last executing test programs:

3.648657158s ago: executing program 2 (id=1322):
r0 = socket$kcm(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={&(0x7f00000001c0), 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
close(0xffffffffffffffff)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000100)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, 0x0, 0x0)
r4 = openat$cgroup_freezer_state(r2, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='THAWED\x00', 0x7)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
recvmsg$kcm(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, 0x0, &(0x7f0000000300)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='xen_mc_extend_args\x00', r5}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003800000038000000030000000100000000000001000000000000000000000000000000010500000010000000000000020000000300000000010000"], 0x0, 0x53}, 0x28)
r6 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, r1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x4}, 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x890b, &(0x7f0000000000))
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)

2.918806073s ago: executing program 1 (id=1329):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="5c00000012006bab9a3fc93328d86e17aa0a876c1d0048007ea60864160aaa65040029a4821a0038c13c0d1226a0e69c2dd443a6cb040000b1d20836cd3841e13c2e6e00006a137705c566054a89a390577904ffd161db", 0x57}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20008000)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002340)=""/274, 0x112}, {&(0x7f0000000340)=""/237, 0xed}, {&(0x7f0000002580)=""/4028, 0xfbc}, {&(0x7f0000000540)=""/197, 0xc5}, {&(0x7f0000000d40)=""/4077, 0xfed}, {&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000940)=""/205, 0xcd}, {&(0x7f00000000c0)=""/182, 0xb6}, {&(0x7f0000001fc0)=""/148, 0x94}, {&(0x7f0000001f00)=""/151, 0x97}], 0xa}, 0x2100)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900}, 0x0)

2.798946865s ago: executing program 3 (id=1331):
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x1e37cf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x401, 0x200, 0x0, 0x7, 0x0, 0x100}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8001}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = socket$kcm(0x10, 0x2, 0x4)
r3 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000580)='syz0\x00', 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)={@cgroup=r3, r1, 0x2e, 0x20}, 0x20)
close(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000002a80)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x1}, 0x50)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x10, 0x17, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b703000000000000850000000f000000bf09000000000000550901000074f6967d00000000000000180100002020702500000000002020207baaf8ff00000000bda100000000000027010000f8ffffffb702000008000000b7030000000000002500000006000000be91000000000000b502ecffffff00008500000005000000b70000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x3, 0x0}, 0x30004001)

2.680784768s ago: executing program 2 (id=1332):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffff}}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0) (async)
socket$kcm(0x10, 0x2, 0x10) (async)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0x1}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x6, 0x0, 0xffda, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) (async)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) (async)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0xcb, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x3}, 0x100e64, 0xc78, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1fffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x200000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) (async, rerun: 64)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x0) (rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1d, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x200}) (async)
socketpair(0x1, 0x1, 0x1, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8946, &(0x7f0000000080))
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r7) (async, rerun: 64)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r5, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x8, 0xffffffffffffff09, 0x0}}, 0x10) (async, rerun: 64)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00', 0x10})

2.430363523s ago: executing program 2 (id=1333):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x6, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000640)="2e00000011008188040f80ec59acbc04005e140602000000000e0027001000004556df17f9000200000000000000", 0x2e}], 0x1}, 0x0)
r5 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r5, 0x29, 0x24, &(0x7f00000000c0), 0x4)
r6 = getpid()
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xe7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x89ca}, 0x4041, 0x200000000000, 0x0, 0x9}, r6, 0x0, 0xffffffffffffffff, 0xa)
r7 = getpid()
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2dd2f3e5, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4000}, r7, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008dffff"})

1.936938052s ago: executing program 1 (id=1335):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x25, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000001180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x79, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmsg$kcm(r0, &(0x7f0000001340)={0x0, 0x0, 0x0}, 0x40010102)
socket$kcm(0x10, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000ee, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r2 = socket$kcm(0x11, 0x2, 0x300)
setsockopt$sock_attach_bpf(r2, 0x107, 0xd, &(0x7f00000000c0), 0x4f)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x6a, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x33}}, &(0x7f0000000480)='GPL\x00'}, 0x80)
r4 = socket$kcm(0x28, 0x1, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3c, &(0x7f0000000000), 0x4)

1.936791912s ago: executing program 2 (id=1342):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, 0x0, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x1, 0x1, 0x0, 0x0, 0x0, 0xbc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000080), 0x8101000000000000}, 0x5, 0x0, 0x0, 0x0, 0x4, 0xfffffffd, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

1.799315895s ago: executing program 3 (id=1336):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000380)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x6, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000640)="2e00000011008188040f80ec59acbc04005e140602000000000e0027001000004556df17f9000200000000000000", 0x2e}], 0x1}, 0x0)
r4 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r4, 0x29, 0x24, &(0x7f00000000c0), 0x4)
r5 = getpid()
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xe7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x89ca}, 0x4041, 0x200000000000, 0x0, 0x9}, r5, 0x0, 0xffffffffffffffff, 0xa)
r6 = getpid()
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2dd2f3e5, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4000}, r6, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008dffff"})

1.798617505s ago: executing program 1 (id=1345):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="5c00000012006bab9a3fc93328d86e17aa0a876c1d0048007ea60864160aaa65040029a4821a0038c13c0d1226a0e69c2dd443a6cb040000b1d20836cd3841e13c2e6e00006a137705c566054a89a390577904ffd161dbf3bfc3", 0x5a}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20008000)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000002e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)

1.609058659s ago: executing program 3 (id=1337):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x23, 0x2, 0x0)
recvmsg$kcm(r1, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x60)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000a40)=0xffffffffffffffff, 0x12)
recvmsg$kcm(r0, &(0x7f0000000980)={&(0x7f00000002c0)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000240)=""/56, 0x38}, {&(0x7f0000000440)=""/253, 0xfd}, {&(0x7f0000000540)=""/235, 0xeb}, {&(0x7f0000000340)=""/85, 0x55}, {&(0x7f00000007c0)=""/222, 0xde}, {&(0x7f0000000680)=""/27, 0x1b}], 0x6, &(0x7f00000008c0)=""/184, 0xb8}, 0x2000)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xffffffffffffffff, 0x7}, 0x104101, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32, @ANYBLOB="feffff00000000000000000000000000000030dae37aedbb0803e172418a53853667b76bfd0ffd3bd99420d4f7b6b72f9fdbc9f1a959aae3c1666b46c6ad116053372cd3150aa205fc8e500c906064206764fab51fe9117c1a05af659feac9a06403a56383f2e037be2e9a99ca7c15c7f2de0603e008ee3f18d38424", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000ff7f00"/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000200)=0xa00, &(0x7f00000003c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000ff08ffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000740)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x5, 0x5, &(0x7f0000000b80)=ANY=[@ANYRESDEC=r6, @ANYRES32=r4, @ANYRESDEC=r3, @ANYRES16=r3, @ANYRES32=r5, @ANYRES8=r2], &(0x7f0000000280)='syzkaller\x00', 0x800000, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.empty_time\x00', 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000001540)=ANY=[@ANYBLOB="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"], 0x0, 0x4a, 0x0, 0x1, 0x3e}, 0x28)
ioctl$sock_kcm_SIOCKCMCLONE(r8, 0x89e2, &(0x7f00000001c0)={<r9=>0xffffffffffffffff})
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000a00)=@o_path={&(0x7f00000009c0)='./file0\x00', 0x0, 0x10, r9}, 0x18)
r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x2080, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r12, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r7)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000014c0)={r7, 0x0, 0xda, 0x76, &(0x7f00000011c0)="3b092d0ac7897d1f65aa6906d5d63d12859c589674e1751d86142024c63710a2d5c3076d74e4f49eaa0c5f7de7d8864579783ae6be4dbd8268ad01c3b5911bc71b94b0ade42215820b99c961131625b9e1292ae395e819fa3b2d5fd77a11eeb7a4764032c2b25261e74e685c4e63d1db870740932c77756e6a02f3d68a83ea8f9522f8b38d66e7566050dc8d5947db1d8b45a8477d71c4de8d1f676082b0d5e0ffa49fc9900c9c28e9d455d90fcbb961009572f977bdb1f5d256d35273f2d9b0d37ce40921528d2ac39dc54e2662c0a9299738a61e218effa7ed", &(0x7f0000001080)=""/118, 0x400, 0x0, 0xea, 0xc4, &(0x7f00000012c0)="38d4873b947f624ec86465037dcb2c78bc0c639508453f36c24364e0d899ef6079195e5432f35af1696f069ba914ed818ed0cf0fbb28878d40e3c43b6923f96dd80d5f03336fb56ff9f075d094d0b577cafbaff56d8ced3cd1becb9b010d28236e5ced342eef8bb8ddfbedee0c50f90bfe67b1f26d5b02318081534e4dd2c2f4d09b57a9f5d971bdf988e648051579efedcadd9621c3d2c83239a8765e3746b0041f9f3d13d9ad3afbe18372cdfc7ee36e1ed0ab980e8ee1734b9e9f79e4b8af60febb820cc054e77aaef644e3f966ddb05ffc7ebb4a9656903ec0eae161c243a4af92329400ae74a606", &(0x7f00000013c0)="c0d50518fb763b39811ec67f359af2c3f3ef4e545ad98f20468a20be3117474fdcd59fc44a4ebbd69618dd155e955f2cc60fcbb56b15e39b7ec07faf5df006e564568190e174720a3461c5e81e8c6a78d930e25a4e3e3ece007032e6f7e922c484ed5e5fb324a90c5177a24cd9af3a39afb801496da57e3fd0a4cd5f92c095f133fbb9b362c70e0ff28c5c9219041bf9d3da762a63111bf842323f43051dabe4c2b4381257b078cdbc10815fcf4bedb67af96d8d97d63c13089c580dabb1e35c1c840432", 0x1, 0x0, 0x80000000}, 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d80)={r7, 0xe0, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000740), ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x3, 0x5, &(0x7f0000000780)=[0x0, 0x0, 0x0], &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6f, &(0x7f0000000b80), 0x0, 0x10, &(0x7f0000000bc0), &(0x7f0000000c00), 0x8, 0x9b, 0x8, 0x8, &(0x7f0000000c40)}}, 0x10)
close(r10)
sendmsg$sock(r8, &(0x7f0000001000)={&(0x7f0000000dc0)=@ll={0x11, 0x3, r13, 0x1, 0x4}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000e40)="f902dcd34555389aeac9e97f387e8f35121fbb1bc01334892aa04c5fabd14eff01f8e47f098d00ba5c331ddef16e491f04cfbca2befd01ea6fcfc7c94434a91a4f2ad3cbb50e42b00ad6ef2a07374fe932f889583a1f00449cf31a40be294f3a96be9e92c3b6febd775eed29d8c9e50fad706f95e3ce147d10cbaa116ef767570affdb03d0f0a4aa4418a29dbdd0391f4a2b04615016cbe52432b5b9a9cf61aca8c84df382e28cb9fa52da9d2bed8357b514438b94c8686e1495c282e1a9e188ada2830456764b578f8fe1f5e3e1448a1c739be29115bd8b0b7d6ed0b87e51b67aae5a538e784f02e7363e3c79", 0xed}], 0x1, &(0x7f0000000f80)=[@timestamping={{0x14, 0x1, 0x25, 0x9}}, @mark={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x3f8d}}, @mark={{0x14, 0x1, 0x24, 0x1}}], 0x78}, 0x800)
ioctl$TUNSETCARRIER(r8, 0x400454e2, &(0x7f0000001040)=0x1)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003402e60000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60044084)

1.52739491s ago: executing program 0 (id=1338):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000400), &(0x7f00000001c0)}, 0x20)
r0 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @dev, 0x2}, 0xff32, 0x0}, 0xe07e872420dfefca)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00"/12], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="1808000003000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000b702000000000000739af8ff00000000b50a0200000000007a0af8ff00000000bf8900000000000007080000fffdffffbfa400000000000007040000f0ffffffc702", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0xfe, 0x4, 0x0, 0x4, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_bp={&(0x7f0000000380), 0xd}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x3, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a089, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}, 0x2018, 0x0, 0x0, 0x8, 0x1000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x7e8166965e22236a)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000000f5ff000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='tcp_cong_state_set\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[], &(0x7f0000000440)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='tcp_cong_state_set\x00', r4}, 0x10)
r5 = socket$kcm(0x2, 0x1, 0x106)
sendmsg$inet(r5, &(0x7f0000000080)={0x0, 0x3, 0x0}, 0x30004001)
r6 = socket$kcm(0x10, 0x3, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x2400c000)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r8, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x2}, {0x6, 0x9, 0x10}]})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000000000000611073000000000063013800000000009500090000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x85}, 0x52)

1.365658633s ago: executing program 0 (id=1339):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0xc}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f00000000c0)={0x6, 0x80, 0xec, 0x5, 0x40, 0xb, 0x0, 0x7fffffff, 0x81000, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, @perf_bp={0x0, 0xa}, 0x0, 0x7ff, 0x7, 0x8, 0x80000000000081, 0x4, 0x5, 0x0, 0x1, 0x0, 0x7}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f0, &(0x7f0000000080))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x99, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r3)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r4, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r5=>0x0}, 0x8)
r6 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000002c0)=r5, 0x4)
bpf$LINK_DETACH(0x22, &(0x7f0000000340)=r6, 0x4)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r7=>0x0}, 0x8)
r8 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r7, 0x4)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r8, 0x0, 0x0}, 0x10)

1.232990116s ago: executing program 0 (id=1340):
r0 = socket$kcm(0x21, 0x2, 0x2)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x5452, &(0x7f00000006c0))
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x5000000000000, 0x2105, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x1000000000040}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x7, &(0x7f0000000040), 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831373f00000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffff010002000008000000b703002707000000a0000000060000000000"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x24}, 0x94)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="240000001e006bcd9e3fe3dc6e08000007000000000000007ea60864160af36504005425", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f00000002c0)='syz1\x00', 0x200002, 0x0)
openat$cgroup_procs(r5, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22101, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x1, @perf_bp={0x0}, 0x800, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x29, 0x2, 0x0)
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000070000000000000000040000dd5506000400000095a1270000000000"], &(0x7f0000000440)='syzkaller\x00', 0x9, 0x0, 0x0, 0x60880, 0x5e, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000640)=[{0x4, 0x1, 0x0, 0x9}, {0x0, 0x4, 0x7, 0x3}], 0x10, 0x74}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a00)={r7, 0xe0, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000740)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, &(0x7f0000000780)=[0x0], &(0x7f00000007c0)=[0x0, 0x0, 0x0], 0x0, 0xd4, &(0x7f0000000800)=[{}, {}, {}, {}, {}], 0x28, 0x0, 0x0, &(0x7f0000000880), 0x8, 0x78, 0x8, 0x8, &(0x7f00000008c0)}}, 0x10)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000080))
close(0xffffffffffffffff)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000001000))
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0x8b)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x5b7}, 0x100904, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)

1.158259127s ago: executing program 0 (id=1341):
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0xc) (async)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r0, 0x0, 0x1) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async, rerun: 32)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)=@generic={&(0x7f0000001340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8}, 0x18) (async)
r1 = socket$kcm(0x10, 0x2, 0x0) (async)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) (async)
write$cgroup_subtree(r1, 0x0, 0x82d7)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r2 = socket$kcm(0x18, 0x0, 0x2)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, 0x0) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10) (async)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) (async)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='signal_deliver\x00', r4}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) (async)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)=ANY=[@ANYRESHEX], 0x50)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz1\x00', 0x1ff) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xf, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffe}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x700}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3a154663ef458f75}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r6}, 0xc)

1.05175226s ago: executing program 0 (id=1343):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="5c00000012006bab9a3fc93328d86e17aa0a876c1d0048007ea60864160aaa65040029a4821a0038c13c0d1226a0e69c2dd443a6cb040000b1d20836cd3841e13c2e6e00006a137705c566054a89a390577904ffd161db", 0x57}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20008000)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002340)=""/274, 0x112}, {&(0x7f0000000340)=""/237, 0xed}, {&(0x7f0000002580)=""/4028, 0xfbc}, {&(0x7f0000000540)=""/197, 0xc5}, {&(0x7f0000000d40)=""/4077, 0xfed}, {&(0x7f0000000680)=""/198, 0xc6}, {&(0x7f0000000940)=""/205, 0xcd}, {&(0x7f00000000c0)=""/182, 0xb6}, {&(0x7f0000001fc0)=""/148, 0x94}, {&(0x7f0000001f00)=""/151, 0x97}], 0xa}, 0x2100)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900}, 0x0)

1.04550222s ago: executing program 2 (id=1344):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001b00)=""/4067, 0xfe3}, {&(0x7f00000047c0)=""/4069, 0xfe5}, {&(0x7f0000000180)=""/244, 0xf4}, {&(0x7f0000000c00)=""/142, 0x8e}, {&(0x7f0000000080)=""/166, 0xa6}, {&(0x7f00000002c0)=""/76, 0x4c}], 0x6}, 0x40000021)
sendmsg$inet(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000fc0)=[{&(0x7f00000016c0)="4c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3658f60a84c9f4d4938037e70e4509c5bb", 0x4c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
recvmsg$kcm(r0, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x40000002)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

909.113742ms ago: executing program 2 (id=1346):
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x1e37cf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x401, 0x200, 0x0, 0x7, 0x0, 0x100}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8001}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = socket$kcm(0x10, 0x2, 0x4)
r3 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000580)='syz0\x00', 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)={@cgroup=r3, r1, 0x2e, 0x20}, 0x20)
close(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x10, 0x17, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b703000000000000850000000f000000bf09000000000000550901000074f6967d00000000000000180100002020702500000000002020207baaf8ff00000000bda100000000000027010000f8ffffffb702000008000000b7030000000000002500000006000000be91000000000000b502ecffffff00008500000005000000b70000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x3, 0x0}, 0x30004001)

849.037773ms ago: executing program 1 (id=1347):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
r1 = socket$kcm(0xa, 0x922000000003, 0x11)
sendmsg$kcm(r1, &(0x7f0000000100)={&(0x7f0000000880)=@l2tp6={0xa, 0x1100, 0x2, @mcast1}, 0x80, 0x0}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000069000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0x2000000, 0xe, 0x0, &(0x7f00000001c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}, 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x541b, 0x0)

644.029768ms ago: executing program 3 (id=1348):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801004800000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="05"], 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000540)={@map=r0, 0x5, 0x0, 0x2af2, &(0x7f0000000080)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0x1, 0x58, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x9, [@enum={0x4, 0x2, 0x0, 0x6, 0x4, [{0xc}, {0x10, 0x9}]}, @type_tag={0xd, 0x0, 0x0, 0x12, 0x5}, @var={0x6, 0x0, 0x0, 0xe, 0x1}, @ptr={0x2, 0x0, 0x0, 0x2, 0x5}]}, {0x0, [0x0, 0x2e, 0x0, 0x5f, 0x5f, 0x6f, 0x0]}}, &(0x7f00000004c0)=""/109, 0x65, 0x6d, 0x0, 0x22e4}, 0x28)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6c, 0x6c, 0x3, [@volatile={0xa, 0x0, 0x0, 0x9, 0x5}, @typedef={0x1, 0x0, 0x0, 0x8, 0x2}, @struct={0xb, 0x3, 0x0, 0x4, 0x0, 0x3800, [{0x10, 0x5, 0xb}, {0x0, 0x2, 0x6}, {0x8, 0x5, 0xeb0}]}, @fwd={0x1}, @restrict={0x5}, @restrict]}, {0x0, [0x30]}}, &(0x7f0000000640)=""/92, 0x87, 0x5c, 0x0, 0x8}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@bloom_filter={0x1e, 0x9, 0x1000, 0x4, 0x124, r0, 0x2, '\x00', r2, r3, 0x1, 0x4, 0x4, 0xc}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)="fc8af1", &(0x7f00000000c0), 0x5, r4, 0x4}, 0x38)

576.841879ms ago: executing program 1 (id=1349):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000400), &(0x7f00000001c0)}, 0x20)
r0 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @dev, 0x2}, 0xff32, 0x0}, 0xe07e872420dfefca)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00"/12], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="1808000003000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000b702000000000000739af8ff00000000b50a0200000000007a0af8ff00000000bf8900000000000007080000fffdffffbfa400000000000007040000f0ffffffc702", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0xfe, 0x4, 0x0, 0x4, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_bp={&(0x7f0000000380), 0xd}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x3, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a089, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}, 0x2018, 0x0, 0x0, 0x8, 0x1000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x7e8166965e22236a)
write$cgroup_devices(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000000f5ff000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='tcp_cong_state_set\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[], &(0x7f0000000440)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='tcp_cong_state_set\x00', r4}, 0x10)
r5 = socket$kcm(0x2, 0x1, 0x106)
sendmsg$inet(r5, &(0x7f0000000080)={0x0, 0x3, 0x0}, 0x30004001)
r6 = socket$kcm(0x10, 0x3, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x2400c000)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r8, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x2}, {0x6, 0x9, 0x10}]})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000000000000611073000000000063013800000000009500090000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x85}, 0x52)

