last executing test programs:

8.967302691s ago: executing program 0 (id=1429):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x41)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1837000000000000000000000800000085550c00000000009500000000000000e95a7f0fda1bc47138b7c53358451a9fa55742722f2d891fcf50e9d9ba8c18740091e294f5e3f6919d2e8a39d6119fbbbca9d0a4fe148f638347e08636ba40af31364908adfd64cafc4f7275fce536a74435dced0929185cb17ff57535ea870a2c0b60fcbf5c929988527d6c39b38e250e3af4a548f228bb66cd2ef0b591cf5da93825149d1a981f2bab3882c5b390aa251aa5c81ea7e1ab578306ec55ed304fb348d866586e62ad91d210f5c3df337b0ad85f7505ece06e1317d2d70bd3f24cf881d1a7f08249f3575d8e2729e72fc73c3c6a9107557d4d73c6a16098fad638dd05006ac2496ff16198b05b4eb885824518b5ebe1c5279595486b387fca4d682a8ae38bed86da508891ffb168899ace398b787f37b3a0390059d733be5fd0"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x24, 0xffffffffffffffff, 0x0, 0x0, '\x00', 0x0, 0x38}, 0x80)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
openat$ppp(0xffffffffffffff9c, 0x0, 0x200100, 0x0)
socket$kcm(0x2, 0x3, 0x2)
r2 = socket$kcm(0x10, 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0), 0xc)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_config_ext={0x4, 0x8}, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="d8000000180081054e81f783db4cb9040a1d080006007c09e8fc55a10a0015000600142603600e1208000f00fff00401a80008000800114004080000055c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe144ecc447c65e206d25b4084121d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300fc0d15", 0xd8}], 0x1}, 0x4000000)

7.417334216s ago: executing program 0 (id=1443):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x10000000, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_bp={0x0, 0xf}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b07d25a806c8c6f94f90624fc60100005000a000200053582c137153e37000c0980fc", 0x29}], 0x1}, 0x0)
close(r2)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz0\x00', 0x1ff)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x5c, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x50)

6.466076357s ago: executing program 0 (id=1438):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x4, 0x6, 0x7f, 0x10}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000400), &(0x7f00000001c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xd0}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0xffffffffffffffff, 0x4, 0x10}, 0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={0x1, 0x58, &(0x7f00000000c0)}, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x1000}, 0x50)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90224fc602f1a99000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

5.266210608s ago: executing program 2 (id=1445):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x41)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x24, 0xffffffffffffffff, 0x0, 0x0, '\x00', 0x0, 0x38}, 0x80)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
openat$ppp(0xffffffffffffff9c, 0x0, 0x200100, 0x0)
socket$kcm(0x2, 0x3, 0x2)
r2 = socket$kcm(0x10, 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0), 0xc)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_config_ext={0x4, 0x8}, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="d8000000180081054e81f783db4cb9040a1d080006007c09e8fc55a10a0015000600142603600e1208000f00fff00401a80008000800114004080000055c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe144ecc447c65e206d25b4084121d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300fc0d15", 0xd8}], 0x1}, 0x4000000)

5.264548388s ago: executing program 0 (id=1453):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x4, 0x6, 0x7f, 0x10}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000400), &(0x7f00000001c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xd0}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0xffffffffffffffff, 0x4, 0x10}, 0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={0x1, 0x58, &(0x7f00000000c0)}, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x1000}, 0x50)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90224fc602f1a99000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

5.184825251s ago: executing program 1 (id=1447):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x69, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x40012100)

4.854200905s ago: executing program 3 (id=1448):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x10000000, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_bp={0x0, 0xf}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b07d25a806c8c6f94f90624fc60100005000a000200053582c137153e37000c0980fc", 0x29}], 0x1}, 0x0)
close(r2)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz0\x00', 0x1ff)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="b702000000000090bfa300000000000007030000f0ffffff7a0af0ff0200000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe000000008500000042000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87881c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f85db47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989425f5d0b79f6584d0416d7c4bb9f547b328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f37f3e2c25a61ec45c3af97a8f17da954aff3fc8c108755f01000000010000006e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ac59dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7f9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c183c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b98d2de10c21d3ea02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d000000200008000000000000001abc11c800000000000000000000000928ee53595a779d243a48cea769470424d20a04c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2c4af38ffb7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da202274f20675eb781925441578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec7ffff35e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b7e508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d7fcd116bce9c764c714c9402c21d181aac59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000749efd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0eb3280e09758bd445ab91d20baca005472b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92fe8bad99ca332af00f191b66b6a6f732a91f0e2e9190e4b448da7de018c58e950767f9b320be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c52573d9308a13d115b43f8b1894c8fa8a14dc4810f61ae96bf704526a8919bc700002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42c68a27ef6a1296dfff4a979369b0e8ebc62887aa46e820a74f91381ccc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f78fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb3c035fc6846abe389b25c988f0bbb889560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a426a9b7d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac4728288e78980c1184d8223edbccbf9258b7374e79a1f8bf3fb73cfd1e76982f3d899f71e495f0ba8c6dbb7bbdfc399847a11921f97eba0ea14c4fed9a71eedb97c02461792e4a48dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ca2a4583f3d40e817433d0f4f25cfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f3e34b7524642c248aa813edaa626f00000021f8547d393dabe616fbbde21c90be00b5a22671395c7a69c6dd4d022ffc97ddb6aa025131652d409da1d8cfc3d219d4b1c1b7b8170d7c33d91db2b73f7ae02485a209a2474b5d0790d05c01bec623056e4d3f4d3149373a28b26a15a1fcce73d57e6eaf7e6f315fe275ebc9ef7aeca277dde01dde724f419803a2172a7833ceab38d21ca4f1dea5e1f4d8824167b21dd289dd4e6ecfba9e163bdbc48e1e758ecde05c10809c9edfa6d77c652fd742e6dad13d2a397bebe3ea8bc087d3720e2202f36c7719ae34f042e19dc08a3323a3d94098a7ec171469352bab1662c3e4d4803c565cfcce32dad628fade43a4844abb230ce608726fd87e93c405a96cf638c41510f26e9da5f316"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x5c, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x50)

4.01529613s ago: executing program 3 (id=1449):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="d8000000180081054e81f783db4cb9040a1d080006007c09e8fc55a10a0015000600142603600e1208000f00fff00401a80008000800114004080000055c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe144ecc447c65e206d25b4084121d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300fc0d15", 0xd8}], 0x1}, 0x4000000)

2.471035445s ago: executing program 1 (id=1450):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x41)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x24, 0xffffffffffffffff, 0x0, 0x0, '\x00', 0x0, 0x38}, 0x80)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
openat$ppp(0xffffffffffffff9c, 0x0, 0x200100, 0x0)
socket$kcm(0x2, 0x3, 0x2)
r2 = socket$kcm(0x10, 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0), 0xc)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_config_ext={0x4, 0x8}, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="d8000000180081054e81f783db4cb9040a1d080006007c09e8fc55a10a0015000600142603600e1208000f00fff00401a80008000800114004080000055c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe144ecc447c65e206d25b4084121d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300fc0d15", 0xd8}], 0x1}, 0x4000000)

2.421263167s ago: executing program 0 (id=1451):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff801}, [@printk={@p, {}, {}, {}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x5}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='percpu_alloc_percpu\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc", 0x29}], 0x1}, 0x0)

2.35665209s ago: executing program 3 (id=1452):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x40000000000, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x114301, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x2, 0x3, 0x106)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000003c0))

2.330701171s ago: executing program 2 (id=1454):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x400000000004, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x20000006, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0xc001, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='-4'], 0xc)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xe3589, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x401, 0x0, 0x1, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x41, 0x2, 0x0, 0x0, 0x0, 0x0, 0x91c, 0x4156, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffff8, 0x1}, 0x12640, 0x0, 0xfffffffe, 0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r2)
socketpair(0x1, 0x801, 0x0, &(0x7f0000000100))
write$cgroup_type(r2, &(0x7f0000000080), 0x11ffffce1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000080)=ANY=[@ANYBLOB='N-'], 0x6a)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x1, 0x0, &(0x7f0000000240)='n', 0x0, 0x40002, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r5, &(0x7f00000002c0)={&(0x7f0000000080)={0x2, 0x4e2b, @multicast2}, 0x10, &(0x7f0000000380), 0x2, &(0x7f0000000280)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x1e}, @initdev={0xac, 0x1e, 0x1, 0x0}}}}], 0x20}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x50}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0)

2.204598307s ago: executing program 0 (id=1455):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x39, 0x9}, 0x0, 0x10000, 0xffffff96, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x806, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000)={r0})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e46558"], 0xb2)
bpf$LINK_DETACH(0x22, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
perf_event_open(0x0, 0x0, 0x40000000001, 0xffffffffffffffff, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x100)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x86bf2056334f3ae6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000300)='syzkaller\x00'}, 0x94)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000001980)="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"}, 0x20)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x7}, [@call={0x85, 0x0, 0x0, 0x75}, @printk={@s, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x34}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2.006726115s ago: executing program 3 (id=1456):
socket$kcm(0x10, 0x2, 0x10)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
close(r0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r2 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r3 = socket$kcm(0x1e, 0x4, 0x0)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x401}, 0x108b84, 0x520, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@call={0x85, 0x0, 0x0, 0xf}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xed41d0969ec4053c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r7}, 0x10)
sendmsg$kcm(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x1f, 0xd, &(0x7f0000000100)=ANY=[@ANYBLOB="18010000fcffffff0000000080000008850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000020000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a800000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r10 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001a00910c07a551559a257aac81"], 0xfe33)
r11 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x19c5a, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r11, 0x40042408, r12)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000ac0)=@bpf_lsm={0x4, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x4c}, [@call={0x85, 0x0, 0x0, 0x1a}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x94)
r13 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000e00)={0x6, 0x10, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0xe}, {{0x18, 0x1, 0x1, 0x0, r13}}, {}, [@ldst={0x2, 0x2, 0x3, 0x9, 0x0, 0xfffffffffffffff4, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000fd09000084"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r14}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r14}, 0x38)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000040)="5d6f89bb6e4c8638cc8474af7ca0b0fbb4e17f4dca5459d766b02497ea1173cac0cb4b2b7746dbd7db67f359c8e3f69ced6c793c57ee04fac160a6965ea860159e6de22ff84fe9ecf3542526340ddfc60691347d90279c33a8ec2d2115c7ecb473fe82d22a4ab644eea82d85758c", 0x6e}, {&(0x7f0000000280)="d0107c6f2a61879c2f5fcf01c3db3101e1cd52cdcdca169e518386440eb438feb5291950505130566fcea8f0c725d57464651de4c1441c7a7b1124767d1f5605d8bce58062a1a7a278d97290752601c0fb7c478db462f03fe981d7cec558f921af62f6b281d7ecd2ef23b8726c755128b1d0640d3251f3117deeeccbd4eb2bebdd6bdc220cb99e7e5fe4c0dce15aa9176a2412d6bcdd51dce4eecd6bdd2c8925c839bea7fd17ce8f634d77135e0a156bc8acba25db35b7597cf038911d892590fb9191f8e50aa640195b7b9013ce", 0xce}, {&(0x7f0000000380)="c5c2c1071a1462e4352d29db4191cbdd62428bb8cbfd0876e4082f2770ca6a4e5b3c4faa455c631c527ec8e6543ff060e88ac80029fb43fa6eab7636d0fe5cba6e8c2019f2f9ee0f541800f644de2f7ca8558819b6c5ff1aa3bcfd", 0x5b}], 0x3, &(0x7f00000004c0)=ANY=[@ANYBLOB="580000000000000014010000530e0000d9ce4f29d7f8ab945d996a90a2702d4e9d0000f68b682cbf233aa038b7a145a7cae3eb1099b9fa024ecb55661d3f5660986f746f1c85b747c98200000000000000"], 0x58}, 0x4)

1.845354852s ago: executing program 1 (id=1457):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0xc220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x4, 0x20084, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x0, 0x0, 0xffffffff, 0x6, 0x5, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_pressure(r0, 0x0, 0x2, 0x0)

1.680738558s ago: executing program 2 (id=1458):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x10000000, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_bp={0x0, 0xf}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b07d25a806c8c6f94f90624fc60100005000a000200053582c137153e37000c0980fc", 0x29}], 0x1}, 0x0)
close(r2)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz0\x00', 0x1ff)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x5c, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x50)

1.316767104s ago: executing program 1 (id=1459):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x69, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000e40)}, 0x40012100)

974.218588ms ago: executing program 1 (id=1460):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x4, 0x6, 0x7f, 0x10}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000400), &(0x7f00000001c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xd0}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0xffffffffffffffff, 0x4, 0x10}, 0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000002c0)={0x1, 0x58, &(0x7f00000000c0)}, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x1000}, 0x50)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90224fc602f1a99000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

865.987383ms ago: executing program 3 (id=1461):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0, 0x51, 0x0, 0x1}, 0x28)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x3e1, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080006007c09e8fe55a10a0015400100142603600e120800060000000401a80016000800014003000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="15000000060000000f00000008000000410000", @ANYBLOB='\x00'/19, @ANYRES32=<r4=>0x0], 0x50)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x4, 0x5, &(0x7f0000000580)=ANY=[@ANYRES64=r5], &(0x7f0000000280)='syzkaller\x00', 0xfffffffe, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback=0x1f, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, 0x0, 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000380)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0xe, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRESDEC=r4, @ANYBLOB="1db888472ebe013ea1d27c822bf8af807e497064872955dacc62242b80b8ca42b1a51758aefc540c35182a449b39a692c62568677401fe718f2c45679a463d4e790ef48abbc95464c96ec9910439fd67e7c015129b49e2d572b1b6dd803e3a1b4bb2c33cd8204899f9ed04bb3e264f5f74b5c53d"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffd2}, 0x94)
perf_event_open(&(0x7f0000000700)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0x5, 0xffffffffffffffff, 0x9)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8b04, &(0x7f0000000040)={'wlan1\x00', @random="01f8ffffff8d"})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x7, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x5, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0xff91, 0x0, &(0x7f0000000300)="0000091651c0eb9d3f1d1dd8a067fd32952be521c3772b0a1f82287f5f4afa3c46b2b59b6920900b5adb8de6b89f8fb04e3eed22335e825e621739c83a9855f06ccc9f2de25a4b2df3b65cf8637df6482eb42a0f3ac0878f8ddb842193", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
socket$kcm(0x10, 0x2, 0x4)

853.683014ms ago: executing program 2 (id=1462):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000a000000000000002306be246b1104000000000078b216004656ed66abd3ec664d7e95000000005d0000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)

217.38437ms ago: executing program 2 (id=1463):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff801}, [@printk={@p, {}, {}, {}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x5}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='percpu_alloc_percpu\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc", 0x29}], 0x1}, 0x0)

96.590776ms ago: executing program 3 (id=1464):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x40000000000, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x114301, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x2, 0x3, 0x106)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000003c0))

37.258008ms ago: executing program 1 (id=1472):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000500000004000000000000100800000000000000000000010500000009001d0400000000010000050100000000000000020000000000000000005f3000eefed326a8f8a88ee5d358f766966fecb295ea5dbb8e0a3b9cb2ee8dca3102f54124ad06c9c798fd9c97f4b0b2da05dc0a901c0f5e63be597184cbc628d79df6a16d25a407680340e19965b0944c4baa76c1b67042bb96fef6cd73465c2160a8f4bf215c0a2a552f762bb7da0669ede0cae266524c0c27c35631f451087008149965de2be8e3daad3f603287e0bf1ba41515e72fd4bd218a3f4602ee64c62d7c62c3e1e8770141a542e301db32f394f1b7e90412a239"], 0x0, 0x51, 0x0, 0x1}, 0x28)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x3e1, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080006007c09e8fe55a10a0015400100142603600e120800060000000401a80016000800014003000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="15000000060000000f00000008000000410000", @ANYBLOB='\x00'/19, @ANYRES32=<r4=>0x0], 0x50)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x4, 0x5, &(0x7f0000000580)=ANY=[@ANYRES64=r5], &(0x7f0000000280)='syzkaller\x00', 0xfffffffe, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback=0x1f, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, 0x0, 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000380)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0xe, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRESDEC=r4, @ANYBLOB="1db888472ebe013ea1d27c822bf8af807e497064872955dacc62242b80b8ca42b1a51758aefc540c35182a449b39a692c62568677401fe718f2c45679a463d4e790ef48abbc95464c96ec9910439fd67e7c015129b49e2d572b1b6dd803e3a1b4bb2c33cd8204899f9ed04bb3e264f5f74b5c53d"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffd2}, 0x94)
perf_event_open(&(0x7f0000000700)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0x5, 0xffffffffffffffff, 0x9)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8b04, &(0x7f0000000040)={'wlan1\x00', @random="01f8ffffff8d"})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x7, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x5, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0xff91, 0x0, &(0x7f0000000300)="0000091651c0eb9d3f1d1dd8a067fd32952be521c3772b0a1f82287f5f4afa3c46b2b59b6920900b5adb8de6b89f8fb04e3eed22335e825e621739c83a9855f06ccc9f2de25a4b2df3b65cf8637df6482eb42a0f3ac0878f8ddb842193", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
socket$kcm(0x10, 0x2, 0x4)

0s ago: executing program 2 (id=1465):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x400000000004, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x20000006, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0xc001, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='-4'], 0xc)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xe3589, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x401, 0x0, 0x1, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x41, 0x2, 0x0, 0x0, 0x0, 0x0, 0x91c, 0x4156, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffff8, 0x1}, 0x12640, 0x0, 0xfffffffe, 0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r2)
socketpair(0x1, 0x801, 0x0, &(0x7f0000000100))
write$cgroup_type(r2, &(0x7f0000000080), 0x11ffffce1)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, &(0x7f0000000080)={'vxcan1\x00', @remote})
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000080)=ANY=[@ANYBLOB='N-'], 0x6a)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x1, 0x0, &(0x7f0000000240)='n', 0x0, 0x40002, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r5, &(0x7f00000002c0)={&(0x7f0000000080)={0x2, 0x4e2b, @multicast2}, 0x10, &(0x7f0000000380), 0x2, &(0x7f0000000280)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x1e}, @initdev={0xac, 0x1e, 0x1, 0x0}}}}], 0x20}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x50}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0)

kernel console output (not intermixed with test programs):

