last executing test programs:

1.453608919s ago: executing program 0 (id=2271):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
syz_read_part_table(0x1059, &(0x7f0000000000)="$eJzsz8FNw0AUBNDxYmRbogNa4Ewn7scHCuFMT0hUwDmX6EdeR0oHSQ7v3Uazs9IPD/WRlpxqfG+ZkyXJuWpK8nb0VdVakr+ehtuwP+q2ek3ycoRx2f/JsF3LVv+fa9/VsC++l6/5aH4zZf25150AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8MwuAQAA//9ZkRMF")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x33}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001100)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x2014, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x40}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0900000004000000040000000c"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r6}, &(0x7f0000000000), &(0x7f0000000200)=r7}, 0x20)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000ffff26bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="15170000bcb7040008000a00", @ANYRES32, @ANYBLOB="140012800c0001006d6163767461700004000280080005"], 0x44}, 0x1, 0x0, 0x0, 0x240448c5}, 0x8000002)

1.261558391s ago: executing program 1 (id=2280):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
request_key(&(0x7f0000000780)='asymmetric\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f00000003c0)='incremental-fs\x00', 0xfffffffffffffffe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000000085000000720000"], &(0x7f0000000300)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
close(r2)

1.232303511s ago: executing program 1 (id=2284):
pipe(&(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f0000000240)={'ip6_vti0\x00', <r3=>0x0, 0x2f, 0xff, 0x9, 0x0, 0x1, @private2, @ipv4={'\x00', '\xff\xff', @empty}, 0x20, 0x20, 0x2, 0x81}})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xa, 0xb, &(0x7f0000000640)=ANY=[@ANYRESHEX=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', r3, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sys_enter\x00', r4}, 0x18)
r6 = syz_pidfd_open(r2, 0x0)
pread64(r5, &(0x7f0000000380)=""/207, 0xcf, 0xfffffffffffffff3)
pidfd_send_signal(r6, 0x2, 0x0, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4)
syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r8, 0x402c542c, &(0x7f0000000340)={0x2, 0x200ffffe, 0x5, 0xffffffff, 0x0, "4d6b5ccb00", 0x0, 0xfffffffd})
readv(r8, &(0x7f0000003a00)=[{&(0x7f0000003840)=""/166, 0xa6}], 0x1)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000a40))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r9], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r9}, &(0x7f0000001c00), &(0x7f0000001c40)=r10}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r11 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='percpu_create_chunk\x00', r11}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB="fdffffff00000000000000000000000000000000a035a4271d90505fecf3", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000e80)=ANY=[@ANYBLOB="2c0000000203010100000000000000000000000a08000540000000200800610200000006080004"], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x4000894)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r7, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

1.208211702s ago: executing program 2 (id=2285):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000340)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmat(0x0, &(0x7f0000000000/0x2000)=nil, 0x5000)
pread64(0xffffffffffffffff, &(0x7f0000001200)=""/4096, 0x1000, 0x86d)
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1c0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)

1.077749002s ago: executing program 4 (id=2287):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @rand_addr=0x64010100}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='veno', 0x4)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = syz_io_uring_setup(0x73d3, &(0x7f0000000680)={0x0, 0x7d89, 0x10100, 0x3, 0x289}, &(0x7f0000000540)=<r2=>0x0, &(0x7f0000000700)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r1, 0x1d39, 0xcec, 0x0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

1.041444123s ago: executing program 4 (id=2289):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, 0x0, 0x57)
prlimit64(0x0, 0x8, &(0x7f0000000000)={0xfffffffffffffffb, 0xfffffffffffffffc}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x0, 0x58}, 0x28)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, 0x0)
ioctl$USBDEVFS_IOCTL(r3, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)
ioctl$USBDEVFS_SETCONFIGURATION(r3, 0x80045505, &(0x7f0000000000)=0x1)
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0x20)
r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000a40)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x2, 0x0, 0x2, 0x0, 0x8000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x500, &(0x7f0000000380)={[{@errors_remount}, {@discard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}, {@data_err_ignore}]}, 0x1, 0x476, &(0x7f0000000540)="$eJzs3M1vFOUfAPDvzLblx2v7Q3wBUavE2PjS0oLKwYtGEw8YTfSAN2tbCKFQQ2sihEg1Bi8mhkTP6tHEv8CbF6OeTLzq3ZAQ5QJ6qpnZmbK7dLctLLuF/XySZZ9n5pl9nm9nnp1n5pklgJ41nP2TRGyLiN8jYrCarS8wXH27duXc1D9Xzk0lsbT05l9JXu7qlXNTZdFyu61FZiSNSD9JikrqzZ85e2JydnbmdJEfWzj53tj8mbPPHD85eWzm2MypiUOHDh4Yf/65iWfbEmcW19U9H87t3f3q2xdfmzpy8d2fv8vau61YXxtHg00N72s2nAX+91JueWFafXt83RFsbNtr0klfFxvCulQiIttd/Xn/H4xKXN95g/HKx11tHHBbZeemFie2xSXgLpZEt1sAdEd5os+uf8tXh4YeG8LlF6sXQFnc14pXdU1feameXxttv031D0fEkcV/v8pe0fo+BABAW3w29eXheHql8V8a99WU21HMoQxFxP8jYmdE3BMRuyLi3oi87P0R8cDqVaa1mcapoRvHP+mlmw5uDbLx3wvF3Fb9+G+5mUOVIrc9j78/OXp8dmZ/8TcZif5NWX68RR0/vPzb583W1Y7/sldWfzkWLNpxqa/hBt305MJkPihtg8sfRezpWyn+ZHkmIImI3RGxZ30fvaNMHH/y273NCq0efwttmGda+ibiier+X4yG+EtJ6/nJsf/F7Mz+sfKouNEvv154o1n9txR/G2T7f0v98d9YZCipna+dX38dF/74tOk1zc0e/wPJW/m2A8WyDyYXFk6PRwwkh/N83fKJ69uW+bJ8Fv/IvpX7/85imyz+ByMiO4gfioiHI+KRou2PRsRjEbGvRfw/vdR8XX38m7d1Y/9PN3z/bc7XLB//Dft//YnKiR+/X7n2r99Z2/4/mKdGiiX5998q1trAW/zzAQAAwB0hzZ+BT9LR5XSajo5Wn+HfFVvS2bn5haeOzr1/arr6rPxQ9Kflna7Bmvuh48li8YnV/ERxr7hcf6C4b/xFZXOeH52am53ucuzQ67Y26f+ZPyvdbh1w2600jzYx0IWGAB3X2P/T+uz51zvZGKCjmj5Hs6Wz7QA6b5Xn6NJOtQPoPP9fC/Sulfr/+Ya8uQC4Ozn/Q+/S/6F36f/Qu/R/6Emr/Ui+cou//Ze44xLJ2gpH2v2mboxEf0S05QMHNkQ4RaLb30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADt8V8AAAD//5qI6jE=")
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)

926.578353ms ago: executing program 3 (id=2291):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f00000001c0)={<r1=>0x0}, &(0x7f0000000340)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000380)={r1, 0xc5, "48809ab63ab8ae99d6556fa85e009ac98879f6fa743ed1dc96881d9a57906be08d7fa4444fc8f140e12eca37ff99f4bfa1afbe5a1f1f5d60bfcad140dc008ec55065199b185e701dc0ffb0e92754887141942c5034f3ee8e216f1365daf411ed1e7bfc22df1762dbb3b47ac6cbd5a517554e8ee14e1f1cd5d04d61635136543492b41d99b0abd2739c3d20d4a58c2ed5b97405d71ee12150288481aef490a0e18da2843bd8db2720148cf5f09ef7c9be03b6f87616cf001f94cb515aa251b8340b76a7cb01"}, &(0x7f0000000480)=0xcd)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00006000000080002000500000014000600ff01000a00f2f3f31f000a0000000001060001"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, 0x0, &(0x7f0000000180))
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x4c}, 0x1, 0x30000, 0x0, 0x24008000}, 0x4040000)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x40100, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x23}]}, @NFT_MSG_NEWSETELEM={0x80, 0xc, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x54, 0x3, 0x0, 0x1, [{0x50, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x44, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_LIMIT_UNIT={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x4}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x104}}, 0x4000040)

882.037364ms ago: executing program 0 (id=2292):
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x3}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x2, 0x0, 0xffffffff, 0x1, 0x4}})
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@newqdisc={0x54, 0x24, 0x3fe3aa0262d8c583, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x24, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0xb2}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x2}, @TCA_CAKE_RAW={0x8, 0xc, 0x1}]}}]}, 0x54}}, 0x20000490)

796.970684ms ago: executing program 3 (id=2293):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="12000000010000000800000002"], 0x50)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000280)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r2, &(0x7f00000001c0), 0x0}, 0x20)
r3 = syz_open_dev$loop(&(0x7f0000001440), 0x2, 0x80803)
ioctl$BLKRESETZONE(r3, 0x40101283, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021181500001e0a05010000000000000000070000000900020073797a31000000000900010073797a3000000000ec140380300000802c000180250001"], 0x159c}}, 0x0)

679.696115ms ago: executing program 3 (id=2294):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socket$key(0xf, 0x3, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r1 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
fallocate(r1, 0x19, 0x0, 0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000340)='bcache_btree_insert_key\x00', r2, 0x0, 0x1ffffffffffffffa}, 0xffffffdc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x50, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x24, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}, {0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}, {0x4}]}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xe0}, 0x1, 0x0, 0x0, 0x4008850}, 0x40)

509.070106ms ago: executing program 3 (id=2295):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
request_key(&(0x7f0000000780)='asymmetric\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f00000003c0)='incremental-fs\x00', 0xfffffffffffffffe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000000085000000720000"], &(0x7f0000000300)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
close(r2)

489.555496ms ago: executing program 3 (id=2296):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000500)={[{@i_version}, {@usrquota}, {@bh}]}, 0x1, 0x523, &(0x7f0000000c00)="$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")
r0 = creat(&(0x7f0000000240)='./file1\x00', 0x182)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x14c)
write$binfmt_elf32(r0, &(0x7f0000000900)=ANY=[], 0x58)
fallocate(r1, 0x0, 0x9, 0x2000403)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x76bf}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10)
socket$pppoe(0x18, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
listen(0xffffffffffffffff, 0x100)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)=@in6={0xa, 0x4e24, 0x7, @loopback, 0x8eb}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000280)="81", 0xffffff26}], 0x1, &(0x7f0000000040), 0x0, 0x4855}, 0x4008850)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)

487.960576ms ago: executing program 4 (id=2297):
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000000))
r0 = add_key(&(0x7f0000000200)='id_resolver\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)="4d563a7ee5c072367cf2b0c21508d9638d0b09cc78a566f2914063bfb323d677cced3aaa5c5a722b3ccc10e035b0477afff893ffdf3bdba33b4edaf217f6284137e8dd3e6bb5b8c24b4433eac21d7777917e26077510", 0x56, 0xfffffffffffffff8)
keyctl$describe(0x6, r0, &(0x7f0000000300)=""/219, 0xdb) (async)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000440)={0x1, &(0x7f0000000400)=[{0x5f, 0x8, 0x81}]}) (async)
r1 = socket$kcm(0x29, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000001cc0)={&(0x7f0000000480)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha512\x00'}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000500)="4fba6cbfd38a16ee80fba7d54953b975e6ea87f0d679f43987f7f16dada22e94861d8dabd1fb192a2621a3863259d451c009f351f494f1c7c0371a71e2e2a6f3eb7ede23c281579967b6397187f2eb73dc3b70a8cb08504cf3b9163276a63da347bc516b1d8ba803418e43", 0x6b}, {&(0x7f0000000580)="5649469491f9afd29b52a42eed6fdfd898be100bb9707bf9c0b054aede348b4a9ba60a0891157efa082d4b481e4f1b43e98158284c5def2fbff12b3c01518b4c7b8158074a9b81671c756b53c9eed9bb1eb93f56d875091a", 0x58}, {&(0x7f0000000600)="9c10ce88829fa1f843835b61839abc964ca677d4a7a35a3f44aebfb688a11d62a4f9b3dda4ed6baf742d109242a5e7c64da8733be496192baed71015400b510175eaea439b989829d28e9e5c748b34de591a5fcfa9906a805ceb828305793f8d74ac805d19fc2c2673cc5ca3aa1e189775a47caa989bec4ad15406eea68c76ccdda5db550b132037b6a1d0cc9aae2b9779a34451abb5b911d9fe150cae0722383fcb12b2a3cd4c5f402a7003bcf838ca103abf64e15b", 0xb6}, {&(0x7f00000006c0)="34c661edddcbbb73f103024a5b07de2d38f89b04e02a45512d949d75d6bcd7fdddf042b8", 0x24}, {&(0x7f0000000700)="d9c4a6542415a325d845e51f955ffd3137924ea8c5cb6142cb3ec78d3129327d45b756f9e388975ea5496ab56dd9bb8e8d14ddbbc22cfcfc6a6fbf277163cf6cdec6a66f68a683951be7ea0e917ab9148be6309bbbe2592168377855c62d68043ec539f262ec0c29bc9acaa500d398264950dbb87c3b536d47feb02d8db3cfbd9eb74dccd0cbf2c5fbe672b7e6651e0bf9fa3ae3e68a72e82b83498091cba28518de674d5e24cc7daad4e3611dd21dc6415ed9c0f97763dba476745be3882f273e4eed980b209ca499c9d58f01e78f1929ac78b5e0375469edecfc6b1ce61e5a6e966d193832", 0xe6}, {&(0x7f0000000800)="75285b53b59d02d5e4d4e6a93d4686bc50fa79f39e48e17fc2b48689e9b3f848a5a8f99205e84bfd0b3a4c92c75c6076446370c799a08c74dcd9a7ff0f11f6d4c5ed992984ce606bb5972e91a298a21815c563761e2e696cc29f27576937048d80edb9309faf178b2ee2e959eaffabe279d719cd82a6f515dd717d173d3b616b04b8e0713b98bccd2c9ff5101b2b630231a3e5ac6c89353618d95e571e3397f0a2", 0xa1}, {&(0x7f00000008c0)="4a4a1c64158cf4702a0b3774bb9dfa5904c8c204add7ded1523ae7163c168b267892ef2e8c1a4ce478507a55bbe9246c6fd392b12ba2755992a1356a42d2e9e6186789419e1e962876a1f88f1b4cda09407504c6aa0992b10d5ec7364990a68a347e94feeb4105b5257dedefa864cfe7c9817ba8b13ae0f9c974fc288d1d94281f35c284c3145f3c42fa8cf65db25701b43d27170fbdde19de279d8be7481f680063b0c63440bb0390bd352a9a26da76f44041526fb8e1899980c6db11b1c944a0638096006015", 0xc7}, {&(0x7f00000009c0)="34e17ec2a5aec28588db318207fffd0fd8f0c7986c78cbb3de8863853748797f069f3392ea09a4b8de732425827da87ad0ad6ce711bf68fa174913d49c8b531a9e", 0x41}], 0x8, &(0x7f0000000ac0)=[{0x38, 0x88, 0xe6a, "1f5ec92f75131853a9354993c12a73a31e8f91dcb88e7dd0b5677f7c39f1a10c142060eaf705"}, {0x30, 0xff, 0xffffffff, "70609db5d605408f6aee621b3b9ddf02d33340274c6ffe018df0"}, {0x1010, 0x108, 0x6, "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"}, {0x30, 0x11d, 0x4, "5f35b0f48720a62818e45ac1c1f910a59c17a89d17fdfef9d1aed4fd164185b1"}, {0xa0, 0x10c, 0x6, "aab2797e575963f7f6ce2c16bc21e1ed7881dbb0221c586322f3dc19796434c59d809b8386fa589e71bba8d65c0cc89c9996ce4398c5c373e395dfe6ca8683fda78e8ac9d9c910ec3d458dc8f10ee5f4c30f3962946a34810216e0e624ab0ce89e5f59cdb8a54f2818af69a65535184dd4fc60485e28344e4c8ba7450098b3af6e9469f1c7279345e1958a0958"}, {0xb0, 0x119, 0x6, "228f0ab0b71327f701e53f885b9c9006ce38e4e380ce5ad35f90cef7ae4510df9c39f1a1faf3aa086c04f53be443b931bcbe3f808c95f49822ccc30c2ea785ff4bbe532dc346b1a1de4ceb315e5c2fe9e0da75a7728c72721acd600ec34c56da378bd56ab162d35b1a9a4d291ab309ff3cad8c3698665af4df3ecb32168145019149213d7ce31a93f8b6f265d24f3dc6fe98a7571026236a9c9b02"}], 0x11f8}, 0x4) (async)
keyctl$set_timeout(0xf, r0, 0xaae) (async)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000001d00)={r0, 0xb9, 0x2b}, &(0x7f0000001d40)={'enc=', 'raw', ' hash=', {'sha512-ssse3\x00'}}, &(0x7f0000001dc0)="52bf158565ee3cf1ecd62fbe1acd97c187d70f5b8de5a18c5935f513263e5e3d7fbde800f2bb6f86ddff0bacbf28c81dc91f1626d5b385db97eb2fbb02202cccbfd39464f1e0440233cbb610d66a0ba40e4feb98ff3bff4bc9c746db4fbea3387e6f3809bae28bd3a0d748e8642936c64838bc8ba3ae1996c151b627a70457c0c477f37750c390e1b67ef5668b073af7ba9e348c756b8b8e746f36ced93d93ea3bd38b4efa6264db07583de0b52c499ecdedda91c51aba3f3c", &(0x7f0000001e80)=""/43) (async)
syslog(0x9, &(0x7f0000001ec0)=""/239, 0xef)
keyctl$get_security(0x11, r0, &(0x7f0000001fc0)=""/201, 0xc9)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f00000020c0)='^.\x00', &(0x7f0000002100)='\x00', 0x0)
keyctl$revoke(0x3, r0) (async)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x1, &(0x7f0000002180)=@raw=[@exit], &(0x7f00000021c0)='GPL\x00', 0x3, 0xdb, &(0x7f0000002200)=""/219, 0x41000, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000002300)={0x1, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000002340)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000002380)=[{0x4, 0x5, 0x9, 0xa}, {0x4, 0x4, 0x9, 0xc}, {0x3, 0x4, 0x7, 0x5}, {0x5, 0x5, 0x2, 0x1}], 0x10, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002480)={&(0x7f0000002140)='mmap_lock_acquire_returned\x00', r2, 0x0, 0x9}, 0x18) (async)
syz_clone3(&(0x7f0000003640)={0x80104080, &(0x7f00000024c0), &(0x7f0000002500), &(0x7f0000002540)=<r3=>0x0, {0xc}, &(0x7f0000002580)=""/119, 0x77, &(0x7f0000002600)=""/4096, &(0x7f0000003600)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x4}, 0x58)
move_pages(r3, 0x9, &(0x7f00000036c0)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f0000003740)=[0xe, 0x7], &(0x7f0000003780)=[0x0, 0x0], 0x6) (async)
r4 = memfd_secret(0x80000)
bind$802154_raw(r4, &(0x7f00000037c0)={0x24, @short={0x2, 0xffff, 0xaaa1}}, 0x14) (async)
io_uring_enter(r4, 0x5550, 0xfd08, 0x2, &(0x7f0000003800)={[0xd]}, 0x8) (async)
r5 = msgget(0x0, 0x201)
msgrcv(r5, &(0x7f0000003840)={0x0, ""/7}, 0xf, 0x3, 0x800) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000003a40)={0xa, 0xd, &(0x7f0000003880)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfff}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xf}, @exit], &(0x7f0000003900)='GPL\x00', 0x4, 0x77, &(0x7f0000003940)=""/119, 0x40f00, 0x4, '\x00', 0x0, @fallback=0xf, r4, 0x8, &(0x7f00000039c0)={0x1, 0x3}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, r4, 0x2, 0x0, &(0x7f0000003a00)=[{0x1, 0x4, 0xb, 0x2}, {0x5, 0x1, 0x1, 0xa}], 0x10, 0x3b67}, 0x94) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000003b40)={'batadv_slave_1\x00', <r6=>0x0})
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f0000003b80)=<r7=>0x0, &(0x7f0000003bc0)=0x4) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000003c00)={'pim6reg1\x00', <r8=>0x0})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f0000003d40)={&(0x7f0000003b00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000003d00)={&(0x7f0000003c40)={0x9c, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x2c, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r7}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x30, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @ipv4={'\x00', '\xff\xff', @loopback}}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xfa}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40000}, 0x4001) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000003dc0)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_MPATH(r4, &(0x7f0000003e80)={&(0x7f0000003d80)={0x10, 0x0, 0x0, 0x8000004}, 0xc, &(0x7f0000003e40)={&(0x7f0000003e00)={0x28, 0x0, 0x8, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4000000) (async)
sendmsg$nl_route(r4, &(0x7f0000003fc0)={&(0x7f0000003ec0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000003f80)={&(0x7f0000003f00)=@bridge_delneigh={0x6c, 0x1d, 0x8, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, r8, 0x80, 0x0, 0x1}, [@NDA_IFINDEX={0x8, 0x8, r6}, @NDA_VNI={0x8, 0x7, 0x7fff}, @NDA_LINK_NETNSID={0x8, 0xa, 0x8}, @NDA_PORT={0x6, 0x6, 0x4e20}, @NDA_FLAGS_EXT={0x8}, @NDA_MASTER={0x8, 0x9, 0x7fffffff}, @NDA_CACHEINFO={0x14, 0x3, {0xff, 0x3ff, 0x7, 0x5}}, @NDA_LLADDR={0xa}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) (async)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r4, 0xc02054a5, &(0x7f0000004040)={0x3, 0xffffffffffffffff, 'id0\x00'})