368.995403ms ago: executing program 3 (id=1350):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000100000000000000000000180100002020000200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000008000000850000000600000085000000a00000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/31], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x241a2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x3, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}, 0x0, 0x6, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

246.267815ms ago: executing program 1 (id=1351):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x20000000000005, 0x7ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff0000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x10}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8}, 0x94)
socket$kcm(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000604000000002e"], 0x0, 0x37}, 0x20)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYRES16=r2], 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000d"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r4}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000040)=ANY=[], 0x20)

112.497328ms ago: executing program 3 (id=1352):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x24, 0x12506, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x7602, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = socket$kcm(0xa, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x401c5820, &(0x7f0000000000)=0x8000)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000680)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x6781, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x3}, 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000008c0)={r0, 0x58, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x1b, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x28c}, [@jmp={0x5, 0x1, 0x44ccd03ec5aed5f6, 0x2, 0x7, 0xfffffffffffffff4, 0x1d}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @generic={0x10, 0xd, 0x0, 0x7fff, 0x1}, @generic={0x7, 0x9, 0xf, 0x7ab5, 0x2}, @map_fd={0x18, 0x0, 0x1, 0x0, r4}]}, &(0x7f0000000440)='GPL\x00', 0xff, 0x3b, &(0x7f0000000800)=""/59, 0x41100, 0x5, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000900)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000940)={0x5, 0x9, 0x83a6, 0x8}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000980)=[{0x1, 0x3, 0x10}], 0x10, 0x8}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x14, 0x4, 0x4, 0x2}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={&(0x7f00000002c0)="8f148abfee445093f33a21f334d9f915ffc562a5d64845ae0e452028d6079eca81731a61f8de8240b16bc41fc720650c9e7f01482439967fd8e479dc640217114e8399c1f4100c30ff96c62f3c0adb2bad94291f8d2476bf19ad99a2b60a2ede2e7dad1b7cc48a33b605de8524b3e712d5faf5fcfdc77661a74e42a9692aa6543bce7c973772262573a41b0f0829098ccb28fb7346e1151816e649d4c90ad3bd515f2b6b4546e15036a046d03d3f11b22486bcec69e2833f9cd838e325c41de115b59967547aeacd0b974f53869998caa7b271fa3f5a09c781a1830d9b0b1c9031b64761369291c4", &(0x7f00000003c0)=""/111, &(0x7f00000000c0)="966db0c394f734aff7bebfd8e8956da61fc5fb6de805dc4089f987ac65", &(0x7f0000000540)="e88cf4aa07be17f17d3ac145db4d9ec766206571d17bd5a55251dd8d030b5375098b4b475221e535143b00f7de97eb44ce18688e51b7aa9769b76509a6fc059fe9106318a91a5b481f822435fd1754d436de312d21789dcbe71628e6522b7f61592a1ff155feaf7eff56bb5062d9b5a3a7e46ecb87915d9b9dd3b56e0eddf05ca429f5f29cc7ae9f1fd4e6", 0x9, r6}, 0x38)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r6}, &(0x7f0000000500), &(0x7f0000000600)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='signal_deliver\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x24, 0x12506, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x7602, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) (async)
socket$kcm(0xa, 0x1, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0) (async)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x401c5820, &(0x7f0000000000)=0x8000) (async)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000680)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x6781, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x3}, 0x50) (async)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000008c0)={r0, 0x58, &(0x7f0000000840)}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x1b, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x28c}, [@jmp={0x5, 0x1, 0x44ccd03ec5aed5f6, 0x2, 0x7, 0xfffffffffffffff4, 0x1d}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @generic={0x10, 0xd, 0x0, 0x7fff, 0x1}, @generic={0x7, 0x9, 0xf, 0x7ab5, 0x2}, @map_fd={0x18, 0x0, 0x1, 0x0, r4}]}, &(0x7f0000000440)='GPL\x00', 0xff, 0x3b, &(0x7f0000000800)=""/59, 0x41100, 0x5, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000900)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000940)={0x5, 0x9, 0x83a6, 0x8}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000980)=[{0x1, 0x3, 0x10}], 0x10, 0x8}, 0x94) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x14, 0x4, 0x4, 0x2}, 0x48) (async)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={&(0x7f00000002c0)="8f148abfee445093f33a21f334d9f915ffc562a5d64845ae0e452028d6079eca81731a61f8de8240b16bc41fc720650c9e7f01482439967fd8e479dc640217114e8399c1f4100c30ff96c62f3c0adb2bad94291f8d2476bf19ad99a2b60a2ede2e7dad1b7cc48a33b605de8524b3e712d5faf5fcfdc77661a74e42a9692aa6543bce7c973772262573a41b0f0829098ccb28fb7346e1151816e649d4c90ad3bd515f2b6b4546e15036a046d03d3f11b22486bcec69e2833f9cd838e325c41de115b59967547aeacd0b974f53869998caa7b271fa3f5a09c781a1830d9b0b1c9031b64761369291c4", &(0x7f00000003c0)=""/111, &(0x7f00000000c0)="966db0c394f734aff7bebfd8e8956da61fc5fb6de805dc4089f987ac65", &(0x7f0000000540)="e88cf4aa07be17f17d3ac145db4d9ec766206571d17bd5a55251dd8d030b5375098b4b475221e535143b00f7de97eb44ce18688e51b7aa9769b76509a6fc059fe9106318a91a5b481f822435fd1754d436de312d21789dcbe71628e6522b7f61592a1ff155feaf7eff56bb5062d9b5a3a7e46ecb87915d9b9dd3b56e0eddf05ca429f5f29cc7ae9f1fd4e6", 0x9, r6}, 0x38) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r6}, &(0x7f0000000500), &(0x7f0000000600)=r2}, 0x20) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='signal_deliver\x00', r1}, 0x10) (async)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) (async)

