last executing test programs:

4.567590948s ago: executing program 1 (id=6628):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xffffffffffffffc0}]}, 0x0, 0x2}, 0x94)
r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x1000, 0x8}, 0xc)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000080)=r0, 0x4)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000440)={r0, 0x58, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x6, &(0x7f0000000100)=@raw=[@exit, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}], &(0x7f0000000280)='syzkaller\x00', 0x80, 0x8a, &(0x7f0000000300)=""/138, 0x41000, 0x8, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000580)={0x0, 0xb, 0x3ff}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000005c0)=[r0, r0, r0], &(0x7f00000006c0)=[{0x4, 0x2, 0x8, 0x6}, {0x4, 0x3, 0x5, 0x5}, {0x1, 0x2, 0xc, 0x6}, {0x3, 0x5, 0x5, 0xb}, {0x0, 0x2, 0x7, 0xb}, {0x4, 0x1, 0x4, 0x8}, {0x5, 0x5, 0xa, 0xb}], 0x10, 0xf7}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000010630182000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd4242"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000032090000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x41100, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r4)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="06000000040000007c0500000a"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001340), &(0x7f0000000900), 0x404, r6, 0x0, 0x1ba8847c99}, 0x38)
r7 = socket$kcm(0x29, 0x7, 0x0)
sendmsg$kcm(r7, &(0x7f0000002d80)={&(0x7f0000000800)=@ax25={{0x3, @null, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @null, @default]}, 0x80, &(0x7f0000002c80)=[{&(0x7f0000000900)="7c4116a3ad1617997fac940fc641fc15e04dc6fdaaab8f159fe65aa73bb7270df5c253e57a88c66f04e0d56bff1d59787517b21353dce6ff870ececac995e339ece2961c8b24172fd808f033a950cfdc3ddd86f5d2820e79ca2c94640c0498e0e5287a7daef350e952c6c9ca314f345fcfc41edf0394059b04778c8c513aaa27bb534cfa6ccc7d6d9b64dd7c0a990b60de083ee2d9b45b3eeebe785c91f19a6d8aa009d13b2ebfe78a27f2455835d9fdcbdedcc4c7f2d6a7a564352b7b6902be9e07da0ebb9af0ddd0837ee13141923c48c85cfa39eaa53bab6c519492a2029c72b0b1c511d6", 0xe6}, {&(0x7f0000000a00)="c31b9cff53f42410fb058c19ce620afc22152c7e11d62f6d03c8cfd1b8db5dab940d83a8b72fa55b9d2a51ae623577dda55554954da74d6782e775c1970e12ba9e23b449ccc3b972055851a3cb80d1902c3a9da5c0d0a31b42e966d5c86c77ae3129c0e8fd52579cda46c42357a26331ddc7fb853a28f27a83e04ba323efcca8444f0fbf93fcfe607480f997272c274d1ecce47e623236e84ed9a3a41f0d92380d16239aefd4e39255f65b814d6f75fcce50f833eaf21d0b37405c74a6d633a531f94d5824b133533a15cdf30888a39f3da48c160635d7d1896a6f3692b17fc79fb628a65341664469ecf9efc9afce319404f8b4f346844469f498635f3ba2ece396c74ed8d04f726227027ccc935b0652e96166c9d0cdd413479601abc3aa5b22d3317999681521e72bd463264ff5728c1ed82adf22ad4516d9c765167ebadc9451ed4f902fc0d5959200b7bbbe664b3cf5448d22dccc032a99a9273e1c01f265c584be4a861e8cb28d7e34e68d29a44004c7bccee4cf98b27ef3db3af02210c6ec8e3c8250084041808af732398fb302ec8ac7e6a0f1c1b35afb815d9631082389cb01d7dba84e9a612c808a1f95a006d7dfb87e29c1c628728180997c477dec01fa4903c62ffa922d13df821fa05f3a950551f005975bceb7c4c143f2da696908d6dc4a66049cef686d033c2eb6f7532c0863517bfdb9916359c66d374b330f100e92c053248d834bcd4dbe9e2a60643f28b8e8455aef7c3363313cb31d82f89842963fc69cabb0d80e88d853690f914d4f9a7b57061cfcf5e76e53042079f06d4f19bc1c6a76a21012b20b5229272e28e390522da270875ba4d75332ce2966d9f5978246ecc809b6b27889491923079143969479f32154825f36104338bdb2c3ad7fec733f6cc3032d5611b2cdc7651a82dce4cfb78b27b642210544f32dd7b636578aa013f71a05fdc6012f265d42c12f8cd17bf6eb380037f4ec02cdc7cac6c0dd0bd6c59b0ced95d923fcae2445e8873471f641b2dbded036cf4fc7e5ae4955984def650cdcc74eebed6b3ff8364d86380e814e5275930d8d11ce66c30d77c7f738350d53b0ede5a635e23419840744f984dd5f5bcee0c07423f1435b59b1974c6a1b9994044a266bb9e0525b2785ae49cc17982515200fa13a571a08c5b9f4a3dce19c6f08f6e5b01d2235b47de82142604160d46a3b7372edad3e0dbdf676bc60a19f04978ad8706aaf382113c840bf684f1a00109fb85e3b34a43bf6380adcfeaa9bdb4d28e6858605b5c4db8bee8ca29ab955458a6943d5cb8f61195369120ba4a54d1e286efee06b8f30231c43583356a33e91c42c3be302228c22c77f7a12f007a978b6351e8215a60dcb92838ec1da6f781a00c8d0c9450d7410d32509847a36823266d503705f03cad239103c393fb01966d748ab821e736382024e5e14b7d0e9b4a21397aca66f6d9aec2f4521f9fb36c5326d7e227d5f201b7e5148bfb3d8f288e1c04393c3517ef15e0387510276674bc80b695e9449bb63fd61f9afd0b3888e83234bcff04e6e35ce1d451ed99b2dd261bc52e8685644c58c7be19684cee41f38883210170da24ce5af5f02ba901c37fabb1523883131b9565f7f8604fbcbd81f2891b1a443358945d3853305c698d13496398aa67fa5322ba4aaa90c105b65583d7495fff2be8afde3bb40ad152da8c2ffc130af94f60a19b3c69e201facf5433cb684fd262a1e665e14f306115b2cd7ec4561bbd359d179116f010046327c4756da83960d728e93b009d83c055e387587da48638ddb8008919adc4d37cb1f649e4adba97bb624b28e20d90ba208e9ec96ff99796e39345aca3a1be69508235b0b907bd0a1a409a2b3c23e0066b4d059188f935ba800c746f75077b70e532e99b4f8d59d8d8009ea36707bfe23281b9b10341936b45ce5fcc6557b2c2d4b1ab808f2341c81da4c0985ffbff5e09cc4e0acab2454736754e4321a7a9b4e94665d6675f576e359b6689f2b961e2a11ece7c062e9ccad09ef7ee9b067d074cf8eb6e5b45cbf5bfd8e546e04ec0ae17b97d9cb2a22d40cb0b501b9445ce0b2adb78132697069d0a8bf4ad81c15b9212f4caea278eb29391d6328425dbf8fe25e84125d724b1680afe4c006b309bb568cbde58a2ba512f826c6f8a6bbae7e892386a6736845d894b1f7c461c5f17f8bc88f4ca0814dfd359e7ea42ca110e1b41bbe1f0a191540873accb7e98b158a5faf08ec2cd4d58845b2782eab383d7483981aa55c88ef97257b39d882319028d0752a764537174800108258484b284be7d8ca2f32bcdb89a34f491542e74e7663f37e88362a6f943d9d599d5245b298e7697e8423406f75d264c6586c841cf103995d71c7c4093f32475718624ffc49a6b8940f329053383be2d70cc4088a02fd47314a09cd1cb204208909350489bbee00b41f0cdb42307759966560bcfeedfce9a7739656f1a29a8afe1eca5e211185f94e753f531c2f5ec26336ae76628627b4931a4be719cabcb2da896aafc01a17bce4fa5a202a98d08223a9b4e669c4ab32e58568a317dace9fcaab8a00e5112c810ccc02247f73275304dcb920a7223ce0f2ab646bd4e89959b3dd27eb8c5bbddbf75ec6af6be2fad4452838847442d2bb0ea280a5ec7c72a583ca735e7fc7f3efd9c9c120e093fe24c210792256ca54d1c5612fcc3549c3d7a913505dcee47e864e8918b2fb1139463f0d609046184cb7c39614b79b18759aaabda9e33c2b443133116a9c6297bf3b328e88dd4d1f72c253a4444cc6079421df9d613f35b74e18ff3a3d3eea9e8d512a0f09f5fa6a58b3e161cb3030b597cb3dc87fdb584d8162470ee88bccd5fc51f39d4a607d4b2371e10fd72820ca384d404ce61546d656b56a78cfa8a674c74b06498d57b9a195ae96af257cf437488684ddee11c61b7162b318efd90ce7838ee9a2c7a0b90641792fae44ee4eb8908a7c473978b08a81c1f24f1db08255977e19b99130a6e2e87ac1828a6cc16309c0ccece4e702fd665962810ac57d802d6a6ae58f64de0a8f833b794b0e1e16317dc9efb28a030ae612f0cf7a440cbc848f8f939f65e82d9487737a5eee3a41c4b274ea459d04c9b1665d1f1e044ec093af732def390b0ca16fa8794881e563a741937ad9b02934f83cf186601fd66956dd362184b0b598aacca03664add2273be7ef7c55bc8de2d3d63805a13ba6031a5d24a94d9ccd5be7ded40ed2f2caff1d536955ed46aa2303b781149f2a605bad105a04547018441e88007446eb5aab9551553c4d1712a7a24acda28b67ac6b90deebe49aedfec30519d54a6ee17ca77281acb301e8b23f0090ee6f02611dac7af4c12bbd9bfed73e15dc3e37377a3e0871078469514bbd9fcd741ba2b50492e62c6a81d24eabad304cdeca2421a04c1ff815f4e575760a8c9b4f3e9eca82456a3659821059ac40ebd8bd553b4f2ca616376cb67e2bc0a5098be53a2ac9d1351509dbac6ebae0d785c008ddc40b80c166177ae68b6e01fefc7a386a992915e4876a520c9d2f7b7d06bd9e20529669994100f1867f5394341ff956b9e960bf0b6e7af44f0d9bd5d99a966c4dbc3c531b9dc51bcd8c89c7128d1bf03eab3489893a4fe1f2333a661ce6575cc5616632f57c8daebb438928675d1ec23eb2308ae8fcc0615e3248816a5b83ab99d3bb1d4437cda76bc0f23a80264c27bed53ab678f9651ff6147e33d5b1e29fc597222b55fabb40a8400472548da98dabe7deab428a0eba94db22f3e16b357c9a9897ec4c196a0a5892996a1c10e364cda4310923da099bdc959f7cb783bb4a932ced8213d0e67d93fac0e42e01de28db05bea5c3242ff1fde7240ea920ca0d70a6ec2cdaf6e1f5bf9371b74630e84112a3428cae2bd0fc0a4b6a79908138f48378b73f4761515a0497a03a6190f78d19645f53ee28d19390ec688028bb9273b4a723a183bee2653aed11658740f7b68b510afde7cb11f20b0798966981369439c0909831cbcecabaa25c6f5e59d8ddbce537d089d3b3ae336bf921d233fd5527eb8458c5cfeb3db61abf2a554193884cd479be37a25c77f5078d4d225efa5bfab1a03ad4cb63ba0c3cbea2368c32f63ff0f87dd96654bf9419594991dd8d1dd49741894194df4b08aceeca952b39d8080144037d2b044fa446905d6f35e62dd2ae20d97ca587bd9cc547de7c47722a4cf44a9afd0792113b2ff9972243de1d5f1280fcad352bb45a4f32e1ad7695e6b026aa7e13066062c80e3f1ee7920fb36634448eaca640c5e27fc174052cd177934efbfdaa7dbbd36a5e43e1263a4e4cc96990056926958811bcad0e8ab3a1cc9e7d7858b68d998fd4f4cde9eb4748d57b96d1cc63fe45f77e7a089793e3baa02d62d675209c1ddb67ea1eda751bf8f830534fd11189c53a2e86ff2e41cb89b73e87aa90c640c43b4a52ef99c4ecaee0458928955cfdbd29047ecf9fdb3d4f39062f3a2a7423ac55ee47a3db888ee8f758a523eefa661410031e41c0a6af9fcccf04212a8601f53d7d512e592519d7d2abc41f893b4ad36f0f96801083bc5da4030d6598d2e1c57dd11bf81c905ee637c26e209f94b8473b5240a14e24cbd189043ebec386bcf0c08f7d42144de3f32f7f4712f7987d10b9f562785b2ecbf7dd57973e6768b5411d5b81fb78f8c17664a480d00ece91fb4ecd2a4272e304622952870e54299917936f36ca562e55c112738aaa524e9883582345ac141ad3885b78bd2380f733fb4f42e8f39919cbd83e18e5a21dd671f6217208257f6b6ca9115d8fa63dfae31d5526970728e9d33f3d5e61292d4ea9a5fe285cb876d9bca33931508610606defc9309c15382111d189f997c76cf543ed67f84bb60135606ba5dd9075acc1ad15477cfc3f14f3a404c6b7545de7fa713eac583d7b849ab9a223a72582572b97c2c8779ce4a36f7d185756a3473964359cd2ba90bd2fa9c2552628bbecf906e977dc54ac89332bb2e9a52046c7ff576607f96d7e48d83f86bcfb31c44a8f229cccb5ff85bfe89115f9ca8b7771ba0def72dee2a26078c06aecc358ee1acd1560a3367dc7c164b5c122c23cd384bb89554d72e3a21778ccc43c71381d09bd59affb4b67626494a62986ee90bc4ccf2638f9ddcf045df9c5ea436c8c13e34d9a9144607fb6ea4bb9b9b9727aee950f63906b2e11d3a591dc8ba0ddbbd7bae0bae7387af2f545a3be22911fd0031ce90fa6656e433834a81cdbb1ffebd00de708121f555216252c1d2d599bf82c61873586e843cd7c2b80df7d5b424d62e52427beac89fe48d74070499ae7add0badf54e9c0c647463cbfe0bfb71e8690cdbc5d118b8a195d6b46bd92baaecb4baae65f1afa7bfa956c2fe2ca7eb9aa41704d004da3854a9bd86df1165968bf504d86daf50bdb4b809642a5eebafcd8f110449bd26d44f9dbbff0d7a7a2af31798eaf855d9bf5761f15e630874b2600fa970b777a15ddf025b6655cbff3bbb94b14a13b6a69f0aee0be935f9e06dd86ce24b4846855545fca7d56bb3c4ee7ec5d22b1de96e0128ac228cd501ce30cfa8942bfa87b24db65dc29d4e69d9d1367662a09793e405bbf9e096076467e0adcf383131d0af5a85737d14d74f51acae58eede358fe34915e77969199c63eb72b9e695c6b53dc0edbd4a414541fbbbaa4779034cdcdbcd4e5b6bfb1fc1482cb3733e01b4d44b2f1625c7f5dd1b248b1b64dfdc3004b7884d5d05fa1a72938973e41f76b947461767839a960d3e790360d07296abf3ff9", 0x1000}, {&(0x7f0000001a00)="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", 0x1000}, {&(0x7f0000002a00)="642b87dd7bd0e320a112836d80de5b3355811208bea25964bf2b1ba576d5d25522355639819713e701e7177fdef0b78577edd81bf520e403c55ccefb7779654933ba50adb0ab92ad571eea303265fc4fbe85763a14e2d3446fb0161699d01dc2c57e97d70f1c3030dcf80891a749a1c08810c38299f2cd1638d238d390ebff93677940561677b07594ad07f9984af556722faa4c893dcdc0d52e2e73da785342a4083679615b513752a153e243", 0xad}, {&(0x7f0000000880)}, {&(0x7f0000002ac0)="094379b46828ce0c5df392c5225c6f9d6e399437e1092bed39598e95f9b316e6d56bc3a1f85b9ea72a817820b839675ef050e16736ba61f57b073f8d162bfc8a5ba79284ea51c6defd3dafc17b0c1ebe13ebebc138f9bbe914735e3ae2c34921466b554759ac45f222e9e3e3dfd04a2eb75d", 0x72}, {&(0x7f0000002b40)="91fc5927093389f496466a20d2072b4be4781ac1953d257025885bae9f41a16bf8ddf0e5dfbfd8181f9da4caa2762ee233fc88e6a5447bd34cc539a86b29fd3813556245bf4ee3", 0x47}, {&(0x7f0000002bc0)="c32600acbacf612120ce19fbb8a054937af535b4511eba251b4be141b4c965cff5e18d5324a89fff993f7f014e2ece08795f47d021be83217b1b2c443cceef36b5cede74c89e90393264531d8c7ffaaaf3bcb9bb4f7fe3548fef67012230a5aab2905408e934b1b5149f7b96c29166b6d05e825aab7856ddf5e47228858ce4e946b089bb19d7ac5e1e1a357f08d49163eb9257c8d5fe2f0a6399", 0x9a}], 0x8, &(0x7f0000002d00)=[{0x60, 0xff, 0x4, "2a781e6d051017a3c0cf32b893b446dc1151d2de56c3ac4a948b85369bc34b35fa677457ed9cb44fa0fa0c8870b0ecd6ad57ee5fbe8d32f54b52089118c1fa101aac5963436d3d44a67b209a8697d0"}], 0x60}, 0x40815)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000002e40)={&(0x7f0000002dc0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x58, 0x58, 0x8, [@union={0x2, 0x1, 0x0, 0x5, 0x1, 0x80000000, [{0xb, 0x3, 0x1}]}, @var={0xb, 0x0, 0x0, 0xe, 0x4, 0x1}, @type_tag={0x2, 0x0, 0x0, 0x12, 0x3}, @enum={0xb, 0x3, 0x0, 0x6, 0x4, [{0x2}, {0xe, 0x7}, {0x10, 0x401}]}]}, {0x0, [0x30, 0x0, 0x5f, 0x0, 0x5f, 0x51]}}, &(0x7f0000000880)=""/2, 0x78, 0x2, 0x1, 0x1, 0x10000}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r9=>0xffffffffffffffff})
recvmsg$unix(r9, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000000)=ANY=[], 0xffc0)
bpf$MAP_CREATE(0x0, &(0x7f0000002e80)=@bloom_filter={0x1e, 0x6, 0xe89, 0x7, 0x12000, r2, 0x8, '\x00', 0x0, r8, 0x4, 0x4, 0x1, 0x2, @void, @value, @value=r10}, 0x50)