 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.767624][ T6826] RSP: 002b:00007f985d0cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.776056][ T6826] RAX: ffffffffffffffda RBX: 00007f985c3e5fa0 RCX: 00007f985c18f749
[  141.784040][ T6826] RDX: 0000000000008054 RSI: 0000200000000300 RDI: 0000000000000003
[  141.792026][ T6826] RBP: 00007f985d0cc090 R08: 0000000000000000 R09: 0000000000000000
[  141.800092][ T6826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.808072][ T6826] R13: 00007f985c3e6038 R14: 00007f985c3e5fa0 R15: 00007ffe4a9dea08
[  141.816068][ T6826]  </TASK>
[  142.265691][ T6839] netlink: 'syz.0.301': attribute type 9 has an invalid length.
[  142.273731][ T6839] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.301'.
[  142.943330][ T6845] netlink: 'syz.1.303': attribute type 10 has an invalid length.
[  142.972452][ T6845] netlink: 40 bytes leftover after parsing attributes in process `syz.1.303'.
[  142.988840][ T6845] team0: Device geneve0 is up. Set it down before adding it as a team port
[  143.022663][ T6845] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  144.587890][ T6870] netlink: 'syz.2.311': attribute type 9 has an invalid length.
[  144.595902][ T6870] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.311'.
[  145.687309][ T6896] netlink: 40 bytes leftover after parsing attributes in process `syz.0.322'.
[  145.697249][ T6896] netlink: 40 bytes leftover after parsing attributes in process `syz.0.322'.
[  145.708446][ T6896] netlink: 40 bytes leftover after parsing attributes in process `syz.0.322'.
[  145.957492][ T6909] netlink: 'syz.1.326': attribute type 9 has an invalid length.
[  145.969842][ T6909] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.326'.
[  146.073743][ T6910] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.327'.
[  146.115207][ T6910] netlink: 'syz.2.327': attribute type 10 has an invalid length.
[  146.138371][ T6910] netlink: 40 bytes leftover after parsing attributes in process `syz.2.327'.
[  146.244906][ T6910] team0: Port device geneve0 added
[  146.520092][ T6910] syz.2.327 (6910) used greatest stack depth: 19432 bytes left
[  147.376098][ T6931] syzkaller0: entered promiscuous mode
[  147.388336][ T6931] syzkaller0: entered allmulticast mode
[  147.935484][ T6949] netlink: 'syz.0.339': attribute type 9 has an invalid length.
[  147.965147][ T6949] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.339'.
[  150.196041][ T6956] FAULT_INJECTION: forcing a failure.
[  150.196041][ T6956] name failslab, interval 1, probability 0, space 0, times 0
[  150.259876][ T6956] CPU: 0 PID: 6956 Comm: syz.2.341 Not tainted syzkaller #0
[  150.267259][ T6956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  150.277360][ T6956] Call Trace:
[  150.280681][ T6956]  <TASK>
[  150.283734][ T6956]  dump_stack_lvl+0x16c/0x230
[  150.288481][ T6956]  ? __bpf_trace_bpf_trace_printk+0x100/0x100
[  150.294610][ T6956]  ? show_regs_print_info+0x20/0x20
[  150.299871][ T6956]  ? load_image+0x3b0/0x3b0
[  150.304439][ T6956]  should_fail_ex+0x39d/0x4d0
[  150.309295][ T6956]  should_failslab+0x9/0x20
[  150.313869][ T6956]  slab_pre_alloc_hook+0x59/0x310
[  150.318966][ T6956]  kmem_cache_alloc+0x5a/0x2e0
[  150.323793][ T6956]  ? skb_clone+0x1eb/0x370
[  150.328289][ T6956]  skb_clone+0x1eb/0x370
[  150.332596][ T6956]  __netlink_deliver_tap+0x41c/0x830
[  150.338134][ T6956]  ? netlink_deliver_tap+0x2e/0x1b0
[  150.343397][ T6956]  netlink_deliver_tap+0x19c/0x1b0
[  150.348568][ T6956]  netlink_dump+0x8df/0xde0
[  150.353135][ T6956]  ? netlink_lookup+0x200/0x200
[  150.358053][ T6956]  ? netlink_autobind+0x300/0x300
[  150.363134][ T6956]  ? netlink_lookup+0x30/0x200
[  150.367944][ T6956]  ? netlink_lookup+0x30/0x200
[  150.372936][ T6956]  __netlink_dump_start+0x5f1/0x810
[  150.378195][ T6956]  packet_diag_handler_dump+0x1bd/0x270
[  150.383793][ T6956]  ? __lock_acquire+0x7c80/0x7c80
[  150.388879][ T6956]  ? packet_sendmsg_spkt+0x1120/0x1120
[  150.394396][ T6956]  ? packet_diag_handler_dump+0x270/0x270
[  150.400174][ T6956]  ? sock_diag_lock_handler+0x19/0x280
[  150.405696][ T6956]  ? sock_diag_lock_handler+0x19/0x280
[  150.411203][ T6956]  ? packet_sendmsg_spkt+0x1120/0x1120
[  150.416722][ T6956]  sock_diag_rcv_msg+0x3d8/0x600
[  150.421717][ T6956]  netlink_rcv_skb+0x216/0x480
[  150.426542][ T6956]  ? sock_diag_bind+0xb0/0xb0
[  150.431269][ T6956]  ? netlink_ack+0x1110/0x1110
[  150.436119][ T6956]  ? sock_diag_bind+0xb0/0xb0
[  150.440862][ T6956]  sock_diag_rcv+0x2a/0x40
[  150.445329][ T6956]  netlink_unicast+0x751/0x8d0
[  150.450159][ T6956]  netlink_sendmsg+0x8c1/0xbe0
[  150.454992][ T6956]  ? netlink_getsockopt+0x580/0x580
[  150.460254][ T6956]  ? aa_sock_msg_perm+0x94/0x150
[  150.465247][ T6956]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  150.470581][ T6956]  ? security_socket_sendmsg+0x80/0xa0
[  150.476089][ T6956]  ? netlink_getsockopt+0x580/0x580
[  150.481345][ T6956]  ____sys_sendmsg+0x5bf/0x950
[  150.486171][ T6956]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  150.492391][ T6956]  ? __asan_memset+0x22/0x40
[  150.497038][ T6956]  ? __sys_sendmsg_sock+0x30/0x30
[  150.502122][ T6956]  ? __import_iovec+0x5f2/0x860
[  150.507036][ T6956]  ? import_iovec+0x73/0xa0
[  150.511594][ T6956]  ___sys_sendmsg+0x220/0x290
[  150.516326][ T6956]  ? __sys_sendmsg+0x270/0x270
[  150.521194][ T6956]  __se_sys_sendmsg+0x1a5/0x270
[  150.526101][ T6956]  ? __x64_sys_sendmsg+0x80/0x80
[  150.531212][ T6956]  do_syscall_64+0x55/0xb0
[  150.535650][ T6956]  ? clear_bhb_loop+0x40/0x90
[  150.540349][ T6956]  ? clear_bhb_loop+0x40/0x90
[  150.545044][ T6956]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  150.550955][ T6956] RIP: 0033:0x7ff90c38f749
[  150.555410][ T6956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.575474][ T6956] RSP: 002b:00007ff90d250038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.583900][ T6956] RAX: ffffffffffffffda RBX: 00007ff90c5e5fa0 RCX: 00007ff90c38f749
[  150.591882][ T6956] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000a
[  150.599862][ T6956] RBP: 00007ff90d250090 R08: 0000000000000000 R09: 0000000000000000
[  150.607848][ T6956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.615826][ T6956] R13: 00007ff90c5e6038 R14: 00007ff90c5e5fa0 R15: 00007ffdec6cba28
[  150.624100][ T6956]  </TASK>
[  151.363653][ T6981] netlink: 'syz.2.349': attribute type 10 has an invalid length.
[  151.825256][ T6981] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  151.996184][ T6991] netlink: 'syz.1.351': attribute type 9 has an invalid length.
[  152.033752][ T6991] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.351'.
[  154.130699][ T7023] netlink: 'syz.0.360': attribute type 2 has an invalid length.
[  154.161265][ T7023] netlink: 'syz.0.360': attribute type 8 has an invalid length.
[  154.196245][ T7023] netlink: 132 bytes leftover after parsing attributes in process `syz.0.360'.
[  154.220212][ T7023] FAULT_INJECTION: forcing a failure.
[  154.220212][ T7023] name failslab, interval 1, probability 0, space 0, times 0
[  154.254172][ T7023] CPU: 1 PID: 7023 Comm: syz.0.360 Not tainted syzkaller #0
[  154.261644][ T7023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  154.271746][ T7023] Call Trace:
[  154.275076][ T7023]  <TASK>
[  154.278045][ T7023]  dump_stack_lvl+0x16c/0x230
[  154.282791][ T7023]  ? show_regs_print_info+0x20/0x20
[  154.288047][ T7023]  ? load_image+0x3b0/0x3b0
[  154.292605][ T7023]  ? __lock_acquire+0x7c80/0x7c80
[  154.297674][ T7023]  ? __lock_acquire+0x1260/0x7c80
[  154.302760][ T7023]  should_fail_ex+0x39d/0x4d0
[  154.307521][ T7023]  should_failslab+0x9/0x20
[  154.312075][ T7023]  slab_pre_alloc_hook+0x59/0x310
[  154.317131][ T7023]  ? fib_create_info+0xa61/0x2460
[  154.322176][ T7023]  ? fib_create_info+0xa61/0x2460
[  154.327213][ T7023]  __kmem_cache_alloc_node+0x53/0x260
[  154.332645][ T7023]  ? fib_create_info+0xa61/0x2460
[  154.337692][ T7023]  __kmalloc+0xa4/0x240
[  154.341874][ T7023]  fib_create_info+0xa61/0x2460
[  154.346759][ T7023]  fib_table_insert+0xc7/0x1b50
[  154.351826][ T7023]  ? l3mdev_fib_table+0x18/0x160
[  154.356793][ T7023]  ? l3mdev_fib_table+0x18/0x160
[  154.361757][ T7023]  fib_magic+0x2c5/0x390
[  154.366115][ T7023]  ? lock_chain_count+0x20/0x20
[  154.371024][ T7023]  ? fib_add_ifaddr+0x5e0/0x5e0
[  154.375924][ T7023]  ? queue_work_on+0x109/0x1e0
[  154.380731][ T7023]  fib_add_ifaddr+0x144/0x5e0
[  154.385427][ T7023]  ? is_eth_active_slave_of_bonding_rcu+0x260/0x260
[  154.392032][ T7023]  fib_inetaddr_event+0x140/0x1d0
[  154.397079][ T7023]  notifier_call_chain+0x197/0x390
[  154.402210][ T7023]  blocking_notifier_call_chain+0x6a/0x90
[  154.407946][ T7023]  __inet_insert_ifa+0x9ae/0xbb0
[  154.412912][ T7023]  ? inet_rcu_free_ifa+0xc0/0xc0
[  154.417968][ T7023]  inet_rtm_newaddr+0x1014/0x1a00
[  154.423041][ T7023]  ? inet_netconf_fill_devconf+0x890/0x890
[  154.428906][ T7023]  ? inet_netconf_fill_devconf+0x890/0x890
[  154.434735][ T7023]  rtnetlink_rcv_msg+0x7c7/0xf10
[  154.439787][ T7023]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  154.445012][ T7023]  ? lockdep_hardirqs_on+0x98/0x150
[  154.450253][ T7023]  ? rtnetlink_bind+0x80/0x80
[  154.455051][ T7023]  ? perf_trace_preemptirq_template+0xa4/0x340
[  154.461233][ T7023]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  154.467244][ T7023]  ? lock_chain_count+0x20/0x20
[  154.472120][ T7023]  ? __local_bh_enable_ip+0x12e/0x1c0
[  154.477504][ T7023]  ? lockdep_hardirqs_on+0x98/0x150
[  154.482720][ T7023]  ? __local_bh_enable_ip+0x12e/0x1c0
[  154.488099][ T7023]  ? _local_bh_enable+0xa0/0xa0
[  154.492970][ T7023]  ? __dev_queue_xmit+0x245/0x35a0
[  154.498102][ T7023]  ? __dev_queue_xmit+0x1449/0x35a0
[  154.503347][ T7023]  ? __dev_queue_xmit+0x245/0x35a0
[  154.508494][ T7023]  ? ref_tracker_free+0x634/0x7d0
[  154.513550][ T7023]  ? __copy_skb_header+0xa7/0x550
[  154.518595][ T7023]  netlink_rcv_skb+0x216/0x480
[  154.523378][ T7023]  ? rtnetlink_bind+0x80/0x80
[  154.528065][ T7023]  ? netlink_ack+0x1110/0x1110
[  154.532856][ T7023]  ? __lock_acquire+0x7c80/0x7c80
[  154.537984][ T7023]  ? netlink_deliver_tap+0x2e/0x1b0
[  154.543208][ T7023]  netlink_unicast+0x751/0x8d0
[  154.547997][ T7023]  netlink_sendmsg+0x8c1/0xbe0
[  154.552791][ T7023]  ? netlink_getsockopt+0x580/0x580
[  154.558016][ T7023]  ? aa_sock_msg_perm+0x94/0x150
[  154.562968][ T7023]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  154.568266][ T7023]  ? security_socket_sendmsg+0x80/0xa0
[  154.573734][ T7023]  ? netlink_getsockopt+0x580/0x580
[  154.578948][ T7023]  ____sys_sendmsg+0x5bf/0x950
[  154.583737][ T7023]  ? __asan_memset+0x22/0x40
[  154.588338][ T7023]  ? __sys_sendmsg_sock+0x30/0x30
[  154.593379][ T7023]  ? __import_iovec+0x5f2/0x860
[  154.598253][ T7023]  ? import_iovec+0x73/0xa0
[  154.602774][ T7023]  ___sys_sendmsg+0x220/0x290
[  154.607563][ T7023]  ? __sys_sendmsg+0x270/0x270
[  154.612359][ T7023]  ? __lock_acquire+0x7c80/0x7c80
[  154.617416][ T7023]  __se_sys_sendmsg+0x1a5/0x270
[  154.622290][ T7023]  ? __x64_sys_sendmsg+0x80/0x80
[  154.627269][ T7023]  ? lockdep_hardirqs_on+0x98/0x150
[  154.632479][ T7023]  do_syscall_64+0x55/0xb0
[  154.636908][ T7023]  ? clear_bhb_loop+0x40/0x90
[  154.641595][ T7023]  ? clear_bhb_loop+0x40/0x90
[  154.646287][ T7023]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  154.652190][ T7023] RIP: 0033:0x7f6e81d8f749
[  154.656623][ T7023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.676243][ T7023] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.684682][ T7023] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  154.692681][ T7023] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  154.700659][ T7023] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  154.708634][ T7023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  154.716613][ T7023] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  154.724607][ T7023]  </TASK>
[  155.065877][ T7037] netlink: 'syz.2.365': attribute type 9 has an invalid length.
[  155.074578][ T7037] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.365'.
[  155.472973][ T7046] netlink: 64859 bytes leftover after parsing attributes in process `syz.1.369'.
[  156.720241][ T7075] netlink: 'syz.0.377': attribute type 9 has an invalid length.
[  156.740927][ T7075] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.377'.
[  160.701549][ T7105] netlink: 'syz.1.384': attribute type 3 has an invalid length.
[  161.398125][ T7119] netlink: 'syz.3.389': attribute type 9 has an invalid length.
[  161.406423][ T7119] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.389'.
[  162.872762][ T7144] FAULT_INJECTION: forcing a failure.
[  162.872762][ T7144] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.900645][ T7144] CPU: 1 PID: 7144 Comm: syz.1.396 Not tainted syzkaller #0
[  162.908019][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  162.918209][ T7144] Call Trace:
[  162.921570][ T7144]  <TASK>
[  162.924550][ T7144]  dump_stack_lvl+0x16c/0x230
[  162.929289][ T7144]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  162.935499][ T7144]  ? show_regs_print_info+0x20/0x20
[  162.940751][ T7144]  ? load_image+0x3b0/0x3b0
[  162.945330][ T7144]  should_fail_ex+0x39d/0x4d0
[  162.950069][ T7144]  _copy_from_user+0x2f/0xe0
[  162.954726][ T7144]  kstrtouint_from_user+0xc2/0x150
[  162.959912][ T7144]  ? kstrtol_from_user+0x150/0x150
[  162.965190][ T7144]  proc_fail_nth_write+0x89/0x240
[  162.970273][ T7144]  ? proc_fail_nth_read+0x250/0x250
[  162.975528][ T7144]  ? proc_fail_nth_read+0x250/0x250
[  162.980765][ T7144]  vfs_write+0x288/0x940
[  162.985050][ T7144]  ? file_end_write+0x250/0x250
[  162.989930][ T7144]  ? __fget_files+0x28/0x4d0
[  162.994537][ T7144]  ? __fget_files+0x44a/0x4d0
[  162.999234][ T7144]  ? __fdget_pos+0x2a3/0x330
[  163.003868][ T7144]  ? ksys_write+0x75/0x250
[  163.008302][ T7144]  ksys_write+0x147/0x250
[  163.012647][ T7144]  ? __ia32_sys_read+0x90/0x90
[  163.017428][ T7144]  ? syscall_enter_from_user_mode+0x2e/0x80
[  163.023339][ T7144]  do_syscall_64+0x55/0xb0
[  163.027777][ T7144]  ? clear_bhb_loop+0x40/0x90
[  163.032467][ T7144]  ? clear_bhb_loop+0x40/0x90
[  163.037155][ T7144]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  163.043066][ T7144] RIP: 0033:0x7f3fc2b8e1ff
[  163.047587][ T7144] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  163.067321][ T7144] RSP: 002b:00007f3fc3ae3030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  163.075867][ T7144] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3fc2b8e1ff
[  163.083854][ T7144] RDX: 0000000000000001 RSI: 00007f3fc3ae30a0 RDI: 0000000000000006
[  163.091835][ T7144] RBP: 00007f3fc3ae3090 R08: 0000000000000000 R09: 0000000000000000
[  163.099818][ T7144] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  163.107884][ T7144] R13: 00007f3fc2de6038 R14: 00007f3fc2de5fa0 R15: 00007ffd501389c8
[  163.115986][ T7144]  </TASK>
[  164.103447][ T7157] netlink: 'syz.1.400': attribute type 9 has an invalid length.
[  164.130095][ T7157] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.400'.
[  165.447825][ T7179] netlink: 'syz.1.409': attribute type 2 has an invalid length.
[  165.476385][ T7179] netlink: 'syz.1.409': attribute type 8 has an invalid length.
[  165.508700][ T7179] netlink: 132 bytes leftover after parsing attributes in process `syz.1.409'.
[  165.533486][ T7174] netlink: 'syz.3.406': attribute type 153 has an invalid length.
[  165.554957][ T7174] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.406'.
[  165.799826][ T7191] netlink: 'syz.3.413': attribute type 9 has an invalid length.
[  165.807821][ T7191] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.413'.
[  166.995112][ T7223] netlink: 'syz.2.423': attribute type 10 has an invalid length.
[  167.031586][ T7223] batman_adv: batadv0: Adding interface: team0
[  167.052077][ T7223] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.090809][ T7223] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  167.116147][ T7228] netlink: 'syz.2.423': attribute type 10 has an invalid length.
[  167.148611][ T7228] netlink: 2 bytes leftover after parsing attributes in process `syz.2.423'.
[  167.190828][ T7228] team0: entered promiscuous mode
[  167.195952][ T7228] team_slave_0: entered promiscuous mode
[  167.203434][ T7228] team_slave_1: entered promiscuous mode
[  167.216821][ T7228] geneve0: entered promiscuous mode
[  167.251321][ T7228] 8021q: adding VLAN 0 to HW filter on device team0
[  167.284010][ T7228] batman_adv: batadv0: Interface activated: team0
[  167.308689][ T7228] batman_adv: batadv0: Interface deactivated: team0
[  167.325824][ T7228] batman_adv: batadv0: Removing interface: team0
[  167.367900][ T7228] bridge0: port 3(team0) entered blocking state
[  167.407646][ T7228] bridge0: port 3(team0) entered disabled state
[  167.422103][ T7228] team0: entered allmulticast mode
[  167.434619][ T7228] team_slave_0: entered allmulticast mode
[  167.442576][ T7235] netlink: 'syz.0.427': attribute type 9 has an invalid length.
[  167.451324][ T7228] team_slave_1: entered allmulticast mode
[  167.457276][ T7235] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.427'.
[  167.467144][ T7228] geneve0: entered allmulticast mode
[  167.513559][ T7228] bridge0: port 3(team0) entered blocking state
[  167.520542][ T7228] bridge0: port 3(team0) entered forwarding state
[  167.875094][ T7247] FAULT_INJECTION: forcing a failure.
[  167.875094][ T7247] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.906184][ T7247] CPU: 0 PID: 7247 Comm: syz.1.432 Not tainted syzkaller #0
[  167.913548][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  167.923648][ T7247] Call Trace:
[  167.927047][ T7247]  <TASK>
[  167.930005][ T7247]  dump_stack_lvl+0x16c/0x230
[  167.934720][ T7247]  ? show_regs_print_info+0x20/0x20
[  167.940211][ T7247]  ? load_image+0x3b0/0x3b0
[  167.944877][ T7247]  ? __might_fault+0xaa/0x120
[  167.949577][ T7247]  ? __lock_acquire+0x7c80/0x7c80
[  167.954635][ T7247]  should_fail_ex+0x39d/0x4d0