0s ago: executing program 0 (id=1353):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, 0x0, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x1, 0x1, 0x0, 0x0, 0x0, 0xbc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000080), 0x8101000000000000}, 0x5, 0x0, 0x0, 0x0, 0x4, 0xfffffffd, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.764340][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.785031][ T1122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.792642][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.821650][ T5782] veth0_macvtap: entered promiscuous mode
[   93.851327][ T5782] veth1_macvtap: entered promiscuous mode
[   93.866512][ T5789] veth0_macvtap: entered promiscuous mode
[   93.902889][ T5789] veth1_macvtap: entered promiscuous mode
[   93.922001][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.931295][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.949402][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.959541][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.989048][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.019248][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.034278][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.060214][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.076323][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.087105][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.099296][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.117513][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.168442][ T5877] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1'.
[   94.190187][ T5782] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.199367][ T5782] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.208229][ T5782] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.219510][ T5782] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.268168][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.299144][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.339070][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.380782][    C1] hrtimer: interrupt took 144937 ns
[   94.388781][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.418894][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.439273][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.471860][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.544181][ T5877] warning: `syz.0.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   94.573821][ T5100] Bluetooth: hci1: command tx timeout
[   94.582770][ T5100] Bluetooth: hci2: command tx timeout
[   94.650306][ T5100] Bluetooth: hci0: command tx timeout
[   94.667937][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.688362][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.700708][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.715969][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.726603][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.733820][ T5882] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2'.
[   94.741226][ T5100] Bluetooth: hci3: command tx timeout
[   94.753550][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.767245][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.793226][ T5883] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2'.
[   94.805505][ T5883] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[   94.833845][ T5881] netlink: 'syz.1.2': attribute type 4 has an invalid length.
[   94.887996][ T5789] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.923736][ T5789] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.933247][ T5789] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.946534][ T5789] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.966435][ T5882] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2'.
[   95.008291][ T5885] netlink: set zone limit has 8 unknown bytes
[   95.014642][ T3455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.014697][ T3455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.176695][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.176718][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.346011][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.390696][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.474870][ T5888] netlink: 'syz.0.6': attribute type 29 has an invalid length.
[   95.514460][ T5888] netlink: 'syz.0.6': attribute type 29 has an invalid length.
[   95.597169][ T1122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.632125][ T1122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.236176][ T5905] netlink: 65055 bytes leftover after parsing attributes in process `syz.3.4'.
[   96.310990][ T5909] netlink: 72 bytes leftover after parsing attributes in process `syz.1.11'.
[   96.648925][ T5100] Bluetooth: hci2: command tx timeout
[   96.654482][ T5100] Bluetooth: hci1: command tx timeout
[   96.743492][ T5792] Bluetooth: hci0: command tx timeout
[   96.809211][ T5792] Bluetooth: hci3: command tx timeout
[   97.882684][ T5932] Driver unsupported XDP return value 0 on prog  (id 17) dev N/A, expect packet loss!
[  100.789792][ T5965] veth0_vlan: entered allmulticast mode
[  101.362931][ T5976] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  101.512065][ T5977] mac80211_hwsim hwsim5 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  101.803376][ T5979] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.32'.
[  102.256998][ T5987] netlink: 14 bytes leftover after parsing attributes in process `syz.0.35'.
[  103.516165][ T6005] Zero length message leads to an empty skb
[  103.677007][ T6007] can: request_module (can-proto-0) failed.
[  104.329577][   T48] wlan1: Trigger new scan to find an IBSS to join
[  104.525167][ T6017] netlink: 'syz.0.44': attribute type 10 has an invalid length.
[  104.743288][ T6017] team0: Port device wlan1 added
[  105.000438][ T6031] syzkaller0: entered promiscuous mode
[  105.006033][ T6031] syzkaller0: entered allmulticast mode
[  105.155247][ T6037] sctp: [Deprecated]: syz.1.50 (pid 6037) Use of struct sctp_assoc_value in delayed_ack socket option.
[  105.155247][ T6037] Use struct sctp_sack_info instead
[  105.455516][ T6041] syz.3.53 uses obsolete (PF_INET,SOCK_PACKET)
[  105.698377][ T6045] netlink: 'syz.1.55': attribute type 4 has an invalid length.
[  105.708161][ T6045] netlink: 152 bytes leftover after parsing attributes in process `syz.1.55'.
[  105.753396][ T6045] .`: renamed from bond0 (while UP)
[  105.988346][ T6045] netlink: 'syz.1.55': attribute type 39 has an invalid length.
[  106.025993][ T6045] veth0_macvtap: left promiscuous mode
[  106.358679][ T6050] netlink: 184920 bytes leftover after parsing attributes in process `syz.0.56'.
[  106.455246][ T6045] syz.1.55 (6045) used greatest stack depth: 20296 bytes left
[  106.527895][ T6053] netlink: 'syz.3.57': attribute type 2 has an invalid length.
[  106.956722][ T6062] netlink: 'syz.2.60': attribute type 21 has an invalid length.
[  107.043624][ T6062] netlink: 128 bytes leftover after parsing attributes in process `syz.2.60'.
[  107.383317][   T42] wlan1: Trigger new scan to find an IBSS to join
[  107.412147][ T6072] netlink: 56 bytes leftover after parsing attributes in process `syz.1.63'.
[  107.421296][ T6072] netlink: 56 bytes leftover after parsing attributes in process `syz.1.63'.
[  107.433393][ T6072] netlink: 56 bytes leftover after parsing attributes in process `syz.1.63'.
[  107.452180][ T6072] netlink: 56 bytes leftover after parsing attributes in process `syz.1.63'.
[  107.712903][ T6068] syz.3.61 (6068) used greatest stack depth: 19752 bytes left
[  107.794451][ T6078] IPv6: NLM_F_CREATE should be specified when creating new route
[  107.803118][ T6078] netlink: 1 bytes leftover after parsing attributes in process `syz.0.64'.
[  108.098368][ T6087] FAULT_INJECTION: forcing a failure.
[  108.098368][ T6087] name failslab, interval 1, probability 0, space 0, times 1
[  108.144234][ T6087] CPU: 0 PID: 6087 Comm: syz.1.68 Not tainted syzkaller #0
[  108.151629][ T6087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  108.161764][ T6087] Call Trace:
[  108.165107][ T6087]  <TASK>
[  108.168097][ T6087]  dump_stack_lvl+0x16c/0x230
[  108.172881][ T6087]  ? sctp_sendmsg+0x155c/0x27e0
[  108.177909][ T6087]  ? ___sys_sendmsg+0x220/0x290
[  108.182940][ T6087]  ? show_regs_print_info+0x20/0x20
[  108.188403][ T6087]  ? load_image+0x3b0/0x3b0
[  108.193022][ T6087]  should_fail_ex+0x39d/0x4d0
[  108.197768][ T6087]  should_failslab+0x9/0x20
[  108.202353][ T6087]  slab_pre_alloc_hook+0x59/0x310
[  108.207891][ T6087]  ? sctp_add_bind_addr+0x8c/0x360
[  108.213177][ T6087]  __kmem_cache_alloc_node+0x53/0x260
[  108.218696][ T6087]  ? sctp_add_bind_addr+0x8c/0x360
[  108.223850][ T6087]  kmalloc_trace+0x2a/0xe0
[  108.228304][ T6087]  sctp_add_bind_addr+0x8c/0x360
[  108.233322][ T6087]  sctp_copy_local_addr_list+0x30c/0x4e0
[  108.239268][ T6087]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  108.245028][ T6087]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  108.251840][ T6087]  ? sctp_v4_is_any+0x35/0x60
[  108.256847][ T6087]  ? sctp_copy_one_addr+0x8c/0x350
[  108.262717][ T6087]  sctp_bind_addr_copy+0xb3/0x3c0
[  108.267779][ T6087]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  108.274253][ T6087]  sctp_connect_new_asoc+0x2da/0x690
[  108.279589][ T6087]  ? __sctp_connect+0xd20/0xd20
[  108.284657][ T6087]  ? __local_bh_enable_ip+0x12e/0x1c0
[  108.290082][ T6087]  ? _local_bh_enable+0xa0/0xa0
[  108.295154][ T6087]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  108.301000][ T6087]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  108.306888][ T6087]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  108.312473][ T6087]  ? security_sctp_bind_connect+0x89/0xb0
[  108.318322][ T6087]  sctp_sendmsg+0x155c/0x27e0
[  108.323085][ T6087]  ? sctp_getsockopt+0xb60/0xb60
[  108.328068][ T6087]  ? aa_sk_perm+0x7fc/0x930
[  108.332989][ T6087]  ? aa_af_perm+0x2b0/0x2b0
[  108.337547][ T6087]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  108.344110][ T6087]  ? sock_rps_record_flow+0x19/0x400
[  108.349595][ T6087]  ? inet_send_prepare+0x260/0x260
[  108.354734][ T6087]  ? inet_sendmsg+0x7c/0x2f0
[  108.359431][ T6087]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  108.364841][ T6087]  ? security_socket_sendmsg+0x80/0xa0
[  108.370331][ T6087]  ? inet_send_prepare+0x260/0x260
[  108.375472][ T6087]  ____sys_sendmsg+0x5bf/0x950
[  108.380312][ T6087]  ? __asan_memset+0x22/0x40
[  108.385038][ T6087]  ? __sys_sendmsg_sock+0x30/0x30
[  108.390194][ T6087]  ? __import_iovec+0x5f2/0x860
[  108.395188][ T6087]  ? import_iovec+0x73/0xa0
[  108.399828][ T6087]  ___sys_sendmsg+0x220/0x290
[  108.404908][ T6087]  ? __sys_sendmsg+0x270/0x270
[  108.409841][ T6087]  ? __lock_acquire+0x7c80/0x7c80
[  108.415035][ T6087]  __se_sys_sendmsg+0x1a5/0x270
[  108.420114][ T6087]  ? __x64_sys_sendmsg+0x80/0x80
[  108.425258][ T6087]  ? lockdep_hardirqs_on+0x98/0x150
[  108.430501][ T6087]  do_syscall_64+0x55/0xb0
[  108.434948][ T6087]  ? clear_bhb_loop+0x40/0x90
[  108.439658][ T6087]  ? clear_bhb_loop+0x40/0x90
[  108.444478][ T6087]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.450609][ T6087] RIP: 0033:0x7f479058eec9
[  108.455062][ T6087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.474712][ T6087] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.483190][ T6087] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  108.491364][ T6087] RDX: 0000000000000000 RSI: 0000200000000f80 RDI: 0000000000000003
[  108.499461][ T6087] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  108.507661][ T6087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.516080][ T6087] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  108.524231][ T6087]  </TASK>
[  108.716901][ T1122] wlan1: Creating new IBSS network, BSSID d2:a4:13:a5:e8:8c
[  109.380027][ T6105] syz.1.74[6105] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.385540][ T6105] syz.1.74[6105] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.905857][ T6186] netlink: 184920 bytes leftover after parsing attributes in process `syz.2.119'.
[  113.705616][ T6201] netlink: set zone limit has 8 unknown bytes
[  113.770129][ T6197] netlink: 'syz.2.114': attribute type 29 has an invalid length.
[  113.779514][ T6197] netlink: 'syz.2.114': attribute type 29 has an invalid length.
[  114.178090][ T6206] netlink: 'syz.2.117': attribute type 4 has an invalid length.
[  114.205187][ T6206] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.117'.
[  114.232349][ T6206] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.117'.
[  114.248312][ T6206] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[  114.309907][ T6206] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.117'.
[  114.501166][ T6208] netlink: 'syz.1.118': attribute type 2 has an invalid length.
[  114.702791][ T6210] netlink: 'syz.2.120': attribute type 4 has an invalid length.
[  114.720503][ T6210] netlink: 152 bytes leftover after parsing attributes in process `syz.2.120'.
[  114.813483][ T6210] .`: renamed from bond0 (while UP)
[  115.091719][ T6210] netlink: 'syz.2.120': attribute type 39 has an invalid length.
[  115.141340][ T6210] veth0_macvtap: left promiscuous mode
[  116.111534][ T6227] netlink: 184920 bytes leftover after parsing attributes in process `syz.1.124'.
[  116.677729][ T6236] netlink: 'syz.3.128': attribute type 29 has an invalid length.
[  116.719595][ T6236] netlink: 'syz.3.128': attribute type 29 has an invalid length.
[  116.830985][ T6246] netlink: 'syz.0.131': attribute type 4 has an invalid length.
[  116.898665][ T6246] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.131'.
[  116.952061][ T6246] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.131'.
[  116.963690][ T6246] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[  117.049970][ T6246] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.131'.
[  117.081740][ T6249] netlink: 'syz.2.134': attribute type 2 has an invalid length.
[  117.334354][ T6251] netlink: 152 bytes leftover after parsing attributes in process `syz.3.137'.
[  117.536838][ T6251] .`: renamed from bond0 (while UP)
[  117.848088][ T6251] veth0_macvtap: left promiscuous mode
[  118.471014][ T6267] sctp: [Deprecated]: syz.2.141 (pid 6267) Use of struct sctp_assoc_value in delayed_ack socket option.
[  118.471014][ T6267] Use struct sctp_sack_info instead
[  118.523626][ T6268] syzkaller0: entered promiscuous mode
[  118.541199][ T6269] netlink: 184920 bytes leftover after parsing attributes in process `syz.3.142'.
[  118.551474][ T6268] syzkaller0: entered allmulticast mode
[  119.877625][ T6286] validate_nla: 2 callbacks suppressed
[  119.877643][ T6286] netlink: 'syz.0.149': attribute type 2 has an invalid length.
[  120.258561][ T6296] syzkaller0: entered promiscuous mode
[  120.265352][ T6296] syzkaller0: entered allmulticast mode
[  120.468981][ T6295] netlink: 'syz.0.152': attribute type 4 has an invalid length.
[  120.512018][ T6292] sctp: [Deprecated]: syz.3.154 (pid 6292) Use of struct sctp_assoc_value in delayed_ack socket option.
[  120.512018][ T6292] Use struct sctp_sack_info instead
[  120.538946][ T6295] netlink: 152 bytes leftover after parsing attributes in process `syz.0.152'.
[  120.615142][ T6295] .`: renamed from bond0 (while UP)
[  120.765373][ T6299] netlink: 'syz.0.152': attribute type 39 has an invalid length.
[  120.857025][ T6299] veth0_macvtap: left promiscuous mode
[  122.283594][ T6322] netlink: 'syz.2.166': attribute type 10 has an invalid length.
[  122.457064][ T6322] team0: Port device wlan1 added
[  122.618327][ T6329] netlink: 14 bytes leftover after parsing attributes in process `syz.3.167'.
[  123.207545][ T6332] can: request_module (can-proto-0) failed.
[  124.834775][ T6357] netlink: 'syz.1.178': attribute type 10 has an invalid length.
[  124.912678][ T6357] team0: Port device wlan1 added
[  125.317473][ T6372] netlink: 14 bytes leftover after parsing attributes in process `syz.1.182'.
[  126.285884][ T6381] can: request_module (can-proto-0) failed.
[  127.983613][ T6406] netlink: 'syz.1.195': attribute type 2 has an invalid length.
[  128.071323][ T6404] netlink: 'syz.3.192': attribute type 10 has an invalid length.
[  128.104442][ T6404] team0: Port device wlan1 added
[  128.165711][ T6409] netlink: 14 bytes leftover after parsing attributes in process `syz.2.196'.
[  128.519235][ T6414] netlink: 14 bytes leftover after parsing attributes in process `syz.3.198'.
[  128.801413][ T6416] can: request_module (can-proto-0) failed.
[  129.042012][ T6428] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.205'.
[  129.113770][ T6425] netlink: 14 bytes leftover after parsing attributes in process `syz.0.212'.
[  129.300155][   T77] wlan1: Trigger new scan to find an IBSS to join
[  129.543644][ T6437] netlink: 'syz.0.209': attribute type 2 has an invalid length.
[  129.702349][ T6439] mac80211_hwsim hwsim7 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  130.456104][ T6451] netlink: 14 bytes leftover after parsing attributes in process `syz.2.215'.
[  130.583180][ T6454] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.216'.
[  131.361056][ T6468] netlink: 14 bytes leftover after parsing attributes in process `syz.0.222'.
[  131.387885][ T6469] netlink: 'syz.1.221': attribute type 2 has an invalid length.
[  132.094343][ T6481] can: request_module (can-proto-0) failed.
[  132.259200][ T6484] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  132.329036][   T12] wlan1: Trigger new scan to find an IBSS to join
[  132.335731][   T77] wlan1: Trigger new scan to find an IBSS to join
[  133.274952][ T6498] veth0_vlan: entered allmulticast mode
[  133.310838][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  133.318074][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  133.435054][ T1122] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  133.530632][ T6506] netlink: 'syz.2.233': attribute type 2 has an invalid length.
[  133.566352][ T6511] netlink: 14 bytes leftover after parsing attributes in process `syz.3.236'.
[  134.070959][ T6516] can: request_module (can-proto-0) failed.
[  134.348938][ T1122] wlan1: Trigger new scan to find an IBSS to join
[  134.360127][ T6524] netlink: 'syz.0.247': attribute type 2 has an invalid length.
[  135.198453][ T6542] veth0_vlan: entered allmulticast mode
[  136.444895][ T6557] netlink: 'syz.2.253': attribute type 2 has an invalid length.
[  136.726516][ T6559] can: request_module (can-proto-0) failed.
[  137.376467][   T77] wlan1: Trigger new scan to find an IBSS to join
[  137.383911][ T6509] wlan1: Trigger new scan to find an IBSS to join
[  137.560136][ T6584] netlink: 'syz.2.266': attribute type 2 has an invalid length.
[  137.618132][ T6585] veth0_vlan: entered allmulticast mode
[  138.679762][ T6509] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  138.764528][ T6592] netlink: 14 bytes leftover after parsing attributes in process `syz.3.269'.
[  139.116633][ T6601] can: request_module (can-proto-0) failed.
[  140.167127][ T6622] netlink: 'syz.1.280': attribute type 2 has an invalid length.
[  140.616473][ T6631] netlink: 14 bytes leftover after parsing attributes in process `syz.1.282'.
[  140.806384][ T6635] can: request_module (can-proto-0) failed.
[  141.105250][ T6644] netlink: 14 bytes leftover after parsing attributes in process `syz.1.295'.
[  141.379440][   T12] wlan1: Trigger new scan to find an IBSS to join
[  142.314203][ T6509] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  142.519288][ T6664] can: request_module (can-proto-0) failed.
[  142.713475][ T6670] netlink: 14 bytes leftover after parsing attributes in process `syz.2.298'.
[  144.042400][ T6696] can: request_module (can-proto-0) failed.
[  145.240929][ T6705] netlink: 14 bytes leftover after parsing attributes in process `syz.3.310'.
[  146.998462][ T6730] can: request_module (can-proto-0) failed.
[  147.341454][ T6737] netlink: 14 bytes leftover after parsing attributes in process `syz.3.323'.
[  147.779859][ T6756] netlink: 72 bytes leftover after parsing attributes in process `syz.3.330'.
[  148.077665][ T6758] can: request_module (can-proto-0) failed.
[  148.164566][ T6764] netlink: 14 bytes leftover after parsing attributes in process `syz.3.335'.
[  148.580306][ T6770] netlink: 14 bytes leftover after parsing attributes in process `syz.2.345'.
[  149.557836][ T6792] netlink: 72 bytes leftover after parsing attributes in process `syz.0.344'.
[  149.825489][ T6793] can: request_module (can-proto-0) failed.
[  150.108644][ T6805] netlink: 14 bytes leftover after parsing attributes in process `syz.0.351'.
[  151.749603][ T6827] netlink: 72 bytes leftover after parsing attributes in process `syz.2.358'.
[  152.047393][ T6831] can: request_module (can-proto-0) failed.
[  152.173875][ T6837] netlink: 14 bytes leftover after parsing attributes in process `syz.1.362'.
[  153.171133][ T6868] netlink: 56 bytes leftover after parsing attributes in process `syz.2.373'.
[  153.199643][ T6868] netlink: 56 bytes leftover after parsing attributes in process `syz.2.373'.