4.282911887s ago: executing program 0 (id=6630):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x80000001, 0x7, 0x6, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x80350, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2, 0xfffffffe, 0x0, 0x80, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe49, 0x2, @perf_bp={0x0}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0xe, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18020000020000000000000000000000711077000000000095"], &(0x7f0000000080)='syzkaller\x00'}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x2, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
close(0xffffffffffffffff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
socket$kcm(0x2c, 0x3, 0x0)
r5 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1, @ANYRES8=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r6, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000740)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x40305839, &(0x7f0000000540)={'bond0\x00', @link_local={0x1, 0x80, 0xc2, 0x5}})
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r8)
r10 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r6}, &(0x7f0000000080), &(0x7f00000001c0)=r7}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000240)={r4, &(0x7f0000000200)}, 0x20)
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x541b, &(0x7f0000000200))
close(r1)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x2, 0x7, 0x0, 0x0, 0x0, 0x1000000000000000, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x3}, 0x80000, 0xca, 0x9, 0x3, 0x0, 0x400000, 0x0, 0x0, 0xe, 0x0, 0xc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg$unix(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x1c0)

4.22297028s ago: executing program 2 (id=6632):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x2101, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}, 0x828, 0x0, 0x80000000, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r1, 0x702, 0xe, 0x0, &(0x7f0000000580)="e460334470d8d400eb00c15286dd", 0x0, 0x8001, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000780)="1800000039000517d25a80648c63940d0324fc600b003540", 0x18}], 0x1, 0x0, 0x0, 0x6c000000}, 0x0)

3.712538296s ago: executing program 2 (id=6633):
r0 = socket$kcm(0x10, 0x2, 0x10)
gettid()
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2002c040)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x3e8)
socket$kcm(0x10, 0x2, 0x0)
r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='cpuset.sched_load_balance\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140)=0x4, 0x12)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x4)
close(r3)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="240000002d006bcd9e3f17aa04001b0000010000ffffffff000000000000ff7f00000002", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r5, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x10}, @multicast1}}}], 0x20}, 0x0)
sendmsg(r1, &(0x7f00000002c0)={&(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x0, 0x4, 0x2, 0x3, {0xa, 0x4e24, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x9}}}, 0x80, &(0x7f0000001980)=[{&(0x7f0000001500)="fef81ae53aa5598e19649647594168e90867ab11007142ac7007c6c8668767fab18af255f3c7d0939ab15909e73f54c2d56576a75bbc2792deac08ef7ca1c301a0d20915e1d1f318f9b133097efc9d3a42b43b141b9f3a4a413fe588bc49f94e0dc8078214f387bac686cfc3215c646e83aede819de3ad30cf9b3628f1f33b38a022fd8bc3da23cb4b987f0a07973e29291665d3a1a18b5098b7f8753486c4554c9bdc6648aa65b4e7f203570037ab88ba592c409f9a14413099da35004919fac36a3265c283a7cfb41fdbba60d0", 0xce}, {&(0x7f00000003c0)="f9980541746cba1753c4230359342c7785ce082dfa11e095abdbe0d7fd1543ebb00d270f660a08a9c3aa6c884ebadd00d3bf19cc7d57e125bede1361b62cadd06bab4a85ae95ca6c6cfef8941c74c0b843355e0d8380262ff1609cea8a2958c547ee5e4d08fd9e24f960e6304f", 0x6d}, {&(0x7f0000001680)="bc46ab581b4588ad5ece9d3507927519ab55584c17acb97a7d0eba72312639ded231ac69c615553ad818d0818843639dc38a6454fa00b6373b4c60739047139e72371d54b7f4a5f9bd037a9842867df07ed7ff84a5", 0x55}, {&(0x7f0000000240)="83a893a932b9d15b622a5786019dac", 0xf}, {&(0x7f0000001700)="53bc54d9dfa7bb33f067962aace454867417e3e592a89097ad009a2b2e37794b948742fa1154c45f5c51257afd6e0098bf8e5537de10282a21d8b037da61916b3fbe76ce138bb20f90b8eade40507440a8491a26218b3c99ec4b7d541a91ebd92a99f1cbf91cd5184a735badcef2c380234a9e1c40597978c6bdfc7914187143911f997fa3dfff0790e89fd9875915852d44c83bca0bcc707ce9", 0x9a}, {&(0x7f00000017c0)="4a037d06f5bb8bd10c68bd19e479e8755003fef9ea92d6916d339090fea5a5c51d11c468fbda1b2fa089e4311dab72865c01a07e58e883f5ed8f187d2c258d9a689145339fc8521d78141a93da7c4ad25201ac801c5c44264ff994b8d077be", 0x5f}, {&(0x7f0000001840)="8d2790476dfc85967746f7c04cdfec4981579cb5a2e6a7af3e48e3ef51f133b417a8d07b51684086123590adcbfbc96da23d87c27a9a345250223774f1c595ee0b9f", 0x42}], 0x7}, 0x400c805)
recvmsg$kcm(r5, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x10002)
recvmsg(r5, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x40000000)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xa5ba2b88, &(0x7f0000000080)=[{&(0x7f00000004c0)="e03f03003b000b05d25a806c8c6394f901800000000000000b020a00053582c137153e37000c0280fc80ecd8a3c138d90b1000f80b", 0x33fe0}], 0x1}, 0x40000)

