last executing test programs:

2m44.691580645s ago: executing program 0 (id=4500):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x68}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x94)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0xc8, 0x0, 0x3, 0x0, 0x0, 0x6341, 0x0, 0xfffffffe, 0x0, 0xffffffffffffffff}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$kcm(0xa, 0x2, 0x88)
setsockopt$sock_attach_bpf(r3, 0x88, 0x64, &(0x7f00000009c0), 0x4)
close(r2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89a2, &(0x7f0000000040)={'bridge0\x00', @random="1400"})
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x716, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000001080)={0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0, &(0x7f0000000dc0)=r0}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000fc0)={0x6, 0x6, &(0x7f0000000e40)=@raw=[@map_fd={0x18, 0xb, 0x1, 0x0, r6}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r4}}], &(0x7f0000000e80)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x11, '\x00', 0x0, 0x25, r4, 0x8, &(0x7f0000000ec0)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000f00)={0x5, 0x8, 0x5, 0x4}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000f40)=[r4, r4, r4, r4, r4, r4, r4], &(0x7f0000000f80)=[{0x4, 0x2, 0x8, 0xb}, {0x1, 0x1, 0x4, 0x7}], 0x10, 0xfc5}, 0x94)
setsockopt$sock_attach_bpf(r5, 0x6, 0x15, &(0x7f0000000500), 0x4)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200102f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa35f022eb"], 0xcfa4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000006000000040000000000000e0300000000000000000000000000000d03000000000000000000000204000000000000000000000b020000000000000061"], 0x0, 0x52}, 0x20)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000b80)=ANY=[@ANYBLOB="9feb01001800000000000000200000002000000004000000020000000000000c02000000000000000100000d00000000000000000000000000005f0063c874b4d6a588e625f66c6b15ecd30f3516cb4a9ce8d3a344bc637ec11ba201342c2dc63d36a9159ae1537c8a30ba7fe1cadb5648934660fa302cbe901c06714b6718d7d055c079c0da47acaec7083f2012929d6d1d0f1fc379472ccfcc0401cf75eab8488740f104b7d0def04d8ea8faf23b368dbce0094e84096f85337368396402a7e68183296b63f84742335abe818a057ba152b94665602f689261ca2cd9ae6e189f1d0f78b66dff865c5a0a3aa636114419f04c6907a6894981ffffb9fe2ac7f51d74ab918a11c3dc6bbb0f2c70bfb3fb7f2ad95d34b4f9912b7e60065912a893a2ee03716c493da498427d3be8fc8d4b8a89fba6b29c3f7fb2f00faf2930e8ae32f7bb6946b8a049de654914b52e849f8bb77757a46b9fddc6f6bf25ae99cbebbcacda1407cdc2b5ab46fb7657310ce4403e4ae6a7751d48f4404ad9418155a3350d3edd9de34684850b8649b6a56dc2fa2a169deb65a162875a2e93b1bad8a46d1cb6fd25eb2ce1cae6539a5fb124b8318c44fa2072d6a25798705aca404dabb9f23e67e92b7c61051f2845fe4b39015db4e955ca7598988fec4399f04e010c20c61d5336d24510bbb2ae5d05ceb7a3bce9b76d6cef0f1732"], 0x0, 0x3c}, 0x28)
sendmsg$tipc(r4, &(0x7f0000000b40)={&(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x1, {0x41, 0x3, 0x3}}, 0x10, &(0x7f0000000a80)=[{&(0x7f00000002c0)="26a0b16696b5632d82dca203", 0xc}, {&(0x7f0000000300)="154a54c79a0ca63258a695e2bfc920122459b47e552255fa786c0efbed8b0a252f36121cd3049a760f561a21b5525e4b79e2b184f810c3769df4e24f0602a1652e579989a59788e4d8cad8810583887a50a62a", 0x53}, {&(0x7f0000000400)="bc9759afa1dd05eec61478e62bb70c3349a7aff13e2d4a883adfc2c18aa7e95a0bab02ba84bf798df63d388edda46da389ac6eb6e6dfbf40aabf2c7edfce6472fce69ce026b207641f89347f7a0655509d5ed7132743f3ac731fc185e61d932539cc3d383d78dbf322b75194d726dcc94e3529bf46af6057c5a3bfb76ec1d566c404670b4acd38ceab93b4728e9e5dec9ca6aef07db03e0d688fe92ae23a01593beae3bedc73824c1306a916af0c7ce7efa8cb829440af94adfb497dad5c71c14adf29af1185271961d62c1e38ce5fdec444ff9ffbce0839d3192b", 0xdb}, {&(0x7f0000000540)="ed7cdf4dbb55d2f99ec2420deee402a11a34baecf4ff3ef431be2ecc76ec31d113c6539e", 0x24}, {&(0x7f00000010c0)="1338c99e1b178b930604ee657127aa7354804f24a768833839cef899f7b65632eb96b465a29049acfec5070f9df06bdaae3f07824774e1a943e9e552999de79afb0066b22300b047ac69645eb59d2990e6e6b6cd87dd17eec4e198bd84938f7bc6ca7230c9c07bdaeb9d4906040eccf2fe4930d219d503ad84cebe64129b5a67bc20bcdd02c4c33e6cdd90ae6067d37f57053b8b7da2f456046a6b3d40c6a2c9e4c6e2e207102f8136a18a21fb1985aaa5903b257ba84cd96984e8723b3d49fb3d04703afc", 0xc5}, {&(0x7f0000000680)="7083f24e70330025421af945833b0a24b7e14395e27bfc4853560590ac03c1028eb6b04c88a63917b8ab3da34f348e956838cf97e86ed1a241b824114416cab3ccddbaf8ac4582f484dd58dcc375cb09e9295ae9dddd35a660df8a7454de7ba00c3e696ea84dd078e83df500de8542cea50f887ead91d2bae0b0e06db09f0d6b4eda72c92a647669a07e88e103c92b87788825fbb7653f0696d5adcb456d08cefbf82a3f6c75d2bcc64f0451f28b4b23c3", 0xb1}, {&(0x7f0000000740)="09be928c6c8b3f6e0ba8b3a81a27576ad3c8823a26fccb7b0981a392a3ded9774a418e8687bc24c4c0fd1dfbac5508ca1453ede5bd903902a38df64d145cda565e3357fd8698b3f2760f8072b533d31d9bfb83f95b94c913f9b3608d87d748f7b67b7dcd5d11c58cf9f5c9a881a37eea43d3f9ac8760be9579d6e5fc04e7f29a304783ad9905bf444c65e39b12502778636a031151d6661f5bc2c427248d279a225c56081b9d3e2e08e2ae9969c8ed9ee87dd804af9ab3a49f5cbc9f8d891db62afd20ca16aa7f02efc387e4e8d9ca7572add0c7eb9edface49cd0de7f142e10b73b298aa16a1da3f88e5d318c67ed962262d893", 0xf4}, {&(0x7f0000000840)="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", 0xfa}, {&(0x7f0000000940)="67fa46e119c398475ae650cb745809397311594e32af69b27f0662396fc73b90fa487c932d250add59714902d8b72e79f1ace1be25ef58a0d204c9a3557e2403fcc26eb2b7a74141d82002f5f3537a684a1a0ad019aba6e7d906847e0230609503b581b48f0e422b2793526c9df7b792e1862576767c22d62b97de6bad3b31883de5937b4d7b4f95ab448ed0eaed118391f75e5c404ceaf8231cb7f6129ecb5a6ead6ce7539cf66c7877e46720", 0xad}, {&(0x7f0000000a00)="c1f1c8a1496d0af381f2175e5e39a6c2d5dfd6091672b5fa0cf40e92134af0dfaae9a0ddb733bb8809f997a1a313914d8c184aa4368c5d633249d906eee010afdf35989a341a196a404430d41de755a1e7e5300be688d67329e3d42f37ac424b4ba6284ec3c75d0110488438494c5cb8d426b5f9aaef4ff73b", 0x79}], 0xa, 0x0, 0x0, 0x8000}, 0x20008814)

2m44.353183872s ago: executing program 0 (id=4504):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af"], 0x6)

2m41.399079061s ago: executing program 0 (id=4505):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000030000000000000b0100000000005f6e003000aa508bb2b52223c8434d3ec059585b4e5643e784c2fbc80a056d29078e5bbb14d2b8534113a68644ae7f13166b48b8c1dce2d262ef86a37c96a07746e8671a00ed7e72c95a878b484fe9fb7d6352f2477646f881e8fe773ed31af183f9f0e2828096e24965cae0e29341bff4156e10b8e0315e0ae0a4a62ac1ae7b1a76358d16a8554caf73040e8dd472ef4a8f42e8d7726fd1c127cb5344a632757a366f99afee308930f6e95d51221814415daeaf4c5c0bda32aee90e78916963cbd150cd000000000000"], &(0x7f0000000300)=""/14, 0x2b, 0xe, 0x1, 0x6, 0x10000}, 0x28)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x87, '\x00', 0x0, r4, 0x4, 0x0, 0x1}, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
r6 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = socket$kcm(0x29, 0x2, 0x0)
close(r8)
r9 = socket$kcm(0x2b, 0x1, 0x0)
close(r9)
socket$kcm(0xa, 0x2, 0x3a)
setsockopt$sock_attach_bpf(r8, 0x1, 0xd, &(0x7f0000000080), 0x2cb)
close(r9)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x4, 0x9e4, 0x5, 0x8, 0xffffffff, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0x2, 0x5, 0x84)
close(0xffffffffffffffff)

2m39.952153733s ago: executing program 0 (id=4511):
perf_event_open(&(0x7f0000001300)={0x2, 0x80, 0x28, 0x5, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd77, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=ANY=[@ANYBLOB="15a2869a3fb1ae23", @ANYRES32, @ANYBLOB='\x00'/19, @ANYRES32, @ANYRES64=0x0], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001140)={r1, 0x58, &(0x7f0000001280)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r2}, 0xc)
close(r4)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000180)="1400000017000b63d25a80648c2594f93da3c92b", 0x14}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r1}, 0x0, &(0x7f00000003c0)=r4}, 0x20)
r6 = socket$kcm(0xa, 0x2, 0x73)
setsockopt$sock_attach_bpf(r6, 0x29, 0x19, 0x0, 0xfcd8)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000000)={0x5, 0xce, 0x0, 0x9, 0x5, 0x0, 0x0, 0xfffffffffffffffe, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff7fffff, 0x2, @perf_bp={0x0}, 0x10068, 0x0, 0x0, 0x5, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
perf_event_open(0x0, 0x0, 0xfffffffff7ffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
close(r8)
ioctl$SIOCSIFHWADDR(r8, 0x8b26, &(0x7f0000000080)={'wlan1\x00', @random="000000f900"})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001380)={0x3, 0xc, &(0x7f0000001200)=ANY=[@ANYRESHEX=r8, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffd92}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', r3, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000040000000000000003000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000001800000850000008800000095"], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x38, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xab}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x8a, 0x0, 0x0, 0x0, 0x0, 0x4288, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x12180, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x44208400, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x20, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x4, 0x0, 0x0, 0x504}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
openat$cgroup_devices(r7, &(0x7f0000001100)='devices.deny\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1, 0x4, &(0x7f00000001c0)=ANY=[@ANYRESHEX=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m35.882745208s ago: executing program 0 (id=4527):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/29], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x3efd7ab4c41335d9, @perf_config_ext={0x2, 0x400}, 0x0, 0x0, 0x310c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair(0x1, 0x3, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB='1-'], 0x31)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x0, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='blkio.throttle.write_iops_device\x00', 0x2, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r4 = socket$kcm(0xa, 0x922000000003, 0x11)
ioctl$sock_kcm_SIOCKCMUNATTACH(r4, 0x89e1, &(0x7f0000000000)={r4})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9, 0x0, 0x0, 0xfffffffffff7bbfe, 0x1, 0x0, 0x0, 0x5ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x111c40, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@ifindex, 0xffffffffffffffff, 0x32, 0x10, 0xffffffffffffffff, @void, @value=0x0}, 0x20)
mkdir(0x0, 0x0)
mkdir(0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x10, 0x0}, 0x1000e0c9)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x3f, &(0x7f00000000c0)=[{&(0x7f0000000180)="1400000017000b63d25a80648c2594f905a3c92b", 0x14}], 0x1}, 0x0)
sendmsg$kcm(r0, 0x0, 0x0)

2m35.522242857s ago: executing program 0 (id=4529):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x40f00, 0x1c, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x20, 0x12506, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x8000000000000001, 0x8}, 0x7602, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
r5 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r4}, 0x8)
close(r5)
syz_clone(0x400c0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_pid(r3, &(0x7f0000000080), 0x12)
r7 = socket$kcm(0x29, 0x7, 0x0)
write$cgroup_pressure(r7, &(0x7f0000000140)={'full'}, 0xfffffdef)
setsockopt$sock_attach_bpf(r7, 0x1, 0x10, &(0x7f0000000040), 0x4)
r8 = openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r8, &(0x7f0000000200)=0x1, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
r9 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0))

2m20.490298184s ago: executing program 32 (id=4529):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x40f00, 0x1c, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x20, 0x12506, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x8000000000000001, 0x8}, 0x7602, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
r5 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r4}, 0x8)
close(r5)
syz_clone(0x400c0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_pid(r3, &(0x7f0000000080), 0x12)
r7 = socket$kcm(0x29, 0x7, 0x0)
write$cgroup_pressure(r7, &(0x7f0000000140)={'full'}, 0xfffffdef)
setsockopt$sock_attach_bpf(r7, 0x1, 0x10, &(0x7f0000000040), 0x4)
r8 = openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r8, &(0x7f0000000200)=0x1, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
r9 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0))

6.974004582s ago: executing program 3 (id=5127):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000500000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff00)

6.588390422s ago: executing program 3 (id=5128):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
recvmsg$unix(r2, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x15)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r3}, &(0x7f0000000280), &(0x7f0000000240)}, 0x20)
r4 = socket$kcm(0xa, 0x1, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(r4, 0x29, 0x43, &(0x7f0000000000)=r5, 0x4)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0), 0x4)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x4, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x1, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_bp={0x0}, 0x4100, 0x0, 0x0, 0x9, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="02000000040000000800000001"], 0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x90ff}, [@snprintf={{0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x11}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xd}, {}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffe00}, {}, {0x7, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffe00}, {}, {0x18, 0x3, 0x2, 0x0, r6}, {}, {0x85, 0x0, 0x0, 0xc5}}]}, &(0x7f0000000300)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$kcm(0x18, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x40010040)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
sendmsg$kcm(r7, 0x0, 0x4000088)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r1, 0x0, 0x0)

5.392072683s ago: executing program 3 (id=5134):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000b80)=ANY=[@ANYRES64=r0, @ANYRESHEX, @ANYRES64, @ANYRES32=r0, @ANYRES32=r0], 0xfe33)
perf_event_open(&(0x7f0000000380)={0x0, 0xad, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x8404, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x9, 0x1d, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000008000000000000000300000018110000", @ANYRES32=0x1, @ANYRES16, @ANYRES32, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000085000000b000000072740200f6ffffffdd06300000000000bf91000000000000b7020000000000008500000084000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @cgroup_sock=0x2, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x5, 0x2}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7}, 0x94)
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x4, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1802000000000000950000004800000095000000000000000000000000000000802f107c6eefc99cd12c63f1059c0d423a0f9e0003628409c3e383eb6901e7d0cd1d7e429f36576bc8dfd816a157390735c8ff7fffffffffffff157a8220b67b6cc40eb50662a246c5f7ed904653b317bec368fdc8b26b706cb5d8085a791b71a9ac38af41bbd5fa9cebc525ce8c0bc88151e830f3f8b28d2ab50a169f3c44783a"], &(0x7f0000000080)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@map=0x1, 0x34, 0x1, 0x10001, &(0x7f0000000340)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0}, 0x40)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0xffffffffffffff69, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000011008188040f80ec59acbc0413a181014100000000010000000000000e000a000f00000002800200121f", 0x2e}], 0x1}, 0x0)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r3=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000580)=r3, 0x4)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f00000009c0)={0x3, 0x80, 0x0, 0x7, 0xb, 0x2, 0x0, 0x8000, 0x10014, 0xe, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0xffffffff, 0x7}, 0x8000, 0xd79a, 0x5, 0x1, 0x400, 0xd5b, 0x1, 0x0, 0xdb, 0x0, 0x1})
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x10, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$kcm(0xa, 0x3, 0x73)
setsockopt$sock_attach_bpf(r5, 0x29, 0x21, &(0x7f0000000200), 0x4)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0xff, @remote}, 0x80, 0x0, 0x0, &(0x7f0000000340)=[{0x10}, {0x18, 0x29, 0xb, '\x00'}], 0x28}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018000000", @ANYRES32, @ANYBLOB="00000000d516a807b70500000800000085000000a500000095"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1011, &(0x7f00000016c0)=""/4113}, 0x94)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000180)={0x1}, 0x8)

4.311955219s ago: executing program 1 (id=5139):
socket$kcm(0x10, 0x5, 0x0) (async)
r0 = socket$kcm(0x10, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f00000003c0)={&(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x4, 0x1, 0x0, 0x3, {0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x6}}}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000080)="59153543b3d5da30a62e385c67342a2f5458ba159723d7e1f8ccad44a4625997cf6682c175b84081044d9d60fbfc60a39573e2298857bc4f0dce22241d4e226ac8dad74cba0b4b1beff2ff50155743763c9a4a9241f1da60dc8211962256cda381b0a49387741cec4d3697514af122263efdbe5be2fd8e729511fb9e73d9544af185c5d0344ce5f08fdaec89da632f6325af29d7d202d5f7d4bb31d9d2b39c3ce531c39cb23e3b4c5f9cc5e5c32e7be966bd4cd37e49b0180d88474127f63098e28babedd474e128481df65a6301fc30f28794668a9c13bab37d3c79b599675faa002de7ceca8269fce7c10a6ab1e2f542b89782e08b3e", 0xf7}, {&(0x7f0000000180)="67cb371373381b6c", 0x8}, {&(0x7f00000001c0)="889b787b59a537ce2e8bbff266adeab4186cefebd3931aa75544d59d9b9fc3a34fea2b12c526d862f5297ccb3239723b46a035fd2ec4b8b9852e5d46b9f89ab7a8f8aa6a581773c4679abea3ccb340cb26d73e01a1886f8222162787db8053d4a9775ff9ee8619b95c80a65c199930a53edf2d45323badbf94088bef421747a7cffb6e67c4846ecb8508080ef0adbd5eaa5370253d3f80c39f099c32a5437213f089777b291c3c21d540d15d027372dc15d7760ededbee9fbedf1bd724ecb6bd2809c8b840f857da875f929fdba8b6b09a7d2b8cc7ebd7d15b5f", 0xda}, {&(0x7f00000002c0)="4f48c6b8905b0a293af038566a1372819229560b10a1e1415d1124dd5cf0d0f1df319fa7efac71f7db937acd00dc5494c1d52cab6a54b02a4ea43b02cc4bf9786a6d2fcb6c593afc4bb3211b1d28c8a4aff04e2a9efe13c71a7be356bb2a7a031f69068b6730bbc4ffde1763f3732d26bf130b4dead1edce4a7189f55ef4d4d80f6715a5567d6c3afeefa3ad526a7f41f01876ab8b702ba7322a7c12f4", 0x9d}], 0x4, &(0x7f0000000980)=[{0x48, 0x1, 0x0, "a91f379dffd26b9f9f631f083d89e9a1bdedefd0e3e63d68c8a9c54263258e54d8071645367d378464ed5165f98dc03e93ee79c28202"}, {0xf8, 0x84, 0x7, "1e18967fcfb34b9b9fdab3df6c302ed2511764acdd02968a0d057850c53a01bf85242c74214b9cb065163b030ca4d4924f45351d446891576f3ea72620409fc7c3ae1cc55e7b4fbffc34b938038aab65e267008195490dd4b272a684b2a63833bfd28ddff50a428520d77775004c897bc728f58b7dbbd0949be6d4d2852cc64cfee2118600f444bbb038239037f18b9b0ee04e93999ba6c5662b9306199f14b4515a81c3c47f829541510055a645e883ef051e05936860d79e35527f9420a58fbf8246511655891cbd113f9b4dbcd77d7d57f86c2348980d896155fdae0957ac929d962608"}, {0x1010, 0x108, 0xfffffffd, "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"}, {0xe0, 0x115, 0x0, "fe5c922edda348194341f1e6ed31ceba33bfb2e81c0957ff5ee22d61ab04975a205a5f8db73520fdd1c0812e58692770be336dc6a48014b4545eac170ab2c6b192ac4cd1ade7dff48e23bc800da1480b12787b40a787968a62964ea1b7feb5d0c936661d41d1e68969b422eae6b4c4675327365364305c2ac01fb8b46ece3067bf0168e6a184b2d64a90f89be2cae006843657553ada775b130fe6fea1dc1ed499e28e8fcf4e9de25816267ac79a675fb7247f5fd4036121c533414d5412acd9abad7b791699a9e061ae26511f"}, {0x30, 0x104, 0xfffffff9, "c6b8806fa31d40921b73ce234af0753090521fd3bc54d5d284f2cc624f134d"}], 0x1260}, 0x20000000)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x7400}, 0x0)

4.204135655s ago: executing program 2 (id=5140):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000500000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff00)

4.190795635s ago: executing program 3 (id=5141):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000030000000000000b0100000000005f6e003000aa508bb2b52223c8434d3ec059585b4e5643e784c2fbc80a056d29078e5bbb14d2b8534113a68644ae7f13166b48b8c1dce2d262ef86a37c96a07746e8671a00ed7e72c95a878b484fe9fb7d6352f2477646f881e8fe773ed31af183f9f0e2828096e24965cae0e29341bff4156e10b8e0315e0ae0a4a62ac1ae7b1a76358d16a8554caf73040e8dd472ef4a8f42e8d7726fd1c127cb5344a632757a366f99afee308930f6e95d51221814415daeaf4c5c0bda32aee90e78916963cbd150cd000000000000"], &(0x7f0000000300)=""/14, 0x2b, 0xe, 0x1, 0x6, 0x10000}, 0x28)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x87, '\x00', 0x0, r4, 0x4, 0x0, 0x1}, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
r6 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = socket$kcm(0x29, 0x2, 0x0)
close(r8)
r9 = socket$kcm(0x2b, 0x1, 0x0)
close(r9)
socket$kcm(0xa, 0x2, 0x3a)
setsockopt$sock_attach_bpf(r8, 0x1, 0xd, &(0x7f0000000080), 0x2cb)
close(r9)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x4, 0x9e4, 0x5, 0x8, 0xffffffff, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0x2, 0x5, 0x84)
close(0xffffffffffffffff)

4.120605318s ago: executing program 1 (id=5142):
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x15, 0x4, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1800, 0x8}, [@generic={0x91, 0x1, 0x1, 0x1b}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)

4.029038114s ago: executing program 2 (id=5143):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000040)=@generic={0x0}, 0x18)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, 0x0, 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af"], 0x6)

3.989228866s ago: executing program 1 (id=5144):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4000005d34, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8009, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x200000000000000}, 0x0, 0xffffffffffffffff, r0, 0x8)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
socket$kcm(0x10, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0xa}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x41)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x5, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x4, 0x8f, &(0x7f0000000100)=""/143, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)

3.302587291s ago: executing program 4 (id=5146):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x41, 0x0, 0x11}, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001980)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2, 0x0, 0x9}, {0x10000002, 0x0, 0xb, 0x7}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0xfffd}], 0x1, 0x0, 0x0, 0x1fff8}, 0x80d1)

2.424414126s ago: executing program 2 (id=5147):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000049c0)={0x3, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180200002618000000000000000000008500000087000000850000007d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)