[  153.237818][ T6868] netlink: 56 bytes leftover after parsing attributes in process `syz.2.373'.
[  153.293656][ T6868] netlink: 56 bytes leftover after parsing attributes in process `syz.2.373'.
[  153.542766][ T6872] netlink: 14 bytes leftover after parsing attributes in process `syz.2.376'.
[  153.792864][ T6876] can: request_module (can-proto-0) failed.
[  154.842033][ T6909] netlink: 14 bytes leftover after parsing attributes in process `syz.0.390'.
[  155.277214][ T6914] can: request_module (can-proto-0) failed.
[  155.503549][ T6923] netlink: 56 bytes leftover after parsing attributes in process `syz.3.396'.
[  155.512950][ T6923] netlink: 56 bytes leftover after parsing attributes in process `syz.3.396'.
[  155.875353][ T6931] netlink: 'syz.0.399': attribute type 21 has an invalid length.
[  156.463783][ T6946] netdevsim netdevsim3: Direct firmware load for Ö failed with error -2
[  156.499724][ T6946] netdevsim netdevsim3: Falling back to sysfs fallback for: Ö
[  156.689262][ T6948] can: request_module (can-proto-0) failed.
[  157.043958][ T6960] __nla_validate_parse: 8 callbacks suppressed
[  157.044225][ T6960] netlink: 65055 bytes leftover after parsing attributes in process `syz.0.410'.
[  157.112056][ T6962] can: request_module (can-proto-0) failed.
[  157.439685][ T6971] netlink: 'syz.1.412': attribute type 21 has an invalid length.
[  157.457046][ T6971] netlink: 128 bytes leftover after parsing attributes in process `syz.1.412'.
[  157.675061][ T6981] netlink: 14 bytes leftover after parsing attributes in process `syz.1.416'.
[  158.011122][ T6991] netlink: 56 bytes leftover after parsing attributes in process `syz.2.422'.
[  158.031581][ T6991] netlink: 56 bytes leftover after parsing attributes in process `syz.2.422'.
[  158.060731][ T6991] netlink: 56 bytes leftover after parsing attributes in process `syz.2.422'.
[  158.100103][ T6991] netlink: 56 bytes leftover after parsing attributes in process `syz.2.422'.
[  158.233013][ T6995] netdevsim netdevsim0: Direct firmware load for Ö failed with error -2
[  158.257665][ T6995] netdevsim netdevsim0: Falling back to sysfs fallback for: Ö
[  158.284086][ T6989] can: request_module (can-proto-0) failed.
[  158.997178][ T7012] netlink: 14 bytes leftover after parsing attributes in process `syz.2.429'.
[  159.337678][ T7025] netlink: 56 bytes leftover after parsing attributes in process `syz.3.436'.
[  159.359382][ T7025] netlink: 56 bytes leftover after parsing attributes in process `syz.3.436'.
[  159.435811][ T7021] can: request_module (can-proto-0) failed.
[  160.028942][ T7045] netdevsim netdevsim2: Direct firmware load for Ö failed with error -2
[  160.038101][ T7045] netdevsim netdevsim2: Falling back to sysfs fallback for: Ö
[  160.245749][ T7050] can: request_module (can-proto-0) failed.
[  160.716740][ T7064] FAULT_INJECTION: forcing a failure.
[  160.716740][ T7064] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  160.749726][ T7064] CPU: 0 PID: 7064 Comm: syz.0.453 Not tainted syzkaller #0
[  160.757151][ T7064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  160.767383][ T7064] Call Trace:
[  160.770736][ T7064]  <TASK>
[  160.773943][ T7064]  dump_stack_lvl+0x16c/0x230
[  160.778703][ T7064]  ? show_regs_print_info+0x20/0x20
[  160.784031][ T7064]  ? load_image+0x3b0/0x3b0
[  160.788796][ T7064]  ? __lock_acquire+0x7c80/0x7c80
[  160.793926][ T7064]  ? snprintf+0xdb/0x120
[  160.798527][ T7064]  should_fail_ex+0x39d/0x4d0
[  160.803319][ T7064]  _copy_to_user+0x2f/0xa0
[  160.807862][ T7064]  simple_read_from_buffer+0xe7/0x150
[  160.813525][ T7064]  proc_fail_nth_read+0x1e3/0x250
[  160.819084][ T7064]  ? proc_fault_inject_write+0x340/0x340
[  160.824854][ T7064]  ? fsnotify_perm+0x271/0x5e0
[  160.829811][ T7064]  ? proc_fault_inject_write+0x340/0x340
[  160.835549][ T7064]  vfs_read+0x27e/0x920
[  160.839829][ T7064]  ? kernel_read+0x1e0/0x1e0
[  160.844534][ T7064]  ? __fget_files+0x28/0x4d0
[  160.849231][ T7064]  ? __fget_files+0x44a/0x4d0
[  160.854215][ T7064]  ? __fdget_pos+0x2a3/0x330
[  160.858988][ T7064]  ? ksys_read+0x75/0x250
[  160.863428][ T7064]  ksys_read+0x147/0x250
[  160.867775][ T7064]  ? vfs_write+0x940/0x940
[  160.872287][ T7064]  ? lockdep_hardirqs_on+0x98/0x150
[  160.877589][ T7064]  do_syscall_64+0x55/0xb0
[  160.882176][ T7064]  ? clear_bhb_loop+0x40/0x90
[  160.887034][ T7064]  ? clear_bhb_loop+0x40/0x90
[  160.891829][ T7064]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  160.897992][ T7064] RIP: 0033:0x7f0ec9b8d8dc
[  160.902571][ T7064] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  160.922787][ T7064] RSP: 002b:00007f0eca9fd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  160.931380][ T7064] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8d8dc
[  160.939533][ T7064] RDX: 000000000000000f RSI: 00007f0eca9fd0a0 RDI: 0000000000000006
[  160.947590][ T7064] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  160.955641][ T7064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.963694][ T7064] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  160.971792][ T7064]  </TASK>
[  161.460871][ T7071] can: request_module (can-proto-0) failed.
[  162.362131][ T7103] can: request_module (can-proto-0) failed.
[  162.535403][ T7109] __nla_validate_parse: 18 callbacks suppressed
[  162.535424][ T7109] netlink: 56 bytes leftover after parsing attributes in process `syz.0.471'.
[  162.567467][ T7109] netlink: 56 bytes leftover after parsing attributes in process `syz.0.471'.
[  162.584901][ T7109] netlink: 56 bytes leftover after parsing attributes in process `syz.0.471'.
[  162.602170][ T7109] netlink: 56 bytes leftover after parsing attributes in process `syz.0.471'.
[  162.795899][ T7115] netlink: 14 bytes leftover after parsing attributes in process `syz.1.474'.
[  162.916001][ T7121] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[  162.989394][ T7122] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.478'.
[  163.011309][ T7122] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[  163.132419][ T7128] netlink: 'syz.1.479': attribute type 4 has an invalid length.
[  163.246871][ T7127] can: request_module (can-proto-0) failed.
[  163.490027][ T7144] netlink: 56 bytes leftover after parsing attributes in process `syz.3.485'.
[  163.499971][ T7144] netlink: 56 bytes leftover after parsing attributes in process `syz.3.485'.
[  163.510661][ T7144] netlink: 56 bytes leftover after parsing attributes in process `syz.3.485'.
[  163.540315][ T7144] netlink: 56 bytes leftover after parsing attributes in process `syz.3.485'.
[  164.036381][ T7158] netlink: 'syz.3.490': attribute type 21 has an invalid length.
[  164.067870][ T7158] IPv6: NLM_F_CREATE should be specified when creating new route
[  164.612631][ T7167] can: request_module (can-proto-0) failed.
[  165.518930][ T7190] netlink: 'syz.2.501': attribute type 21 has an invalid length.
[  165.985088][ T7198] can: request_module (can-proto-0) failed.
[  167.109849][ T7229] can: request_module (can-proto-0) failed.
[  167.503692][ T7245] FAULT_INJECTION: forcing a failure.
[  167.503692][ T7245] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.530882][ T7245] CPU: 1 PID: 7245 Comm: syz.1.523 Not tainted syzkaller #0
[  167.538364][ T7245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  167.548480][ T7245] Call Trace:
[  167.551899][ T7245]  <TASK>
[  167.554873][ T7245]  dump_stack_lvl+0x16c/0x230
[  167.559699][ T7245]  ? show_regs_print_info+0x20/0x20
[  167.565111][ T7245]  ? load_image+0x3b0/0x3b0
[  167.569778][ T7245]  ? __might_fault+0xaa/0x120
[  167.574776][ T7245]  ? __lock_acquire+0x7c80/0x7c80
[  167.579939][ T7245]  ? trace_event_raw_event_lock+0x230/0x230
[  167.586073][ T7245]  should_fail_ex+0x39d/0x4d0
[  167.591037][ T7245]  _copy_from_user+0x2f/0xe0
[  167.595832][ T7245]  get_user_ifreq+0x6b/0x180
[  167.600594][ T7245]  inet_ioctl+0x38d/0x4c0
[  167.604959][ T7245]  ? tomoyo_path_number_perm+0x1ba/0x590
[  167.610752][ T7245]  ? inet_shutdown+0x370/0x370
[  167.615546][ T7245]  ? slab_free_freelist_hook+0x130/0x1b0
[  167.621227][ T7245]  ? tomoyo_path_number_perm+0x477/0x590
[  167.626907][ T7245]  ? __kmem_cache_free+0xba/0x1f0
[  167.631990][ T7245]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  167.637494][ T7245]  ? packet_ioctl+0x25b/0x340
[  167.642250][ T7245]  sock_do_ioctl+0xd7/0x2f0
[  167.646910][ T7245]  ? sock_show_fdinfo+0xb0/0xb0
[  167.652017][ T7245]  sock_ioctl+0x623/0x7a0
[  167.656490][ T7245]  ? sock_poll+0x3d0/0x3d0
[  167.661055][ T7245]  ? bpf_lsm_file_ioctl+0x9/0x10
[  167.666131][ T7245]  ? security_file_ioctl+0x80/0xa0
[  167.671323][ T7245]  ? sock_poll+0x3d0/0x3d0
[  167.675904][ T7245]  __se_sys_ioctl+0xfd/0x170
[  167.680553][ T7245]  do_syscall_64+0x55/0xb0
[  167.685009][ T7245]  ? clear_bhb_loop+0x40/0x90
[  167.689835][ T7245]  ? clear_bhb_loop+0x40/0x90
[  167.694657][ T7245]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  167.700722][ T7245] RIP: 0033:0x7f479058eec9
[  167.705276][ T7245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.725125][ T7245] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  167.733711][ T7245] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  167.741804][ T7245] RDX: 0000200000000000 RSI: 000000000000891c RDI: 0000000000000007
[  167.749806][ T7245] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  167.757911][ T7245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.766104][ T7245] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  167.774312][ T7245]  </TASK>
[  167.833384][ T7247] __nla_validate_parse: 16 callbacks suppressed
[  167.833405][ T7247] netlink: 156 bytes leftover after parsing attributes in process `syz.2.524'.
[  168.164305][ T7256] netlink: 56 bytes leftover after parsing attributes in process `syz.0.528'.
[  168.198974][ T7256] netlink: 56 bytes leftover after parsing attributes in process `syz.0.528'.
[  168.226941][ T7256] netlink: 56 bytes leftover after parsing attributes in process `syz.0.528'.
[  168.275213][ T7256] netlink: 56 bytes leftover after parsing attributes in process `syz.0.528'.
[  168.642720][ T7261] can: request_module (can-proto-0) failed.
[  169.040021][ T7281] syz.0.539[7281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.040424][ T7281] syz.0.539[7281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.134028][ T7286] netlink: 56 bytes leftover after parsing attributes in process `syz.2.540'.
[  169.165119][ T7286] netlink: 56 bytes leftover after parsing attributes in process `syz.2.540'.
[  169.205314][ T7286] netlink: 56 bytes leftover after parsing attributes in process `syz.2.540'.
[  169.259833][ T7286] netlink: 56 bytes leftover after parsing attributes in process `syz.2.540'.
[  169.462537][ T7290] delete_channel: no stack
[  169.562066][ T7298] syz.2.544[7298] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.562877][ T7298] syz.2.544[7298] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.609954][ T7293] can: request_module (can-proto-0) failed.
[  169.851913][ T7304] syz.1.547[7304] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.852289][ T7304] syz.1.547[7304] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.936912][ T7304] FAULT_INJECTION: forcing a failure.
[  169.936912][ T7304] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.053041][ T7304] CPU: 1 PID: 7304 Comm: syz.1.547 Not tainted syzkaller #0
[  170.061029][ T7304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  170.071230][ T7304] Call Trace:
[  170.074556][ T7304]  <TASK>
[  170.077549][ T7304]  dump_stack_lvl+0x16c/0x230
[  170.082289][ T7304]  ? show_regs_print_info+0x20/0x20
[  170.087713][ T7304]  ? load_image+0x3b0/0x3b0
[  170.092458][ T7304]  ? __might_fault+0xaa/0x120
[  170.097245][ T7304]  ? __lock_acquire+0x7c80/0x7c80
[  170.102326][ T7304]  should_fail_ex+0x39d/0x4d0
[  170.107062][ T7304]  _copy_from_user+0x2f/0xe0
[  170.111880][ T7304]  __sys_bpf+0x1e9/0x800
[  170.116194][ T7304]  ? bpf_link_show_fdinfo+0x350/0x350
[  170.121627][ T7304]  ? lock_chain_count+0x20/0x20
[  170.126588][ T7304]  __x64_sys_bpf+0x7c/0x90
[  170.131055][ T7304]  do_syscall_64+0x55/0xb0
[  170.135604][ T7304]  ? clear_bhb_loop+0x40/0x90
[  170.140341][ T7304]  ? clear_bhb_loop+0x40/0x90
[  170.145245][ T7304]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  170.151208][ T7304] RIP: 0033:0x7f479058eec9
[  170.155760][ T7304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.176024][ T7304] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  170.184998][ T7304] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  170.193078][ T7304] RDX: 0000000000000094 RSI: 0000200000000600 RDI: 0000000000000005
[  170.201113][ T7304] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  170.209297][ T7304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.217323][ T7304] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  170.225536][ T7304]  </TASK>
[  170.420628][ T7315] netlink: 17279 bytes leftover after parsing attributes in process `syz.1.552'.
[  170.742463][ T7325] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  170.764691][ T7325] openvswitch: netlink: Message has 1 unknown bytes.
[  171.157873][ T7335] FAULT_INJECTION: forcing a failure.
[  171.157873][ T7335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.175990][ T7335] CPU: 0 PID: 7335 Comm: syz.1.559 Not tainted syzkaller #0
[  171.183379][ T7335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  171.193547][ T7335] Call Trace:
[  171.196933][ T7335]  <TASK>
[  171.200254][ T7335]  dump_stack_lvl+0x16c/0x230
[  171.205080][ T7335]  ? show_regs_print_info+0x20/0x20
[  171.210307][ T7335]  ? load_image+0x3b0/0x3b0
[  171.215016][ T7335]  ? __might_fault+0xaa/0x120
[  171.219724][ T7335]  ? __lock_acquire+0x7c80/0x7c80
[  171.224794][ T7335]  should_fail_ex+0x39d/0x4d0
[  171.230013][ T7335]  _copy_from_user+0x2f/0xe0
[  171.234762][ T7335]  __sys_bpf+0x1e9/0x800
[  171.239141][ T7335]  ? bpf_link_show_fdinfo+0x350/0x350
[  171.244687][ T7335]  ? lock_chain_count+0x20/0x20
[  171.249669][ T7335]  __x64_sys_bpf+0x7c/0x90
[  171.254111][ T7335]  do_syscall_64+0x55/0xb0
[  171.258642][ T7335]  ? clear_bhb_loop+0x40/0x90
[  171.263378][ T7335]  ? clear_bhb_loop+0x40/0x90
[  171.268122][ T7335]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  171.274170][ T7335] RIP: 0033:0x7f479058eec9
[  171.278621][ T7335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.298531][ T7335] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  171.307087][ T7335] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  171.315180][ T7335] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  171.323295][ T7335] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  171.332034][ T7335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.340065][ T7335] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  171.348258][ T7335]  </TASK>
[  173.229416][ T7356] FAULT_INJECTION: forcing a failure.
[  173.229416][ T7356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.312182][ T7356] CPU: 1 PID: 7356 Comm: syz.2.566 Not tainted syzkaller #0
[  173.319584][ T7356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  173.329790][ T7356] Call Trace:
[  173.333214][ T7356]  <TASK>
[  173.336264][ T7356]  dump_stack_lvl+0x16c/0x230
[  173.341031][ T7356]  ? show_regs_print_info+0x20/0x20
[  173.346482][ T7356]  ? load_image+0x3b0/0x3b0
[  173.351126][ T7356]  ? __lock_acquire+0x7c80/0x7c80
[  173.356393][ T7356]  ? snprintf+0xdb/0x120
[  173.360703][ T7356]  should_fail_ex+0x39d/0x4d0
[  173.365543][ T7356]  _copy_to_user+0x2f/0xa0
[  173.370058][ T7356]  simple_read_from_buffer+0xe7/0x150
[  173.375517][ T7356]  proc_fail_nth_read+0x1e3/0x250
[  173.380596][ T7356]  ? proc_fault_inject_write+0x340/0x340
[  173.386291][ T7356]  ? fsnotify_perm+0x271/0x5e0
[  173.391202][ T7356]  ? proc_fault_inject_write+0x340/0x340
[  173.396978][ T7356]  vfs_read+0x27e/0x920
[  173.401194][ T7356]  ? kernel_read+0x1e0/0x1e0
[  173.405852][ T7356]  ? __fget_files+0x28/0x4d0
[  173.410510][ T7356]  ? __fget_files+0x44a/0x4d0
[  173.415422][ T7356]  ? __fdget_pos+0x2a3/0x330
[  173.420206][ T7356]  ? ksys_read+0x75/0x250
[  173.424601][ T7356]  ksys_read+0x147/0x250
[  173.429111][ T7356]  ? vfs_write+0x940/0x940
[  173.433672][ T7356]  ? lockdep_hardirqs_on+0x98/0x150
[  173.438934][ T7356]  do_syscall_64+0x55/0xb0
[  173.443398][ T7356]  ? clear_bhb_loop+0x40/0x90
[  173.448110][ T7356]  ? clear_bhb_loop+0x40/0x90
[  173.452836][ T7356]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  173.458871][ T7356] RIP: 0033:0x7f2cf358d8dc
[  173.463380][ T7356] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  173.483376][ T7356] RSP: 002b:00007f2cf4351030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  173.491936][ T7356] RAX: ffffffffffffffda RBX: 00007f2cf37e6180 RCX: 00007f2cf358d8dc
[  173.500036][ T7356] RDX: 000000000000000f RSI: 00007f2cf43510a0 RDI: 0000000000000008
[  173.508083][ T7356] RBP: 00007f2cf4351090 R08: 0000000000000000 R09: 0000000000000000
[  173.516089][ T7356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.524114][ T7356] R13: 00007f2cf37e6218 R14: 00007f2cf37e6180 R15: 00007ffd1edeb3a8
[  173.532515][ T7356]  </TASK>
[  173.953480][ T7366] netlink: 'syz.2.570': attribute type 153 has an invalid length.
[  173.966595][ T7366] __nla_validate_parse: 11 callbacks suppressed
[  173.966638][ T7366] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.570'.
[  174.000074][ T7372] FAULT_INJECTION: forcing a failure.
[  174.000074][ T7372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  174.041570][ T7372] CPU: 1 PID: 7372 Comm: syz.0.572 Not tainted syzkaller #0
[  174.048949][ T7372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  174.059053][ T7372] Call Trace:
[  174.062456][ T7372]  <TASK>
[  174.065496][ T7372]  dump_stack_lvl+0x16c/0x230
[  174.070329][ T7372]  ? show_regs_print_info+0x20/0x20
[  174.075638][ T7372]  ? load_image+0x3b0/0x3b0
[  174.080171][ T7372]  ? __might_fault+0xaa/0x120
[  174.084960][ T7372]  ? __lock_acquire+0x7c80/0x7c80
[  174.090185][ T7372]  should_fail_ex+0x39d/0x4d0
[  174.094902][ T7372]  _copy_from_user+0x2f/0xe0
[  174.099520][ T7372]  __sys_bpf+0x1e9/0x800
[  174.103794][ T7372]  ? bpf_link_show_fdinfo+0x350/0x350
[  174.109305][ T7372]  ? lock_chain_count+0x20/0x20
[  174.114198][ T7372]  __x64_sys_bpf+0x7c/0x90
[  174.118669][ T7372]  do_syscall_64+0x55/0xb0
[  174.123154][ T7372]  ? clear_bhb_loop+0x40/0x90
[  174.128048][ T7372]  ? clear_bhb_loop+0x40/0x90
[  174.132865][ T7372]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.138808][ T7372] RIP: 0033:0x7f0ec9b8eec9
[  174.143492][ T7372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.163373][ T7372] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  174.171832][ T7372] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  174.179915][ T7372] RDX: 0000000000000094 RSI: 0000200000000000 RDI: 0000000000000005
[  174.188249][ T7372] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  174.196242][ T7372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.204579][ T7372] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  174.212858][ T7372]  </TASK>
[  174.458908][ T7379] netlink: 56 bytes leftover after parsing attributes in process `syz.1.576'.
[  174.482692][ T7379] netlink: 56 bytes leftover after parsing attributes in process `syz.1.576'.
[  174.504292][ T7379] netlink: 56 bytes leftover after parsing attributes in process `syz.1.576'.
[  174.555234][ T7379] netlink: 56 bytes leftover after parsing attributes in process `syz.1.576'.
[  174.579263][ T7382] netlink: 14 bytes leftover after parsing attributes in process `syz.0.577'.
[  176.238937][ T7412] netlink: 56 bytes leftover after parsing attributes in process `syz.2.587'.
[  176.249320][ T7412] netlink: 56 bytes leftover after parsing attributes in process `syz.2.587'.
[  176.274109][ T7412] netlink: 56 bytes leftover after parsing attributes in process `syz.2.587'.
[  176.334055][ T7412] netlink: 56 bytes leftover after parsing attributes in process `syz.2.587'.
[  176.754900][ T5792] Bluetooth: hci1: unexpected event 0x08 length: 15 > 4
[  178.908830][ T5100] Bluetooth: hci1: command 0x0406 tx timeout
[  179.208911][ T7486] netlink: 'syz.2.619': attribute type 10 has an invalid length.
[  179.576878][ T7490] __nla_validate_parse: 13 callbacks suppressed
[  179.576899][ T7490] netlink: 56 bytes leftover after parsing attributes in process `syz.0.621'.
[  179.660563][ T7490] netlink: 56 bytes leftover after parsing attributes in process `syz.0.621'.
[  179.706138][ T7490] netlink: 56 bytes leftover after parsing attributes in process `syz.0.621'.
[  179.782852][ T7490] netlink: 56 bytes leftover after parsing attributes in process `syz.0.621'.
[  179.887532][ T7496] netlink: 14 bytes leftover after parsing attributes in process `syz.3.624'.
[  180.075752][ T7505] netlink: 'syz.1.627': attribute type 4 has an invalid length.
[  180.084734][ T7505] netlink: 152 bytes leftover after parsing attributes in process `syz.1.627'.
[  180.129926][ T7505] A link change request failed with some changes committed already. Interface .` may have been left with an inconsistent configuration, please check.