3.370660198s ago: executing program 1 (id=6634):
r0 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000001)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000002, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x3, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x10000000000, 0x2003, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3a}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000022003505d25a806f8c6394f90235fc60", 0x14}], 0x1}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8a, 0x0, &(0x7f0000000580)="7b8666ec39e7fedd46412a4c802e4807c5a3c5ead09ff29d413e8b0000000000000000000000000000676e88f14c72e9c070997334c2adf29cfe6a0d85677acab81eb6ab256258685e3ec00a16ad162c6dd107334ef9385288c7491d3a7593419a757ce50d1d9cef56907876caeb024888e3d0f4ecd9a8172c8876e64a36bf54c9965d292afeabff181e", 0x0}, 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x2}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x10040, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x2, 0x20000}, 0x0, 0x0, 0x0, 0x3, 0x7, 0x1, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r3 = socket$kcm(0x23, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0xa, &(0x7f0000000180), 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x541b, 0x0)
close(0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x48)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000000c0)="14000000350094fb0100fc6022f388a500000000", 0x14}], 0x1}, 0x20000020)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000000), 0x4)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xdf, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x20090, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="140000002a000b6c8cff00f90429fc60010f5ddf", 0x14}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000100)='O', 0x1}], 0x1}, 0x8080)
sendmsg(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000440)="a6", 0x1}], 0x1}, 0x4040401)

2.880407304s ago: executing program 3 (id=6635):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1a"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000feffffff0000000000040000851000000200000085000000230000009500000000000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xa16ae, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0}, 0x10, 0xa4, 0x2, 0x1, 0x9d, 0x9b9b, 0x8, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x2, 0x0, 0x0, 0x0, 0x2000000000000, 0x510, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x0, 0x10000, 0x9e4, 0x5, 0x8, 0x20045, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xb, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x806, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x11, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0x25, 0x0, &(0x7f0000000100)="b9ff0b078059268cb89e14f088a82de0ffff202000000002000aac14140ce000006a49e832", 0x0, 0x28e, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000002240), 0x4)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000021c0)=ANY=[@ANYBLOB="190000000480009e820ad9fba4e9600000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r6, @ANYBLOB='\x00'/28], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r7}, &(0x7f0000000080), &(0x7f0000000200)=r8}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r9 = socket$kcm(0xa, 0x2, 0x0)
close(r9)
r10 = socket$kcm(0xa, 0x7, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
setsockopt$sock_attach_bpf(r10, 0x29, 0x37, &(0x7f0000000100)=r11, 0x120)
setsockopt$sock_attach_bpf(r9, 0x29, 0x39, 0x0, 0x0)
socket$kcm(0x11, 0x3, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000001c0)='!~u&00\t&&')
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)

2.721623879s ago: executing program 2 (id=6636):
r0 = socket$kcm(0x2, 0x3, 0x106)
sendmsg$inet(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, 0x0}, 0x11)
r1 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r1, 0x0, 0x29, 0x0, 0x5000)
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x1ff, 0x200}, 0x8000, 0xcdd, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000000)='^+,!z,-\x00')
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000780)=@bpf_lsm={0x1d, 0x0, &(0x7f0000000080), &(0x7f00000002c0)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x1a, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff24}, 0x94)
sendmsg$inet(r4, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x30004001)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x20, 0x12504, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_bp={0x0, 0x8}, 0x7602, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$kcm(0xa, 0x5, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRES8=0x0], 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x890b, &(0x7f0000000000))
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r7, &(0x7f0000000380)={&(0x7f0000000040)={0xfffd, 0xa, @local}, 0x1b, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
r9 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0)={r8}, 0x8)
ioctl$TUNSETQUEUE(r9, 0x400454d9, 0x0)
setsockopt$sock_attach_bpf(r4, 0x6, 0x5, &(0x7f0000000040)=r8, 0x4)
r10 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r10, 0x84, 0x21, 0x0, 0x0)
r11 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r6, &(0x7f0000000100)="8eb96f6b6ac943ddf582a5c6774f75ca2828630e55fdb0", &(0x7f00000001c0)=""/145, 0x4}, 0x20)
sendmsg$kcm(r11, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000940)="2e00000010008188e6b62aa73772cc9f1ba1f848310000005e140602000000000e000a001000000002800000128c", 0x2e}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000480)="5c00000012006bab9a3fe3d86e17aa0b046b876c1d0048380019001931a0e69ee517d34460bc06000000a701251e6182949a3651f60a84c9f4d4938037e70e4509c51c268811000000000000000000002571cd53b9851b30599980bc", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001780)=""/226, 0xe2}, {&(0x7f0000002980)=""/4043, 0xfcb}, {&(0x7f0000003b00)=""/4130, 0x1022}, {&(0x7f0000003a40)=""/166, 0xa6}, {&(0x7f0000001900)=""/107, 0x6b}, {&(0x7f00000000c0)=""/89, 0x59}, {&(0x7f0000000500)=""/225, 0xe1}, {&(0x7f0000001980)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/66, 0x42}, {&(0x7f0000000240)=""/182, 0xb6}, {&(0x7f0000000000)=""/39, 0x27}], 0xb}, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8001}, 0x0, 0x32, 0x43e1bd74, 0x3, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x400, 0xffffffffffffffff, 0x0)

2.655174342s ago: executing program 0 (id=6637):
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x8, 0x8}, 0x104d05, 0x30f6, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000d80)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)}, 0x4051)
recvmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x2122)

2.219522306s ago: executing program 1 (id=6638):
r0 = socket$kcm(0x10, 0x2, 0x10)
gettid()
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2002c040)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x3e8)
socket$kcm(0x10, 0x2, 0x0)
r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='cpuset.sched_load_balance\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140)=0x4, 0x12)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x4)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="240000002d006bcd9e3f17aa04001b0000010000ffffffff000000000000ff7f00000002", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100000001, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r6, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x10}, @multicast1}}}], 0x20}, 0x0)
recvmsg$kcm(r6, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x10002)
recvmsg(r6, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x40000000)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xa5ba2b88, &(0x7f0000000080)=[{&(0x7f00000004c0)="e03f03003b000b05d25a806c8c6394f901800000000000000b020a00053582c137153e37000c0280fc80ecd8a3c138d90b1000f80b", 0x33fe0}], 0x1}, 0x40000)

2.11615664s ago: executing program 3 (id=6639):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x18)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="aee1b65e3babc7ae5897", 0xa}], 0x1}, 0x0)
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x85, &(0x7f0000000000), 0x90)

2.066706952s ago: executing program 2 (id=6640):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r2 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x84, 0x64, &(0x7f0000000000)=r4, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000003c0)={r4, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x9, [@decl_tag={0xf, 0x0, 0x0, 0x11, 0x3, 0x8}]}, {0x0, [0x0, 0x5f, 0x5f, 0x30, 0x61, 0x30, 0x61]}}, &(0x7f0000000440)=""/147, 0x31, 0x93, 0x0, 0x4, 0x10000}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000600)=@bpf_ext={0x1c, 0x5, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3}, [@btf_id={0x18, 0x2, 0x3, 0x0, 0x4}]}, &(0x7f0000000140)='GPL\x00', 0x7fffffff, 0x1c, &(0x7f00000001c0)=""/28, 0x41100, 0x22, '\x00', r5, 0x0, r6, 0x8, &(0x7f0000000540)={0x2, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x24210, r1, 0x3, &(0x7f0000000580), &(0x7f00000005c0)=[{0x2, 0x4, 0x0, 0x1}, {0x2, 0x2, 0xe}, {0x5, 0x3, 0xd, 0x1}]}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x88, 0x67, &(0x7f00000000c0)=r1, 0x4)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000080)={0x2, 0x4e22, @multicast1=0xe000004f}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000000)="813e785600", 0x5}], 0x1, &(0x7f0000000180)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x44}, @private=0xa010100}}}], 0x20}, 0x4840)

1.776589401s ago: executing program 3 (id=6641):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1f, 0x5, 0x0, &(0x7f0000000100)='syzkaller\x00', 0xb, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0xcdd, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="090000001c000000080000004000000042"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r1, &(0x7f0000000100), &(0x7f0000000280)=""/115}, 0x20)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) (async, rerun: 64)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000012c0)={r0, 0xe0, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000001000)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000001040)=[0x0, 0x0], &(0x7f0000001080)=[0x0, 0x0], 0x0, 0x16, &(0x7f00000010c0)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000001100), &(0x7f0000001140), 0x8, 0x61, 0x8, 0x8, &(0x7f0000001180)}}, 0x10) (async, rerun: 64)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
close(r2)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x200008c0) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair(0x21, 0x80000, 0xc9, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89a1, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0600000008000000030000000008000020000100", @ANYRES32, @ANYBLOB="0300000000000000000000000600000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000010000000100"/21, @ANYRES32, @ANYBLOB], 0x50) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000006c0)={{r2}, &(0x7f0000000640), &(0x7f0000000680)='%pi6   \x00'}, 0x20) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x55, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = perf_event_open(&(0x7f0000000680)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a1c, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r5) (async, rerun: 32)
r7 = socket$kcm(0x2, 0x1, 0x84) (rerun: 32)
sendmsg$inet(r7, &(0x7f00000010c0)={&(0x7f0000000140)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000640)=[{&(0x7f0000000480)='\\', 0x1}], 0x1}, 0x4000040) (async, rerun: 64)
sendmsg$inet(r7, &(0x7f00000002c0)={&(0x7f0000000000)={0x2, 0x4e21, @rand_addr=0x64010101}, 0x10, &(0x7f0000000700)=[{&(0x7f0000000180)}], 0x1}, 0x8040) (async, rerun: 64)
close(r7) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) (async)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0) (async)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r4, @ANYBLOB="00d08706d300000000000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES64=0x0], 0x20) (async)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000080)="2e00000010008188040f46ecdb4cb9cca7480ef431000000e3bd6efb010509000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x8000)

1.591649648s ago: executing program 1 (id=6642):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xffffffffffffffc0}]}, 0x0, 0x2}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd4242"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x6000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.519175839s ago: executing program 0 (id=6643):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0x7, 0x5, 0x7, 0xc1}, 0x50)
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x84, &(0x7f0000000000), 0x90)
sendmsg$inet(r0, &(0x7f0000000e40)={&(0x7f0000000280)={0x2, 0x4e23, @remote}, 0x10, &(0x7f0000000600)=[{&(0x7f0000000400)="d4", 0x1}], 0x1}, 0x40) (fail_nth: 28)

981.235708ms ago: executing program 0 (id=6644):
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x8389)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000057d0c3c550fb2d09306c4fda0b7bd4acf0c839dbd86edb80c77d469c093ef54812ac147d22419e6d1264f47651cb10da53b6704d919b382f0633cf9b73e06b86ee99879a83a24f5bc7f24f3be5c3273f06fa396b91"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r1}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xc, 0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="180002ffffff0000000400000000000018150000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001400000018110000", @ANYRES32=r1, @ANYBLOB="615fae809c0000000000000000b70200000000df00850000008600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