[  167.959444][ T7247]  _copy_to_user+0x2f/0xa0
[  167.963891][ T7247]  bpf_obj_get_info_by_fd+0x27d4/0x2d90
[  167.969486][ T7247]  ? bpf_map_get_fd_by_id+0x310/0x310
[  167.974913][ T7247]  ? get_pid_task+0x20/0x1e0
[  167.979565][ T7247]  ? file_end_write+0x159/0x250
[  167.984478][ T7247]  ? __might_fault+0xaa/0x120
[  167.989225][ T7247]  ? __might_fault+0xc6/0x120
[  167.993952][ T7247]  ? __might_fault+0xaa/0x120
[  167.998681][ T7247]  ? bpf_lsm_bpf+0x9/0x10
[  168.003053][ T7247]  ? security_bpf+0x7e/0xa0
[  168.007589][ T7247]  __sys_bpf+0x781/0x800
[  168.011863][ T7247]  ? bpf_link_show_fdinfo+0x350/0x350
[  168.017275][ T7247]  ? lock_chain_count+0x20/0x20
[  168.022163][ T7247]  __x64_sys_bpf+0x7c/0x90
[  168.026780][ T7247]  do_syscall_64+0x55/0xb0
[  168.031224][ T7247]  ? clear_bhb_loop+0x40/0x90
[  168.035943][ T7247]  ? clear_bhb_loop+0x40/0x90
[  168.040660][ T7247]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  168.047015][ T7247] RIP: 0033:0x7f3fc2b8f749
[  168.051455][ T7247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.071236][ T7247] RSP: 002b:00007f3fc3ae3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  168.079771][ T7247] RAX: ffffffffffffffda RBX: 00007f3fc2de5fa0 RCX: 00007f3fc2b8f749
[  168.087861][ T7247] RDX: 0000000000000010 RSI: 0000200000000a00 RDI: 000000000000000f
[  168.095944][ T7247] RBP: 00007f3fc3ae3090 R08: 0000000000000000 R09: 0000000000000000
[  168.103935][ T7247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.111928][ T7247] R13: 00007f3fc2de6038 R14: 00007f3fc2de5fa0 R15: 00007ffd501389c8
[  168.119946][ T7247]  </TASK>
[  168.277630][ T7254] netlink: 'syz.1.433': attribute type 1 has an invalid length.
[  168.319318][ T7254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.433'.
[  168.594232][ T7259] netlink: 'syz.2.435': attribute type 12 has an invalid length.
[  168.623414][ T7259] netlink: 132 bytes leftover after parsing attributes in process `syz.2.435'.
[  169.351769][ T7272] netlink: 'syz.2.440': attribute type 9 has an invalid length.
[  169.363762][ T7272] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.440'.
[  171.563139][ T7316] netlink: 'syz.2.453': attribute type 9 has an invalid length.
[  171.616540][ T7316] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.453'.
[  171.843902][ T7319] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.454'.
[  172.080481][ T7327] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  173.049113][ T7355] netlink: 'syz.3.465': attribute type 9 has an invalid length.
[  173.057011][ T7355] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.465'.
[  174.340102][ T7378] netlink: 'syz.3.472': attribute type 27 has an invalid length.
[  174.398152][ T7378] netlink: 164 bytes leftover after parsing attributes in process `syz.3.472'.
[  174.794901][ T7387] netlink: 'syz.0.476': attribute type 9 has an invalid length.
[  174.813025][ T7387] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.476'.
[  175.223262][ T7394] netlink: 'syz.1.477': attribute type 2 has an invalid length.
[  175.274408][ T7394] netlink: 'syz.1.477': attribute type 8 has an invalid length.
[  175.338598][ T7394] netlink: 132 bytes leftover after parsing attributes in process `syz.1.477'.
[  176.783259][ T7423] netlink: 'syz.0.487': attribute type 1 has an invalid length.
[  176.794053][ T7423] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.487'.
[  177.151468][ T7430] netlink: 'syz.2.489': attribute type 9 has an invalid length.
[  177.199592][ T7430] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.489'.
[  178.201561][ T7455] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  178.751788][ T7473] netlink: 'syz.2.501': attribute type 9 has an invalid length.
[  178.777180][ T7473] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.501'.
[  179.256425][ T7484] netlink: 'syz.2.505': attribute type 3 has an invalid length.
[  179.268618][ T7484] netlink: 152 bytes leftover after parsing attributes in process `syz.2.505'.
[  180.175948][ T7506] netlink: 'syz.2.514': attribute type 9 has an invalid length.
[  180.184052][ T7506] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.514'.
[  180.374535][ T7512] netlink: 'syz.2.516': attribute type 2 has an invalid length.
[  180.382583][ T7512] netlink: 132 bytes leftover after parsing attributes in process `syz.2.516'.
[  180.597898][ T7520] FAULT_INJECTION: forcing a failure.
[  180.597898][ T7520] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.647536][ T7520] CPU: 1 PID: 7520 Comm: syz.3.519 Not tainted syzkaller #0
[  180.655020][ T7520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  180.665151][ T7520] Call Trace:
[  180.668484][ T7520]  <TASK>
[  180.671477][ T7520]  dump_stack_lvl+0x16c/0x230
[  180.676241][ T7520]  ? show_regs_print_info+0x20/0x20
[  180.681521][ T7520]  ? load_image+0x3b0/0x3b0
[  180.686107][ T7520]  ? __might_fault+0xaa/0x120
[  180.690858][ T7520]  ? __lock_acquire+0x7c80/0x7c80
[  180.695982][ T7520]  should_fail_ex+0x39d/0x4d0
[  180.701029][ T7520]  _copy_to_user+0x2f/0xa0
[  180.705530][ T7520]  generic_map_lookup_batch+0x8c1/0xcd0
[  180.711156][ T7520]  ? __lock_acquire+0x7c80/0x7c80
[  180.716364][ T7520]  ? bpf_map_update_value+0x720/0x720
[  180.721843][ T7520]  ? __fdget+0x180/0x210
[  180.726178][ T7520]  ? bpf_map_update_value+0x720/0x720
[  180.731633][ T7520]  bpf_map_do_batch+0x2cb/0x610
[  180.736554][ T7520]  ? bpf_lsm_bpf+0x9/0x10
[  180.740939][ T7520]  ? security_bpf+0x7e/0xa0
[  180.745739][ T7520]  __sys_bpf+0x76e/0x800
[  180.750023][ T7520]  ? bpf_link_show_fdinfo+0x350/0x350
[  180.755558][ T7520]  ? lock_chain_count+0x20/0x20
[  180.760468][ T7520]  __x64_sys_bpf+0x7c/0x90
[  180.764920][ T7520]  do_syscall_64+0x55/0xb0
[  180.769371][ T7520]  ? clear_bhb_loop+0x40/0x90
[  180.774078][ T7520]  ? clear_bhb_loop+0x40/0x90
[  180.778792][ T7520]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  180.784715][ T7520] RIP: 0033:0x7f985c18f749
[  180.789163][ T7520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.808798][ T7520] RSP: 002b:00007f985d0cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  180.817257][ T7520] RAX: ffffffffffffffda RBX: 00007f985c3e5fa0 RCX: 00007f985c18f749
[  180.825262][ T7520] RDX: 0000000000000038 RSI: 00002000000003c0 RDI: 0000000000000018
[  180.833272][ T7520] RBP: 00007f985d0cc090 R08: 0000000000000000 R09: 0000000000000000
[  180.841282][ T7520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  180.849295][ T7520] R13: 00007f985c3e6038 R14: 00007f985c3e5fa0 R15: 00007ffe4a9dea08
[  180.857632][ T7520]  </TASK>
[  181.133722][ T7526] netlink: 15999 bytes leftover after parsing attributes in process `syz.1.520'.
[  181.251399][ T7527] netlink: 822 bytes leftover after parsing attributes in process `syz.3.521'.
[  181.261478][ T7527] veth0_to_bond: invalid flags given to default FDB implementation
[  181.273885][ T7527] netlink: 144316 bytes leftover after parsing attributes in process `syz.3.521'.
[  181.303277][ T7527] netlink: 4 bytes leftover after parsing attributes in process `syz.3.521'.
[  181.412461][   T79] wlan1: Trigger new scan to find an IBSS to join
[  181.677797][ T7536] netlink: 'syz.1.524': attribute type 7 has an invalid length.
[  181.740821][ T7536] netlink: 'syz.1.524': attribute type 6 has an invalid length.
[  182.384226][ T7548] netlink: 'syz.1.526': attribute type 9 has an invalid length.
[  182.412627][ T7548] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.526'.
[  183.276002][    C1] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[  183.304839][ T7571] netlink: 188 bytes leftover after parsing attributes in process `syz.3.535'.
[  185.417512][   T11] wlan1: Trigger new scan to find an IBSS to join
[  186.540954][ T7587] netlink: 'syz.0.540': attribute type 9 has an invalid length.
[  186.552189][ T7587] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.540'.
[  187.054304][ T7603] netlink: 'syz.3.545': attribute type 7 has an invalid length.
[  188.433669][ T7682] wlan1: Trigger new scan to find an IBSS to join
[  188.520130][ T7672] netlink: 65055 bytes leftover after parsing attributes in process `syz.2.552'.
[  189.500434][ T7700] netlink: 'syz.0.558': attribute type 9 has an invalid length.
[  189.533200][ T7700] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.558'.
[  191.435225][ T7678] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  191.869506][ T7745] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  191.894889][ T7742] netlink: 'syz.0.572': attribute type 9 has an invalid length.
[  191.908122][ T7742] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.572'.
[  194.785614][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  194.801151][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  196.106081][ T7788] netlink: 'syz.3.586': attribute type 9 has an invalid length.
[  196.122030][ T7788] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.586'.
[  196.852828][ T5802] Bluetooth: hci0: command 0x0406 tx timeout
[  196.859830][ T5803] Bluetooth: hci1: command 0x0406 tx timeout
[  196.859859][ T5798] Bluetooth: hci3: command 0x0406 tx timeout
[  196.865931][ T5802] Bluetooth: hci2: command 0x0406 tx timeout
[  197.149974][ T7819] FAULT_INJECTION: forcing a failure.
[  197.149974][ T7819] name failslab, interval 1, probability 0, space 0, times 0
[  197.169525][ T7819] CPU: 0 PID: 7819 Comm: syz.0.595 Not tainted syzkaller #0
[  197.176901][ T7819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  197.186999][ T7819] Call Trace:
[  197.190576][ T7819]  <TASK>
[  197.193538][ T7819]  dump_stack_lvl+0x16c/0x230
[  197.198260][ T7819]  ? sctp_sendmsg+0x155c/0x27e0
[  197.203152][ T7819]  ? ___sys_sendmsg+0x220/0x290
[  197.208109][ T7819]  ? show_regs_print_info+0x20/0x20
[  197.213356][ T7819]  ? load_image+0x3b0/0x3b0
[  197.217923][ T7819]  should_fail_ex+0x39d/0x4d0
[  197.222652][ T7819]  should_failslab+0x9/0x20
[  197.227246][ T7819]  slab_pre_alloc_hook+0x59/0x310
[  197.232321][ T7819]  ? sctp_add_bind_addr+0x8c/0x360
[  197.237481][ T7819]  __kmem_cache_alloc_node+0x53/0x260
[  197.242916][ T7819]  ? sctp_add_bind_addr+0x8c/0x360
[  197.248064][ T7819]  kmalloc_trace+0x2a/0xe0
[  197.252517][ T7819]  sctp_add_bind_addr+0x8c/0x360
[  197.257578][ T7819]  sctp_copy_local_addr_list+0x30c/0x4e0
[  197.263276][ T7819]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  197.269035][ T7819]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  197.275144][ T7819]  ? sctp_v4_is_any+0x35/0x60
[  197.279861][ T7819]  ? sctp_copy_one_addr+0x8c/0x350
[  197.285023][ T7819]  sctp_bind_addr_copy+0xb3/0x3c0
[  197.290107][ T7819]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  197.296554][ T7819]  sctp_connect_new_asoc+0x2da/0x690
[  197.301881][ T7819]  ? __sctp_connect+0xd20/0xd20
[  197.306761][ T7819]  ? __local_bh_enable_ip+0x12e/0x1c0
[  197.312158][ T7819]  ? _local_bh_enable+0xa0/0xa0
[  197.317040][ T7819]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  197.322881][ T7819]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  197.328722][ T7819]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  197.334304][ T7819]  ? security_sctp_bind_connect+0x89/0xb0
[  197.340061][ T7819]  sctp_sendmsg+0x155c/0x27e0
[  197.344790][ T7819]  ? sctp_getsockopt+0xb60/0xb60
[  197.349760][ T7819]  ? perf_trace_lock+0xf7/0x380
[  197.354647][ T7819]  ? aa_sk_perm+0x7fc/0x930
[  197.359203][ T7819]  ? aa_af_perm+0x2b0/0x2b0
[  197.363741][ T7819]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  197.370202][ T7819]  ? sock_rps_record_flow+0x19/0x400
[  197.375517][ T7819]  ? inet_send_prepare+0x260/0x260
[  197.380654][ T7819]  ? inet_sendmsg+0x7c/0x2f0
[  197.385270][ T7819]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  197.390668][ T7819]  ? security_socket_sendmsg+0x80/0xa0
[  197.396155][ T7819]  ? inet_send_prepare+0x260/0x260
[  197.401296][ T7819]  ____sys_sendmsg+0x5bf/0x950
[  197.406106][ T7819]  ? __asan_memset+0x22/0x40
[  197.410726][ T7819]  ? __sys_sendmsg_sock+0x30/0x30
[  197.415779][ T7819]  ? __import_iovec+0x5f2/0x860
[  197.420674][ T7819]  ? import_iovec+0x73/0xa0
[  197.425216][ T7819]  ___sys_sendmsg+0x220/0x290
[  197.429931][ T7819]  ? __sys_sendmsg+0x270/0x270
[  197.434756][ T7819]  ? __lock_acquire+0x7c80/0x7c80
[  197.439848][ T7819]  __se_sys_sendmsg+0x1a5/0x270
[  197.444736][ T7819]  ? __x64_sys_sendmsg+0x80/0x80
[  197.449726][ T7819]  ? lockdep_hardirqs_on+0x98/0x150
[  197.454955][ T7819]  do_syscall_64+0x55/0xb0
[  197.459401][ T7819]  ? clear_bhb_loop+0x40/0x90
[  197.464103][ T7819]  ? clear_bhb_loop+0x40/0x90
[  197.468812][ T7819]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  197.474735][ T7819] RIP: 0033:0x7f6e81d8f749
[  197.479189][ T7819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.498835][ T7819] RSP: 002b:00007f6e82b8e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.507279][ T7819] RAX: ffffffffffffffda RBX: 00007f6e81fe6090 RCX: 00007f6e81d8f749
[  197.515306][ T7819] RDX: 0000000000000810 RSI: 0000200000000b80 RDI: 0000000000000003
[  197.523326][ T7819] RBP: 00007f6e82b8e090 R08: 0000000000000000 R09: 0000000000000000
[  197.531355][ T7819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.539389][ T7819] R13: 00007f6e81fe6128 R14: 00007f6e81fe6090 R15: 00007ffdee82a778
[  197.547426][ T7819]  </TASK>
[  197.733290][ T7826] netlink: 'syz.1.599': attribute type 9 has an invalid length.
[  197.742275][ T7826] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.599'.
[  198.214011][ T7832] netlink: 'syz.3.600': attribute type 39 has an invalid length.
[  198.272102][ T7837] netlink: 'syz.1.602': attribute type 16 has an invalid length.
[  198.289964][ T7837] netlink: 16 bytes leftover after parsing attributes in process `syz.1.602'.
[  198.357297][ T7837] FAULT_INJECTION: forcing a failure.
[  198.357297][ T7837] name failslab, interval 1, probability 0, space 0, times 0
[  198.401114][ T7837] CPU: 1 PID: 7837 Comm: syz.1.602 Not tainted syzkaller #0
[  198.408510][ T7837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  198.418621][ T7837] Call Trace:
[  198.421956][ T7837]  <TASK>
[  198.424945][ T7837]  dump_stack_lvl+0x16c/0x230
[  198.429688][ T7837]  ? __se_sys_sendmsg+0x1a5/0x270
[  198.434781][ T7837]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.441000][ T7837]  ? show_regs_print_info+0x20/0x20
[  198.446264][ T7837]  ? load_image+0x3b0/0x3b0
[  198.450881][ T7837]  should_fail_ex+0x39d/0x4d0
[  198.455644][ T7837]  should_failslab+0x9/0x20
[  198.460203][ T7837]  slab_pre_alloc_hook+0x59/0x310
[  198.465319][ T7837]  kmem_cache_alloc+0x5a/0x2e0
[  198.470143][ T7837]  ? dst_alloc+0x105/0x170
[  198.474645][ T7837]  dst_alloc+0x105/0x170
[  198.478976][ T7837]  ip_route_output_key_hash_rcu+0x14f0/0x2360
[  198.485164][ T7837]  inet_rtm_getroute+0xff0/0x2750
[  198.490272][ T7837]  ? inet_rtm_getroute+0xd15/0x2750
[  198.495582][ T7837]  ? ip_rt_multicast_event+0x80/0x80
[  198.501040][ T7837]  ? __lock_acquire+0x1260/0x7c80
[  198.506219][ T7837]  ? __lock_acquire+0x7c80/0x7c80
[  198.511354][ T7837]  ? ip_rt_multicast_event+0x80/0x80
[  198.516728][ T7837]  rtnetlink_rcv_msg+0x81a/0xf10
[  198.521750][ T7837]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  198.526953][ T7837]  ? rtnetlink_bind+0x80/0x80
[  198.531882][ T7837]  ? trace_call_bpf+0xc3/0x690
[  198.536774][ T7837]  ? trace_call_bpf+0xc3/0x690
[  198.541624][ T7837]  ? __lock_acquire+0x7c80/0x7c80
[  198.541894][ T7831] ref_ctr_offset mismatch. inode: 0x7a offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xfe
[  198.546676][ T7837]  ? __local_bh_enable_ip+0x12e/0x1c0
[  198.546753][ T7837]  ? trace_call_bpf+0xc3/0x690
[  198.567952][ T7837]  ? trace_call_bpf+0xc3/0x690
[  198.572822][ T7837]  ? trace_call_bpf+0x5ba/0x690
[  198.577767][ T7837]  ? trace_call_bpf+0xc3/0x690
[  198.582605][ T7837]  ? __dev_queue_xmit+0x1449/0x35a0
[  198.587894][ T7837]  ? __bpf_trace_bpf_trace_printk+0x100/0x100
[  198.594083][ T7837]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  198.599995][ T7837]  ? perf_trace_lock+0x2ed/0x380
[  198.605091][ T7837]  ? __copy_skb_header+0xa7/0x550
[  198.610224][ T7837]  netlink_rcv_skb+0x216/0x480
[  198.615063][ T7837]  ? rtnetlink_bind+0x80/0x80
[  198.619812][ T7837]  ? netlink_ack+0x1110/0x1110
[  198.624788][ T7837]  ? __lock_acquire+0x7c80/0x7c80
[  198.629931][ T7837]  ? netlink_deliver_tap+0x2e/0x1b0
[  198.635223][ T7837]  netlink_unicast+0x751/0x8d0
[  198.640113][ T7837]  netlink_sendmsg+0x8c1/0xbe0
[  198.644984][ T7837]  ? netlink_getsockopt+0x580/0x580
[  198.650274][ T7837]  ? aa_sock_msg_perm+0x94/0x150
[  198.655305][ T7837]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  198.660665][ T7837]  ? security_socket_sendmsg+0x80/0xa0
[  198.666195][ T7837]  ? netlink_getsockopt+0x580/0x580
[  198.671471][ T7837]  ____sys_sendmsg+0x5bf/0x950
[  198.676351][ T7837]  ? __asan_memset+0x22/0x40
[  198.681032][ T7837]  ? __sys_sendmsg_sock+0x30/0x30
[  198.686132][ T7837]  ? __import_iovec+0x3fa/0x860
[  198.691200][ T7837]  ? import_iovec+0x73/0xa0
[  198.695899][ T7837]  ___sys_sendmsg+0x220/0x290
[  198.700667][ T7837]  ? __sys_sendmsg+0x270/0x270
[  198.705620][ T7837]  ? __lock_acquire+0x7c80/0x7c80
[  198.710836][ T7837]  __se_sys_sendmsg+0x1a5/0x270
[  198.715795][ T7837]  ? __x64_sys_sendmsg+0x80/0x80
[  198.720892][ T7837]  ? lockdep_hardirqs_on+0x98/0x150
[  198.726273][ T7837]  do_syscall_64+0x55/0xb0
[  198.730759][ T7837]  ? clear_bhb_loop+0x40/0x90
[  198.735499][ T7837]  ? clear_bhb_loop+0x40/0x90
[  198.740254][ T7837]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.746206][ T7837] RIP: 0033:0x7f3fc2b8f749
[  198.750688][ T7837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.770364][ T7837] RSP: 002b:00007f3fc3ae3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  198.778866][ T7837] RAX: ffffffffffffffda RBX: 00007f3fc2de5fa0 RCX: 00007f3fc2b8f749
[  198.786910][ T7837] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  198.794953][ T7837] RBP: 00007f3fc3ae3090 R08: 0000000000000000 R09: 0000000000000000