377.949707ms ago: executing program 4 (id=2298):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYRESDEC, @ANYRES32=0x0, @ANYRES32], 0x50)

336.933258ms ago: executing program 0 (id=2299):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r1, 0x0, 0x40008003}, 0x18)
io_uring_setup(0x3eac, &(0x7f0000000240)={0x0, 0xdb60, 0x40, 0x0, 0x12f})
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x40010)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x30046, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
getdents(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x129c81, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xd, &(0x7f0000000a00)=ANY=[@ANYBLOB="18020000010000000000000000000000850000008700000018110000", @ANYRES32=r4, @ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
r5 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
inotify_init1(0x800)
lsetxattr$security_selinux(&(0x7f0000000400)='./file0\x00', &(0x7f0000000000), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)

336.283247ms ago: executing program 1 (id=2300):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="010300000100f1dbdf2526"], 0x14}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[], 0x54}}, 0x20040840)

313.541808ms ago: executing program 2 (id=2301):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000a00000011000300686173683a69702c706f72"], 0x4c}}, 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)={0x5c, 0x9, 0x6, 0x3, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0xe1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

298.113088ms ago: executing program 1 (id=2302):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
request_key(&(0x7f0000000780)='asymmetric\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f00000003c0)='incremental-fs\x00', 0xfffffffffffffffe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b70300000000000085000000720000"], &(0x7f0000000300)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
close(r2)

278.702648ms ago: executing program 4 (id=2303):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, 0x0, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000840)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
bind$xdp(r0, &(0x7f0000000280)={0x2c, 0x1, 0x0, 0x8000004}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$eJzs3c9vHFcdAPDvTLK2k7h1WnoABG1oCwFFWceb1qp6gHJCCFVC9AhSauyNZXnXa3nXpTaRcM9ckajECY78AZx74s4FwY1LOSDxwwLVSBwGzezY2di79uaHvZb385FG89688X7fizPvzbxd7wtgbN2IiJ2ImIiI9yNipjyelFu8093y8z7bfbC4t/tgMYkse++fSVGeH4uen8ldK19zKiJ+8J2IHydH47a3tlcXGo36Rpmf7TTXZ9tb27dXmgvL9eX6Wq02Pzd/5627b9YeozVTx5a+0pwoU1/+9A873/hpXq3p8khvO56lbtMrB3FylyPie6cRbAQule2ZGHVFeCJpRLwYEa8W1/9MXCp+mwDARZZlM5HN9OYBgIsuLebAkrRazgVMR5pWq905vJfiatpotTu37rc215a6c2XXo5LeX2nU75RzhdejkuT5uSL9MF87lL8bES9ExC8mrxT56mKrsTTKGx8AGGPXDo3//5nsjv8AwAV3/MdmAICLyPgPAOPH+A8A48f4DwDjpzv+X3ncH8uy7GenUR0A4Ax4/geA8WP8B4Cx8v133823bK/8/uulD7Y2V1sf3F6qt1erzc3F6mJrY7263GotF9/Z0zzp9Rqt1vrcG7H54fVvrrc7s+2t7XvN1uZa517xvd736pXirJ0zaBkAMMgLr3zy5yQfkd++UmzRs5ZDZaQ1A05bOuoKACNzadQVAEbGal8wvh4+4z/2hwBMD8AF0WeJ3kdM9fsDoSzLstOrEnDKbn7B/D+Mq575f58ChjFz0vx/sTawNwnhQjL/D+Mry5Jh1/yPYU8EAM63Y+b4r5/lfQgwOgPe/3+x3P+2fHPgR0uHz/j4NGsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA59v++r/Vcpnf6UjTajXiuWIBoEpyf6VRvxMRz0fEnyYrk3l+bsR1BgCeVvq3pFz/6+bM69OPFL187SA5ERE/+dV7v/xwodPZ+GPERPKvyf3jnY/L47UTg02dRgsAgOPtj9PFvudB/rPdB4v721nW5+/f7t4V5HH3didi7yD+5bhc7KeiEhFX/52U+a6kZ+7iaex8FBGf79f+JKaLOZDuLcvh+Hns5840fvpI/LRcoDkt/y0+9wzqAuPmk7z/eaff9ZfGjWLf//qfKnqop1f2f/lLLe4VfeDD+Pv936UB/d+NYWO88fvvdlNXjpZ9FPHFyxH7sfd6+p/9+MmA+K8PGf8vX3r51UFl2a8jbkb/+L2xZjvN9dn21vbtlebCcn25vlarzc/N33nr7pu12WKOenbwaPCPt289P6gsb//VAfGnTmj/V4ds/2/+9/4Pv3JM/K+/1i9+Gi8dEz8fE782ZPyFq78b+Nydx1862v5kmN//rSHjf/rX7SPLhgMAo9Pe2l5daDTqGxIS5z+R/5c9B9Xom/jWWcWaiP5FP3+te00fKsqyJ4o1qMd4FrNuwHlwcNFHxH9HXRkAAAAAAAAAAAAAAKCvs/iLpVG3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIvr/wEAAP//Rb3T2A==")
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x80642, 0x150)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0xffff, 0xb7, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x1e)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_128={{0x303}, "2d432d74c04f228a", "d71d9a1e03558545115509e1c34caab9", "59f7766d", "5e33931677e0f2d7"}, 0x28)
sendto$inet6(r2, &(0x7f0000000740)='S\x00<', 0x3, 0x8000, 0x0, 0x0)
close(r2)

270.245428ms ago: executing program 2 (id=2304):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socket$key(0xf, 0x3, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r1 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
fallocate(r1, 0x19, 0x0, 0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000340)='bcache_btree_insert_key\x00', r2, 0x0, 0x1ffffffffffffffa}, 0xffffffdc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x50, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x24, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}, {0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}, {0x4}]}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xe0}, 0x1, 0x0, 0x0, 0x4008850}, 0x40)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r4, 0x5408, &(0x7f00000002c0)={0xff, 0x1, 0x0, 0xbb02, 0x4, '\x00\x00\x00\x00\x00\x00 \x00'})
write$binfmt_aout(r4, &(0x7f0000000180)=ANY=[], 0xff2e)
r5 = syz_open_pts(r4, 0x101000)
r6 = dup3(r5, r4, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x17)
mq_notify(0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xaf, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, 0x0, 0x2060, 0x0)
fsetxattr$trusted_overlay_redirect(r8, 0x0, 0x0, 0x0, 0x0)
r9 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r10, {0x0, 0x2}, {0xffff, 0xffff}, {0x4, 0x300}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_DELAY_DIST={0x6, 0x2, "9f2b"}, @TCA_NETEM_LOSS={0xfffffffffffffe4d}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

246.921858ms ago: executing program 1 (id=2305):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYRESDEC, @ANYRES32=0x0, @ANYRES32], 0x50)

232.124618ms ago: executing program 4 (id=2306):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000009c0)={'syztnl1\x00', &(0x7f00000001c0)={'ip6tnl0\x00', 0x0, 0x2, 0xd7, 0x8c, 0x1ff, 0x38, @private2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x40, 0x10, 0xfffffff9, 0x80000003}})
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
r2 = socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0x8, &(0x7f0000000000)={0xfffffffffffffffb, 0xfffffffffffffffc}, 0x0)
getrlimit(0x5, &(0x7f00000000c0))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffc0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb0100180000000000000034000019340000000c0000000400000002000084fdffffff0a00000002000000e269000001000000050000000400000000000000000000010500000020000000006100302e61615f61006100"], 0x0, 0x58}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='sched_switch\x00', r3, 0x0, 0x2}, 0x18)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, 0x0, 0x804)
r6 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, 0x0)
ioctl$USBDEVFS_IOCTL(r6, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x3, 0x0, 0x0, 0x0, 0x3, 0x1e64df, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0xa8e, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_SETCONFIGURATION(r6, 0x80045505, &(0x7f0000000000)=0x1)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0x20)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r7, 0x0)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000a40)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x2, 0x0, 0x2, 0x0, 0x8000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8, 0x0, 0x2}, 0x18)
syz_genetlink_get_family_id$gtp(&(0x7f0000000a00), r4)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)

166.860059ms ago: executing program 0 (id=2307):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
request_key(&(0x7f0000000780)='asymmetric\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f00000003c0)='incremental-fs\x00', 0xfffffffffffffffe)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000072000000"], &(0x7f0000000300)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r1, 0x0, 0x4804}, 0x18)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
close(r2)

165.916808ms ago: executing program 3 (id=2308):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r1, 0x0, 0x40008003}, 0x18)
io_uring_setup(0x3eac, &(0x7f0000000240)={0x0, 0xdb60, 0x40, 0x0, 0x12f})
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x40010)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x30046, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
getdents(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x129c81, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xd, &(0x7f0000000a00)=ANY=[@ANYBLOB="18020000010000000000000000000000850000008700000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000040000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008004000b704000000000000850029b782000000950000000000000039706586cbacf78905ef78f7cac5d745066e10a5593d816813df5daf0e5f2a1b3b2c268e2e1c6386ea8d3bfa05a6f87aa0410884e4d9885861cf2eb6c3aba2e0242a4f240043fda8da82b26c9624851e046d831f510afe6464e91cc3bbd1fcc4239ca96f48f163fb958455c53b97ce9e265e94867796edcce5160e48d43f4830fa9b6782388a7a656c1fe30a55dc0072d1be1683844a3f15aef40f4719a7b97cd5cd5c795c9140eaa5f2befb12630f591ba1bec52fb3fa320e7303c9fee576ad625ed8748a8f5b5c169906d262f2c84030487ff76ab41af4825c87adfbed7c8e06"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
r5 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
inotify_init1(0x800)
lsetxattr$security_selinux(&(0x7f0000000400)='./file0\x00', &(0x7f0000000000), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)

134.694489ms ago: executing program 2 (id=2309):
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x3}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x2, 0x0, 0xffffffff, 0x1, 0x4}})
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@newqdisc={0x54, 0x24, 0x3fe3aa0262d8c583, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x24, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0xb2}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x2}, @TCA_CAKE_RAW={0x8, 0xc, 0x1}]}}]}, 0x54}}, 0x20000490)

104.711649ms ago: executing program 0 (id=2310):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="12000000030000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r2], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r3, 0x0, 0x3}, 0x18)
close(r0)

68.10152ms ago: executing program 1 (id=2311):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000340)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmat(0x0, &(0x7f0000000000/0x2000)=nil, 0x5000)
pread64(0xffffffffffffffff, &(0x7f0000001200)=""/4096, 0x1000, 0x86d)
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1c0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)

52.528369ms ago: executing program 0 (id=2312):
syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x11c167, 0x0, 0xfffffffa, 0xb95b5ec032cc8e84}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x17, 0x2000000000000242, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r2}, 0x10)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000007c0)='uid_map\x00')
preadv(r3, &(0x7f0000000200)=[{&(0x7f0000000380)=""/106, 0xbe}], 0x1, 0x40fb, 0x9)
openat(r3, &(0x7f0000000040)='./file0\x00', 0x22e00, 0x100)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_IOC_FAIL(r4, 0x4c80, 0xffffffffffffffb6)

38.28538ms ago: executing program 2 (id=2313):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="010300000100f1dbdf2526"], 0x14}}, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[], 0x54}}, 0x20040840)