869.491112ms ago: executing program 0 (id=6645):
r0 = socket$kcm(0x10, 0x2, 0x10)
gettid()
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2002c040)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x3e8)
socket$kcm(0x10, 0x2, 0x0)
r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='cpuset.sched_load_balance\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140)=0x4, 0x12)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x4)
close(r3)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="240000002d006bcd9e3f17aa04001b0000010000ffffffff000000000000ff7f00000002", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r5, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x10}, @multicast1}}}], 0x20}, 0x0)
sendmsg(r1, &(0x7f00000002c0)={&(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x0, 0x4, 0x2, 0x3, {0xa, 0x4e24, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x9}}}, 0x80, &(0x7f0000001980)=[{&(0x7f0000001500)="fef81ae53aa5598e19649647594168e90867ab11007142ac7007c6c8668767fab18af255f3c7d0939ab15909e73f54c2d56576a75bbc2792deac08ef7ca1c301a0d20915e1d1f318f9b133097efc9d3a42b43b141b9f3a4a413fe588bc49f94e0dc8078214f387bac686cfc3215c646e83aede819de3ad30cf9b3628f1f33b38a022fd8bc3da23cb4b987f0a07973e29291665d3a1a18b5098b7f8753486c4554c9bdc6648aa65b4e7f203570037ab88ba592c409f9a14413099da35004919fac36a3265c283a7cfb41fdbba60d0", 0xce}, {&(0x7f00000003c0)="f9980541746cba1753c4230359342c7785ce082dfa11e095abdbe0d7fd1543ebb00d270f660a08a9c3aa6c884ebadd00d3bf19cc7d57e125bede1361b62cadd06bab4a85ae95ca6c6cfef8941c74c0b843355e0d8380262ff1609cea8a2958c547ee5e4d08fd9e24f960e6304f", 0x6d}, {&(0x7f0000001680)="bc46ab581b4588ad5ece9d3507927519ab55584c17acb97a7d0eba72312639ded231ac69c615553ad818d0818843639dc38a6454fa00b6373b4c60739047139e72371d54b7f4a5f9bd037a9842867df07ed7ff84a5", 0x55}, {&(0x7f0000000240)="83a893a932b9d15b622a5786019dac", 0xf}, {&(0x7f0000001700)="53bc54d9dfa7bb33f067962aace454867417e3e592a89097ad009a2b2e37794b948742fa1154c45f5c51257afd6e0098bf8e5537de10282a21d8b037da61916b3fbe76ce138bb20f90b8eade40507440a8491a26218b3c99ec4b7d541a91ebd92a99f1cbf91cd5184a735badcef2c380234a9e1c40597978c6bdfc7914187143911f997fa3dfff0790e89fd9875915852d44c83bca0bcc707ce9", 0x9a}, {&(0x7f00000017c0)="4a037d06f5bb8bd10c68bd19e479e8755003fef9ea92d6916d339090fea5a5c51d11c468fbda1b2fa089e4311dab72865c01a07e58e883f5ed8f187d2c258d9a689145339fc8521d78141a93da7c4ad25201ac801c5c44264ff994b8d077be", 0x5f}, {&(0x7f0000001840)="8d2790476dfc85967746f7c04cdfec4981579cb5a2e6a7af3e48e3ef51f133b417a8d07b51684086123590adcbfbc96da23d87c27a9a345250223774f1c595ee0b9f", 0x42}], 0x7}, 0x400c805)
recvmsg$kcm(r5, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x10002)
recvmsg(r5, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x40000000)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xa5ba2b88, &(0x7f0000000080)=[{&(0x7f00000004c0)="e03f03003b000b05d25a806c8c6394f901800000000000000b020a00053582c137153e37000c0280fc80ecd8a3c138d90b1000f80b", 0x33fe0}], 0x1}, 0x40000)

867.848882ms ago: executing program 2 (id=6646):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1809000000000000000000000000000085000000080000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
r0 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xa16ae, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xd, 0x6}, 0x90, 0xa4, 0x2, 0x1, 0xa1, 0x9b9b, 0x8, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1809000000ffffff00000000000000008510000002000000850000000f0000009500000000000000"], 0x0, 0xfffffdff, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xd07d649fbb5fc33d, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
ioctl$PERF_EVENT_IOC_QUERY_BPF(0xffffffffffffffff, 0xc008240a, &(0x7f0000000000)={0x1, 0x0, [0x0]})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'netdevsim0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8946, &(0x7f0000000080))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f0000000780)={0x2, 0x80, 0xed, 0x0, 0x0, 0x84, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)=@o_path={&(0x7f0000000000)='./file0\x00', 0x0, 0x4000, r3}, 0x18)
socketpair(0x6, 0x5, 0x1, &(0x7f0000000100))
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
syz_clone(0x20800000, 0x0, 0x0, 0x0, 0x0, 0x0)

711.041727ms ago: executing program 2 (id=6647):
r0 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000001)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000002, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x3, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x10000000000, 0x2003, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3a}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000022003505d25a806f8c6394f90235fc60", 0x14}], 0x1}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8a, 0x0, &(0x7f0000000580)="7b8666ec39e7fedd46412a4c802e4807c5a3c5ead09ff29d413e8b0000000000000000000000000000676e88f14c72e9c070997334c2adf29cfe6a0d85677acab81eb6ab256258685e3ec00a16ad162c6dd107334ef9385288c7491d3a7593419a757ce50d1d9cef56907876caeb024888e3d0f4ecd9a8172c8876e64a36bf54c9965d292afeabff181e", 0x0}, 0x50)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x2}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x10040, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x2, 0x20000}, 0x0, 0x0, 0x0, 0x3, 0x7, 0x1, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r3 = socket$kcm(0x23, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0xa, &(0x7f0000000180), 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x541b, 0x0)
close(0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x48)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000000c0)="14000000350094fb0100fc6022f388a500000000", 0x14}], 0x1}, 0x20000020)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000000), 0x4)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xdf, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x20090, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="140000002a000b6c8cff00f90429fc60010f5ddf", 0x14}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000100)='O', 0x1}], 0x1}, 0x8080)
sendmsg(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000440)="a6", 0x1}], 0x1}, 0x4040401)

698.091697ms ago: executing program 3 (id=6648):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0xa888, &(0x7f0000000340)=[{&(0x7f0000000980)="1c000000180081054e81f782db44b904021d005c06007c09e8fed9e40a00154002001426c1e1b8c708000b0000000401a80016000800024009001100036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee7a7cef4090000001fb791643a5ee4ce1b14d6d93059dac7149393cccfbd6761e627d4c12cdfe1d9d322fe7c9f8775730d16a4683f5aeb4edb", 0xa2}], 0x1}, 0x400a040)

550.167792ms ago: executing program 1 (id=6649):
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000540)='./cgroup/syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000140), 0x2, 0x0)
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x13, 0x0, 0x4)
close(r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1809000000000000000000000000000085000000080000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
r3 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x2, 0x4, 0x0, 0x0, 0x0, 0x1, 0xa16ae, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xd, 0x6}, 0x8e, 0xa4, 0x2, 0x1, 0xa1, 0x9b9b, 0x8, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0x8000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0), ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000040)=[0x0], &(0x7f0000000080), 0x0, 0xca, &(0x7f0000000080)=[{}], 0x8, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0x8, 0xb5, 0x8, 0x8, &(0x7f0000000280)}}, 0x10)
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000800)={0x0, r4}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000840)={&(0x7f0000000880)=ANY=[@ANYBLOB="9feb01001800000000000000000000090c00000004000000010000f92c0000000000000000ff00008615"], 0x0, 0x28, 0x0, 0x1}, 0x28)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000000b6", @ANYRES32, @ANYBLOB="79c90000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000001000000040000000d00"/28], 0x50)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r3, 0xc008240a, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500"/28])
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000500)={r7, &(0x7f0000000280)="9151526903a70dc4b11fb42544d3c0f26ba749375c", &(0x7f0000000300)=""/50, 0x4}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r7}, &(0x7f0000000580), &(0x7f0000000740)=r4}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="13000000000000006878ffff0600000010000000", @ANYRES32=0x1, @ANYBLOB="0100"/20, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="748794fc4d60a8e5c459ceedf3b178040000000b000000000000000000000000000000fd"], 0x50)
r8 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r8, 0x0, 0x2c, 0x0, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x19d5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800"/16], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000006c0)=ANY=[], &(0x7f0000000140)=""/8, 0xa0, 0x8, 0x0, 0x6}, 0x28)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000b40)={r9, 0xe0, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x0, 0x7c, &(0x7f0000000940)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000980), &(0x7f00000009c0), 0x8, 0xad, 0x8, 0x8, &(0x7f0000000a00)}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000d00)={&(0x7f0000000a40)="2df37b16b5bf4b6193f81a736ae05b6a9506c1670edf934a60c299ff636a745c133b9b353227bf000a8bfb8fdc70959f5aa1c620ca0fcf15940bd3a43cb7e8a1270d1a9daf3ea08691966b2e9f71521e4028b49e45636c33aa8bbb94a845a2397a5765a427cdc7aa2a1cc5d2f23107eac6492a3ee02ecc03f4b862127de4282a2066f8a92dae6900dcfcedd77ae3a73112b34217fc5a3765b6d6632ff69b5de71c275f37aaefa326aa21a5daa7056e09e176d8eff94a7e5629e9b3972e58aebfa5f9edb3577af72d8253727a96b1976ab6d89eb8eae310d1572f85d68efc510c9ebcb93f034e7d5598ac63f3bb68332c89722b39dc9c3a", &(0x7f00000008c0)=""/91, &(0x7f0000000b80)="3e3bbc6e991c6f1d44e06d393eb00929f0c1471444bfca6690ceb65c2482", &(0x7f0000000bc0)="0e823ed8eef62cf41ee0c29768c43f38283a0998c889d987f6c581", 0x1c, r7, 0x4}, 0x38)

464.452315ms ago: executing program 3 (id=6650):
r0 = socket$kcm(0x10, 0x2, 0x10)
gettid()
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2002c040)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x3e8)
socket$kcm(0x10, 0x2, 0x0)
r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='cpuset.sched_load_balance\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140)=0x4, 0x12)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x4)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="240000002d006bcd9e3f17aa04001b0000010000ffffffff000000000000ff7f00000002", 0x24}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100000001, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r6, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x10}, @multicast1}}}], 0x20}, 0x0)
recvmsg$kcm(r6, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x10002)
recvmsg(r6, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x40000000)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xa5ba2b88, &(0x7f0000000080)=[{&(0x7f00000004c0)="e03f03003b000b05d25a806c8c6394f901800000000000000b020a00053582c137153e37000c0280fc80ecd8a3c138d90b1000f80b", 0x33fe0}], 0x1}, 0x40000)

252.449462ms ago: executing program 0 (id=6651):
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x8, 0x8}, 0x104d05, 0x30f6, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000d80)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)}, 0x4051)
recvmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x2122)

101.803437ms ago: executing program 1 (id=6652):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$kcm(0x2, 0x3, 0x2)
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x520, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0xa99, 0x3}, 0x8500, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x6, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000}}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r1, 0x8, 0x0, 0x0, 0x30, &(0x7f0000000140), 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000500)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x2f}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000c40)="c10e020022003505d25a806f8c6394f90435fc60040011000a740100053582c137153e37024801", 0x27}], 0x1}, 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030030000b12d25a80648c2594f90124fc60100c0440fe470000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0xa}, 0x0)