[  180.270092][ T7509] netlink: 132 bytes leftover after parsing attributes in process `syz.3.629'.
[  180.593313][ T7520] sctp: [Deprecated]: syz.1.634 (pid 7520) Use of struct sctp_assoc_value in delayed_ack socket option.
[  180.593313][ T7520] Use struct sctp_sack_info instead
[  180.598493][ T7522] netlink: 56 bytes leftover after parsing attributes in process `syz.0.635'.
[  180.621417][ T7522] netlink: 56 bytes leftover after parsing attributes in process `syz.0.635'.
[  180.634912][ T7522] netlink: 56 bytes leftover after parsing attributes in process `syz.0.635'.
[  183.282584][ T7592] FAULT_INJECTION: forcing a failure.
[  183.282584][ T7592] name failslab, interval 1, probability 0, space 0, times 0
[  183.340474][ T7592] CPU: 0 PID: 7592 Comm: syz.0.665 Not tainted syzkaller #0
[  183.347947][ T7592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  183.358667][ T7592] Call Trace:
[  183.362083][ T7592]  <TASK>
[  183.365052][ T7592]  dump_stack_lvl+0x16c/0x230
[  183.369964][ T7592]  ? show_regs_print_info+0x20/0x20
[  183.375299][ T7592]  ? load_image+0x3b0/0x3b0
[  183.379958][ T7592]  ? __might_sleep+0xe0/0xe0
[  183.384595][ T7592]  ? __lock_acquire+0x7c80/0x7c80
[  183.389756][ T7592]  should_fail_ex+0x39d/0x4d0
[  183.394592][ T7592]  should_failslab+0x9/0x20
[  183.399245][ T7592]  slab_pre_alloc_hook+0x59/0x310
[  183.404428][ T7592]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  183.410367][ T7592]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  183.416136][ T7592]  __kmem_cache_alloc_node+0x53/0x260
[  183.421566][ T7592]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  183.427721][ T7592]  __kmalloc+0xa4/0x240
[  183.432282][ T7592]  tomoyo_realpath_from_path+0xe3/0x5d0
[  183.438098][ T7592]  tomoyo_path_number_perm+0x1ea/0x590
[  183.443600][ T7592]  ? tomoyo_path_number_perm+0x1ba/0x590
[  183.449292][ T7592]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  183.454902][ T7592]  ? trace_call_bpf+0xc3/0x690
[  183.459874][ T7592]  ? trace_call_bpf+0x5ba/0x690
[  183.465130][ T7592]  ? __fget_files+0x28/0x4d0
[  183.469853][ T7592]  security_file_ioctl+0x70/0xa0
[  183.474998][ T7592]  __se_sys_ioctl+0x48/0x170
[  183.479616][ T7592]  do_syscall_64+0x55/0xb0
[  183.484150][ T7592]  ? clear_bhb_loop+0x40/0x90
[  183.488971][ T7592]  ? clear_bhb_loop+0x40/0x90
[  183.493681][ T7592]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  183.499602][ T7592] RIP: 0033:0x7f0ec9b8eec9
[  183.504042][ T7592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.524042][ T7592] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  183.532574][ T7592] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  183.540653][ T7592] RDX: 0000200000002280 RSI: 000000000000541b RDI: 0000000000000006
[  183.549350][ T7592] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  183.557601][ T7592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.565683][ T7592] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  183.573703][ T7592]  </TASK>
[  183.623659][ T7592] ERROR: Out of memory at tomoyo_realpath_from_path.
[  183.686566][ T7597] FAULT_INJECTION: forcing a failure.
[  183.686566][ T7597] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.727719][ T7597] CPU: 0 PID: 7597 Comm: syz.1.667 Not tainted syzkaller #0
[  183.735202][ T7597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  183.745381][ T7597] Call Trace:
[  183.748722][ T7597]  <TASK>
[  183.751693][ T7597]  dump_stack_lvl+0x16c/0x230
[  183.756615][ T7597]  ? show_regs_print_info+0x20/0x20
[  183.761866][ T7597]  ? load_image+0x3b0/0x3b0
[  183.766928][ T7597]  ? __lock_acquire+0x7c80/0x7c80
[  183.772377][ T7597]  ? __might_fault+0xaa/0x120
[  183.777990][ T7597]  ? full_name_hash+0x92/0xe0
[  183.783071][ T7597]  should_fail_ex+0x39d/0x4d0
[  183.788062][ T7597]  _copy_to_user+0x2f/0xa0
[  183.792522][ T7597]  put_user_ifreq+0x78/0xb0
[  183.797071][ T7597]  sock_do_ioctl+0x255/0x2f0
[  183.801836][ T7597]  ? sock_show_fdinfo+0xb0/0xb0
[  183.806754][ T7597]  sock_ioctl+0x623/0x7a0
[  183.811775][ T7597]  ? sock_poll+0x3d0/0x3d0
[  183.816291][ T7597]  ? bpf_lsm_file_ioctl+0x9/0x10
[  183.821701][ T7597]  ? security_file_ioctl+0x80/0xa0
[  183.826873][ T7597]  ? sock_poll+0x3d0/0x3d0
[  183.831422][ T7597]  __se_sys_ioctl+0xfd/0x170
[  183.836115][ T7597]  do_syscall_64+0x55/0xb0
[  183.840680][ T7597]  ? clear_bhb_loop+0x40/0x90
[  183.845495][ T7597]  ? clear_bhb_loop+0x40/0x90
[  183.850234][ T7597]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  183.856359][ T7597] RIP: 0033:0x7f479058eec9
[  183.860812][ T7597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.880750][ T7597] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  183.889518][ T7597] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  183.897518][ T7597] RDX: 0000200000000080 RSI: 0000000000008946 RDI: 0000000000000011
[  183.905704][ T7597] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  183.913823][ T7597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.921919][ T7597] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  183.929966][ T7597]  </TASK>
[  184.087767][ T7594] can: request_module (can-proto-0) failed.
[  184.656670][ T7615] __nla_validate_parse: 20 callbacks suppressed
[  184.656694][ T7615] netlink: 56 bytes leftover after parsing attributes in process `syz.2.673'.
[  184.686636][ T7614] netlink: 14 bytes leftover after parsing attributes in process `syz.1.672'.
[  184.701058][ T7615] netlink: 56 bytes leftover after parsing attributes in process `syz.2.673'.
[  184.736146][ T7615] netlink: 56 bytes leftover after parsing attributes in process `syz.2.673'.
[  184.777811][ T7615] netlink: 56 bytes leftover after parsing attributes in process `syz.2.673'.
[  185.075594][ T7623] netlink: 'syz.0.674': attribute type 2 has an invalid length.
[  185.655050][ T7633] netlink: 56 bytes leftover after parsing attributes in process `syz.0.678'.
[  185.669183][ T7633] netlink: 56 bytes leftover after parsing attributes in process `syz.0.678'.
[  185.691401][ T7633] netlink: 56 bytes leftover after parsing attributes in process `syz.0.678'.
[  185.732398][ T7633] netlink: 56 bytes leftover after parsing attributes in process `syz.0.678'.
[  186.281830][ T7646] netlink: 14 bytes leftover after parsing attributes in process `syz.1.687'.
[  186.970430][ T7655] FAULT_INJECTION: forcing a failure.
[  186.970430][ T7655] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  186.998868][ T7655] CPU: 0 PID: 7655 Comm: syz.0.697 Not tainted syzkaller #0
[  187.006261][ T7655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  187.016408][ T7655] Call Trace:
[  187.019833][ T7655]  <TASK>
[  187.022841][ T7655]  dump_stack_lvl+0x16c/0x230
[  187.027677][ T7655]  ? show_regs_print_info+0x20/0x20
[  187.033119][ T7655]  ? load_image+0x3b0/0x3b0
[  187.037701][ T7655]  ? __lock_acquire+0x7c80/0x7c80
[  187.043085][ T7655]  ? trace_event_raw_event_lock+0x230/0x230
[  187.049342][ T7655]  should_fail_ex+0x39d/0x4d0
[  187.054105][ T7655]  prepare_alloc_pages+0x1e2/0x5f0
[  187.059407][ T7655]  __alloc_pages+0x127/0x460
[  187.064096][ T7655]  ? zone_statistics+0x170/0x170
[  187.069540][ T7655]  pte_alloc_one+0x89/0x540
[  187.074211][ T7655]  ? pfn_modify_allowed+0x560/0x560
[  187.079589][ T7655]  ? hugepage_vma_check+0x488/0x5a0
[  187.084869][ T7655]  handle_mm_fault+0x2e8e/0x4920
[  187.089961][ T7655]  ? handle_mm_fault+0xd1/0x4920
[  187.095057][ T7655]  ? numa_migrate_prep+0x350/0x350
[  187.100287][ T7655]  ? lock_mm_and_find_vma+0x9c/0x300
[  187.105652][ T7655]  do_user_addr_fault+0x738/0x12e0
[  187.110892][ T7655]  exc_page_fault+0x67/0x110
[  187.115529][ T7655]  asm_exc_page_fault+0x26/0x30
[  187.120405][ T7655] RIP: 0010:rep_movs_alternative+0x30/0x90
[  187.126244][ T7655] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[  187.146061][ T7655] RSP: 0018:ffffc9000ba379d0 EFLAGS: 00050212
[  187.152343][ T7655] RAX: ffffffff841eec01 RBX: 0000000000000034 RCX: 0000000000000034
[  187.160436][ T7655] RDX: 0000000000000001 RSI: 000000110c230000 RDI: ffffc9000ba37a40
[  187.168446][ T7655] RBP: ffffc9000ba37af0 R08: 0000000000000003 R09: 0000000000000004
[  187.176642][ T7655] R10: dffffc0000000000 R11: fffff52001746f4e R12: 000000110c230034
[  187.184647][ T7655] R13: 000000110c230000 R14: ffffc9000ba37a40 R15: 000000110c230000
[  187.192661][ T7655]  ? _copy_from_user+0x1/0xe0
[  187.197384][ T7655]  _copy_from_user+0x8b/0xe0
[  187.202012][ T7655]  ip_tunnel_siocdevprivate+0xa7/0x1c0
[  187.207511][ T7655]  ? ip_tunnel_update+0xb10/0xb10
[  187.212689][ T7655]  ipip6_tunnel_siocdevprivate+0x349/0x15e0
[  187.218631][ T7655]  ? sit_tunnel_xmit+0x1f70/0x1f70
[  187.223897][ T7655]  ? __mutex_trylock_common+0x153/0x250
[  187.229502][ T7655]  ? trace_raw_output_contention_end+0xd0/0xd0
[  187.235791][ T7655]  ? rcu_is_watching+0x15/0xb0
[  187.240855][ T7655]  ? trace_contention_end+0x39/0xe0
[  187.246357][ T7655]  ? __mutex_lock+0x304/0xcc0
[  187.251076][ T7655]  ? full_name_hash+0x92/0xe0
[  187.255849][ T7655]  dev_ifsioc+0xae6/0xe20
[  187.260226][ T7655]  ? dev_ioctl+0x1170/0x1170
[  187.265052][ T7655]  ? dev_load+0x21/0x1f0
[  187.269585][ T7655]  ? dev_load+0x21/0x1f0
[  187.274129][ T7655]  dev_ioctl+0x87a/0x1170
[  187.278495][ T7655]  sock_ioctl+0x726/0x7a0
[  187.282962][ T7655]  ? sock_poll+0x3d0/0x3d0
[  187.287442][ T7655]  ? bpf_lsm_file_ioctl+0x9/0x10
[  187.292421][ T7655]  ? security_file_ioctl+0x80/0xa0
[  187.297568][ T7655]  ? sock_poll+0x3d0/0x3d0
[  187.302023][ T7655]  __se_sys_ioctl+0xfd/0x170
[  187.306677][ T7655]  do_syscall_64+0x55/0xb0
[  187.311213][ T7655]  ? clear_bhb_loop+0x40/0x90
[  187.316031][ T7655]  ? clear_bhb_loop+0x40/0x90
[  187.320750][ T7655]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  187.326693][ T7655] RIP: 0033:0x7f0ec9b8eec9
[  187.331143][ T7655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.350887][ T7655] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  187.359389][ T7655] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  187.367403][ T7655] RDX: 0000200000000900 RSI: 00000000000089f2 RDI: 0000000000000004
[  187.375408][ T7655] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  187.383404][ T7655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.391402][ T7655] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  187.399431][ T7655]  </TASK>
[  187.561906][ T7664] netlink: 'syz.3.689': attribute type 2 has an invalid length.
[  189.184958][ T5792] Bluetooth: hci3: ISO packet for unknown connection handle 1854
[  190.015709][ T7703] netlink: 'syz.2.705': attribute type 2 has an invalid length.
[  190.331363][ T7715] __nla_validate_parse: 9 callbacks suppressed
[  190.331382][ T7715] netlink: 56 bytes leftover after parsing attributes in process `syz.0.715'.
[  190.390593][ T7715] netlink: 56 bytes leftover after parsing attributes in process `syz.0.715'.
[  190.444004][ T7715] netlink: 56 bytes leftover after parsing attributes in process `syz.0.715'.
[  190.459443][ T7717] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.713'.
[  190.484141][ T7715] netlink: 56 bytes leftover after parsing attributes in process `syz.0.715'.
[  190.515172][ T7719] netlink: 148 bytes leftover after parsing attributes in process `syz.3.716'.
[  191.075615][ T7735] netlink: 'syz.1.722': attribute type 10 has an invalid length.
[  191.222533][ T7740] netlink: 'syz.0.724': attribute type 17 has an invalid length.
[  191.231573][ T7740] netlink: 160 bytes leftover after parsing attributes in process `syz.0.724'.
[  191.345996][ T7742] delete_channel: no stack
[  191.373408][ T7745] netlink: 56 bytes leftover after parsing attributes in process `syz.1.726'.
[  191.383031][ T7745] netlink: 56 bytes leftover after parsing attributes in process `syz.1.726'.
[  191.394091][ T7745] netlink: 56 bytes leftover after parsing attributes in process `syz.1.726'.
[  191.717549][ T7756] netlink: 'syz.0.729': attribute type 39 has an invalid length.
[  192.442729][ T7789] netlink: 'syz.2.743': attribute type 1 has an invalid length.
[  192.497137][ T7787] netlink: 'syz.3.742': attribute type 39 has an invalid length.
[  192.896890][ T7804] syzkaller0: entered promiscuous mode
[  192.902599][ T7804] syzkaller0: entered allmulticast mode
[  193.358524][ T7823] FAULT_INJECTION: forcing a failure.
[  193.358524][ T7823] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.372171][ T7823] CPU: 1 PID: 7823 Comm: syz.0.757 Not tainted syzkaller #0
[  193.379603][ T7823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  193.389878][ T7823] Call Trace:
[  193.393530][ T7823]  <TASK>
[  193.396510][ T7823]  dump_stack_lvl+0x16c/0x230
[  193.401247][ T7823]  ? show_regs_print_info+0x20/0x20
[  193.406482][ T7823]  ? load_image+0x3b0/0x3b0
[  193.411098][ T7823]  ? __might_fault+0xaa/0x120
[  193.415807][ T7823]  ? __lock_acquire+0x7c80/0x7c80
[  193.420855][ T7823]  should_fail_ex+0x39d/0x4d0
[  193.425564][ T7823]  _copy_from_user+0x2f/0xe0
[  193.430180][ T7823]  __sys_bpf+0x1e9/0x800
[  193.434634][ T7823]  ? bpf_link_show_fdinfo+0x350/0x350
[  193.440082][ T7823]  ? lock_chain_count+0x20/0x20
[  193.445147][ T7823]  __x64_sys_bpf+0x7c/0x90
[  193.449583][ T7823]  do_syscall_64+0x55/0xb0
[  193.454153][ T7823]  ? clear_bhb_loop+0x40/0x90
[  193.458940][ T7823]  ? clear_bhb_loop+0x40/0x90
[  193.463915][ T7823]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  193.469839][ T7823] RIP: 0033:0x7f0ec9b8eec9
[  193.474270][ T7823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.493989][ T7823] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  193.502727][ T7823] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  193.510824][ T7823] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 0000000000000005
[  193.518813][ T7823] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  193.526815][ T7823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.534900][ T7823] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  193.543022][ T7823]  </TASK>
[  193.923104][ T7840] netlink: 'syz.3.761': attribute type 4 has an invalid length.
[  194.743886][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  194.758810][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  195.082905][ T7868] netlink: 'syz.3.773': attribute type 39 has an invalid length.
[  195.129899][ T7867] delete_channel: no stack
[  195.484643][ T7882] netlink: 'syz.1.777': attribute type 9 has an invalid length.
[  195.527405][ T7882] __nla_validate_parse: 18 callbacks suppressed
[  195.527421][ T7882] netlink: 399 bytes leftover after parsing attributes in process `syz.1.777'.
[  195.615522][ T7889] netlink: 14 bytes leftover after parsing attributes in process `syz.0.780'.
[  195.719034][ T7887] netlink: 'syz.3.779': attribute type 4 has an invalid length.
[  195.756689][ T7887] netlink: 152 bytes leftover after parsing attributes in process `syz.3.779'.
[  196.084054][ T7901] netlink: 56 bytes leftover after parsing attributes in process `syz.0.784'.
[  196.098294][ T7901] netlink: 56 bytes leftover after parsing attributes in process `syz.0.784'.
[  196.135835][ T7903] FAULT_INJECTION: forcing a failure.
[  196.135835][ T7903] name failslab, interval 1, probability 0, space 0, times 0
[  196.150994][ T7901] netlink: 56 bytes leftover after parsing attributes in process `syz.0.784'.
[  196.181520][ T7903] CPU: 0 PID: 7903 Comm: syz.1.785 Not tainted syzkaller #0
[  196.188916][ T7903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  196.199029][ T7903] Call Trace:
[  196.202355][ T7903]  <TASK>
[  196.205332][ T7903]  dump_stack_lvl+0x16c/0x230
[  196.210477][ T7903]  ? show_regs_print_info+0x20/0x20
[  196.216006][ T7903]  ? load_image+0x3b0/0x3b0
[  196.220569][ T7903]  ? __might_sleep+0xe0/0xe0
[  196.225410][ T7903]  ? __lock_acquire+0x7c80/0x7c80
[  196.230592][ T7903]  should_fail_ex+0x39d/0x4d0
[  196.235596][ T7903]  should_failslab+0x9/0x20
[  196.240300][ T7903]  slab_pre_alloc_hook+0x59/0x310
[  196.245392][ T7903]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  196.251260][ T7903]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  196.257021][ T7903]  __kmem_cache_alloc_node+0x53/0x260
[  196.262452][ T7903]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  196.268299][ T7903]  __kmalloc+0xa4/0x240
[  196.272499][ T7903]  tomoyo_realpath_from_path+0xe3/0x5d0
[  196.278185][ T7903]  tomoyo_path_number_perm+0x1ea/0x590
[  196.283668][ T7903]  ? tomoyo_path_number_perm+0x1ba/0x590
[  196.289346][ T7903]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  196.294917][ T7903]  ? lockdep_hardirqs_on+0x98/0x150
[  196.300199][ T7903]  ? __fget_files+0x28/0x4d0
[  196.304926][ T7903]  security_file_ioctl+0x70/0xa0
[  196.309905][ T7903]  __se_sys_ioctl+0x48/0x170
[  196.314612][ T7903]  do_syscall_64+0x55/0xb0
[  196.319256][ T7903]  ? clear_bhb_loop+0x40/0x90
[  196.324010][ T7903]  ? clear_bhb_loop+0x40/0x90
[  196.328816][ T7903]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  196.334761][ T7903] RIP: 0033:0x7f479058eec9
[  196.339256][ T7903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.359075][ T7903] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  196.367549][ T7903] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  196.375578][ T7903] RDX: 0000200000002280 RSI: 000000000000541b RDI: 0000000000000006
[  196.383659][ T7903] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  196.391836][ T7903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.399915][ T7903] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  196.408026][ T7903]  </TASK>
[  196.441461][ T7903] ERROR: Out of memory at tomoyo_realpath_from_path.
[  197.407630][ T7914] netlink: 14 bytes leftover after parsing attributes in process `syz.1.790'.
[  197.421350][ T7921] netlink: 16255 bytes leftover after parsing attributes in process `syz.0.792'.
[  197.652787][ T7928] FAULT_INJECTION: forcing a failure.
[  197.652787][ T7928] name failslab, interval 1, probability 0, space 0, times 0
[  197.696050][ T7928] CPU: 1 PID: 7928 Comm: syz.1.795 Not tainted syzkaller #0
[  197.703485][ T7928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  197.713612][ T7928] Call Trace:
[  197.717085][ T7928]  <TASK>
[  197.720033][ T7928]  dump_stack_lvl+0x16c/0x230
[  197.724845][ T7928]  ? show_regs_print_info+0x20/0x20
[  197.730073][ T7928]  ? load_image+0x3b0/0x3b0
[  197.734628][ T7928]  ? __might_sleep+0xe0/0xe0
[  197.739608][ T7928]  ? __lock_acquire+0x7c80/0x7c80
[  197.744947][ T7928]  should_fail_ex+0x39d/0x4d0
[  197.749856][ T7928]  should_failslab+0x9/0x20
[  197.754397][ T7928]  slab_pre_alloc_hook+0x59/0x310
[  197.759543][ T7928]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  197.765412][ T7928]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  197.771200][ T7928]  __kmem_cache_alloc_node+0x53/0x260
[  197.776710][ T7928]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  197.782467][ T7928]  __kmalloc+0xa4/0x240
[  197.786672][ T7928]  tomoyo_realpath_from_path+0xe3/0x5d0
[  197.792290][ T7928]  tomoyo_path_number_perm+0x1ea/0x590
[  197.798171][ T7928]  ? tomoyo_path_number_perm+0x1ba/0x590
[  197.803841][ T7928]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  197.809417][ T7928]  ? ktime_get+0x7f/0x280
[  197.813809][ T7928]  ? __fget_files+0x28/0x4d0
[  197.818430][ T7928]  security_file_ioctl+0x70/0xa0
[  197.823658][ T7928]  __se_sys_ioctl+0x48/0x170
[  197.828366][ T7928]  do_syscall_64+0x55/0xb0
[  197.832889][ T7928]  ? clear_bhb_loop+0x40/0x90
[  197.837690][ T7928]  ? clear_bhb_loop+0x40/0x90
[  197.842395][ T7928]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  197.848317][ T7928] RIP: 0033:0x7f479058eec9
[  197.852760][ T7928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.872403][ T7928] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  197.880938][ T7928] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  197.889120][ T7928] RDX: 0000200000002280 RSI: 000000000000541b RDI: 0000000000000005
[  197.897205][ T7928] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  197.905199][ T7928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.913217][ T7928] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  197.921293][ T7928]  </TASK>
[  197.954033][ T7933] netlink: 56 bytes leftover after parsing attributes in process `syz.2.797'.
[  197.963398][ T7933] netlink: 56 bytes leftover after parsing attributes in process `syz.2.797'.
[  197.988816][ T7928] ERROR: Out of memory at tomoyo_realpath_from_path.
[  198.064004][ T7935] FAULT_INJECTION: forcing a failure.
[  198.064004][ T7935] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.108850][ T7935] CPU: 1 PID: 7935 Comm: syz.3.796 Not tainted syzkaller #0
[  198.116258][ T7935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  198.126878][ T7935] Call Trace:
[  198.130199][ T7935]  <TASK>
[  198.133256][ T7935]  dump_stack_lvl+0x16c/0x230
[  198.138022][ T7935]  ? show_regs_print_info+0x20/0x20
[  198.143536][ T7935]  ? load_image+0x3b0/0x3b0
[  198.148101][ T7935]  ? __might_fault+0xaa/0x120
[  198.153001][ T7935]  ? __lock_acquire+0x7c80/0x7c80