0s ago: executing program 2 (id=2314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYRESDEC, @ANYRES32=0x0, @ANYRES32], 0x50)

kernel console output (not intermixed with test programs):

7 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  103.999277][   T29] audit: type=1326 audit(1762243151.665:3529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6222 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  104.114140][ T6242] netlink: 'syz.1.827': attribute type 6 has an invalid length.
[  104.165450][ T6244] FAULT_INJECTION: forcing a failure.
[  104.165450][ T6244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.178674][ T6244] CPU: 0 UID: 0 PID: 6244 Comm: syz.0.828 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  104.178706][ T6244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  104.178719][ T6244] Call Trace:
[  104.178747][ T6244]  <TASK>
[  104.178756][ T6244]  __dump_stack+0x1d/0x30
[  104.178786][ T6244]  dump_stack_lvl+0xe8/0x140
[  104.178813][ T6244]  dump_stack+0x15/0x1b
[  104.178837][ T6244]  should_fail_ex+0x265/0x280
[  104.178859][ T6244]  should_fail+0xb/0x20
[  104.178875][ T6244]  should_fail_usercopy+0x1a/0x20
[  104.178962][ T6244]  _copy_from_iter+0xd2/0xe80
[  104.179027][ T6244]  ? __build_skb_around+0x1ab/0x200
[  104.179128][ T6244]  ? __alloc_skb+0x223/0x320
[  104.179160][ T6244]  netlink_sendmsg+0x471/0x6b0
[  104.179215][ T6244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.179239][ T6244]  __sock_sendmsg+0x145/0x180
[  104.179293][ T6244]  ____sys_sendmsg+0x31e/0x4e0
[  104.179382][ T6244]  ___sys_sendmsg+0x17b/0x1d0
[  104.179419][ T6244]  __x64_sys_sendmsg+0xd4/0x160
[  104.179450][ T6244]  x64_sys_call+0x191e/0x3000
[  104.179476][ T6244]  do_syscall_64+0xd2/0x200
[  104.179501][ T6244]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  104.179546][ T6244]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  104.179606][ T6244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.179634][ T6244] RIP: 0033:0x7f781833f6c9
[  104.179654][ T6244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.179676][ T6244] RSP: 002b:00007f7816d9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  104.179696][ T6244] RAX: ffffffffffffffda RBX: 00007f7818595fa0 RCX: 00007f781833f6c9
[  104.179710][ T6244] RDX: 0000000000000000 RSI: 0000200000001ac0 RDI: 0000000000000004
[  104.179727][ T6244] RBP: 00007f7816d9f090 R08: 0000000000000000 R09: 0000000000000000
[  104.179758][ T6244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.179770][ T6244] R13: 00007f7818596038 R14: 00007f7818595fa0 R15: 00007fff6df03518
[  104.179790][ T6244]  </TASK>
[  104.397697][ T6246] __nla_validate_parse: 3 callbacks suppressed
[  104.397719][ T6246] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.829'.
[  104.459529][ T6248] netlink: 28 bytes leftover after parsing attributes in process `syz.3.830'.
[  104.471128][ T6246] program syz.1.829 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  104.497165][ T6248] lo speed is unknown, defaulting to 1000
[  104.510269][ T6253] netlink: 28 bytes leftover after parsing attributes in process `syz.4.832'.
[  104.545906][ T6253] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.832' sets config #0
[  104.558201][ T6256] ip6t_srh: unknown srh match flags  4000
[  104.569752][ T6253] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.832' sets config #1
[  104.594728][ T6257] netlink: 'syz.3.830': attribute type 4 has an invalid length.
[  104.654505][ T6251] lo speed is unknown, defaulting to 1000
[  104.702102][ T6263] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.836'.
[  104.721968][ T6253] lo speed is unknown, defaulting to 1000
[  104.742827][ T6259] netlink: 'syz.4.832': attribute type 4 has an invalid length.
[  104.784615][ T3968] lo speed is unknown, defaulting to 1000
[  104.790819][ T3968] syz2: Port: 1 Link DOWN
[  104.799049][ T6273] FAULT_INJECTION: forcing a failure.
[  104.799049][ T6273] name failslab, interval 1, probability 0, space 0, times 0
[  104.811817][ T6273] CPU: 1 UID: 0 PID: 6273 Comm: syz.1.838 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  104.811852][ T6273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  104.811868][ T6273] Call Trace:
[  104.811876][ T6273]  <TASK>
[  104.811884][ T6273]  __dump_stack+0x1d/0x30
[  104.811913][ T6273]  dump_stack_lvl+0xe8/0x140
[  104.811998][ T6273]  dump_stack+0x15/0x1b
[  104.812016][ T6273]  should_fail_ex+0x265/0x280
[  104.812036][ T6273]  should_failslab+0x8c/0xb0
[  104.812114][ T6273]  kmem_cache_alloc_noprof+0x50/0x480
[  104.812191][ T6273]  ? alloc_empty_file+0x76/0x200
[  104.812218][ T6273]  alloc_empty_file+0x76/0x200
[  104.812242][ T6273]  alloc_file_pseudo+0xc6/0x160
[  104.812343][ T6273]  hugetlb_file_setup+0x2a6/0x3d0
[  104.812393][ T6273]  ksys_mmap_pgoff+0x157/0x310
[  104.812420][ T6273]  x64_sys_call+0x14a3/0x3000
[  104.812524][ T6273]  do_syscall_64+0xd2/0x200
[  104.812549][ T6273]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  104.812587][ T6273]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  104.812691][ T6273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.812720][ T6273] RIP: 0033:0x7fc418d9f6c9
[  104.812739][ T6273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.812762][ T6273] RSP: 002b:00007fc417807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  104.812791][ T6273] RAX: ffffffffffffffda RBX: 00007fc418ff5fa0 RCX: 00007fc418d9f6c9
[  104.812832][ T6273] RDX: 0000000000000003 RSI: 0000000000ff5000 RDI: 0000200000000000
[  104.812849][ T6273] RBP: 00007fc417807090 R08: ffffffffffffffff R09: 0000000000000000
[  104.812866][ T6273] R10: 00020000000ec071 R11: 0000000000000246 R12: 0000000000000001
[  104.812882][ T6273] R13: 00007fc418ff6038 R14: 00007fc418ff5fa0 R15: 00007ffc97b43218
[  104.812955][ T6273]  </TASK>
[  105.052912][ T6282] netlink: 'syz.1.840': attribute type 6 has an invalid length.
[  105.120154][ T6285] sd 0:0:1:0: device reset
[  105.167540][ T6285] program syz.1.842 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  105.403381][ T6309] FAULT_INJECTION: forcing a failure.
[  105.403381][ T6309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.416692][ T6309] CPU: 1 UID: 0 PID: 6309 Comm: syz.1.848 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  105.416726][ T6309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  105.416739][ T6309] Call Trace:
[  105.416744][ T6309]  <TASK>
[  105.416752][ T6309]  __dump_stack+0x1d/0x30
[  105.416775][ T6309]  dump_stack_lvl+0xe8/0x140
[  105.416823][ T6309]  dump_stack+0x15/0x1b
[  105.416847][ T6309]  should_fail_ex+0x265/0x280
[  105.416896][ T6309]  should_fail+0xb/0x20
[  105.416918][ T6309]  should_fail_usercopy+0x1a/0x20
[  105.416945][ T6309]  _copy_from_user+0x1c/0xb0
[  105.417036][ T6309]  ___sys_sendmsg+0xc1/0x1d0
[  105.417084][ T6309]  __x64_sys_sendmsg+0xd4/0x160
[  105.417117][ T6309]  x64_sys_call+0x191e/0x3000
[  105.417147][ T6309]  do_syscall_64+0xd2/0x200
[  105.417169][ T6309]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  105.417242][ T6309]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  105.417288][ T6309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.417354][ T6309] RIP: 0033:0x7fc418d9f6c9
[  105.417376][ T6309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.417399][ T6309] RSP: 002b:00007fc417807038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.417421][ T6309] RAX: ffffffffffffffda RBX: 00007fc418ff5fa0 RCX: 00007fc418d9f6c9
[  105.417500][ T6309] RDX: 0000000008000002 RSI: 0000200000000000 RDI: 0000000000000003
[  105.417564][ T6309] RBP: 00007fc417807090 R08: 0000000000000000 R09: 0000000000000000
[  105.417579][ T6309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.417594][ T6309] R13: 00007fc418ff6038 R14: 00007fc418ff5fa0 R15: 00007ffc97b43218
[  105.417618][ T6309]  </TASK>
[  105.601590][ T6311] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.849' sets config #0
[  105.611164][ T6311] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.849' sets config #1
[  105.669288][ T6313] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.850'.
[  105.678995][ T6311] lo speed is unknown, defaulting to 1000
[  105.698183][ T6319] FAULT_INJECTION: forcing a failure.
[  105.698183][ T6319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.711403][ T6319] CPU: 1 UID: 0 PID: 6319 Comm: syz.1.851 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  105.711473][ T6319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  105.711486][ T6319] Call Trace:
[  105.711493][ T6319]  <TASK>
[  105.711500][ T6319]  __dump_stack+0x1d/0x30
[  105.711523][ T6319]  dump_stack_lvl+0xe8/0x140
[  105.711550][ T6319]  dump_stack+0x15/0x1b
[  105.711574][ T6319]  should_fail_ex+0x265/0x280
[  105.711603][ T6319]  should_fail+0xb/0x20
[  105.711623][ T6319]  should_fail_usercopy+0x1a/0x20
[  105.711650][ T6319]  _copy_from_user+0x1c/0xb0
[  105.711678][ T6319]  ___sys_sendmsg+0xc1/0x1d0
[  105.711718][ T6319]  __x64_sys_sendmsg+0xd4/0x160
[  105.711767][ T6319]  x64_sys_call+0x191e/0x3000
[  105.711830][ T6319]  do_syscall_64+0xd2/0x200
[  105.711852][ T6319]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  105.711891][ T6319]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  105.712004][ T6319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.712106][ T6319] RIP: 0033:0x7fc418d9f6c9
[  105.712126][ T6319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.712205][ T6319] RSP: 002b:00007fc417807038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.712229][ T6319] RAX: ffffffffffffffda RBX: 00007fc418ff5fa0 RCX: 00007fc418d9f6c9
[  105.712246][ T6319] RDX: 0000000000000040 RSI: 0000200000000600 RDI: 0000000000000004
[  105.712263][ T6319] RBP: 00007fc417807090 R08: 0000000000000000 R09: 0000000000000000
[  105.712280][ T6319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.712335][ T6319] R13: 00007fc418ff6038 R14: 00007fc418ff5fa0 R15: 00007ffc97b43218
[  105.712369][ T6319]  </TASK>
[  106.044973][ T6328] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  106.093990][ T6333] netlink: 176 bytes leftover after parsing attributes in process `syz.2.857'.
[  106.120389][ T6328] bridge0: port 3(dummy0) entered disabled state
[  106.188404][ T6334] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.318618][ T6334] 8021q: adding VLAN 0 to HW filter on device team0
[  106.338180][ T6334] bridge0: port 3(dummy0) entered blocking state
[  106.344602][ T6334] bridge0: port 3(dummy0) entered forwarding state
[  106.368289][ T6334] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  106.458286][ T6344] lo speed is unknown, defaulting to 1000
[  106.913528][ T6352] wireguard0: entered promiscuous mode
[  106.919106][ T6352] wireguard0: entered allmulticast mode
[  107.156294][ T6364] FAULT_INJECTION: forcing a failure.
[  107.156294][ T6364] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.169530][ T6364] CPU: 0 UID: 0 PID: 6364 Comm: syz.4.866 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  107.169622][ T6364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  107.169638][ T6364] Call Trace:
[  107.169646][ T6364]  <TASK>
[  107.169654][ T6364]  __dump_stack+0x1d/0x30
[  107.169683][ T6364]  dump_stack_lvl+0xe8/0x140
[  107.169709][ T6364]  dump_stack+0x15/0x1b
[  107.169799][ T6364]  should_fail_ex+0x265/0x280
[  107.169830][ T6364]  should_fail+0xb/0x20
[  107.169846][ T6364]  should_fail_usercopy+0x1a/0x20
[  107.169867][ T6364]  _copy_from_user+0x1c/0xb0
[  107.169894][ T6364]  ___sys_sendmsg+0xc1/0x1d0
[  107.169939][ T6364]  __x64_sys_sendmsg+0xd4/0x160
[  107.169996][ T6364]  x64_sys_call+0x191e/0x3000
[  107.170061][ T6364]  do_syscall_64+0xd2/0x200
[  107.170127][ T6364]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  107.170244][ T6364]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  107.170279][ T6364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.170300][ T6364] RIP: 0033:0x7fd6d030f6c9
[  107.170366][ T6364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.170390][ T6364] RSP: 002b:00007fd6ced77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.170416][ T6364] RAX: ffffffffffffffda RBX: 00007fd6d0565fa0 RCX: 00007fd6d030f6c9
[  107.170503][ T6364] RDX: 0000000004008800 RSI: 0000200000000540 RDI: 0000000000000003
[  107.170520][ T6364] RBP: 00007fd6ced77090 R08: 0000000000000000 R09: 0000000000000000
[  107.170538][ T6364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.170553][ T6364] R13: 00007fd6d0566038 R14: 00007fd6d0565fa0 R15: 00007ffe9d0e9178
[  107.170580][ T6364]  </TASK>
[  107.349007][ T6369] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.865'.
[  107.388975][ T6370] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.868' sets config #0
[  107.399857][ T6367] siw: device registration error -23
[  107.405449][ T6370] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.868' sets config #1
[  107.455354][ T6370] lo speed is unknown, defaulting to 1000
[  107.863222][ T6393] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  108.238161][ T6426] netlink: 28 bytes leftover after parsing attributes in process `syz.1.889'.
[  108.259537][ T6426] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.889' sets config #0
[  108.280879][ T6426] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.889' sets config #1
[  108.329098][ T6426] lo speed is unknown, defaulting to 1000
[  108.339274][ T6430] netlink: 'syz.4.891': attribute type 6 has an invalid length.
[  108.403955][ T6435] netlink: 'syz.1.889': attribute type 4 has an invalid length.
[  108.496080][ T6440] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.893'.
[  108.720839][ T6455] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  108.776049][ T6455] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.784626][ T6455] 8021q: adding VLAN 0 to HW filter on device team0
[  108.795745][   T29] kauditd_printk_skb: 269 callbacks suppressed
[  108.795778][   T29] audit: type=1326 audit(1762243156.705:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  108.825372][   T29] audit: type=1326 audit(1762243156.705:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  108.830503][ T6459] netlink: 20 bytes leftover after parsing attributes in process `syz.0.902'.
[  108.865840][ T6455] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  108.882264][ T6458] lo speed is unknown, defaulting to 1000
[  108.924433][   T29] audit: type=1326 audit(1762243156.735:3801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  108.947955][   T29] audit: type=1326 audit(1762243156.735:3802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  108.971340][   T29] audit: type=1326 audit(1762243156.735:3803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  108.994807][   T29] audit: type=1326 audit(1762243156.735:3804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  109.018201][   T29] audit: type=1326 audit(1762243156.735:3805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  109.041600][   T29] audit: type=1326 audit(1762243156.735:3806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  109.065002][   T29] audit: type=1326 audit(1762243156.735:3807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  109.088324][   T29] audit: type=1326 audit(1762243156.735:3808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6457 comm="syz.0.902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  109.379212][ T6471] wireguard0: entered promiscuous mode
[  109.384810][ T6471] wireguard0: entered allmulticast mode
[  109.421205][ T4080] Bluetooth: hci0: Frame reassembly failed (-90)
[  109.613384][ T6482] siw: device registration error -23
[  109.790426][ T6486] lo speed is unknown, defaulting to 1000
[  109.985616][ T6507] wireguard0: entered promiscuous mode
[  109.991147][ T6507] wireguard0: entered allmulticast mode
[  110.083560][ T6511] siw: device registration error -23
[  110.190094][ T6517] __nla_validate_parse: 2 callbacks suppressed
[  110.190140][ T6517] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.919'.
[  110.224006][ T6519] netlink: 28 bytes leftover after parsing attributes in process `syz.2.920'.
[  110.277738][ T6519] lo speed is unknown, defaulting to 1000
[  110.356066][ T6525] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.922'.
[  110.468694][ T6519] netlink: 'syz.2.920': attribute type 4 has an invalid length.
[  110.810951][ T6538] netlink: 28 bytes leftover after parsing attributes in process `syz.4.928'.
[  110.850655][ T6538] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.928' sets config #0
[  110.877549][ T6536] lo speed is unknown, defaulting to 1000
[  110.893083][ T6538] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.928' sets config #1
[  110.936895][ T6542] wireguard0: entered promiscuous mode
[  110.942428][ T6542] wireguard0: entered allmulticast mode
[  110.965321][ T6538] lo speed is unknown, defaulting to 1000
[  111.036363][ T6538] netlink: 'syz.4.928': attribute type 4 has an invalid length.
[  111.060095][ T6547] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  111.139892][ T6555] netlink: 17279 bytes leftover after parsing attributes in process `syz.4.933'.
[  111.203024][ T6558] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.934' sets config #0
[  111.212801][ T6558] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.934' sets config #1
[  111.236223][ T6558] lo speed is unknown, defaulting to 1000
[  111.425669][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  111.425826][ T3540] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  111.876552][ T6576] siw: device registration error -23
[  111.990441][ T6588] netlink: 'syz.0.944': attribute type 6 has an invalid length.
[  112.026169][ T6586] wireguard0: entered promiscuous mode
[  112.031690][ T6586] wireguard0: entered allmulticast mode
[  112.080700][ T6592] siw: device registration error -23