2.217173526s ago: executing program 4 (id=5148):
r0 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x13, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x107a652}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
write$cgroup_pid(r3, &(0x7f0000000000), 0x2a979d)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f0000000680), &(0x7f00000006c0)=r2}, 0x20)

1.985789298s ago: executing program 1 (id=5149):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000b80)=ANY=[@ANYRES64=r0, @ANYRESHEX, @ANYRES64, @ANYRES32=r0, @ANYRES32=r0], 0xfe33)
perf_event_open(&(0x7f0000000380)={0x0, 0xad, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x8404, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x9, 0x1d, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000008000000000000000300000018110000", @ANYRES32=0x1, @ANYRES16, @ANYRES32, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000085000000b000000072740200f6ffffffdd06300000000000bf91000000000000b7020000000000008500000084000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @cgroup_sock=0x2, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x5, 0x2}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7}, 0x94)
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x4, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1802000000000000950000004800000095000000000000000000000000000000802f107c6eefc99cd12c63f1059c0d423a0f9e0003628409c3e383eb6901e7d0cd1d7e429f36576bc8dfd816a157390735c8ff7fffffffffffff157a8220b67b6cc40eb50662a246c5f7ed904653b317bec368fdc8b26b706cb5d8085a791b71a9ac38af41bbd5fa9cebc525ce8c0bc88151e830f3f8b28d2ab50a169f3c44783a"], &(0x7f0000000080)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@map=0x1, 0x34, 0x1, 0x10001, &(0x7f0000000340)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0}, 0x40)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0xffffffffffffff69, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000011008188040f80ec59acbc0413a181014100000000010000000000000e000a000f00000002800200121f", 0x2e}], 0x1}, 0x0)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r3=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000580)=r3, 0x4)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f00000009c0)={0x3, 0x80, 0x0, 0x7, 0xb, 0x2, 0x0, 0x8000, 0x10014, 0xe, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0xffffffff, 0x7}, 0x8000, 0xd79a, 0x5, 0x1, 0x400, 0xd5b, 0x1, 0x0, 0xdb, 0x0, 0x1})
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x10, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$kcm(0xa, 0x3, 0x73)
setsockopt$sock_attach_bpf(r5, 0x29, 0x21, &(0x7f0000000200), 0x4)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0xff, @remote}, 0x80, 0x0, 0x0, &(0x7f0000000340)=[{0x10}, {0x18, 0x29, 0xb, '\x00'}], 0x28}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018000000", @ANYRES32, @ANYBLOB="00000000d516a807b70500000800000085000000a500000095"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1011, &(0x7f00000016c0)=""/4113}, 0x94)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000180)={0x1}, 0x8)

1.985579058s ago: executing program 2 (id=5150):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x102, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r0, &(0x7f0000000080), &(0x7f0000000100)=""/17, 0x2}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x0, 0x0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0xa, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7902009875f37538e486dd6317ce62667f2c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa88"], 0xfdef)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200"], 0xcfa4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2, 0x88ffffff}, 0x48)

1.146171021s ago: executing program 3 (id=5151):
r0 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10c002, 0xac5d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x6, 0x5, 0x0, 0x0)
sendmsg$kcm(r0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{0x1}, &(0x7f0000000000), &(0x7f0000000040)=r2}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={0xffffffffffffffff, 0x58, &(0x7f00000001c0)}, 0x10)
socket$kcm(0x21, 0x2, 0x2)
r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1c, 0xff, 0x0, 0x3, 0x0, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xf}, 0x10c21a, 0xac5d, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0xffffffff, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r3, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f2, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffffffff8000}, 0x400}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, 0x0, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000012000000000000000000959a2d78cb547ca6cfa3a1ef9a209ec3e98e886c6d9ad2689c65e98f2656f653dc8e596b3482b717a6d016d3ff34", @ANYRES8=r4, @ANYBLOB], &(0x7f0000000c00)='GPL\x00'}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001000)=ANY=[], 0x50)
r5 = socket$kcm(0x10, 0x2, 0x4)
close(r5)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000140)="5800000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac008000200f6ff0200050005c05e776189eab556a705251e618294ff0051f60a84c9f4d4938037e786c6c953000000000800000000", 0x58}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
socketpair(0xa, 0x6, 0x40, &(0x7f0000000000))
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x7, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x300}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}]}, &(0x7f0000000000)='syzkaller\x00', 0x5}, 0x94)

1.088532184s ago: executing program 4 (id=5152):
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0xfdef)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='cpu>\t\t')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x60)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xa000000, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

775.67058ms ago: executing program 2 (id=5153):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x68}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x94)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0xc8, 0x0, 0x3, 0x0, 0x0, 0x6341, 0x0, 0xfffffffe, 0x0, 0xffffffffffffffff}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$kcm(0xa, 0x2, 0x88)
setsockopt$sock_attach_bpf(r3, 0x88, 0x64, &(0x7f00000009c0), 0x4)
close(r2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89a2, &(0x7f0000000040)={'bridge0\x00', @random="1400"})
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x716, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000001080)={0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, &(0x7f0000000d80), &(0x7f0000000dc0)=r0}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000fc0)={0x6, 0x6, &(0x7f0000000e40)=@raw=[@map_fd={0x18, 0xb, 0x1, 0x0, r6}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r4}}], &(0x7f0000000e80)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x11, '\x00', 0x0, 0x25, r4, 0x8, &(0x7f0000000ec0)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000f00)={0x5, 0x8, 0x5, 0x4}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000f40)=[r4, r4, r4, r4, r4, r4, r4], &(0x7f0000000f80)=[{0x4, 0x2, 0x8, 0xb}, {0x1, 0x1, 0x4, 0x7}], 0x10, 0xfc5}, 0x94)
setsockopt$sock_attach_bpf(r5, 0x6, 0x15, &(0x7f0000000500), 0x4)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xcfa4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000006000000040000000000000e0300000000000000000000000000000d03000000000000000000000204000000000000000000000b020000000000000061"], 0x0, 0x52}, 0x20)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0x0, 0x3c}, 0x28)
sendmsg$tipc(r4, &(0x7f0000000b40)={&(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x1, {0x41, 0x3, 0x3}}, 0x10, &(0x7f0000000a80)=[{&(0x7f00000002c0)="26a0b16696b5632d82dca203", 0xc}, {&(0x7f0000000300)="154a54c79a0ca63258a695e2bfc920122459b47e552255fa786c0efbed8b0a252f36121cd3049a760f561a21b5525e4b79e2b184f810c3769df4e24f0602a1652e579989a59788e4d8cad8810583887a50a62a", 0x53}, {&(0x7f0000000400)="bc9759afa1dd05eec61478e62bb70c3349a7aff13e2d4a883adfc2c18aa7e95a0bab02ba84bf798df63d388edda46da389ac6eb6e6dfbf40aabf2c7edfce6472fce69ce026b207641f89347f7a0655509d5ed7132743f3ac731fc185e61d932539cc3d383d78dbf322b75194d726dcc94e3529bf46af6057c5a3bfb76ec1d566c404670b4acd38ceab93b4728e9e5dec9ca6aef07db03e0d688fe92ae23a01593beae3bedc73824c1306a916af0c7ce7efa8cb829440af94adfb497dad5c71c14adf29af1185271961d62c1e38ce5fdec444ff9ffbce0839d3192b", 0xdb}, {&(0x7f0000000540)="ed7cdf4dbb55d2f99ec2420deee402a11a34baecf4ff3ef431be2ecc76ec31d113c6539e", 0x24}, {&(0x7f00000010c0)="1338c99e1b178b930604ee657127aa7354804f24a768833839cef899f7b65632eb96b465a29049acfec5070f9df06bdaae3f07824774e1a943e9e552999de79afb0066b22300b047ac69645eb59d2990e6e6b6cd87dd17eec4e198bd84938f7bc6ca7230c9c07bdaeb9d4906040eccf2fe4930d219d503ad84cebe64129b5a67bc20bcdd02c4c33e6cdd90ae6067d37f57053b8b7da2f456046a6b3d40c6a2c9e4c6e2e207102f8136a18a21fb1985aaa5903b257ba84cd96984e8723b3d49fb3d04703afc", 0xc5}, {&(0x7f0000000680)="7083f24e70330025421af945833b0a24b7e14395e27bfc4853560590ac03c1028eb6b04c88a63917b8ab3da34f348e956838cf97e86ed1a241b824114416cab3ccddbaf8ac4582f484dd58dcc375cb09e9295ae9dddd35a660df8a7454de7ba00c3e696ea84dd078e83df500de8542cea50f887ead91d2bae0b0e06db09f0d6b4eda72c92a647669a07e88e103c92b87788825fbb7653f0696d5adcb456d08cefbf82a3f6c75d2bcc64f0451f28b4b23c3", 0xb1}, {&(0x7f0000000740)="09be928c6c8b3f6e0ba8b3a81a27576ad3c8823a26fccb7b0981a392a3ded9774a418e8687bc24c4c0fd1dfbac5508ca1453ede5bd903902a38df64d145cda565e3357fd8698b3f2760f8072b533d31d9bfb83f95b94c913f9b3608d87d748f7b67b7dcd5d11c58cf9f5c9a881a37eea43d3f9ac8760be9579d6e5fc04e7f29a304783ad9905bf444c65e39b12502778636a031151d6661f5bc2c427248d279a225c56081b9d3e2e08e2ae9969c8ed9ee87dd804af9ab3a49f5cbc9f8d891db62afd20ca16aa7f02efc387e4e8d9ca7572add0c7eb9edface49cd0de7f142e10b73b298aa16a1da3f88e5d318c67ed962262d893", 0xf4}, {&(0x7f0000000840)="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", 0xfa}, {&(0x7f0000000940)="67fa46e119c398475ae650cb745809397311594e32af69b27f0662396fc73b90fa487c932d250add59714902d8b72e79f1ace1be25ef58a0d204c9a3557e2403fcc26eb2b7a74141d82002f5f3537a684a1a0ad019aba6e7d906847e0230609503b581b48f0e422b2793526c9df7b792e1862576767c22d62b97de6bad3b31883de5937b4d7b4f95ab448ed0eaed118391f75e5c404ceaf8231cb7f6129ecb5a6ead6ce7539cf66c7877e46720", 0xad}, {&(0x7f0000000a00)="c1f1c8a1496d0af381f2175e5e39a6c2d5dfd6091672b5fa0cf40e92134af0dfaae9a0ddb733bb8809f997a1a313914d8c184aa4368c5d633249d906eee010afdf35989a341a196a404430d41de755a1e7e5300be688d67329e3d42f37ac424b4ba6284ec3c75d0110488438494c5cb8d426b5f9aaef4ff73b", 0x79}], 0xa, 0x0, 0x0, 0x8000}, 0x20008814)

722.995873ms ago: executing program 4 (id=5154):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x0, 0x3ff78000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180000000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000040)="1400a10016000b63d25a80648c2594f90f24fc60", 0x14}], 0x1}, 0x2404c084)

611.884689ms ago: executing program 1 (id=5155):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7c, 0x4, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x2, 0x0, 0x3, 0x1, 0x0, 0x28, 0xf000000}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)

444.508467ms ago: executing program 4 (id=5156):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000040)=@generic={0x0}, 0x18)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, 0x0, 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af"], 0x6)

387.80271ms ago: executing program 3 (id=5157):
socket$kcm(0x11, 0x200000000000002, 0x300)
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000000300)=@phonet={0x23, 0x0, 0x0, 0x38}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000000)="27010200d40f00000600ff2e8847", 0xe}], 0x1}, 0xe8030000)

298.427815ms ago: executing program 1 (id=5158):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0xfd, 0x0, 0x0, 0x0, 0xe9, 0x40510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={0x0}, 0x100000, 0x10000, 0x9e4, 0x7, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xc, 0xffffffffffffffff, 0x8)
socket$kcm(0x2, 0x3, 0x106)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8003}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x8, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x2, @perf_config_ext={0x9}, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
socket$kcm(0x29, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYRES32=0x0, @ANYBLOB='\x00'/17], 0x50)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f00000000c0)={0x0, 0x80, 0x5, 0xb, 0x4, 0x8, 0x0, 0x6, 0x50, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xd4, 0x4, @perf_config_ext={0x7, 0x4}, 0x80, 0x4, 0x7fff, 0x9, 0x4, 0x49780915, 0xd, 0x0, 0x3, 0x0, 0xfffffffffffffff9})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r1, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0], <r5=>0x0, 0x3b, &(0x7f0000000380)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000003c0), &(0x7f0000000440), 0x8, 0x86, 0x8, 0x8, &(0x7f0000000580)}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r6}, 0xc)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400)={r6}, 0xc)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='devices.list\x00', 0x26e1, 0x0)
close(r7)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0x14, &(0x7f00000008c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x92a, 0x0, 0x0, 0x0, 0x3ff}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@generic={0xa7, 0xc, 0xf, 0x80, 0xffffffff}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x4}, @ldst={0x1, 0x0, 0x2, 0xa, 0x8, 0xc, 0x4}, @exit], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='syzkaller\x00', 0x5, 0x73, &(0x7f0000000740)=""/115, 0x41000, 0x20, '\x00', r4, @fallback, r7, 0x8, &(0x7f0000000300)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0xb, 0x1, 0xfff}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)=[r3], 0x0, 0x10, 0x1ff}, 0x94)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b07d25a806c8c6f94f90624fc60100005000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
r9 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600073582c137153e37080c18800aac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100097}, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff})
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020200600000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
setsockopt$sock_attach_bpf(r10, 0x1, 0x32, &(0x7f0000000040)=r11, 0x4)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="12000000060000000400000002"], 0x48)
r13 = socket$kcm(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r12}, &(0x7f0000000080)=0x1000000, &(0x7f0000000180)=r13}, 0x20)
ioctl$sock_kcm_SIOCKCMATTACH(r13, 0x541b, 0x0)

169.916282ms ago: executing program 2 (id=5159):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/13, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000680)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000007000000030000000000000b0100000000005f6e003000aa508bb2b52223c8434d3ec059585b4e5643e784c2fbc80a056d29078e5bbb14d2b8534113a68644ae7f13166b48b8c1dce2d262ef86a37c96a07746e8671a00ed7e72c95a878b484fe9fb7d6352f2477646f881e8fe773ed31af183f9f0e2828096e24965cae0e29341bff4156e10b8e0315e0ae0a4a62ac1ae7b1a76358d16a8554caf73040e8dd472ef4a8f42e8d7726fd1c127cb5344a632757a366f99afee308930f6e95d51221814415daeaf4c5c0bda32aee90e78916963cbd150cd000000000000"], &(0x7f0000000300)=""/14, 0x2b, 0xe, 0x1, 0x6, 0x10000}, 0x28)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x87, '\x00', 0x0, r4, 0x4, 0x0, 0x1}, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
r6 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = socket$kcm(0x29, 0x2, 0x0)
close(r8)
r9 = socket$kcm(0x2b, 0x1, 0x0)
close(r9)
socket$kcm(0xa, 0x2, 0x3a)
setsockopt$sock_attach_bpf(r8, 0x1, 0xd, &(0x7f0000000080), 0x2cb)
close(r9)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x4, 0x9e4, 0x5, 0x8, 0xffffffff, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0x2, 0x5, 0x84)
close(0xffffffffffffffff)

0s ago: executing program 4 (id=5160):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000040)=@generic={0x0}, 0x18)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0xffffffcf, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket$kcm(0x10, 0x3, 0x10)
r8 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r8, 0x40042408, r9)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0)
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af"], 0x6)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1e54e0d431000000000000000100000000400000", @ANYRES32=0x1, @ANYBLOB="8000"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0300000000000000000000000900"/28], 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000200)={&(0x7f0000000340)="f20edb1573802b41136ae1fa3574ec8ad8010035f169c12286e9b574125bc86efdfa457c3b3c3e229a29cb93ff338f21cae610af8a63862f8da78b16449b45a4a0fef835914bc51785f8e571fbbb87f3cbb189e0147eae86f30584cc1e70073fe5aef14a6cd4bebcfd446aa850f97fa142ebe6362dc75a0108d710d573d2605512e58008e65e6eda775445d1043414d7c4a9ae248ecc45e5e1e37f2f840796aacf3c6697f3e615f08060251da6396b791c4e0f825a53a2a7dc502781d88d7ebf756e92f51dc5b756d6539edf903b4bfc5fa17089638472768900", &(0x7f00000000c0)=""/24, &(0x7f0000000440)="7af5866bc8e1ef12e0568767d36ce28d62595d45a42a0576df09bc02d074e4424cff223771374c4c2ed9c55e5ca959612e45e749132f09fa2a0fd8b6d71577925c0835221daed51caaa46b46ad254338b863849a889165df8d006c369c7b106230878b968afa148a65cb8b40e1e514c716190f416640f3636e4c1f4b0c66fdb91e777f11faf4c9e3867ad690c540ace7d5990d30acf1b3bc6a1bba000e23b53fb5411fb11eaae96b94a5b3e9036e0a3fd056375dda933136017bc185af4af7cf4dad925a93e3bf662f21d3004a687c275b9fbe6d9a19bb1a60c519296304ea78b5744123d8dd", &(0x7f0000000540)="67c7e348bb92283767cc83426d9220d032b8d2537536f9c9b4b0ba6946784b3468c0f3968b96b9db83629dcaab5dfefdc79520940d638cb19fd1a83e5e0ee663bd001df6", 0x9, r10}, 0x38)

kernel console output (not intermixed with test programs):