[  198.802999][ T7837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.811040][ T7837] R13: 00007f3fc2de6038 R14: 00007f3fc2de5fa0 R15: 00007ffd501389c8
[  198.819143][ T7837]  </TASK>
[  199.072569][ T7848] netlink: 'syz.1.606': attribute type 29 has an invalid length.
[  199.091417][ T7848] netlink: 'syz.1.606': attribute type 29 has an invalid length.
[  199.117708][ T7848] netlink: 'syz.1.606': attribute type 29 has an invalid length.
[  199.412729][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  199.634008][ T7863] netlink: 'syz.0.611': attribute type 9 has an invalid length.
[  199.660487][ T7863] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.611'.
[  201.590459][ T7898] netlink: 60 bytes leftover after parsing attributes in process `syz.1.622'.
[  201.639166][ T7898] netlink: 60 bytes leftover after parsing attributes in process `syz.1.622'.
[  201.651771][ T7901] netlink: 60 bytes leftover after parsing attributes in process `syz.1.622'.
[  201.676294][ T7900] netlink: 'syz.3.623': attribute type 9 has an invalid length.
[  201.684479][ T7900] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.623'.
[  202.306327][ T7912] netlink: 'syz.3.627': attribute type 3 has an invalid length.
[  202.319419][ T7912] netlink: 132 bytes leftover after parsing attributes in process `syz.3.627'.
[  202.422892][ T7912] netlink: 64128 bytes leftover after parsing attributes in process `syz.3.627'.
[  202.860251][ T7926] netlink: 'syz.2.632': attribute type 21 has an invalid length.
[  203.330594][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  203.516409][ T7941] netlink: 'syz.1.638': attribute type 9 has an invalid length.
[  203.541778][ T7941] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.638'.
[  203.875535][ T7955] netlink: 201392 bytes leftover after parsing attributes in process `syz.1.641'.
[  204.282995][ T7686] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  204.329938][ T7963] netlink: 'syz.1.644': attribute type 10 has an invalid length.
[  204.346393][ T7963] netlink: 65015 bytes leftover after parsing attributes in process `syz.1.644'.
[  204.555497][ T7974] FAULT_INJECTION: forcing a failure.
[  204.555497][ T7974] name failslab, interval 1, probability 0, space 0, times 0
[  204.606396][ T7974] CPU: 1 PID: 7974 Comm: syz.3.649 Not tainted syzkaller #0
[  204.613857][ T7974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  204.624482][ T7974] Call Trace:
[  204.627819][ T7974]  <TASK>
[  204.630784][ T7974]  dump_stack_lvl+0x16c/0x230
[  204.635600][ T7974]  ? show_regs_print_info+0x20/0x20
[  204.640840][ T7974]  ? load_image+0x3b0/0x3b0
[  204.645478][ T7974]  ? __might_sleep+0xe0/0xe0
[  204.650119][ T7974]  ? __lock_acquire+0x7c80/0x7c80
[  204.655196][ T7974]  should_fail_ex+0x39d/0x4d0
[  204.659914][ T7974]  should_failslab+0x9/0x20
[  204.664467][ T7974]  slab_pre_alloc_hook+0x59/0x310
[  204.669524][ T7974]  ? tomoyo_encode+0x28b/0x540
[  204.674325][ T7974]  ? tomoyo_encode+0x28b/0x540
[  204.679129][ T7974]  __kmem_cache_alloc_node+0x53/0x260
[  204.684658][ T7974]  ? tomoyo_encode+0x28b/0x540
[  204.689451][ T7974]  __kmalloc+0xa4/0x240
[  204.693644][ T7974]  tomoyo_encode+0x28b/0x540
[  204.698295][ T7974]  tomoyo_realpath_from_path+0x592/0x5d0
[  204.703972][ T7974]  tomoyo_path_number_perm+0x1ea/0x590
[  204.709472][ T7974]  ? tomoyo_path_number_perm+0x1ba/0x590
[  204.715138][ T7974]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  204.720645][ T7974]  ? ksys_write+0x1c1/0x250
[  204.725239][ T7974]  ? __fget_files+0x28/0x4d0
[  204.729944][ T7974]  security_file_ioctl+0x70/0xa0
[  204.734923][ T7974]  __se_sys_ioctl+0x48/0x170
[  204.739547][ T7974]  do_syscall_64+0x55/0xb0
[  204.744044][ T7974]  ? clear_bhb_loop+0x40/0x90
[  204.748746][ T7974]  ? clear_bhb_loop+0x40/0x90
[  204.753453][ T7974]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  204.759457][ T7974] RIP: 0033:0x7f985c18f749
[  204.764037][ T7974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.783689][ T7974] RSP: 002b:00007f985d0cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  204.792133][ T7974] RAX: ffffffffffffffda RBX: 00007f985c3e5fa0 RCX: 00007f985c18f749
[  204.800134][ T7974] RDX: 0000200000000080 RSI: 0000000000008922 RDI: 0000000000000004
[  204.808132][ T7974] RBP: 00007f985d0cc090 R08: 0000000000000000 R09: 0000000000000000
[  204.816161][ T7974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.824157][ T7974] R13: 00007f985c3e6038 R14: 00007f985c3e5fa0 R15: 00007ffe4a9dea08
[  204.832166][ T7974]  </TASK>
[  204.921098][ T7974] ERROR: Out of memory at tomoyo_realpath_from_path.
[  205.887828][ T8001] netlink: 'syz.1.657': attribute type 153 has an invalid length.
[  205.921792][ T8001] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.657'.
[  206.070736][ T8007] sctp: [Deprecated]: syz.1.657 (pid 8007) Use of struct sctp_assoc_value in delayed_ack socket option.
[  206.070736][ T8007] Use struct sctp_sack_info instead
[  206.184945][ T8007] netlink: 'syz.1.657': attribute type 21 has an invalid length.
[  206.226466][ T8007] netlink: 'syz.1.657': attribute type 11 has an invalid length.
[  207.602783][ T8030] netlink: 'syz.2.666': attribute type 21 has an invalid length.
[  207.629238][ T8030] netlink: 156 bytes leftover after parsing attributes in process `syz.2.666'.
[  208.611982][ T8038] mac80211_hwsim hwsim9 wlan0: entered promiscuous mode
[  208.633390][ T8038] mac80211_hwsim hwsim9 wlan0: entered allmulticast mode
[  208.894839][ T8055] FAULT_INJECTION: forcing a failure.
[  208.894839][ T8055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.928678][ T8055] CPU: 0 PID: 8055 Comm: syz.2.674 Not tainted syzkaller #0
[  208.936060][ T8055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  208.946171][ T8055] Call Trace:
[  208.949497][ T8055]  <TASK>
[  208.952465][ T8055]  dump_stack_lvl+0x16c/0x230
[  208.957199][ T8055]  ? show_regs_print_info+0x20/0x20
[  208.962550][ T8055]  ? load_image+0x3b0/0x3b0
[  208.967112][ T8055]  ? __might_fault+0xaa/0x120
[  208.971839][ T8055]  ? __lock_acquire+0x7c80/0x7c80
[  208.976918][ T8055]  should_fail_ex+0x39d/0x4d0
[  208.981658][ T8055]  _copy_from_iter+0x1d3/0x1290
[  208.986574][ T8055]  ? __might_fault+0xaa/0x120
[  208.991314][ T8055]  ? _copy_from_iter+0x248/0x1290
[  208.996399][ T8055]  ? __virt_addr_valid+0x18c/0x540
[  209.001563][ T8055]  ? __lock_acquire+0x7c80/0x7c80
[  209.006630][ T8055]  ? copyout_mc+0x70/0x70
[  209.011006][ T8055]  ? copyout_mc+0x70/0x70
[  209.015387][ T8055]  ? __virt_addr_valid+0x18c/0x540
[  209.020549][ T8055]  ? page_copy_sane+0x16a/0x270
[  209.025455][ T8055]  copy_page_from_iter+0x7b/0x100
[  209.030534][ T8055]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  209.036408][ T8055]  tun_get_user+0x1583/0x3bf0
[  209.041158][ T8055]  ? aa_file_perm+0x120/0xec0
[  209.045882][ T8055]  ? aa_file_perm+0x3e8/0xec0
[  209.050626][ T8055]  ? rcu_read_unlock+0xa0/0xa0
[  209.055453][ T8055]  ? tun_get+0x1c/0x2e0
[  209.059664][ T8055]  ? __lock_acquire+0x7c80/0x7c80
[  209.064733][ T8055]  ? tun_get+0x1c/0x2e0
[  209.068931][ T8055]  tun_chr_write_iter+0x119/0x200
[  209.073988][ T8055]  vfs_write+0x43b/0x940
[  209.078259][ T8055]  ? file_end_write+0x250/0x250
[  209.083141][ T8055]  ? __fget_files+0x44a/0x4d0
[  209.087843][ T8055]  ? __fdget_pos+0x1d8/0x330
[  209.092450][ T8055]  ? ksys_write+0x75/0x250
[  209.096883][ T8055]  ksys_write+0x147/0x250
[  209.101228][ T8055]  ? __ia32_sys_read+0x90/0x90
[  209.106190][ T8055]  ? lockdep_hardirqs_on+0x98/0x150
[  209.111429][ T8055]  do_syscall_64+0x55/0xb0
[  209.115870][ T8055]  ? clear_bhb_loop+0x40/0x90
[  209.120560][ T8055]  ? clear_bhb_loop+0x40/0x90
[  209.125251][ T8055]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  209.131178][ T8055] RIP: 0033:0x7ff90c38f749
[  209.135602][ T8055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.155220][ T8055] RSP: 002b:00007ff90d250038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  209.163649][ T8055] RAX: ffffffffffffffda RBX: 00007ff90c5e5fa0 RCX: 00007ff90c38f749
[  209.171631][ T8055] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 00000000000000c8
[  209.179698][ T8055] RBP: 00007ff90d250090 R08: 0000000000000000 R09: 0000000000000000
[  209.187677][ T8055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  209.195657][ T8055] R13: 00007ff90c5e6038 R14: 00007ff90c5e5fa0 R15: 00007ffdec6cba28
[  209.203856][ T8055]  </TASK>
[  209.248150][ T8062] netlink: 'syz.3.677': attribute type 21 has an invalid length.
[  209.292621][ T8062] netlink: 156 bytes leftover after parsing attributes in process `syz.3.677'.
[  211.002988][ T8108] netlink: 'syz.2.691': attribute type 21 has an invalid length.
[  211.041587][ T8108] netlink: 156 bytes leftover after parsing attributes in process `syz.2.691'.
[  211.775420][ T8122] netlink: 60 bytes leftover after parsing attributes in process `syz.0.696'.
[  211.821576][ T8122] netlink: 60 bytes leftover after parsing attributes in process `syz.0.696'.
[  211.895339][ T8122] netlink: 60 bytes leftover after parsing attributes in process `syz.0.696'.
[  213.070352][ T8152] netlink: 'syz.2.704': attribute type 21 has an invalid length.
[  213.089355][ T8152] netlink: 156 bytes leftover after parsing attributes in process `syz.2.704'.
[  213.271417][ T8156] netlink: 'syz.1.705': attribute type 9 has an invalid length.
[  213.288819][ T8156] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.705'.
[  213.349127][ T8158] netlink: 'syz.2.707': attribute type 29 has an invalid length.
[  213.381760][ T8158] netlink: 'syz.2.707': attribute type 29 has an invalid length.
[  213.452477][ T8160] netlink: 'syz.2.707': attribute type 29 has an invalid length.
[  215.111699][ T8187] netlink: 'syz.0.716': attribute type 21 has an invalid length.
[  215.129088][ T8187] netlink: 156 bytes leftover after parsing attributes in process `syz.0.716'.
[  217.440836][ T8226] netlink: 'syz.0.728': attribute type 21 has an invalid length.
[  217.459191][ T8226] netlink: 156 bytes leftover after parsing attributes in process `syz.0.728'.
[  218.558935][ T8249] netlink: 'syz.2.734': attribute type 9 has an invalid length.
[  218.566905][ T8249] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.734'.
[  220.424227][ T8282] netlink: 'syz.0.746': attribute type 9 has an invalid length.
[  220.463502][ T8282] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.746'.
[  220.633883][ T8281] netlink: 'syz.3.745': attribute type 9 has an invalid length.
[  220.642995][ T8281] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.745'.
[  221.058300][ T8284] netlink: 'syz.1.747': attribute type 153 has an invalid length.
[  221.069835][ T8284] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.747'.
[  221.222527][ T8294] netlink: 'syz.0.750': attribute type 2 has an invalid length.
[  221.267506][ T8294] netlink: 'syz.0.750': attribute type 1 has an invalid length.
[  221.294339][ T8294] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.750'.
[  224.465570][ T8331] netlink: 'syz.1.762': attribute type 2 has an invalid length.
[  224.488282][ T8331] netlink: 'syz.1.762': attribute type 1 has an invalid length.
[  224.497202][ T8331] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.762'.
[  224.745373][ T8325] netlink: 'syz.0.761': attribute type 153 has an invalid length.
[  224.763070][ T8325] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.761'.
[  224.896489][ T8338] netlink: 'syz.1.767': attribute type 9 has an invalid length.
[  224.919062][ T8338] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.767'.
[  225.459930][ T8344] netlink: 'syz.2.766': attribute type 2 has an invalid length.
[  225.591754][ T8344] netlink: 'syz.2.766': attribute type 8 has an invalid length.
[  225.742114][ T8344] netlink: 132 bytes leftover after parsing attributes in process `syz.2.766'.
[  226.665995][ T8363] netlink: 'syz.2.771': attribute type 9 has an invalid length.
[  226.674319][ T8363] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.771'.
[  227.930974][ T8381] netlink: 'syz.2.776': attribute type 2 has an invalid length.
[  227.940689][ T8381] netlink: 'syz.2.776': attribute type 1 has an invalid length.
[  227.943659][ T8385] netlink: 'syz.0.785': attribute type 21 has an invalid length.
[  227.958739][ T8381] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.776'.
[  227.968255][ T8385] netlink: 156 bytes leftover after parsing attributes in process `syz.0.785'.
[  228.017128][ T8384] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.777'.
[  228.981976][ T8401] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.790'.
[  229.299907][ T8405] netlink: 132 bytes leftover after parsing attributes in process `syz.3.781'.
[  230.596453][ T8424] validate_nla: 7 callbacks suppressed
[  230.596472][ T8424] netlink: 'syz.1.789': attribute type 21 has an invalid length.
[  230.629640][ T8424] netlink: 156 bytes leftover after parsing attributes in process `syz.1.789'.
[  230.713592][ T8428] netlink: 'syz.3.791': attribute type 9 has an invalid length.
[  230.750408][ T8428] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.791'.
[  231.466558][ T8435] netlink: 'syz.0.794': attribute type 2 has an invalid length.
[  231.498919][ T8435] netlink: 'syz.0.794': attribute type 8 has an invalid length.
[  231.506644][ T8435] netlink: 132 bytes leftover after parsing attributes in process `syz.0.794'.
[  233.409928][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  234.511024][ T8504] FAULT_INJECTION: forcing a failure.
[  234.511024][ T8504] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.538838][ T8504] CPU: 0 PID: 8504 Comm: syz.0.825 Not tainted syzkaller #0
[  234.546220][ T8504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  234.556324][ T8504] Call Trace:
[  234.559643][ T8504]  <TASK>
[  234.562652][ T8504]  dump_stack_lvl+0x16c/0x230
[  234.567553][ T8504]  ? show_regs_print_info+0x20/0x20
[  234.572798][ T8504]  ? load_image+0x3b0/0x3b0
[  234.577343][ T8504]  ? __lock_acquire+0x7c80/0x7c80
[  234.582410][ T8504]  ? snprintf+0xdb/0x120
[  234.586695][ T8504]  should_fail_ex+0x39d/0x4d0
[  234.591422][ T8504]  _copy_to_user+0x2f/0xa0
[  234.595888][ T8504]  simple_read_from_buffer+0xe7/0x150
[  234.601319][ T8504]  proc_fail_nth_read+0x1e3/0x250
[  234.606395][ T8504]  ? proc_fault_inject_write+0x340/0x340
[  234.612086][ T8504]  ? fsnotify_perm+0x271/0x5e0
[  234.616916][ T8504]  ? proc_fault_inject_write+0x340/0x340
[  234.622667][ T8504]  vfs_read+0x27e/0x920
[  234.627194][ T8504]  ? kernel_read+0x1e0/0x1e0
[  234.631802][ T8504]  ? __fget_files+0x28/0x4d0
[  234.636406][ T8504]  ? __fget_files+0x44a/0x4d0
[  234.641107][ T8504]  ? __fdget_pos+0x2a3/0x330
[  234.645727][ T8504]  ? ksys_read+0x75/0x250
[  234.650077][ T8504]  ksys_read+0x147/0x250
[  234.654367][ T8504]  ? vfs_write+0x940/0x940
[  234.658819][ T8504]  ? lockdep_hardirqs_on+0x98/0x150
[  234.664058][ T8504]  do_syscall_64+0x55/0xb0
[  234.668500][ T8504]  ? clear_bhb_loop+0x40/0x90
[  234.673192][ T8504]  ? clear_bhb_loop+0x40/0x90
[  234.677971][ T8504]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  234.683877][ T8504] RIP: 0033:0x7f6e81d8e15c
[  234.688332][ T8504] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  234.708154][ T8504] RSP: 002b:00007f6e82baf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  234.716623][ T8504] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8e15c
[  234.724620][ T8504] RDX: 000000000000000f RSI: 00007f6e82baf0a0 RDI: 0000000000000005
[  234.732614][ T8504] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  234.740598][ T8504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.748589][ T8504] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  234.756590][ T8504]  </TASK>
[  234.930289][ T8509] netlink: 'syz.2.820': attribute type 21 has an invalid length.
[  234.938208][ T8509] netlink: 156 bytes leftover after parsing attributes in process `syz.2.820'.
[  235.640120][ T8529] netlink: 'syz.2.828': attribute type 9 has an invalid length.
[  235.649687][ T8529] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.828'.
[  236.079879][ T8538] netlink: 'syz.1.832': attribute type 9 has an invalid length.
[  236.096384][ T8538] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.832'.
[  236.520959][ T8547] netlink: 'syz.2.835': attribute type 21 has an invalid length.
[  236.608866][ T8547] netlink: 156 bytes leftover after parsing attributes in process `syz.2.835'.
[  236.842115][ T8543] syzkaller0: entered promiscuous mode
[  236.847827][ T8543] syzkaller0: entered allmulticast mode
[  236.867320][ T8550] netlink: 'syz.3.834': attribute type 21 has an invalid length.
[  236.944915][ T8550] netlink: 'syz.3.834': attribute type 11 has an invalid length.
[  237.446014][ T8570] FAULT_INJECTION: forcing a failure.
[  237.446014][ T8570] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.465080][ T8570] CPU: 0 PID: 8570 Comm: syz.0.842 Not tainted syzkaller #0
[  237.472641][ T8570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  237.482742][ T8570] Call Trace:
[  237.486057][ T8570]  <TASK>
[  237.489003][ T8570]  dump_stack_lvl+0x16c/0x230
[  237.493716][ T8570]  ? show_regs_print_info+0x20/0x20
[  237.498999][ T8570]  ? load_image+0x3b0/0x3b0
[  237.503525][ T8570]  ? __might_fault+0xaa/0x120
[  237.508213][ T8570]  ? __lock_acquire+0x7c80/0x7c80
[  237.513254][ T8570]  should_fail_ex+0x39d/0x4d0
[  237.518214][ T8570]  _copy_from_iter+0x1d3/0x1290
[  237.523085][ T8570]  ? rep_movs_alternative+0x4a/0x90
[  237.528305][ T8570]  ? _copy_from_iter+0x248/0x1290
[  237.533341][ T8570]  ? __virt_addr_valid+0x18c/0x540
[  237.538505][ T8570]  ? __lock_acquire+0x7c80/0x7c80
[  237.543572][ T8570]  ? copyout_mc+0x70/0x70
[  237.547935][ T8570]  ? copyout_mc+0x70/0x70
[  237.552289][ T8570]  ? __virt_addr_valid+0x18c/0x540
[  237.557420][ T8570]  ? page_copy_sane+0x16a/0x270
[  237.562289][ T8570]  copy_page_from_iter+0x7b/0x100
[  237.567335][ T8570]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  237.573182][ T8570]  tun_get_user+0x1583/0x3bf0
[  237.577890][ T8570]  ? trace_event_raw_event_lock+0x230/0x230