[  112.110768][ T6595] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  112.168455][ T6595] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.176663][ T6595] 8021q: adding VLAN 0 to HW filter on device team0
[  112.186465][ T6595] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  112.278946][ T6602] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.949' sets config #0
[  112.295431][ T6602] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.949' sets config #1
[  112.325964][ T6602] lo speed is unknown, defaulting to 1000
[  112.537331][ T6618] netlink: 'syz.3.956': attribute type 6 has an invalid length.
[  112.657424][ T6628] siw: device registration error -23
[  112.886509][ T6639] capability: warning: `syz.3.963' uses 32-bit capabilities (legacy support in use)
[  113.101874][ T6645] netlink: 176 bytes leftover after parsing attributes in process `syz.0.964'.
[  113.133844][ T6648] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.965' sets config #0
[  113.143137][ T6648] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.965' sets config #1
[  113.172494][ T6648] lo speed is unknown, defaulting to 1000
[  113.181500][ T6639] netlink: 32 bytes leftover after parsing attributes in process `syz.3.963'.
[  113.504862][ T6670] siw: device registration error -23
[  113.600883][ T6685] netlink: 'syz.2.979': attribute type 6 has an invalid length.
[  113.626899][ T6688] netlink: 176 bytes leftover after parsing attributes in process `syz.1.980'.
[  113.645733][ T6690] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.981'.
[  113.736495][ T6698] sd 0:0:1:0: device reset
[  113.835370][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  113.835389][   T29] audit: type=1400 audit(1762243161.735:4022): avc:  denied  { ioctl } for  pid=6702 comm="syz.2.985" path="socket:[16360]" dev="sockfs" ino=16360 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  113.880117][ T6703] infiniband syz!: set down
[  113.884669][ T6703] infiniband syz!: added team_slave_0
[  113.923443][ T6703] RDS/IB: syz!: added
[  113.927833][ T6703] smc: adding ib device syz! with port count 1
[  113.934014][ T6703] smc:    ib device syz! port 1 has no pnetid
[  113.980212][ T6712] netlink: 28 bytes leftover after parsing attributes in process `syz.3.986'.
[  114.112409][ T6711] siw: device registration error -23
[  114.135613][   T29] audit: type=1326 audit(1762243162.035:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6722 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  114.138958][ T6725] netlink: 'syz.0.992': attribute type 6 has an invalid length.
[  114.160298][   T29] audit: type=1326 audit(1762243162.035:4024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6722 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  114.192054][   T29] audit: type=1326 audit(1762243162.035:4025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6722 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  114.216763][   T29] audit: type=1326 audit(1762243162.035:4026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6722 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  114.240505][   T29] audit: type=1326 audit(1762243162.035:4027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6722 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  114.286270][ T6735] FAULT_INJECTION: forcing a failure.
[  114.286270][ T6735] name failslab, interval 1, probability 0, space 0, times 0
[  114.299074][ T6735] CPU: 1 UID: 0 PID: 6735 Comm: syz.4.996 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  114.299106][ T6735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  114.299118][ T6735] Call Trace:
[  114.299124][ T6735]  <TASK>
[  114.299162][ T6735]  __dump_stack+0x1d/0x30
[  114.299193][ T6735]  dump_stack_lvl+0xe8/0x140
[  114.299221][ T6735]  dump_stack+0x15/0x1b
[  114.299246][ T6735]  should_fail_ex+0x265/0x280
[  114.299272][ T6735]  should_failslab+0x8c/0xb0
[  114.299366][ T6735]  kmem_cache_alloc_noprof+0x50/0x480
[  114.299404][ T6735]  ? skb_clone+0x151/0x1f0
[  114.299431][ T6735]  skb_clone+0x151/0x1f0
[  114.299455][ T6735]  __netlink_deliver_tap+0x2c9/0x500
[  114.299505][ T6735]  netlink_unicast+0x66b/0x690
[  114.299630][ T6735]  netlink_sendmsg+0x58b/0x6b0
[  114.299657][ T6735]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.299682][ T6735]  __sock_sendmsg+0x145/0x180
[  114.299710][ T6735]  sock_write_iter+0x1a7/0x1f0
[  114.299773][ T6735]  do_iter_readv_writev+0x4a1/0x540
[  114.299835][ T6735]  vfs_writev+0x2df/0x8b0
[  114.299883][ T6735]  do_writev+0xe7/0x210
[  114.299915][ T6735]  __x64_sys_writev+0x45/0x50
[  114.300061][ T6735]  x64_sys_call+0x1e9a/0x3000
[  114.300091][ T6735]  do_syscall_64+0xd2/0x200
[  114.300115][ T6735]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  114.300150][ T6735]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  114.300214][ T6735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.300252][ T6735] RIP: 0033:0x7fd6d030f6c9
[  114.300272][ T6735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.300293][ T6735] RSP: 002b:00007fd6ced77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  114.300327][ T6735] RAX: ffffffffffffffda RBX: 00007fd6d0565fa0 RCX: 00007fd6d030f6c9
[  114.300343][ T6735] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: 0000000000000004
[  114.300358][ T6735] RBP: 00007fd6ced77090 R08: 0000000000000000 R09: 0000000000000000
[  114.300431][ T6735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.300446][ T6735] R13: 00007fd6d0566038 R14: 00007fd6d0565fa0 R15: 00007ffe9d0e9178
[  114.300467][ T6735]  </TASK>
[  114.574954][ T6740] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.997' sets config #0
[  114.595788][ T6740] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.997' sets config #1
[  114.639299][ T6740] lo speed is unknown, defaulting to 1000
[  114.678239][ T6742] wireguard0: entered promiscuous mode
[  114.683778][ T6742] wireguard0: entered allmulticast mode
[  114.727994][ T6747] netlink: 'syz.4.997': attribute type 4 has an invalid length.
[  114.888698][ T6767] siw: device registration error -23
[  114.917792][   T29] audit: type=1326 audit(1762243162.825:4028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6755 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  114.941431][   T29] audit: type=1326 audit(1762243162.825:4029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6755 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  114.961193][ T6772] lo speed is unknown, defaulting to 1000
[  114.965497][   T29] audit: type=1326 audit(1762243162.825:4030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6755 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  114.994386][   T29] audit: type=1326 audit(1762243162.825:4031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6755 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  115.102375][ T6756] lo speed is unknown, defaulting to 1000
[  115.206251][ T6780] wireguard0: entered promiscuous mode
[  115.211781][ T6780] wireguard0: entered allmulticast mode
[  115.284078][ T6787] netlink: 'syz.2.1012': attribute type 4 has an invalid length.
[  115.461686][ T6797] __nla_validate_parse: 5 callbacks suppressed
[  115.461707][ T6797] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1017'.
[  115.462256][ T6795] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  115.534749][ T6795] bridge0: port 3(dummy0) entered disabled state
[  115.637634][ T6798] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.670167][ T6798] 8021q: adding VLAN 0 to HW filter on device team0
[  115.688973][ T6798] bridge0: port 3(dummy0) entered blocking state
[  115.695408][ T6798] bridge0: port 3(dummy0) entered forwarding state
[  115.719215][ T6798] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  115.746669][ T6783] lo speed is unknown, defaulting to 1000
[  115.829809][ T6810] xt_hashlimit: max too large, truncated to 1048576
[  115.831160][ T6812] netlink: 'syz.0.1023': attribute type 6 has an invalid length.
[  115.839670][ T6810] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  115.983779][ T6820] lo speed is unknown, defaulting to 1000
[  116.076746][ T6827] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1028'.
[  116.149322][ T6827] lo speed is unknown, defaulting to 1000
[  116.194908][ T6831] netlink: 'syz.2.1028': attribute type 4 has an invalid length.
[  116.254668][ T6834] netlink: 284 bytes leftover after parsing attributes in process `syz.3.1030'.
[  116.447511][ T6843] netlink: 'syz.2.1035': attribute type 6 has an invalid length.
[  116.647608][ T6858] netlink: 17279 bytes leftover after parsing attributes in process `syz.2.1040'.
[  116.777490][ T6863] lo speed is unknown, defaulting to 1000
[  116.834809][ T6870] netlink: 17279 bytes leftover after parsing attributes in process `syz.4.1045'.
[  117.122407][ T6879] wireguard0: entered promiscuous mode
[  117.128024][ T6879] wireguard0: entered allmulticast mode
[  117.170903][ T6881] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1049'.
[  117.192460][ T6881] bridge_slave_1: left allmulticast mode
[  117.198198][ T6881] bridge_slave_1: left promiscuous mode
[  117.203918][ T6881] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.257426][ T6881] bridge_slave_0: left allmulticast mode
[  117.263206][ T6881] bridge_slave_0: left promiscuous mode
[  117.269029][ T6881] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.379158][ T6885] lo speed is unknown, defaulting to 1000
[  117.462249][ T6898] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  117.509465][ T6898] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.517910][ T6898] 8021q: adding VLAN 0 to HW filter on device team0
[  117.528829][ T6898] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  117.782499][ T6912] lo speed is unknown, defaulting to 1000
[  117.932906][ T6926] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.1064'.
[  118.006637][ T6932] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1066'.
[  118.015820][ T6932] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1066'.
[  118.039626][ T6934] xt_hashlimit: max too large, truncated to 1048576
[  118.063878][ T6938] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1070' sets config #0
[  118.077955][ T6938] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1070' sets config #1
[  118.140246][ T6938] lo speed is unknown, defaulting to 1000
[  118.174840][ T6947] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1074'.
[  118.192419][ T6947] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1074' sets config #0
[  118.212106][ T6947] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1074' sets config #1
[  118.258646][ T6947] lo speed is unknown, defaulting to 1000
[  118.334246][ T6951] netlink: 'syz.4.1074': attribute type 4 has an invalid length.
[  118.591279][ T6962] lo speed is unknown, defaulting to 1000
[  118.599784][ T6974] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1084' sets config #0
[  118.621901][ T6974] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1084' sets config #1
[  118.677995][ T6974] lo speed is unknown, defaulting to 1000
[  118.752111][ T6983] netlink: 'syz.4.1084': attribute type 4 has an invalid length.
[  118.814652][ T6988] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  118.854109][ T6988] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.862549][ T6988] 8021q: adding VLAN 0 to HW filter on device team0
[  118.872024][ T6988] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  118.888388][ T3411] lo speed is unknown, defaulting to 1000
[  118.894255][ T3411] syz2: Port: 1 Link ACTIVE
[  118.904553][ T6986] wireguard0: entered promiscuous mode
[  118.910116][ T6986] wireguard0: entered allmulticast mode
[  119.134778][ T7001] FAULT_INJECTION: forcing a failure.
[  119.134778][ T7001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.147896][ T7001] CPU: 1 UID: 0 PID: 7001 Comm: syz.1.1091 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  119.147962][ T7001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  119.147975][ T7001] Call Trace:
[  119.148005][ T7001]  <TASK>
[  119.148014][ T7001]  __dump_stack+0x1d/0x30
[  119.148128][ T7001]  dump_stack_lvl+0xe8/0x140
[  119.148186][ T7001]  dump_stack+0x15/0x1b
[  119.148217][ T7001]  should_fail_ex+0x265/0x280
[  119.148244][ T7001]  should_fail+0xb/0x20
[  119.148260][ T7001]  should_fail_usercopy+0x1a/0x20
[  119.148313][ T7001]  _copy_to_user+0x20/0xa0
[  119.148348][ T7001]  simple_read_from_buffer+0xb5/0x130
[  119.148383][ T7001]  proc_fail_nth_read+0x10e/0x150
[  119.148420][ T7001]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  119.148508][ T7001]  vfs_read+0x1a8/0x770
[  119.148615][ T7001]  ? __rcu_read_unlock+0x4f/0x70
[  119.148651][ T7001]  ? __fget_files+0x184/0x1c0
[  119.148693][ T7001]  ksys_read+0xda/0x1a0
[  119.148728][ T7001]  __x64_sys_read+0x40/0x50
[  119.148822][ T7001]  x64_sys_call+0x27c0/0x3000
[  119.148851][ T7001]  do_syscall_64+0xd2/0x200
[  119.148874][ T7001]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  119.148908][ T7001]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  119.148950][ T7001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.148977][ T7001] RIP: 0033:0x7fc418d9e0dc
[  119.149041][ T7001] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  119.149065][ T7001] RSP: 002b:00007fc417807030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  119.149133][ T7001] RAX: ffffffffffffffda RBX: 00007fc418ff5fa0 RCX: 00007fc418d9e0dc
[  119.149146][ T7001] RDX: 000000000000000f RSI: 00007fc4178070a0 RDI: 0000000000000009
[  119.149159][ T7001] RBP: 00007fc417807090 R08: 0000000000000000 R09: 0000000000000000
[  119.149170][ T7001] R10: 0000000000000083 R11: 0000000000000246 R12: 0000000000000001
[  119.149259][ T7001] R13: 00007fc418ff6038 R14: 00007fc418ff5fa0 R15: 00007ffc97b43218
[  119.149286][ T7001]  </TASK>
[  119.417999][ T7007] siw: device registration error -23
[  119.453069][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  119.453087][   T29] audit: type=1326 audit(1762243167.355:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7013 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.482763][   T29] audit: type=1326 audit(1762243167.355:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7013 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.569455][   T29] audit: type=1326 audit(1762243167.415:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7013 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.593019][   T29] audit: type=1326 audit(1762243167.415:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7013 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.617492][   T29] audit: type=1326 audit(1762243167.415:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7013 comm="syz.3.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.647725][ T7025] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  119.650711][   T29] audit: type=1326 audit(1762243167.535:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.680116][   T29] audit: type=1326 audit(1762243167.535:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.703644][   T29] audit: type=1326 audit(1762243167.535:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.727150][   T29] audit: type=1326 audit(1762243167.535:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.750767][   T29] audit: type=1326 audit(1762243167.535:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  119.781907][ T7023] wireguard0: entered promiscuous mode
[  119.787688][ T7023] wireguard0: entered allmulticast mode
[  119.989415][ T7038] lo speed is unknown, defaulting to 1000
[  119.993613][ T7050] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  120.047578][ T7052] netlink: 'syz.0.1112': attribute type 1 has an invalid length.
[  120.048167][ T7050] bridge0: port 3(dummy0) entered disabled state
[  120.113154][ T7056] 8021q: adding VLAN 0 to HW filter on device bond0
[  120.140036][ T7056] 8021q: adding VLAN 0 to HW filter on device team0
[  120.167262][ T7056] bridge0: port 3(dummy0) entered blocking state
[  120.173684][ T7056] bridge0: port 3(dummy0) entered forwarding state
[  120.204461][ T7056] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  120.258659][ T7063] lo speed is unknown, defaulting to 1000
[  120.327538][ T7066] wireguard0: entered promiscuous mode
[  120.333142][ T7066] wireguard0: entered allmulticast mode
[  120.352097][ T7071] netlink: 'syz.2.1116': attribute type 4 has an invalid length.
[  120.435437][ T7080] netlink: 'syz.2.1120': attribute type 6 has an invalid length.
[  121.374105][ T7108] __nla_validate_parse: 4 callbacks suppressed
[  121.374125][ T7108] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1130'.
[  121.426210][ T7108] lo speed is unknown, defaulting to 1000
[  121.548730][ T7111] netlink: 'syz.2.1130': attribute type 4 has an invalid length.
[  121.649094][ T7117] wireguard0: entered promiscuous mode
[  121.654676][ T7117] wireguard0: entered allmulticast mode
[  121.784229][ T7124] lo speed is unknown, defaulting to 1000
[  121.991854][ T7144] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1142'.
[  122.095641][ T7152] wireguard0: entered promiscuous mode
[  122.101172][ T7152] wireguard0: entered allmulticast mode
[  122.361886][ T7161] lo speed is unknown, defaulting to 1000
[  122.401672][ T7178] netlink: 'syz.3.1157': attribute type 6 has an invalid length.
[  122.512163][ T7184] netlink: 'syz.2.1160': attribute type 6 has an invalid length.
[  122.654951][ T7195] siw: device registration error -23
[  122.690757][ T7201] wireguard0: entered promiscuous mode
[  122.696295][ T7201] wireguard0: entered allmulticast mode
[  123.185801][ T7226] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1174'.
[  123.216243][ T7226] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1174' sets config #0
[  123.245750][ T7226] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1174' sets config #1
[  123.307919][ T7226] lo speed is unknown, defaulting to 1000