_getsockopt+0x590/0x590
[ 1026.967373][T21065]  ? aa_sock_msg_perm+0x94/0x150
[ 1026.972354][T21065]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1026.977665][T21065]  ? security_socket_sendmsg+0x80/0xa0
[ 1026.983146][T21065]  ? netlink_getsockopt+0x590/0x590
[ 1026.988380][T21065]  ____sys_sendmsg+0x5ba/0x960
[ 1026.993167][T21065]  ? __asan_memset+0x22/0x40
[ 1026.997863][T21065]  ? __sys_sendmsg_sock+0x30/0x30
[ 1027.002898][T21065]  ? __import_iovec+0x5f2/0x850
[ 1027.007789][T21065]  ? import_iovec+0x73/0xa0
[ 1027.012401][T21065]  ___sys_sendmsg+0x2a6/0x360
[ 1027.017204][T21065]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1027.022036][T21065]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1027.027105][T21065]  ? __x64_sys_sendmsg+0x80/0x80
[ 1027.032178][T21065]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1027.038094][T21065]  do_syscall_64+0x55/0xa0
[ 1027.042541][T21065]  ? clear_bhb_loop+0x40/0x90
[ 1027.047318][T21065]  ? clear_bhb_loop+0x40/0x90
[ 1027.052009][T21065]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1027.057953][T21065] RIP: 0033:0x7effb679c799
[ 1027.062406][T21065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1027.082062][T21065] RSP: 002b:00007effb7679028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1027.090502][T21065] RAX: ffffffffffffffda RBX: 00007effb6a15fa0 RCX: 00007effb679c799
[ 1027.098496][T21065] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1027.106483][T21065] RBP: 00007effb6832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1027.114461][T21065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1027.122441][T21065] R13: 00007effb6a16038 R14: 00007effb6a15fa0 R15: 00007ffd645644b8
[ 1027.130464][T21065]  </TASK>
[ 1027.168334][T21073] netlink: 'syz.3.4792': attribute type 6 has an invalid length.
[ 1027.212622][T21073] netlink: 164 bytes leftover after parsing attributes in process `syz.3.4792'.
[ 1027.302075][T21078] syzkaller0: left promiscuous mode
[ 1027.308838][T21078] syzkaller0: left allmulticast mode
[ 1027.611695][T21089] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4796'.
[ 1027.682477][T21089] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1028.718003][T21120] netlink: 'syz.4.4806': attribute type 10 has an invalid length.
[ 1028.768831][T21120] team0: Device wg1 is up. Set it down before adding it as a team port
[ 1031.123122][T21108] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[ 1031.313926][T21134] netlink: 'syz.2.4809': attribute type 39 has an invalid length.
[ 1031.324442][T21135] netlink: 'syz.3.4811': attribute type 1 has an invalid length.
[ 1031.342487][T21135] __nla_validate_parse: 1 callbacks suppressed
[ 1031.342506][T21135] netlink: 161700 bytes leftover after parsing attributes in process `syz.3.4811'.
[ 1031.849783][T21145] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4812'.
[ 1032.060292][T21145] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1032.906755][T21161] C: renamed from team_slave_0
[ 1032.950504][T21161] netlink: 'syz.2.4816': attribute type 1 has an invalid length.
[ 1033.062494][T21161] netlink: 116 bytes leftover after parsing attributes in process `syz.2.4816'.
[ 1033.423782][T21171] netlink: 1 bytes leftover after parsing attributes in process `syz.3.4820'.
[ 1034.328197][T21184] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4823'.
[ 1034.452519][T21184] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1034.502006][T21190] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.4827'.
[ 1034.534117][T21187] netlink: 'syz.4.4826': attribute type 10 has an invalid length.
[ 1034.931805][T21187] syz.4.4826 (21187) used greatest stack depth: 18984 bytes left
[ 1035.318189][T21208] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.4833'.
[ 1036.764863][T21221] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4838'.
[ 1036.809649][T21221] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1037.205757][T21247] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4841'.
[ 1037.621029][T21250] netlink: 'syz.2.4846': attribute type 8 has an invalid length.
[ 1037.651167][T21250] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.4846'.
[ 1038.026285][T13208] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1038.036264][T13208] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1038.044927][T13208] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1038.063168][T13208] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1038.074369][T13208] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1038.082944][T13208] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1038.264886][ T1089] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1038.464287][T21270] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4852'.
[ 1038.477199][ T1089] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1038.493827][T21270] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1039.132699][ T1089] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.846538][ T1089] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.968819][T21261] chnl_net:caif_netlink_parms(): no params data found
[ 1040.135059][T13208] Bluetooth: hci5: command tx timeout
[ 1040.357340][T21261] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1040.415589][T21261] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.435128][T21261] bridge_slave_0: entered allmulticast mode
[ 1040.463381][T21261] bridge_slave_0: entered promiscuous mode
[ 1040.617974][T21313] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4864'.
[ 1040.642720][T21313] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1040.906180][T21261] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.919769][T21261] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.969798][T21261] bridge_slave_1: entered allmulticast mode
[ 1040.989678][T21261] bridge_slave_1: entered promiscuous mode
[ 1041.007284][T21312] netlink: 'syz.1.4863': attribute type 10 has an invalid length.
[ 1041.029700][T21312] team0: Device ipvlan1 failed to register rx_handler
[ 1041.251492][T21312] syz.1.4863 (21312) used greatest stack depth: 18440 bytes left
[ 1041.504625][T21261] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1041.569255][T21261] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1041.973299][T21261] team0: Port device team_slave_0 added
[ 1042.001118][T21261] team0: Port device team_slave_1 added
[ 1042.218559][T13208] Bluetooth: hci5: command tx timeout
[ 1042.298702][T21261] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1042.306496][T21261] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1042.333507][T21261] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1042.350920][T21261] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1042.395940][T21261] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1042.436451][T21261] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1042.575487][T21374] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.4878'.
[ 1042.611311][T21374] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1043.407592][T21261] hsr_slave_0: entered promiscuous mode
[ 1043.443354][T21261] hsr_slave_1: entered promiscuous mode
[ 1043.469689][T21261] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1043.502664][T21261] Cannot create hsr debugfs directory
[ 1044.292538][T13208] Bluetooth: hci5: command tx timeout
[ 1045.284474][T21423] sock: sock_set_timeout: `syz.2.4891' (pid 21423) tries to set negative timeout
[ 1046.452197][T13208] Bluetooth: hci5: command tx timeout
[ 1046.938538][T21261] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1047.272540][T21261] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1047.286808][T21471] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4902'.
[ 1047.314856][T21261] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1047.390297][T21261] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1047.788514][T21471] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1047.809655][T21471] CPU: 0 PID: 21471 Comm: syz.1.4902 Not tainted syzkaller #0
[ 1047.817242][T21471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1047.827331][T21471] Call Trace:
[ 1047.830642][T21471]  <TASK>
[ 1047.833596][T21471]  dump_stack_lvl+0x18c/0x250
[ 1047.838292][T21471]  ? show_regs_print_info+0x20/0x20
[ 1047.843507][T21471]  ? load_image+0x400/0x400
[ 1047.848035][T21471]  sysfs_warn_dup+0x8e/0xa0
[ 1047.852538][T21471]  sysfs_do_create_link_sd+0xc0/0x110
[ 1047.857930][T21471]  device_add_class_symlinks+0x1cf/0x240
[ 1047.863606][T21471]  device_add+0x507/0xc20
[ 1047.868015][T21471]  wiphy_register+0x1dad/0x2ae0
[ 1047.872923][T21471]  ? cfg80211_event_work+0x40/0x40
[ 1047.878135][T21471]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1047.884313][T21471]  ieee80211_register_hw+0x3464/0x4250
[ 1047.889817][T21471]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1047.895468][T21471]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1047.901384][T21471]  ? __debug_object_init+0xec/0x450
[ 1047.906616][T21471]  ? __asan_memset+0x22/0x40
[ 1047.911294][T21471]  ? __hrtimer_init+0x186/0x270
[ 1047.916213][T21471]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1047.922010][T21471]  ? mac80211_hwsim_free+0x220/0x220
[ 1047.927325][T21471]  ? rcu_is_watching+0x15/0xb0
[ 1047.932117][T21471]  ? kstrndup+0xbd/0x140
[ 1047.936427][T21471]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1047.941562][T21471]  ? __nla_validate+0x50/0x50
[ 1047.946245][T21471]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1047.952261][T21471]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1047.958621][T21471]  ? lockdep_hardirqs_on+0x98/0x150
[ 1047.963842][T21471]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1047.970121][T21471]  ? __nla_parse+0x40/0x50
[ 1047.974599][T21471]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1047.980940][T21471]  genl_family_rcv_msg_doit+0x211/0x310
[ 1047.986485][T21471]  ? end_current_label_crit_section+0x170/0x170
[ 1047.992736][T21471]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1047.998638][T21471]  ? bpf_lsm_capable+0x9/0x10
[ 1048.003333][T21471]  ? security_capable+0x89/0xb0
[ 1048.008207][T21471]  genl_rcv_msg+0x619/0x7a0
[ 1048.012738][T21471]  ? genl_bind+0x360/0x360
[ 1048.017199][T21471]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1048.023573][T21471]  netlink_rcv_skb+0x241/0x4d0
[ 1048.028344][T21471]  ? genl_bind+0x360/0x360
[ 1048.032759][T21471]  ? netlink_ack+0x1180/0x1180
[ 1048.037558][T21471]  ? __lock_acquire+0x7d40/0x7d40
[ 1048.042593][T21471]  ? down_read+0x1ac/0x2e0
[ 1048.047011][T21471]  genl_rcv+0x28/0x40
[ 1048.051031][T21471]  netlink_unicast+0x751/0x8d0
[ 1048.055828][T21471]  netlink_sendmsg+0x8d0/0xbf0
[ 1048.060613][T21471]  ? netlink_getsockopt+0x590/0x590
[ 1048.065928][T21471]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1048.072112][T21471]  ? aa_sock_msg_perm+0x94/0x150
[ 1048.077076][T21471]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1048.082390][T21471]  ? security_socket_sendmsg+0x80/0xa0
[ 1048.087954][T21471]  ? netlink_getsockopt+0x590/0x590
[ 1048.093204][T21471]  ____sys_sendmsg+0x5ba/0x960
[ 1048.097990][T21471]  ? __asan_memset+0x22/0x40
[ 1048.102591][T21471]  ? __sys_sendmsg_sock+0x30/0x30
[ 1048.107636][T21471]  ? __import_iovec+0x5f2/0x850
[ 1048.112535][T21471]  ? import_iovec+0x73/0xa0
[ 1048.117087][T21471]  ___sys_sendmsg+0x2a6/0x360
[ 1048.121807][T21471]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1048.126645][T21471]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1048.131545][T21471]  ? __x64_sys_sendmsg+0x80/0x80
[ 1048.136520][T21471]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1048.142449][T21471]  do_syscall_64+0x55/0xa0
[ 1048.146871][T21471]  ? clear_bhb_loop+0x40/0x90
[ 1048.151555][T21471]  ? clear_bhb_loop+0x40/0x90
[ 1048.156283][T21471]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1048.162185][T21471] RIP: 0033:0x7f1b3019c799
[ 1048.166639][T21471] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1048.186275][T21471] RSP: 002b:00007f1b31088028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1048.194697][T21471] RAX: ffffffffffffffda RBX: 00007f1b30415fa0 RCX: 00007f1b3019c799
[ 1048.202856][T21471] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1048.211105][T21471] RBP: 00007f1b30232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1048.219182][T21471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1048.227271][T21471] R13: 00007f1b30416038 R14: 00007f1b30415fa0 R15: 00007fffbb3f4728
[ 1048.235256][T21471]  </TASK>
[ 1049.406844][T21261] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1049.567111][T21261] 8021q: adding VLAN 0 to HW filter on device team0
[ 1049.818310][T21502] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4911'.
[ 1050.024258][T20464] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1050.025213][T21502] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1050.031481][T20464] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1050.076224][T20464] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1050.083501][T20464] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1050.191676][T21508] netlink: 'syz.1.4913': attribute type 21 has an invalid length.
[ 1050.249297][T21261] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1051.219733][T21530] netlink: 'syz.2.4916': attribute type 2 has an invalid length.
[ 1051.232682][T21530] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4916'.
[ 1051.894605][T21261] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1052.400613][T21261] veth0_vlan: entered promiscuous mode
[ 1052.517272][T21553] netlink: 830 bytes leftover after parsing attributes in process `syz.4.4921'.
[ 1052.555943][T21261] veth1_vlan: entered promiscuous mode
[ 1052.786708][T21261] veth0_macvtap: entered promiscuous mode
[ 1052.838085][T21261] veth1_macvtap: entered promiscuous mode
[ 1052.925588][T21563] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4923'.
[ 1053.043094][T21563] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1053.121838][T21570] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.4924'.
[ 1053.801366][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.839958][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.863196][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.891350][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.910180][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.921221][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.931827][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.950451][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.971013][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.994717][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1054.028935][T21261] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1054.133343][T21570] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1054.172566][T21570] CPU: 0 PID: 21570 Comm: syz.4.4924 Not tainted syzkaller #0
[ 1054.180110][T21570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1054.190236][T21570] Call Trace:
[ 1054.193573][T21570]  <TASK>
[ 1054.196551][T21570]  dump_stack_lvl+0x18c/0x250
[ 1054.201326][T21570]  ? show_regs_print_info+0x20/0x20
[ 1054.206562][T21570]  ? load_image+0x400/0x400
[ 1054.211129][T21570]  sysfs_warn_dup+0x8e/0xa0
[ 1054.215754][T21570]  sysfs_do_create_link_sd+0xc0/0x110
[ 1054.221167][T21570]  device_add_class_symlinks+0x1cf/0x240
[ 1054.226846][T21570]  device_add+0x507/0xc20
[ 1054.231221][T21570]  wiphy_register+0x1dad/0x2ae0
[ 1054.236218][T21570]  ? cfg80211_event_work+0x40/0x40
[ 1054.241452][T21570]  ? minstrel_ht_alloc+0x88a/0x990
[ 1054.246702][T21570]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1054.252819][T21570]  ieee80211_register_hw+0x3464/0x4250
[ 1054.258345][T21570]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1054.264023][T21570]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1054.269953][T21570]  ? __debug_object_init+0xec/0x450
[ 1054.275194][T21570]  ? __asan_memset+0x22/0x40
[ 1054.279822][T21570]  ? __hrtimer_init+0x186/0x270
[ 1054.284711][T21570]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1054.290499][T21570]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1054.296716][T21570]  ? mac80211_hwsim_free+0x220/0x220
[ 1054.302042][T21570]  ? rcu_is_watching+0x15/0xb0
[ 1054.306929][T21570]  ? kstrndup+0xbd/0x140
[ 1054.311222][T21570]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1054.316428][T21570]  ? __nla_validate+0x50/0x50
[ 1054.321157][T21570]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1054.327551][T21570]  ? __nla_parse+0x40/0x50
[ 1054.332006][T21570]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1054.338380][T21570]  genl_family_rcv_msg_doit+0x211/0x310
[ 1054.343956][T21570]  ? end_current_label_crit_section+0x170/0x170
[ 1054.350329][T21570]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1054.356446][T21570]  ? bpf_lsm_capable+0x9/0x10
[ 1054.361261][T21570]  ? security_capable+0x89/0xb0
[ 1054.366180][T21570]  genl_rcv_msg+0x619/0x7a0
[ 1054.370731][T21570]  ? genl_bind+0x360/0x360
[ 1054.375180][T21570]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1054.381211][T21570]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1054.387609][T21570]  ? perf_trace_lock+0xfc/0x3b0
[ 1054.392536][T21570]  netlink_rcv_skb+0x241/0x4d0
[ 1054.397366][T21570]  ? genl_bind+0x360/0x360
[ 1054.401824][T21570]  ? netlink_ack+0x1180/0x1180
[ 1054.406658][T21570]  ? __lock_acquire+0x7d40/0x7d40
[ 1054.411742][T21570]  ? down_read+0x1ac/0x2e0
[ 1054.416213][T21570]  genl_rcv+0x28/0x40
[ 1054.420239][T21570]  netlink_unicast+0x751/0x8d0
[ 1054.425074][T21570]  netlink_sendmsg+0x8d0/0xbf0
[ 1054.429900][T21570]  ? netlink_getsockopt+0x590/0x590
[ 1054.435150][T21570]  ? netlink_getsockopt+0x590/0x590
[ 1054.440377][T21570]  ____sys_sendmsg+0x5ba/0x960
[ 1054.445156][T21570]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1054.451334][T21570]  ? __sys_sendmsg_sock+0x30/0x30
[ 1054.456375][T21570]  ? import_iovec+0x73/0xa0
[ 1054.460886][T21570]  ? import_iovec+0x73/0xa0
[ 1054.465420][T21570]  ___sys_sendmsg+0x2a6/0x360
[ 1054.470121][T21570]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1054.474916][T21570]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1054.481282][T21570]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1054.486162][T21570]  ? __x64_sys_sendmsg+0x80/0x80
[ 1054.491176][T21570]  do_syscall_64+0x55/0xa0
[ 1054.495613][T21570]  ? clear_bhb_loop+0x40/0x90
[ 1054.500307][T21570]  ? clear_bhb_loop+0x40/0x90
[ 1054.505081][T21570]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1054.510998][T21570] RIP: 0033:0x7effb679c799
[ 1054.515435][T21570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1054.535056][T21570] RSP: 002b:00007effb7658028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1054.543482][T21570] RAX: ffffffffffffffda RBX: 00007effb6a16090 RCX: 00007effb679c799
[ 1054.551550][T21570] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1054.559627][T21570] RBP: 00007effb6832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1054.567631][T21570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1054.575639][T21570] R13: 00007effb6a16128 R14: 00007effb6a16090 R15: 00007ffd645644b8
[ 1054.583730][T21570]  </TASK>
[ 1054.616586][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.623334][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.934662][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1054.972379][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1055.012478][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1055.058597][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1055.090978][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1055.102966][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1055.129677][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1055.159693][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1055.182247][T21261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1055.202394][T21261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1055.224204][T21261] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1055.243295][T21261] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1055.271886][T21261] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1055.291255][T21261] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1055.310258][T21261] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1055.396505][T21616] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4933'.
[ 1055.417214][ T1089] team0: left allmulticast mode
[ 1055.426860][ T1089] team_slave_0: left allmulticast mode
[ 1055.436357][T21616] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1055.444737][ T1089] team_slave_1: left allmulticast mode
[ 1055.450351][ T1089] team0: left promiscuous mode
[ 1055.466470][ T1089] team_slave_0: left promiscuous mode
[ 1055.472144][ T1089] team_slave_1: left promiscuous mode
[ 1055.485701][ T1089] : port 1(team0) entered disabled state
[ 1055.522135][ T1089] hsr_slave_0: left promiscuous mode
[ 1055.529956][ T1089] hsr_slave_1: left promiscuous mode
[ 1055.548748][ T1089] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1055.569919][ T1089] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1055.593538][ T1089] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1055.615169][ T1089] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1055.647315][ T1089] bridge_slave_1: left allmulticast mode
[ 1055.657557][ T1089] bridge_slave_1: left promiscuous mode
[ 1055.673333][ T1089] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1055.687611][ T1089] bridge_slave_0: left allmulticast mode
[ 1055.696759][ T1089] bridge_slave_0: left promiscuous mode
[ 1055.707174][ T1089] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1055.760155][ T1089] veth1_macvtap: left promiscuous mode
[ 1055.776389][ T1089] veth0_macvtap: left promiscuous mode
[ 1056.276029][T21641] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4938'.
[ 1057.364445][ T1089] team0 (unregistering): Port device team_slave_1 removed
[ 1057.416810][ T1089] team0 (unregistering): Port device team_slave_0 removed
[ 1057.986952][T21641] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1058.002525][T21641] CPU: 1 PID: 21641 Comm: syz.1.4938 Not tainted syzkaller #0
[ 1058.010060][T21641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1058.020175][T21641] Call Trace:
[ 1058.023494][T21641]  <TASK>
[ 1058.026461][T21641]  dump_stack_lvl+0x18c/0x250
[ 1058.031306][T21641]  ? show_regs_print_info+0x20/0x20
[ 1058.036557][T21641]  ? load_image+0x400/0x400
[ 1058.041086][T21641]  sysfs_warn_dup+0x8e/0xa0
[ 1058.045597][T21641]  sysfs_do_create_link_sd+0xc0/0x110
[ 1058.050988][T21641]  device_add_class_symlinks+0x1cf/0x240
[ 1058.056643][T21641]  device_add+0x507/0xc20
[ 1058.061009][T21641]  wiphy_register+0x1dad/0x2ae0
[ 1058.065890][T21641]  ? cfg80211_event_work+0x40/0x40
[ 1058.071002][T21641]  ? minstrel_ht_alloc+0x88a/0x990
[ 1058.076217][T21641]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1058.082317][T21641]  ieee80211_register_hw+0x3464/0x4250