0s ago: executing program 3 (id=6653):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90424fc60", 0x14}], 0x1, 0x0, 0x0, 0x600}, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(r1, 0x84, 0x11, &(0x7f0000000000), 0x8)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1200000003000000040000000700000000000000", @ANYRES32, @ANYBLOB="00000000002280b2efb28d26210428e0223da932", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000940)={0x6, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="1802001700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000b502000014000000b70300000000000085000000d2000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00'}, 0x90)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'sit0\x00', 0x800})
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000040))
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r4, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x7, 0x9, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x41, &(0x7f0000000340)=[{}, {}], 0x10, 0x10, &(0x7f0000000440), &(0x7f0000000480), 0x8, 0x45, 0x8, 0x8, &(0x7f00000004c0)}}, 0x10)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x1}, 0x28)
ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000900)=0xd)
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f00000005c0)=ANY=[@ANYBLOB="0400000004000000040000000740000000000000", @ANYRES32, @ANYBLOB="0000000000000000f6ffffff000000000000f2cd", @ANYRES32=0x0, @ANYRES32=r6, @ANYBLOB="0200000001"], 0x50)
r7 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r7, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x4e24, @private=0xa010102}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000140)='A', 0x1}], 0x1}, 0x24008051)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r8=>0xffffffffffffffff})
recvmsg$unix(r8, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r7, 0x84, 0x10, &(0x7f0000000000)=r9, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x27, 0x7, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5869, 0x0, 0x0, 0x0, 0x1}, [@map_idx={0x18, 0x9, 0x5, 0x0, 0x10}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x8}]}, &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x55, &(0x7f0000000200)=""/85, 0x41000, 0x11, '\x00', r5, @fallback=0x38, r6, 0x8, &(0x7f0000000740)={0x1, 0x3}, 0x8, 0x10, 0x0, 0x0, 0xffffffffffffffff, r4, 0x4, &(0x7f00000007c0)=[r3, r2, r9, r3, r3], &(0x7f0000000800)=[{0x0, 0x4, 0x8, 0xa}, {0x0, 0x2, 0xf, 0x8}, {0x0, 0x4, 0x10, 0x5}, {0x1, 0x5, 0x7}], 0x10, 0x40}, 0x94)
ioctl$TUNSETTXFILTER(r2, 0x400454d1, &(0x7f0000000100)={0x1, 0x1, [@empty]})

kernel console output (not intermixed with test programs):