[  123.389043][ T7231] netlink: 'syz.4.1174': attribute type 4 has an invalid length.
[  123.410511][   T10] lo speed is unknown, defaulting to 1000
[  123.416440][   T10] syz2: Port: 1 Link DOWN
[  123.453079][ T7235] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1176'.
[  123.477257][ T7235] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1176' sets config #0
[  123.498570][ T7235] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1176' sets config #1
[  123.507979][ T7239] wireguard0: entered promiscuous mode
[  123.513501][ T7239] wireguard0: entered allmulticast mode
[  123.593879][ T7235] lo speed is unknown, defaulting to 1000
[  123.738968][ T7254] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1182'.
[  123.766635][ T7254] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1182' sets config #0
[  123.780072][ T7237] validate_nla: 1 callbacks suppressed
[  123.780088][ T7237] netlink: 'syz.3.1177': attribute type 1 has an invalid length.
[  123.798092][ T7254] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1182' sets config #1
[  123.812564][ T7258] dummy0: left allmulticast mode
[  123.818170][ T7237] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1177'.
[  123.830431][ T7258] dummy0: left promiscuous mode
[  123.835430][ T7258] bridge0: port 3(dummy0) entered disabled state
[  123.844147][ T7258] bridge_slave_0: left allmulticast mode
[  123.849900][ T7258] bridge_slave_0: left promiscuous mode
[  123.855736][ T7258] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.866381][ T7258] bridge_slave_1: left allmulticast mode
[  123.872238][ T7258] bridge_slave_1: left promiscuous mode
[  123.878222][ T7258] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.914881][ T7258] bond0: (slave bond_slave_0): Releasing backup interface
[  123.943348][ T7258] bond0: (slave bond_slave_1): Releasing backup interface
[  123.966661][ T7267] netlink: 'syz.4.1182': attribute type 4 has an invalid length.
[  123.975816][ T7258] team0: Port device team_slave_0 removed
[  123.983915][ T7258] team0: Port device team_slave_1 removed
[  123.996885][ T7258] batman_adv: batadv0: Removing interface: batadv_slave_0
[  124.005489][ T7258] batman_adv: batadv0: Removing interface: batadv_slave_1
[  124.013261][ T7258] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  124.078064][ T7254] lo speed is unknown, defaulting to 1000
[  124.139564][ T7277] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=7277 comm=syz.3.1190
[  124.152405][ T7277] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=148 sclass=netlink_route_socket pid=7277 comm=syz.3.1190
[  124.608590][ T7310] siw: device registration error -23
[  125.203911][ T7320] netlink: 596 bytes leftover after parsing attributes in process `syz.2.1202'.
[  125.222110][ T4061] Bluetooth: hci0: Frame reassembly failed (-84)
[  125.292721][ T7322] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1203'.
[  125.315071][   T29] kauditd_printk_skb: 152 callbacks suppressed
[  125.315088][   T29] audit: type=1326 audit(1762243173.215:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.424156][   T29] audit: type=1326 audit(1762243173.255:4266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.448159][   T29] audit: type=1326 audit(1762243173.255:4267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.471619][   T29] audit: type=1326 audit(1762243173.255:4268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.495135][   T29] audit: type=1326 audit(1762243173.295:4269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.518994][   T29] audit: type=1326 audit(1762243173.295:4270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.542497][   T29] audit: type=1326 audit(1762243173.295:4271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.566018][   T29] audit: type=1326 audit(1762243173.305:4272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.589670][   T29] audit: type=1326 audit(1762243173.305:4273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  125.613144][   T29] audit: type=1326 audit(1762243173.305:4274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7323 comm="syz.4.1204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  126.436875][ T7339] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1206'.
[  126.496566][ T7339] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1206' sets config #0
[  126.532344][ T7339] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1206' sets config #1
[  126.568858][ T7346] siw: device registration error -23
[  126.599462][ T7339] lo speed is unknown, defaulting to 1000
[  126.658268][ T7353] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1215'.
[  126.670973][ T7356] netlink: 'syz.0.1206': attribute type 4 has an invalid length.
[  126.693141][ T7353] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1215' sets config #0
[  126.695757][ T7355] wireguard0: entered promiscuous mode
[  126.707770][ T7355] wireguard0: entered allmulticast mode
[  126.726057][ T7353] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1215' sets config #1
[  126.786036][ T7353] lo speed is unknown, defaulting to 1000
[  126.868094][ T7364] netlink: 'syz.4.1215': attribute type 4 has an invalid length.
[  127.275578][ T3540] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  127.725783][ T7398] siw: device registration error -23
[  127.734524][ T7402] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1230'.
[  127.780225][ T7402] lo speed is unknown, defaulting to 1000
[  127.875718][ T7406] netlink: 'syz.2.1230': attribute type 4 has an invalid length.
[  128.584825][ T7436] netlink: 19 bytes leftover after parsing attributes in process `syz.0.1242'.
[  128.638511][ T7441] FAULT_INJECTION: forcing a failure.
[  128.638511][ T7441] name failslab, interval 1, probability 0, space 0, times 0
[  128.651183][ T7441] CPU: 1 UID: 0 PID: 7441 Comm: syz.0.1245 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  128.651274][ T7441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  128.651293][ T7441] Call Trace:
[  128.651300][ T7441]  <TASK>
[  128.651310][ T7441]  __dump_stack+0x1d/0x30
[  128.651342][ T7441]  dump_stack_lvl+0xe8/0x140
[  128.651363][ T7441]  dump_stack+0x15/0x1b
[  128.651381][ T7441]  should_fail_ex+0x265/0x280
[  128.651427][ T7441]  should_failslab+0x8c/0xb0
[  128.651467][ T7441]  kmem_cache_alloc_noprof+0x50/0x480
[  128.651504][ T7441]  ? audit_log_start+0x342/0x720
[  128.651531][ T7441]  audit_log_start+0x342/0x720
[  128.651551][ T7441]  ? kstrtouint+0x76/0xc0
[  128.651600][ T7441]  audit_seccomp+0x48/0x100
[  128.651666][ T7441]  ? __seccomp_filter+0x82d/0x1250
[  128.651701][ T7441]  __seccomp_filter+0x83e/0x1250
[  128.651738][ T7441]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  128.651776][ T7441]  ? vfs_write+0x7e8/0x960
[  128.651812][ T7441]  ? __rcu_read_unlock+0x4f/0x70
[  128.651842][ T7441]  ? __fget_files+0x184/0x1c0
[  128.651951][ T7441]  __secure_computing+0x82/0x150
[  128.651987][ T7441]  syscall_trace_enter+0xcf/0x1e0
[  128.652061][ T7441]  do_syscall_64+0xac/0x200
[  128.652079][ T7441]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  128.652106][ T7441]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  128.652148][ T7441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.652169][ T7441] RIP: 0033:0x7f781833f6c9
[  128.652188][ T7441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.652278][ T7441] RSP: 002b:00007f7816d9f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bb
[  128.652306][ T7441] RAX: ffffffffffffffda RBX: 00007f7818595fa0 RCX: 00007f781833f6c9
[  128.652322][ T7441] RDX: 0000000000000000 RSI: ffffffff80000401 RDI: ffffffffffffffff
[  128.652338][ T7441] RBP: 00007f7816d9f090 R08: 0000000000000000 R09: 0000000000000000
[  128.652354][ T7441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.652385][ T7441] R13: 00007f7818596038 R14: 00007f7818595fa0 R15: 00007fff6df03518
[  128.652407][ T7441]  </TASK>
[  128.979423][ T7454] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1250'.
[  129.000263][ T7454] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1250' sets config #0
[  129.024724][ T7454] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1250' sets config #1
[  129.077809][ T7454] lo speed is unknown, defaulting to 1000
[  129.157411][ T7458] netlink: 'syz.0.1250': attribute type 4 has an invalid length.
[  129.229743][ T7447] No control pipe specified
[  129.939407][ T7482] siw: device registration error -23
[  130.005732][ T7484] wireguard0: entered promiscuous mode
[  130.011322][ T7484] wireguard0: entered allmulticast mode
[  131.228749][ T7525] netlink: 'syz.1.1272': attribute type 6 has an invalid length.
[  131.300091][   T29] kauditd_printk_skb: 227 callbacks suppressed
[  131.300188][   T29] audit: type=1326 audit(1762243179.205:4500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.368475][   T29] audit: type=1326 audit(1762243179.245:4501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.391430][   T29] audit: type=1326 audit(1762243179.245:4502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.414768][   T29] audit: type=1326 audit(1762243179.245:4503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.437878][   T29] audit: type=1326 audit(1762243179.245:4504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.460832][   T29] audit: type=1326 audit(1762243179.245:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.483902][   T29] audit: type=1326 audit(1762243179.245:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.506860][   T29] audit: type=1326 audit(1762243179.245:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.530484][   T29] audit: type=1326 audit(1762243179.245:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.553566][   T29] audit: type=1326 audit(1762243179.245:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7521 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  131.839246][ T7561] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1286'.
[  131.840003][ T7562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1285'.
[  131.878986][ T7561] lo speed is unknown, defaulting to 1000
[  131.995476][ T7573] netlink: 'syz.2.1286': attribute type 4 has an invalid length.
[  132.041874][ T7576] FAULT_INJECTION: forcing a failure.
[  132.041874][ T7576] name failslab, interval 1, probability 0, space 0, times 0
[  132.054550][ T7576] CPU: 1 UID: 0 PID: 7576 Comm: syz.1.1292 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  132.054615][ T7576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  132.054642][ T7576] Call Trace:
[  132.054650][ T7576]  <TASK>
[  132.054659][ T7576]  __dump_stack+0x1d/0x30
[  132.054684][ T7576]  dump_stack_lvl+0xe8/0x140
[  132.054781][ T7576]  dump_stack+0x15/0x1b
[  132.054799][ T7576]  should_fail_ex+0x265/0x280
[  132.054826][ T7576]  should_failslab+0x8c/0xb0
[  132.054930][ T7576]  kmem_cache_alloc_noprof+0x50/0x480
[  132.054966][ T7576]  ? skb_clone+0x151/0x1f0
[  132.054991][ T7576]  skb_clone+0x151/0x1f0
[  132.055068][ T7576]  __netlink_deliver_tap+0x2c9/0x500
[  132.055118][ T7576]  netlink_unicast+0x66b/0x690
[  132.055161][ T7576]  netlink_sendmsg+0x58b/0x6b0
[  132.055189][ T7576]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.055230][ T7576]  __sock_sendmsg+0x145/0x180
[  132.055255][ T7576]  ____sys_sendmsg+0x31e/0x4e0
[  132.055294][ T7576]  ___sys_sendmsg+0x17b/0x1d0
[  132.055339][ T7576]  __x64_sys_sendmsg+0xd4/0x160
[  132.055445][ T7576]  x64_sys_call+0x191e/0x3000
[  132.055472][ T7576]  do_syscall_64+0xd2/0x200
[  132.055543][ T7576]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  132.055577][ T7576]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  132.055632][ T7576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.055662][ T7576] RIP: 0033:0x7fc418d9f6c9
[  132.055679][ T7576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.055780][ T7576] RSP: 002b:00007fc417807038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.055799][ T7576] RAX: ffffffffffffffda RBX: 00007fc418ff5fa0 RCX: 00007fc418d9f6c9
[  132.055812][ T7576] RDX: 0000000004008040 RSI: 0000200000000280 RDI: 0000000000000003
[  132.055824][ T7576] RBP: 00007fc417807090 R08: 0000000000000000 R09: 0000000000000000
[  132.055839][ T7576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.055852][ T7576] R13: 00007fc418ff6038 R14: 00007fc418ff5fa0 R15: 00007ffc97b43218
[  132.055871][ T7576]  </TASK>
[  132.429800][ T7590] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7590 comm=syz.3.1297
[  132.498199][ T7599] netlink: 'syz.3.1301': attribute type 6 has an invalid length.
[  132.579804][ T7603] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1302'.
[  132.580328][ T7604] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1302'.
[  132.649576][ T7595] lo speed is unknown, defaulting to 1000
[  133.018197][ T7623] lo speed is unknown, defaulting to 1000
[  133.143286][ T7636] netlink: 'syz.0.1312': attribute type 6 has an invalid length.
[  133.651965][ T7656] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  133.659493][ T7653] lo speed is unknown, defaulting to 1000
[  133.797081][ T7660] xt_hashlimit: max too large, truncated to 1048576
[  133.812488][ T7660] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  133.872681][ T7664] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1322'.
[  133.933230][ T7664] lo speed is unknown, defaulting to 1000
[  134.035142][ T7675] netlink: 'syz.3.1322': attribute type 4 has an invalid length.
[  134.132870][ T7682] netlink: 'syz.4.1323': attribute type 6 has an invalid length.
[  134.141491][ T7684] FAULT_INJECTION: forcing a failure.
[  134.141491][ T7684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.154726][ T7684] CPU: 0 UID: 0 PID: 7684 Comm: syz.0.1329 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  134.154760][ T7684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  134.154774][ T7684] Call Trace:
[  134.154781][ T7684]  <TASK>
[  134.154790][ T7684]  __dump_stack+0x1d/0x30
[  134.154928][ T7684]  dump_stack_lvl+0xe8/0x140
[  134.154956][ T7684]  dump_stack+0x15/0x1b
[  134.154979][ T7684]  should_fail_ex+0x265/0x280
[  134.155001][ T7684]  should_fail+0xb/0x20
[  134.155034][ T7684]  should_fail_usercopy+0x1a/0x20
[  134.155061][ T7684]  _copy_from_iter+0xd2/0xe80
[  134.155092][ T7684]  ? __build_skb_around+0x1ab/0x200
[  134.155126][ T7684]  ? __alloc_skb+0x223/0x320
[  134.155160][ T7684]  netlink_sendmsg+0x471/0x6b0
[  134.155198][ T7684]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.155224][ T7684]  __sock_sendmsg+0x145/0x180
[  134.155275][ T7684]  ____sys_sendmsg+0x31e/0x4e0
[  134.155321][ T7684]  ___sys_sendmsg+0x17b/0x1d0
[  134.155375][ T7684]  __x64_sys_sendmsg+0xd4/0x160
[  134.155399][ T7684]  x64_sys_call+0x191e/0x3000
[  134.155482][ T7684]  do_syscall_64+0xd2/0x200
[  134.155505][ T7684]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  134.155607][ T7684]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  134.155709][ T7684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.155737][ T7684] RIP: 0033:0x7f781833f6c9
[  134.155756][ T7684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.155787][ T7684] RSP: 002b:00007f7816d9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.155810][ T7684] RAX: ffffffffffffffda RBX: 00007f7818595fa0 RCX: 00007f781833f6c9
[  134.155826][ T7684] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  134.155842][ T7684] RBP: 00007f7816d9f090 R08: 0000000000000000 R09: 0000000000000000
[  134.155856][ T7684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.155871][ T7684] R13: 00007f7818596038 R14: 00007f7818595fa0 R15: 00007fff6df03518
[  134.155942][ T7684]  </TASK>
[  134.851480][ T7714] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1341'.
[  134.900981][ T7714] lo speed is unknown, defaulting to 1000
[  134.978338][ T7719] netlink: 'syz.3.1341': attribute type 4 has an invalid length.
[  135.557300][ T7740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1352'.
[  135.658003][ T7744] siw: device registration error -23
[  135.727549][ T7754] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1356'.
[  135.747553][ T7754] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1356' sets config #0
[  135.757489][ T7754] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1356' sets config #1
[  135.779253][ T7754] lo speed is unknown, defaulting to 1000
[  135.888885][ T7754] netlink: 'syz.0.1356': attribute type 4 has an invalid length.
[  136.135456][ T7780] siw: device registration error -23
[  136.245661][ T7784] lo speed is unknown, defaulting to 1000
[  136.352133][   T29] kauditd_printk_skb: 171 callbacks suppressed
[  136.352152][   T29] audit: type=1326 audit(1762243184.255:4681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.365546][ T7791] netlink: 'wÞ£ÿ': attribute type 27 has an invalid length.
[  136.402284][   T29] audit: type=1326 audit(1762243184.255:4682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.425791][   T29] audit: type=1326 audit(1762243184.255:4683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.449345][   T29] audit: type=1326 audit(1762243184.255:4684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.472973][   T29] audit: type=1326 audit(1762243184.255:4685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.496431][   T29] audit: type=1326 audit(1762243184.255:4686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.520090][   T29] audit: type=1326 audit(1762243184.255:4687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.543676][   T29] audit: type=1326 audit(1762243184.255:4688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.560240][ T7801] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1371'.
[  136.567466][   T29] audit: type=1326 audit(1762243184.255:4689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.567514][   T29] audit: type=1326 audit(1762243184.255:4690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7790 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  136.578542][ T7801] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1371' sets config #0