[ 1058.087853][T21641]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1058.093517][T21641]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1058.099547][T21641]  ? __debug_object_init+0xec/0x450
[ 1058.104781][T21641]  ? __asan_memset+0x22/0x40
[ 1058.109411][T21641]  ? __hrtimer_init+0x186/0x270
[ 1058.114371][T21641]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1058.120222][T21641]  ? mac80211_hwsim_free+0x220/0x220
[ 1058.125525][T21641]  ? rcu_is_watching+0x15/0xb0
[ 1058.130306][T21641]  ? kstrndup+0xbd/0x140
[ 1058.134579][T21641]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1058.139709][T21641]  ? mark_lock+0x94/0x320
[ 1058.144057][T21641]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1058.150060][T21641]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1058.156460][T21641]  ? lockdep_hardirqs_on+0x98/0x150
[ 1058.161686][T21641]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1058.167861][T21641]  ? genl_family_rcv_msg_doit+0x195/0x310
[ 1058.173600][T21641]  ? kasan_check_range+0x55/0x290
[ 1058.178734][T21641]  genl_family_rcv_msg_doit+0x211/0x310
[ 1058.184638][T21641]  ? end_current_label_crit_section+0x170/0x170
[ 1058.190897][T21641]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1058.196810][T21641]  ? bpf_lsm_capable+0x9/0x10
[ 1058.201508][T21641]  ? security_capable+0x89/0xb0
[ 1058.206385][T21641]  genl_rcv_msg+0x619/0x7a0
[ 1058.210910][T21641]  ? genl_bind+0x360/0x360
[ 1058.215517][T21641]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1058.221874][T21641]  ? lockdep_hardirqs_on+0x98/0x150
[ 1058.227093][T21641]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1058.233274][T21641]  netlink_rcv_skb+0x241/0x4d0
[ 1058.238070][T21641]  ? genl_bind+0x360/0x360
[ 1058.242505][T21641]  ? netlink_ack+0x1180/0x1180
[ 1058.247564][T21641]  ? down_read+0x1ac/0x2e0
[ 1058.252029][T21641]  genl_rcv+0x28/0x40
[ 1058.256037][T21641]  netlink_unicast+0x751/0x8d0
[ 1058.260837][T21641]  netlink_sendmsg+0x8d0/0xbf0
[ 1058.265727][T21641]  ? netlink_getsockopt+0x590/0x590
[ 1058.270942][T21641]  ? aa_sock_msg_perm+0x94/0x150
[ 1058.275904][T21641]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1058.281201][T21641]  ? security_socket_sendmsg+0x80/0xa0
[ 1058.286670][T21641]  ? netlink_getsockopt+0x590/0x590
[ 1058.291885][T21641]  ____sys_sendmsg+0x5ba/0x960
[ 1058.296660][T21641]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1058.302837][T21641]  ? __asan_memset+0x22/0x40
[ 1058.307645][T21641]  ? __sys_sendmsg_sock+0x30/0x30
[ 1058.312695][T21641]  ? __import_iovec+0x5f2/0x850
[ 1058.317590][T21641]  ? import_iovec+0x73/0xa0
[ 1058.322123][T21641]  ___sys_sendmsg+0x2a6/0x360
[ 1058.326825][T21641]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1058.331737][T21641]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1058.336610][T21641]  ? __x64_sys_sendmsg+0x80/0x80
[ 1058.341574][T21641]  ? lockdep_hardirqs_on+0x98/0x150
[ 1058.346793][T21641]  do_syscall_64+0x55/0xa0
[ 1058.351226][T21641]  ? clear_bhb_loop+0x40/0x90
[ 1058.355916][T21641]  ? clear_bhb_loop+0x40/0x90
[ 1058.360614][T21641]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1058.366524][T21641] RIP: 0033:0x7f1b3019c799
[ 1058.370954][T21641] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1058.390662][T21641] RSP: 002b:00007f1b31088028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1058.399355][T21641] RAX: ffffffffffffffda RBX: 00007f1b30415fa0 RCX: 00007f1b3019c799
[ 1058.407342][T21641] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1058.415371][T21641] RBP: 00007f1b30232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1058.423437][T21641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1058.431414][T21641] R13: 00007f1b30416038 R14: 00007f1b30415fa0 R15: 00007fffbb3f4728
[ 1058.439416][T21641]  </TASK>
[ 1058.715436][T15727] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1058.728305][T15727] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1058.822972][T20464] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1058.830862][T20464] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1059.318880][T21679] sctp: [Deprecated]: syz.1.4951 (pid 21679) Use of int in max_burst socket option deprecated.
[ 1059.318880][T21679] Use struct sctp_assoc_value instead
[ 1059.839566][T21676] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4943'.
[ 1059.860612][T21676] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1060.211912][ T5778] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1060.231965][ T5778] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1060.263767][ T5778] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1060.295231][ T5778] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1060.301156][T21688] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4947'.
[ 1060.331399][ T5778] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1060.339008][ T5778] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1060.969971][T21696] sit0: entered allmulticast mode
[ 1061.127812][T21688] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1061.142219][T21688] CPU: 0 PID: 21688 Comm: syz.1.4947 Not tainted syzkaller #0
[ 1061.149739][T21688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1061.159840][T21688] Call Trace:
[ 1061.163170][T21688]  <TASK>
[ 1061.166146][T21688]  dump_stack_lvl+0x18c/0x250
[ 1061.170849][T21688]  ? show_regs_print_info+0x20/0x20
[ 1061.176086][T21688]  ? load_image+0x400/0x400
[ 1061.180620][T21688]  sysfs_warn_dup+0x8e/0xa0
[ 1061.185149][T21688]  sysfs_do_create_link_sd+0xc0/0x110
[ 1061.190619][T21688]  device_add_class_symlinks+0x1cf/0x240
[ 1061.196380][T21688]  device_add+0x507/0xc20
[ 1061.200741][T21688]  wiphy_register+0x1dad/0x2ae0
[ 1061.205632][T21688]  ? cfg80211_event_work+0x40/0x40
[ 1061.210773][T21688]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1061.217303][T21688]  ieee80211_register_hw+0x3464/0x4250
[ 1061.222938][T21688]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1061.228625][T21688]  ? lockdep_hardirqs_on+0x98/0x150
[ 1061.233867][T21688]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1061.240039][T21688]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1061.245908][T21688]  ? mac80211_hwsim_free+0x220/0x220
[ 1061.251260][T21688]  ? rcu_is_watching+0x15/0xb0
[ 1061.256137][T21688]  ? kstrndup+0xbd/0x140
[ 1061.260415][T21688]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1061.265540][T21688]  ? __nla_validate+0x50/0x50
[ 1061.270249][T21688]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1061.276701][T21688]  ? __nla_parse+0x40/0x50
[ 1061.281135][T21688]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1061.287468][T21688]  genl_family_rcv_msg_doit+0x211/0x310
[ 1061.293155][T21688]  ? end_current_label_crit_section+0x170/0x170
[ 1061.299445][T21688]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1061.305372][T21688]  ? bpf_lsm_capable+0x9/0x10
[ 1061.310073][T21688]  ? security_capable+0x89/0xb0
[ 1061.315018][T21688]  genl_rcv_msg+0x619/0x7a0
[ 1061.319525][T21688]  ? genl_bind+0x360/0x360
[ 1061.323961][T21688]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1061.330339][T21688]  ? lockdep_hardirqs_on+0x98/0x150
[ 1061.335884][T21688]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1061.342046][T21688]  netlink_rcv_skb+0x241/0x4d0
[ 1061.346931][T21688]  ? genl_bind+0x360/0x360
[ 1061.351490][T21688]  ? netlink_ack+0x1180/0x1180
[ 1061.356403][T21688]  ? __lock_acquire+0x7d40/0x7d40
[ 1061.361458][T21688]  ? down_read+0x1ac/0x2e0
[ 1061.365883][T21688]  genl_rcv+0x28/0x40
[ 1061.369878][T21688]  netlink_unicast+0x751/0x8d0
[ 1061.374674][T21688]  netlink_sendmsg+0x8d0/0xbf0
[ 1061.379475][T21688]  ? netlink_getsockopt+0x590/0x590
[ 1061.384858][T21688]  ? aa_sock_msg_perm+0x94/0x150
[ 1061.389806][T21688]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1061.395107][T21688]  ? security_socket_sendmsg+0x80/0xa0
[ 1061.400614][T21688]  ? netlink_getsockopt+0x590/0x590
[ 1061.405852][T21688]  ____sys_sendmsg+0x5ba/0x960
[ 1061.410623][T21688]  ? __asan_memset+0x22/0x40
[ 1061.415220][T21688]  ? __sys_sendmsg_sock+0x30/0x30
[ 1061.420244][T21688]  ? __import_iovec+0x5f2/0x850
[ 1061.425161][T21688]  ? import_iovec+0x73/0xa0
[ 1061.429662][T21688]  ___sys_sendmsg+0x2a6/0x360
[ 1061.434347][T21688]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1061.439137][T21688]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1061.445439][T21688]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1061.450355][T21688]  ? __x64_sys_sendmsg+0x80/0x80
[ 1061.455525][T21688]  do_syscall_64+0x55/0xa0
[ 1061.459999][T21688]  ? clear_bhb_loop+0x40/0x90
[ 1061.464694][T21688]  ? clear_bhb_loop+0x40/0x90
[ 1061.469402][T21688]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1061.475297][T21688] RIP: 0033:0x7f1b3019c799
[ 1061.479722][T21688] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1061.499376][T21688] RSP: 002b:00007f1b31067028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1061.507824][T21688] RAX: ffffffffffffffda RBX: 00007f1b30416090 RCX: 00007f1b3019c799
[ 1061.515798][T21688] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[ 1061.523783][T21688] RBP: 00007f1b30232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1061.531774][T21688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1061.539760][T21688] R13: 00007f1b30416128 R14: 00007f1b30416090 R15: 00007fffbb3f4728
[ 1061.547777][T21688]  </TASK>
[ 1061.619557][T21702] netlink: 'syz.3.4949': attribute type 4 has an invalid length.
[ 1061.835173][T21709] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4953'.
[ 1061.849456][T21709] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4953'.
[ 1061.869308][T21709] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4953'.
[ 1061.895599][T21709] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4953'.
[ 1062.020402][T21689] chnl_net:caif_netlink_parms(): no params data found
[ 1062.189174][T21689] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1062.201896][T21727] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4957'.
[ 1062.203996][T21689] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1062.254474][T21689] bridge_slave_0: entered allmulticast mode
[ 1062.285525][T21726] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4956'.
[ 1062.295576][T21726] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1062.308495][T21689] bridge_slave_0: entered promiscuous mode
[ 1062.318212][T21727] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4957'.
[ 1062.347341][T21728] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4957'.
[ 1062.452562][T13208] Bluetooth: hci0: command tx timeout
[ 1062.494117][T21689] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1062.501428][T21689] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1062.515214][T21689] bridge_slave_1: entered allmulticast mode
[ 1062.538597][T21689] bridge_slave_1: entered promiscuous mode
[ 1062.590863][T21689] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1062.609177][T21689] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1062.657401][T21689] team0: Port device team_slave_0 added
[ 1062.668650][T21689] team0: Port device team_slave_1 added
[ 1062.707092][T21689] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1062.717346][T21689] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1062.745155][T21689] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1062.758823][T21689] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1062.766134][T21689] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1062.802133][T21689] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1063.318617][T21689] hsr_slave_0: entered promiscuous mode
[ 1063.340829][T21689] hsr_slave_1: entered promiscuous mode
[ 1063.358872][T21689] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1063.388625][T21689] Cannot create hsr debugfs directory
[ 1063.509041][T21732] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4959'.
[ 1064.271231][T21742] netlink: 'syz.4.4963': attribute type 21 has an invalid length.
[ 1064.310020][T21742] netlink: 128 bytes leftover after parsing attributes in process `syz.4.4963'.
[ 1064.429692][T21732] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[ 1064.534185][T13208] Bluetooth: hci0: command tx timeout
[ 1064.578318][T21689] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1065.264516][T21689] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1065.302672][T21752] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1065.551519][T21689] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1065.692887][T21766] netlink: 'syz.3.4968': attribute type 49 has an invalid length.
[ 1065.755309][T21689] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1065.807894][T21766] netlink: 'syz.3.4968': attribute type 49 has an invalid length.
[ 1066.082087][T21689] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1066.352515][T21689] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1066.367973][T21689] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1066.398811][T21689] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1066.498203][T21777] bridge_slave_1: default FDB implementation only supports local addresses
[ 1066.622778][T13208] Bluetooth: hci0: command tx timeout
[ 1066.688957][T21689] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1066.747028][T21689] 8021q: adding VLAN 0 to HW filter on device team0
[ 1066.822465][T21689] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1066.833433][T21689] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1066.851902][T21782] netlink: 'syz.1.4975': attribute type 10 has an invalid length.
[ 1067.089037][T21782] team0: Port device macvlan0 added
[ 1067.102414][ T2972] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1067.109807][ T2972] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1067.121451][ T2972] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1067.128760][ T2972] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1067.376294][T21785] __nla_validate_parse: 6 callbacks suppressed
[ 1067.376317][T21785] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.4976'.
[ 1067.443747][T21782] syz.1.4975 (21782) used greatest stack depth: 18408 bytes left
[ 1067.552612][T21785] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1067.641713][T21791] netlink: 'syz.1.4977': attribute type 7 has an invalid length.
[ 1067.903940][T21779] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1067.911999][T21779] CPU: 1 PID: 21779 Comm: syz.3.4974 Not tainted syzkaller #0
[ 1067.919502][T21779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1067.929620][T21779] Call Trace:
[ 1067.932953][T21779]  <TASK>
[ 1067.936020][T21779]  dump_stack_lvl+0x18c/0x250
[ 1067.940844][T21779]  ? show_regs_print_info+0x20/0x20
[ 1067.946131][T21779]  ? load_image+0x400/0x400
[ 1067.950829][T21779]  sysfs_warn_dup+0x8e/0xa0
[ 1067.955383][T21779]  sysfs_do_create_link_sd+0xc0/0x110
[ 1067.960807][T21779]  device_add_class_symlinks+0x1cf/0x240
[ 1067.966501][T21779]  device_add+0x507/0xc20
[ 1067.970903][T21779]  wiphy_register+0x1dad/0x2ae0
[ 1067.975831][T21779]  ? cfg80211_event_work+0x40/0x40
[ 1067.980991][T21779]  ? minstrel_ht_alloc+0x88a/0x990
[ 1067.986192][T21779]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1067.992316][T21779]  ieee80211_register_hw+0x3464/0x4250
[ 1067.997845][T21779]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1068.003523][T21779]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1068.009458][T21779]  ? __debug_object_init+0xec/0x450
[ 1068.014834][T21779]  ? __asan_memset+0x22/0x40
[ 1068.019471][T21779]  ? __hrtimer_init+0x186/0x270
[ 1068.024378][T21779]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1068.030183][T21779]  ? mac80211_hwsim_free+0x220/0x220
[ 1068.035531][T21779]  ? rcu_is_watching+0x15/0xb0
[ 1068.040352][T21779]  ? kstrndup+0xbd/0x140
[ 1068.045008][T21779]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1068.050185][T21779]  ? __nla_validate+0x50/0x50
[ 1068.054944][T21779]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1068.061432][T21779]  ? __nla_parse+0x40/0x50
[ 1068.066072][T21779]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1068.072585][T21779]  genl_family_rcv_msg_doit+0x211/0x310
[ 1068.078361][T21779]  ? end_current_label_crit_section+0x170/0x170
[ 1068.084710][T21779]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1068.090664][T21779]  ? bpf_lsm_capable+0x9/0x10
[ 1068.095493][T21779]  ? security_capable+0x89/0xb0
[ 1068.100425][T21779]  genl_rcv_msg+0x619/0x7a0
[ 1068.105170][T21779]  ? genl_bind+0x360/0x360
[ 1068.109643][T21779]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1068.116048][T21779]  netlink_rcv_skb+0x241/0x4d0
[ 1068.120871][T21779]  ? genl_bind+0x360/0x360
[ 1068.125336][T21779]  ? netlink_ack+0x1180/0x1180
[ 1068.130256][T21779]  ? __lock_acquire+0x7d40/0x7d40
[ 1068.135447][T21779]  ? down_read+0x1ac/0x2e0
[ 1068.139914][T21779]  genl_rcv+0x28/0x40
[ 1068.143942][T21779]  netlink_unicast+0x751/0x8d0
[ 1068.148752][T21779]  netlink_sendmsg+0x8d0/0xbf0
[ 1068.153567][T21779]  ? netlink_getsockopt+0x590/0x590
[ 1068.158801][T21779]  ? apparmor_socket_sendmsg+0x12/0x30
[ 1068.164289][T21779]  ? aa_sock_msg_perm+0x94/0x150
[ 1068.169269][T21779]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1068.174580][T21779]  ? security_socket_sendmsg+0x80/0xa0
[ 1068.180080][T21779]  ? netlink_getsockopt+0x590/0x590
[ 1068.185315][T21779]  ____sys_sendmsg+0x5ba/0x960
[ 1068.190140][T21779]  ? __asan_memset+0x22/0x40
[ 1068.194763][T21779]  ? __sys_sendmsg_sock+0x30/0x30
[ 1068.199808][T21779]  ? __import_iovec+0x5f2/0x850
[ 1068.204714][T21779]  ? import_iovec+0x73/0xa0
[ 1068.209258][T21779]  ___sys_sendmsg+0x2a6/0x360
[ 1068.213968][T21779]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1068.218770][T21779]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1068.225080][T21779]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1068.230310][T21779]  ? __x64_sys_sendmsg+0x80/0x80
[ 1068.235268][T21779]  ? lockdep_hardirqs_on+0x98/0x150
[ 1068.240475][T21779]  do_syscall_64+0x55/0xa0
[ 1068.244920][T21779]  ? clear_bhb_loop+0x40/0x90
[ 1068.249625][T21779]  ? clear_bhb_loop+0x40/0x90
[ 1068.254325][T21779]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1068.260261][T21779] RIP: 0033:0x7fc56639c799
[ 1068.264712][T21779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1068.284367][T21779] RSP: 002b:00007fc56721e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1068.292833][T21779] RAX: ffffffffffffffda RBX: 00007fc566615fa0 RCX: 00007fc56639c799
[ 1068.300919][T21779] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1068.308995][T21779] RBP: 00007fc566432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1068.316996][T21779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1068.325083][T21779] R13: 00007fc566616038 R14: 00007fc566615fa0 R15: 00007fffb0fe98b8
[ 1068.333126][T21779]  </TASK>
[ 1068.494330][T21804] netlink: 'syz.3.4979': attribute type 21 has an invalid length.
[ 1068.663658][T21689] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1068.700239][T13208] Bluetooth: hci0: command tx timeout
[ 1068.816202][T21689] veth0_vlan: entered promiscuous mode
[ 1068.882847][T21689] veth1_vlan: entered promiscuous mode
[ 1068.975069][T21689] veth0_macvtap: entered promiscuous mode
[ 1069.095002][T21689] veth1_macvtap: entered promiscuous mode
[ 1069.172684][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1069.183395][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.220772][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1069.252379][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.271410][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1069.282525][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.299973][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1069.314889][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.365606][T21828] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4985'.
[ 1069.384991][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1069.472611][T21828] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1069.534883][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.555518][T21825] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4986'.
[ 1069.607657][T21689] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1069.620780][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1069.632679][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.644164][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1069.655405][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.701643][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1069.741126][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.751743][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1069.762245][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.777342][T21689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1069.788565][T21689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1069.801108][T21689] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1069.866584][T21689] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1069.881781][T21689] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1069.931659][T21689] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1069.952754][T21689] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1070.237723][T21831] netlink: 'syz.1.4987': attribute type 7 has an invalid length.
[ 1070.253785][T21825] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1070.263132][T21825] CPU: 1 PID: 21825 Comm: syz.3.4986 Not tainted syzkaller #0
[ 1070.270733][T21825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1070.280815][T21825] Call Trace:
[ 1070.284125][T21825]  <TASK>
[ 1070.287077][T21825]  dump_stack_lvl+0x18c/0x250
[ 1070.292129][T21825]  ? show_regs_print_info+0x20/0x20
[ 1070.297351][T21825]  ? load_image+0x400/0x400
[ 1070.301883][T21825]  sysfs_warn_dup+0x8e/0xa0
[ 1070.306401][T21825]  sysfs_do_create_link_sd+0xc0/0x110
[ 1070.311788][T21825]  device_add_class_symlinks+0x1cf/0x240
[ 1070.317443][T21825]  device_add+0x507/0xc20
[ 1070.321794][T21825]  wiphy_register+0x1dad/0x2ae0
[ 1070.326674][T21825]  ? cfg80211_event_work+0x40/0x40
[ 1070.331792][T21825]  ? minstrel_ht_alloc+0x88a/0x990
[ 1070.337104][T21825]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1070.343195][T21825]  ieee80211_register_hw+0x3464/0x4250
[ 1070.348789][T21825]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1070.354439][T21825]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1070.360351][T21825]  ? __debug_object_init+0xec/0x450
[ 1070.365577][T21825]  ? __asan_memset+0x22/0x40
[ 1070.370191][T21825]  ? __hrtimer_init+0x186/0x270
[ 1070.375063][T21825]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1070.380826][T21825]  ? mac80211_hwsim_free+0x220/0x220
[ 1070.386218][T21825]  ? rcu_is_watching+0x15/0xb0
[ 1070.391008][T21825]  ? kstrndup+0xbd/0x140
[ 1070.395273][T21825]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1070.400416][T21825]  ? __nla_validate+0x50/0x50