[  198.158077][ T7935]  should_fail_ex+0x39d/0x4d0
[  198.162923][ T7935]  _copy_from_user+0x2f/0xe0
[  198.167564][ T7935]  __sys_bpf+0x1e9/0x800
[  198.171948][ T7935]  ? bpf_link_show_fdinfo+0x350/0x350
[  198.177405][ T7935]  ? lock_chain_count+0x20/0x20
[  198.182423][ T7935]  __x64_sys_bpf+0x7c/0x90
[  198.186890][ T7935]  do_syscall_64+0x55/0xb0
[  198.191367][ T7935]  ? clear_bhb_loop+0x40/0x90
[  198.196092][ T7935]  ? clear_bhb_loop+0x40/0x90
[  198.200821][ T7935]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.206785][ T7935] RIP: 0033:0x7f008ff8eec9
[  198.211266][ T7935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.231370][ T7935] RSP: 002b:00007f0090e61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  198.239951][ T7935] RAX: ffffffffffffffda RBX: 00007f00901e5fa0 RCX: 00007f008ff8eec9
[  198.248067][ T7935] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 0000000000000005
[  198.256191][ T7935] RBP: 00007f0090e61090 R08: 0000000000000000 R09: 0000000000000000
[  198.264222][ T7935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.272326][ T7935] R13: 00007f00901e6038 R14: 00007f00901e5fa0 R15: 00007ffc324e4ba8
[  198.280384][ T7935]  </TASK>
[  198.451253][ T7939] macsec0: entered promiscuous mode
[  198.503702][ T7939] macsec0: entered allmulticast mode
[  198.512308][ T7939] veth1_macvtap: entered allmulticast mode
[  198.556486][ T7944] netlink: 'syz.1.801': attribute type 4 has an invalid length.
[  198.741117][ T7957] FAULT_INJECTION: forcing a failure.
[  198.741117][ T7957] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  198.768780][ T7957] CPU: 0 PID: 7957 Comm: syz.0.804 Not tainted syzkaller #0
[  198.776166][ T7957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  198.786486][ T7957] Call Trace:
[  198.789829][ T7957]  <TASK>
[  198.792904][ T7957]  dump_stack_lvl+0x16c/0x230
[  198.797657][ T7957]  ? show_regs_print_info+0x20/0x20
[  198.802923][ T7957]  ? load_image+0x3b0/0x3b0
[  198.807598][ T7957]  ? __lock_acquire+0x7c80/0x7c80
[  198.812709][ T7957]  should_fail_ex+0x39d/0x4d0
[  198.817683][ T7957]  prepare_alloc_pages+0x1e2/0x5f0
[  198.822976][ T7957]  __alloc_pages+0x127/0x460
[  198.827780][ T7957]  ? zone_statistics+0x170/0x170
[  198.832903][ T7957]  ? alloc_pages+0x4dc/0x740
[  198.837664][ T7957]  ? do_raw_spin_unlock+0x121/0x230
[  198.843033][ T7957]  __get_free_pages+0xc/0x30
[  198.847755][ T7957]  kasan_populate_vmalloc_pte+0x35/0x100
[  198.853537][ T7957]  __apply_to_page_range+0x878/0xdb0
[  198.858873][ T7957]  ? kasan_populate_vmalloc+0x70/0x70
[  198.864283][ T7957]  ? apply_to_page_range+0x50/0x50
[  198.869444][ T7957]  ? do_raw_spin_unlock+0x121/0x230
[  198.874695][ T7957]  alloc_vmap_area+0x1b4a/0x1c70
[  198.879699][ T7957]  ? vm_map_ram+0xcb0/0xcb0
[  198.884435][ T7957]  ? rcu_is_watching+0x15/0xb0
[  198.889280][ T7957]  __get_vm_area_node+0x162/0x370
[  198.894462][ T7957]  __vmalloc_node_range+0x36e/0x1320
[  198.899823][ T7957]  ? reuseport_array_alloc+0x98/0x120
[  198.905585][ T7957]  ? end_current_label_crit_section+0x170/0x170
[  198.911906][ T7957]  ? free_vm_area+0x50/0x50
[  198.916460][ T7957]  ? apparmor_capable+0x137/0x1a0
[  198.921609][ T7957]  bpf_map_area_alloc+0xf1/0x110
[  198.926627][ T7957]  ? reuseport_array_alloc+0x98/0x120
[  198.932050][ T7957]  reuseport_array_alloc+0x98/0x120
[  198.937462][ T7957]  map_create+0x877/0x12f0
[  198.941950][ T7957]  ? bpf_lsm_bpf+0x9/0x10
[  198.946472][ T7957]  __sys_bpf+0x5f0/0x800
[  198.950878][ T7957]  ? bpf_link_show_fdinfo+0x350/0x350
[  198.956332][ T7957]  ? lock_chain_count+0x20/0x20
[  198.961415][ T7957]  __x64_sys_bpf+0x7c/0x90
[  198.966056][ T7957]  do_syscall_64+0x55/0xb0
[  198.970607][ T7957]  ? clear_bhb_loop+0x40/0x90
[  198.975326][ T7957]  ? clear_bhb_loop+0x40/0x90
[  198.980038][ T7957]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.986335][ T7957] RIP: 0033:0x7f0ec9b8eec9
[  198.990798][ T7957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.010727][ T7957] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  199.019352][ T7957] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  199.027387][ T7957] RDX: 0000000000000050 RSI: 0000200000000300 RDI: 0000000000000000
[  199.035532][ T7957] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  199.043720][ T7957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.051728][ T7957] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  199.059875][ T7957]  </TASK>
[  199.912380][ T7992] delete_channel: no stack
[  202.538058][ T8002] netlink: 'syz.1.824': attribute type 10 has an invalid length.
[  202.591617][ T8002] hsr_slave_0 (unregistering): left promiscuous mode
[  202.649867][ T8007] __nla_validate_parse: 16 callbacks suppressed
[  202.649884][ T8007] netlink: 14 bytes leftover after parsing attributes in process `syz.0.826'.
[  202.878346][ T8024] bridge0: entered promiscuous mode
[  202.894318][ T8024] bridge0: entered allmulticast mode
[  203.178951][ T8034] netlink: 56 bytes leftover after parsing attributes in process `syz.0.834'.
[  203.193527][ T8034] netlink: 56 bytes leftover after parsing attributes in process `syz.0.834'.
[  203.206236][ T8036] netlink: 56 bytes leftover after parsing attributes in process `syz.2.835'.
[  203.218861][ T8034] netlink: 56 bytes leftover after parsing attributes in process `syz.0.834'.
[  203.248777][ T8036] netlink: 56 bytes leftover after parsing attributes in process `syz.2.835'.
[  203.258282][ T8039] netlink: 56 bytes leftover after parsing attributes in process `syz.2.835'.
[  203.323480][ T8036] netlink: 56 bytes leftover after parsing attributes in process `syz.2.835'.
[  203.419950][ T8041] netlink: 14 bytes leftover after parsing attributes in process `syz.0.837'.
[  204.001757][ T8064] netlink: 56 bytes leftover after parsing attributes in process `syz.2.845'.
[  204.282533][ T8078] netlink: 'syz.3.851': attribute type 10 has an invalid length.
[  204.297532][ T8078] tc_dump_action: action bad kind
[  206.127353][ T8130] openvswitch: netlink: Message has 20476 unknown bytes.
[  207.689415][ T8166] __nla_validate_parse: 27 callbacks suppressed
[  207.689436][ T8166] netlink: 56 bytes leftover after parsing attributes in process `syz.0.881'.
[  207.732451][ T8166] netlink: 56 bytes leftover after parsing attributes in process `syz.0.881'.
[  207.770655][ T8166] netlink: 56 bytes leftover after parsing attributes in process `syz.0.881'.
[  207.773745][ T8168] netlink: 192436 bytes leftover after parsing attributes in process `syz.2.882'.
[  207.796847][ T8168] openvswitch: netlink: Message has 20476 unknown bytes.
[  207.816041][ T8168] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.882'.
[  208.078525][ T8172] netlink: 56 bytes leftover after parsing attributes in process `syz.0.883'.
[  208.108164][ T8172] netlink: 56 bytes leftover after parsing attributes in process `syz.0.883'.
[  208.138876][ T8172] netlink: 56 bytes leftover after parsing attributes in process `syz.0.883'.
[  208.707174][ T8181] FAULT_INJECTION: forcing a failure.
[  208.707174][ T8181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.745574][ T8181] CPU: 0 PID: 8181 Comm: syz.0.886 Not tainted syzkaller #0
[  208.753061][ T8181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  208.763241][ T8181] Call Trace:
[  208.766546][ T8181]  <TASK>
[  208.769642][ T8181]  dump_stack_lvl+0x16c/0x230
[  208.774978][ T8181]  ? show_regs_print_info+0x20/0x20
[  208.780203][ T8181]  ? load_image+0x3b0/0x3b0
[  208.784916][ T8181]  ? __might_fault+0xaa/0x120
[  208.789788][ T8181]  ? __lock_acquire+0x7c80/0x7c80
[  208.795019][ T8181]  should_fail_ex+0x39d/0x4d0
[  208.799724][ T8181]  _copy_from_iter+0x1d3/0x1270
[  208.804595][ T8181]  ? __might_fault+0xaa/0x120
[  208.809379][ T8181]  ? _copy_from_iter+0x248/0x1270
[  208.814427][ T8181]  ? __virt_addr_valid+0x18c/0x540
[  208.819761][ T8181]  ? __lock_acquire+0x7c80/0x7c80
[  208.824806][ T8181]  ? copyout_mc+0x70/0x70
[  208.829244][ T8181]  ? copyout_mc+0x70/0x70
[  208.833601][ T8181]  ? __virt_addr_valid+0x18c/0x540
[  208.838740][ T8181]  ? page_copy_sane+0x16a/0x270
[  208.843720][ T8181]  copy_page_from_iter+0x7b/0x100
[  208.848788][ T8181]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  208.854644][ T8181]  tun_get_user+0x1583/0x3bf0
[  208.859370][ T8181]  ? trace_event_raw_event_lock+0x230/0x230
[  208.865289][ T8181]  ? aa_file_perm+0x120/0xec0
[  208.870002][ T8181]  ? aa_file_perm+0x3e8/0xec0
[  208.874750][ T8181]  ? rcu_read_unlock+0xa0/0xa0
[  208.879576][ T8181]  ? tun_get+0x1c/0x2e0
[  208.883938][ T8181]  ? __lock_acquire+0x7c80/0x7c80
[  208.889171][ T8181]  ? tun_get+0x1c/0x2e0
[  208.893378][ T8181]  tun_chr_write_iter+0x119/0x200
[  208.898443][ T8181]  vfs_write+0x43b/0x940
[  208.902713][ T8181]  ? file_end_write+0x250/0x250
[  208.907771][ T8181]  ? __fget_files+0x44a/0x4d0
[  208.912575][ T8181]  ? __fdget_pos+0x1d8/0x330
[  208.917276][ T8181]  ? ksys_write+0x75/0x250
[  208.921801][ T8181]  ksys_write+0x147/0x250
[  208.926162][ T8181]  ? __ia32_sys_read+0x90/0x90
[  208.930975][ T8181]  ? lockdep_hardirqs_on+0x98/0x150
[  208.936262][ T8181]  do_syscall_64+0x55/0xb0
[  208.940820][ T8181]  ? clear_bhb_loop+0x40/0x90
[  208.945540][ T8181]  ? clear_bhb_loop+0x40/0x90
[  208.950235][ T8181]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.956154][ T8181] RIP: 0033:0x7f0ec9b8eec9
[  208.960584][ T8181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.980504][ T8181] RSP: 002b:00007f0eca9dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  208.989025][ T8181] RAX: ffffffffffffffda RBX: 00007f0ec9de6090 RCX: 00007f0ec9b8eec9
[  208.997078][ T8181] RDX: 000000000000cfa4 RSI: 0000200000000180 RDI: 00000000000000c8
[  209.005155][ T8181] RBP: 00007f0eca9dc090 R08: 0000000000000000 R09: 0000000000000000
[  209.013155][ T8181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  209.021226][ T8181] R13: 00007f0ec9de6128 R14: 00007f0ec9de6090 R15: 00007ffd3a911158
[  209.029232][ T8181]  </TASK>
[  209.355346][ T8188] netlink: 'syz.0.890': attribute type 10 has an invalid length.
[  209.438446][ T8194] netlink: 56 bytes leftover after parsing attributes in process `syz.1.891'.
[  209.448019][ T8188] team0: Device hsr_slave_0 failed to register rx_handler
[  209.598111][ T8194] netlink: 56 bytes leftover after parsing attributes in process `syz.1.891'.
[  210.743935][ T8226] FAULT_INJECTION: forcing a failure.
[  210.743935][ T8226] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  210.795820][ T8226] CPU: 0 PID: 8226 Comm: syz.2.900 Not tainted syzkaller #0
[  210.803311][ T8226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  210.813695][ T8226] Call Trace:
[  210.817099][ T8226]  <TASK>
[  210.820065][ T8226]  dump_stack_lvl+0x16c/0x230
[  210.824944][ T8226]  ? show_regs_print_info+0x20/0x20
[  210.830298][ T8226]  ? load_image+0x3b0/0x3b0
[  210.835121][ T8226]  ? __lock_acquire+0x7c80/0x7c80
[  210.840443][ T8226]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  210.846658][ T8226]  should_fail_ex+0x39d/0x4d0
[  210.851476][ T8226]  prepare_alloc_pages+0x1e2/0x5f0
[  210.856724][ T8226]  __alloc_pages+0x127/0x460
[  210.861477][ T8226]  ? zone_statistics+0x170/0x170
[  210.866614][ T8226]  ? xdp_convert_md_to_buff+0x5b/0x330
[  210.872131][ T8226]  bpf_prog_test_run_xdp+0xb64/0xfa0
[  210.877485][ T8226]  ? dev_put+0x80/0x80
[  210.881697][ T8226]  ? dev_put+0x80/0x80
[  210.885802][ T8226]  bpf_prog_test_run+0x321/0x390
[  210.890925][ T8226]  __sys_bpf+0x440/0x800
[  210.895471][ T8226]  ? bpf_link_show_fdinfo+0x350/0x350
[  210.901176][ T8226]  ? lock_chain_count+0x20/0x20
[  210.906428][ T8226]  __x64_sys_bpf+0x7c/0x90
[  210.910910][ T8226]  do_syscall_64+0x55/0xb0
[  210.915452][ T8226]  ? clear_bhb_loop+0x40/0x90
[  210.920418][ T8226]  ? clear_bhb_loop+0x40/0x90
[  210.925239][ T8226]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  210.931430][ T8226] RIP: 0033:0x7f2cf358eec9
[  210.935875][ T8226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.955826][ T8226] RSP: 002b:00007f2cf4393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  210.964384][ T8226] RAX: ffffffffffffffda RBX: 00007f2cf37e5fa0 RCX: 00007f2cf358eec9
[  210.972569][ T8226] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  210.980574][ T8226] RBP: 00007f2cf4393090 R08: 0000000000000000 R09: 0000000000000000
[  210.988848][ T8226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.996849][ T8226] R13: 00007f2cf37e6038 R14: 00007f2cf37e5fa0 R15: 00007ffd1edeb3a8
[  211.004880][ T8226]  </TASK>
[  212.074598][ T8248] netlink: 'syz.0.905': attribute type 10 has an invalid length.
[  212.122973][ T8248] veth1_vlan: entered allmulticast mode
[  212.173717][   T50] Bluetooth: hci2: command 0x0406 tx timeout
[  212.180119][   T50] Bluetooth: hci0: command 0x0406 tx timeout
[  212.186495][   T50] Bluetooth: hci3: command 0x0406 tx timeout
[  212.193035][ T5790] Bluetooth: hci1: command 0x0406 tx timeout
[  212.243364][ T8248] team0: Device veth1_vlan failed to register rx_handler
[  212.596854][ T8262] sctp: [Deprecated]: syz.2.910 (pid 8262) Use of int in max_burst socket option deprecated.
[  212.596854][ T8262] Use struct sctp_assoc_value instead
[  212.724251][ T8264] netlink: 'syz.2.911': attribute type 39 has an invalid length.
[  212.795623][ T8265] FAULT_INJECTION: forcing a failure.
[  212.795623][ T8265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.818340][ T8265] CPU: 0 PID: 8265 Comm: syz.2.911 Not tainted syzkaller #0
[  212.825821][ T8265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  212.836097][ T8265] Call Trace:
[  212.839474][ T8265]  <TASK>
[  212.842449][ T8265]  dump_stack_lvl+0x16c/0x230
[  212.847185][ T8265]  ? show_regs_print_info+0x20/0x20
[  212.852523][ T8265]  ? load_image+0x3b0/0x3b0
[  212.857078][ T8265]  ? __lock_acquire+0x7c80/0x7c80
[  212.862364][ T8265]  ? snprintf+0xdb/0x120
[  212.866741][ T8265]  should_fail_ex+0x39d/0x4d0
[  212.871576][ T8265]  _copy_to_user+0x2f/0xa0
[  212.876285][ T8265]  simple_read_from_buffer+0xe7/0x150
[  212.881830][ T8265]  proc_fail_nth_read+0x1e3/0x250
[  212.887111][ T8265]  ? proc_fault_inject_write+0x340/0x340
[  212.893169][ T8265]  ? fsnotify_perm+0x271/0x5e0
[  212.898004][ T8265]  ? proc_fault_inject_write+0x340/0x340
[  212.903795][ T8265]  vfs_read+0x27e/0x920
[  212.908210][ T8265]  ? kernel_read+0x1e0/0x1e0
[  212.912893][ T8265]  ? __fget_files+0x28/0x4d0
[  212.917630][ T8265]  ? __fget_files+0x44a/0x4d0
[  212.922388][ T8265]  ? __fdget_pos+0x2a3/0x330
[  212.927037][ T8265]  ? ksys_read+0x75/0x250
[  212.931428][ T8265]  ksys_read+0x147/0x250
[  212.935822][ T8265]  ? vfs_write+0x940/0x940
[  212.940366][ T8265]  ? lockdep_hardirqs_on+0x98/0x150
[  212.945645][ T8265]  do_syscall_64+0x55/0xb0
[  212.950378][ T8265]  ? clear_bhb_loop+0x40/0x90
[  212.955247][ T8265]  ? clear_bhb_loop+0x40/0x90
[  212.960000][ T8265]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  212.965969][ T8265] RIP: 0033:0x7f2cf358d8dc
[  212.970442][ T8265] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  212.990369][ T8265] RSP: 002b:00007f2cf4372030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  212.998941][ T8265] RAX: ffffffffffffffda RBX: 00007f2cf37e6090 RCX: 00007f2cf358d8dc
[  213.007055][ T8265] RDX: 000000000000000f RSI: 00007f2cf43720a0 RDI: 000000000000000c
[  213.015095][ T8265] RBP: 00007f2cf4372090 R08: 0000000000000000 R09: 0000000000000000
[  213.023309][ T8265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.031509][ T8265] R13: 00007f2cf37e6128 R14: 00007f2cf37e6090 R15: 00007ffd1edeb3a8
[  213.039685][ T8265]  </TASK>
[  213.820299][ T8276] __nla_validate_parse: 6 callbacks suppressed
[  213.820318][ T8276] netlink: 14 bytes leftover after parsing attributes in process `syz.1.917'.
[  214.974667][ T8292] netlink: 56 bytes leftover after parsing attributes in process `syz.3.921'.
[  215.017247][ T8292] netlink: 56 bytes leftover after parsing attributes in process `syz.3.921'.
[  215.078580][ T8292] netlink: 56 bytes leftover after parsing attributes in process `syz.3.921'.
[  215.443764][ T8305] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.926'.
[  215.703461][ T8309] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.929'.
[  215.744368][ T8309] openvswitch: netlink: Message has 20476 unknown bytes.
[  215.785812][ T8309] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.929'.
[  216.324203][ T8324] FAULT_INJECTION: forcing a failure.
[  216.324203][ T8324] name failslab, interval 1, probability 0, space 0, times 0
[  216.337452][ T8324] CPU: 0 PID: 8324 Comm: syz.0.933 Not tainted syzkaller #0
[  216.344995][ T8324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  216.355976][ T8324] Call Trace:
[  216.359394][ T8324]  <TASK>
[  216.362388][ T8324]  dump_stack_lvl+0x16c/0x230
[  216.367179][ T8324]  ? show_regs_print_info+0x20/0x20
[  216.372491][ T8324]  ? load_image+0x3b0/0x3b0
[  216.377072][ T8324]  ? skb_network_protocol+0x4ff/0x760
[  216.382609][ T8324]  should_fail_ex+0x39d/0x4d0
[  216.387360][ T8324]  should_failslab+0x9/0x20
[  216.392103][ T8324]  slab_pre_alloc_hook+0x59/0x310
[  216.397190][ T8324]  kmem_cache_alloc+0x5a/0x2e0
[  216.402094][ T8324]  ? skb_clone+0x1eb/0x370
[  216.406563][ T8324]  skb_clone+0x1eb/0x370
[  216.410861][ T8324]  ? dev_queue_xmit_nit+0x212/0xbb0
[  216.416186][ T8324]  dev_queue_xmit_nit+0x24d/0xbb0
[  216.421444][ T8324]  ? dev_queue_xmit_nit+0x2d/0xbb0
[  216.426836][ T8324]  ? validate_xmit_skb+0x953/0xf50
[  216.432162][ T8324]  dev_hard_start_xmit+0x148/0x740
[  216.437316][ T8324]  __dev_queue_xmit+0x1a64/0x35a0
[  216.442484][ T8324]  ? __dev_queue_xmit+0x245/0x35a0
[  216.447707][ T8324]  ? netdev_core_pick_tx+0x340/0x340
[  216.453015][ T8324]  ? __copy_skb_header+0xa7/0x550
[  216.458067][ T8324]  ? __asan_memcpy+0x40/0x70
[  216.462685][ T8324]  ? __skb_clone+0x63/0x790
[  216.467218][ T8324]  ? __skb_clone+0x480/0x790
[  216.471931][ T8324]  ? skb_clone+0x21f/0x370
[  216.476376][ T8324]  __netlink_deliver_tap+0x5ab/0x830
[  216.481713][ T8324]  ? netlink_deliver_tap+0x2e/0x1b0
[  216.486935][ T8324]  netlink_deliver_tap+0x19c/0x1b0
[  216.492150][ T8324]  netlink_unicast+0x72c/0x8d0
[  216.496978][ T8324]  netlink_sendmsg+0x8c1/0xbe0
[  216.501797][ T8324]  ? netlink_getsockopt+0x580/0x580
[  216.507116][ T8324]  ? aa_sock_msg_perm+0x94/0x150
[  216.512304][ T8324]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  216.517606][ T8324]  ? security_socket_sendmsg+0x80/0xa0
[  216.523273][ T8324]  ? netlink_getsockopt+0x580/0x580
[  216.528583][ T8324]  ____sys_sendmsg+0x5bf/0x950
[  216.533392][ T8324]  ? __asan_memset+0x22/0x40
[  216.538027][ T8324]  ? __sys_sendmsg_sock+0x30/0x30
[  216.543281][ T8324]  ? __import_iovec+0x5f2/0x860
[  216.548270][ T8324]  ? import_iovec+0x73/0xa0
[  216.552853][ T8324]  ___sys_sendmsg+0x220/0x290
[  216.557606][ T8324]  ? __sys_sendmsg+0x270/0x270
[  216.562432][ T8324]  ? __lock_acquire+0x7c80/0x7c80
[  216.567536][ T8324]  __se_sys_sendmsg+0x1a5/0x270
[  216.572595][ T8324]  ? __x64_sys_sendmsg+0x80/0x80
[  216.577733][ T8324]  ? lockdep_hardirqs_on+0x98/0x150
[  216.583138][ T8324]  do_syscall_64+0x55/0xb0
[  216.587578][ T8324]  ? clear_bhb_loop+0x40/0x90
[  216.592276][ T8324]  ? clear_bhb_loop+0x40/0x90
[  216.596977][ T8324]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  216.602908][ T8324] RIP: 0033:0x7f0ec9b8eec9
[  216.607546][ T8324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.627350][ T8324] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  216.635789][ T8324] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  216.643780][ T8324] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[  216.651860][ T8324] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  216.659935][ T8324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.668025][ T8324] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  216.676043][ T8324]  </TASK>
[  216.722312][ T8324] netlink: 'syz.0.933': attribute type 39 has an invalid length.
[  217.235412][ T8336] netlink: 56 bytes leftover after parsing attributes in process `syz.3.938'.
[  217.245040][ T8336] netlink: 56 bytes leftover after parsing attributes in process `syz.3.938'.
[  217.370584][ T8336] netlink: 56 bytes leftover after parsing attributes in process `syz.3.938'.
[  217.403210][ T8339] openvswitch: netlink: Message has 20476 unknown bytes.
[  217.575719][ T8343] openvswitch: netlink: Message has 20476 unknown bytes.
[  217.910893][ T8348] openvswitch: netlink: Message has 20476 unknown bytes.
[  218.208465][ T8359] netlink: 'syz.1.950': attribute type 10 has an invalid length.
[  218.235349][ T8359] batadv0: entered promiscuous mode
[  218.249687][ T8359] batadv0: entered allmulticast mode
[  218.265824][ T8359] bridge0: port 3(batadv0) entered blocking state
[  218.274730][ T8359] bridge0: port 3(batadv0) entered disabled state
[  218.515774][ T8370] openvswitch: netlink: Message has 20476 unknown bytes.
[  218.768570][   T12] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  218.778475][   T12] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  219.014944][ T8381] __nla_validate_parse: 14 callbacks suppressed