d_flow+0x19/0x3f0
[  953.020642][T21693]  ? inet_sendmsg+0xe9/0x2f0
[  953.025257][T21693]  ? inet_send_prepare+0x260/0x260
[  953.030403][T21693]  ____sys_sendmsg+0x5ba/0x960
[  953.035179][T21693]  ? __lock_acquire+0x7d40/0x7d40
[  953.040221][T21693]  ? __asan_memset+0x22/0x40
[  953.044837][T21693]  ? __sys_sendmsg_sock+0x30/0x30
[  953.049892][T21693]  ? __import_iovec+0x5f2/0x850
[  953.054767][T21693]  ? import_iovec+0x73/0xa0
[  953.059287][T21693]  ___sys_sendmsg+0x2a6/0x360
[  953.063977][T21693]  ? get_pid_task+0x20/0x1e0
[  953.068591][T21693]  ? __sys_sendmsg+0x2a0/0x2a0
[  953.073391][T21693]  ? __lock_acquire+0x7d40/0x7d40
[  953.078463][T21693]  __se_sys_sendmsg+0x1c2/0x2b0
[  953.083332][T21693]  ? __x64_sys_sendmsg+0x80/0x80
[  953.088301][T21693]  do_syscall_64+0x55/0xa0
[  953.092759][T21693]  ? clear_bhb_loop+0x40/0x90
[  953.097469][T21693]  ? clear_bhb_loop+0x40/0x90
[  953.102171][T21693]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  953.108086][T21693] RIP: 0033:0x7f444019c819
[  953.112522][T21693] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  953.132141][T21693] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  953.140570][T21693] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[  953.148564][T21693] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000008
[  953.156555][T21693] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[  953.164541][T21693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  953.172524][T21693] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[  953.180529][T21693]  </TASK>
[  953.834775][T21705] netlink: 'syz.2.5623': attribute type 10 has an invalid length.
[  953.856724][T21705] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5623'.
[  953.876477][T21705] openvswitch: netlink: Flow key attr not present in new flow.
[  955.726217][T21699] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5621'.
[  956.008998][T21718] netlink: 10 bytes leftover after parsing attributes in process `syz.2.5628'.
[  956.404638][T21718] netlink: 'syz.2.5628': attribute type 2 has an invalid length.
[  956.426261][T21723] netlink: 'syz.2.5628': attribute type 2 has an invalid length.
[  956.650436][T21731] FAULT_INJECTION: forcing a failure.
[  956.650436][T21731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  956.675182][T21731] CPU: 0 PID: 21731 Comm: syz.3.5631 Not tainted syzkaller #0
[  956.682741][T21731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  956.692840][T21731] Call Trace:
[  956.696167][T21731]  <TASK>
[  956.699140][T21731]  dump_stack_lvl+0x18c/0x250
[  956.703870][T21731]  ? show_regs_print_info+0x20/0x20
[  956.709125][T21731]  ? load_image+0x400/0x400
[  956.713686][T21731]  ? __lock_acquire+0x7d40/0x7d40
[  956.718758][T21731]  ? snprintf+0xe9/0x140
[  956.722055][T21732] netlink: 'syz.0.5632': attribute type 10 has an invalid length.
[  956.723045][T21731]  should_fail_ex+0x39d/0x4d0
[  956.735740][T21731]  _copy_to_user+0x2f/0xa0
[  956.740215][T21731]  simple_read_from_buffer+0xe7/0x150
[  956.745648][T21731]  proc_fail_nth_read+0x1e8/0x260
[  956.747738][T21732] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.5632'.
[  956.750714][T21731]  ? proc_fault_inject_write+0x360/0x360
[  956.750753][T21731]  ? fsnotify_perm+0x271/0x5e0
[  956.750787][T21731]  ? proc_fault_inject_write+0x360/0x360
[  956.750818][T21731]  vfs_read+0x28b/0x970
[  956.750854][T21731]  ? kernel_read+0x1e0/0x1e0
[  956.750885][T21731]  ? __fget_files+0x28/0x4b0
[  956.765691][T21732] openvswitch: netlink: Flow key attr not present in new flow.
[  956.770627][T21731]  ? __fget_files+0x28/0x4b0
[  956.770665][T21731]  ? __fget_files+0x43d/0x4b0
[  956.770705][T21731]  ? __fdget_pos+0x2a3/0x330
[  956.770733][T21731]  ? ksys_read+0x75/0x260
[  956.770765][T21731]  ksys_read+0x150/0x260
[  956.770799][T21731]  ? vfs_write+0x990/0x990
[  956.770833][T21731]  ? lockdep_hardirqs_on+0x98/0x150
[  956.770865][T21731]  do_syscall_64+0x55/0xa0
[  956.833967][T21731]  ? clear_bhb_loop+0x40/0x90
[  956.838679][T21731]  ? clear_bhb_loop+0x40/0x90
[  956.843388][T21731]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  956.849303][T21731] RIP: 0033:0x7f679315d04e
[  956.853744][T21731] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  956.873367][T21731] RSP: 002b:00007f6793fcafe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  956.881816][T21731] RAX: ffffffffffffffda RBX: 00007f6793fcb6c0 RCX: 00007f679315d04e
[  956.889811][T21731] RDX: 000000000000000f RSI: 00007f6793fcb0a0 RDI: 0000000000000007
[  956.897819][T21731] RBP: 00007f6793fcb090 R08: 0000000000000000 R09: 0000000000000000
[  956.905810][T21731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  956.913793][T21731] R13: 00007f6793416038 R14: 00007f6793415fa0 R15: 00007ffeeadb5f18
[  956.921801][T21731]  </TASK>
[  957.906201][T21736] delete_channel: no stack
[  958.185242][T21758] netlink: 'syz.0.5642': attribute type 10 has an invalid length.
[  958.197985][T21758] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.5642'.
[  958.209436][T21758] openvswitch: netlink: Flow key attr not present in new flow.
[  958.496008][T21772] netlink: 14719 bytes leftover after parsing attributes in process `syz.1.5648'.
[  961.125938][T21799] netlink: 'syz.1.5654': attribute type 10 has an invalid length.
[  961.136225][T21799] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.5654'.
[  961.147151][T21799] openvswitch: netlink: Flow key attr not present in new flow.
[  961.963147][T21776] netlink: 65027 bytes leftover after parsing attributes in process `syz.3.5649'.
[  961.977414][T21801] netlink: 132 bytes leftover after parsing attributes in process `syz.1.5655'.
[  962.128587][T21806] netlink: 'syz.2.5656': attribute type 10 has an invalid length.
[  962.140686][T21806] bond0: (slave bond_slave_0): Releasing backup interface
[  962.282012][T21812] : entered promiscuous mode
[  962.286975][T21812] : entered allmulticast mode
[  962.785293][T21824] netlink: 'syz.1.5663': attribute type 10 has an invalid length.
[  962.803834][T21824] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.5663'.
[  962.844826][T21824] openvswitch: netlink: Flow key attr not present in new flow.
[  964.005249][T21835] netlink: 132 bytes leftover after parsing attributes in process `syz.2.5667'.
[  964.144914][T21834] pim6reg1: entered allmulticast mode
[  964.192875][T21835] netlink: 'syz.2.5667': attribute type 17 has an invalid length.
[  964.224085][T21835] netlink: 152 bytes leftover after parsing attributes in process `syz.2.5667'.
[  964.269603][T21835] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  964.788075][T21850] netlink: 'syz.2.5672': attribute type 29 has an invalid length.
[  964.849539][T21850] netlink: 'syz.2.5672': attribute type 29 has an invalid length.
[  964.863656][T21850] netlink: 'syz.2.5672': attribute type 29 has an invalid length.
[  965.557328][T21862] mac80211_hwsim hwsim45 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  966.395615][T21872] netlink: 'syz.0.5678': attribute type 1 has an invalid length.
[  966.409680][T21871] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5678'.
[  966.431837][T21874] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5679'.
[  966.500847][T21876] netlink: 'syz.3.5680': attribute type 33 has an invalid length.
[  966.539793][T21876] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.5680'.
[  966.785357][T21888] netlink: 'syz.0.5684': attribute type 10 has an invalid length.
[  966.795111][T21888] netlink: 209280 bytes leftover after parsing attributes in process `syz.0.5684'.
[  966.805547][T21888] openvswitch: netlink: Flow key attr not present in new flow.
[  966.968931][T21893] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5686'.
[  966.995420][T21893] netlink: get zone limit has 4 unknown bytes
[  967.236656][T21899] netlink: 'syz.0.5689': attribute type 39 has an invalid length.
[  968.739023][T21905] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5692'.
[  968.846412][T21910] FAULT_INJECTION: forcing a failure.
[  968.846412][T21910] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  968.860497][T21910] CPU: 1 PID: 21910 Comm: syz.0.5694 Not tainted syzkaller #0
[  968.868034][T21910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  968.878154][T21910] Call Trace:
[  968.881504][T21910]  <TASK>
[  968.884485][T21910]  dump_stack_lvl+0x18c/0x250
[  968.889263][T21910]  ? show_regs_print_info+0x20/0x20
[  968.894544][T21910]  ? load_image+0x400/0x400
[  968.899159][T21910]  ? __lock_acquire+0x7d40/0x7d40
[  968.904277][T21910]  ? snprintf+0xe9/0x140
[  968.908612][T21910]  should_fail_ex+0x39d/0x4d0
[  968.913382][T21910]  _copy_to_user+0x2f/0xa0
[  968.917886][T21910]  simple_read_from_buffer+0xe7/0x150
[  968.923357][T21910]  proc_fail_nth_read+0x1e8/0x260
[  968.928472][T21910]  ? proc_fault_inject_write+0x360/0x360
[  968.934215][T21910]  ? fsnotify_perm+0x271/0x5e0
[  968.939055][T21910]  ? proc_fault_inject_write+0x360/0x360
[  968.944771][T21910]  vfs_read+0x28b/0x970
[  968.949014][T21910]  ? kernel_read+0x1e0/0x1e0
[  968.953675][T21910]  ? __fget_files+0x28/0x4b0
[  968.958337][T21910]  ? __fget_files+0x28/0x4b0
[  968.963003][T21910]  ? __fget_files+0x43d/0x4b0
[  968.967798][T21910]  ? __fdget_pos+0x2a3/0x330
[  968.972471][T21910]  ? ksys_read+0x75/0x260
[  968.976912][T21910]  ksys_read+0x150/0x260
[  968.981248][T21910]  ? vfs_write+0x990/0x990
[  968.985749][T21910]  ? lockdep_hardirqs_on+0x98/0x150
[  968.991032][T21910]  do_syscall_64+0x55/0xa0
[  968.995518][T21910]  ? clear_bhb_loop+0x40/0x90
[  969.000259][T21910]  ? clear_bhb_loop+0x40/0x90
[  969.005022][T21910]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  969.010973][T21910] RIP: 0033:0x7f444015d04e
[  969.015455][T21910] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  969.035134][T21910] RSP: 002b:00007f4440fa0fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  969.043642][T21910] RAX: ffffffffffffffda RBX: 00007f4440fa16c0 RCX: 00007f444015d04e
[  969.051676][T21910] RDX: 000000000000000f RSI: 00007f4440fa10a0 RDI: 0000000000000003
[  969.059714][T21910] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[  969.067746][T21910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  969.075791][T21910] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[  969.083904][T21910]  </TASK>
[  969.493827][T21921] netlink: 188 bytes leftover after parsing attributes in process `syz.0.5698'.
[  969.541936][T21928] netlink: 188 bytes leftover after parsing attributes in process `syz.0.5698'.
[  969.575545][T21926] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5700'.
[  971.470994][T21926] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5700'.
[  971.481083][T21930] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  971.489244][T21930] batman_adv: batadv0: Removing interface: batadv_slave_0
[  971.500226][T21930] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  971.507924][T21930] batman_adv: batadv0: Removing interface: batadv_slave_1
[  971.525972][T21930] batman_adv: batadv0: Interface deactivated: veth0_vlan
[  971.537811][T21930] batman_adv: batadv0: Removing interface: veth0_vlan
[  971.750901][T21945] FAULT_INJECTION: forcing a failure.
[  971.750901][T21945] name failslab, interval 1, probability 0, space 0, times 0
[  971.786391][T21945] CPU: 0 PID: 21945 Comm: syz.3.5706 Not tainted syzkaller #0
[  971.793934][T21945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  971.804046][T21945] Call Trace:
[  971.807395][T21945]  <TASK>
[  971.810370][T21945]  dump_stack_lvl+0x18c/0x250
[  971.815108][T21945]  ? show_regs_print_info+0x20/0x20
[  971.820356][T21945]  ? load_image+0x400/0x400
[  971.824904][T21945]  ? __might_sleep+0xe0/0xe0
[  971.829522][T21945]  ? __lock_acquire+0x7d40/0x7d40
[  971.834587][T21945]  should_fail_ex+0x39d/0x4d0
[  971.839319][T21945]  should_failslab+0x9/0x20
[  971.843847][T21945]  slab_pre_alloc_hook+0x59/0x310
[  971.848923][T21945]  ? __lock_acquire+0x7d40/0x7d40
[  971.853995][T21945]  kmem_cache_alloc_node+0x60/0x320
[  971.859232][T21945]  ? __alloc_skb+0x103/0x2c0
[  971.863850][T21945]  __alloc_skb+0x103/0x2c0
[  971.868291][T21945]  netlink_sendmsg+0x66a/0xbf0
[  971.873106][T21945]  ? netlink_getsockopt+0x590/0x590
[  971.878346][T21945]  ? aa_sock_msg_perm+0x94/0x150
[  971.883330][T21945]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  971.888653][T21945]  ? security_socket_sendmsg+0x80/0xa0
[  971.894148][T21945]  ? netlink_getsockopt+0x590/0x590
[  971.899387][T21945]  ____sys_sendmsg+0x5ba/0x960
[  971.904180][T21945]  ? __asan_memset+0x22/0x40
[  971.908819][T21945]  ? __sys_sendmsg_sock+0x30/0x30
[  971.913875][T21945]  ? __import_iovec+0x5f2/0x850
[  971.918752][T21945]  ? import_iovec+0x73/0xa0
[  971.923280][T21945]  ___sys_sendmsg+0x2a6/0x360
[  971.927985][T21945]  ? get_pid_task+0x20/0x1e0
[  971.932621][T21945]  ? __sys_sendmsg+0x2a0/0x2a0
[  971.937437][T21945]  ? __lock_acquire+0x7d40/0x7d40
[  971.942509][T21945]  __se_sys_sendmsg+0x1c2/0x2b0
[  971.947391][T21945]  ? __x64_sys_sendmsg+0x80/0x80
[  971.952364][T21945]  ? lockdep_hardirqs_on+0x98/0x150