[ 1070.405126][T21825]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1070.411489][T21825]  ? __nla_parse+0x40/0x50
[ 1070.415918][T21825]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1070.422264][T21825]  genl_family_rcv_msg_doit+0x211/0x310
[ 1070.428010][T21825]  ? end_current_label_crit_section+0x170/0x170
[ 1070.434358][T21825]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1070.440278][T21825]  ? bpf_lsm_capable+0x9/0x10
[ 1070.444987][T21825]  ? security_capable+0x89/0xb0
[ 1070.449861][T21825]  genl_rcv_msg+0x619/0x7a0
[ 1070.454382][T21825]  ? genl_bind+0x360/0x360
[ 1070.458811][T21825]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1070.465250][T21825]  ? lockdep_hardirqs_on+0x98/0x150
[ 1070.470473][T21825]  netlink_rcv_skb+0x241/0x4d0
[ 1070.475281][T21825]  ? genl_bind+0x360/0x360
[ 1070.479709][T21825]  ? netlink_ack+0x1180/0x1180
[ 1070.484514][T21825]  ? genl_bind+0x360/0x360
[ 1070.489030][T21825]  genl_rcv+0x28/0x40
[ 1070.493020][T21825]  netlink_unicast+0x751/0x8d0
[ 1070.497810][T21825]  netlink_sendmsg+0x8d0/0xbf0
[ 1070.502605][T21825]  ? netlink_getsockopt+0x590/0x590
[ 1070.507826][T21825]  ? aa_sock_msg_perm+0x94/0x150
[ 1070.512780][T21825]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1070.518097][T21825]  ? security_socket_sendmsg+0x80/0xa0
[ 1070.523744][T21825]  ? netlink_getsockopt+0x590/0x590
[ 1070.528957][T21825]  ____sys_sendmsg+0x5ba/0x960
[ 1070.533739][T21825]  ? __import_iovec+0x62a/0x850
[ 1070.538614][T21825]  ? __sys_sendmsg_sock+0x30/0x30
[ 1070.543658][T21825]  ? import_iovec+0x73/0xa0
[ 1070.548180][T21825]  ___sys_sendmsg+0x2a6/0x360
[ 1070.552962][T21825]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1070.557757][T21825]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1070.564039][T21825]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1070.568900][T21825]  ? __x64_sys_sendmsg+0x80/0x80
[ 1070.573869][T21825]  do_syscall_64+0x55/0xa0
[ 1070.578299][T21825]  ? clear_bhb_loop+0x40/0x90
[ 1070.582987][T21825]  ? clear_bhb_loop+0x40/0x90
[ 1070.587856][T21825]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1070.593846][T21825] RIP: 0033:0x7fc56639c799
[ 1070.598274][T21825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1070.617896][T21825] RSP: 002b:00007fc5671fd028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1070.626329][T21825] RAX: ffffffffffffffda RBX: 00007fc566616090 RCX: 00007fc56639c799
[ 1070.634321][T21825] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1070.642315][T21825] RBP: 00007fc566432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1070.650304][T21825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1070.658302][T21825] R13: 00007fc566616128 R14: 00007fc566616090 R15: 00007fffb0fe98b8
[ 1070.666300][T21825]  </TASK>
[ 1070.691049][T21834] netlink: 'syz.4.4988': attribute type 10 has an invalid length.
[ 1070.709210][T21834] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4988'.
[ 1070.726231][T21834] bridge0: port 3(ipvlan1) entered blocking state
[ 1070.737150][T21834] bridge0: port 3(ipvlan1) entered disabled state
[ 1070.744888][T21834] ipvlan1: entered allmulticast mode
[ 1070.752027][T21834] veth0_vlan: entered allmulticast mode
[ 1070.761403][T21834] ipvlan1: left allmulticast mode
[ 1070.767792][T21834] veth0_vlan: left allmulticast mode
[ 1070.774441][T21834] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[ 1070.855112][T21836] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4989'.
[ 1070.864943][T15727] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1070.888420][T15727] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1070.901216][T21836] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1070.915920][T21836] CPU: 1 PID: 21836 Comm: syz.1.4989 Not tainted syzkaller #0
[ 1070.923449][T21836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1070.933647][T21836] Call Trace:
[ 1070.936961][T21836]  <TASK>
[ 1070.939959][T21836]  dump_stack_lvl+0x18c/0x250
[ 1070.944724][T21836]  ? show_regs_print_info+0x20/0x20
[ 1070.949987][T21836]  ? load_image+0x400/0x400
[ 1070.954578][T21836]  sysfs_warn_dup+0x8e/0xa0
[ 1070.959115][T21836]  sysfs_do_create_link_sd+0xc0/0x110
[ 1070.964512][T21836]  device_add_class_symlinks+0x1cf/0x240
[ 1070.970205][T21836]  device_add+0x507/0xc20
[ 1070.974606][T21836]  wiphy_register+0x1dad/0x2ae0
[ 1070.979503][T21836]  ? cfg80211_event_work+0x40/0x40
[ 1070.984632][T21836]  ? minstrel_ht_alloc+0x88a/0x990
[ 1070.989807][T21836]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1070.996101][T21836]  ieee80211_register_hw+0x3464/0x4250
[ 1071.001640][T21836]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1071.007421][T21836]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1071.013381][T21836]  ? __debug_object_init+0xec/0x450
[ 1071.018644][T21836]  ? __asan_memset+0x22/0x40
[ 1071.023292][T21836]  ? __hrtimer_init+0x186/0x270
[ 1071.028199][T21836]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1071.034009][T21836]  ? mac80211_hwsim_free+0x220/0x220
[ 1071.039448][T21836]  ? rcu_is_watching+0x15/0xb0
[ 1071.044533][T21836]  ? kstrndup+0xbd/0x140
[ 1071.048823][T21836]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1071.053994][T21836]  ? __nla_validate+0x50/0x50
[ 1071.058710][T21836]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1071.065088][T21836]  ? __nla_parse+0x40/0x50
[ 1071.069533][T21836]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1071.075881][T21836]  genl_family_rcv_msg_doit+0x211/0x310
[ 1071.081437][T21836]  ? end_current_label_crit_section+0x170/0x170
[ 1071.087792][T21836]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1071.093709][T21836]  ? bpf_lsm_capable+0x9/0x10
[ 1071.098415][T21836]  ? security_capable+0x89/0xb0
[ 1071.103305][T21836]  genl_rcv_msg+0x619/0x7a0
[ 1071.107834][T21836]  ? genl_bind+0x360/0x360
[ 1071.112263][T21836]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1071.118635][T21836]  ? ref_tracker_free+0x690/0x840
[ 1071.123691][T21836]  netlink_rcv_skb+0x241/0x4d0
[ 1071.128480][T21836]  ? genl_bind+0x360/0x360
[ 1071.132921][T21836]  ? netlink_ack+0x1180/0x1180
[ 1071.137925][T21836]  ? __lock_acquire+0x7d40/0x7d40
[ 1071.143002][T21836]  ? down_read+0x1ac/0x2e0
[ 1071.147458][T21836]  genl_rcv+0x28/0x40
[ 1071.151461][T21836]  netlink_unicast+0x751/0x8d0
[ 1071.156270][T21836]  netlink_sendmsg+0x8d0/0xbf0
[ 1071.161071][T21836]  ? netlink_getsockopt+0x590/0x590
[ 1071.166391][T21836]  ? aa_sock_msg_perm+0x94/0x150
[ 1071.171383][T21836]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1071.176891][T21836]  ? security_socket_sendmsg+0x80/0xa0
[ 1071.182375][T21836]  ? netlink_getsockopt+0x590/0x590
[ 1071.187617][T21836]  ____sys_sendmsg+0x5ba/0x960
[ 1071.192405][T21836]  ? __asan_memset+0x22/0x40
[ 1071.197016][T21836]  ? __sys_sendmsg_sock+0x30/0x30
[ 1071.202050][T21836]  ? __import_iovec+0x5f2/0x850
[ 1071.206936][T21836]  ? import_iovec+0x73/0xa0
[ 1071.211558][T21836]  ___sys_sendmsg+0x2a6/0x360
[ 1071.216259][T21836]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1071.221088][T21836]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1071.226160][T21836]  ? __x64_sys_sendmsg+0x80/0x80
[ 1071.231145][T21836]  ? lockdep_hardirqs_on+0x98/0x150
[ 1071.236370][T21836]  do_syscall_64+0x55/0xa0
[ 1071.240813][T21836]  ? clear_bhb_loop+0x40/0x90
[ 1071.245502][T21836]  ? clear_bhb_loop+0x40/0x90
[ 1071.250197][T21836]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1071.256107][T21836] RIP: 0033:0x7f1b3019c799
[ 1071.260545][T21836] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1071.280351][T21836] RSP: 002b:00007f1b31088028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1071.288787][T21836] RAX: ffffffffffffffda RBX: 00007f1b30415fa0 RCX: 00007f1b3019c799
[ 1071.296864][T21836] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 1071.305023][T21836] RBP: 00007f1b30232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1071.313100][T21836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1071.321080][T21836] R13: 00007f1b30416038 R14: 00007f1b30415fa0 R15: 00007fffbb3f4728
[ 1071.329111][T21836]  </TASK>
[ 1071.499888][T21839] netlink: 'syz.4.4990': attribute type 28 has an invalid length.
[ 1071.556755][T21839] netlink: 'syz.4.4990': attribute type 4 has an invalid length.
[ 1071.591549][T21839] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4990'.
[ 1071.611146][T21840] netlink: 'syz.3.4991': attribute type 21 has an invalid length.
[ 1071.656329][T21840] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4991'.
[ 1071.683869][T21840] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4991'.
[ 1071.889688][ T9143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1071.952586][ T9143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1072.231803][T21851] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4944'.
[ 1072.420666][T21851] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[ 1072.546658][T21861] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4994'.
[ 1072.582457][T21861] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1073.699790][T21874] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4998'.
[ 1074.300833][T21877] lo: entered allmulticast mode
[ 1074.343153][T21879] lo: entered promiscuous mode
[ 1074.364429][T21879] lo: left allmulticast mode
[ 1074.576806][T21894] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5008'.
[ 1074.634159][T21894] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1077.031012][T21874] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1077.042572][T21874] CPU: 1 PID: 21874 Comm: syz.1.4998 Not tainted syzkaller #0
[ 1077.050087][T21874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1077.060269][T21874] Call Trace:
[ 1077.063577][T21874]  <TASK>
[ 1077.066521][T21874]  dump_stack_lvl+0x18c/0x250
[ 1077.071267][T21874]  ? show_regs_print_info+0x20/0x20
[ 1077.076492][T21874]  ? load_image+0x400/0x400
[ 1077.081033][T21874]  sysfs_warn_dup+0x8e/0xa0
[ 1077.085745][T21874]  sysfs_do_create_link_sd+0xc0/0x110
[ 1077.091236][T21874]  device_add_class_symlinks+0x1cf/0x240
[ 1077.096888][T21874]  device_add+0x507/0xc20
[ 1077.101245][T21874]  wiphy_register+0x1dad/0x2ae0
[ 1077.106218][T21874]  ? cfg80211_event_work+0x40/0x40
[ 1077.111470][T21874]  ? minstrel_ht_alloc+0x88a/0x990
[ 1077.116805][T21874]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1077.122903][T21874]  ieee80211_register_hw+0x3464/0x4250
[ 1077.128440][T21874]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1077.134130][T21874]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1077.140060][T21874]  ? __debug_object_init+0xec/0x450
[ 1077.145380][T21874]  ? __asan_memset+0x22/0x40
[ 1077.149988][T21874]  ? __hrtimer_init+0x186/0x270
[ 1077.154857][T21874]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1077.160607][T21874]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1077.166889][T21874]  ? mac80211_hwsim_free+0x220/0x220
[ 1077.172202][T21874]  ? rcu_is_watching+0x15/0xb0
[ 1077.176985][T21874]  ? kstrndup+0xbd/0x140
[ 1077.181250][T21874]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1077.186388][T21874]  ? __nla_validate+0x50/0x50
[ 1077.191182][T21874]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1077.197548][T21874]  ? __nla_parse+0x40/0x50
[ 1077.201976][T21874]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1077.208318][T21874]  genl_family_rcv_msg_doit+0x211/0x310
[ 1077.213882][T21874]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1077.219791][T21874]  ? lockdep_hardirqs_on+0x98/0x150
[ 1077.225021][T21874]  ? genl_rcv_msg+0x5a5/0x7a0
[ 1077.229727][T21874]  genl_rcv_msg+0x619/0x7a0
[ 1077.234248][T21874]  ? genl_bind+0x360/0x360
[ 1077.238680][T21874]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1077.245130][T21874]  netlink_rcv_skb+0x241/0x4d0
[ 1077.250006][T21874]  ? genl_bind+0x360/0x360
[ 1077.254442][T21874]  ? netlink_ack+0x1180/0x1180
[ 1077.259335][T21874]  ? __lock_acquire+0x7d40/0x7d40
[ 1077.264556][T21874]  ? down_read+0x1ac/0x2e0
[ 1077.268995][T21874]  genl_rcv+0x28/0x40
[ 1077.272985][T21874]  netlink_unicast+0x751/0x8d0
[ 1077.277775][T21874]  netlink_sendmsg+0x8d0/0xbf0
[ 1077.282659][T21874]  ? netlink_getsockopt+0x590/0x590
[ 1077.287883][T21874]  ? aa_sock_msg_perm+0x94/0x150
[ 1077.292853][T21874]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1077.298197][T21874]  ? security_socket_sendmsg+0x80/0xa0
[ 1077.303670][T21874]  ? netlink_getsockopt+0x590/0x590
[ 1077.308979][T21874]  ____sys_sendmsg+0x5ba/0x960
[ 1077.313759][T21874]  ? __asan_memset+0x22/0x40
[ 1077.318369][T21874]  ? __sys_sendmsg_sock+0x30/0x30
[ 1077.323405][T21874]  ? __import_iovec+0x5f2/0x850
[ 1077.328286][T21874]  ? import_iovec+0x73/0xa0
[ 1077.332802][T21874]  ___sys_sendmsg+0x2a6/0x360
[ 1077.337588][T21874]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1077.342383][T21874]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1077.348695][T21874]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1077.353559][T21874]  ? __x64_sys_sendmsg+0x80/0x80
[ 1077.358521][T21874]  ? lockdep_hardirqs_on+0x98/0x150
[ 1077.363735][T21874]  do_syscall_64+0x55/0xa0
[ 1077.368271][T21874]  ? clear_bhb_loop+0x40/0x90
[ 1077.372976][T21874]  ? clear_bhb_loop+0x40/0x90
[ 1077.377669][T21874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1077.383573][T21874] RIP: 0033:0x7f1b3019c799
[ 1077.388000][T21874] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1077.407625][T21874] RSP: 002b:00007f1b31088028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1077.416150][T21874] RAX: ffffffffffffffda RBX: 00007f1b30415fa0 RCX: 00007f1b3019c799
[ 1077.424243][T21874] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1077.432333][T21874] RBP: 00007f1b30232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1077.440344][T21874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1077.448331][T21874] R13: 00007f1b30416038 R14: 00007f1b30415fa0 R15: 00007fffbb3f4728
[ 1077.456335][T21874]  </TASK>
[ 1077.477140][ T5778] Bluetooth: hci1: command 0x0406 tx timeout
[ 1077.493012][T21900] netlink: 'syz.4.5003': attribute type 2 has an invalid length.
[ 1077.500797][T21900] netlink: 'syz.4.5003': attribute type 8 has an invalid length.
[ 1077.522643][T21900] netlink: 132 bytes leftover after parsing attributes in process `syz.4.5003'.
[ 1077.552146][T21903] lo: entered allmulticast mode
[ 1077.880708][T21918] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5009'.
[ 1079.131290][T21913] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5007'.
[ 1079.251462][T21913] openvswitch: netlink: Key type 4112 is out of range max 32
[ 1079.327053][T21918] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1079.335303][T21918] CPU: 0 PID: 21918 Comm: syz.3.5009 Not tainted syzkaller #0
[ 1079.342810][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1079.352920][T21918] Call Trace:
[ 1079.356230][T21918]  <TASK>
[ 1079.359215][T21918]  dump_stack_lvl+0x18c/0x250
[ 1079.363927][T21918]  ? show_regs_print_info+0x20/0x20
[ 1079.369165][T21918]  ? load_image+0x400/0x400
[ 1079.373715][T21918]  sysfs_warn_dup+0x8e/0xa0
[ 1079.378234][T21918]  sysfs_do_create_link_sd+0xc0/0x110
[ 1079.383634][T21918]  device_add_class_symlinks+0x1cf/0x240
[ 1079.389286][T21918]  device_add+0x507/0xc20
[ 1079.393635][T21918]  wiphy_register+0x1dad/0x2ae0
[ 1079.398694][T21918]  ? cfg80211_event_work+0x40/0x40
[ 1079.403819][T21918]  ? minstrel_ht_alloc+0x88a/0x990
[ 1079.408956][T21918]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1079.415176][T21918]  ieee80211_register_hw+0x3464/0x4250
[ 1079.420672][T21918]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1079.426323][T21918]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1079.432241][T21918]  ? __debug_object_init+0xec/0x450
[ 1079.437551][T21918]  ? __asan_memset+0x22/0x40
[ 1079.442157][T21918]  ? __hrtimer_init+0x186/0x270
[ 1079.447283][T21918]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1079.453062][T21918]  ? mac80211_hwsim_free+0x220/0x220
[ 1079.458449][T21918]  ? rcu_is_watching+0x15/0xb0
[ 1079.463243][T21918]  ? kstrndup+0xbd/0x140
[ 1079.467505][T21918]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1079.472652][T21918]  ? mark_lock+0x94/0x320
[ 1079.477015][T21918]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1079.483370][T21918]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1079.489627][T21918]  ? lockdep_hardirqs_on+0x98/0x150
[ 1079.494926][T21918]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1079.501131][T21918]  genl_family_rcv_msg_doit+0x211/0x310
[ 1079.506698][T21918]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1079.512868][T21918]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1079.518782][T21918]  ? bpf_lsm_capable+0x9/0x10
[ 1079.523480][T21918]  ? security_capable+0x89/0xb0
[ 1079.528352][T21918]  genl_rcv_msg+0x619/0x7a0
[ 1079.532875][T21918]  ? genl_bind+0x360/0x360
[ 1079.537296][T21918]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1079.543375][T21918]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1079.549724][T21918]  ? ref_tracker_free+0x690/0x840
[ 1079.554777][T21918]  netlink_rcv_skb+0x241/0x4d0
[ 1079.559557][T21918]  ? genl_bind+0x360/0x360
[ 1079.563984][T21918]  ? netlink_ack+0x1180/0x1180
[ 1079.568789][T21918]  ? down_read+0x1ac/0x2e0
[ 1079.573235][T21918]  genl_rcv+0x28/0x40
[ 1079.577237][T21918]  netlink_unicast+0x751/0x8d0
[ 1079.582034][T21918]  netlink_sendmsg+0x8d0/0xbf0
[ 1079.586924][T21918]  ? netlink_getsockopt+0x590/0x590
[ 1079.592233][T21918]  ? aa_sock_msg_perm+0x94/0x150
[ 1079.597194][T21918]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1079.602669][T21918]  ? security_socket_sendmsg+0x80/0xa0
[ 1079.608145][T21918]  ? netlink_getsockopt+0x590/0x590
[ 1079.613367][T21918]  ____sys_sendmsg+0x5ba/0x960
[ 1079.618148][T21918]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1079.624320][T21918]  ? __asan_memset+0x22/0x40
[ 1079.628925][T21918]  ? __sys_sendmsg_sock+0x30/0x30
[ 1079.633954][T21918]  ? __import_iovec+0x5f2/0x850
[ 1079.638834][T21918]  ? import_iovec+0x73/0xa0
[ 1079.643352][T21918]  ___sys_sendmsg+0x2a6/0x360
[ 1079.648048][T21918]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1079.652881][T21918]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1079.657743][T21918]  ? __x64_sys_sendmsg+0x80/0x80
[ 1079.662823][T21918]  ? lockdep_hardirqs_on+0x98/0x150
[ 1079.668066][T21918]  do_syscall_64+0x55/0xa0
[ 1079.672520][T21918]  ? clear_bhb_loop+0x40/0x90
[ 1079.677228][T21918]  ? clear_bhb_loop+0x40/0x90
[ 1079.681931][T21918]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1079.687846][T21918] RIP: 0033:0x7fc56639c799
[ 1079.692388][T21918] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1079.712041][T21918] RSP: 002b:00007fc56721e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1079.720475][T21918] RAX: ffffffffffffffda RBX: 00007fc566615fa0 RCX: 00007fc56639c799
[ 1079.728481][T21918] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1079.736490][T21918] RBP: 00007fc566432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1079.744483][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1079.752467][T21918] R13: 00007fc566616038 R14: 00007fc566615fa0 R15: 00007fffb0fe98b8
[ 1079.760475][T21918]  </TASK>
[ 1079.862051][T21936] netlink: 'syz.1.5014': attribute type 21 has an invalid length.
[ 1080.384008][T21945] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5016'.
[ 1080.683624][T21953] sctp: [Deprecated]: syz.1.5020 (pid 21953) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1080.683624][T21953] Use struct sctp_sack_info instead
[ 1080.845348][T21945] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1081.167800][T21945] CPU: 0 PID: 21945 Comm: syz.3.5016 Not tainted syzkaller #0
[ 1081.175334][T21945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1081.185422][T21945] Call Trace:
[ 1081.188713][T21945]  <TASK>
[ 1081.191652][T21945]  dump_stack_lvl+0x18c/0x250
[ 1081.196445][T21945]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1081.202615][T21945]  ? show_regs_print_info+0x20/0x20
[ 1081.207834][T21945]  ? load_image+0x400/0x400
[ 1081.212372][T21945]  ? sysfs_warn_dup+0x65/0xa0
[ 1081.217097][T21945]  sysfs_warn_dup+0x8e/0xa0
[ 1081.221614][T21945]  sysfs_do_create_link_sd+0xc0/0x110
[ 1081.227002][T21945]  device_add_class_symlinks+0x1cf/0x240
[ 1081.232676][T21945]  device_add+0x507/0xc20
[ 1081.237087][T21945]  wiphy_register+0x1dad/0x2ae0
[ 1081.241972][T21945]  ? cfg80211_event_work+0x40/0x40
[ 1081.247099][T21945]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1081.253285][T21945]  ieee80211_register_hw+0x3464/0x4250
[ 1081.258787][T21945]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1081.264453][T21945]  ? __hrtimer_init+0xe0/0x270
[ 1081.269495][T21945]  ? __hrtimer_init+0x116/0x270
[ 1081.274361][T21945]  ? __hrtimer_init+0x186/0x270
[ 1081.279228][T21945]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1081.284994][T21945]  ? mac80211_hwsim_free+0x220/0x220
[ 1081.290304][T21945]  ? rcu_is_watching+0x15/0xb0
[ 1081.295134][T21945]  ? kstrndup+0xbd/0x140
[ 1081.299400][T21945]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1081.304534][T21945]  ? __nla_validate+0x50/0x50
[ 1081.309239][T21945]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1081.315696][T21945]  ? __nla_parse+0x40/0x50
[ 1081.320126][T21945]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1081.326472][T21945]  genl_family_rcv_msg_doit+0x211/0x310
[ 1081.332035][T21945]  ? end_current_label_crit_section+0x170/0x170
[ 1081.338300][T21945]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1081.344219][T21945]  ? bpf_lsm_capable+0x9/0x10
[ 1081.348908][T21945]  ? security_capable+0x89/0xb0
[ 1081.353795][T21945]  genl_rcv_msg+0x619/0x7a0
[ 1081.358311][T21945]  ? genl_bind+0x360/0x360
[ 1081.362752][T21945]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1081.369128][T21945]  netlink_rcv_skb+0x241/0x4d0
[ 1081.373921][T21945]  ? genl_bind+0x360/0x360
[ 1081.378364][T21945]  ? netlink_ack+0x1180/0x1180
[ 1081.383154][T21945]  ? __lock_acquire+0x7d40/0x7d40
[ 1081.388286][T21945]  ? down_read+0x1ac/0x2e0
[ 1081.392718][T21945]  genl_rcv+0x28/0x40
[ 1081.396708][T21945]  netlink_unicast+0x751/0x8d0
[ 1081.401502][T21945]  netlink_sendmsg+0x8d0/0xbf0
[ 1081.406281][T21945]  ? lockdep_hardirqs_on+0x98/0x150
[ 1081.411501][T21945]  ? netlink_getsockopt+0x590/0x590
[ 1081.416734][T21945]  ? bpf_lsm_socket_accept+0x10/0x10
[ 1081.422047][T21945]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1081.427351][T21945]  ? security_socket_sendmsg+0x80/0xa0
[ 1081.432818][T21945]  ? netlink_getsockopt+0x590/0x590
[ 1081.438030][T21945]  ____sys_sendmsg+0x5ba/0x960
[ 1081.442814][T21945]  ? __asan_memset+0x22/0x40
[ 1081.447416][T21945]  ? __sys_sendmsg_sock+0x30/0x30
[ 1081.452533][T21945]  ? __import_iovec+0x5f2/0x850
[ 1081.457425][T21945]  ? import_iovec+0x73/0xa0
[ 1081.461939][T21945]  ___sys_sendmsg+0x2a6/0x360
[ 1081.466631][T21945]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1081.471470][T21945]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1081.476352][T21945]  ? __x64_sys_sendmsg+0x80/0x80