[  237.583804][ T8570]  ? aa_file_perm+0x120/0xec0
[  237.588532][ T8570]  ? aa_file_perm+0x3e8/0xec0
[  237.593222][ T8570]  ? rcu_read_unlock+0xa0/0xa0
[  237.598008][ T8570]  ? tun_get+0x1c/0x2e0
[  237.602183][ T8570]  ? __lock_acquire+0x7c80/0x7c80
[  237.607219][ T8570]  ? perf_trace_lock+0xf7/0x380
[  237.612091][ T8570]  ? tun_get+0x1c/0x2e0
[  237.616273][ T8570]  tun_chr_write_iter+0x119/0x200
[  237.621314][ T8570]  vfs_write+0x43b/0x940
[  237.625576][ T8570]  ? file_end_write+0x250/0x250
[  237.630447][ T8570]  ? __fget_files+0x44a/0x4d0
[  237.635146][ T8570]  ? __fdget_pos+0x1d8/0x330
[  237.639753][ T8570]  ? ksys_write+0x75/0x250
[  237.644192][ T8570]  ksys_write+0x147/0x250
[  237.648543][ T8570]  ? __ia32_sys_read+0x90/0x90
[  237.653333][ T8570]  ? trace_sys_enter+0x1f/0x80
[  237.658117][ T8570]  do_syscall_64+0x55/0xb0
[  237.662546][ T8570]  ? clear_bhb_loop+0x40/0x90
[  237.667232][ T8570]  ? clear_bhb_loop+0x40/0x90
[  237.671931][ T8570]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  237.677934][ T8570] RIP: 0033:0x7f6e81d8f749
[  237.682427][ T8570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.702147][ T8570] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  237.710753][ T8570] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  237.718736][ T8570] RDX: 000000000000fdef RSI: 0000200000000300 RDI: 00000000000000c8
[  237.726720][ T8570] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  237.734712][ T8570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.742790][ T8570] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  237.750795][ T8570]  </TASK>
[  238.369290][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  239.295454][ T7668] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  240.377363][ T8585] netlink: 'syz.1.847': attribute type 21 has an invalid length.
[  240.385385][ T8585] netlink: 156 bytes leftover after parsing attributes in process `syz.1.847'.
[  240.416047][ T8589] FAULT_INJECTION: forcing a failure.
[  240.416047][ T8589] name failslab, interval 1, probability 0, space 0, times 0
[  240.444841][ T8589] CPU: 0 PID: 8589 Comm: syz.0.848 Not tainted syzkaller #0
[  240.452199][ T8589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  240.462277][ T8589] Call Trace:
[  240.465570][ T8589]  <TASK>
[  240.468509][ T8589]  dump_stack_lvl+0x16c/0x230
[  240.473469][ T8589]  ? show_regs_print_info+0x20/0x20
[  240.478679][ T8589]  ? load_image+0x3b0/0x3b0
[  240.483197][ T8589]  ? __might_sleep+0xe0/0xe0
[  240.487798][ T8589]  ? __lock_acquire+0x7c80/0x7c80
[  240.492848][ T8589]  should_fail_ex+0x39d/0x4d0
[  240.497562][ T8589]  should_failslab+0x9/0x20
[  240.502081][ T8589]  slab_pre_alloc_hook+0x59/0x310
[  240.507214][ T8589]  kmem_cache_alloc+0x5a/0x2e0
[  240.511991][ T8589]  ? radix_tree_node_alloc+0x7e/0x3a0
[  240.517469][ T8589]  radix_tree_node_alloc+0x7e/0x3a0
[  240.522703][ T8589]  ? trace_raw_output_contention_end+0xd0/0xd0
[  240.528877][ T8589]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  240.534535][ T8589]  idr_get_free+0x2b3/0xa60
[  240.539069][ T8589]  idr_alloc+0x17f/0x2c0
[  240.543357][ T8589]  ? ppp_dev_configure+0x5f8/0xad0
[  240.548500][ T8589]  ? idr_alloc_u32+0x2d0/0x2d0
[  240.553298][ T8589]  ? net_generic+0x1e/0x240
[  240.557829][ T8589]  ? net_generic+0x1e/0x240
[  240.562358][ T8589]  ? radix_tree_lookup+0x267/0x280
[  240.567487][ T8589]  ppp_dev_configure+0x777/0xad0
[  240.572457][ T8589]  ppp_ioctl+0x6a8/0x1980
[  240.576804][ T8589]  ? ppp_poll+0x250/0x250
[  240.581152][ T8589]  ? __fget_files+0x28/0x4d0
[  240.585869][ T8589]  ? bpf_lsm_file_ioctl+0x9/0x10
[  240.590908][ T8589]  ? security_file_ioctl+0x80/0xa0
[  240.596052][ T8589]  ? ppp_poll+0x250/0x250
[  240.600400][ T8589]  __se_sys_ioctl+0xfd/0x170
[  240.605005][ T8589]  do_syscall_64+0x55/0xb0
[  240.609442][ T8589]  ? clear_bhb_loop+0x40/0x90
[  240.614131][ T8589]  ? clear_bhb_loop+0x40/0x90
[  240.618835][ T8589]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  240.624737][ T8589] RIP: 0033:0x7f6e81d8f749
[  240.629166][ T8589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.648788][ T8589] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  240.657321][ T8589] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  240.665318][ T8589] RDX: 000000110e22fff6 RSI: 00000000c004743e RDI: 0000000000000006
[  240.673299][ T8589] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  240.681281][ T8589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  240.689261][ T8589] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  240.697267][ T8589]  </TASK>
[  240.705171][ T8591] netlink: 'syz.2.849': attribute type 30 has an invalid length.
[  241.526547][ T8620] netlink: 'syz.1.857': attribute type 9 has an invalid length.
[  241.553716][ T8620] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.857'.
[  241.750965][ T8626] netlink: 'syz.2.859': attribute type 21 has an invalid length.
[  241.783434][ T8626] netlink: 156 bytes leftover after parsing attributes in process `syz.2.859'.
[  242.619184][ T8643] netlink: 'syz.1.860': attribute type 10 has an invalid length.
[  242.852978][ T8643] 8021q: adding VLAN 0 to HW filter on device batadv0
[  243.132714][ T8643] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  243.410363][ T7666] wlan1: Trigger new scan to find an IBSS to join
[  243.820962][ T8668] netlink: 'syz.1.869': attribute type 9 has an invalid length.
[  243.907473][ T8668] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.869'.
[  244.657908][ T8681] syzkaller0: entered promiscuous mode
[  244.668530][ T8681] syzkaller0: entered allmulticast mode
[  246.448327][ T8703] FAULT_INJECTION: forcing a failure.
[  246.448327][ T8703] name failslab, interval 1, probability 0, space 0, times 0
[  246.554852][ T8703] CPU: 0 PID: 8703 Comm: syz.0.880 Not tainted syzkaller #0
[  246.562227][ T8703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  246.572331][ T8703] Call Trace:
[  246.575642][ T8703]  <TASK>
[  246.578613][ T8703]  dump_stack_lvl+0x16c/0x230
[  246.583434][ T8703]  ? show_regs_print_info+0x20/0x20
[  246.588691][ T8703]  ? load_image+0x3b0/0x3b0
[  246.593256][ T8703]  ? __might_sleep+0xe0/0xe0
[  246.597895][ T8703]  ? __lock_acquire+0x7c80/0x7c80
[  246.602981][ T8703]  should_fail_ex+0x39d/0x4d0
[  246.607812][ T8703]  should_failslab+0x9/0x20
[  246.612373][ T8703]  slab_pre_alloc_hook+0x59/0x310
[  246.617536][ T8703]  ? lockdep_hardirqs_on+0x98/0x150
[  246.622794][ T8703]  kmem_cache_alloc_node+0x60/0x330
[  246.628045][ T8703]  ? __alloc_skb+0x108/0x2c0
[  246.632792][ T8703]  __alloc_skb+0x108/0x2c0
[  246.637283][ T8703]  netlink_dump+0x1cf/0xde0
[  246.641936][ T8703]  ? lock_chain_count+0x20/0x20
[  246.646863][ T8703]  ? netlink_lookup+0x200/0x200
[  246.651857][ T8703]  ? genl_start+0x48e/0x6b0
[  246.656413][ T8703]  ? genl_start+0x493/0x6b0
[  246.660983][ T8703]  __netlink_dump_start+0x5f1/0x810
[  246.666245][ T8703]  genl_family_rcv_msg_dumpit+0x1e8/0x2c0
[  246.672027][ T8703]  ? genl_rcv_msg+0x790/0x790
[  246.676861][ T8703]  ? genl_get_cmd+0x7d6/0x910
[  246.681695][ T8703]  ? genl_family_rcv_msg_doit+0x2f0/0x2f0
[  246.687469][ T8703]  ? genl_start+0x6b0/0x6b0
[  246.692008][ T8703]  ? genl_dumpit+0x1a0/0x1a0
[  246.696649][ T8703]  ? bpf_lsm_capable+0x9/0x10
[  246.701349][ T8703]  ? security_capable+0x89/0xb0
[  246.706231][ T8703]  genl_rcv_msg+0x5d7/0x790
[  246.710798][ T8703]  ? genl_bind+0x360/0x360
[  246.715236][ T8703]  ? batadv_dat_free+0x380/0x380
[  246.720193][ T8703]  ? irqentry_enter+0x3b/0x50
[  246.724900][ T8703]  netlink_rcv_skb+0x216/0x480
[  246.729685][ T8703]  ? genl_bind+0x360/0x360
[  246.734127][ T8703]  ? netlink_ack+0x1110/0x1110
[  246.738935][ T8703]  ? __lock_acquire+0x7c80/0x7c80
[  246.743976][ T8703]  ? rcu_read_unlock_special+0xc5/0x460
[  246.749558][ T8703]  ? down_read+0x1ac/0x2e0
[  246.754014][ T8703]  genl_rcv+0x28/0x40
[  246.758014][ T8703]  netlink_unicast+0x751/0x8d0
[  246.762816][ T8703]  netlink_sendmsg+0x8c1/0xbe0
[  246.767617][ T8703]  ? netlink_getsockopt+0x580/0x580
[  246.772849][ T8703]  ? aa_sock_msg_perm+0x94/0x150
[  246.777816][ T8703]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  246.783117][ T8703]  ? security_socket_sendmsg+0x80/0xa0
[  246.788597][ T8703]  ? netlink_getsockopt+0x580/0x580
[  246.793899][ T8703]  ____sys_sendmsg+0x5bf/0x950
[  246.798696][ T8703]  ? __asan_memset+0x22/0x40
[  246.803308][ T8703]  ? __sys_sendmsg_sock+0x30/0x30
[  246.808350][ T8703]  ? __import_iovec+0x5f2/0x860
[  246.813324][ T8703]  ? import_iovec+0x73/0xa0
[  246.817855][ T8703]  ___sys_sendmsg+0x220/0x290
[  246.822564][ T8703]  ? __sys_sendmsg+0x270/0x270
[  246.827382][ T8703]  ? seqcount_lockdep_reader_access+0x160/0x1c0
[  246.833676][ T8703]  __se_sys_sendmsg+0x1a5/0x270
[  246.838637][ T8703]  ? perf_trace_preemptirq_template+0x281/0x340
[  246.844902][ T8703]  ? __x64_sys_sendmsg+0x80/0x80
[  246.849901][ T8703]  ? lockdep_hardirqs_on+0x98/0x150
[  246.855120][ T8703]  do_syscall_64+0x55/0xb0
[  246.859867][ T8703]  ? clear_bhb_loop+0x40/0x90
[  246.864558][ T8703]  ? clear_bhb_loop+0x40/0x90
[  246.869256][ T8703]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  246.875185][ T8703] RIP: 0033:0x7f6e81d8f749
[  246.879664][ T8703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.899309][ T8703] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  246.907765][ T8703] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  246.915776][ T8703] RDX: 00000000200000c0 RSI: 0000200000000000 RDI: 0000000000000005
[  246.923771][ T8703] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  246.931756][ T8703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  246.939745][ T8703] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  246.947764][ T8703]  </TASK>
[  247.216098][ T8715] netlink: 'syz.1.882': attribute type 9 has an invalid length.
[  247.284540][ T8715] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.882'.
[  247.307337][ T8717] netlink: 'syz.0.884': attribute type 21 has an invalid length.
[  247.334966][ T8717] netlink: 'syz.0.884': attribute type 1 has an invalid length.
[  248.049062][ T8721] netlink: 'syz.0.886': attribute type 153 has an invalid length.
[  248.057930][ T8721] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.886'.
[  248.378892][ T2917] wlan1: Trigger new scan to find an IBSS to join
[  248.592346][ T8734] IPv6: Can't replace route, no match found
[  248.704383][ T8731] mac80211_hwsim hwsim10 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  249.013520][ T8727] netlink: 'syz.3.889': attribute type 10 has an invalid length.
[  249.095236][ T8727] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  249.447488][  T139] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  251.140623][ T8769] netlink: 'syz.1.897': attribute type 9 has an invalid length.
[  251.157516][ T8769] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.897'.
[  251.277481][ T8766] netlink: 'syz.2.898': attribute type 153 has an invalid length.
[  251.287902][ T8766] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.898'.
[  251.803354][ T8777] netlink: 1 bytes leftover after parsing attributes in process `syz.2.902'.
[  252.171323][ T8777] netlink: 'syz.2.902': attribute type 1 has an invalid length.
[  252.188934][ T8777] netlink: 5 bytes leftover after parsing attributes in process `syz.2.902'.
[  253.680682][ T8790] netlink: 'syz.2.905': attribute type 7 has an invalid length.
[  253.925307][ T8806] netlink: 'syz.2.910': attribute type 9 has an invalid length.
[  253.976148][ T8806] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.910'.
[  254.262915][ T8809] delete_channel: no stack
[  254.506598][ T8817] netlink: 60 bytes leftover after parsing attributes in process `syz.2.914'.
[  254.522723][ T8817] netlink: 60 bytes leftover after parsing attributes in process `syz.2.914'.
[  254.544555][ T8817] netlink: 60 bytes leftover after parsing attributes in process `syz.2.914'.
[  255.966018][ T8839] netlink: 'syz.2.922': attribute type 153 has an invalid length.
[  255.978890][ T8842] netlink: 'syz.3.921': attribute type 7 has an invalid length.
[  255.996901][ T8839] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.922'.
[  256.041435][ T8844] netlink: 'syz.1.923': attribute type 9 has an invalid length.
[  256.087558][ T8844] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.923'.
[  256.275416][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  256.291522][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  257.629623][ T8859] netlink: 'syz.1.927': attribute type 153 has an invalid length.
[  257.648591][ T8859] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.927'.
[  258.405800][ T8880] netlink: 'syz.0.935': attribute type 29 has an invalid length.
[  258.440376][ T8880] netlink: 'syz.0.935': attribute type 29 has an invalid length.
[  258.459262][ T8881] netlink: 'syz.0.935': attribute type 29 has an invalid length.
[  258.603313][ T8885] netlink: 'syz.1.936': attribute type 153 has an invalid length.
[  258.637468][ T8889] netlink: 156 bytes leftover after parsing attributes in process `syz.2.937'.
[  258.638559][ T8885] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.936'.
[  259.544908][ T8901] FAULT_INJECTION: forcing a failure.
[  259.544908][ T8901] name failslab, interval 1, probability 0, space 0, times 0
[  259.600811][ T8901] CPU: 1 PID: 8901 Comm: syz.3.942 Not tainted syzkaller #0
[  259.608316][ T8901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  259.618438][ T8901] Call Trace:
[  259.621783][ T8901]  <TASK>
[  259.624791][ T8901]  dump_stack_lvl+0x16c/0x230
[  259.629580][ T8901]  ? show_regs_print_info+0x20/0x20
[  259.634888][ T8901]  ? load_image+0x3b0/0x3b0
[  259.639507][ T8901]  ? __might_sleep+0xe0/0xe0
[  259.644196][ T8901]  ? __lock_acquire+0x7c80/0x7c80
[  259.649310][ T8901]  should_fail_ex+0x39d/0x4d0
[  259.654099][ T8901]  should_failslab+0x9/0x20
[  259.658676][ T8901]  slab_pre_alloc_hook+0x59/0x310
[  259.663814][ T8901]  kmem_cache_alloc_node+0x60/0x330
[  259.669103][ T8901]  ? __alloc_skb+0x108/0x2c0
[  259.673802][ T8901]  __alloc_skb+0x108/0x2c0
[  259.678334][ T8901]  rtmsg_ifinfo_build_skb+0x8c/0x260
[  259.683740][ T8901]  rtmsg_ifinfo+0x8c/0x1a0
[  259.688281][ T8901]  netdev_state_change+0xf0/0x150
[  259.693375][ T8901]  ? netdev_features_change+0xc0/0xc0
[  259.698844][ T8901]  ? __might_fault+0xaa/0x120
[  259.703613][ T8901]  ? __might_fault+0xc6/0x120
[  259.708337][ T8901]  ? __might_fault+0xaa/0x120
[  259.713088][ T8901]  ip6_tnl_siocdevprivate+0x84c/0xac0
[  259.718552][ T8901]  ? ip6_tnl_start_xmit+0x1140/0x1140
[  259.724048][ T8901]  ? rcu_is_watching+0x15/0xb0
[  259.728914][ T8901]  ? full_name_hash+0x92/0xe0
[  259.733699][ T8901]  dev_ifsioc+0xae6/0xe20
[  259.738123][ T8901]  ? dev_ioctl+0x1170/0x1170
[  259.742843][ T8901]  ? dev_load+0x21/0x1f0
[  259.747147][ T8901]  ? dev_load+0x21/0x1f0
[  259.751549][ T8901]  dev_ioctl+0x87a/0x1170
[  259.756132][ T8901]  sock_ioctl+0x726/0x7a0
[  259.760518][ T8901]  ? sock_poll+0x3d0/0x3d0
[  259.765033][ T8901]  ? bpf_lsm_file_ioctl+0x9/0x10
[  259.770018][ T8901]  ? security_file_ioctl+0x80/0xa0
[  259.775183][ T8901]  ? sock_poll+0x3d0/0x3d0
[  259.779651][ T8901]  __se_sys_ioctl+0xfd/0x170
[  259.784333][ T8901]  do_syscall_64+0x55/0xb0
[  259.788788][ T8901]  ? clear_bhb_loop+0x40/0x90
[  259.793520][ T8901]  ? clear_bhb_loop+0x40/0x90
[  259.798258][ T8901]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  259.804248][ T8901] RIP: 0033:0x7f985c18f749
[  259.808735][ T8901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.828411][ T8901] RSP: 002b:00007f985d0cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  259.836913][ T8901] RAX: ffffffffffffffda RBX: 00007f985c3e5fa0 RCX: 00007f985c18f749
[  259.844937][ T8901] RDX: 0000200000000080 RSI: 00000000000089f3 RDI: 000000000000000b
[  259.852967][ T8901] RBP: 00007f985d0cc090 R08: 0000000000000000 R09: 0000000000000000
[  259.860992][ T8901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.869013][ T8901] R13: 00007f985c3e6038 R14: 00007f985c3e5fa0 R15: 00007ffe4a9dea08
[  259.877081][ T8901]  </TASK>
[  261.114394][ T8923] validate_nla: 1 callbacks suppressed
[  261.114414][ T8923] netlink: 'syz.2.946': attribute type 11 has an invalid length.
[  261.258268][ T8929] netlink: 'syz.3.949': attribute type 21 has an invalid length.
[  261.308680][ T8929] netlink: 156 bytes leftover after parsing attributes in process `syz.3.949'.
[  261.377698][ T8933] netlink: 'syz.0.948': attribute type 153 has an invalid length.
[  261.402173][ T8933] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.948'.
[  261.869342][ T8943] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.954'.
[  261.907904][ T8943] openvswitch: netlink: Duplicate key (type 0).
[  261.986408][ T8943] netlink: 'syz.0.954': attribute type 1 has an invalid length.
[  262.024247][ T8943] netlink: 5 bytes leftover after parsing attributes in process `syz.0.954'.
[  262.062518][ T8947] netlink: 'syz.1.955': attribute type 9 has an invalid length.
[  262.078740][ T8947] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.955'.
[  262.711153][ T8963] netlink: 61211 bytes leftover after parsing attributes in process `syz.0.960'.
[  262.877656][ T8967] netlink: 'syz.0.961': attribute type 21 has an invalid length.
[  262.918841][ T8967] netlink: 156 bytes leftover after parsing attributes in process `syz.0.961'.
[  263.559181][ T8979] FAULT_INJECTION: forcing a failure.
[  263.559181][ T8979] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  263.616403][ T8979] CPU: 1 PID: 8979 Comm: syz.0.965 Not tainted syzkaller #0
[  263.623792][ T8979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  263.633892][ T8979] Call Trace:
[  263.637200][ T8979]  <TASK>
[  263.640159][ T8979]  dump_stack_lvl+0x16c/0x230
[  263.644877][ T8979]  ? show_regs_print_info+0x20/0x20
[  263.650114][ T8979]  ? load_image+0x3b0/0x3b0
[  263.654654][ T8979]  ? __might_fault+0xaa/0x120
[  263.659368][ T8979]  ? __lock_acquire+0x7c80/0x7c80