[  136.636306][ T7801] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1371' sets config #1
[  136.667917][ T7791] hsr1: left promiscuous mode
[  136.672660][ T7791] hsr1: left allmulticast mode
[  136.677495][ T7791] bond0: left allmulticast mode
[  136.682360][ T7791] bond_slave_0: left allmulticast mode
[  136.687867][ T7791] bond_slave_1: left allmulticast mode
[  136.693683][ T7791] dummy0: left allmulticast mode
[  136.724959][ T7794] wireguard0: entered promiscuous mode
[  136.730505][ T7794] wireguard0: entered allmulticast mode
[  136.755654][ T7793] netlink: 'syz.1.1371': attribute type 4 has an invalid length.
[  136.790457][ T7801] lo speed is unknown, defaulting to 1000
[  136.975331][ T7817] siw: device registration error -23
[  137.005063][ T7824] xt_hashlimit: max too large, truncated to 1048576
[  137.026627][ T7824] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  137.246334][ T7835] wireguard0: entered promiscuous mode
[  137.252021][ T7835] wireguard0: entered allmulticast mode
[  137.298930][ T7844] loop9: detected capacity change from 0 to 7
[  137.324870][ T7844] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.353093][ T7844] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.361045][ T7844]  loop9: unable to read partition table
[  137.405745][ T7844] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  137.405745][ T7844] 
) failed (rc=-5)
[  137.630440][ T7857] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1391'.
[  137.688901][ T7862] siw: device registration error -23
[  137.956515][ T7879] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  137.976183][ T7879] team0: Port device team_slave_1 removed
[  138.130442][ T7887] ÿÿÿÿÿÿ: renamed from vlan1
[  138.361872][ T7895] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1409'.
[  138.412274][ T7896] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1409'.
[  138.865905][ T7917] wireguard0: entered promiscuous mode
[  138.871446][ T7917] wireguard0: entered allmulticast mode
[  139.318182][ T7940] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1426'.
[  139.319765][ T7942] netlink: 'syz.4.1427': attribute type 6 has an invalid length.
[  139.375465][ T7944] xt_hashlimit: max too large, truncated to 1048576
[  139.399434][ T7944] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  139.412953][ T7946] FAULT_INJECTION: forcing a failure.
[  139.412953][ T7946] name failslab, interval 1, probability 0, space 0, times 0
[  139.425776][ T7946] CPU: 1 UID: 0 PID: 7946 Comm: syz.4.1429 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  139.425828][ T7946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  139.425844][ T7946] Call Trace:
[  139.425851][ T7946]  <TASK>
[  139.425860][ T7946]  __dump_stack+0x1d/0x30
[  139.425889][ T7946]  dump_stack_lvl+0xe8/0x140
[  139.425918][ T7946]  dump_stack+0x15/0x1b
[  139.425954][ T7946]  should_fail_ex+0x265/0x280
[  139.425982][ T7946]  should_failslab+0x8c/0xb0
[  139.426022][ T7946]  kmem_cache_alloc_noprof+0x50/0x480
[  139.426119][ T7946]  ? security_file_alloc+0x32/0x100
[  139.426195][ T7946]  security_file_alloc+0x32/0x100
[  139.426224][ T7946]  init_file+0x5c/0x1d0
[  139.426318][ T7946]  alloc_empty_file+0x8b/0x200
[  139.426345][ T7946]  path_openat+0x68/0x2170
[  139.426377][ T7946]  ? _parse_integer_limit+0x170/0x190
[  139.426454][ T7946]  ? _parse_integer+0x27/0x40
[  139.426555][ T7946]  ? kstrtoull+0x111/0x140
[  139.426592][ T7946]  ? kstrtouint+0x76/0xc0
[  139.426628][ T7946]  do_filp_open+0x109/0x230
[  139.426759][ T7946]  do_sys_openat2+0xa6/0x110
[  139.426783][ T7946]  __x64_sys_open+0xe6/0x110
[  139.426806][ T7946]  x64_sys_call+0x1457/0x3000
[  139.426842][ T7946]  do_syscall_64+0xd2/0x200
[  139.426863][ T7946]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  139.426936][ T7946]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  139.427013][ T7946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.427037][ T7946] RIP: 0033:0x7fd6d030f6c9
[  139.427053][ T7946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.427072][ T7946] RSP: 002b:00007fd6ced77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  139.427094][ T7946] RAX: ffffffffffffffda RBX: 00007fd6d0565fa0 RCX: 00007fd6d030f6c9
[  139.427108][ T7946] RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 0000200000000340
[  139.427191][ T7946] RBP: 00007fd6ced77090 R08: 0000000000000000 R09: 0000000000000000
[  139.427204][ T7946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.427217][ T7946] R13: 00007fd6d0566038 R14: 00007fd6d0565fa0 R15: 00007ffe9d0e9178
[  139.427239][ T7946]  </TASK>
[  139.435115][ T7948] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1422'.
[  139.664112][ T7955] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1422'.
[  139.688854][ T7955] 9pnet_fd: Insufficient options for proto=fd
[  139.946580][ T7979] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1439'.
[  139.962625][ T7976] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1438'.
[  139.998848][ T7976] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1438' sets config #0
[  140.036076][ T7976] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1438' sets config #1
[  140.100468][ T7976] lo speed is unknown, defaulting to 1000
[  140.193798][ T8006] netlink: 'syz.0.1438': attribute type 4 has an invalid length.
[  140.311187][ T8011] SELinux: ebitmap: truncated map
[  140.326782][ T8011] SELinux: failed to load policy
[  140.515685][ T8039] siw: device registration error -23
[  140.702555][ T8052] wlan1: entered allmulticast mode
[  140.935465][ T8080] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1478'.
[  140.956935][ T8080] lo speed is unknown, defaulting to 1000
[  141.109474][ T8094] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1483' sets config #0
[  141.116311][ T8080] netlink: 'syz.2.1478': attribute type 4 has an invalid length.
[  141.129858][ T8094] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1483' sets config #1
[  141.152053][ T8094] lo speed is unknown, defaulting to 1000
[  141.243455][ T8101] netlink: 'syz.1.1483': attribute type 4 has an invalid length.
[  141.568548][ T8132] lo speed is unknown, defaulting to 1000
[  141.721611][ T8132] netlink: 'syz.3.1498': attribute type 4 has an invalid length.
[  141.887612][ T8154] siw: device registration error -23
[  141.917692][ T8151] wireguard0: entered promiscuous mode
[  141.923217][ T8151] wireguard0: entered allmulticast mode
[  142.289668][ T8181] netlink: 'syz.3.1509': attribute type 6 has an invalid length.
[  142.584700][ T8197] batman_adv: batadv0: Removing interface: batadv_slave_0
[  142.594044][ T8197] batman_adv: batadv0: Removing interface: batadv_slave_1
[  142.829484][ T8206] __nla_validate_parse: 4 callbacks suppressed
[  142.829501][ T8206] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1519'.
[  142.865366][ T8206] lo speed is unknown, defaulting to 1000
[  142.959865][ T8206] netlink: 'syz.2.1519': attribute type 4 has an invalid length.
[  143.007952][   T29] kauditd_printk_skb: 229 callbacks suppressed
[  143.007972][   T29] audit: type=1326 audit(1762243190.915:4920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.037184][   T29] audit: type=1326 audit(1762243190.915:4921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.060378][   T29] audit: type=1326 audit(1762243190.915:4922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.083308][   T29] audit: type=1326 audit(1762243190.915:4923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.106232][   T29] audit: type=1326 audit(1762243190.915:4924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.129650][   T29] audit: type=1326 audit(1762243190.975:4925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.152387][   T29] audit: type=1326 audit(1762243190.975:4926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.175872][   T29] audit: type=1326 audit(1762243190.975:4927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.231748][ T8214] netlink: 'syz.0.1521': attribute type 6 has an invalid length.
[  143.266834][   T29] audit: type=1326 audit(1762243191.045:4928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.289834][   T29] audit: type=1326 audit(1762243191.045:4929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8210 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  143.368959][ T8225] veth0_to_team: entered promiscuous mode
[  143.417726][ T8236] hub 1-0:1.0: USB hub found
[  143.422845][ T8236] hub 1-0:1.0: 8 ports detected
[  143.454600][ T8238] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1533'.
[  143.487038][ T8238] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1533' sets config #0
[  143.516915][ T8238] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1533' sets config #1
[  143.519220][ T8249] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.1538'.
[  143.550992][ T8247] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1537'.
[  143.583024][ T8247] lo speed is unknown, defaulting to 1000
[  143.601233][ T8238] lo speed is unknown, defaulting to 1000
[  143.607707][ T8253] netlink: 'syz.1.1540': attribute type 4 has an invalid length.
[  143.622062][ T8255] netlink: 'syz.4.1541': attribute type 4 has an invalid length.
[  143.670935][ T8261] netlink: 'syz.0.1533': attribute type 4 has an invalid length.
[  143.873096][ T8272] lo speed is unknown, defaulting to 1000
[  144.312201][ T8302] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1555'.
[  144.344784][ T8302] lo speed is unknown, defaulting to 1000
[  144.401034][ T8305] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  144.766134][ T8346] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1572'.
[  144.798024][ T8346] lo speed is unknown, defaulting to 1000
[  144.928644][ T8359] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1577'.
[  144.937791][ T8359] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1577'.
[  145.141137][ T8373] siw: device registration error -23
[  145.161514][ T8375] Invalid logical block size (2050)
[  145.800954][ T8389] siw: device registration error -23
[  146.080905][ T8395] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1589'.
[  146.113786][ T8395] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1589' sets config #0
[  146.173149][ T8397] hub 1-0:1.0: USB hub found
[  146.178117][ T8395] lo speed is unknown, defaulting to 1000
[  146.191308][ T8397] hub 1-0:1.0: 8 ports detected
[  146.260134][ T8403] validate_nla: 5 callbacks suppressed
[  146.260151][ T8403] netlink: 'syz.0.1589': attribute type 4 has an invalid length.
[  146.292554][ T8406] xt_hashlimit: max too large, truncated to 1048576
[  146.316281][ T8406] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  146.367798][ T8410] siw: device registration error -23
[  146.520972][ T8415] FAULT_INJECTION: forcing a failure.
[  146.520972][ T8415] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  146.534435][ T8415] CPU: 0 UID: 0 PID: 8415 Comm: syz.0.1598 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  146.534471][ T8415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  146.534483][ T8415] Call Trace:
[  146.534490][ T8415]  <TASK>
[  146.534499][ T8415]  __dump_stack+0x1d/0x30
[  146.534528][ T8415]  dump_stack_lvl+0xe8/0x140
[  146.534600][ T8415]  dump_stack+0x15/0x1b
[  146.534622][ T8415]  should_fail_ex+0x265/0x280
[  146.534641][ T8415]  should_fail_alloc_page+0xf2/0x100
[  146.534677][ T8415]  __alloc_frozen_pages_noprof+0xff/0x360
[  146.534706][ T8415]  alloc_pages_mpol+0xb3/0x260
[  146.534797][ T8415]  vma_alloc_folio_noprof+0x1aa/0x300
[  146.534827][ T8415]  handle_mm_fault+0xec2/0x2be0
[  146.534862][ T8415]  do_user_addr_fault+0x3fe/0x1080
[  146.534888][ T8415]  ? __rcu_read_unlock+0x4f/0x70
[  146.534928][ T8415]  exc_page_fault+0x62/0xa0
[  146.534966][ T8415]  asm_exc_page_fault+0x26/0x30
[  146.534991][ T8415] RIP: 0010:__put_user_4+0xd/0x20
[  146.535015][ T8415] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90
[  146.535106][ T8415] RSP: 0018:ffffc900115e3e78 EFLAGS: 00050206
[  146.535190][ T8415] RAX: 0000000000000007 RBX: 0000000000000000 RCX: 00002000000029c0
[  146.535207][ T8415] RDX: ffff88812d976300 RSI: 0000000000000008 RDI: 0000000000000000
[  146.535223][ T8415] RBP: 0000000000000007 R08: 0001ffff868480ef R09: 0000000000000000
[  146.535239][ T8415] R10: 000188812a0e6180 R11: 000188812a0e6187 R12: 00002000000029c0
[  146.535256][ T8415] R13: 0000000000000001 R14: 0000000000000001 R15: 0000000000000000
[  146.535282][ T8415]  __sys_socketpair+0xa6/0x430
[  146.535361][ T8415]  ? __x64_sys_socketpair+0x41/0x60
[  146.535400][ T8415]  __x64_sys_socketpair+0x52/0x60
[  146.535463][ T8415]  x64_sys_call+0x2bf6/0x3000
[  146.535532][ T8415]  do_syscall_64+0xd2/0x200
[  146.535555][ T8415]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  146.535593][ T8415]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  146.535694][ T8415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.535756][ T8415] RIP: 0033:0x7f781833f6c9
[  146.535771][ T8415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.535791][ T8415] RSP: 002b:00007f7816d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  146.535899][ T8415] RAX: ffffffffffffffda RBX: 00007f7818595fa0 RCX: 00007f781833f6c9
[  146.535915][ T8415] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  146.535931][ T8415] RBP: 00007f7816d9f090 R08: 0000000000000000 R09: 0000000000000000
[  146.535948][ T8415] R10: 00002000000029c0 R11: 0000000000000246 R12: 0000000000000001
[  146.535964][ T8415] R13: 00007f7818596038 R14: 00007f7818595fa0 R15: 00007fff6df03518
[  146.536042][ T8415]  </TASK>
[  146.968378][ T8422] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  146.975678][ T8422] IPv6: NLM_F_CREATE should be set when creating new route
[  147.012731][ T8422] lo: entered allmulticast mode
[  147.028419][ T8422] tunl0: entered allmulticast mode
[  147.040457][ T8422] gre0: entered allmulticast mode
[  147.063417][ T8422] gretap0: entered allmulticast mode
[  147.083232][ T8422] erspan0: entered allmulticast mode
[  147.094810][ T8422] ip_vti0: entered allmulticast mode
[  147.109063][ T8422] ip6_vti0: entered allmulticast mode
[  147.129880][ T8422] sit0: entered allmulticast mode
[  147.143529][ T8422] ip6tnl0: entered allmulticast mode
[  147.161145][ T8422] ip6gre0: entered allmulticast mode
[  147.177358][ T8422] syz_tun: entered allmulticast mode
[  147.192940][ T8435] x_tables: unsorted entry at hook 1
[  147.201084][ T8422] ip6gretap0: entered allmulticast mode
[  147.223811][ T8422] bridge0: entered allmulticast mode
[  147.243581][ T8422] vcan0: entered allmulticast mode
[  147.264839][ T8422] bond0: entered allmulticast mode
[  147.270111][ T8422] bond_slave_0: entered allmulticast mode
[  147.275925][ T8422] bond_slave_1: entered allmulticast mode
[  147.304327][ T8422] team0: entered allmulticast mode
[  147.309571][ T8422] team_slave_0: entered allmulticast mode
[  147.315986][ T8422] team_slave_1: entered allmulticast mode
[  147.337175][ T8422] dummy0: entered allmulticast mode
[  147.354336][ T8422] nlmon0: entered allmulticast mode
[  147.368638][ T8422] caif0: entered allmulticast mode
[  147.373883][ T8422] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  147.720032][ T8447] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1606'.
[  148.055763][ T8453] siw: device registration error -23
[  148.451286][   T29] kauditd_printk_skb: 72 callbacks suppressed
[  148.451314][   T29] audit: type=1326 audit(1762243196.355:5002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.524990][   T29] audit: type=1326 audit(1762243196.395:5003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.547993][   T29] audit: type=1326 audit(1762243196.395:5004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.570924][   T29] audit: type=1326 audit(1762243196.395:5005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.594141][   T29] audit: type=1326 audit(1762243196.395:5006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.617140][   T29] audit: type=1326 audit(1762243196.395:5007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.640157][   T29] audit: type=1326 audit(1762243196.395:5008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.663150][   T29] audit: type=1326 audit(1762243196.395:5009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.686062][   T29] audit: type=1326 audit(1762243196.395:5010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.709042][   T29] audit: type=1326 audit(1762243196.395:5011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8463 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  148.801773][ T8468] FAULT_INJECTION: forcing a failure.
[  148.801773][ T8468] name failslab, interval 1, probability 0, space 0, times 0
[  148.814474][ T8468] CPU: 1 UID: 0 PID: 8468 Comm: syz.0.1615 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  148.814548][ T8468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  148.814564][ T8468] Call Trace:
[  148.814571][ T8468]  <TASK>
[  148.814626][ T8468]  __dump_stack+0x1d/0x30
[  148.814651][ T8468]  dump_stack_lvl+0xe8/0x140
[  148.814678][ T8468]  dump_stack+0x15/0x1b
[  148.814701][ T8468]  should_fail_ex+0x265/0x280
[  148.814728][ T8468]  should_failslab+0x8c/0xb0
[  148.814796][ T8468]  kmem_cache_alloc_noprof+0x50/0x480
[  148.814887][ T8468]  ? skb_clone+0x151/0x1f0
[  148.814913][ T8468]  skb_clone+0x151/0x1f0
[  148.814937][ T8468]  __netlink_deliver_tap+0x2c9/0x500
[  148.814992][ T8468]  __netlink_sendskb+0xc3/0xd0
[  148.815022][ T8468]  netlink_dump+0x72b/0x8a0
[  148.815118][ T8468]  netlink_recvmsg+0x420/0x550
[  148.815167][ T8468]  ? __pfx_netlink_recvmsg+0x10/0x10
[  148.815192][ T8468]  sock_recvmsg+0x139/0x170
[  148.815227][ T8468]  ____sys_recvmsg+0xf5/0x280
[  148.815326][ T8468]  ___sys_recvmsg+0x11f/0x370
[  148.815366][ T8468]  __x64_sys_recvmsg+0xd1/0x160
