 00007f8e22543050 R11: 0000000000000246 R12: 0000000000000058
[  287.462588][ T7238] R13: 00007ffcb4e61b5f R14: 00007f8e22543300 R15: 0000000000022000
[  287.470403][ T7238]  </TASK>
07:00:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 90)

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000040000000000e4ffffff850000000f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team0\x00', <r1=>0x0}) (async, rerun: 64)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x121000, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x13, r2, 0x2e969000) (async)
write$binfmt_elf64(r3, 0x0, 0xfe30) (async, rerun: 64)
r4 = syz_open_dev$vcsa(&(0x7f0000000400), 0x6, 0x6280) (rerun: 64)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r5, 0x0, 0xfe30)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r6) (async)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000700)={'syztnl1\x00', &(0x7f0000000680)={'syztnl1\x00', r1, 0x40, 0x700, 0x2, 0x4, {{0x12, 0x4, 0x3, 0x30, 0x48, 0x67, 0x0, 0x9, 0x29, 0x0, @local, @multicast2, {[@ra={0x94, 0x4, 0x1}, @generic={0x82, 0xd, "e968a298ea7fe41397e7c6"}, @timestamp_prespec={0x44, 0xc, 0x86, 0x3, 0x4, [{@rand_addr=0x64010101, 0x6}]}, @noop, @timestamp_prespec={0x44, 0xc, 0x93, 0x3, 0xd, [{@broadcast, 0x1ff}]}, @timestamp={0x44, 0x8, 0x10, 0x0, 0x9, [0x1000]}]}}}}}) (async)
splice(r6, 0x0, r7, 0x0, 0x200, 0x0) (async)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000740)={0x0, r2}, 0x10)
preadv(r8, &(0x7f0000000a40)=[{&(0x7f0000000780)=""/88, 0x58}, {&(0x7f0000000800)=""/117, 0x75}, {&(0x7f0000000880)=""/173, 0xad}, {&(0x7f0000000940)=""/3, 0x3}, {&(0x7f0000000980)=""/13, 0xd}, {&(0x7f00000009c0)=""/18, 0x12}, {&(0x7f0000000a00)=""/30, 0x1e}], 0x7, 0x7f, 0x0)
write(0xffffffffffffffff, &(0x7f0000000540)="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", 0xfd) (async, rerun: 32)
writev(r7, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async, rerun: 32)
r9 = openat$incfs(0xffffffffffffffff, &(0x7f0000000440)='.log\x00', 0x8200, 0xe)
pipe2$watch_queue(&(0x7f0000000640), 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x2, &(0x7f00000000c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @jmp={0x5, 0x1, 0x0, 0x0, 0x1, 0xffffffffffffffe0, 0xffffffffffffffff}], &(0x7f0000000100)='syzkaller\x00', 0x400, 0xd8, &(0x7f0000000300)=""/216, 0x41000, 0x1d, '\x00', r1, 0x0, r2, 0x8, &(0x7f00000001c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000000280)={0x3, 0x2, 0xffff, 0xc3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000480)=[r3, r4, 0xffffffffffffffff, r5, r7, r9, 0x1]}, 0x80) (async, rerun: 64)
close(r0) (async, rerun: 64)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r10, 0x0, 0x0)

07:00:30 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$hidraw(&(0x7f0000000000), 0x3f, 0x185343)
readv(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
syz_open_dev$hidraw(&(0x7f0000000000), 0x3f, 0x185343) (async)
readv(r0, 0x0, 0x0) (async)

07:00:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xf0ff1f, 0x0, 0x0}, 0x58)

07:00:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0xdcc002a0, 0x0, 0x0}, 0x58)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200, 0x0)
writev(0xffffffffffffffff, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x8]}, 0x8)
sendto$packet(r0, &(0x7f0000000180)="a0f041badd5dceb97aa2e5c07f40acf9508221360b5b10a6c060ced24fa46ed07ea430e1475dacc115a7be8b469007e39f4895a687bd27710a000bc63067800fd775ff565c520c1c09d9443fc7132b5a6071fe57aced18c010bca661c5ecb51db3ed5ab3e1eaf5475d6ede07863005c6a136840de203", 0x76, 0x10000, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='f2fs_gc_begin\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000100)={0x8, 'veth1_to_bridge\x00', {'wlan1\x00'}, 0x5})

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000000400000000000000000085d593800f000000956db90000000000000c554e99ce9b6a5000f07bf8a5cc2b90922689e3f301e09dd1891c8af0bf826ca786aae982f8b3c4be43c12a6ee7b5dbca9905b921b6319b40269cd542cbed6cc7ce"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
close(0xffffffffffffffff) (async)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200, 0x0) (async)
writev(0xffffffffffffffff, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1) (async)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x8]}, 0x8)
sendto$packet(r0, &(0x7f0000000180)="a0f041badd5dceb97aa2e5c07f40acf9508221360b5b10a6c060ced24fa46ed07ea430e1475dacc115a7be8b469007e39f4895a687bd27710a000bc63067800fd775ff565c520c1c09d9443fc7132b5a6071fe57aced18c010bca661c5ecb51db3ed5ab3e1eaf5475d6ede07863005c6a136840de203", 0x76, 0x10000, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='f2fs_gc_begin\x00'}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000100)={0x8, 'veth1_to_bridge\x00', {'wlan1\x00'}, 0x5})

07:00:30 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
syz_clone3(&(0x7f00000006c0)={0x110121000, &(0x7f0000000500), 0x0, 0x0, {}, 0x0, 0x4100000000000000, 0x0, 0x0}, 0x58)

07:00:30 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000000400000000000000000085d593800f000000956db90000000000000c554e99ce9b6a5000f07bf8a5cc2b90922689e3f301e09dd1891c8af0bf826ca786aae982f8b3c4be43c12a6ee7b5dbca9905b921b6319b40269cd542cbed6cc7ce"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
readv(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000000400000000000000000085d593800f000000956db90000000000000c554e99ce9b6a5000f07bf8a5cc2b90922689e3f301e09dd1891c8af0bf826ca786aae982f8b3c4be43c12a6ee7b5dbca9905b921b6319b40269cd542cbed6cc7ce"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
readv(r1, 0x0, 0x0) (async)

07:00:30 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200, 0x0)
writev(0xffffffffffffffff, &(0x7f00000022c0)=[{&(0x7f00000000c0)="b0", 0x1}], 0x1)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x8]}, 0x8)
sendto$packet(r0, &(0x7f0000000180)="a0f041badd5dceb97aa2e5c07f40acf9508221360b5b10a6c060ced24fa46ed07ea430e1475dacc115a7be8b469007e39f4895a687bd27710a000bc63067800f