[  263.664472][ T8979]  should_fail_ex+0x39d/0x4d0
[  263.669212][ T8979]  _copy_from_user+0x2f/0xe0
[  263.673854][ T8979]  ___sys_recvmsg+0x12f/0x510
[  263.678766][ T8979]  ? __sys_recvmsg+0x270/0x270
[  263.683595][ T8979]  ? ksys_write+0x1c1/0x250
[  263.688153][ T8979]  ? __fget_files+0x44a/0x4d0
[  263.692897][ T8979]  __x64_sys_recvmsg+0x1f2/0x2c0
[  263.697875][ T8979]  ? ___sys_recvmsg+0x510/0x510
[  263.702792][ T8979]  ? lockdep_hardirqs_on+0x98/0x150
[  263.708034][ T8979]  do_syscall_64+0x55/0xb0
[  263.712531][ T8979]  ? clear_bhb_loop+0x40/0x90
[  263.717269][ T8979]  ? clear_bhb_loop+0x40/0x90
[  263.721982][ T8979]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  263.727926][ T8979] RIP: 0033:0x7f6e81d8f749
[  263.732459][ T8979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.752144][ T8979] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  263.760608][ T8979] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  263.768624][ T8979] RDX: 0000000000000040 RSI: 0000200000000380 RDI: 0000000000000004
[  263.776646][ T8979] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  263.784653][ T8979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  263.792664][ T8979] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  263.800703][ T8979]  </TASK>
[  263.835454][ T8977] netlink: 'syz.2.963': attribute type 153 has an invalid length.
[  263.864555][ T8977] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.963'.
[  264.145093][ T8984] netlink: 'syz.3.967': attribute type 9 has an invalid length.
[  264.184376][ T8984] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.967'.
[  264.693417][ T8999] netlink: 'syz.2.973': attribute type 21 has an invalid length.
[  264.759155][ T8999] netlink: 156 bytes leftover after parsing attributes in process `syz.2.973'.
[  265.697523][ T9021] netlink: 'syz.2.981': attribute type 9 has an invalid length.
[  266.246936][ T9033] validate_nla: 2 callbacks suppressed
[  266.246957][ T9033] netlink: 'syz.2.985': attribute type 21 has an invalid length.
[  266.749255][ T9045] veth0_vlan: entered allmulticast mode
[  266.821771][ T9049] netlink: 'syz.2.991': attribute type 9 has an invalid length.
[  266.848664][ T9049] __nla_validate_parse: 4 callbacks suppressed
[  266.848681][ T9049] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.991'.
[  267.052249][ T9046] veth0_vlan: left promiscuous mode
[  267.091883][ T9046] veth0_vlan: entered promiscuous mode
[  267.131955][ T9054] netlink: 'syz.1.993': attribute type 21 has an invalid length.
[  267.167490][ T9054] netlink: 156 bytes leftover after parsing attributes in process `syz.1.993'.
[  267.344298][ T9051] netlink: 'syz.3.992': attribute type 153 has an invalid length.
[  267.355811][ T9051] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.992'.
[  268.023635][ T9063] FAULT_INJECTION: forcing a failure.
[  268.023635][ T9063] name failslab, interval 1, probability 0, space 0, times 0
[  268.043286][ T9063] CPU: 1 PID: 9063 Comm: syz.2.996 Not tainted syzkaller #0
[  268.050654][ T9063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  268.060748][ T9063] Call Trace:
[  268.064057][ T9063]  <TASK>
[  268.067006][ T9063]  dump_stack_lvl+0x16c/0x230
[  268.071722][ T9063]  ? show_regs_print_info+0x20/0x20
[  268.076942][ T9063]  ? load_image+0x3b0/0x3b0
[  268.081486][ T9063]  ? __might_sleep+0xe0/0xe0
[  268.086136][ T9063]  ? __lock_acquire+0x7c80/0x7c80
[  268.091187][ T9063]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  268.097185][ T9063]  should_fail_ex+0x39d/0x4d0
[  268.101973][ T9063]  should_failslab+0x9/0x20
[  268.106492][ T9063]  slab_pre_alloc_hook+0x59/0x310
[  268.111543][ T9063]  ? lockdep_hardirqs_on+0x98/0x150
[  268.116778][ T9063]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[  268.122341][ T9063]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[  268.127896][ T9063]  __kmem_cache_alloc_node+0x53/0x260
[  268.133381][ T9063]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[  268.138938][ T9063]  __kmalloc+0xa4/0x240
[  268.143113][ T9063]  bpf_prog_test_run_skb+0x22c/0x11c0
[  268.148501][ T9063]  ? lockdep_hardirqs_on+0x98/0x150
[  268.153711][ T9063]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  268.159893][ T9063]  ? cpu_online+0x60/0x60
[  268.164230][ T9063]  bpf_prog_test_run+0x321/0x390
[  268.169181][ T9063]  __sys_bpf+0x440/0x800
[  268.173439][ T9063]  ? bpf_link_show_fdinfo+0x350/0x350
[  268.178832][ T9063]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  268.185007][ T9063]  __x64_sys_bpf+0x7c/0x90
[  268.189465][ T9063]  do_syscall_64+0x55/0xb0
[  268.193896][ T9063]  ? clear_bhb_loop+0x40/0x90
[  268.198586][ T9063]  ? clear_bhb_loop+0x40/0x90
[  268.203274][ T9063]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  268.209177][ T9063] RIP: 0033:0x7ff90c38f749
[  268.213606][ T9063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.233243][ T9063] RSP: 002b:00007ff90d250038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  268.241681][ T9063] RAX: ffffffffffffffda RBX: 00007ff90c5e5fa0 RCX: 00007ff90c38f749
[  268.249668][ T9063] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[  268.257657][ T9063] RBP: 00007ff90d250090 R08: 0000000000000000 R09: 0000000000000000
[  268.265637][ T9063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.273616][ T9063] R13: 00007ff90c5e6038 R14: 00007ff90c5e5fa0 R15: 00007ffdec6cba28
[  268.281657][ T9063]  </TASK>
[  268.338757][ T9075] netlink: 'syz.1.1000': attribute type 21 has an invalid length.
[  268.388700][ T9075] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1000'.
[  269.144821][ T9089] netlink: 'syz.0.1005': attribute type 9 has an invalid length.
[  269.153636][ T9089] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1005'.
[  269.311844][ T9090] netlink: 'syz.1.1004': attribute type 21 has an invalid length.
[  269.327148][ T9090] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1004'.
[  270.243222][ T9106] netlink: 'syz.2.1011': attribute type 21 has an invalid length.
[  270.659820][ T9111] tap0: tun_chr_ioctl cmd 2147767506
[  270.907445][ T9124] netlink: 'syz.1.1015': attribute type 21 has an invalid length.
[  270.931608][ T9124] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1015'.
[  271.174660][ T9131] netlink: 'syz.0.1018': attribute type 9 has an invalid length.
[  271.218585][ T9131] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1018'.
[  272.192398][ T9147] À: port 1(vlan0) entered blocking state
[  272.228106][ T9147] À: port 1(vlan0) entered disabled state
[  272.235849][ T9147] vlan0: entered allmulticast mode
[  272.298349][ T9147] vlan0: entered promiscuous mode
[  273.341419][  T139] wlan1: Trigger new scan to find an IBSS to join
[  274.926640][ T9158] netlink: 'syz.0.1028': attribute type 21 has an invalid length.
[  274.935896][ T9158] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1028'.
[  275.321066][ T9170] netlink: 'syz.1.1033': attribute type 9 has an invalid length.
[  275.350084][ T9167] netlink: 'syz.3.1032': attribute type 153 has an invalid length.
[  275.379330][ T9170] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1033'.
[  275.390251][ T9167] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1032'.
[  275.800247][ T9178] netlink: 'syz.3.1036': attribute type 21 has an invalid length.
[  275.818733][ T9178] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1036'.
[  276.187547][ T9185] netlink: 'syz.3.1038': attribute type 21 has an invalid length.
[  276.218988][ T9185] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1038'.
[  276.242237][ T9181] netlink: 61959 bytes leftover after parsing attributes in process `syz.0.1037'.
[  276.824000][ T9197] netlink: 'syz.2.1043': attribute type 9 has an invalid length.
[  276.831967][ T9197] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1043'.
[  277.334941][  T139] wlan1: Trigger new scan to find an IBSS to join
[  278.340154][ T7678] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  280.535973][ T9211] netlink: 'syz.0.1045': attribute type 153 has an invalid length.
[  280.577501][ T9211] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1045'.
[  280.675734][ T9216] netlink: 'syz.1.1050': attribute type 21 has an invalid length.
[  280.733378][ T9216] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1050'.
[  281.469921][ T5106] Bluetooth: hci2: ACL packet for unknown connection handle 0
[  281.582639][ T9232] netlink: 'syz.2.1056': attribute type 9 has an invalid length.
[  281.591043][ T9232] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1056'.
[  281.883472][ T9224] netlink: 'syz.3.1053': attribute type 2 has an invalid length.
[  281.905558][ T9224] netlink: 'syz.3.1053': attribute type 8 has an invalid length.
[  281.934341][ T9224] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1053'.
[  282.623402][ T9244] netlink: 'syz.0.1060': attribute type 153 has an invalid length.
[  282.666801][ T9244] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1060'.
[  282.824728][ T9251] netlink: 'syz.1.1063': attribute type 21 has an invalid length.
[  282.840114][ T9251] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1063'.
[  283.051517][ T9258] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1065'.
[  283.341727][ T9267] netlink: 'syz.1.1068': attribute type 9 has an invalid length.
[  283.355983][ T9267] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1068'.
[  283.937411][ T9271] netlink: 'syz.2.1071': attribute type 2 has an invalid length.
[  283.947855][ T9271] netlink: 'syz.2.1071': attribute type 8 has an invalid length.
[  283.965051][ T9271] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1071'.
[  284.221328][ T9285] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1076'.
[  285.410099][  T139] wlan1: Trigger new scan to find an IBSS to join
[  285.763913][ T5106] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  286.224518][ T9327] validate_nla: 4 callbacks suppressed
[  286.224563][ T9327] netlink: 'syz.2.1092': attribute type 7 has an invalid length.
[  286.476729][ T9340] netlink: 'syz.2.1095': attribute type 9 has an invalid length.
[  286.504601][ T9340] __nla_validate_parse: 2 callbacks suppressed
[  286.504618][ T9340] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1095'.
[  286.836938][ T9343] netlink: 'syz.0.1097': attribute type 21 has an invalid length.
[  287.010268][ T9347] netlink: 'syz.3.1100': attribute type 21 has an invalid length.
[  287.021558][ T5106] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  287.038875][ T9347] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1100'.
[  287.693126][ T9360] netlink: 'syz.1.1101': attribute type 21 has an invalid length.
[  288.175214][ T9375] FAULT_INJECTION: forcing a failure.
[  288.175214][ T9375] name failslab, interval 1, probability 0, space 0, times 0
[  288.199912][ T9375] CPU: 0 PID: 9375 Comm: syz.3.1108 Not tainted syzkaller #0
[  288.207369][ T9375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  288.217481][ T9375] Call Trace:
[  288.220812][ T9375]  <TASK>
[  288.223802][ T9375]  dump_stack_lvl+0x16c/0x230
[  288.228566][ T9375]  ? show_regs_print_info+0x20/0x20
[  288.233841][ T9375]  ? load_image+0x3b0/0x3b0
[  288.238410][ T9375]  ? verify_lock_unused+0x140/0x140
[  288.243677][ T9375]  ? perf_trace_lock+0x2ed/0x380
[  288.248717][ T9375]  should_fail_ex+0x39d/0x4d0
[  288.253573][ T9375]  should_failslab+0x9/0x20
[  288.258137][ T9375]  slab_pre_alloc_hook+0x59/0x310
[  288.263249][ T9375]  kmem_cache_alloc+0x5a/0x2e0
[  288.268066][ T9375]  ? skb_clone+0x1eb/0x370
[  288.272548][ T9375]  skb_clone+0x1eb/0x370
[  288.276853][ T9375]  __netlink_deliver_tap+0x41c/0x830
[  288.282207][ T9375]  ? netlink_deliver_tap+0x2e/0x1b0
[  288.287452][ T9375]  netlink_deliver_tap+0x19c/0x1b0
[  288.292654][ T9375]  netlink_unicast+0x72c/0x8d0
[  288.297486][ T9375]  netlink_sendmsg+0x8c1/0xbe0
[  288.302311][ T9375]  ? netlink_getsockopt+0x580/0x580
[  288.307648][ T9375]  ? aa_sock_msg_perm+0x94/0x150
[  288.312633][ T9375]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  288.317954][ T9375]  ? security_socket_sendmsg+0x80/0xa0
[  288.323448][ T9375]  ? netlink_getsockopt+0x580/0x580
[  288.328689][ T9375]  ____sys_sendmsg+0x5bf/0x950
[  288.333511][ T9375]  ? __asan_memset+0x22/0x40
[  288.338144][ T9375]  ? __sys_sendmsg_sock+0x30/0x30
[  288.343207][ T9375]  ? __import_iovec+0x5f2/0x860
[  288.348148][ T9375]  ? import_iovec+0x73/0xa0
[  288.352705][ T9375]  ___sys_sendmsg+0x220/0x290
[  288.357431][ T9375]  ? __sys_sendmsg+0x270/0x270
[  288.362287][ T9375]  ? __lock_acquire+0x7c80/0x7c80
[  288.367429][ T9375]  __se_sys_sendmsg+0x1a5/0x270
[  288.372333][ T9375]  ? __x64_sys_sendmsg+0x80/0x80
[  288.377356][ T9375]  ? lockdep_hardirqs_on+0x98/0x150
[  288.382603][ T9375]  do_syscall_64+0x55/0xb0
[  288.387068][ T9375]  ? clear_bhb_loop+0x40/0x90
[  288.391778][ T9375]  ? clear_bhb_loop+0x40/0x90
[  288.396491][ T9375]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  288.402418][ T9375] RIP: 0033:0x7f985c18f749
[  288.406866][ T9375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.426687][ T9375] RSP: 002b:00007f985d0cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  288.435151][ T9375] RAX: ffffffffffffffda RBX: 00007f985c3e5fa0 RCX: 00007f985c18f749
[  288.443153][ T9375] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  288.451153][ T9375] RBP: 00007f985d0cc090 R08: 0000000000000000 R09: 0000000000000000
[  288.459180][ T9375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.467181][ T9375] R13: 00007f985c3e6038 R14: 00007f985c3e5fa0 R15: 00007ffe4a9dea08
[  288.475225][ T9375]  </TASK>
[  288.496269][ T2917] wlan1: Trigger new scan to find an IBSS to join
[  288.526345][ T9366] netlink: 'syz.0.1104': attribute type 2 has an invalid length.
[  288.546722][ T9366] netlink: 'syz.0.1104': attribute type 8 has an invalid length.
[  288.557334][ T9366] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1104'.
[  288.805139][ T9375] netlink: 'syz.3.1108': attribute type 11 has an invalid length.
[  288.968180][ T9384] netlink: 'syz.0.1111': attribute type 21 has an invalid length.
[  288.977326][ T9384] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1111'.
[  289.001942][ T5106] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  289.390006][ T9388] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  289.397041][ T9388] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode
[  289.601244][ T9400] netlink: 'syz.2.1118': attribute type 21 has an invalid length.
[  289.632457][ T9402] FAULT_INJECTION: forcing a failure.
[  289.632457][ T9402] name failslab, interval 1, probability 0, space 0, times 0
[  289.655770][ T9402] CPU: 0 PID: 9402 Comm: syz.0.1119 Not tainted syzkaller #0
[  289.663246][ T9402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  289.673352][ T9402] Call Trace:
[  289.676678][ T9402]  <TASK>
[  289.679670][ T9402]  dump_stack_lvl+0x16c/0x230
[  289.684408][ T9402]  ? show_regs_print_info+0x20/0x20
[  289.689742][ T9402]  ? load_image+0x3b0/0x3b0
[  289.694295][ T9402]  ? __might_sleep+0xe0/0xe0
[  289.698935][ T9402]  ? __lock_acquire+0x7c80/0x7c80
[  289.703994][ T9402]  should_fail_ex+0x39d/0x4d0
[  289.708699][ T9402]  should_failslab+0x9/0x20
[  289.713247][ T9402]  slab_pre_alloc_hook+0x59/0x310
[  289.718314][ T9402]  kmem_cache_alloc+0x5a/0x2e0
[  289.723090][ T9402]  ? __anon_vma_prepare+0xbe/0x430
[  289.728206][ T9402]  __anon_vma_prepare+0xbe/0x430
[  289.733170][ T9402]  ? _raw_spin_unlock+0x28/0x40
[  289.738046][ T9402]  handle_mm_fault+0x3cf1/0x4920
[  289.743007][ T9402]  ? handle_mm_fault+0xd1/0x4920
[  289.747979][ T9402]  ? numa_migrate_prep+0x350/0x350
[  289.753151][ T9402]  ? lock_chain_count+0x20/0x20
[  289.758065][ T9402]  ? lock_mm_and_find_vma+0x9c/0x300
[  289.763372][ T9402]  do_user_addr_fault+0x738/0x12e0
[  289.768503][ T9402]  exc_page_fault+0x67/0x110
[  289.773095][ T9402]  asm_exc_page_fault+0x26/0x30
[  289.777951][ T9402] RIP: 0010:__put_user_4+0x11/0x20
[  289.783072][ T9402] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb
[  289.802686][ T9402] RSP: 0018:ffffc9000c89fe80 EFLAGS: 00050202
[  289.808867][ T9402] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000040
[  289.816902][ T9402] RDX: 0000000000000000 RSI: ffffffff8aaace60 RDI: ffffffff8afc6b00
[  289.824905][ T9402] RBP: 0000000000000004 R08: ffffffff8e4a8d6f R09: 1ffffffff1c951ad
[  289.832904][ T9402] R10: dffffc0000000000 R11: fffffbfff1c951ae R12: 0000000000000000
[  289.840874][ T9402] R13: 0000200000000040 R14: 0000000000000010 R15: 0000000000000003
[  289.848882][ T9402]  __sys_socketpair+0xb8/0x550
[  289.853676][ T9402]  __x64_sys_socketpair+0x9b/0xb0
[  289.858728][ T9402]  do_syscall_64+0x55/0xb0
[  289.863799][ T9402]  ? clear_bhb_loop+0x40/0x90
[  289.868530][ T9402]  ? clear_bhb_loop+0x40/0x90
[  289.871332][ T9407] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1120'.
[  289.873242][ T9402]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  289.882812][ T9407] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[  289.888469][ T9402] RIP: 0033:0x7f6e81d8f749
[  289.888499][ T9402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.888516][ T9402] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  289.888540][ T9402] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  289.888554][ T9402] RDX: 000000000000000e RSI: 0000000000000003 RDI: 0000000000000010
[  289.945606][ T9402] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  289.953779][ T9402] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  289.961761][ T9402] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  289.969782][ T9402]  </TASK>
[  290.161372][ T9414] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1123'.
[  290.171397][ T5106] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  291.557840][ T9445] validate_nla: 3 callbacks suppressed
[  291.557862][ T9445] netlink: 'syz.2.1134': attribute type 21 has an invalid length.
[  291.588687][ T9445] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1134'.