[  148.815396][ T8468]  x64_sys_call+0x2b46/0x3000
[  148.815469][ T8468]  do_syscall_64+0xd2/0x200
[  148.815498][ T8468]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  148.815542][ T8468]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  148.815667][ T8468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.815693][ T8468] RIP: 0033:0x7f781833f6c9
[  148.815708][ T8468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.815755][ T8468] RSP: 002b:00007f7816d9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  148.815781][ T8468] RAX: ffffffffffffffda RBX: 00007f7818595fa0 RCX: 00007f781833f6c9
[  148.815798][ T8468] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  148.815815][ T8468] RBP: 00007f7816d9f090 R08: 0000000000000000 R09: 0000000000000000
[  148.815831][ T8468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  148.815846][ T8468] R13: 00007f7818596038 R14: 00007f7818595fa0 R15: 00007fff6df03518
[  148.815872][ T8468]  </TASK>
[  149.034784][ T8472] netlink: 'syz.2.1616': attribute type 4 has an invalid length.
[  149.181986][ T8483] netlink: 'syz.0.1621': attribute type 3 has an invalid length.
[  149.222402][ T8483] netlink: 'syz.0.1621': attribute type 3 has an invalid length.
[  149.328362][ T8491] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1625'.
[  149.358997][ T8491] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1625' sets config #0
[  149.388727][ T8491] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1625' sets config #1
[  149.453059][ T8491] lo speed is unknown, defaulting to 1000
[  149.547906][ T8501] netlink: 'syz.1.1625': attribute type 4 has an invalid length.
[  149.744380][ T8509] vcan0: tx drop: invalid da for name 0x00000000000000c8
[  150.027087][ T8519] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  150.590405][ T8540] siw: device registration error -23
[  150.900695][ T8557] lo speed is unknown, defaulting to 1000
[  151.260785][ T8562] lo speed is unknown, defaulting to 1000
[  151.347630][ T8569] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.356349][ T8569] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  151.661201][ T8577] wireguard0: entered promiscuous mode
[  151.666867][ T8577] wireguard0: entered allmulticast mode
[  152.008503][ T8604] xt_hashlimit: max too large, truncated to 1048576
[  152.030494][ T8604] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  152.040079][ T8600] siw: device registration error -23
[  152.196276][ T8614] hub 1-0:1.0: USB hub found
[  152.201001][ T8614] hub 1-0:1.0: 8 ports detected
[  152.269598][ T8614] lo speed is unknown, defaulting to 1000
[  152.874151][ T4059] Bluetooth: hci0: Frame reassembly failed (-84)
[  153.955072][ T8647] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1679'.
[  153.999174][   T29] kauditd_printk_skb: 194 callbacks suppressed
[  153.999192][   T29] audit: type=1326 audit(1762243201.905:5206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.060631][   T29] audit: type=1326 audit(1762243201.935:5207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.083691][   T29] audit: type=1326 audit(1762243201.935:5208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.106749][   T29] audit: type=1326 audit(1762243201.935:5209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.129682][   T29] audit: type=1326 audit(1762243201.935:5210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.153445][   T29] audit: type=1326 audit(1762243201.935:5211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.176485][   T29] audit: type=1326 audit(1762243201.935:5212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.199524][   T29] audit: type=1326 audit(1762243201.935:5213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.222622][   T29] audit: type=1326 audit(1762243201.935:5214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.245538][   T29] audit: type=1326 audit(1762243201.935:5215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8653 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781833f6c9 code=0x7ffc0000
[  154.557808][ T8646] syz.2.1679 (8646) used greatest stack depth: 6376 bytes left
[  154.945869][ T3540] Bluetooth: hci0: command 0x1003 tx timeout
[  154.952050][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  155.101704][ T8691] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  155.346723][ T8701] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1701'.
[  155.378191][ T8701] hub 1-0:1.0: USB hub found
[  155.385337][ T8701] hub 1-0:1.0: 8 ports detected
[  155.450968][ T8701] lo speed is unknown, defaulting to 1000
[  155.533516][ T8707] netlink: 'syz.0.1701': attribute type 4 has an invalid length.
[  155.815397][ T8716] xt_hashlimit: max too large, truncated to 1048576
[  155.817473][ T8716] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  155.856168][ T8715] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1706'.
[  155.932963][ T8720] siw: device registration error -23
[  156.512855][ T8735] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  156.581428][ T8739] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  157.552967][ T8785] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1732' sets config #0
[  157.589011][ T8785] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1732' sets config #1
[  157.666939][ T8785] lo speed is unknown, defaulting to 1000
[  158.138493][ T8805] wireguard0: entered promiscuous mode
[  158.144102][ T8805] wireguard0: entered allmulticast mode
[  158.388050][ T8851] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1756'.
[  158.539593][ T8860] wireguard0: entered promiscuous mode
[  158.545132][ T8860] wireguard0: entered allmulticast mode
[  158.595219][ T8873] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1765'.
[  158.605221][ T8873] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1765' sets config #0
[  158.615161][ T8873] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1765' sets config #1
[  158.638248][ T8873] lo speed is unknown, defaulting to 1000
[  158.685572][ T8876] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1767'.
[  158.697292][ T8876] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1767' sets config #0
[  158.707184][ T8876] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1767' sets config #1
[  158.748437][ T8874] netlink: 'syz.4.1765': attribute type 4 has an invalid length.
[  158.762022][ T8876] lo speed is unknown, defaulting to 1000
[  158.834819][ T8891] netlink: 'syz.1.1767': attribute type 4 has an invalid length.
[  159.153084][ T8908] pim6reg: entered allmulticast mode
[  159.175558][ T8908] pim6reg: left allmulticast mode
[  159.633281][   T29] kauditd_printk_skb: 116 callbacks suppressed
[  159.633300][   T29] audit: type=1326 audit(1762243207.535:5332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.663145][   T29] audit: type=1326 audit(1762243207.535:5333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.712024][   T29] audit: type=1326 audit(1762243207.595:5334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.735584][   T29] audit: type=1326 audit(1762243207.595:5335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.759106][   T29] audit: type=1326 audit(1762243207.595:5336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.782672][   T29] audit: type=1326 audit(1762243207.595:5337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.806159][   T29] audit: type=1326 audit(1762243207.595:5338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.830290][   T29] audit: type=1326 audit(1762243207.595:5339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8923 comm="syz.1.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.858245][ T8931] siw: device registration error -23
[  159.870686][ T8933] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  159.879866][   T29] audit: type=1326 audit(1762243207.765:5340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8937 comm="syz.1.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.880445][ T8938] FAULT_INJECTION: forcing a failure.
[  159.880445][ T8938] name failslab, interval 1, probability 0, space 0, times 0
[  159.903901][   T29] audit: type=1326 audit(1762243207.765:5341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8937 comm="syz.1.1788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  159.940251][ T8938] CPU: 0 UID: 0 PID: 8938 Comm: syz.1.1788 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  159.940283][ T8938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  159.940329][ T8938] Call Trace:
[  159.940338][ T8938]  <TASK>
[  159.940347][ T8938]  __dump_stack+0x1d/0x30
[  159.940381][ T8938]  dump_stack_lvl+0xe8/0x140
[  159.940403][ T8938]  dump_stack+0x15/0x1b
[  159.940420][ T8938]  should_fail_ex+0x265/0x280
[  159.940441][ T8938]  should_failslab+0x8c/0xb0
[  159.940546][ T8938]  kmem_cache_alloc_noprof+0x50/0x480
[  159.940576][ T8938]  ? do_set_mempolicy+0x17c/0x3e0
[  159.940726][ T8938]  do_set_mempolicy+0x17c/0x3e0
[  159.940750][ T8938]  __x64_sys_set_mempolicy+0x139/0x170
[  159.940777][ T8938]  x64_sys_call+0x165a/0x3000
[  159.940887][ T8938]  do_syscall_64+0xd2/0x200
[  159.940946][ T8938]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  159.940980][ T8938]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  159.941028][ T8938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.941083][ T8938] RIP: 0033:0x7fc418d9f6c9
[  159.941098][ T8938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.941116][ T8938] RSP: 002b:00007fc417807038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee
[  159.941211][ T8938] RAX: ffffffffffffffda RBX: 00007fc418ff5fa0 RCX: 00007fc418d9f6c9
[  159.941228][ T8938] RDX: 0000000000000009 RSI: 0000200000000080 RDI: 0000000000004005
[  159.941244][ T8938] RBP: 00007fc417807090 R08: 0000000000000000 R09: 0000000000000000
[  159.941323][ T8938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.941339][ T8938] R13: 00007fc418ff6038 R14: 00007fc418ff5fa0 R15: 00007ffc97b43218
[  159.941451][ T8938]  </TASK>
[  160.161343][ T8944] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  160.369365][ T8973] siw: device registration error -23
[  160.615725][ T9004] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1815'.
[  160.633562][ T9006] xt_CT: You must specify a L4 protocol and not use inversions on it
[  160.721911][ T9010] wireguard0: entered promiscuous mode
[  160.727495][ T9010] wireguard0: entered allmulticast mode
[  161.026938][ T9048] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9048 comm=syz.4.1828
[  161.416024][ T9062] wireguard0: entered promiscuous mode
[  161.421635][ T9062] wireguard0: entered allmulticast mode
[  161.706011][ T9072] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  161.734562][ T9074] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  161.915028][ T9089] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1843' sets config #0
[  161.935079][ T9089] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1843' sets config #1
[  161.978612][ T9089] lo speed is unknown, defaulting to 1000
[  162.251549][ T9099] wireguard0: entered promiscuous mode
[  162.257285][ T9099] wireguard0: entered allmulticast mode
[  162.458963][ T9111] siw: device registration error -23
[  162.492791][ T9114] siw: device registration error -23
[  162.737536][ T9137] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  163.109252][ T9148] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  163.594426][ T9181] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1874' sets config #-1
[  163.657703][ T9180] siw: device registration error -23
[  163.824460][ T9201] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1881'.
[  164.220625][ T9221] lo speed is unknown, defaulting to 1000
[  164.521412][ T9239] pim6reg: entered allmulticast mode
[  164.530113][ T9239] pim6reg: left allmulticast mode
[  165.034462][ T9255] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1900'.
[  165.045859][ T9255] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1900' sets config #0
[  165.055829][ T9255] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1900' sets config #1
[  165.090812][ T9255] lo speed is unknown, defaulting to 1000
[  165.182425][ T9257] netlink: 'syz.0.1900': attribute type 4 has an invalid length.
[  165.349088][   T29] kauditd_printk_skb: 185 callbacks suppressed
[  165.349106][   T29] audit: type=1326 audit(1762243213.185:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.378506][   T29] audit: type=1326 audit(1762243213.185:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.401454][   T29] audit: type=1326 audit(1762243213.195:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.424394][   T29] audit: type=1326 audit(1762243213.195:5530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.447371][   T29] audit: type=1326 audit(1762243213.195:5531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.470276][   T29] audit: type=1326 audit(1762243213.195:5532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.493007][   T29] audit: type=1326 audit(1762243213.195:5533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.516092][   T29] audit: type=1326 audit(1762243213.195:5534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.539095][   T29] audit: type=1326 audit(1762243213.195:5535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.562053][   T29] audit: type=1326 audit(1762243213.195:5536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9259 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  165.786108][ T9274] xt_hashlimit: max too large, truncated to 1048576
[  165.796149][ T9274] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  165.908606][ T9280] netlink: 'syz.4.1911': attribute type 5 has an invalid length.
[  165.941423][ T9280] ip6erspan0: entered promiscuous mode
[  166.070526][ T9285] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1913'.
[  166.096840][ T9285] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1913' sets config #0
[  166.125942][ T9285] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1913' sets config #1
[  166.199179][ T9285] lo speed is unknown, defaulting to 1000
[  166.256214][ T9290] wireguard0: entered promiscuous mode
[  166.262318][ T9290] wireguard0: entered allmulticast mode
[  166.299118][ T9294] netlink: 'syz.1.1913': attribute type 4 has an invalid length.
[  166.656118][ T9303] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1919' sets config #-1
[  167.045478][ T9308] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1921'.
[  167.752261][ T9331] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1931' sets config #0
[  167.756569][ T9329] lo speed is unknown, defaulting to 1000
[  167.776115][ T9331] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1931' sets config #1
[  167.836194][ T9331] lo speed is unknown, defaulting to 1000
[  168.030479][ T9354] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1938'.
[  168.040277][ T9354] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1938' sets config #0
[  168.050164][ T9354] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1938' sets config #1
[  168.070333][ T9354] lo speed is unknown, defaulting to 1000
[  168.168342][ T9354] netlink: 'syz.4.1938': attribute type 4 has an invalid length.
[  168.492667][ T9371] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  168.530241][ T9379] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.1948' sets config #-1
[  168.554910][ T9383] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1950'.
[  168.566033][ T9383] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1950' sets config #0
[  168.575339][ T9383] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1950' sets config #1
[  168.602379][ T9383] lo speed is unknown, defaulting to 1000
[  168.900531][ T9383] netlink: 'syz.0.1950': attribute type 4 has an invalid length.
[  169.346569][ T9424] xt_hashlimit: max too large, truncated to 1048576
[  169.354256][ T9424] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  169.571663][ T9430] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1968' sets config #0
[  169.592207][ T9430] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1968' sets config #1
[  169.619440][ T9430] lo speed is unknown, defaulting to 1000
[  169.663097][ T9432] wireguard0: entered promiscuous mode
[  169.668708][ T9432] wireguard0: entered allmulticast mode
[  169.863460][ T9447] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1972'.
[  169.884004][ T9447] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1972' sets config #0
[  169.905778][ T9447] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1972' sets config #1
[  169.949193][ T9455] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1976'.
[  169.962649][ T9447] lo speed is unknown, defaulting to 1000
[  169.969227][ T9455] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1976' sets config #0
[  169.995883][ T9455] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1976' sets config #1
[  170.042028][ T9459] netlink: 'syz.0.1972': attribute type 4 has an invalid length.
[  170.053005][ T9455] lo speed is unknown, defaulting to 1000
[  170.125634][ T9465] netlink: 'syz.4.1976': attribute type 4 has an invalid length.
[  170.943074][   T29] kauditd_printk_skb: 120 callbacks suppressed
[  170.943114][   T29] audit: type=1326 audit(1762243218.845:5657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9481 comm="syz.3.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  171.026027][ T9486] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1987'.
[  171.041991][   T29] audit: type=1326 audit(1762243218.845:5658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9481 comm="syz.3.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  171.065763][   T29] audit: type=1326 audit(1762243218.845:5659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9481 comm="syz.3.1986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  171.144834][ T9490] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  171.237922][ T9504] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1991'.