[  971.957591][T21945]  do_syscall_64+0x55/0xa0
[  971.962040][T21945]  ? clear_bhb_loop+0x40/0x90
[  971.966736][T21945]  ? clear_bhb_loop+0x40/0x90
[  971.971440][T21945]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  971.977368][T21945] RIP: 0033:0x7f679319c819
[  971.981806][T21945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  972.001440][T21945] RSP: 002b:00007f6793fcb028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  972.009881][T21945] RAX: ffffffffffffffda RBX: 00007f6793415fa0 RCX: 00007f679319c819
[  972.017880][T21945] RDX: 0000000000098010 RSI: 0000200000000240 RDI: 0000000000000003
[  972.025878][T21945] RBP: 00007f6793fcb090 R08: 0000000000000000 R09: 0000000000000000
[  972.033878][T21945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  972.041871][T21945] R13: 00007f6793416038 R14: 00007f6793415fa0 R15: 00007ffeeadb5f18
[  972.049885][T21945]  </TASK>
[  972.370037][T21956] delete_channel: no stack
[  972.527580][T21959] netlink: 'syz.1.5717': attribute type 10 has an invalid length.
[  973.144089][T21964] netlink: 'syz.3.5712': attribute type 10 has an invalid length.
[  974.023961][T21989] sctp: [Deprecated]: syz.3.5722 (pid 21989) Use of struct sctp_assoc_value in delayed_ack socket option.
[  974.023961][T21989] Use struct sctp_sack_info instead
[  977.259737][T22003] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.5726'.
[  978.705429][T21986] netlink: 'syz.1.5716': attribute type 39 has an invalid length.
[  978.804477][T22008] netlink: 'syz.0.5727': attribute type 10 has an invalid length.
[  978.832597][T22008] 8021q: adding VLAN 0 to HW filter on device batadv0
[  978.863751][T22008] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  979.073219][T22020] FAULT_INJECTION: forcing a failure.
[  979.073219][T22020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  979.086630][T22020] CPU: 0 PID: 22020 Comm: syz.3.5732 Not tainted syzkaller #0
[  979.094156][T22020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  979.104260][T22020] Call Trace:
[  979.107587][T22020]  <TASK>
[  979.110552][T22020]  dump_stack_lvl+0x18c/0x250
[  979.115308][T22020]  ? show_regs_print_info+0x20/0x20
[  979.120581][T22020]  ? load_image+0x400/0x400
[  979.125137][T22020]  ? __might_fault+0xaa/0x120
[  979.129865][T22020]  ? __lock_acquire+0x7d40/0x7d40
[  979.134949][T22020]  should_fail_ex+0x39d/0x4d0
[  979.139689][T22020]  _copy_from_user+0x2f/0xe0
[  979.144332][T22020]  __tun_chr_ioctl+0x22f/0x2000
[  979.149254][T22020]  ? tun_flow_create+0x310/0x310
[  979.154288][T22020]  ? bpf_lsm_file_ioctl+0x9/0x10
[  979.159278][T22020]  ? security_file_ioctl+0x80/0xa0
[  979.164458][T22020]  ? tun_chr_poll+0x630/0x630
[  979.169191][T22020]  __se_sys_ioctl+0xfd/0x170
[  979.173845][T22020]  do_syscall_64+0x55/0xa0
[  979.178322][T22020]  ? clear_bhb_loop+0x40/0x90
[  979.183045][T22020]  ? clear_bhb_loop+0x40/0x90
[  979.187771][T22020]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  979.193721][T22020] RIP: 0033:0x7f679319c819
[  979.198182][T22020] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  979.217839][T22020] RSP: 002b:00007f6793fcb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  979.226323][T22020] RAX: ffffffffffffffda RBX: 00007f6793415fa0 RCX: 00007f679319c819
[  979.234347][T22020] RDX: 0000200000000080 RSI: 00000000400454ca RDI: 0000000000000004
[  979.242359][T22020] RBP: 00007f6793fcb090 R08: 0000000000000000 R09: 0000000000000000
[  979.250366][T22020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  979.258406][T22020] R13: 00007f6793416038 R14: 00007f6793415fa0 R15: 00007ffeeadb5f18
[  979.266444][T22020]  </TASK>
[  982.404681][T22030] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5736'.
[  982.486509][T22030] openvswitch: netlink: Flow key attribute not present in set flow.
[  982.560929][T22035] netlink: 140 bytes leftover after parsing attributes in process `syz.3.5737'.
[  984.387262][T22047] netlink: 'syz.2.5740': attribute type 10 has an invalid length.
[  984.471789][T22053] FAULT_INJECTION: forcing a failure.
[  984.471789][T22053] name failslab, interval 1, probability 0, space 0, times 0
[  984.495569][T22053] CPU: 1 PID: 22053 Comm: syz.0.5743 Not tainted syzkaller #0
[  984.503229][T22053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  984.513335][T22053] Call Trace:
[  984.516652][T22053]  <TASK>
[  984.519621][T22053]  dump_stack_lvl+0x18c/0x250
[  984.524388][T22053]  ? show_regs_print_info+0x20/0x20
[  984.529647][T22053]  ? load_image+0x400/0x400
[  984.534208][T22053]  ? verify_lock_unused+0x140/0x140
[  984.539470][T22053]  should_fail_ex+0x39d/0x4d0
[  984.544222][T22053]  should_failslab+0x9/0x20
[  984.548801][T22053]  slab_pre_alloc_hook+0x59/0x310
[  984.553969][T22053]  kmem_cache_alloc+0x5a/0x2d0
[  984.558800][T22053]  ? skb_clone+0x1eb/0x370
[  984.563276][T22053]  skb_clone+0x1eb/0x370
[  984.567577][T22053]  __netlink_deliver_tap+0x41c/0x830
[  984.572931][T22053]  ? netlink_deliver_tap+0x2e/0x1b0
[  984.578187][T22053]  netlink_deliver_tap+0x19c/0x1b0
[  984.583357][T22053]  netlink_unicast+0x72c/0x8d0
[  984.588194][T22053]  netlink_sendmsg+0x8d0/0xbf0
[  984.593028][T22053]  ? netlink_getsockopt+0x590/0x590
[  984.598291][T22053]  ? aa_sock_msg_perm+0x94/0x150
[  984.603293][T22053]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  984.608632][T22053]  ? security_socket_sendmsg+0x80/0xa0
[  984.614151][T22053]  ? netlink_getsockopt+0x590/0x590
[  984.619413][T22053]  ____sys_sendmsg+0x5ba/0x960
[  984.624237][T22053]  ? __asan_memset+0x22/0x40
[  984.628898][T22053]  ? __sys_sendmsg_sock+0x30/0x30
[  984.633961][T22053]  ? __import_iovec+0x5f2/0x850
[  984.638862][T22053]  ? import_iovec+0x73/0xa0
[  984.643412][T22053]  ___sys_sendmsg+0x2a6/0x360
[  984.648142][T22053]  ? __sys_sendmsg+0x2a0/0x2a0
[  984.653007][T22053]  __se_sys_sendmsg+0x1c2/0x2b0
[  984.657905][T22053]  ? __x64_sys_sendmsg+0x80/0x80
[  984.662909][T22053]  ? lockdep_hardirqs_on+0x98/0x150
[  984.668161][T22053]  do_syscall_64+0x55/0xa0
[  984.672635][T22053]  ? clear_bhb_loop+0x40/0x90
[  984.677367][T22053]  ? clear_bhb_loop+0x40/0x90
[  984.682101][T22053]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  984.688041][T22053] RIP: 0033:0x7f444019c819
[  984.692508][T22053] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  984.712156][T22053] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  984.720623][T22053] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[  984.728634][T22053] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  984.736650][T22053] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[  984.744660][T22053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  984.752680][T22053] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[  984.760712][T22053]  </TASK>
[  986.585717][T22080] netlink: 'syz.2.5753': attribute type 10 has an invalid length.
[  986.597365][T22080] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5753'.
[  986.627358][T22080] openvswitch: netlink: Flow key attr not present in new flow.
[  986.648458][T22083] netlink: 'syz.3.5754': attribute type 10 has an invalid length.
[  986.661028][T22083] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5754'.
[  986.670670][T22083] openvswitch: netlink: Flow key attr not present in new flow.
[  986.693363][T22081] netlink: 'syz.0.5751': attribute type 10 has an invalid length.
[  986.786240][T22088] netlink: zone id is out of range
[  986.796922][T22088] netlink: set zone limit has 8 unknown bytes
[  986.928271][T22090] netlink: 'syz.1.5757': attribute type 33 has an invalid length.
[  986.947349][T22090] netlink: 152 bytes leftover after parsing attributes in process `syz.1.5757'.
[  986.956445][T22090] `: renamed from ip6tnl0 (while UP)
[  986.970991][T22090] A link change request failed with some changes committed already. Interface ` may have been left with an inconsistent configuration, please check.
[  987.151095][T22102] netlink: 'syz.1.5763': attribute type 10 has an invalid length.
[  987.165212][T22102] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.5763'.
[  987.177978][T22102] openvswitch: netlink: Flow key attr not present in new flow.
[  987.372473][T22109] netlink: 'syz.1.5765': attribute type 10 has an invalid length.
[  987.428332][T22109] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.5765'.
[  987.449064][T22109] openvswitch: netlink: Flow key attr not present in new flow.
[  988.807818][T22124] netlink: 'syz.3.5768': attribute type 10 has an invalid length.
[  988.855862][T22123] netlink: 65055 bytes leftover after parsing attributes in process `syz.2.5770'.
[  988.985982][T22127] netlink: 60 bytes leftover after parsing attributes in process `syz.2.5770'.
[  989.223333][T22136] netlink: 'syz.3.5773': attribute type 10 has an invalid length.
[  989.237446][T22136] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5773'.
[  989.252490][T22136] openvswitch: netlink: Flow key attr not present in new flow.
[  989.356570][T22141] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.5775'.
[  989.367204][T22141] openvswitch: netlink: Flow key attribute not present in set flow.
[  990.026099][T22156] netlink: 'syz.2.5778': attribute type 15 has an invalid length.
[  990.059447][T22156] netlink: 'syz.2.5778': attribute type 7 has an invalid length.
[  990.544333][T22160] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5780'.
[  990.584885][T22159] netlink: 'syz.3.5780': attribute type 22 has an invalid length.
[  990.602417][T22159] netlink: 14380 bytes leftover after parsing attributes in process `syz.3.5780'.
[  990.732324][T22159] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5780'.
[  990.815668][T22163] netlink: 'syz.1.5781': attribute type 10 has an invalid length.
[  991.031212][T22165] netlink: 'syz.3.5782': attribute type 10 has an invalid length.
[  991.299143][T22167] netlink: 'syz.3.5783': attribute type 10 has an invalid length.
[  991.308274][T22167] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5783'.
[  991.318578][T22167] openvswitch: netlink: Flow key attr not present in new flow.
[  991.661703][T22176] netlink: 144316 bytes leftover after parsing attributes in process `syz.2.5787'.
[  991.722449][T22182] openvswitch: netlink: Flow key attribute not present in set flow.
[  991.962499][T22188] netlink: 'syz.2.5791': attribute type 27 has an invalid length.
[  992.614345][T22194] netlink: 'syz.1.5793': attribute type 10 has an invalid length.
[  992.625783][T22194] __nla_validate_parse: 3 callbacks suppressed
[  992.625872][T22194] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.5793'.
[  992.645371][T22194] openvswitch: netlink: Flow key attr not present in new flow.
[  993.114983][T22198] netlink: 'syz.1.5794': attribute type 10 has an invalid length.
[  993.315760][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  993.324421][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  993.663832][T22215] FAULT_INJECTION: forcing a failure.
[  993.663832][T22215] name failslab, interval 1, probability 0, space 0, times 0
[  993.685582][T22215] CPU: 1 PID: 22215 Comm: syz.1.5800 Not tainted syzkaller #0
[  993.693145][T22215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  993.703272][T22215] Call Trace:
[  993.706622][T22215]  <TASK>
[  993.709615][T22215]  dump_stack_lvl+0x18c/0x250
[  993.714379][T22215]  ? verify_lock_unused+0x140/0x140
[  993.719666][T22215]  ? show_regs_print_info+0x20/0x20
[  993.724963][T22215]  ? load_image+0x400/0x400
[  993.729601][T22215]  should_fail_ex+0x39d/0x4d0
[  993.734399][T22215]  should_failslab+0x9/0x20
[  993.738989][T22215]  slab_pre_alloc_hook+0x59/0x310
[  993.744120][T22215]  kmem_cache_alloc+0x5a/0x2d0
[  993.748965][T22215]  ? __nf_conntrack_alloc+0x99/0x380
[  993.754344][T22215]  __nf_conntrack_alloc+0x99/0x380
[  993.759555][T22215]  init_conntrack+0x177/0xf10
[  993.764337][T22215]  ? early_drop+0x7f0/0x7f0
[  993.768934][T22215]  ? nf_conntrack_find_get+0x650/0x650
[  993.774478][T22215]  ? __local_bh_enable_ip+0x13a/0x1c0
[  993.779925][T22215]  ? __siphash_unaligned+0x22e/0x3a0
[  993.785392][T22215]  nf_conntrack_in+0xc06/0x15c0
[  993.790318][T22215]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  993.796404][T22215]  ? nf_ct_pernet+0x270/0x270
[  993.801187][T22215]  ? ipt_do_table+0x2c1/0x15e0
[  993.806071][T22215]  ? ipv4_conntrack_defrag+0x29d/0x5a0
[  993.811602][T22215]  ? get_random_u32+0x16f/0x910
[  993.816525][T22215]  ? ipv4_conntrack_local+0x123/0x200
[  993.821982][T22215]  ? ipv4_conntrack_in+0x20/0x20
[  993.826986][T22215]  nf_hook_slow+0xbd/0x200
[  993.831498][T22215]  ? nf_hook+0x390/0x390
[  993.835819][T22215]  nf_hook+0x228/0x390
[  993.839984][T22215]  ? nf_hook+0xa2/0x390
[  993.844233][T22215]  ? __ip_local_out+0x5f0/0x5f0
[  993.849165][T22215]  ? nf_hook+0x390/0x390
[  993.853485][T22215]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  993.858411][T22215]  ? ip_fast_csum+0x1ee/0x2b0
[  993.863172][T22215]  __ip_local_out+0x4db/0x5f0
[  993.867912][T22215]  ? nf_hook+0x390/0x390
[  993.872251][T22215]  ip_send_skb+0x4c/0x1d0
[  993.876674][T22215]  udp_send_skb+0xa37/0x13a0
[  993.881418][T22215]  udp_sendmsg+0x743/0x23b0