[  219.014965][ T8381] netlink: 14 bytes leftover after parsing attributes in process `syz.1.958'.
[  219.392234][ T8393] netlink: 56 bytes leftover after parsing attributes in process `syz.0.963'.
[  219.405193][ T8393] netlink: 56 bytes leftover after parsing attributes in process `syz.0.963'.
[  219.550302][ T8393] netlink: 56 bytes leftover after parsing attributes in process `syz.0.963'.
[  219.574703][ T8397] FAULT_INJECTION: forcing a failure.
[  219.574703][ T8397] name failslab, interval 1, probability 0, space 0, times 0
[  219.599648][ T8397] CPU: 0 PID: 8397 Comm: syz.1.966 Not tainted syzkaller #0
[  219.607017][ T8397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  219.617092][ T8397] Call Trace:
[  219.620432][ T8397]  <TASK>
[  219.623382][ T8397]  dump_stack_lvl+0x16c/0x230
[  219.628100][ T8397]  ? show_regs_print_info+0x20/0x20
[  219.633412][ T8397]  ? load_image+0x3b0/0x3b0
[  219.637968][ T8397]  ? __might_sleep+0xe0/0xe0
[  219.642582][ T8397]  ? __lock_acquire+0x7c80/0x7c80
[  219.647733][ T8397]  should_fail_ex+0x39d/0x4d0
[  219.652446][ T8397]  should_failslab+0x9/0x20
[  219.657073][ T8397]  slab_pre_alloc_hook+0x59/0x310
[  219.662300][ T8397]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  219.668135][ T8397]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  219.673879][ T8397]  __kmem_cache_alloc_node+0x53/0x260
[  219.679455][ T8397]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  219.685293][ T8397]  __kmalloc+0xa4/0x240
[  219.689483][ T8397]  tomoyo_realpath_from_path+0xe3/0x5d0
[  219.695104][ T8397]  tomoyo_path_number_perm+0x1ea/0x590
[  219.700950][ T8397]  ? tomoyo_path_number_perm+0x1ba/0x590
[  219.706604][ T8397]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  219.712181][ T8397]  ? lockdep_hardirqs_on+0x98/0x150
[  219.717638][ T8397]  ? __fget_files+0x28/0x4d0
[  219.722273][ T8397]  security_file_ioctl+0x70/0xa0
[  219.727272][ T8397]  __se_sys_ioctl+0x48/0x170
[  219.732092][ T8397]  do_syscall_64+0x55/0xb0
[  219.736643][ T8397]  ? clear_bhb_loop+0x40/0x90
[  219.741434][ T8397]  ? clear_bhb_loop+0x40/0x90
[  219.746141][ T8397]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  219.752060][ T8397] RIP: 0033:0x7f479058eec9
[  219.756495][ T8397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.776305][ T8397] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  219.784753][ T8397] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  219.793016][ T8397] RDX: 0000200000000180 RSI: 0000000040082406 RDI: 0000000000000007
[  219.801117][ T8397] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  219.809111][ T8397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.817118][ T8397] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  219.825391][ T8397]  </TASK>
[  219.859424][ T8397] ERROR: Out of memory at tomoyo_realpath_from_path.
[  219.993957][ T8406] FAULT_INJECTION: forcing a failure.
[  219.993957][ T8406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  220.002464][ T8405] netlink: 'syz.2.970': attribute type 21 has an invalid length.
[  220.013688][ T8406] CPU: 1 PID: 8406 Comm: syz.3.969 Not tainted syzkaller #0
[  220.022884][ T8406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  220.033017][ T8406] Call Trace:
[  220.036347][ T8406]  <TASK>
[  220.039329][ T8406]  dump_stack_lvl+0x16c/0x230
[  220.044081][ T8406]  ? show_regs_print_info+0x20/0x20
[  220.049391][ T8406]  ? load_image+0x3b0/0x3b0
[  220.054019][ T8406]  ? __might_fault+0xaa/0x120
[  220.058871][ T8406]  ? __lock_acquire+0x7c80/0x7c80
[  220.064352][ T8406]  ? __might_fault+0xaa/0x120
[  220.069083][ T8406]  should_fail_ex+0x39d/0x4d0
[  220.073912][ T8406]  _copy_from_iter+0x1d3/0x1270
[  220.078814][ T8406]  ? __might_fault+0xaa/0x120
[  220.083555][ T8406]  ? _copy_from_iter+0x248/0x1270
[  220.088720][ T8406]  ? __virt_addr_valid+0x18c/0x540
[  220.093911][ T8406]  ? __lock_acquire+0x7c80/0x7c80
[  220.099069][ T8406]  ? copyout_mc+0x70/0x70
[  220.103454][ T8406]  ? copyout_mc+0x70/0x70
[  220.108101][ T8406]  ? __virt_addr_valid+0x18c/0x540
[  220.113271][ T8406]  ? page_copy_sane+0x16a/0x270
[  220.118192][ T8406]  copy_page_from_iter+0x7b/0x100
[  220.123280][ T8406]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  220.129239][ T8406]  tun_get_user+0x1583/0x3bf0
[  220.134229][ T8406]  ? aa_file_perm+0x120/0xec0
[  220.139396][ T8406]  ? aa_file_perm+0x3e8/0xec0
[  220.144155][ T8406]  ? rcu_read_unlock+0xa0/0xa0
[  220.148992][ T8406]  ? tun_get+0x1c/0x2e0
[  220.153209][ T8406]  ? __lock_acquire+0x7c80/0x7c80
[  220.158283][ T8406]  ? tun_get+0x1c/0x2e0
[  220.162567][ T8406]  tun_chr_write_iter+0x119/0x200
[  220.167626][ T8406]  vfs_write+0x43b/0x940
[  220.171970][ T8406]  ? file_end_write+0x250/0x250
[  220.176962][ T8406]  ? __fget_files+0x44a/0x4d0
[  220.181683][ T8406]  ? __fdget_pos+0x1d8/0x330
[  220.186387][ T8406]  ? ksys_write+0x75/0x250
[  220.190923][ T8406]  ksys_write+0x147/0x250
[  220.195301][ T8406]  ? __ia32_sys_read+0x90/0x90
[  220.200296][ T8406]  ? lockdep_hardirqs_on+0x98/0x150
[  220.205619][ T8406]  do_syscall_64+0x55/0xb0
[  220.210054][ T8406]  ? clear_bhb_loop+0x40/0x90
[  220.214831][ T8406]  ? clear_bhb_loop+0x40/0x90
[  220.219540][ T8406]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  220.225486][ T8406] RIP: 0033:0x7f008ff8eec9
[  220.229944][ T8406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.249939][ T8406] RSP: 002b:00007f0090e61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  220.258377][ T8406] RAX: ffffffffffffffda RBX: 00007f00901e5fa0 RCX: 00007f008ff8eec9
[  220.266648][ T8406] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 00000000000000c8
[  220.274816][ T8406] RBP: 00007f0090e61090 R08: 0000000000000000 R09: 0000000000000000
[  220.282810][ T8406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  220.290993][ T8406] R13: 00007f00901e6038 R14: 00007f00901e5fa0 R15: 00007ffc324e4ba8
[  220.299006][ T8406]  </TASK>
[  220.352270][ T8411] netlink: 14 bytes leftover after parsing attributes in process `syz.1.971'.
[  220.525146][ T8414] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.972'.
[  220.558800][ T8414] openvswitch: netlink: Message has 20476 unknown bytes.
[  220.572624][ T8414] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.972'.
[  220.806291][ T8422] netlink: 56 bytes leftover after parsing attributes in process `syz.3.976'.
[  220.858312][ T8422] netlink: 56 bytes leftover after parsing attributes in process `syz.3.976'.
[  220.909127][ T8422] netlink: 56 bytes leftover after parsing attributes in process `syz.3.976'.
[  221.097889][ T8424] netlink: 'syz.2.977': attribute type 10 has an invalid length.
[  221.231687][ T8424] team0: Device veth1_macvtap failed to register rx_handler
[  221.306961][ T8424] syz.2.977 (8424) used greatest stack depth: 18792 bytes left
[  221.510202][ T8433] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  221.722384][ T8441] openvswitch: netlink: Message has 20476 unknown bytes.
[  222.253841][ T8453] netlink: 'syz.2.988': attribute type 10 has an invalid length.
[  222.291148][ T8453] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  222.329113][ T8453] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  222.373858][ T8453] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[  222.516100][ T8457] netlink: 'syz.3.990': attribute type 21 has an invalid length.
[  222.660105][ T8459] netlink: 'syz.2.991': attribute type 1 has an invalid length.
[  222.960883][ T5793] Bluetooth: hci0: unexpected event 0x36 length: 15 > 7
[  224.909572][ T8501] __nla_validate_parse: 8 callbacks suppressed
[  224.909592][ T8501] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1005'.
[  225.879634][ T8513] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1009'.
[  226.003036][ T8513] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1009'.
[  226.052323][ T8513] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1009'.
[  226.564772][ T8523] FAULT_INJECTION: forcing a failure.
[  226.564772][ T8523] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  226.585074][ T8523] CPU: 1 PID: 8523 Comm: syz.2.1013 Not tainted syzkaller #0
[  226.592624][ T8523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  226.602900][ T8523] Call Trace:
[  226.606224][ T8523]  <TASK>
[  226.609190][ T8523]  dump_stack_lvl+0x16c/0x230
[  226.613952][ T8523]  ? show_regs_print_info+0x20/0x20
[  226.619207][ T8523]  ? load_image+0x3b0/0x3b0
[  226.623894][ T8523]  ? __might_fault+0xaa/0x120
[  226.628641][ T8523]  ? __lock_acquire+0x7c80/0x7c80
[  226.633721][ T8523]  should_fail_ex+0x39d/0x4d0
[  226.638472][ T8523]  _copy_to_user+0x2f/0xa0
[  226.643038][ T8523]  bpf_test_finish+0x4d8/0x620
[  226.647877][ T8523]  ? convert_skb_to___skb+0x420/0x420
[  226.653315][ T8523]  ? _copy_from_user+0xa5/0xe0
[  226.658270][ T8523]  ? bpf_test_init+0x134/0x150
[  226.663095][ T8523]  bpf_prog_test_run_xdp+0x7fa/0xfa0
[  226.668719][ T8523]  ? dev_put+0x80/0x80
[  226.672954][ T8523]  ? dev_put+0x80/0x80
[  226.677173][ T8523]  bpf_prog_test_run+0x321/0x390
[  226.682434][ T8523]  __sys_bpf+0x440/0x800
[  226.686726][ T8523]  ? bpf_link_show_fdinfo+0x350/0x350
[  226.692264][ T8523]  ? lock_chain_count+0x20/0x20
[  226.697260][ T8523]  __x64_sys_bpf+0x7c/0x90
[  226.701728][ T8523]  do_syscall_64+0x55/0xb0
[  226.706187][ T8523]  ? clear_bhb_loop+0x40/0x90
[  226.710920][ T8523]  ? clear_bhb_loop+0x40/0x90
[  226.715845][ T8523]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  226.721845][ T8523] RIP: 0033:0x7f2cf358eec9
[  226.726317][ T8523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.746451][ T8523] RSP: 002b:00007f2cf4393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  226.755021][ T8523] RAX: ffffffffffffffda RBX: 00007f2cf37e5fa0 RCX: 00007f2cf358eec9
[  226.763376][ T8523] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  226.771393][ T8523] RBP: 00007f2cf4393090 R08: 0000000000000000 R09: 0000000000000000
[  226.779402][ T8523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  226.787608][ T8523] R13: 00007f2cf37e6038 R14: 00007f2cf37e5fa0 R15: 00007ffd1edeb3a8
[  226.795745][ T8523]  </TASK>
[  226.821042][ T8525] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1014'.
[  226.840084][ T8525] openvswitch: netlink: Message has 20476 unknown bytes.
[  226.904019][ T8525] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1014'.
[  227.030531][ T8532] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1016'.
[  227.313049][ T8534] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1017'.
[  227.329342][ T8534] openvswitch: netlink: Message has 20476 unknown bytes.
[  227.398254][ T8534] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1017'.
[  227.851013][ T8540] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1019'.
[  228.135648][ T8549] openvswitch: netlink: Message has 20476 unknown bytes.
[  229.371714][ T8564] netlink: 'syz.1.1027': attribute type 21 has an invalid length.
[  230.082068][ T8575] __nla_validate_parse: 8 callbacks suppressed
[  230.082088][ T8575] netlink: 192436 bytes leftover after parsing attributes in process `syz.2.1032'.
[  230.150157][ T8575] openvswitch: netlink: Message has 20476 unknown bytes.
[  230.172302][ T8575] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1032'.
[  230.906150][ T8589] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1037'.
[  231.647214][ T8606] netlink: 'syz.0.1042': attribute type 3 has an invalid length.
[  231.659014][ T8606] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1042'.
[  231.894843][ T8612] netlink: 192436 bytes leftover after parsing attributes in process `syz.2.1045'.
[  231.908076][ T8612] openvswitch: netlink: Message has 20476 unknown bytes.
[  232.008128][ T8614] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1046'.
[  232.030725][ T8614] openvswitch: netlink: Message has 20476 unknown bytes.
[  232.091213][ T8612] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1045'.
[  232.125884][ T8610] netlink: 'syz.0.1043': attribute type 21 has an invalid length.
[  232.201232][ T8614] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1046'.
[  232.876159][ T8623] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1047'.
[  233.666994][ T8628] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.1048'.
[  233.682570][ T8628] openvswitch: netlink: Message has 20476 unknown bytes.
[  234.314889][ T8646] openvswitch: netlink: Message has 20476 unknown bytes.
[  234.474084][ T8651] openvswitch: netlink: Message has 20476 unknown bytes.
[  235.057216][ T8657] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.066812][ T8657] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.084896][ T8657] bridge0: entered allmulticast mode
[  235.565113][ T8678] __nla_validate_parse: 5 callbacks suppressed
[  235.565132][ T8678] netlink: 192436 bytes leftover after parsing attributes in process `syz.2.1066'.
[  235.612566][ T8678] openvswitch: netlink: Message has 20476 unknown bytes.
[  235.648928][ T8678] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1066'.
[  238.105930][ T8714] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.1079'.
[  238.136647][ T8714] openvswitch: netlink: Message has 20476 unknown bytes.
[  238.160623][ T8714] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1079'.
[  238.725695][ T8730] netlink: 'syz.3.1083': attribute type 2 has an invalid length.
[  238.746223][ T8730] netlink: 'syz.3.1083': attribute type 1 has an invalid length.
[  239.799422][ T8756] netlink: 192436 bytes leftover after parsing attributes in process `syz.2.1095'.
[  239.818290][ T8756] openvswitch: netlink: Message has 20476 unknown bytes.
[  239.978510][ T8756] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1095'.
[  243.112426][ T8792] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1105'.
[  243.357505][ T8805] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  243.365285][ T8805] IPv6: NLM_F_CREATE should be set when creating new route
[  243.372721][ T8805] IPv6: NLM_F_CREATE should be set when creating new route
[  243.380132][ T8805] IPv6: NLM_F_CREATE should be set when creating new route
[  243.649367][ T8817] netlink: 'syz.3.1114': attribute type 10 has an invalid length.
[  243.679038][ T8813] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1112'.
[  244.484033][ T8828] netlink: 'syz.3.1116': attribute type 4 has an invalid length.
[  244.521940][ T8828] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1116'.
[  245.250184][ T8834] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1119'.
[  245.544450][ T8839] netlink: 'syz.1.1122': attribute type 12 has an invalid length.
[  245.598777][ T8839] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1122'.
[  245.888567][ T8854] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.1129'.
[  245.900371][ T8853] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1128'.
[  245.921711][ T8853] openvswitch: netlink: Message has 20476 unknown bytes.
[  245.938868][ T8854] openvswitch: netlink: Message has 20476 unknown bytes.
[  245.983830][ T8854] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1129'.
[  245.997054][ T8853] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1128'.
[  246.241678][ T8861] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1131'.
[  246.702338][ T8867] netlink: 'syz.2.1133': attribute type 21 has an invalid length.
[  246.717003][ T8867] netlink: 'syz.2.1133': attribute type 6 has an invalid length.
[  247.417298][ T8890] openvswitch: netlink: Message has 20476 unknown bytes.
[  248.202953][ T8899] __nla_validate_parse: 4 callbacks suppressed
[  248.202976][ T8899] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1144'.
[  248.235844][ T8899] openvswitch: netlink: Message has 20476 unknown bytes.
[  248.383700][ T8902] sctp: [Deprecated]: syz.0.1145 (pid 8902) Use of struct sctp_assoc_value in delayed_ack socket option.
[  248.383700][ T8902] Use struct sctp_sack_info instead
[  248.726957][ T8897] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1143'.
[  248.751331][ T8899] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1144'.
[  249.146762][ T8909] netlink: 'syz.1.1146': attribute type 9 has an invalid length.
[  249.169179][ T8909] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1146'.
[  249.745455][ T8910] netlink: 'syz.1.1146': attribute type 9 has an invalid length.
[  249.787257][ T8910] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1146'.
[  250.193087][ T8928] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1152'.
[  250.213393][ T8928] openvswitch: netlink: Message has 20476 unknown bytes.
[  250.347799][ T8928] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1152'.
[  250.740700][ T8938] netlink: 'syz.0.1155': attribute type 9 has an invalid length.
[  250.749119][ T8938] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1155'.
[  250.887963][ T8941] netlink: 'syz.0.1155': attribute type 9 has an invalid length.
[  250.906468][ T8941] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1155'.
[  251.113681][ T8945] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1158'.
[  251.233705][ T8945] openvswitch: netlink: Message has 20476 unknown bytes.
[  251.695796][ T8959] FAULT_INJECTION: forcing a failure.
[  251.695796][ T8959] name failslab, interval 1, probability 0, space 0, times 0
[  251.703137][ T8957] netlink: 'syz.1.1161': attribute type 10 has an invalid length.
[  251.717623][ T8959] CPU: 0 PID: 8959 Comm: syz.0.1162 Not tainted syzkaller #0
[  251.725082][ T8959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  251.735631][ T8959] Call Trace:
[  251.738944][ T8959]  <TASK>
[  251.742178][ T8959]  dump_stack_lvl+0x16c/0x230
[  251.747357][ T8959]  ? show_regs_print_info+0x20/0x20
[  251.752669][ T8959]  ? load_image+0x3b0/0x3b0
[  251.757291][ T8959]  ? __might_sleep+0xe0/0xe0
[  251.762037][ T8959]  ? __lock_acquire+0x7c80/0x7c80
[  251.767619][ T8959]  should_fail_ex+0x39d/0x4d0
[  251.772607][ T8959]  should_failslab+0x9/0x20
[  251.777285][ T8959]  slab_pre_alloc_hook+0x59/0x310
[  251.782452][ T8959]  ? ip_setup_cork+0x22e/0x860
[  251.787269][ T8959]  __kmem_cache_alloc_node+0x53/0x260
[  251.792676][ T8959]  ? ip_setup_cork+0x22e/0x860
[  251.797492][ T8959]  kmalloc_trace+0x2a/0xe0
[  251.801963][ T8959]  ip_setup_cork+0x22e/0x860
[  251.806629][ T8959]  ip_make_skb+0x131/0x3f0
[  251.811094][ T8959]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  251.815984][ T8959]  ? ip_flush_pending_frames+0x250/0x250
[  251.821771][ T8959]  udp_sendmsg+0x1a90/0x2380
[  251.826407][ T8959]  ? release_sock+0x2f/0x1c0
[  251.831203][ T8959]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  251.836093][ T8959]  ? udp_cmsg_send+0x350/0x350
[  251.841067][ T8959]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  251.847164][ T8959]  ? lock_chain_count+0x20/0x20
[  251.852162][ T8959]  ? inet_sendmsg+0x14b/0x2f0
[  251.856955][ T8959]  ? __local_bh_enable_ip+0x12e/0x1c0
[  251.862520][ T8959]  ? _local_bh_enable+0xa0/0xa0
[  251.867831][ T8959]  ? inet_sendmsg+0x14b/0x2f0
[  251.872656][ T8959]  ? inet_sendmsg+0x14b/0x2f0
[  251.877550][ T8959]  ? inet_send_prepare+0x260/0x260
[  251.882693][ T8959]  ____sys_sendmsg+0x5bf/0x950
[  251.887586][ T8959]  ? __sys_sendmsg_sock+0x30/0x30
[  251.892731][ T8959]  ? __import_iovec+0x5f2/0x860
[  251.897707][ T8959]  ? import_iovec+0x73/0xa0
[  251.902340][ T8959]  ___sys_sendmsg+0x220/0x290
[  251.907256][ T8959]  ? __sys_sendmsg+0x270/0x270
[  251.912178][ T8959]  ? __lock_acquire+0x7c80/0x7c80
[  251.917682][ T8959]  __se_sys_sendmsg+0x1a5/0x270
[  251.922662][ T8959]  ? __x64_sys_sendmsg+0x80/0x80
[  251.927830][ T8959]  ? lockdep_hardirqs_on+0x98/0x150
[  251.933268][ T8959]  do_syscall_64+0x55/0xb0
[  251.937728][ T8959]  ? clear_bhb_loop+0x40/0x90
[  251.942519][ T8959]  ? clear_bhb_loop+0x40/0x90
[  251.947219][ T8959]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  251.953497][ T8959] RIP: 0033:0x7f0ec9b8eec9
[  251.957939][ T8959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.978010][ T8959] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  251.986541][ T8959] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  251.994637][ T8959] RDX: 0000000000000000 RSI: 0000200000000b40 RDI: 0000000000000003
[  252.002720][ T8959] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  252.010884][ T8959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.019221][ T8959] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  252.027754][ T8959]  </TASK>
[  252.040836][ T8957] macvlan0: entered allmulticast mode
[  252.058840][ T8957] veth1_vlan: entered allmulticast mode
[  252.069499][ T8957] .`: (slave macvlan0): Enslaving as an active interface with an up link
[  253.195319][ T8979] netlink: 'syz.3.1170': attribute type 9 has an invalid length.
[  253.218911][ T8979] __nla_validate_parse: 2 callbacks suppressed
[  253.218931][ T8979] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1170'.
[  253.330479][ T8982] netlink: 'syz.3.1170': attribute type 9 has an invalid length.