[  171.258809][ T9504] lo speed is unknown, defaulting to 1000
[  171.701601][ T9509] netlink: 'syz.2.1991': attribute type 4 has an invalid length.
[  171.830251][   T29] audit: type=1326 audit(1762243219.735:5660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9510 comm="syz.2.1993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  171.853893][   T29] audit: type=1326 audit(1762243219.735:5661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9510 comm="syz.2.1993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  171.931984][   T29] audit: type=1326 audit(1762243219.775:5662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9510 comm="syz.2.1993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  171.955626][   T29] audit: type=1326 audit(1762243219.775:5663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9510 comm="syz.2.1993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  171.979053][   T29] audit: type=1326 audit(1762243219.775:5664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9510 comm="syz.2.1993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8073d5f6c9 code=0x7ffc0000
[  172.200933][   T29] audit: type=1326 audit(1762243219.965:5665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9518 comm="syz.4.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  172.224477][   T29] audit: type=1326 audit(1762243219.965:5666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9518 comm="syz.4.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fd6d030f6c9 code=0x7ffc0000
[  172.406975][ T9544] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2008' sets config #-1
[  173.198630][ T9565] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2017'.
[  173.245770][ T9571] siw: device registration error -23
[  173.277162][ T9573] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2017' sets config #0
[  173.343855][ T9565] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2017' sets config #1
[  173.364057][ T9572] wireguard0: entered promiscuous mode
[  173.369642][ T9572] wireguard0: entered allmulticast mode
[  173.488381][ T9575] netlink: 'syz.0.2017': attribute type 4 has an invalid length.
[  173.531043][ T9565] lo speed is unknown, defaulting to 1000
[  174.525193][ T9628] siw: device registration error -23
[  174.953706][ T9662] lo speed is unknown, defaulting to 1000
[  175.005245][ T9667] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2057'.
[  175.047560][ T9667] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2057' sets config #0
[  175.096976][ T9667] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2057' sets config #1
[  175.233752][ T9667] lo speed is unknown, defaulting to 1000
[  175.248282][ T9676] netlink: 'syz.4.2057': attribute type 4 has an invalid length.
[  175.489258][ T9685] wireguard0: entered promiscuous mode
[  175.494798][ T9685] wireguard0: entered allmulticast mode
[  175.853896][ T9714] lo speed is unknown, defaulting to 1000
[  176.115081][ T9730] wireguard0: entered promiscuous mode
[  176.120783][ T9730] wireguard0: entered allmulticast mode
[  176.585780][   T29] kauditd_printk_skb: 140 callbacks suppressed
[  176.585799][   T29] audit: type=1326 audit(1762243224.445:5807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9753 comm="syz.3.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  176.615605][   T29] audit: type=1326 audit(1762243224.445:5808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9753 comm="syz.3.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  176.639079][   T29] audit: type=1326 audit(1762243224.445:5809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9753 comm="syz.3.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  176.662548][   T29] audit: type=1326 audit(1762243224.445:5810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9753 comm="syz.3.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  176.686080][   T29] audit: type=1326 audit(1762243224.445:5811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9753 comm="syz.3.2091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  177.189662][ T9789] siw: device registration error -23
[  177.418986][   T29] audit: type=1326 audit(1762243225.325:5812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9790 comm="syz.1.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  177.442804][   T29] audit: type=1326 audit(1762243225.325:5813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9790 comm="syz.1.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  177.514014][   T29] audit: type=1326 audit(1762243225.325:5814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9790 comm="syz.1.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  177.537939][   T29] audit: type=1326 audit(1762243225.325:5815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9790 comm="syz.1.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  177.561362][   T29] audit: type=1326 audit(1762243225.325:5816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9790 comm="syz.1.2105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc418d9f6c9 code=0x7ffc0000
[  177.755947][ T9795] siw: device registration error -23
[  177.879348][ T9806] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  178.128012][ T9820] netlink: 'syz.3.2116': attribute type 3 has an invalid length.
[  178.136072][ T9820] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.2116'.
[  178.281707][ T9838] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2123'.
[  178.301358][ T9838] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2123'.
[  178.916825][ T9881] lo speed is unknown, defaulting to 1000
[  179.068804][ T9891] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2143'.
[  179.108440][ T9891] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2143' sets config #0
[  179.121915][ T9891] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2143' sets config #1
[  179.146413][ T9891] lo speed is unknown, defaulting to 1000
[  179.256118][ T9908] netlink: 'syz.4.2143': attribute type 4 has an invalid length.
[  179.352743][ T9918] xt_hashlimit: max too large, truncated to 1048576
[  179.375006][ T9918] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  179.388697][ T9911] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  179.422881][ T9929] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2157'.
[  179.493733][ T9935] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2161' sets config #-1
[  179.678753][ T9948] sd 0:0:1:0: device reset
[  179.728692][ T9949] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2162'.
[  179.836252][ T9944] 9pnet: Unknown protocol version 9
[  179.878532][ T9954] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2166'.
[  179.898685][ T9954] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2166' sets config #0
[  179.917698][ T9954] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2166' sets config #1
[  179.961900][ T9954] lo speed is unknown, defaulting to 1000
[  180.051898][ T9960] netlink: 'syz.4.2166': attribute type 4 has an invalid length.
[  180.270552][ T9975] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2174' sets config #-1
[  180.738567][T10011] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2190' sets config #-1
[  180.758168][T10012] siw: device registration error -23
[  181.038254][T10031] siw: device registration error -23
[  181.149482][T10037] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2200' sets config #0
[  181.180582][T10037] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2200' sets config #1
[  181.228984][T10037] lo speed is unknown, defaulting to 1000
[  181.618257][   T29] kauditd_printk_skb: 180 callbacks suppressed
[  181.618277][   T29] audit: type=1326 audit(1762243229.525:5997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.653609][T10058] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2207' sets config #-1
[  181.740208][   T29] audit: type=1326 audit(1762243229.525:5998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.763865][   T29] audit: type=1326 audit(1762243229.555:5999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.787736][   T29] audit: type=1326 audit(1762243229.555:6000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.811242][   T29] audit: type=1326 audit(1762243229.555:6001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.834774][   T29] audit: type=1326 audit(1762243229.555:6002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.858343][   T29] audit: type=1326 audit(1762243229.555:6003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.881864][   T29] audit: type=1326 audit(1762243229.555:6004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.905711][   T29] audit: type=1326 audit(1762243229.555:6005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  181.929220][   T29] audit: type=1326 audit(1762243229.575:6006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10050 comm="syz.3.2205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b1fbf6c9 code=0x7ffc0000
[  182.025481][T10076] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2214' sets config #0
[  182.035386][T10076] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2214' sets config #1
[  182.061205][T10076] lo speed is unknown, defaulting to 1000
[  182.097885][T10081] FAULT_INJECTION: forcing a failure.
[  182.097885][T10081] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.111186][T10081] CPU: 1 UID: 0 PID: 10081 Comm: syz.4.2216 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  182.111266][T10081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  182.111282][T10081] Call Trace:
[  182.111291][T10081]  <TASK>
[  182.111301][T10081]  __dump_stack+0x1d/0x30
[  182.111348][T10081]  dump_stack_lvl+0xe8/0x140
[  182.111375][T10081]  dump_stack+0x15/0x1b
[  182.111403][T10081]  should_fail_ex+0x265/0x280
[  182.111442][T10081]  should_fail+0xb/0x20
[  182.111464][T10081]  should_fail_usercopy+0x1a/0x20
[  182.111590][T10081]  strncpy_from_user+0x25/0x230
[  182.111626][T10081]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  182.111667][T10081]  __se_sys_memfd_create+0x1ff/0x590
[  182.111772][T10081]  __x64_sys_memfd_create+0x31/0x40
[  182.111879][T10081]  x64_sys_call+0x2ac2/0x3000
[  182.111909][T10081]  do_syscall_64+0xd2/0x200
[  182.111935][T10081]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  182.111969][T10081]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  182.112059][T10081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.112089][T10081] RIP: 0033:0x7fd6d030f6c9
[  182.112109][T10081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.112133][T10081] RSP: 002b:00007fd6ced76e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  182.112159][T10081] RAX: ffffffffffffffda RBX: 0000000000000797 RCX: 00007fd6d030f6c9
[  182.112207][T10081] RDX: 00007fd6ced76ef0 RSI: 0000000000000000 RDI: 00007fd6d0392960
[  182.112225][T10081] RBP: 0000200000001ac0 R08: 00007fd6ced76bb7 R09: 00007fd6ced76e40
[  182.112242][T10081] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000040
[  182.112278][T10081] R13: 00007fd6ced76ef0 R14: 00007fd6ced76eb0 R15: 0000200000000900
[  182.112304][T10081]  </TASK>
[  182.373792][T10088] netlink: 'syz.4.2217': attribute type 4 has an invalid length.
[  183.086995][T10138] wireguard0: entered promiscuous mode
[  183.092531][T10138] wireguard0: entered allmulticast mode
[  183.277080][T10146] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2240'.
[  183.707061][T10166] FAULT_INJECTION: forcing a failure.
[  183.707061][T10166] name failslab, interval 1, probability 0, space 0, times 0
[  183.719987][T10166] CPU: 0 UID: 0 PID: 10166 Comm: syz.4.2248 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  183.720091][T10166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  183.720106][T10166] Call Trace:
[  183.720114][T10166]  <TASK>
[  183.720124][T10166]  __dump_stack+0x1d/0x30
[  183.720150][T10166]  dump_stack_lvl+0xe8/0x140
[  183.720171][T10166]  dump_stack+0x15/0x1b
[  183.720191][T10166]  should_fail_ex+0x265/0x280
[  183.720262][T10166]  should_failslab+0x8c/0xb0
[  183.720342][T10166]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  183.720380][T10166]  ? __alloc_skb+0x101/0x320
[  183.720412][T10166]  __alloc_skb+0x101/0x320
[  183.720453][T10166]  ? audit_log_start+0x342/0x720
[  183.720484][T10166]  audit_log_start+0x3a0/0x720
[  183.720558][T10166]  ? kstrtouint+0x76/0xc0
[  183.720602][T10166]  audit_seccomp+0x48/0x100
[  183.720656][T10166]  ? __seccomp_filter+0x82d/0x1250
[  183.720686][T10166]  __seccomp_filter+0x83e/0x1250
[  183.720778][T10166]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  183.720820][T10166]  ? vfs_write+0x7e8/0x960
[  183.720864][T10166]  ? __rcu_read_unlock+0x4f/0x70
[  183.720914][T10166]  ? __fget_files+0x184/0x1c0
[  183.720950][T10166]  __secure_computing+0x82/0x150
[  183.720986][T10166]  syscall_trace_enter+0xcf/0x1e0
[  183.721021][T10166]  do_syscall_64+0xac/0x200
[  183.721069][T10166]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  183.721160][T10166]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  183.721196][T10166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.721224][T10166] RIP: 0033:0x7fd6d030f6c9
[  183.721243][T10166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.721262][T10166] RSP: 002b:00007fd6ced77038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b8
[  183.721344][T10166] RAX: ffffffffffffffda RBX: 00007fd6d0565fa0 RCX: 00007fd6d030f6c9
[  183.721361][T10166] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  183.721401][T10166] RBP: 00007fd6ced77090 R08: 0000000000000000 R09: 0000000000000000
[  183.721418][T10166] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  183.721434][T10166] R13: 00007fd6d0566038 R14: 00007fd6d0565fa0 R15: 00007ffe9d0e9178
[  183.721461][T10166]  </TASK>
[  184.003040][T10174] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2251'.
[  184.013962][T10174] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2251' sets config #0
[  184.015921][T10171] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2250'.
[  184.023877][T10174] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2251' sets config #1
[  184.058278][T10174] lo speed is unknown, defaulting to 1000
[  184.083991][T10178] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2253'.
[  184.107342][T10171] lo speed is unknown, defaulting to 1000
[  184.124032][T10178] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2253' sets config #0
[  184.135190][T10180] netlink: 'syz.2.2250': attribute type 4 has an invalid length.
[  184.136215][T10178] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2253' sets config #1
[  184.184797][T10179] netlink: 'syz.1.2251': attribute type 4 has an invalid length.
[  184.258333][T10178] lo speed is unknown, defaulting to 1000
[  184.317319][T10183] netlink: 'syz.4.2253': attribute type 4 has an invalid length.
[  184.490644][T10197] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2258'.
[  184.500647][T10197] 9pnet_fd: Insufficient options for proto=fd
[  184.672423][T10215] lo speed is unknown, defaulting to 1000
[  184.992302][T10263] macvtap1: entered promiscuous mode
[  184.997693][T10263] macvtap1: entered allmulticast mode
[  185.141411][T10280] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2289' sets config #0
[  185.150770][T10280] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2289' sets config #1
[  185.355324][T10280] lo speed is unknown, defaulting to 1000
[  185.957647][T10327] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2306' sets config #0
[  185.970486][T10322] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2304'.
[  185.976978][T10327] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.2306' sets config #1
[  186.046246][T10327] lo speed is unknown, defaulting to 1000
[  186.107764][T10336] netlink: 'syz.4.2306': attribute type 4 has an invalid length.
[  186.218452][T10337] ==================================================================
[  186.226603][T10337] BUG: KCSAN: data-race in memcpy_and_pad / rcu_tasks_trace_pregp_step
[  186.234888][T10337] 
[  186.237234][T10337] write to 0xffff88810359045c of 4 bytes by task 28 on cpu 1:
[  186.244716][T10337]  rcu_tasks_trace_pregp_step+0x1ac/0x920
[  186.250476][T10337]  rcu_tasks_wait_gp+0x8b/0x530
[  186.255352][T10337]  rcu_tasks_one_gp+0x7f6/0x8e0
[  186.260224][T10337]  rcu_tasks_kthread+0xf7/0x110
[  186.265103][T10337]  kthread+0x489/0x510
[  186.269202][T10337]  ret_from_fork+0x122/0x1b0
[  186.273812][T10337]  ret_from_fork_asm+0x1a/0x30
[  186.278613][T10337] 
[  186.280965][T10337] read to 0xffff888103590000 of 3264 bytes by task 10337 on cpu 0:
[  186.288861][T10337]  memcpy_and_pad+0x48/0x80
[  186.293389][T10337]  arch_dup_task_struct+0x2c/0x40
[  186.298430][T10337]  dup_task_struct+0x83/0x6b0
[  186.303136][T10337]  copy_process+0x399/0x2000
[  186.307752][T10337]  kernel_clone+0x16c/0x5c0
[  186.312284][T10337]  __se_sys_clone3+0x1c2/0x200
[  186.317077][T10337]  __x64_sys_clone3+0x31/0x40
[  186.321785][T10337]  x64_sys_call+0x1fc9/0x3000
[  186.326488][T10337]  do_syscall_64+0xd2/0x200
[  186.331009][T10337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.336923][T10337] 
[  186.339254][T10337] Reported by Kernel Concurrency Sanitizer on:
[  186.345422][T10337] CPU: 0 UID: 0 PID: 10337 Comm: syz.1.2311 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  186.355256][T10337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  186.365339][T10337] ==================================================================
[  186.763064][   T29] kauditd_printk_skb: 107 callbacks suppressed
[  186.763120][   T29] audit: type=1400 audit(1762243234.665:6112): avc:  denied  { write } for  pid=3321 comm="syz-executor" name="loop0" dev="devtmpfs" ino=610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1