[  291.840603][ T9443] netlink: 'syz.3.1133': attribute type 21 has an invalid length.
[  292.003417][ T9448] netlink: 'syz.0.1135': attribute type 153 has an invalid length.
[  292.023693][ T9448] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1135'.
[  292.369830][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  292.958809][ T9459] netlink: 'syz.3.1140': attribute type 21 has an invalid length.
[  293.079183][ T9463] netlink: 'syz.0.1147': attribute type 153 has an invalid length.
[  293.101490][ T9463] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1147'.
[  293.116939][ T9467] netlink: 'syz.1.1139': attribute type 21 has an invalid length.
[  293.669316][ T9479] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1143'.
[  293.768962][ T9483] FAULT_INJECTION: forcing a failure.
[  293.768962][ T9483] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.829922][ T9483] CPU: 1 PID: 9483 Comm: syz.1.1144 Not tainted syzkaller #0
[  293.837400][ T9483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  293.847506][ T9483] Call Trace:
[  293.850825][ T9483]  <TASK>
[  293.853791][ T9483]  dump_stack_lvl+0x16c/0x230
[  293.858607][ T9483]  ? show_regs_print_info+0x20/0x20
[  293.863850][ T9483]  ? load_image+0x3b0/0x3b0
[  293.868407][ T9483]  ? __might_fault+0xaa/0x120
[  293.873121][ T9483]  ? __lock_acquire+0x7c80/0x7c80
[  293.878204][ T9483]  should_fail_ex+0x39d/0x4d0
[  293.882930][ T9483]  _copy_to_user+0x2f/0xa0
[  293.887388][ T9483]  map_lookup_and_delete_elem+0x8b0/0xa50
[  293.893168][ T9483]  __sys_bpf+0x4ca/0x800
[  293.897455][ T9483]  ? bpf_link_show_fdinfo+0x350/0x350
[  293.902896][ T9483]  ? lock_chain_count+0x20/0x20
[  293.907799][ T9483]  __x64_sys_bpf+0x7c/0x90
[  293.912270][ T9483]  do_syscall_64+0x55/0xb0
[  293.916736][ T9483]  ? clear_bhb_loop+0x40/0x90
[  293.921463][ T9483]  ? clear_bhb_loop+0x40/0x90
[  293.926206][ T9483]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  293.932157][ T9483] RIP: 0033:0x7f3fc2b8f749
[  293.936696][ T9483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.956434][ T9483] RSP: 002b:00007f3fc3ac2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  293.964891][ T9483] RAX: ffffffffffffffda RBX: 00007f3fc2de6090 RCX: 00007f3fc2b8f749
[  293.972921][ T9483] RDX: 0000000000000020 RSI: 0000200000000240 RDI: 0000000000000015
[  293.980933][ T9483] RBP: 00007f3fc3ac2090 R08: 0000000000000000 R09: 0000000000000000
[  293.988945][ T9483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.996955][ T9483] R13: 00007f3fc2de6128 R14: 00007f3fc2de6090 R15: 00007ffd501389c8
[  294.004987][ T9483]  </TASK>
[  294.614235][ T9496] netlink: 'syz.0.1151': attribute type 153 has an invalid length.
[  294.633350][ T9496] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1151'.
[  294.766753][ T9502] FAULT_INJECTION: forcing a failure.
[  294.766753][ T9502] name failslab, interval 1, probability 0, space 0, times 0
[  294.779951][ T9502] CPU: 0 PID: 9502 Comm: syz.2.1153 Not tainted syzkaller #0
[  294.782098][ T9499] netlink: 'syz.3.1152': attribute type 21 has an invalid length.
[  294.787432][ T9502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  294.787495][ T9502] Call Trace:
[  294.787514][ T9502]  <TASK>
[  294.787524][ T9502]  dump_stack_lvl+0x16c/0x230
[  294.787556][ T9502]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  294.787582][ T9502]  ? show_regs_print_info+0x20/0x20
[  294.787607][ T9502]  ? load_image+0x3b0/0x3b0
[  294.787626][ T9502]  ? mark_lock+0x94/0x320
[  294.787655][ T9502]  ? mark_lock+0x94/0x320
[  294.787682][ T9502]  should_fail_ex+0x39d/0x4d0
[  294.787715][ T9502]  should_failslab+0x9/0x20
[  294.787739][ T9502]  slab_pre_alloc_hook+0x59/0x310
[  294.787773][ T9502]  kmem_cache_alloc_node+0x60/0x330
[  294.787798][ T9502]  ? __alloc_skb+0x108/0x2c0
[  294.787831][ T9502]  __alloc_skb+0x108/0x2c0
[  294.787862][ T9502]  alloc_skb_with_frags+0xca/0x7c0
[  294.787886][ T9502]  ? mark_lock+0x94/0x320
[  294.787911][ T9502]  ? __lock_acquire+0x1260/0x7c80
[  294.787936][ T9502]  sock_alloc_send_pskb+0x857/0x990
[  294.787982][ T9502]  ? sock_kzfree_s+0x50/0x50
[  294.788006][ T9502]  ? verify_lock_unused+0x140/0x140
[  294.788043][ T9502]  __ip6_append_data+0x29e0/0x3c40
[  294.788102][ T9502]  ? __in6_dev_get+0xd0/0xd0
[  294.788130][ T9502]  ? ip6_mtu+0x7d/0x3f0
[  294.788156][ T9502]  ? ip6_setup_cork+0xfe0/0xfe0
[  294.788189][ T9502]  ip6_append_data+0x1b0/0x350
[  294.788217][ T9502]  ? __in6_dev_get+0xd0/0xd0
[  294.788243][ T9502]  icmp6_send+0x122b/0x1990
[  294.788266][ T9502]  ? icmp6_send+0x1e1/0x1990
[  294.788312][ T9502]  ? icmpv6_push_pending_frames+0x400/0x400
[  294.788360][ T9502]  ? __lock_acquire+0x1260/0x7c80
[  294.788404][ T9502]  icmpv6_param_prob_reason+0x32/0x50
[  294.788430][ T9502]  ip6_parse_tlv+0x1843/0x1b40
[  294.788477][ T9502]  ipv6_parse_hopopts+0x303/0x5f0
[  294.788516][ T9502]  ip6_rcv_core+0x1089/0x1740
[  294.788542][ T9502]  ? ip6_rcv_core+0xc5/0x1740
[  294.788577][ T9502]  ipv6_rcv+0x72/0xc0
[  294.788598][ T9502]  ? ip6_rcv_finish_core+0x420/0x420
[  294.788622][ T9502]  __netif_receive_skb+0xcc/0x290
[  294.788660][ T9502]  ? netif_receive_skb+0x106/0x6f0
[  294.788684][ T9502]  netif_receive_skb+0x1bc/0x6f0
[  294.788711][ T9502]  ? enqueue_to_backlog+0xe30/0xe30
[  294.788736][ T9502]  ? perf_trace_preemptirq_template+0x281/0x340
[  294.788767][ T9502]  ? tun_rx_batched+0x161/0x730
[  294.788795][ T9502]  tun_rx_batched+0x1ba/0x730
[  294.788826][ T9502]  ? pskb_may_pull+0xf0/0xf0
[  294.788846][ T9502]  ? __local_bh_enable_ip+0x12e/0x1c0
[  294.788866][ T9502]  ? lockdep_hardirqs_on+0x98/0x150
[  294.788886][ T9502]  ? read_lock_is_recursive+0x20/0x20
[  294.788905][ T9502]  ? __local_bh_enable_ip+0x12e/0x1c0
[  294.788923][ T9502]  ? _local_bh_enable+0xa0/0xa0
[  294.788940][ T9502]  ? skb_copy_datagram_from_iter+0x62e/0x6e0
[  294.788976][ T9502]  tun_get_user+0x283f/0x3bf0
[  294.789000][ T9502]  ? tun_get_user+0x2475/0x3bf0
[  294.789032][ T9502]  ? aa_file_perm+0x120/0xec0
[  294.789056][ T9502]  ? aa_file_perm+0x3e8/0xec0
[  294.789081][ T9502]  ? rcu_read_unlock+0xa0/0xa0
[  295.078949][ T9502]  ? tun_get+0x1c/0x2e0
[  295.083135][ T9502]  ? __lock_acquire+0x7c80/0x7c80
[  295.088178][ T9502]  ? tun_get+0x1c/0x2e0
[  295.092355][ T9502]  tun_chr_write_iter+0x119/0x200
[  295.097397][ T9502]  vfs_write+0x43b/0x940
[  295.101661][ T9502]  ? file_end_write+0x250/0x250
[  295.106528][ T9502]  ? __fget_files+0x44a/0x4d0
[  295.111225][ T9502]  ? __fdget_pos+0x1d8/0x330
[  295.115831][ T9502]  ? ksys_write+0x75/0x250
[  295.120263][ T9502]  ksys_write+0x147/0x250
[  295.124606][ T9502]  ? __ia32_sys_read+0x90/0x90
[  295.129385][ T9502]  ? lockdep_hardirqs_on+0x98/0x150
[  295.134597][ T9502]  do_syscall_64+0x55/0xb0
[  295.139061][ T9502]  ? clear_bhb_loop+0x40/0x90
[  295.143758][ T9502]  ? clear_bhb_loop+0x40/0x90
[  295.148450][ T9502]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  295.154357][ T9502] RIP: 0033:0x7ff90c38f749
[  295.158789][ T9502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.178407][ T9502] RSP: 002b:00007ff90d250038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  295.186839][ T9502] RAX: ffffffffffffffda RBX: 00007ff90c5e5fa0 RCX: 00007ff90c38f749
[  295.194831][ T9502] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 00000000000000c8
[  295.202811][ T9502] RBP: 00007ff90d250090 R08: 0000000000000000 R09: 0000000000000000
[  295.210796][ T9502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  295.218776][ T9502] R13: 00007ff90c5e6038 R14: 00007ff90c5e5fa0 R15: 00007ffdec6cba28
[  295.226772][ T9502]  </TASK>
[  295.305982][ T9504] netlink: 'syz.1.1154': attribute type 21 has an invalid length.
[  295.314378][ T9504] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1154'.
[  295.850148][ T9516] netlink: 'syz.1.1158': attribute type 9 has an invalid length.
[  295.883400][ T9516] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1158'.
[  296.647220][ T9529] netlink: 'syz.1.1163': attribute type 153 has an invalid length.
[  296.674025][ T9529] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1163'.
[  296.739370][ T9534] netlink: 'syz.2.1173': attribute type 9 has an invalid length.
[  296.747413][ T9534] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1173'.
[  297.113630][ T9541] netlink: 'syz.0.1165': attribute type 10 has an invalid length.
[  297.182204][ T9541] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1165'.
[  297.193250][ T9541] batman_adv: batadv0: Adding interface: vlan1
[  297.205972][ T9541] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.243756][ T9541] batman_adv: batadv0: Interface activated: vlan1
[  297.471727][ T9546] netlink: 'syz.1.1166': attribute type 21 has an invalid length.
[  297.499256][ T9546] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1166'.
[  298.508657][ T9551] netlink: 'syz.0.1168': attribute type 21 has an invalid length.
[  298.527288][ T9553] netlink: 61967 bytes leftover after parsing attributes in process `syz.2.1170'.
[  299.717856][ T9575] netlink: 'syz.0.1178': attribute type 9 has an invalid length.
[  299.764069][ T9575] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1178'.
[  300.014314][ T9577] netlink: 'syz.1.1179': attribute type 153 has an invalid length.
[  300.026553][ T9577] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1179'.
[  300.092409][ T9581] netlink: 'syz.0.1181': attribute type 21 has an invalid length.
[  300.101460][ T9581] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1181'.
[  300.678140][ T9590] netlink: 'syz.1.1184': attribute type 21 has an invalid length.
[  301.227235][ T9605] netlink: 'syz.1.1190': attribute type 9 has an invalid length.
[  301.248320][ T9605] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1190'.
[  301.457077][ T9608] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1191'.
[  302.367341][ T9620] validate_nla: 2 callbacks suppressed
[  302.367380][ T9620] netlink: 'syz.3.1198': attribute type 153 has an invalid length.
[  302.389759][ T7678] wlan1: Trigger new scan to find an IBSS to join
[  302.424383][ T9620] __nla_validate_parse: 1 callbacks suppressed
[  302.424421][ T9620] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1198'.
[  303.098517][ T9638] netlink: 'syz.1.1201': attribute type 9 has an invalid length.
[  303.106404][ T9638] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1201'.
[  303.318132][ T9642] netlink: 'syz.2.1203': attribute type 21 has an invalid length.
[  303.337867][ T9642] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1203'.
[  303.673357][ T9650] netlink: 'syz.0.1213': attribute type 153 has an invalid length.
[  303.750495][ T9650] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1213'.
[  303.803326][ T9649] netlink: 'syz.3.1205': attribute type 153 has an invalid length.
[  303.860701][ T9649] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1205'.
[  304.355083][ T9658] netlink: 'syz.2.1209': attribute type 153 has an invalid length.
[  304.365154][ T9658] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1209'.
[  304.786891][ T9669] netlink: 'syz.2.1214': attribute type 21 has an invalid length.
[  304.821578][ T9669] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1214'.
[  304.961929][ T9665] netlink: 'syz.0.1211': attribute type 21 has an invalid length.
[  305.449936][ T9680] netlink: 'syz.0.1216': attribute type 9 has an invalid length.
[  305.477163][ T9680] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1216'.
[  305.666314][ T9682] netlink: 'syz.1.1218': attribute type 153 has an invalid length.
[  305.681130][ T9682] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1218'.
[  305.808197][ T9691] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1220'.
[  307.509445][ T2978] wlan1: Trigger new scan to find an IBSS to join
[  307.791813][ T9730] validate_nla: 5 callbacks suppressed
[  307.791853][ T9730] netlink: 'syz.3.1232': attribute type 153 has an invalid length.
[  307.807248][ T9730] __nla_validate_parse: 2 callbacks suppressed
[  307.807283][ T9730] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1232'.
[  308.063223][ T9737] netlink: 'syz.1.1234': attribute type 21 has an invalid length.
[  308.085422][ T9737] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1234'.
[  308.469624][ T9740] netlink: 'syz.0.1237': attribute type 21 has an invalid length.
[  308.807931][ T9754] netlink: 'syz.3.1243': attribute type 12 has an invalid length.
[  308.818844][ T9754] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1243'.
[  308.866545][ T9756] netlink: 'syz.0.1244': attribute type 9 has an invalid length.
[  308.880977][ T9756] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1244'.
[  309.813195][ T9765] netlink: 25123 bytes leftover after parsing attributes in process `syz.2.1247'.
[  310.015938][ T9768] netlink: 'syz.3.1248': attribute type 153 has an invalid length.
[  310.036589][ T9768] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1248'.
[  310.056047][ T9772] netlink: 'syz.0.1250': attribute type 21 has an invalid length.
[  310.064468][ T9772] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1250'.
[  310.442160][ T9776] netlink: 'syz.3.1253': attribute type 21 has an invalid length.
[  311.126579][ T9800] netlink: 'syz.3.1262': attribute type 21 has an invalid length.
[  311.167736][ T9800] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1262'.
[  311.414557][ T2978] wlan1: Trigger new scan to find an IBSS to join
[  311.567775][ T9806] netlink: 'syz.1.1264': attribute type 153 has an invalid length.
[  311.585853][ T9806] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1264'.
[  312.113445][ T9819] FAULT_INJECTION: forcing a failure.
[  312.113445][ T9819] name failslab, interval 1, probability 0, space 0, times 0
[  312.203459][ T9819] CPU: 0 PID: 9819 Comm: syz.0.1268 Not tainted syzkaller #0
[  312.210934][ T9819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  312.221067][ T9819] Call Trace:
[  312.224400][ T9819]  <TASK>
[  312.227460][ T9819]  dump_stack_lvl+0x16c/0x230
[  312.232202][ T9819]  ? show_regs_print_info+0x20/0x20
[  312.237458][ T9819]  ? load_image+0x3b0/0x3b0
[  312.242028][ T9819]  ? __lock_acquire+0x7c80/0x7c80
[  312.247119][ T9819]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  312.253178][ T9819]  should_fail_ex+0x39d/0x4d0
[  312.257932][ T9819]  should_failslab+0x9/0x20
[  312.262580][ T9819]  slab_pre_alloc_hook+0x59/0x310
[  312.267668][ T9819]  ? lockdep_hardirqs_on+0x98/0x150
[  312.272928][ T9819]  ? sk_prot_alloc+0xe7/0x210
[  312.277663][ T9819]  ? sk_prot_alloc+0xe7/0x210
[  312.282488][ T9819]  __kmem_cache_alloc_node+0x53/0x260
[  312.288029][ T9819]  ? sk_prot_alloc+0xe7/0x210
[  312.292763][ T9819]  __kmalloc+0xa4/0x240
[  312.296995][ T9819]  sk_prot_alloc+0xe7/0x210
[  312.301641][ T9819]  ? sk_alloc+0x24/0x360
[  312.305939][ T9819]  sk_alloc+0x3a/0x360
[  312.310065][ T9819]  ? bpf_ctx_init+0x163/0x1a0
[  312.314785][ T9819]  ? bpf_prog_test_run_skb+0x268/0x11c0
[  312.320394][ T9819]  bpf_prog_test_run_skb+0x39a/0x11c0
[  312.325810][ T9819]  ? __fget_files+0x28/0x4d0
[  312.330583][ T9819]  ? cpu_online+0x60/0x60
[  312.334964][ T9819]  bpf_prog_test_run+0x321/0x390
[  312.339956][ T9819]  __sys_bpf+0x440/0x800
[  312.344248][ T9819]  ? bpf_link_show_fdinfo+0x350/0x350
[  312.349702][ T9819]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  312.355948][ T9819]  __x64_sys_bpf+0x7c/0x90
[  312.360431][ T9819]  do_syscall_64+0x55/0xb0
[  312.364904][ T9819]  ? clear_bhb_loop+0x40/0x90
[  312.369635][ T9819]  ? clear_bhb_loop+0x40/0x90
[  312.374392][ T9819]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  312.380516][ T9819] RIP: 0033:0x7f6e81d8f749
[  312.384962][ T9819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.404618][ T9819] RSP: 002b:00007f6e82baf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  312.413155][ T9819] RAX: ffffffffffffffda RBX: 00007f6e81fe5fa0 RCX: 00007f6e81d8f749
[  312.421155][ T9819] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[  312.429143][ T9819] RBP: 00007f6e82baf090 R08: 0000000000000000 R09: 0000000000000000
[  312.437154][ T9819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.445143][ T9819] R13: 00007f6e81fe6038 R14: 00007f6e81fe5fa0 R15: 00007ffdee82a778
[  312.453162][ T9819]  </TASK>
[  312.752461][ T9834] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1274'.
[  313.286930][ T9843] validate_nla: 2 callbacks suppressed
[  313.286951][ T9843] netlink: 'syz.3.1277': attribute type 153 has an invalid length.
[  313.315148][ T9843] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1277'.
[  313.683709][ T9855] veth0_vlan: entered allmulticast mode
[  313.834910][ T9857] veth0_vlan: left promiscuous mode
[  313.858845][ T9857] veth0_vlan: entered promiscuous mode
[  313.932833][ T9863] netlink: 'syz.2.1282': attribute type 21 has an invalid length.
[  314.357932][ T9873] netlink: 'syz.0.1287': attribute type 21 has an invalid length.
[  314.378040][ T9873] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1287'.
[  314.551371][ T9877] netlink: 'syz.1.1289': attribute type 9 has an invalid length.
[  314.588702][ T9877] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.1289'.
[  314.724060][ T9877] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.1289'.
[  314.992370][ T9885] netlink: 'syz.3.1290': attribute type 153 has an invalid length.
[  315.027912][ T9885] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1290'.
[  315.429961][ T2978] wlan1: Trigger new scan to find an IBSS to join
[  315.701464][ T9894] netlink: 'syz.1.1293': attribute type 9 has an invalid length.
[  315.718710][ T9894] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1293'.
[  316.065075][ T9901] netlink: 'syz.3.1297': attribute type 21 has an invalid length.
[  316.334182][ T9907] netlink: 'syz.1.1299': attribute type 21 has an invalid length.
[  316.345731][ T9907] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1299'.
[  316.721158][ T9911] netlink: 'syz.2.1308': attribute type 21 has an invalid length.
[  317.204284][ T9921] netlink: 'syz.2.1303': attribute type 153 has an invalid length.