[  253.404019][ T8982] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1170'.
[  253.896663][ T8992] FAULT_INJECTION: forcing a failure.
[  253.896663][ T8992] name failslab, interval 1, probability 0, space 0, times 0
[  253.912536][ T8992] CPU: 0 PID: 8992 Comm: syz.0.1173 Not tainted syzkaller #0
[  253.920688][ T8992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  253.931416][ T8992] Call Trace:
[  253.935164][ T8992]  <TASK>
[  253.938241][ T8992]  dump_stack_lvl+0x16c/0x230
[  253.943324][ T8992]  ? show_regs_print_info+0x20/0x20
[  253.948866][ T8992]  ? load_image+0x3b0/0x3b0
[  253.953410][ T8992]  ? __might_sleep+0xe0/0xe0
[  253.958232][ T8992]  ? __lock_acquire+0x7c80/0x7c80
[  253.964169][ T8992]  should_fail_ex+0x39d/0x4d0
[  253.969492][ T8992]  should_failslab+0x9/0x20
[  253.974461][ T8992]  slab_pre_alloc_hook+0x59/0x310
[  253.979976][ T8992]  ? __lock_acquire+0x7c80/0x7c80
[  253.985815][ T8992]  kmem_cache_alloc_node+0x60/0x330
[  253.991505][ T8992]  ? __alloc_skb+0x108/0x2c0
[  253.997189][ T8992]  __alloc_skb+0x108/0x2c0
[  254.002921][ T8992]  netlink_sendmsg+0x65b/0xbe0
[  254.008606][ T8992]  ? netlink_getsockopt+0x580/0x580
[  254.014341][ T8992]  ? aa_sock_msg_perm+0x94/0x150
[  254.020129][ T8992]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  254.026367][ T8992]  ? security_socket_sendmsg+0x80/0xa0
[  254.032300][ T8992]  ? netlink_getsockopt+0x580/0x580
[  254.039147][ T8992]  ____sys_sendmsg+0x5bf/0x950
[  254.044415][ T8992]  ? __asan_memset+0x22/0x40
[  254.049071][ T8992]  ? __sys_sendmsg_sock+0x30/0x30
[  254.054132][ T8992]  ? __import_iovec+0x5f2/0x860
[  254.059285][ T8992]  ? import_iovec+0x73/0xa0
[  254.064288][ T8992]  ___sys_sendmsg+0x220/0x290
[  254.069220][ T8992]  ? __sys_sendmsg+0x270/0x270
[  254.074134][ T8992]  ? __lock_acquire+0x7c80/0x7c80
[  254.079235][ T8992]  __se_sys_sendmsg+0x1a5/0x270
[  254.084156][ T8992]  ? __x64_sys_sendmsg+0x80/0x80
[  254.089661][ T8992]  ? lockdep_hardirqs_on+0x98/0x150
[  254.095051][ T8992]  do_syscall_64+0x55/0xb0
[  254.099514][ T8992]  ? clear_bhb_loop+0x40/0x90
[  254.104210][ T8992]  ? clear_bhb_loop+0x40/0x90
[  254.109015][ T8992]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  254.115396][ T8992] RIP: 0033:0x7f0ec9b8eec9
[  254.120014][ T8992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.140534][ T8992] RSP: 002b:00007f0eca9fd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  254.149164][ T8992] RAX: ffffffffffffffda RBX: 00007f0ec9de5fa0 RCX: 00007f0ec9b8eec9
[  254.157344][ T8992] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  254.165450][ T8992] RBP: 00007f0eca9fd090 R08: 0000000000000000 R09: 0000000000000000
[  254.173570][ T8992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  254.181940][ T8992] R13: 00007f0ec9de6038 R14: 00007f0ec9de5fa0 R15: 00007ffd3a911158
[  254.190654][ T8992]  </TASK>
[  254.469970][ T9003] netlink: 'syz.0.1176': attribute type 10 has an invalid length.
[  254.489294][ T9003] macvlan0: entered allmulticast mode
[  254.555168][ T9003] .`: (slave macvlan0): Enslaving as an active interface with an up link
[  254.660712][ T9011] C: renamed from team_slave_0 (while UP)
[  254.664188][ T9012] FAULT_INJECTION: forcing a failure.
[  254.664188][ T9012] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  254.682929][ T9011] netlink: 'syz.2.1183': attribute type 3 has an invalid length.
[  254.686680][ T9012] CPU: 1 PID: 9012 Comm: syz.1.1182 Not tainted syzkaller #0
[  254.698267][ T9012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  254.702214][ T9011] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1183'.
[  254.708374][ T9012] Call Trace:
[  254.708389][ T9012]  <TASK>
[  254.708400][ T9012]  dump_stack_lvl+0x16c/0x230
[  254.708437][ T9012]  ? show_regs_print_info+0x20/0x20
[  254.734411][ T9012]  ? load_image+0x3b0/0x3b0
[  254.739796][ T9012]  ? __might_fault+0xaa/0x120
[  254.744537][ T9012]  ? __lock_acquire+0x7c80/0x7c80
[  254.749656][ T9012]  should_fail_ex+0x39d/0x4d0
[  254.754507][ T9012]  _copy_from_user+0x2f/0xe0
[  254.759148][ T9012]  ___sys_recvmsg+0x12f/0x510
[  254.763893][ T9012]  ? __sys_recvmsg+0x270/0x270
[  254.769160][ T9012]  ? ksys_write+0x1c1/0x250
[  254.773825][ T9012]  ? __fget_files+0x44a/0x4d0
[  254.778664][ T9012]  __x64_sys_recvmsg+0x1f2/0x2c0
[  254.783865][ T9012]  ? ___sys_recvmsg+0x510/0x510
[  254.788868][ T9012]  ? lockdep_hardirqs_on+0x98/0x150
[  254.794149][ T9012]  do_syscall_64+0x55/0xb0
[  254.796145][ T9014] netlink: 'syz.0.1184': attribute type 17 has an invalid length.
[  254.798597][ T9012]  ? clear_bhb_loop+0x40/0x90
[  254.798626][ T9012]  ? clear_bhb_loop+0x40/0x90
[  254.798649][ T9012]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  254.798682][ T9012] RIP: 0033:0x7f479058eec9
[  254.807389][ T9014] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1184'.
[  254.811805][ T9012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.811827][ T9012] RSP: 002b:00007f478e7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  254.811850][ T9012] RAX: ffffffffffffffda RBX: 00007f47907e5fa0 RCX: 00007f479058eec9
[  254.811864][ T9012] RDX: 0000000000000122 RSI: 00002000000000c0 RDI: 0000000000000003
[  254.811877][ T9012] RBP: 00007f478e7f6090 R08: 0000000000000000 R09: 0000000000000000
[  254.811889][ T9012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  254.811901][ T9012] R13: 00007f47907e6038 R14: 00007f47907e5fa0 R15: 00007ffe99cb70d8
[  254.811931][ T9012]  </TASK>
[  254.937566][ T9016] netlink: 'syz.2.1185': attribute type 9 has an invalid length.
[  254.961772][ T9014] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  254.977420][ T9016] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1185'.
[  255.002472][ T9019] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1186'.
[  255.012118][ T9019] openvswitch: netlink: Message has 20476 unknown bytes.
[  255.043617][ T9019] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1186'.
[  255.169188][ T9016] netlink: 'syz.2.1185': attribute type 9 has an invalid length.
[  255.177301][ T9016] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1185'.
[  255.925106][ T9048] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1205'.
[  255.947302][ T9050] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.1197'.
[  255.961969][ T9048] openvswitch: netlink: Message has 20476 unknown bytes.
[  255.975515][ T9050] openvswitch: netlink: Message has 20476 unknown bytes.
[  255.989117][ T9042] delete_channel: no stack
[  256.177366][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  256.184402][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  256.579765][ T9060] openvswitch: netlink: Message has 20476 unknown bytes.
[  256.637861][ T9062] openvswitch: netlink: Message has 20476 unknown bytes.
[  257.490159][ T9076] netlink: 'syz.1.1203': attribute type 9 has an invalid length.
[  259.463907][ T9078] netlink: 'syz.1.1203': attribute type 9 has an invalid length.
[  259.498770][ T9078] __nla_validate_parse: 9 callbacks suppressed
[  259.498789][ T9078] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1203'.
[  259.537424][ T9084] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1207'.
[  259.677942][ T9084] netlink: 'syz.2.1207': attribute type 29 has an invalid length.
[  259.927322][ T9094] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1211'.
[  259.938800][ T9094] openvswitch: netlink: Message has 20476 unknown bytes.
[  259.962801][ T9094] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1211'.
[  261.717028][ T9130] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1224'.
[  261.755187][ T9130] openvswitch: netlink: Message has 20476 unknown bytes.
[  261.813193][ T9130] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1224'.
[  261.995844][ T9135] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1226'.
[  262.014761][ T9135] openvswitch: netlink: Message has 20476 unknown bytes.
[  262.054448][ T9135] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1226'.
[  263.992225][ T9176] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.1242'.
[  264.113853][ T9176] openvswitch: netlink: Message has 20476 unknown bytes.
[  264.205325][ T9179] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1242'.
[  264.669143][ T9193] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1246'.
[  264.733021][ T9193] netlink: 'syz.3.1246': attribute type 29 has an invalid length.
[  265.790597][ T9214] netlink: 192436 bytes leftover after parsing attributes in process `syz.1.1254'.
[  265.805458][ T9214] openvswitch: netlink: Message has 20476 unknown bytes.
[  265.816765][ T9214] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1254'.
[  268.385006][ T9250] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.1265'.
[  268.395494][ T9250] openvswitch: netlink: Message has 20476 unknown bytes.
[  268.406061][ T9253] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1266'.
[  268.425765][ T9250] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1265'.
[  270.101291][ T9288] netlink: 63503 bytes leftover after parsing attributes in process `syz.0.1278'.
[  270.586029][ T9297] netlink: 'syz.2.1281': attribute type 27 has an invalid length.
[  270.597186][ T9297] netlink: 164 bytes leftover after parsing attributes in process `syz.2.1281'.
[  271.477154][ T9315] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.1290'.
[  271.905799][ T9326] netlink: 'syz.0.1294': attribute type 16 has an invalid length.
[  271.943285][ T9326] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1294'.
[  272.012634][ T9326] bridge0: port 1(bridge_slave_0) entered disabled state
[  272.240272][ T9335] netlink: 'syz.3.1297': attribute type 21 has an invalid length.
[  272.259126][ T9335] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1297'.
[  272.279118][ T9335] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1297'.
[  272.914306][ T9347] netlink: 'syz.2.1301': attribute type 21 has an invalid length.
[  273.205699][ T9352] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1303'.
[  273.410635][ T9360] netlink: 14975 bytes leftover after parsing attributes in process `syz.1.1306'.
[  273.440630][ T9360] netlink: 'syz.1.1306': attribute type 10 has an invalid length.
[  273.510376][ T9360] batman_adv: batadv0: Adding interface: team0
[  273.516717][ T9360] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  273.589007][ T9360] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  273.701926][ T9370] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1311'.
[  274.555816][ T9391] FAULT_INJECTION: forcing a failure.
[  274.555816][ T9391] name failslab, interval 1, probability 0, space 0, times 0
[  274.574680][ T9391] CPU: 0 PID: 9391 Comm: syz.3.1321 Not tainted syzkaller #0
[  274.582133][ T9391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  274.592256][ T9391] Call Trace:
[  274.595750][ T9391]  <TASK>
[  274.598721][ T9391]  dump_stack_lvl+0x16c/0x230
[  274.603541][ T9391]  ? show_regs_print_info+0x20/0x20
[  274.608985][ T9391]  ? load_image+0x3b0/0x3b0
[  274.613633][ T9391]  ? __might_sleep+0xe0/0xe0
[  274.618283][ T9391]  ? __lock_acquire+0x7c80/0x7c80
[  274.623457][ T9391]  should_fail_ex+0x39d/0x4d0
[  274.628194][ T9391]  should_failslab+0x9/0x20
[  274.632753][ T9391]  slab_pre_alloc_hook+0x59/0x310
[  274.637853][ T9391]  ? apparmor_sk_alloc_security+0x77/0x100
[  274.644161][ T9391]  __kmem_cache_alloc_node+0x53/0x260
[  274.649695][ T9391]  ? apparmor_sk_alloc_security+0x77/0x100
[  274.655559][ T9391]  kmalloc_trace+0x2a/0xe0
[  274.660039][ T9391]  apparmor_sk_alloc_security+0x77/0x100
[  274.665901][ T9391]  security_sk_alloc+0x6e/0xa0
[  274.670930][ T9391]  sk_prot_alloc+0x101/0x210
[  274.675643][ T9391]  sk_alloc+0x3a/0x360
[  274.679749][ T9391]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  274.685939][ T9391]  __vsock_create+0x3b/0x920
[  274.690562][ T9391]  vsock_create+0x132/0x3b0
[  274.695094][ T9391]  __sock_create+0x4a6/0x940
[  274.699737][ T9391]  __sys_socket+0xd7/0x1a0
[  274.704359][ T9391]  __x64_sys_socket+0x7a/0x90
[  274.709065][ T9391]  do_syscall_64+0x55/0xb0
[  274.713509][ T9391]  ? clear_bhb_loop+0x40/0x90
[  274.718202][ T9391]  ? clear_bhb_loop+0x40/0x90
[  274.722941][ T9391]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.728950][ T9391] RIP: 0033:0x7f008ff8eec9
[  274.733558][ T9391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.753715][ T9391] RSP: 002b:00007f0090e61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  274.762275][ T9391] RAX: ffffffffffffffda RBX: 00007f00901e5fa0 RCX: 00007f008ff8eec9
[  274.770360][ T9391] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000028
[  274.778439][ T9391] RBP: 00007f0090e61090 R08: 0000000000000000 R09: 0000000000000000
[  274.786571][ T9391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.794822][ T9391] R13: 00007f00901e6038 R14: 00007f00901e5fa0 R15: 00007ffc324e4ba8
[  274.802831][ T9391]  </TASK>
[  274.840419][ T9395] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1319'.
[  275.013223][ T9404] netlink: 'syz.0.1325': attribute type 21 has an invalid length.
[  275.873652][ T9430] __nla_validate_parse: 2 callbacks suppressed
[  275.873676][ T9430] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1333'.
[  276.470906][ T9440] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1336'.
[  276.716943][ T9447] netlink: 'syz.3.1337': attribute type 4 has an invalid length.
[  276.725236][ T9447] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1337'.
[  276.974699][ T9453] netlink: 'syz.0.1340': attribute type 39 has an invalid length.
[  277.212157][ T9460] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1344'.
[  277.222594][ T9460] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1344'.
[  277.232946][ T9460] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1344'.
[  281.205591][ T9481] ------------[ cut here ]------------
[  281.212059][ T9481] WARNING: CPU: 1 PID: 9481 at kernel/events/core.c:6806 perf_pending_task+0x35c/0x470
[  281.222584][ T9481] Modules linked in:
[  281.226530][ T9481] CPU: 1 PID: 9481 Comm: syz.3.1352 Not tainted syzkaller #0
[  281.234360][ T9481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  281.244993][ T9481] RIP: 0010:perf_pending_task+0x35c/0x470
[  281.250928][ T9481] Code: ff 84 db 75 14 e8 54 49 d6 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 40 49 d6 ff e8 bb 4d 51 ff eb e5 e8 34 49 d6 ff <0f> 0b e9 f3 fe ff ff e8 28 49 d6 ff 48 c7 c7 30 d0 dc 8c 4c 89 f6
[  281.271215][ T9481] RSP: 0018:ffffc900034cfa00 EFLAGS: 00010293
[  281.277348][ T9481] RAX: ffffffff81af4e6c RBX: ffff88807800f218 RCX: ffff88802de81e00
[  281.285653][ T9481] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  281.293869][ T9481] RBP: 0000000000000001 R08: ffffffff8e4a7fef R09: 1ffffffff1c94ffd
[  281.302261][ T9481] R10: dffffc0000000000 R11: fffffbfff1c94ffe R12: ffff88802de81e00
[  281.310471][ T9481] R13: ffff8880301a2530 R14: ffff88807800efd8 R15: 1ffff1100f001dfb
[  281.318758][ T9481] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  281.327920][ T9481] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  281.335059][ T9481] CR2: 0000000100000001 CR3: 00000000307b3000 CR4: 00000000003506e0
[  281.343277][ T9481] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  281.351376][ T9481] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  281.359748][ T9481] Call Trace:
[  281.363077][ T9481]  <TASK>
[  281.366061][ T9481]  task_work_run+0x1ce/0x250
[  281.371013][ T9481]  ? task_work_cancel+0x240/0x240
[  281.376113][ T9481]  do_exit+0x90b/0x23c0
[  281.380424][ T9481]  ? lock_chain_count+0x20/0x20
[  281.385729][ T9481]  ? put_task_struct+0xc0/0xc0
[  281.391044][ T9481]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  281.397458][ T9481]  ? lockdep_hardirqs_on+0x98/0x150
[  281.402981][ T9481]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  281.409467][ T9481]  do_group_exit+0x21b/0x2d0
[  281.414302][ T9481]  ? _raw_spin_unlock_irq+0x29/0x50
[  281.419827][ T9481]  get_signal+0x12fc/0x1400
[  281.424875][ T9481]  arch_do_signal_or_restart+0x96/0x780
[  281.431067][ T9481]  ? get_sigframe_size+0x20/0x20
[  281.436541][ T9481]  ? exit_to_user_mode_loop+0x3b/0x110
[  281.442560][ T9481]  exit_to_user_mode_loop+0x70/0x110
[  281.447952][ T9481]  exit_to_user_mode_prepare+0xf6/0x180
[  281.453903][ T9481]  syscall_exit_to_user_mode+0x1a/0x50
[  281.459486][ T9481]  do_syscall_64+0x61/0xb0
[  281.464242][ T9481]  ? clear_bhb_loop+0x40/0x90
[  281.469079][ T9481]  ? clear_bhb_loop+0x40/0x90
[  281.473893][ T9481]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  281.480041][ T9481] RIP: 0033:0x7f008ff8eec9
[  281.484511][ T9481] Code: Unable to access opcode bytes at 0x7f008ff8ee9f.
[  281.492281][ T9481] RSP: 002b:00007f0090e400e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  281.501276][ T9481] RAX: fffffffffffffe00 RBX: 00007f00901e6098 RCX: 00007f008ff8eec9
[  281.510293][ T9481] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f00901e6098
[  281.518424][ T9481] RBP: 00007f00901e6090 R08: 0000000000000000 R09: 0000000000000000
[  281.527071][ T9481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.535678][ T9481] R13: 00007f00901e6128 R14: 00007ffc324e4ac0 R15: 00007ffc324e4ba8
[  281.543796][ T9481]  </TASK>
[  281.546867][ T9481] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  281.554185][ T9481] CPU: 1 PID: 9481 Comm: syz.3.1352 Not tainted syzkaller #0
[  281.561704][ T9481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  281.572105][ T9481] Call Trace:
[  281.575438][ T9481]  <TASK>
[  281.578424][ T9481]  dump_stack_lvl+0x16c/0x230
[  281.583443][ T9481]  ? show_regs_print_info+0x20/0x20
[  281.588714][ T9481]  ? load_image+0x3b0/0x3b0
[  281.593289][ T9481]  panic+0x2c0/0x710
[  281.597250][ T9481]  ? bpf_jit_dump+0xd0/0xd0
[  281.602102][ T9481]  __warn+0x2e0/0x470
[  281.606222][ T9481]  ? perf_pending_task+0x35c/0x470
[  281.611387][ T9481]  ? perf_pending_task+0x35c/0x470
[  281.616546][ T9481]  report_bug+0x2be/0x4f0
[  281.620919][ T9481]  ? perf_pending_task+0x35c/0x470
[  281.626170][ T9481]  ? perf_pending_task+0x35c/0x470
[  281.631335][ T9481]  ? perf_pending_task+0x35e/0x470
[  281.636582][ T9481]  handle_bug+0xcf/0x120
[  281.640865][ T9481]  exc_invalid_op+0x1a/0x50
[  281.645395][ T9481]  asm_exc_invalid_op+0x1a/0x20
[  281.650364][ T9481] RIP: 0010:perf_pending_task+0x35c/0x470
[  281.656136][ T9481] Code: ff 84 db 75 14 e8 54 49 d6 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 40 49 d6 ff e8 bb 4d 51 ff eb e5 e8 34 49 d6 ff <0f> 0b e9 f3 fe ff ff e8 28 49 d6 ff 48 c7 c7 30 d0 dc 8c 4c 89 f6
[  281.676500][ T9481] RSP: 0018:ffffc900034cfa00 EFLAGS: 00010293
[  281.682759][ T9481] RAX: ffffffff81af4e6c RBX: ffff88807800f218 RCX: ffff88802de81e00
[  281.691647][ T9481] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  281.699750][ T9481] RBP: 0000000000000001 R08: ffffffff8e4a7fef R09: 1ffffffff1c94ffd
[  281.707753][ T9481] R10: dffffc0000000000 R11: fffffbfff1c94ffe R12: ffff88802de81e00
[  281.715758][ T9481] R13: ffff8880301a2530 R14: ffff88807800efd8 R15: 1ffff1100f001dfb
[  281.723840][ T9481]  ? perf_pending_task+0x35c/0x470
[  281.729028][ T9481]  task_work_run+0x1ce/0x250
[  281.733772][ T9481]  ? task_work_cancel+0x240/0x240
[  281.738842][ T9481]  do_exit+0x90b/0x23c0
[  281.743209][ T9481]  ? lock_chain_count+0x20/0x20
[  281.748084][ T9481]  ? put_task_struct+0xc0/0xc0
[  281.753425][ T9481]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  281.759654][ T9481]  ? lockdep_hardirqs_on+0x98/0x150
[  281.764886][ T9481]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  281.771105][ T9481]  do_group_exit+0x21b/0x2d0
[  281.775721][ T9481]  ? _raw_spin_unlock_irq+0x29/0x50
[  281.780942][ T9481]  get_signal+0x12fc/0x1400
[  281.785494][ T9481]  arch_do_signal_or_restart+0x96/0x780
[  281.791071][ T9481]  ? get_sigframe_size+0x20/0x20
[  281.796077][ T9481]  ? exit_to_user_mode_loop+0x3b/0x110
[  281.801593][ T9481]  exit_to_user_mode_loop+0x70/0x110
[  281.807039][ T9481]  exit_to_user_mode_prepare+0xf6/0x180
[  281.812710][ T9481]  syscall_exit_to_user_mode+0x1a/0x50
[  281.818202][ T9481]  do_syscall_64+0x61/0xb0
[  281.822726][ T9481]  ? clear_bhb_loop+0x40/0x90
[  281.827417][ T9481]  ? clear_bhb_loop+0x40/0x90
[  281.832247][ T9481]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  281.838379][ T9481] RIP: 0033:0x7f008ff8eec9
[  281.842822][ T9481] Code: Unable to access opcode bytes at 0x7f008ff8ee9f.
[  281.850062][ T9481] RSP: 002b:00007f0090e400e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  281.858613][ T9481] RAX: fffffffffffffe00 RBX: 00007f00901e6098 RCX: 00007f008ff8eec9
[  281.866996][ T9481] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f00901e6098
[  281.875009][ T9481] RBP: 00007f00901e6090 R08: 0000000000000000 R09: 0000000000000000
[  281.883373][ T9481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.891485][ T9481] R13: 00007f00901e6128 R14: 00007ffc324e4ac0 R15: 00007ffc324e4ba8
[  281.899628][ T9481]  </TASK>
[  281.903379][ T9481] Kernel Offset: disabled
[  281.907726][ T9481] Rebooting in 86400 seconds..