[ 1081.481320][T21945]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1081.487230][T21945]  do_syscall_64+0x55/0xa0
[ 1081.491661][T21945]  ? clear_bhb_loop+0x40/0x90
[ 1081.496439][T21945]  ? clear_bhb_loop+0x40/0x90
[ 1081.501131][T21945]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1081.507034][T21945] RIP: 0033:0x7fc56639c799
[ 1081.511466][T21945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1081.531098][T21945] RSP: 002b:00007fc56721e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1081.539532][T21945] RAX: ffffffffffffffda RBX: 00007fc566615fa0 RCX: 00007fc56639c799
[ 1081.547515][T21945] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1081.555494][T21945] RBP: 00007fc566432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1081.563485][T21945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1081.571467][T21945] R13: 00007fc566616038 R14: 00007fc566615fa0 R15: 00007fffb0fe98b8
[ 1081.579557][T21945]  </TASK>
[ 1082.102594][T21971] netlink: 'syz.3.5025': attribute type 2 has an invalid length.
[ 1082.125863][T21971] netlink: 'syz.3.5025': attribute type 9 has an invalid length.
[ 1082.142436][T21971] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5025'.
[ 1082.161916][T21965] netlink: 'syz.2.5024': attribute type 10 has an invalid length.
[ 1082.196134][T21970] netlink: 'syz.2.5024': attribute type 9 has an invalid length.
[ 1082.238602][T21970] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5024'.
[ 1082.921305][T21983] netlink: 1047 bytes leftover after parsing attributes in process `syz.4.5028'.
[ 1082.946161][T21983] bridge_slave_1: default FDB implementation only supports local addresses
[ 1083.623297][T21997] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5033'.
[ 1083.636829][T21988] netlink: 'syz.1.5029': attribute type 10 has an invalid length.
[ 1083.957467][T21988] team0: Device ipvlan1 failed to register rx_handler
[ 1084.388722][T21997] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1084.437105][T21997] CPU: 0 PID: 21997 Comm: syz.2.5033 Not tainted syzkaller #0
[ 1084.444635][T21997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1084.454740][T21997] Call Trace:
[ 1084.458027][T21997]  <TASK>
[ 1084.461049][T21997]  dump_stack_lvl+0x18c/0x250
[ 1084.465737][T21997]  ? show_regs_print_info+0x20/0x20
[ 1084.470941][T21997]  ? load_image+0x400/0x400
[ 1084.475456][T21997]  sysfs_warn_dup+0x8e/0xa0
[ 1084.479962][T21997]  sysfs_do_create_link_sd+0xc0/0x110
[ 1084.485362][T21997]  device_add_class_symlinks+0x1cf/0x240
[ 1084.491059][T21997]  device_add+0x507/0xc20
[ 1084.495450][T21997]  wiphy_register+0x1dad/0x2ae0
[ 1084.500370][T21997]  ? cfg80211_event_work+0x40/0x40
[ 1084.505518][T21997]  ? minstrel_ht_alloc+0x88a/0x990
[ 1084.510691][T21997]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1084.516798][T21997]  ieee80211_register_hw+0x3464/0x4250
[ 1084.522297][T21997]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1084.527971][T21997]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1084.533903][T21997]  ? __debug_object_init+0xec/0x450
[ 1084.539142][T21997]  ? __asan_memset+0x22/0x40
[ 1084.543850][T21997]  ? __hrtimer_init+0x186/0x270
[ 1084.548736][T21997]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1084.554511][T21997]  ? mac80211_hwsim_free+0x220/0x220
[ 1084.559823][T21997]  ? rcu_is_watching+0x15/0xb0
[ 1084.564724][T21997]  ? kstrndup+0xbd/0x140
[ 1084.568993][T21997]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1084.574129][T21997]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1084.580134][T21997]  ? lock_chain_count+0x20/0x20
[ 1084.585021][T21997]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1084.591390][T21997]  ? __nla_parse+0x44/0x50
[ 1084.595853][T21997]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1084.602206][T21997]  genl_family_rcv_msg_doit+0x211/0x310
[ 1084.607765][T21997]  ? end_current_label_crit_section+0x170/0x170
[ 1084.614023][T21997]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1084.619957][T21997]  ? bpf_lsm_capable+0x9/0x10
[ 1084.624662][T21997]  ? security_capable+0x89/0xb0
[ 1084.629535][T21997]  genl_rcv_msg+0x619/0x7a0
[ 1084.634058][T21997]  ? genl_bind+0x360/0x360
[ 1084.638577][T21997]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1084.645025][T21997]  netlink_rcv_skb+0x241/0x4d0
[ 1084.649806][T21997]  ? genl_bind+0x360/0x360
[ 1084.654235][T21997]  ? netlink_ack+0x1180/0x1180
[ 1084.659061][T21997]  ? __lock_acquire+0x7d40/0x7d40
[ 1084.664138][T21997]  ? down_read+0x1ac/0x2e0
[ 1084.668581][T21997]  genl_rcv+0x28/0x40
[ 1084.672577][T21997]  netlink_unicast+0x751/0x8d0
[ 1084.677370][T21997]  netlink_sendmsg+0x8d0/0xbf0
[ 1084.682185][T21997]  ? netlink_getsockopt+0x590/0x590
[ 1084.687423][T21997]  ? netlink_getsockopt+0x590/0x590
[ 1084.692654][T21997]  ____sys_sendmsg+0x5ba/0x960
[ 1084.697456][T21997]  ? __asan_memset+0x22/0x40
[ 1084.702071][T21997]  ? __sys_sendmsg_sock+0x30/0x30
[ 1084.707138][T21997]  ? __import_iovec+0x5f2/0x850
[ 1084.712040][T21997]  ? import_iovec+0x73/0xa0
[ 1084.716578][T21997]  ___sys_sendmsg+0x2a6/0x360
[ 1084.721382][T21997]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1084.726200][T21997]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1084.732492][T21997]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1084.737363][T21997]  ? __x64_sys_sendmsg+0x80/0x80
[ 1084.742342][T21997]  ? lockdep_hardirqs_on+0x98/0x150
[ 1084.747613][T21997]  do_syscall_64+0x55/0xa0
[ 1084.752063][T21997]  ? clear_bhb_loop+0x40/0x90
[ 1084.756836][T21997]  ? clear_bhb_loop+0x40/0x90
[ 1084.761527][T21997]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1084.767454][T21997] RIP: 0033:0x7f71e4b9c799
[ 1084.771975][T21997] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1084.792024][T21997] RSP: 002b:00007f71e5a3d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1084.800455][T21997] RAX: ffffffffffffffda RBX: 00007f71e4e15fa0 RCX: 00007f71e4b9c799
[ 1084.808439][T21997] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1084.816505][T21997] RBP: 00007f71e4c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1084.824571][T21997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1084.832550][T21997] R13: 00007f71e4e16038 R14: 00007f71e4e15fa0 R15: 00007ffdc0ca2a28
[ 1084.840551][T21997]  </TASK>
[ 1085.163524][T22015] netlink: 'syz.1.5039': attribute type 39 has an invalid length.
[ 1085.873690][T22024] netlink: 'syz.3.5041': attribute type 10 has an invalid length.
[ 1085.924710][T22025] netlink: 'syz.3.5041': attribute type 9 has an invalid length.
[ 1085.959003][T22025] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.5041'.
[ 1086.120701][T22031] FAULT_INJECTION: forcing a failure.
[ 1086.120701][T22031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1086.153794][T22031] CPU: 1 PID: 22031 Comm: syz.4.5044 Not tainted syzkaller #0
[ 1086.161320][T22031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1086.171388][T22031] Call Trace:
[ 1086.174678][T22031]  <TASK>
[ 1086.177652][T22031]  dump_stack_lvl+0x18c/0x250
[ 1086.182355][T22031]  ? show_regs_print_info+0x20/0x20
[ 1086.187575][T22031]  ? load_image+0x400/0x400
[ 1086.192183][T22031]  ? __might_fault+0xaa/0x120
[ 1086.196963][T22031]  ? __lock_acquire+0x7d40/0x7d40
[ 1086.202006][T22031]  should_fail_ex+0x39d/0x4d0
[ 1086.206705][T22031]  _copy_to_user+0x2f/0xa0
[ 1086.211140][T22031]  generic_map_lookup_batch+0x8bd/0xc60
[ 1086.216732][T22031]  ? bpf_map_update_value+0x720/0x720
[ 1086.222136][T22031]  ? __fdget+0x180/0x210
[ 1086.226400][T22031]  ? bpf_map_update_value+0x720/0x720
[ 1086.231868][T22031]  bpf_map_do_batch+0x2cb/0x610
[ 1086.236730][T22031]  ? bpf_lsm_bpf+0x9/0x10
[ 1086.241069][T22031]  ? security_bpf+0x7e/0xa0
[ 1086.245588][T22031]  __sys_bpf+0x7d7/0x890
[ 1086.249845][T22031]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1086.255239][T22031]  ? lock_chain_count+0x20/0x20
[ 1086.260108][T22031]  __x64_sys_bpf+0x7c/0x90
[ 1086.264543][T22031]  do_syscall_64+0x55/0xa0
[ 1086.268974][T22031]  ? clear_bhb_loop+0x40/0x90
[ 1086.273663][T22031]  ? clear_bhb_loop+0x40/0x90
[ 1086.278353][T22031]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1086.284258][T22031] RIP: 0033:0x7effb679c799
[ 1086.288682][T22031] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1086.308299][T22031] RSP: 002b:00007effb7679028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1086.316724][T22031] RAX: ffffffffffffffda RBX: 00007effb6a15fa0 RCX: 00007effb679c799
[ 1086.324749][T22031] RDX: 0000000000000038 RSI: 00002000000003c0 RDI: 0000000000000018
[ 1086.332738][T22031] RBP: 00007effb7679090 R08: 0000000000000000 R09: 0000000000000000
[ 1086.340823][T22031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1086.348803][T22031] R13: 00007effb6a16038 R14: 00007effb6a15fa0 R15: 00007ffd645644b8
[ 1086.356800][T22031]  </TASK>
[ 1087.252069][T22040] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5048'.
[ 1087.808521][T22050] netlink: 'syz.3.5050': attribute type 10 has an invalid length.
[ 1087.808790][T22050] netlink: 2 bytes leftover after parsing attributes in process `syz.3.5050'.
[ 1088.640241][T22040] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1088.648319][T22040] CPU: 1 PID: 22040 Comm: syz.4.5048 Not tainted syzkaller #0
[ 1088.655869][T22040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1088.666230][T22040] Call Trace:
[ 1088.669545][T22040]  <TASK>
[ 1088.672511][T22040]  dump_stack_lvl+0x18c/0x250
[ 1088.677249][T22040]  ? show_regs_print_info+0x20/0x20
[ 1088.682503][T22040]  ? load_image+0x400/0x400
[ 1088.687157][T22040]  sysfs_warn_dup+0x8e/0xa0
[ 1088.691788][T22040]  sysfs_do_create_link_sd+0xc0/0x110
[ 1088.697203][T22040]  device_add_class_symlinks+0x1cf/0x240
[ 1088.702972][T22040]  device_add+0x507/0xc20
[ 1088.707362][T22040]  wiphy_register+0x1dad/0x2ae0
[ 1088.712275][T22040]  ? cfg80211_event_work+0x40/0x40
[ 1088.717425][T22040]  ? minstrel_ht_alloc+0x88a/0x990
[ 1088.722595][T22040]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1088.728708][T22040]  ieee80211_register_hw+0x3464/0x4250
[ 1088.734244][T22040]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1088.739935][T22040]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1088.745864][T22040]  ? __debug_object_init+0xec/0x450
[ 1088.751108][T22040]  ? __asan_memset+0x22/0x40
[ 1088.755725][T22040]  ? __hrtimer_init+0x186/0x270
[ 1088.760591][T22040]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1088.766357][T22040]  ? mac80211_hwsim_free+0x220/0x220
[ 1088.771675][T22040]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1088.777001][T22040]  ? __nla_validate+0x50/0x50
[ 1088.781720][T22040]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1088.788080][T22040]  ? __nla_parse+0x40/0x50
[ 1088.792512][T22040]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1088.798857][T22040]  genl_family_rcv_msg_doit+0x211/0x310
[ 1088.804420][T22040]  ? end_current_label_crit_section+0x170/0x170
[ 1088.810681][T22040]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1088.816598][T22040]  ? bpf_lsm_capable+0x9/0x10
[ 1088.821293][T22040]  ? security_capable+0x89/0xb0
[ 1088.826172][T22040]  genl_rcv_msg+0x619/0x7a0
[ 1088.830694][T22040]  ? genl_bind+0x360/0x360
[ 1088.835128][T22040]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1088.841479][T22040]  ? perf_trace_lock+0xfc/0x3b0
[ 1088.846360][T22040]  netlink_rcv_skb+0x241/0x4d0
[ 1088.851143][T22040]  ? genl_bind+0x360/0x360
[ 1088.855579][T22040]  ? netlink_ack+0x1180/0x1180
[ 1088.860456][T22040]  ? __lock_acquire+0x7d40/0x7d40
[ 1088.865501][T22040]  ? down_read+0x1ac/0x2e0
[ 1088.869929][T22040]  genl_rcv+0x28/0x40
[ 1088.873921][T22040]  netlink_unicast+0x751/0x8d0
[ 1088.878715][T22040]  netlink_sendmsg+0x8d0/0xbf0
[ 1088.883504][T22040]  ? lockdep_hardirqs_on+0x98/0x150
[ 1088.888725][T22040]  ? netlink_getsockopt+0x590/0x590
[ 1088.894069][T22040]  ? bpf_lsm_socket_sendmsg+0x4/0x10
[ 1088.899381][T22040]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1088.904697][T22040]  ? security_socket_sendmsg+0x80/0xa0
[ 1088.910166][T22040]  ? netlink_getsockopt+0x590/0x590
[ 1088.915384][T22040]  ____sys_sendmsg+0x5ba/0x960
[ 1088.920175][T22040]  ? __asan_memset+0x22/0x40
[ 1088.924793][T22040]  ? __sys_sendmsg_sock+0x30/0x30
[ 1088.929823][T22040]  ? __import_iovec+0x5f2/0x850
[ 1088.934704][T22040]  ? import_iovec+0x73/0xa0
[ 1088.939228][T22040]  ___sys_sendmsg+0x2a6/0x360
[ 1088.943944][T22040]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1088.948756][T22040]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1088.955048][T22040]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1088.959956][T22040]  ? __x64_sys_sendmsg+0x80/0x80
[ 1088.965038][T22040]  ? lockdep_hardirqs_on+0x98/0x150
[ 1088.970266][T22040]  do_syscall_64+0x55/0xa0
[ 1088.974702][T22040]  ? clear_bhb_loop+0x40/0x90
[ 1088.979390][T22040]  ? clear_bhb_loop+0x40/0x90
[ 1088.984086][T22040]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1088.989989][T22040] RIP: 0033:0x7effb679c799
[ 1088.994425][T22040] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1089.014044][T22040] RSP: 002b:00007effb7679028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1089.022638][T22040] RAX: ffffffffffffffda RBX: 00007effb6a15fa0 RCX: 00007effb679c799
[ 1089.030621][T22040] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1089.038600][T22040] RBP: 00007effb6832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1089.046582][T22040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1089.054563][T22040] R13: 00007effb6a16038 R14: 00007effb6a15fa0 R15: 00007ffd645644b8
[ 1089.062566][T22040]  </TASK>
[ 1089.070235][T22060] netlink: 'syz.2.5053': attribute type 9 has an invalid length.
[ 1089.081120][T22060] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5053'.
[ 1089.804383][T22071] netlink: 'syz.1.5058': attribute type 10 has an invalid length.
[ 1089.841541][T22071] netlink: 'syz.1.5058': attribute type 9 has an invalid length.
[ 1089.853989][T22071] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5058'.
[ 1091.498288][T22093] netlink: 'syz.1.5063': attribute type 10 has an invalid length.
[ 1091.525433][T22091] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5064'.
[ 1092.668600][T22091] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1092.677407][T22091] CPU: 1 PID: 22091 Comm: syz.2.5064 Not tainted syzkaller #0
[ 1092.684927][T22091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1092.695014][T22091] Call Trace:
[ 1092.698294][T22091]  <TASK>
[ 1092.701227][T22091]  dump_stack_lvl+0x18c/0x250
[ 1092.705941][T22091]  ? show_regs_print_info+0x20/0x20
[ 1092.711169][T22091]  ? load_image+0x400/0x400
[ 1092.715686][T22091]  sysfs_warn_dup+0x8e/0xa0
[ 1092.720327][T22091]  sysfs_do_create_link_sd+0xc0/0x110
[ 1092.725737][T22091]  device_add_class_symlinks+0x1cf/0x240
[ 1092.731429][T22091]  device_add+0x507/0xc20
[ 1092.736226][T22091]  wiphy_register+0x1dad/0x2ae0
[ 1092.741130][T22091]  ? cfg80211_event_work+0x40/0x40
[ 1092.746269][T22091]  ? minstrel_ht_alloc+0x88a/0x990
[ 1092.751413][T22091]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1092.757501][T22091]  ieee80211_register_hw+0x3464/0x4250
[ 1092.763009][T22091]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1092.768667][T22091]  ? lockdep_hardirqs_on+0x98/0x150
[ 1092.773898][T22091]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1092.780168][T22091]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1092.785936][T22091]  ? mac80211_hwsim_free+0x220/0x220
[ 1092.791244][T22091]  ? hwsim_new_radio_nl+0xdb9/0x1a90
[ 1092.796564][T22091]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1092.801785][T22091]  ? __nla_validate+0x50/0x50
[ 1092.806493][T22091]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1092.812935][T22091]  ? kasan_save_alloc_info+0xb/0x30
[ 1092.818153][T22091]  ? __nla_parse+0x40/0x50
[ 1092.822583][T22091]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1092.829376][T22091]  genl_family_rcv_msg_doit+0x211/0x310
[ 1092.834939][T22091]  ? end_current_label_crit_section+0x170/0x170
[ 1092.841222][T22091]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1092.847282][T22091]  ? bpf_lsm_capable+0x9/0x10
[ 1092.852007][T22091]  ? security_capable+0x89/0xb0
[ 1092.856917][T22091]  genl_rcv_msg+0x619/0x7a0
[ 1092.861457][T22091]  ? genl_bind+0x360/0x360
[ 1092.865923][T22091]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1092.872191][T22091]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1092.878584][T22091]  ? lock_chain_count+0x20/0x20
[ 1092.883460][T22091]  ? ref_tracker_free+0x690/0x840
[ 1092.888520][T22091]  netlink_rcv_skb+0x241/0x4d0
[ 1092.893317][T22091]  ? genl_bind+0x360/0x360
[ 1092.897749][T22091]  ? netlink_ack+0x1180/0x1180
[ 1092.902543][T22091]  ? __lock_acquire+0x7d40/0x7d40
[ 1092.907589][T22091]  ? down_read+0x1ac/0x2e0
[ 1092.912063][T22091]  genl_rcv+0x28/0x40
[ 1092.916053][T22091]  netlink_unicast+0x751/0x8d0
[ 1092.920845][T22091]  netlink_sendmsg+0x8d0/0xbf0
[ 1092.925634][T22091]  ? netlink_getsockopt+0x590/0x590
[ 1092.930855][T22091]  ? aa_sock_msg_perm+0x94/0x150
[ 1092.935813][T22091]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1092.941142][T22091]  ? security_socket_sendmsg+0x80/0xa0
[ 1092.946623][T22091]  ? netlink_getsockopt+0x590/0x590
[ 1092.952030][T22091]  ____sys_sendmsg+0x5ba/0x960
[ 1092.956810][T22091]  ? __asan_memset+0x22/0x40
[ 1092.961507][T22091]  ? __sys_sendmsg_sock+0x30/0x30
[ 1092.966553][T22091]  ? __import_iovec+0x5f2/0x850
[ 1092.971438][T22091]  ? import_iovec+0x73/0xa0
[ 1092.976137][T22091]  ___sys_sendmsg+0x2a6/0x360
[ 1092.980855][T22091]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1092.985750][T22091]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1092.992096][T22091]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1092.996976][T22091]  ? __x64_sys_sendmsg+0x80/0x80
[ 1093.002091][T22091]  ? lockdep_hardirqs_on+0x98/0x150
[ 1093.007315][T22091]  do_syscall_64+0x55/0xa0
[ 1093.011753][T22091]  ? clear_bhb_loop+0x40/0x90
[ 1093.016443][T22091]  ? clear_bhb_loop+0x40/0x90
[ 1093.021218][T22091]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1093.027132][T22091] RIP: 0033:0x7f71e4b9c799
[ 1093.031558][T22091] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1093.051443][T22091] RSP: 002b:00007f71e5a3d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1093.059878][T22091] RAX: ffffffffffffffda RBX: 00007f71e4e15fa0 RCX: 00007f71e4b9c799
[ 1093.067877][T22091] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1093.075886][T22091] RBP: 00007f71e4c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1093.083969][T22091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1093.092116][T22091] R13: 00007f71e4e16038 R14: 00007f71e4e15fa0 R15: 00007ffdc0ca2a28
[ 1093.100120][T22091]  </TASK>
[ 1093.109187][T22093] netlink: 'syz.1.5063': attribute type 9 has an invalid length.
[ 1093.147982][T22107] lo: left promiscuous mode
[ 1093.157622][T22093] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5063'.
[ 1093.170201][T22107] lo: entered allmulticast mode
[ 1093.191967][T22109] lo: entered promiscuous mode
[ 1093.227714][T22109] lo: left allmulticast mode
[ 1093.627476][T22127] netlink: 'syz.1.5071': attribute type 10 has an invalid length.
[ 1093.777826][T22120] netlink: 'syz.1.5071': attribute type 9 has an invalid length.
[ 1093.809062][T22120] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5071'.
[ 1094.301019][T22140] FAULT_INJECTION: forcing a failure.
[ 1094.301019][T22140] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1094.350434][T22140] CPU: 0 PID: 22140 Comm: syz.4.5079 Not tainted syzkaller #0
[ 1094.357979][T22140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1094.368060][T22140] Call Trace:
[ 1094.371362][T22140]  <TASK>
[ 1094.374313][T22140]  dump_stack_lvl+0x18c/0x250
[ 1094.379031][T22140]  ? show_regs_print_info+0x20/0x20
[ 1094.384348][T22140]  ? load_image+0x400/0x400
[ 1094.388885][T22140]  ? __might_fault+0xaa/0x120
[ 1094.393602][T22140]  ? __lock_acquire+0x7d40/0x7d40
[ 1094.398661][T22140]  should_fail_ex+0x39d/0x4d0
[ 1094.403377][T22140]  _copy_from_user+0x2f/0xe0
[ 1094.408086][T22140]  sk_setsockopt+0x2b2/0x2bc0
[ 1094.412893][T22140]  ? sockopt_capable+0x60/0x60
[ 1094.417694][T22140]  ? aa_sk_perm+0x970/0x970
[ 1094.422261][T22140]  ? __might_sleep+0xe0/0xe0
[ 1094.426885][T22140]  ? trace_call_bpf+0xc3/0x6c0
[ 1094.431682][T22140]  ? trace_call_bpf+0x5e9/0x6c0
[ 1094.436672][T22140]  mptcp_setsockopt+0x1541/0x3390
[ 1094.441821][T22140]  ? aa_sk_perm+0x83c/0x970
[ 1094.446364][T22140]  ? __fget_files+0x28/0x4b0
[ 1094.450996][T22140]  ? pm_nl_exit_net+0x230/0x230
[ 1094.455985][T22140]  ? aa_af_perm+0x330/0x330
[ 1094.460521][T22140]  ? __fget_files+0x28/0x4b0
[ 1094.465141][T22140]  ? __fget_files+0x28/0x4b0
[ 1094.469759][T22140]  ? aa_sock_opt_perm+0x74/0x100
[ 1094.474724][T22140]  ? sock_common_setsockopt+0x36/0xc0
[ 1094.480124][T22140]  ? sock_common_recvmsg+0x190/0x190
[ 1094.485443][T22140]  do_sock_setsockopt+0x175/0x1a0
[ 1094.490534][T22140]  __x64_sys_setsockopt+0x182/0x200
[ 1094.495763][T22140]  do_syscall_64+0x55/0xa0
[ 1094.500233][T22140]  ? clear_bhb_loop+0x40/0x90
[ 1094.504942][T22140]  ? clear_bhb_loop+0x40/0x90
[ 1094.509737][T22140]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1094.515740][T22140] RIP: 0033:0x7effb679c799
[ 1094.520186][T22140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1094.539821][T22140] RSP: 002b:00007effb7679028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1094.548273][T22140] RAX: ffffffffffffffda RBX: 00007effb6a15fa0 RCX: 00007effb679c799
[ 1094.556269][T22140] RDX: 0000000000000043 RSI: 0000000000000001 RDI: 0000000000000003
[ 1094.564346][T22140] RBP: 00007effb7679090 R08: 000000000000ff7b R09: 0000000000000000
[ 1094.572427][T22140] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1094.580422][T22140] R13: 00007effb6a16038 R14: 00007effb6a15fa0 R15: 00007ffd645644b8
[ 1094.588436][T22140]  </TASK>
[ 1094.847548][T22135] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5077'.
[ 1095.282888][T22135] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1095.291816][T22135] CPU: 1 PID: 22135 Comm: syz.2.5077 Not tainted syzkaller #0
[ 1095.299318][T22135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1095.309404][T22135] Call Trace:
[ 1095.312700][T22135]  <TASK>
[ 1095.315646][T22135]  dump_stack_lvl+0x18c/0x250
[ 1095.320369][T22135]  ? show_regs_print_info+0x20/0x20
[ 1095.325591][T22135]  ? load_image+0x400/0x400
[ 1095.330157][T22135]  sysfs_warn_dup+0x8e/0xa0
[ 1095.334704][T22135]  sysfs_do_create_link_sd+0xc0/0x110
[ 1095.340202][T22135]  device_add_class_symlinks+0x1cf/0x240
[ 1095.345876][T22135]  device_add+0x507/0xc20
[ 1095.350284][T22135]  wiphy_register+0x1dad/0x2ae0
[ 1095.355197][T22135]  ? cfg80211_event_work+0x40/0x40
[ 1095.360331][T22135]  ? minstrel_ht_alloc+0x88a/0x990
[ 1095.365589][T22135]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1095.371709][T22135]  ieee80211_register_hw+0x3464/0x4250