[  317.213422][ T9921] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1303'.
[  317.773768][ T9942] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1310'.
[  317.785308][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  317.793319][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  317.934462][ T9946] netlink: 209840 bytes leftover after parsing attributes in process `syz.2.1312'.
[  317.955129][ T9940] FAULT_INJECTION: forcing a failure.
[  317.955129][ T9940] name failslab, interval 1, probability 0, space 0, times 0
[  317.973575][ T9940] CPU: 0 PID: 9940 Comm: syz.3.1311 Not tainted syzkaller #0
[  317.981046][ T9940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  317.991146][ T9940] Call Trace:
[  317.994473][ T9940]  <TASK>
[  317.997442][ T9940]  dump_stack_lvl+0x16c/0x230
[  318.002173][ T9940]  ? show_regs_print_info+0x20/0x20
[  318.007516][ T9940]  ? load_image+0x3b0/0x3b0
[  318.012098][ T9940]  ? __might_sleep+0xe0/0xe0
[  318.016738][ T9940]  ? __lock_acquire+0x7c80/0x7c80
[  318.021890][ T9940]  ? lock_chain_count+0x20/0x20
[  318.026787][ T9940]  should_fail_ex+0x39d/0x4d0
[  318.031517][ T9940]  should_failslab+0x9/0x20
[  318.036067][ T9940]  slab_pre_alloc_hook+0x59/0x310
[  318.041145][ T9940]  ? _raw_spin_unlock+0x40/0x40
[  318.046054][ T9940]  ? string+0x26d/0x2b0
[  318.050252][ T9940]  ? __request_module+0x2a6/0x5b0
[  318.055336][ T9940]  __kmem_cache_alloc_node+0x53/0x260
[  318.060742][ T9940]  ? __request_module+0x2a6/0x5b0
[  318.065778][ T9940]  kmalloc_trace+0x2a/0xe0
[  318.070211][ T9940]  __request_module+0x2a6/0x5b0
[  318.075074][ T9940]  ? end_current_label_crit_section+0x170/0x170
[  318.081339][ T9940]  ? module_enforce_rwx_sections+0x150/0x150
[  318.087337][ T9940]  ? apparmor_capable+0x137/0x1a0
[  318.092381][ T9940]  ? capable+0x88/0xe0
[  318.096463][ T9940]  ? dev_load+0x21/0x1f0
[  318.100722][ T9940]  devinet_ioctl+0x13a/0x1c60
[  318.105420][ T9940]  ? __might_fault+0xc6/0x120
[  318.110192][ T9940]  ? inet_ifa_byprefix+0x2a0/0x2a0
[  318.115321][ T9940]  ? _copy_from_user+0xa5/0xe0
[  318.120101][ T9940]  ? get_user_ifreq+0x12b/0x180
[  318.124981][ T9940]  inet_ioctl+0x3c1/0x4c0
[  318.129326][ T9940]  ? tomoyo_path_number_perm+0x1ba/0x590
[  318.135147][ T9940]  ? inet_shutdown+0x370/0x370
[  318.139920][ T9940]  ? slab_free_freelist_hook+0x130/0x1b0
[  318.145570][ T9940]  ? tomoyo_path_number_perm+0x477/0x590
[  318.151219][ T9940]  ? __kmem_cache_free+0xba/0x1f0
[  318.156266][ T9940]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  318.161758][ T9940]  sock_do_ioctl+0xd7/0x2f0
[  318.166360][ T9940]  ? sock_show_fdinfo+0xb0/0xb0
[  318.171232][ T9940]  sock_ioctl+0x623/0x7a0
[  318.175575][ T9940]  ? sock_poll+0x3d0/0x3d0
[  318.180011][ T9940]  ? bpf_lsm_file_ioctl+0x9/0x10
[  318.184962][ T9940]  ? security_file_ioctl+0x80/0xa0
[  318.190094][ T9940]  ? sock_poll+0x3d0/0x3d0
[  318.194516][ T9940]  __se_sys_ioctl+0xfd/0x170
[  318.199123][ T9940]  do_syscall_64+0x55/0xb0
[  318.203551][ T9940]  ? clear_bhb_loop+0x40/0x90
[  318.208237][ T9940]  ? clear_bhb_loop+0x40/0x90
[  318.212924][ T9940]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  318.218826][ T9940] RIP: 0033:0x7f985c18f749
[  318.223251][ T9940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.242886][ T9940] RSP: 002b:00007f985d0cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  318.251321][ T9940] RAX: ffffffffffffffda RBX: 00007f985c3e5fa0 RCX: 00007f985c18f749
[  318.259307][ T9940] RDX: 0000200000000100 RSI: 000000000000891a RDI: 0000000000000003
[  318.267287][ T9940] RBP: 00007f985d0cc090 R08: 0000000000000000 R09: 0000000000000000
[  318.275276][ T9940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.283266][ T9940] R13: 00007f985c3e6038 R14: 00007f985c3e5fa0 R15: 00007ffe4a9dea08
[  318.291263][ T9940]  </TASK>
[  318.494922][ T9952] validate_nla: 1 callbacks suppressed
[  318.494968][ T9952] netlink: 'syz.2.1314': attribute type 21 has an invalid length.
[  318.859012][ T9956] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  319.184406][ T9960] netlink: 'syz.1.1318': attribute type 153 has an invalid length.
[  319.196600][ T9960] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1318'.
[  319.266678][ T9968] sctp: [Deprecated]: syz.2.1320 (pid 9968) Use of struct sctp_assoc_value in delayed_ack socket option.
[  319.266678][ T9968] Use struct sctp_sack_info instead
[  319.347073][ T9970] netlink: 'syz.3.1322': attribute type 21 has an invalid length.
[  319.355734][ T9970] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1322'.
[  320.379701][ T7678] wlan1: Trigger new scan to find an IBSS to join
[  321.394461][ T9989] netlink: 'syz.2.1328': attribute type 21 has an invalid length.
[  321.717269][ T9998] netlink: 'syz.0.1334': attribute type 21 has an invalid length.
[  321.732735][ T9998] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1334'.
[  321.905512][T10002] netlink: 'syz.2.1332': attribute type 153 has an invalid length.
[  321.951340][T10002] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1332'.
[  322.652218][T10022] netlink: 'syz.0.1340': attribute type 21 has an invalid length.
[  323.025618][T10034] netlink: 'syz.0.1346': attribute type 9 has an invalid length.
[  323.052068][T10034] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1346'.
[  323.279702][T10038] netlink: 'syz.3.1347': attribute type 153 has an invalid length.
[  323.287693][T10038] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1347'.
[  323.467845][T10033] delete_channel: no stack
[  324.435033][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  324.690076][T10061] netlink: 'syz.0.1354': attribute type 21 has an invalid length.
[  325.583015][T10063] netlink: 'syz.1.1355': attribute type 21 has an invalid length.
[  325.619106][ T2978] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  325.649538][T10077] netlink: 'syz.2.1359': attribute type 29 has an invalid length.
[  325.658181][T10077] netlink: 'syz.2.1359': attribute type 29 has an invalid length.
[  325.967630][T10086] netlink: set zone limit has 8 unknown bytes
[  329.751884][T10084] netlink: 'syz.1.1362': attribute type 21 has an invalid length.
[  329.759903][T10084] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1362'.
[  329.770318][T10079] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1360'.
[  329.784994][T10100] mac80211_hwsim hwsim5 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  329.976064][T10109] netlink: 'syz.3.1369': attribute type 29 has an invalid length.
[  330.046646][T10109] netlink: 'syz.3.1369': attribute type 29 has an invalid length.
[  330.090060][T10116] netlink: 'syz.2.1371': attribute type 153 has an invalid length.
[  330.115785][T10116] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1371'.
[  330.451852][T10123] netlink: 'syz.1.1374': attribute type 9 has an invalid length.
[  330.459895][T10123] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1374'.
[  330.521302][T10120] netlink: 'syz.3.1373': attribute type 21 has an invalid length.
[  331.137471][T10122] delete_channel: no stack
[  331.230968][T10131] netlink: 'syz.0.1376': attribute type 21 has an invalid length.
[  331.355764][T10136] netlink: 'syz.2.1378': attribute type 21 has an invalid length.
[  331.395019][T10136] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1378'.
[  331.644137][T10143] netlink: 'syz.1.1381': attribute type 29 has an invalid length.
[  331.662978][T10143] netlink: 'syz.1.1381': attribute type 29 has an invalid length.
[  331.716356][T10145] batman_adv: batadv0: Interface deactivated: vlan1
[  331.722439][T10147] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1383'.
[  331.812586][T10145] batman_adv: batadv0: Interface activated: vlan1
[  331.819688][T10145] team0: Device veth0_vlan failed to register rx_handler
[  331.850884][T10145] batman_adv: batadv0: Interface deactivated: vlan1
[  332.389694][ T7668] wlan1: Trigger new scan to find an IBSS to join
[  333.133727][T10172] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1390'.
[  333.187281][T10173] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1391'.
[  333.542103][T10170] delete_channel: no stack
[  334.181600][T10187] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1396'.
[  334.513109][T10201] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1403'.
[  334.864627][T10205] validate_nla: 8 callbacks suppressed
[  334.864646][T10205] netlink: 'syz.0.1402': attribute type 21 has an invalid length.
[  335.130698][T10216] netlink: 'syz.3.1405': attribute type 10 has an invalid length.
[  335.438227][T10216] team0: Port device geneve1 added
[  335.471563][T10222] netlink: 'syz.2.1408': attribute type 21 has an invalid length.
[  335.707431][T10225] netlink: 'syz.1.1410': attribute type 21 has an invalid length.
[  336.013426][T10227] netlink: 'syz.0.1411': attribute type 153 has an invalid length.
[  336.036544][T10227] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1411'.
[  336.320958][T10236] netlink: 'syz.3.1415': attribute type 21 has an invalid length.
[  336.358935][T10236] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1415'.
[  336.946470][T10247] netlink: 'syz.0.1427': attribute type 21 has an invalid length.
[  336.986441][T10247] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1427'.
[  337.352614][T10253] delete_channel: no stack
[  337.357249][T10253] delete_channel: no stack
[  337.372709][T10254] netlink: 'syz.0.1421': attribute type 9 has an invalid length.
[  337.381258][T10254] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1421'.
[  337.409721][ T2917] wlan1: Trigger new scan to find an IBSS to join
[  337.515718][T10253] netlink: 'syz.0.1421': attribute type 9 has an invalid length.
[  337.541841][T10253] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.1421'.
[  337.541864][T10251] netlink: 'syz.1.1420': attribute type 21 has an invalid length.
[  338.469058][T10266] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1424'.
[  338.909149][T10278] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1430'.
[  339.361470][T10286] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1441'.
[  340.190113][T10290] validate_nla: 5 callbacks suppressed
[  340.190131][T10290] netlink: 'syz.1.1435': attribute type 29 has an invalid length.
[  340.208833][T10290] netlink: 'syz.1.1435': attribute type 29 has an invalid length.
[  340.219886][T10290] netlink: 'syz.1.1435': attribute type 29 has an invalid length.
[  340.630558][T10298] netlink: 'syz.3.1434': attribute type 21 has an invalid length.
[  340.980011][T10301] netlink: 'syz.1.1437': attribute type 21 has an invalid length.
[  341.412815][ T2917] wlan1: Trigger new scan to find an IBSS to join
[  341.566959][T10309] netlink: 'syz.0.1438': attribute type 153 has an invalid length.
[  341.601472][T10309] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1438'.
[  342.572922][T10329] netlink: 'syz.0.1453': attribute type 153 has an invalid length.
[  342.616227][T10331] netlink: 'syz.1.1447': attribute type 29 has an invalid length.
[  342.622647][T10329] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1453'.
[  345.018108][T10331] netlink: 'syz.1.1447': attribute type 29 has an invalid length.
[  345.026771][T10327] netlink: 'syz.2.1445': attribute type 21 has an invalid length.
[  345.479928][T10339] validate_nla: 1 callbacks suppressed
[  345.479952][T10339] netlink: 'syz.1.1450': attribute type 21 has an invalid length.
[  346.418662][ T7678] wlan1: Trigger new scan to find an IBSS to join
[  346.512931][T10358] netlink: 'syz.1.1459': attribute type 29 has an invalid length.
[  346.521685][T10358] netlink: 'syz.1.1459': attribute type 29 has an invalid length.
[  346.536748][T10358] netlink: 'syz.1.1459': attribute type 29 has an invalid length.
[  346.730380][T10362] netlink: 'syz.3.1461': attribute type 21 has an invalid length.
[  346.868684][T10362] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1461'.
[  347.266676][T10363] netlink: 'syz.1.1460': attribute type 153 has an invalid length.
[  347.310891][T10363] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1460'.
[  347.566058][T10373] netlink: 'syz.1.1472': attribute type 21 has an invalid length.
[  347.574689][T10373] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1472'.
[  347.720215][ T2917] wlan1: Creating new IBSS network, BSSID 00:8d:8d:ff:00:00
[  347.775984][ T2917] ------------[ cut here ]------------
[  347.782186][ T2917] WARNING: CPU: 1 PID: 2917 at net/wireless/ibss.c:37 __cfg80211_ibss_joined+0x3c2/0x430
[  347.792259][ T2917] Modules linked in:
[  347.796234][ T2917] CPU: 1 PID: 2917 Comm: kworker/u4:9 Not tainted syzkaller #0
[  347.803956][ T2917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  347.814411][ T2917] Workqueue: cfg80211 cfg80211_event_work
[  347.820446][ T2917] RIP: 0010:__cfg80211_ibss_joined+0x3c2/0x430
[  347.826670][ T2917] Code: 00 00 00 48 3b 84 24 80 00 00 00 75 5c 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 87 08 b4 f7 0f 0b eb c3 e8 7e 08 b4 f7 <0f> 0b 4c 8b 6c 24 18 eb b5 e8 70 08 b4 f7 0f 0b e9 e8 fd ff ff e8
[  347.846731][ T2917] RSP: 0018:ffffc9000bd37a20 EFLAGS: 00010293
[  347.853124][ T2917] RAX: ffffffff89d18712 RBX: dffffc0000000000 RCX: ffff88802b90bc00
[  347.861343][ T2917] RDX: 0000000000000000 RSI: ffffffff8aaabce0 RDI: ffffffff8afc6b00
[  347.869622][ T2917] RBP: ffffc9000bd37af8 R08: ffffffff90da856f R09: 1ffffffff21b50ad
[  347.878028][ T2917] R10: dffffc0000000000 R11: fffffbfff21b50ae R12: ffff88805c328c90
[  347.886211][ T2917] R13: 1ffff920017a6f4c R14: ffff8880306035b8 R15: 000000000000001f
[  347.894780][ T2917] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  347.904006][ T2917] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  347.910756][ T2917] CR2: 0000200000000500 CR3: 000000006270a000 CR4: 00000000003506e0
[  347.919123][ T2917] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  347.927172][ T2917] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  347.935311][ T2917] Call Trace:
[  347.938798][ T2917]  <TASK>
[  347.941807][ T2917]  ? mutex_lock_nested+0x20/0x20
[  347.946928][ T2917]  ? trace_rdev_return_void+0x1c0/0x1c0
[  347.952746][ T2917]  cfg80211_process_wdev_events+0x3bc/0x550
[  347.958896][ T2917]  cfg80211_process_rdev_events+0xa1/0x110
[  347.964790][ T2917]  cfg80211_event_work+0x2f/0x40
[  347.970004][ T2917]  ? process_scheduled_works+0x957/0x15b0
[  347.976034][ T2917]  process_scheduled_works+0xa45/0x15b0
[  347.981979][ T2917]  ? assign_work+0x400/0x400
[  347.986703][ T2917]  ? assign_work+0x39e/0x400
[  347.991527][ T2917]  worker_thread+0xa55/0xfc0
[  347.996405][ T2917]  kthread+0x2fa/0x390
[  348.000651][ T2917]  ? pr_cont_work+0x560/0x560
[  348.005511][ T2917]  ? kthread_blkcg+0xd0/0xd0
[  348.010325][ T2917]  ret_from_fork+0x48/0x80
[  348.014833][ T2917]  ? kthread_blkcg+0xd0/0xd0
[  348.019668][ T2917]  ret_from_fork_asm+0x11/0x20
[  348.024683][ T2917]  </TASK>
[  348.027774][ T2917] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  348.035362][ T2917] CPU: 1 PID: 2917 Comm: kworker/u4:9 Not tainted syzkaller #0
[  348.042959][ T2917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  348.053397][ T2917] Workqueue: cfg80211 cfg80211_event_work
[  348.059163][ T2917] Call Trace:
[  348.062463][ T2917]  <TASK>
[  348.065456][ T2917]  dump_stack_lvl+0x16c/0x230
[  348.070185][ T2917]  ? show_regs_print_info+0x20/0x20
[  348.075417][ T2917]  ? load_image+0x3b0/0x3b0
[  348.080005][ T2917]  panic+0x2c0/0x710
[  348.084075][ T2917]  ? bpf_jit_dump+0xd0/0xd0
[  348.088641][ T2917]  ? ret_from_fork_asm+0x11/0x20
[  348.093639][ T2917]  __warn+0x2e0/0x470
[  348.097672][ T2917]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  348.103282][ T2917]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  348.108874][ T2917]  report_bug+0x2be/0x4f0
[  348.113414][ T2917]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  348.118994][ T2917]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  348.124564][ T2917]  ? __cfg80211_ibss_joined+0x3c4/0x430
[  348.130141][ T2917]  handle_bug+0xcf/0x120
[  348.134504][ T2917]  exc_invalid_op+0x1a/0x50
[  348.139045][ T2917]  asm_exc_invalid_op+0x1a/0x20
[  348.143915][ T2917] RIP: 0010:__cfg80211_ibss_joined+0x3c2/0x430
[  348.150089][ T2917] Code: 00 00 00 48 3b 84 24 80 00 00 00 75 5c 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 87 08 b4 f7 0f 0b eb c3 e8 7e 08 b4 f7 <0f> 0b 4c 8b 6c 24 18 eb b5 e8 70 08 b4 f7 0f 0b e9 e8 fd ff ff e8
[  348.170334][ T2917] RSP: 0018:ffffc9000bd37a20 EFLAGS: 00010293
[  348.176431][ T2917] RAX: ffffffff89d18712 RBX: dffffc0000000000 RCX: ffff88802b90bc00
[  348.184426][ T2917] RDX: 0000000000000000 RSI: ffffffff8aaabce0 RDI: ffffffff8afc6b00
[  348.192416][ T2917] RBP: ffffc9000bd37af8 R08: ffffffff90da856f R09: 1ffffffff21b50ad
[  348.200410][ T2917] R10: dffffc0000000000 R11: fffffbfff21b50ae R12: ffff88805c328c90
[  348.208418][ T2917] R13: 1ffff920017a6f4c R14: ffff8880306035b8 R15: 000000000000001f
[  348.216434][ T2917]  ? __cfg80211_ibss_joined+0x3c2/0x430
[  348.222037][ T2917]  ? mutex_lock_nested+0x20/0x20
[  348.227032][ T2917]  ? trace_rdev_return_void+0x1c0/0x1c0
[  348.232648][ T2917]  cfg80211_process_wdev_events+0x3bc/0x550
[  348.238598][ T2917]  cfg80211_process_rdev_events+0xa1/0x110
[  348.244445][ T2917]  cfg80211_event_work+0x2f/0x40
[  348.249413][ T2917]  ? process_scheduled_works+0x957/0x15b0
[  348.255155][ T2917]  process_scheduled_works+0xa45/0x15b0
[  348.260827][ T2917]  ? assign_work+0x400/0x400
[  348.265472][ T2917]  ? assign_work+0x39e/0x400
[  348.270106][ T2917]  worker_thread+0xa55/0xfc0
[  348.274806][ T2917]  kthread+0x2fa/0x390
[  348.278896][ T2917]  ? pr_cont_work+0x560/0x560
[  348.283606][ T2917]  ? kthread_blkcg+0xd0/0xd0
[  348.288307][ T2917]  ret_from_fork+0x48/0x80
[  348.292747][ T2917]  ? kthread_blkcg+0xd0/0xd0
[  348.297448][ T2917]  ret_from_fork_asm+0x11/0x20
[  348.302286][ T2917]  </TASK>
[  348.305580][ T2917] Kernel Offset: disabled
[  348.309995][ T2917] Rebooting in 86400 seconds..