[ 1095.377245][T22135]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1095.382913][T22135]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1095.389102][T22135]  ? __debug_object_init+0xec/0x450
[ 1095.394331][T22135]  ? __asan_memset+0x22/0x40
[ 1095.398939][T22135]  ? __hrtimer_init+0x186/0x270
[ 1095.403817][T22135]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1095.409576][T22135]  ? mac80211_hwsim_free+0x220/0x220
[ 1095.414883][T22135]  ? rcu_is_watching+0x15/0xb0
[ 1095.419665][T22135]  ? kstrndup+0xbd/0x140
[ 1095.423941][T22135]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1095.429082][T22135]  ? __nla_validate+0x50/0x50
[ 1095.433806][T22135]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1095.439838][T22135]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1095.446203][T22135]  ? __nla_parse+0x24/0x50
[ 1095.450636][T22135]  ? __nla_parse+0x40/0x50
[ 1095.455098][T22135]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1095.461443][T22135]  genl_family_rcv_msg_doit+0x211/0x310
[ 1095.467038][T22135]  ? end_current_label_crit_section+0x170/0x170
[ 1095.473304][T22135]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1095.479213][T22135]  ? bpf_lsm_capable+0x9/0x10
[ 1095.483905][T22135]  ? security_capable+0x89/0xb0
[ 1095.488783][T22135]  genl_rcv_msg+0x619/0x7a0
[ 1095.493302][T22135]  ? genl_bind+0x360/0x360
[ 1095.497811][T22135]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1095.504188][T22135]  netlink_rcv_skb+0x241/0x4d0
[ 1095.508971][T22135]  ? genl_bind+0x360/0x360
[ 1095.513401][T22135]  ? netlink_ack+0x1180/0x1180
[ 1095.518190][T22135]  ? __lock_acquire+0x7d40/0x7d40
[ 1095.523299][T22135]  ? down_read+0x1ac/0x2e0
[ 1095.527734][T22135]  genl_rcv+0x28/0x40
[ 1095.531841][T22135]  netlink_unicast+0x751/0x8d0
[ 1095.536635][T22135]  netlink_sendmsg+0x8d0/0xbf0
[ 1095.541425][T22135]  ? lockdep_hardirqs_on+0x98/0x150
[ 1095.546648][T22135]  ? netlink_getsockopt+0x590/0x590
[ 1095.551877][T22135]  ? netlink_getsockopt+0x590/0x590
[ 1095.557106][T22135]  ____sys_sendmsg+0x5ba/0x960
[ 1095.561880][T22135]  ? lockdep_hardirqs_on+0x98/0x150
[ 1095.567105][T22135]  ? __asan_memset+0x22/0x40
[ 1095.571708][T22135]  ? __sys_sendmsg_sock+0x30/0x30
[ 1095.576746][T22135]  ? __import_iovec+0x5f2/0x850
[ 1095.581623][T22135]  ? import_iovec+0x73/0xa0
[ 1095.586577][T22135]  ___sys_sendmsg+0x2a6/0x360
[ 1095.591272][T22135]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1095.596134][T22135]  ? perf_trace_preemptirq_template+0xac/0x330
[ 1095.602338][T22135]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1095.608375][T22135]  ? lockdep_hardirqs_on+0x98/0x150
[ 1095.613619][T22135]  ? kasan_check_range+0x85/0x290
[ 1095.618682][T22135]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1095.623990][T22135]  ? __x64_sys_sendmsg+0x80/0x80
[ 1095.628965][T22135]  do_syscall_64+0x55/0xa0
[ 1095.633468][T22135]  ? clear_bhb_loop+0x40/0x90
[ 1095.638164][T22135]  ? clear_bhb_loop+0x40/0x90
[ 1095.642854][T22135]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1095.648764][T22135] RIP: 0033:0x7f71e4b9c799
[ 1095.653217][T22135] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1095.672947][T22135] RSP: 002b:00007f71e5a3d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1095.681461][T22135] RAX: ffffffffffffffda RBX: 00007f71e4e15fa0 RCX: 00007f71e4b9c799
[ 1095.689442][T22135] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1095.697428][T22135] RBP: 00007f71e4c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1095.705584][T22135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1095.713566][T22135] R13: 00007f71e4e16038 R14: 00007f71e4e15fa0 R15: 00007ffdc0ca2a28
[ 1095.721567][T22135]  </TASK>
[ 1095.806862][T22148] netlink: 'syz.1.5082': attribute type 10 has an invalid length.
[ 1095.829156][T22146] netlink: 'syz.3.5080': attribute type 9 has an invalid length.
[ 1095.872549][T22146] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.5080'.
[ 1095.983560][T22155] netlink: 'syz.4.5084': attribute type 29 has an invalid length.
[ 1096.022514][T22155] netlink: 'syz.4.5084': attribute type 3 has an invalid length.
[ 1096.081651][T22155] netlink: 132 bytes leftover after parsing attributes in process `syz.4.5084'.
[ 1096.261911][T22149] netlink: 'syz.1.5082': attribute type 9 has an invalid length.
[ 1096.354745][T22149] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5082'.
[ 1096.401253][T22148] netlink: 'syz.1.5082': attribute type 9 has an invalid length.
[ 1096.431969][T22148] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5082'.
[ 1097.158925][T22178] netlink: 'syz.1.5090': attribute type 10 has an invalid length.
[ 1097.397084][T22176] netlink: 'syz.1.5090': attribute type 9 has an invalid length.
[ 1097.421009][T22176] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5090'.
[ 1098.001131][T13208] Bluetooth: hci4: command 0x0406 tx timeout
[ 1098.030123][T22189] netlink: 'syz.4.5094': attribute type 2 has an invalid length.
[ 1098.049788][T22189] netlink: 164 bytes leftover after parsing attributes in process `syz.4.5094'.
[ 1098.097968][T22185] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5093'.
[ 1098.164308][T22193] FAULT_INJECTION: forcing a failure.
[ 1098.164308][T22193] name failslab, interval 1, probability 0, space 0, times 0
[ 1098.218829][T22193] CPU: 1 PID: 22193 Comm: syz.2.5095 Not tainted syzkaller #0
[ 1098.226357][T22193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1098.236451][T22193] Call Trace:
[ 1098.239762][T22193]  <TASK>
[ 1098.242719][T22193]  dump_stack_lvl+0x18c/0x250
[ 1098.247418][T22193]  ? show_regs_print_info+0x20/0x20
[ 1098.252633][T22193]  ? load_image+0x400/0x400
[ 1098.257249][T22193]  ? __might_sleep+0xe0/0xe0
[ 1098.261849][T22193]  ? __lock_acquire+0x7d40/0x7d40
[ 1098.266887][T22193]  should_fail_ex+0x39d/0x4d0
[ 1098.271678][T22193]  should_failslab+0x9/0x20
[ 1098.276204][T22193]  slab_pre_alloc_hook+0x59/0x310
[ 1098.281247][T22193]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[ 1098.287524][T22193]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[ 1098.293773][T22193]  __kmem_cache_alloc_node+0x53/0x250
[ 1098.299163][T22193]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[ 1098.305412][T22193]  __kmalloc+0xa4/0x230
[ 1098.309579][T22193]  ? netlink_lookup+0x30/0x200
[ 1098.314360][T22193]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[ 1098.320446][T22193]  genl_start+0x180/0x6b0
[ 1098.324784][T22193]  ? netlink_lookup+0x30/0x200
[ 1098.329566][T22193]  __netlink_dump_start+0x4a9/0x810
[ 1098.334800][T22193]  genl_family_rcv_msg_dumpit+0x214/0x310
[ 1098.340530][T22193]  ? genl_rcv_msg+0x7a0/0x7a0
[ 1098.345213][T22193]  ? genl_get_cmd+0x4a9/0x920
[ 1098.349909][T22193]  ? genl_family_rcv_msg_doit+0x310/0x310
[ 1098.355638][T22193]  ? genl_start+0x6b0/0x6b0
[ 1098.360157][T22193]  ? genl_dumpit+0x1a0/0x1a0
[ 1098.364765][T22193]  genl_rcv_msg+0x5e5/0x7a0
[ 1098.369285][T22193]  ? genl_bind+0x360/0x360
[ 1098.373720][T22193]  ? devlink_nl_port_fill+0x7e0/0x7e0
[ 1098.379100][T22193]  ? ref_tracker_free+0x690/0x840
[ 1098.384147][T22193]  netlink_rcv_skb+0x241/0x4d0
[ 1098.388925][T22193]  ? genl_bind+0x360/0x360
[ 1098.393359][T22193]  ? netlink_ack+0x1180/0x1180
[ 1098.398159][T22193]  ? __lock_acquire+0x7d40/0x7d40
[ 1098.403202][T22193]  ? down_read+0x1ac/0x2e0
[ 1098.407626][T22193]  genl_rcv+0x28/0x40
[ 1098.411610][T22193]  netlink_unicast+0x751/0x8d0
[ 1098.416456][T22193]  netlink_sendmsg+0x8d0/0xbf0
[ 1098.421246][T22193]  ? netlink_getsockopt+0x590/0x590
[ 1098.426461][T22193]  ? aa_sock_msg_perm+0x94/0x150
[ 1098.431410][T22193]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1098.436708][T22193]  ? security_socket_sendmsg+0x80/0xa0
[ 1098.442267][T22193]  ? netlink_getsockopt+0x590/0x590
[ 1098.447497][T22193]  ____sys_sendmsg+0x5ba/0x960
[ 1098.452279][T22193]  ? __asan_memset+0x22/0x40
[ 1098.456893][T22193]  ? __sys_sendmsg_sock+0x30/0x30
[ 1098.461922][T22193]  ? __import_iovec+0x5f2/0x850
[ 1098.466801][T22193]  ? import_iovec+0x73/0xa0
[ 1098.471315][T22193]  ___sys_sendmsg+0x2a6/0x360
[ 1098.476023][T22193]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1098.480827][T22193]  ? trace_call_bpf+0xc3/0x6c0
[ 1098.485806][T22193]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1098.490666][T22193]  ? __x64_sys_sendmsg+0x80/0x80
[ 1098.495630][T22193]  ? lockdep_hardirqs_on+0x98/0x150
[ 1098.500841][T22193]  do_syscall_64+0x55/0xa0
[ 1098.505277][T22193]  ? clear_bhb_loop+0x40/0x90
[ 1098.509967][T22193]  ? clear_bhb_loop+0x40/0x90
[ 1098.514768][T22193]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1098.520791][T22193] RIP: 0033:0x7f71e4b9c799
[ 1098.525235][T22193] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1098.544854][T22193] RSP: 002b:00007f71e5a1c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1098.553281][T22193] RAX: ffffffffffffffda RBX: 00007f71e4e16090 RCX: 00007f71e4b9c799
[ 1098.561260][T22193] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[ 1098.569262][T22193] RBP: 00007f71e5a1c090 R08: 0000000000000000 R09: 0000000000000000
[ 1098.577263][T22193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1098.585244][T22193] R13: 00007f71e4e16128 R14: 00007f71e4e16090 R15: 00007ffdc0ca2a28
[ 1098.593264][T22193]  </TASK>
[ 1098.692160][T22185] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1098.719882][T22185] CPU: 1 PID: 22185 Comm: syz.3.5093 Not tainted syzkaller #0
[ 1098.727512][T22185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1098.737645][T22185] Call Trace:
[ 1098.741080][T22185]  <TASK>
[ 1098.744055][T22185]  dump_stack_lvl+0x18c/0x250
[ 1098.748794][T22185]  ? show_regs_print_info+0x20/0x20
[ 1098.754049][T22185]  ? load_image+0x400/0x400
[ 1098.758633][T22185]  sysfs_warn_dup+0x8e/0xa0
[ 1098.763230][T22185]  sysfs_do_create_link_sd+0xc0/0x110
[ 1098.768654][T22185]  device_add_class_symlinks+0x1cf/0x240
[ 1098.774432][T22185]  device_add+0x507/0xc20
[ 1098.778811][T22185]  wiphy_register+0x1dad/0x2ae0
[ 1098.783737][T22185]  ? cfg80211_event_work+0x40/0x40
[ 1098.788888][T22185]  ? minstrel_ht_alloc+0x88a/0x990
[ 1098.794073][T22185]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1098.800284][T22185]  ieee80211_register_hw+0x3464/0x4250
[ 1098.805871][T22185]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1098.811651][T22185]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1098.817609][T22185]  ? __debug_object_init+0xec/0x450
[ 1098.822871][T22185]  ? __asan_memset+0x22/0x40
[ 1098.827518][T22185]  ? __hrtimer_init+0x186/0x270
[ 1098.832415][T22185]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1098.838200][T22185]  ? mac80211_hwsim_free+0x220/0x220
[ 1098.843502][T22185]  ? hwsim_new_radio_nl+0xdb9/0x1a90
[ 1098.848802][T22185]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1098.853957][T22185]  ? __nla_validate+0x50/0x50
[ 1098.858831][T22185]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1098.865307][T22185]  ? kasan_save_alloc_info+0xb/0x30
[ 1098.870545][T22185]  ? __nla_parse+0x40/0x50
[ 1098.874976][T22185]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1098.881418][T22185]  genl_family_rcv_msg_doit+0x211/0x310
[ 1098.887022][T22185]  ? end_current_label_crit_section+0x170/0x170
[ 1098.893326][T22185]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1098.899264][T22185]  ? bpf_lsm_capable+0x9/0x10
[ 1098.903998][T22185]  ? security_capable+0x89/0xb0
[ 1098.908870][T22185]  genl_rcv_msg+0x619/0x7a0
[ 1098.913382][T22185]  ? genl_bind+0x360/0x360
[ 1098.917802][T22185]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1098.923808][T22185]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1098.930160][T22185]  ? perf_trace_preemptirq_template+0xac/0x330
[ 1098.936380][T22185]  ? irqentry_enter+0x37/0x50
[ 1098.941104][T22185]  netlink_rcv_skb+0x241/0x4d0
[ 1098.945893][T22185]  ? genl_bind+0x360/0x360
[ 1098.950319][T22185]  ? netlink_ack+0x1180/0x1180
[ 1098.955104][T22185]  ? __lock_acquire+0x7d40/0x7d40
[ 1098.960140][T22185]  ? down_read+0x1ac/0x2e0
[ 1098.964566][T22185]  genl_rcv+0x28/0x40
[ 1098.968551][T22185]  netlink_unicast+0x751/0x8d0
[ 1098.973331][T22185]  netlink_sendmsg+0x8d0/0xbf0
[ 1098.978129][T22185]  ? netlink_getsockopt+0x590/0x590
[ 1098.983464][T22185]  ? aa_sock_msg_perm+0x94/0x150
[ 1098.988423][T22185]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1098.993717][T22185]  ? security_socket_sendmsg+0x80/0xa0
[ 1098.999200][T22185]  ? netlink_getsockopt+0x590/0x590
[ 1099.004419][T22185]  ____sys_sendmsg+0x5ba/0x960
[ 1099.009201][T22185]  ? __sys_sendmsg_sock+0x30/0x30
[ 1099.014238][T22185]  ? ___sys_sendmsg+0x28b/0x360
[ 1099.019100][T22185]  ___sys_sendmsg+0x2a6/0x360
[ 1099.023787][T22185]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1099.028592][T22185]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1099.034858][T22185]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1099.039750][T22185]  ? __x64_sys_sendmsg+0x80/0x80
[ 1099.044757][T22185]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1099.050841][T22185]  do_syscall_64+0x55/0xa0
[ 1099.055301][T22185]  ? clear_bhb_loop+0x40/0x90
[ 1099.060004][T22185]  ? clear_bhb_loop+0x40/0x90
[ 1099.064711][T22185]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1099.070660][T22185] RIP: 0033:0x7fc56639c799
[ 1099.075100][T22185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1099.094811][T22185] RSP: 002b:00007fc56721e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1099.103247][T22185] RAX: ffffffffffffffda RBX: 00007fc566615fa0 RCX: 00007fc56639c799
[ 1099.111227][T22185] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1099.119216][T22185] RBP: 00007fc566432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1099.127199][T22185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1099.135181][T22185] R13: 00007fc566616038 R14: 00007fc566615fa0 R15: 00007fffb0fe98b8
[ 1099.143185][T22185]  </TASK>
[ 1099.163018][T22198] netlink: 'syz.4.5097': attribute type 4 has an invalid length.
[ 1100.327978][T22220] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.5104'.
[ 1101.521968][T22231] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5108'.
[ 1101.767116][T22247] validate_nla: 2 callbacks suppressed
[ 1101.767134][T22247] netlink: 'syz.3.5111': attribute type 10 has an invalid length.
[ 1102.018798][T22231] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1102.033076][T22231] CPU: 0 PID: 22231 Comm: syz.1.5108 Not tainted syzkaller #0
[ 1102.040686][T22231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1102.050803][T22231] Call Trace:
[ 1102.054179][T22231]  <TASK>
[ 1102.057114][T22231]  dump_stack_lvl+0x18c/0x250
[ 1102.061909][T22231]  ? show_regs_print_info+0x20/0x20
[ 1102.067196][T22231]  ? load_image+0x400/0x400
[ 1102.071777][T22231]  sysfs_warn_dup+0x8e/0xa0
[ 1102.076295][T22231]  sysfs_do_create_link_sd+0xc0/0x110
[ 1102.081693][T22231]  device_add_class_symlinks+0x1cf/0x240
[ 1102.087351][T22231]  device_add+0x507/0xc20
[ 1102.091748][T22231]  wiphy_register+0x1dad/0x2ae0
[ 1102.096716][T22231]  ? cfg80211_event_work+0x40/0x40
[ 1102.101848][T22231]  ? minstrel_ht_alloc+0x88a/0x990
[ 1102.106994][T22231]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1102.113130][T22231]  ieee80211_register_hw+0x3464/0x4250
[ 1102.118631][T22231]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1102.124302][T22231]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1102.130209][T22231]  ? __debug_object_init+0xec/0x450
[ 1102.135430][T22231]  ? __asan_memset+0x22/0x40
[ 1102.140213][T22231]  ? __hrtimer_init+0x186/0x270
[ 1102.145081][T22231]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1102.150845][T22231]  ? mac80211_hwsim_free+0x220/0x220
[ 1102.156235][T22231]  ? rcu_is_watching+0x15/0xb0
[ 1102.161028][T22231]  ? kstrndup+0xbd/0x140
[ 1102.165398][T22231]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1102.170529][T22231]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[ 1102.176358][T22231]  ? mark_lock+0x94/0x320
[ 1102.180716][T22231]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1102.187066][T22231]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1102.193234][T22231]  ? lockdep_hardirqs_on+0x98/0x150
[ 1102.198447][T22231]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1102.204716][T22231]  genl_family_rcv_msg_doit+0x211/0x310
[ 1102.210275][T22231]  ? end_current_label_crit_section+0x170/0x170
[ 1102.216535][T22231]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1102.222449][T22231]  ? bpf_lsm_capable+0x9/0x10
[ 1102.227226][T22231]  ? security_capable+0x89/0xb0
[ 1102.232116][T22231]  genl_rcv_msg+0x619/0x7a0
[ 1102.236644][T22231]  ? genl_bind+0x360/0x360
[ 1102.241070][T22231]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1102.247416][T22231]  ? kasan_check_range+0xa8/0x290
[ 1102.252569][T22231]  netlink_rcv_skb+0x241/0x4d0
[ 1102.257356][T22231]  ? genl_bind+0x360/0x360
[ 1102.261869][T22231]  ? netlink_ack+0x1180/0x1180
[ 1102.266661][T22231]  ? __lock_acquire+0x7d40/0x7d40
[ 1102.271744][T22231]  ? down_read+0x1ac/0x2e0
[ 1102.276174][T22231]  genl_rcv+0x28/0x40
[ 1102.280163][T22231]  netlink_unicast+0x751/0x8d0
[ 1102.284956][T22231]  netlink_sendmsg+0x8d0/0xbf0
[ 1102.289754][T22231]  ? netlink_getsockopt+0x590/0x590
[ 1102.295010][T22231]  ? aa_sock_msg_perm+0x94/0x150
[ 1102.299977][T22231]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1102.305365][T22231]  ? security_socket_sendmsg+0x80/0xa0
[ 1102.310834][T22231]  ? netlink_getsockopt+0x590/0x590
[ 1102.316072][T22231]  ____sys_sendmsg+0x5ba/0x960
[ 1102.320885][T22231]  ? __asan_memset+0x22/0x40
[ 1102.325512][T22231]  ? __sys_sendmsg_sock+0x30/0x30
[ 1102.330556][T22231]  ? __import_iovec+0x5f2/0x850
[ 1102.335445][T22231]  ? import_iovec+0x73/0xa0
[ 1102.339973][T22231]  ___sys_sendmsg+0x2a6/0x360
[ 1102.344668][T22231]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1102.349506][T22231]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1102.354456][T22231]  ? __x64_sys_sendmsg+0x80/0x80
[ 1102.359425][T22231]  ? syscall_enter_from_user_mode+0x2e/0x80
[ 1102.365336][T22231]  do_syscall_64+0x55/0xa0
[ 1102.369771][T22231]  ? clear_bhb_loop+0x40/0x90
[ 1102.374459][T22231]  ? clear_bhb_loop+0x40/0x90
[ 1102.379324][T22231]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1102.385401][T22231] RIP: 0033:0x7f1b3019c799
[ 1102.389829][T22231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1102.409535][T22231] RSP: 002b:00007f1b31088028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1102.418138][T22231] RAX: ffffffffffffffda RBX: 00007f1b30415fa0 RCX: 00007f1b3019c799
[ 1102.426151][T22231] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1102.434221][T22231] RBP: 00007f1b30232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1102.442292][T22231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1102.450272][T22231] R13: 00007f1b30416038 R14: 00007f1b30415fa0 R15: 00007fffbb3f4728
[ 1102.458356][T22231]  </TASK>
[ 1102.649725][T22252] netlink: 'syz.4.5114': attribute type 46 has an invalid length.
[ 1102.675466][T22252] netlink: 'syz.4.5114': attribute type 46 has an invalid length.
[ 1102.901268][T22260] netlink: 'syz.3.5115': attribute type 10 has an invalid length.
[ 1102.917892][T22260] netlink: 55 bytes leftover after parsing attributes in process `syz.3.5115'.
[ 1103.314281][T22275] netlink: 'syz.1.5120': attribute type 10 has an invalid length.
[ 1103.623688][T22275] netlink: 'syz.1.5120': attribute type 9 has an invalid length.
[ 1103.665643][T22275] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5120'.
[ 1104.283947][T22287] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5124'.
[ 1105.139507][T22287] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1105.149900][T22287] CPU: 0 PID: 22287 Comm: syz.2.5124 Not tainted syzkaller #0
[ 1105.157415][T22287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1105.167516][T22287] Call Trace:
[ 1105.170848][T22287]  <TASK>
[ 1105.173823][T22287]  dump_stack_lvl+0x18c/0x250
[ 1105.178572][T22287]  ? show_regs_print_info+0x20/0x20
[ 1105.183827][T22287]  ? load_image+0x400/0x400
[ 1105.188501][T22287]  sysfs_warn_dup+0x8e/0xa0
[ 1105.193156][T22287]  sysfs_do_create_link_sd+0xc0/0x110
[ 1105.198647][T22287]  device_add_class_symlinks+0x1cf/0x240
[ 1105.204431][T22287]  device_add+0x507/0xc20
[ 1105.208826][T22287]  wiphy_register+0x1dad/0x2ae0
[ 1105.213845][T22287]  ? cfg80211_event_work+0x40/0x40
[ 1105.219959][T22287]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1105.226369][T22287]  ieee80211_register_hw+0x3464/0x4250
[ 1105.231906][T22287]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1105.237775][T22287]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1105.243736][T22287]  ? __debug_object_init+0xec/0x450
[ 1105.248987][T22287]  ? __asan_memset+0x22/0x40
[ 1105.253717][T22287]  ? __hrtimer_init+0x186/0x270
[ 1105.258629][T22287]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1105.264498][T22287]  ? mac80211_hwsim_free+0x220/0x220
[ 1105.269831][T22287]  ? rcu_is_watching+0x15/0xb0
[ 1105.274648][T22287]  ? kstrndup+0xbd/0x140
[ 1105.279123][T22287]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1105.284367][T22287]  ? mark_lock+0x94/0x320
[ 1105.288736][T22287]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1105.294822][T22287]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1105.301207][T22287]  ? lockdep_hardirqs_on+0x98/0x150
[ 1105.306439][T22287]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1105.312640][T22287]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1105.319021][T22287]  genl_family_rcv_msg_doit+0x211/0x310
[ 1105.324613][T22287]  ? end_current_label_crit_section+0x170/0x170
[ 1105.330898][T22287]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1105.336917][T22287]  ? bpf_lsm_capable+0x9/0x10
[ 1105.341647][T22287]  ? security_capable+0x89/0xb0
[ 1105.346548][T22287]  genl_rcv_msg+0x619/0x7a0
[ 1105.351117][T22287]  ? genl_bind+0x360/0x360
[ 1105.355576][T22287]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1105.361965][T22287]  ? netlink_rcv_skb+0xa0/0x4d0
[ 1105.366885][T22287]  netlink_rcv_skb+0x241/0x4d0
[ 1105.371727][T22287]  ? genl_bind+0x360/0x360
[ 1105.376194][T22287]  ? netlink_ack+0x1180/0x1180
[ 1105.381026][T22287]  ? __lock_acquire+0x7d40/0x7d40
[ 1105.386113][T22287]  ? down_read+0x1ac/0x2e0
[ 1105.390551][T22287]  genl_rcv+0x28/0x40
[ 1105.394667][T22287]  netlink_unicast+0x751/0x8d0
[ 1105.399505][T22287]  netlink_sendmsg+0x8d0/0xbf0
[ 1105.404313][T22287]  ? lockdep_hardirqs_on+0x98/0x150
[ 1105.409644][T22287]  ? netlink_getsockopt+0x590/0x590
[ 1105.415043][T22287]  ? aa_sock_msg_perm+0x94/0x150
[ 1105.420380][T22287]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1105.425910][T22287]  ? security_socket_sendmsg+0x80/0xa0
[ 1105.431509][T22287]  ? netlink_getsockopt+0x590/0x590
[ 1105.436757][T22287]  ____sys_sendmsg+0x5ba/0x960
[ 1105.441817][T22287]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1105.448103][T22287]  ? __asan_memset+0x22/0x40
[ 1105.452992][T22287]  ? __sys_sendmsg_sock+0x30/0x30
[ 1105.458128][T22287]  ? __import_iovec+0x5f2/0x850
[ 1105.463128][T22287]  ? import_iovec+0x73/0xa0
[ 1105.467752][T22287]  ___sys_sendmsg+0x2a6/0x360
[ 1105.472477][T22287]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1105.477302][T22287]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1105.483623][T22287]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1105.488511][T22287]  ? __x64_sys_sendmsg+0x80/0x80
[ 1105.493498][T22287]  ? lockdep_hardirqs_on+0x98/0x150
[ 1105.498735][T22287]  do_syscall_64+0x55/0xa0
[ 1105.503196][T22287]  ? clear_bhb_loop+0x40/0x90
[ 1105.507910][T22287]  ? clear_bhb_loop+0x40/0x90
[ 1105.512625][T22287]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1105.518551][T22287] RIP: 0033:0x7f71e4b9c799
[ 1105.523011][T22287] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1105.542753][T22287] RSP: 002b:00007f71e5a3d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1105.551322][T22287] RAX: ffffffffffffffda RBX: 00007f71e4e15fa0 RCX: 00007f71e4b9c799
[ 1105.559339][T22287] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1105.567343][T22287] RBP: 00007f71e4c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1105.575345][T22287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1105.583359][T22287] R13: 00007f71e4e16038 R14: 00007f71e4e15fa0 R15: 00007ffdc0ca2a28
[ 1105.591398][T22287]  </TASK>
[ 1106.006866][T22317] netlink: 'syz.3.5134': attribute type 10 has an invalid length.
[ 1106.091434][T22317] netlink: 'syz.3.5134': attribute type 9 has an invalid length.
[ 1106.127750][T22317] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.5134'.
[ 1107.273798][T22338] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5141'.
[ 1109.489872][T22338] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[ 1109.522519][T22338] CPU: 1 PID: 22338 Comm: syz.3.5141 Not tainted syzkaller #0
[ 1109.530033][T22338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1109.540106][T22338] Call Trace:
[ 1109.543397][T22338]  <TASK>
[ 1109.546337][T22338]  dump_stack_lvl+0x18c/0x250
[ 1109.551050][T22338]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1109.557222][T22338]  ? show_regs_print_info+0x20/0x20
[ 1109.562448][T22338]  ? load_image+0x400/0x400
[ 1109.566997][T22338]  ? sysfs_warn_dup+0x65/0xa0
[ 1109.571688][T22338]  sysfs_warn_dup+0x8e/0xa0
[ 1109.576223][T22338]  sysfs_do_create_link_sd+0xc0/0x110
[ 1109.581631][T22338]  device_add_class_symlinks+0x1cf/0x240
[ 1109.587287][T22338]  device_add+0x507/0xc20
[ 1109.591636][T22338]  wiphy_register+0x1dad/0x2ae0
[ 1109.596520][T22338]  ? cfg80211_event_work+0x40/0x40
[ 1109.601640][T22338]  ? minstrel_ht_alloc+0x88a/0x990
[ 1109.606786][T22338]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1109.612876][T22338]  ieee80211_register_hw+0x3464/0x4250
[ 1109.618491][T22338]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1109.624144][T22338]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1109.630159][T22338]  ? __debug_object_init+0xec/0x450
[ 1109.635380][T22338]  ? __asan_memset+0x22/0x40
[ 1109.639986][T22338]  ? __hrtimer_init+0x186/0x270
[ 1109.644982][T22338]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1109.650745][T22338]  ? mac80211_hwsim_free+0x220/0x220
[ 1109.656091][T22338]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1109.661235][T22338]  ? __nla_validate+0x50/0x50
[ 1109.665927][T22338]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1109.671952][T22338]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1109.678301][T22338]  ? lockdep_hardirqs_on+0x98/0x150
[ 1109.683536][T22338]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1109.689747][T22338]  ? __nla_parse+0x40/0x50
[ 1109.694197][T22338]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1109.700636][T22338]  genl_family_rcv_msg_doit+0x211/0x310
[ 1109.706221][T22338]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1109.712487][T22338]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1109.718426][T22338]  ? ns_capable+0x79/0xe0
[ 1109.722797][T22338]  ? __sanitizer_cov_trace_const_cmp4+0x30/0x90
[ 1109.729065][T22338]  genl_rcv_msg+0x619/0x7a0
[ 1109.733604][T22338]  ? genl_bind+0x360/0x360
[ 1109.738122][T22338]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1109.744588][T22338]  netlink_rcv_skb+0x241/0x4d0
[ 1109.749387][T22338]  ? genl_bind+0x360/0x360
[ 1109.753832][T22338]  ? netlink_ack+0x1180/0x1180
[ 1109.758635][T22338]  ? __lock_acquire+0x7d40/0x7d40
[ 1109.763691][T22338]  ? down_read+0x1ac/0x2e0
[ 1109.768138][T22338]  genl_rcv+0x28/0x40
[ 1109.772141][T22338]  netlink_unicast+0x751/0x8d0
[ 1109.777022][T22338]  netlink_sendmsg+0x8d0/0xbf0
[ 1109.781814][T22338]  ? netlink_getsockopt+0x590/0x590
[ 1109.787083][T22338]  ? aa_sock_msg_perm+0x94/0x150
[ 1109.792130][T22338]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1109.797438][T22338]  ? security_socket_sendmsg+0x80/0xa0
[ 1109.802924][T22338]  ? netlink_getsockopt+0x590/0x590
[ 1109.808141][T22338]  ____sys_sendmsg+0x5ba/0x960
[ 1109.813186][T22338]  ? __asan_memset+0x22/0x40
[ 1109.817795][T22338]  ? __sys_sendmsg_sock+0x30/0x30
[ 1109.822838][T22338]  ? __import_iovec+0x5f2/0x850
[ 1109.827715][T22338]  ? import_iovec+0x73/0xa0
[ 1109.832228][T22338]  ___sys_sendmsg+0x2a6/0x360
[ 1109.836921][T22338]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1109.841734][T22338]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1109.848122][T22338]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1109.852993][T22338]  ? __x64_sys_sendmsg+0x80/0x80
[ 1109.857959][T22338]  ? lockdep_hardirqs_on+0x98/0x150
[ 1109.863264][T22338]  do_syscall_64+0x55/0xa0
[ 1109.867698][T22338]  ? clear_bhb_loop+0x40/0x90
[ 1109.872389][T22338]  ? clear_bhb_loop+0x40/0x90
[ 1109.877077][T22338]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1109.882985][T22338] RIP: 0033:0x7fc56639c799
[ 1109.887412][T22338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1109.907137][T22338] RSP: 002b:00007fc56721e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1109.915656][T22338] RAX: ffffffffffffffda RBX: 00007fc566615fa0 RCX: 00007fc56639c799
[ 1109.923827][T22338] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1109.931806][T22338] RBP: 00007fc566432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1109.939818][T22338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1109.947816][T22338] R13: 00007fc566616038 R14: 00007fc566615fa0 R15: 00007fffb0fe98b8
[ 1109.955916][T22338]  </TASK>
[ 1110.025190][T22363] netlink: 'syz.1.5149': attribute type 10 has an invalid length.
[ 1110.083984][T22366] netlink: 'syz.1.5149': attribute type 9 has an invalid length.
[ 1110.102417][T22366] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.5149'.
[ 1110.291223][T22369] netlink: 1 bytes leftover after parsing attributes in process `syz.3.5151'.
[ 1111.184744][T22389] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.5158'.
[ 1111.657741][   T29] INFO: task syz.0.4529:20105 blocked for more than 143 seconds.
[ 1111.706620][   T29]       Not tainted syzkaller #0
[ 1111.711635][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1111.815540][   T29] task:syz.0.4529      state:D stack:22632 pid:20105 ppid:13204  flags:0x00004006
[ 1111.860209][   T29] Call Trace:
[ 1111.860927][T22391] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5159'.
[ 1111.863623][   T29]  <TASK>
[ 1111.863649][   T29]  __schedule+0x1553/0x45a0
[ 1111.863716][   T29]  ? rcu_is_watching+0x15/0xb0
[ 1111.863749][   T29]  ? asan.module_dtor+0x20/0x20
[ 1111.863779][   T29]  ? trace_contention_end+0x39/0xe0
[ 1111.863809][   T29]  ? perf_event_ctx_lock_nested+0x490/0x490
[ 1111.863850][   T29]  ? task_work_cancel+0xa5/0x220
[ 1111.863886][   T29]  ? task_work_cancel_func+0x210/0x210
[ 1111.863926][   T29]  schedule+0xbd/0x170
[ 1111.863957][   T29]  ? _free_event+0xfe/0xf30
[ 1111.863985][   T29]  _free_event+0x174/0xf30
[ 1111.864034][   T29]  perf_event_release_kernel+0x842/0x8d0
[ 1111.864065][   T29]  ? __might_sleep+0xe0/0xe0
[ 1111.864095][   T29]  ? calc_timer_values+0x400/0x400
[ 1111.864126][   T29]  ? __fput+0x61c/0x970
[ 1111.864154][   T29]  ? perf_mmap+0x15c0/0x15c0
[ 1111.864188][   T29]  perf_release+0x3b/0x40
[ 1111.864220][   T29]  __fput+0x234/0x970
[ 1111.864259][   T29]  task_work_run+0x1d4/0x260
[ 1111.864294][   T29]  ? task_work_cancel+0x220/0x220
[ 1111.864323][   T29]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1111.864365][   T29]  get_signal+0x1235/0x13f0
[ 1111.864392][   T29]  ? create_io_thread+0x190/0x190
[ 1111.864449][   T29]  arch_do_signal_or_restart+0xc2/0x800
[ 1111.864485][   T29]  ? __x64_sys_clone+0x1b7/0x230
[ 1111.864513][   T29]  ? get_sigframe_size+0x20/0x20
[ 1111.864566][   T29]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1111.864603][   T29]  exit_to_user_mode_loop+0x70/0x110
[ 1111.864644][   T29]  exit_to_user_mode_prepare+0xee/0x180
[ 1111.864677][   T29]  syscall_exit_to_user_mode+0x1a/0x50
[ 1111.864705][   T29]  do_syscall_64+0x61/0xa0
[ 1111.864737][   T29]  ? clear_bhb_loop+0x40/0x90
[ 1111.864765][   T29]  ? clear_bhb_loop+0x40/0x90
[ 1111.864793][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1111.864820][   T29] RIP: 0033:0x7fdecc39c799
[ 1111.864852][   T29] RSP: 002b:00007fdecd33ffd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1111.864888][   T29] RAX: fffffffffffffffc RBX: 00007fdecc615fa0 RCX: 00007fdecc39c799
[ 1111.864909][   T29] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000400c0000
[ 1111.864928][   T29] RBP: 00007fdecc432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1111.864947][   T29] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1111.864965][   T29] R13: 00007fdecc616038 R14: 00007fdecc615fa0 R15: 00007ffc34003518
[ 1111.865005][   T29]  </TASK>
[ 1111.865134][   T29] 
[ 1111.865134][   T29] Showing all locks held in the system:
[ 1111.865150][   T29] 2 locks held by kworker/0:0/8:
[ 1111.865169][   T29]  #0: ffff888017c72538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[ 1111.865271][   T29]  #1: ffffc900000d7d00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[ 1111.865360][   T29] 2 locks held by rcu_tasks_trace/15:
[ 1111.865376][   T29]  #0: ffffffff8d132d90 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0xadb/0xdb0
[ 1111.865462][   T29]  #1: ffffffff8d137a38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3da/0x880
[ 1111.865554][   T29] 1 lock held by khungtaskd/29:
[ 1111.865571][   T29]  #0: ffffffff8d132060 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[ 1111.865695][   T29] 3 locks held by kworker/u4:10/2972:
[ 1111.865717][   T29] 2 locks held by getty/5541:
[ 1111.865733][   T29]  #0: ffff888031dea0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1111.865816][   T29]  #1: ffffc9000326e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x433/0x1390
[ 1111.865914][   T29] 2 locks held by kworker/u4:22/9139:
[ 1111.865930][   T29]  #0: ffff888017c71538 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[ 1111.866016][   T29]  #1: ffffc90019887d00 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[ 1111.866108][   T29] 1 lock held by syz.3.5157/22384:
[ 1111.866126][   T29]  #0: ffff88805de9ca20 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[ 1111.866333][   T29] 1 lock held by syz.1.5158/22386:
[ 1111.866349][   T29]  #0: ffffffff8d1921e8 (bpf_event_mutex){+.+.}-{3:3}, at: perf_event_detach_bpf_prog+0x8b/0x310
[ 1111.866442][   T29] 2 locks held by syz.2.5159/22391:
[ 1111.866460][   T29] 2 locks held by syz.4.5160/22393:
[ 1111.866492][   T29] 
[ 1111.866504][   T29] =============================================
[ 1111.866504][   T29] 
[ 1111.866517][   T29] NMI backtrace for cpu 1
[ 1111.866527][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[ 1111.866545][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1111.866557][   T29] Call Trace:
[ 1111.866565][   T29]  <TASK>
[ 1111.866574][   T29]  dump_stack_lvl+0x18c/0x250
[ 1111.866601][   T29]  ? nmi_cpu_backtrace+0x1b6/0x3e0
[ 1111.866621][   T29]  ? show_regs_print_info+0x20/0x20
[ 1111.866649][   T29]  ? load_image+0x400/0x400
[ 1111.866683][   T29]  nmi_cpu_backtrace+0x3a6/0x3e0
[ 1111.866706][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[ 1111.866724][   T29]  ? _printk+0xde/0x130
[ 1111.866746][   T29]  ? load_image+0x400/0x400
[ 1111.866771][   T29]  ? load_image+0x400/0x400
[ 1111.866798][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 1111.866835][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[ 1111.866858][   T29]  watchdog+0xf3d/0xf80
[ 1111.866885][   T29]  ? watchdog+0x1e1/0xf80
[ 1111.866916][   T29]  kthread+0x2fa/0x390
[ 1111.866934][   T29]  ? hungtask_pm_notify+0x90/0x90
[ 1111.866958][   T29]  ? kthread_blkcg+0xd0/0xd0
[ 1111.866977][   T29]  ret_from_fork+0x48/0x80
[ 1111.866998][   T29]  ? kthread_blkcg+0xd0/0xd0
[ 1111.867018][   T29]  ret_from_fork_asm+0x11/0x20
[ 1111.867057][   T29]  </TASK>
[ 1111.867066][   T29] Sending NMI from CPU 1 to CPUs 0:
[ 1111.867096][    C0] NMI backtrace for cpu 0
[ 1111.867107][    C0] CPU: 0 PID: 22391 Comm: syz.2.5159 Not tainted syzkaller #0
[ 1111.867123][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1111.867131][    C0] RIP: 0010:lock_is_held_type+0xaa/0x190
[ 1111.867152][    C0] Code: 83 bb d8 0a 00 00 00 7e 4b 44 89 fd 49 89 df 49 81 c7 e0 0a 00 00 45 31 e4 49 83 fc 31 73 24 4c 89 ff 4c 89 f6 e8 26 02 00 00 <85> c0 75 2a 49 ff c4 48 63 83 d8 0a 00 00 49 83 c7 28 49 39 c4 7c
[ 1111.867165][    C0] RSP: 0018:ffffc90000007358 EFLAGS: 00000046
[ 1111.867178][    C0] RAX: 0000000000000001 RBX: ffff88802ba1bc00 RCX: 0000000000000001
[ 1111.867189][    C0] RDX: ffff88802ba1bc00 RSI: ffff8880b8e2b718 RDI: ffff88802ba1c758
[ 1111.867200][    C0] RBP: 00000000ffffffff R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd
[ 1111.867211][    C0] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000003
[ 1111.867221][    C0] R13: 0000000000000046 R14: ffff8880b8e2b718 R15: ffff88802ba1c758
[ 1111.867233][    C0] FS:  00007f71e5a3d6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1111.867247][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1111.867258][    C0] CR2: 0000001b2de14ff8 CR3: 000000005cb22000 CR4: 00000000003506f0
[ 1111.867273][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1111.867283][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 1111.867294][    C0] Call Trace:
[ 1111.867301][    C0]  <IRQ>
[ 1111.867309][    C0]  __hrtimer_run_queues+0x298/0xc40
[ 1111.867327][    C0]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[ 1111.867351][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1111.867366][    C0]  ? read_tsc+0x9/0x20
[ 1111.867385][    C0]  hrtimer_interrupt+0x3c9/0x9c0
[ 1111.867412][    C0]  __sysvec_apic_timer_interrupt+0xfb/0x3b0
[ 1111.867431][    C0]  sysvec_apic_timer_interrupt+0x51/0xc0
[ 1111.867448][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1111.867465][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x60
[ 1111.867483][    C0] Code: 00 00 f3 0f 1e fa 53 48 89 fb e8 13 00 00 00 48 8b 3d bc d4 03 0d 48 89 de 5b e9 33 5f 57 00 cc cc cc f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0d 50 99 7c 7e 65 8b 15 51 99 7c 7e 81 e2 00 01 ff 00 74
[ 1111.867494][    C0] RSP: 0018:ffffc90000007718 EFLAGS: 00000282
[ 1111.867506][    C0] RAX: ffffffff813b64bf RBX: ffffc90000007788 RCX: ffffc90000007810
[ 1111.867517][    C0] RDX: 0000000000000000 RSI: ffff88802ba1bc00 RDI: ffffc90000007788
[ 1111.867528][    C0] RBP: dffffc0000000000 R08: dffffc0000000000 R09: 0000000000000000
[ 1111.867538][    C0] R10: ffffc900000078c0 R11: fffffbfff22382a5 R12: 0000000000000000
[ 1111.867548][    C0] R13: ffff88802ba1bc00 R14: ffffffff8175be90 R15: 0000000000000000
[ 1111.867559][    C0]  ? stack_trace_save+0x100/0x100
[ 1111.867578][    C0]  ? __unwind_start+0x2f/0x7e0
[ 1111.867596][    C0]  ? __lock_acquire+0x7d40/0x7d40
[ 1111.867612][    C0]  __unwind_start+0x2f/0x7e0
[ 1111.867628][    C0]  ? stack_trace_save+0x100/0x100
[ 1111.867645][    C0]  arch_stack_walk+0xf8/0x190
[ 1111.867665][    C0]  stack_trace_save+0xaa/0x100
[ 1111.867681][    C0]  ? stack_trace_snprint+0xf0/0xf0
[ 1111.867699][    C0]  ? kvm_sched_clock_read+0x11/0x20
[ 1111.867713][    C0]  ? sched_clock+0x3f/0x60
[ 1111.867729][    C0]  ? sched_clock_cpu+0x75/0x430
[ 1111.867745][    C0]  kasan_set_track+0x4e/0x70
[ 1111.867781][    C0]  ? kmem_cache_free+0xf8/0x270
[ 1111.867801][    C0]  kasan_save_free_info+0x2e/0x50
[ 1111.867819][    C0]  ____kasan_slab_free+0x126/0x1e0
[ 1111.867837][    C0]  slab_free_freelist_hook+0x130/0x1a0
[ 1111.867854][    C0]  ? rcu_core+0xc88/0x1770
[ 1111.867868][    C0]  ? rcu_core+0xcfb/0x1770
[ 1111.867881][    C0]  kmem_cache_free+0xf8/0x270
[ 1111.867901][    C0]  ? security_inode_free+0xd0/0xd0
[ 1111.867921][    C0]  rcu_core+0xcfb/0x1770
[ 1111.867943][    C0]  ? rcu_cpu_kthread_park+0x90/0x90
[ 1111.867956][    C0]  ? __run_timers+0x7a0/0x800
[ 1111.867971][    C0]  ? __run_timers+0x763/0x800
[ 1111.867990][    C0]  ? detach_timer+0x2b0/0x2b0
[ 1111.868005][    C0]  ? lock_chain_count+0x20/0x20
[ 1111.868025][    C0]  handle_softirqs+0x280/0x820
[ 1111.868042][    C0]  ? __irq_exit_rcu+0xd3/0x190
[ 1111.868059][    C0]  ? do_softirq+0x1a0/0x1a0
[ 1111.868075][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[ 1111.868102][    C0]  __irq_exit_rcu+0xd3/0x190
[ 1111.868117][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1111.868134][    C0]  irq_exit_rcu+0x9/0x20
[ 1111.868147][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1111.868164][    C0]  </IRQ>
[ 1111.868169][    C0]  <TASK>
[ 1111.868174][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1111.868191][    C0] RIP: 0010:vprintk_emit+0x46f/0x610
[ 1111.868209][    C0] Code: 85 3f 01 00 00 e8 21 a7 1b 00 45 89 f7 48 85 db 48 8b 1c 24 75 07 e8 10 a7 1b 00 eb 06 e8 09 a7 1b 00 fb 48 c7 c7 80 63 12 8d <31> f6 ba 01 00 00 00 31 c9 41 b8 01 00 00 00 45 31 c9 53 e8 99 b2
[ 1111.868220][    C0] RSP: 0018:ffffc9000ed6ef80 EFLAGS: 00000287
[ 1111.868232][    C0] RAX: ffffffff816b7557 RBX: ffffffff816b73fb RCX: 0000000000080000
[ 1111.868243][    C0] RDX: ffffc9000d0a2000 RSI: 000000000002b998 RDI: ffffffff8d126380
[ 1111.868254][    C0] RBP: ffffc9000ed6f070 R08: ffffffff911c1527 R09: 1ffffffff22382a4
[ 1111.868265][    C0] R10: dffffc0000000000 R11: fffffbfff22382a5 R12: dffffc0000000000
[ 1111.868276][    C0] R13: 1ffff92001daddf4 R14: 0000000000000050 R15: 0000000000000050
[ 1111.868288][    C0]  ? vprintk_emit+0x30b/0x610
[ 1111.868305][    C0]  ? vprintk_emit+0x467/0x610
[ 1111.868324][    C0]  ? vprintk_emit+0x30b/0x610
[ 1111.868341][    C0]  ? printk_sprint+0x460/0x460
[ 1111.868357][    C0]  ? _raw_spin_unlock_irqrestore+0xc0/0x120
[ 1111.868375][    C0]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1111.868391][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1111.868405][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1111.868426][    C0]  _printk+0xde/0x130
[ 1111.868443][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1111.868463][    C0]  ? load_image+0x400/0x400
[ 1111.868481][    C0]  ? __nla_validate_parse+0xbd/0x2ea0
[ 1111.868499][    C0]  __nla_validate_parse+0x2672/0x2ea0
[ 1111.868513][    C0]  ? genl_family_rcv_msg_doit+0xce/0x310
[ 1111.868528][    C0]  ? genl_rcv_msg+0x619/0x7a0
[ 1111.868541][    C0]  ? netlink_rcv_skb+0x241/0x4d0
[ 1111.868568][    C0]  ? __nla_validate+0x50/0x50
[ 1111.868600][    C0]  __nla_parse+0x40/0x50
[ 1111.868615][    C0]  genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1111.868634][    C0]  genl_family_rcv_msg_doit+0xce/0x310
[ 1111.868649][    C0]  ? end_current_label_crit_section+0x170/0x170
[ 1111.868669][    C0]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1111.868686][    C0]  ? apparmor_capable+0x137/0x1a0
[ 1111.868703][    C0]  ? bpf_lsm_capable+0x9/0x10
[ 1111.868722][    C0]  ? security_capable+0x89/0xb0
[ 1111.868742][    C0]  genl_rcv_msg+0x619/0x7a0
[ 1111.868759][    C0]  ? genl_bind+0x360/0x360
[ 1111.868772][    C0]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1111.868797][    C0]  ? kasan_check_range+0x169/0x290
[ 1111.868818][    C0]  netlink_rcv_skb+0x241/0x4d0
[ 1111.868838][    C0]  ? genl_bind+0x360/0x360
[ 1111.868852][    C0]  ? netlink_ack+0x1180/0x1180
[ 1111.868876][    C0]  ? __lock_acquire+0x7d40/0x7d40
[ 1111.868896][    C0]  ? down_read+0x1ac/0x2e0
[ 1111.868910][    C0]  genl_rcv+0x28/0x40
[ 1111.868923][    C0]  netlink_unicast+0x751/0x8d0
[ 1111.868947][    C0]  netlink_sendmsg+0x8d0/0xbf0
[ 1111.868970][    C0]  ? netlink_getsockopt+0x590/0x590
[ 1111.868994][    C0]  ? netlink_getsockopt+0x590/0x590
[ 1111.869014][    C0]  ____sys_sendmsg+0x5ba/0x960
[ 1111.869031][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1111.869047][    C0]  ? __sys_sendmsg_sock+0x30/0x30
[ 1111.869065][    C0]  ? ___sys_sendmsg+0x28b/0x360
[ 1111.869088][    C0]  ___sys_sendmsg+0x2a6/0x360
[ 1111.869105][    C0]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1111.869122][    C0]  ? irqentry_enter+0x37/0x50
[ 1111.869154][    C0]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1111.869169][    C0]  ? __x64_sys_sendmsg+0x80/0x80
[ 1111.869190][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1111.869207][    C0]  do_syscall_64+0x55/0xa0
[ 1111.869227][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1111.869243][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1111.869260][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1111.869276][    C0] RIP: 0033:0x7f71e4b9c799
[ 1111.869288][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1111.869300][    C0] RSP: 002b:00007f71e5a3d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1111.869314][    C0] RAX: ffffffffffffffda RBX: 00007f71e4e15fa0 RCX: 00007f71e4b9c799
[ 1111.869325][    C0] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[ 1111.869335][    C0] RBP: 00007f71e4c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1111.869344][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1111.869353][    C0] R13: 00007f71e4e16038 R14: 00007f71e4e15fa0 R15: 00007ffdc0ca2a28
[ 1111.869371][    C0]  </TASK>
[ 1111.870178][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 1111.870188][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[ 1111.870207][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1111.870217][   T29] Call Trace:
[ 1111.870225][   T29]  <TASK>
[ 1111.870232][   T29]  dump_stack_lvl+0x18c/0x250
[ 1111.870263][   T29]  ? show_regs_print_info+0x20/0x20
[ 1111.870289][   T29]  ? load_image+0x400/0x400
[ 1111.870324][   T29]  panic+0x2dc/0x730
[ 1111.870344][   T29]  ? schedule_preempt_disabled+0x20/0x20
[ 1111.870382][   T29]  ? bpf_jit_dump+0xd0/0xd0
[ 1111.870402][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[ 1111.870428][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[ 1111.870453][   T29]  watchdog+0xf7c/0xf80
[ 1111.870478][   T29]  ? watchdog+0x1e1/0xf80
[ 1111.870508][   T29]  kthread+0x2fa/0x390
[ 1111.870525][   T29]  ? hungtask_pm_notify+0x90/0x90
[ 1111.870549][   T29]  ? kthread_blkcg+0xd0/0xd0
[ 1111.870568][   T29]  ret_from_fork+0x48/0x80
[ 1111.870589][   T29]  ? kthread_blkcg+0xd0/0xd0
[ 1111.870608][   T29]  ret_from_fork_asm+0x11/0x20
[ 1111.870645][   T29]  </TASK>
[ 1111.870783][   T29] Kernel Offset: disabled