[  993.886046][T22215]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  993.890987][T22215]  ? udp_cmsg_send+0x350/0x350
[  993.895893][T22215]  ? aa_sk_perm+0x83c/0x970
[  993.900512][T22215]  ? aa_af_perm+0x330/0x330
[  993.905097][T22215]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  993.911609][T22215]  ? sock_rps_record_flow+0x19/0x3f0
[  993.916986][T22215]  ? inet_sendmsg+0x7c/0x2f0
[  993.921648][T22215]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  993.927023][T22215]  ? security_socket_sendmsg+0x80/0xa0
[  993.932560][T22215]  ? inet_send_prepare+0x260/0x260
[  993.937763][T22215]  ____sys_sendmsg+0x5ba/0x960
[  993.942628][T22215]  ? __asan_memset+0x22/0x40
[  993.947300][T22215]  ? __sys_sendmsg_sock+0x30/0x30
[  993.952385][T22215]  ? __import_iovec+0x3fa/0x850
[  993.957353][T22215]  ? import_iovec+0x73/0xa0
[  993.961943][T22215]  ___sys_sendmsg+0x2a6/0x360
[  993.966697][T22215]  ? get_pid_task+0x20/0x1e0
[  993.971398][T22215]  ? __sys_sendmsg+0x2a0/0x2a0
[  993.976322][T22215]  ? __lock_acquire+0x7d40/0x7d40
[  993.981517][T22215]  __se_sys_sendmsg+0x1c2/0x2b0
[  993.986448][T22215]  ? __x64_sys_sendmsg+0x80/0x80
[  993.991528][T22215]  ? lockdep_hardirqs_on+0x98/0x150
[  993.996814][T22215]  do_syscall_64+0x55/0xa0
[  994.001313][T22215]  ? clear_bhb_loop+0x40/0x90
[  994.006060][T22215]  ? clear_bhb_loop+0x40/0x90
[  994.010835][T22215]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  994.016807][T22215] RIP: 0033:0x7f233939c819
[  994.021303][T22215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  994.040990][T22215] RSP: 002b:00007f233a253028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  994.049497][T22215] RAX: ffffffffffffffda RBX: 00007f2339615fa0 RCX: 00007f233939c819
[  994.057540][T22215] RDX: 0000000000044000 RSI: 00002000000007c0 RDI: 0000000000000005
[  994.065586][T22215] RBP: 00007f233a253090 R08: 0000000000000000 R09: 0000000000000000
[  994.073629][T22215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  994.081681][T22215] R13: 00007f2339616038 R14: 00007f2339615fa0 R15: 00007fffcd44bef8
[  994.089804][T22215]  </TASK>
[  994.529199][T22219] netlink: 'syz.3.5802': attribute type 10 has an invalid length.
[  994.538792][T22219] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5802'.
[  994.590915][T22219] openvswitch: netlink: Flow key attr not present in new flow.
[  996.334224][T22248] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.5811'.
[  996.373238][T22252] netlink: 'syz.2.5812': attribute type 10 has an invalid length.
[  996.398039][T22252] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5812'.
[  996.421966][T22252] openvswitch: netlink: Flow key attr not present in new flow.
[  996.448855][T22255] netlink: 'syz.1.5811': attribute type 7 has an invalid length.
[  996.517690][T22254] netlink: 'syz.0.5814': attribute type 10 has an invalid length.
[  996.633573][T22254] team0: Port device netdevsim0 added
[  996.816637][T22263] netlink: 'syz.2.5824': attribute type 10 has an invalid length.
[  996.835856][T22263] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5824'.
[  996.846195][T22263] openvswitch: netlink: Flow key attr not present in new flow.
[  999.019915][T22293] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5825'.
[  999.035630][T22293] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5825'.
[  999.053862][T22293] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5825'.
[  999.063906][T22293] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5825'.
[  999.333409][T22298] netlink: 'syz.0.5823': attribute type 10 has an invalid length.
[  999.527592][T22298] team0: Port device netdevsim0 removed
[  999.536027][T22298] batman_adv: batadv0: Adding interface: netdevsim0
[  999.543320][T22298] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  999.597730][T22298] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[  999.732514][T22304] netlink: 'syz.2.5828': attribute type 10 has an invalid length.
[  999.746797][T22304] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5828'.
[  999.764248][T22304] openvswitch: netlink: Flow key attr not present in new flow.
[ 1001.111394][T22324] netlink: 'syz.0.5835': attribute type 2 has an invalid length.
[ 1001.142787][T22324] netlink: 14 bytes leftover after parsing attributes in process `syz.0.5835'.
[ 1001.461500][T22334] netlink: 'syz.2.5839': attribute type 10 has an invalid length.
[ 1001.483142][T22334] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5839'.
[ 1001.499542][T22334] openvswitch: netlink: Flow key attr not present in new flow.
[ 1001.503898][T22336] pim6reg1: tun_chr_ioctl cmd 1074025677
[ 1001.514587][T22336] pim6reg1: linktype set to 774
[ 1001.596897][T22341] netlink: 'syz.2.5842': attribute type 6 has an invalid length.
[ 1001.605094][T22341] netlink: 'syz.2.5842': attribute type 1 has an invalid length.
[ 1001.617896][T22341] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.5842'.
[ 1001.632005][T22342] netlink: 156 bytes leftover after parsing attributes in process `syz.3.5841'.
[ 1001.751442][T22345] netlink: 'syz.0.5843': attribute type 29 has an invalid length.
[ 1001.794434][T22345] netlink: 'syz.0.5843': attribute type 29 has an invalid length.
[ 1002.822695][T22356] FAULT_INJECTION: forcing a failure.
[ 1002.822695][T22356] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1002.846007][T22356] CPU: 0 PID: 22356 Comm: syz.3.5846 Not tainted syzkaller #0
[ 1002.853548][T22356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1002.863677][T22356] Call Trace:
[ 1002.867024][T22356]  <TASK>
[ 1002.870009][T22356]  dump_stack_lvl+0x18c/0x250
[ 1002.874817][T22356]  ? show_regs_print_info+0x20/0x20
[ 1002.880100][T22356]  ? load_image+0x400/0x400
[ 1002.884681][T22356]  ? __might_fault+0xaa/0x120
[ 1002.890225][T22356]  ? __lock_acquire+0x7d40/0x7d40
[ 1002.895355][T22356]  should_fail_ex+0x39d/0x4d0
[ 1002.900137][T22356]  _copy_from_iter+0x1d9/0x12e0
[ 1002.905046][T22356]  ? slab_post_alloc_hook+0x8a/0x4b0
[ 1002.910402][T22356]  ? __virt_addr_valid+0x18c/0x540
[ 1002.915601][T22356]  ? __lock_acquire+0x7d40/0x7d40
[ 1002.920696][T22356]  ? rcu_is_watching+0x15/0xb0
[ 1002.925542][T22356]  ? copyout_mc+0x70/0x70
[ 1002.929953][T22356]  ? __virt_addr_valid+0x18c/0x540
[ 1002.935144][T22356]  ? __virt_addr_valid+0x18c/0x540
[ 1002.940336][T22356]  ? __virt_addr_valid+0x469/0x540
[ 1002.945535][T22356]  ? __check_object_size+0x506/0xa20
[ 1002.950905][T22356]  netlink_sendmsg+0x76b/0xbf0
[ 1002.955784][T22356]  ? netlink_getsockopt+0x590/0x590
[ 1002.961070][T22356]  ? aa_sock_msg_perm+0x94/0x150
[ 1002.966137][T22356]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1002.971506][T22356]  ? security_socket_sendmsg+0x80/0xa0
[ 1002.977039][T22356]  ? netlink_getsockopt+0x590/0x590
[ 1002.982330][T22356]  ____sys_sendmsg+0x5ba/0x960
[ 1002.987189][T22356]  ? __asan_memset+0x22/0x40
[ 1002.991875][T22356]  ? __sys_sendmsg_sock+0x30/0x30
[ 1002.996969][T22356]  ? __import_iovec+0x5f2/0x850
[ 1003.001923][T22356]  ? import_iovec+0x73/0xa0
[ 1003.006509][T22356]  ___sys_sendmsg+0x2a6/0x360
[ 1003.011287][T22356]  ? get_pid_task+0x20/0x1e0
[ 1003.015971][T22356]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1003.020884][T22356]  ? __lock_acquire+0x7d40/0x7d40
[ 1003.026059][T22356]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1003.030990][T22356]  ? __x64_sys_sendmsg+0x80/0x80
[ 1003.036064][T22356]  ? lockdep_hardirqs_on+0x98/0x150
[ 1003.041347][T22356]  do_syscall_64+0x55/0xa0
[ 1003.045830][T22356]  ? clear_bhb_loop+0x40/0x90
[ 1003.050578][T22356]  ? clear_bhb_loop+0x40/0x90
[ 1003.055350][T22356]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1003.061331][T22356] RIP: 0033:0x7f679319c819
[ 1003.065812][T22356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1003.085476][T22356] RSP: 002b:00007f6793faa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1003.093956][T22356] RAX: ffffffffffffffda RBX: 00007f6793416090 RCX: 00007f679319c819
[ 1003.101993][T22356] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[ 1003.110076][T22356] RBP: 00007f6793faa090 R08: 0000000000000000 R09: 0000000000000000
[ 1003.118115][T22356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1003.126153][T22356] R13: 00007f6793416128 R14: 00007f6793416090 R15: 00007ffeeadb5f18
[ 1003.134279][T22356]  </TASK>
[ 1005.532469][T22364] netlink: 'syz.0.5850': attribute type 10 has an invalid length.
[ 1005.571670][T22364] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.5850'.
[ 1005.607816][T22364] openvswitch: netlink: Flow key attr not present in new flow.
[ 1005.802381][T22371] netlink: 'syz.1.5853': attribute type 12 has an invalid length.
[ 1005.821076][T22371] netlink: 'syz.1.5853': attribute type 15 has an invalid length.
[ 1007.181281][T22391] netlink: 'syz.2.5861': attribute type 10 has an invalid length.
[ 1007.190375][T22391] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5861'.
[ 1007.204259][T22391] openvswitch: netlink: Flow key attr not present in new flow.
[ 1007.342597][T22398] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.5864'.
[ 1007.352209][T22398] openvswitch: netlink: Duplicate key (type 0).
[ 1007.637423][T22404] netlink: 'syz.2.5865': attribute type 12 has an invalid length.
[ 1007.646489][T22404] netlink: 'syz.2.5865': attribute type 15 has an invalid length.
[ 1008.690423][T22414] netlink: 'syz.2.5868': attribute type 39 has an invalid length.
[ 1009.108399][T22423] netlink: 'syz.3.5872': attribute type 10 has an invalid length.
[ 1009.134823][T22423] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5872'.
[ 1009.160892][T22423] openvswitch: netlink: Flow key attr not present in new flow.
[ 1009.476499][T22428] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.5876'.
[ 1011.659047][T22428] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.5876'.
[ 1013.098363][T22451] netlink: 'syz.3.5884': attribute type 10 has an invalid length.
[ 1013.106522][T22451] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5884'.
[ 1013.123686][T22451] openvswitch: netlink: Flow key attr not present in new flow.
[ 1013.659516][T22461] netlink: 9286 bytes leftover after parsing attributes in process `syz.2.5886'.
[ 1014.769212][T22475] netlink: 'syz.0.5892': attribute type 39 has an invalid length.
[ 1017.032897][T22486] netlink: 'syz.3.5895': attribute type 10 has an invalid length.
[ 1017.061939][T22486] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5895'.
[ 1017.092521][T22486] openvswitch: netlink: Flow key attr not present in new flow.
[ 1022.494847][T22527] macvlan1: entered promiscuous mode
[ 1022.662433][T22527] netlink: 121460 bytes leftover after parsing attributes in process `syz.0.5914'.
[ 1022.701603][T22527] netlink: 21068 bytes leftover after parsing attributes in process `syz.0.5914'.
[ 1022.743104][T22530] netlink: 'syz.1.5908': attribute type 10 has an invalid length.
[ 1022.773507][T22530] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.5908'.
[ 1022.793352][T22530] openvswitch: netlink: Flow key attr not present in new flow.
[ 1023.027588][T22535] netlink: 'syz.1.5909': attribute type 39 has an invalid length.
[ 1023.302846][T22542] netlink: 'syz.1.5912': attribute type 10 has an invalid length.
[ 1023.681169][T22551] netlink: 'syz.2.5917': attribute type 10 has an invalid length.
[ 1023.684762][T22553] netlink: 'syz.3.5918': attribute type 10 has an invalid length.
[ 1023.718566][T22551] hsr0: left promiscuous mode
[ 1023.725496][T22553] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.5918'.
[ 1023.736281][T22551] hsr0: left allmulticast mode
[ 1023.741377][T22551] hsr_slave_0: left allmulticast mode
[ 1023.747057][T22551] hsr_slave_1: left allmulticast mode
[ 1023.756937][T22553] openvswitch: netlink: Flow key attr not present in new flow.
[ 1023.771450][T22551] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[ 1024.013888][T22555] netlink: 2 bytes leftover after parsing attributes in process `syz.1.5919'.
[ 1024.076473][T22555] batadv_slave_1: entered promiscuous mode
[ 1024.328449][T22562] netlink: 'syz.2.5922': attribute type 39 has an invalid length.
[ 1026.015354][T22590] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5935'.
[ 1027.459052][T22605] netlink: 199816 bytes leftover after parsing attributes in process `syz.2.5939'.
[ 1027.868840][T22610] netlink: 'syz.3.5940': attribute type 10 has an invalid length.
[ 1027.940533][T22613] FAULT_INJECTION: forcing a failure.
[ 1027.940533][T22613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1027.944687][T22610] 8021q: adding VLAN 0 to HW filter on device team0
[ 1027.966937][T22613] CPU: 1 PID: 22613 Comm: syz.2.5942 Not tainted syzkaller #0
[ 1027.974469][T22613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1027.984582][T22613] Call Trace:
[ 1027.987908][T22613]  <TASK>
[ 1027.990883][T22613]  dump_stack_lvl+0x18c/0x250
[ 1027.995627][T22613]  ? show_regs_print_info+0x20/0x20
[ 1028.000881][T22613]  ? load_image+0x400/0x400
[ 1028.005444][T22613]  ? __lock_acquire+0x7d40/0x7d40
[ 1028.010521][T22613]  ? snprintf+0xe9/0x140
[ 1028.014821][T22613]  should_fail_ex+0x39d/0x4d0
[ 1028.019579][T22613]  _copy_to_user+0x2f/0xa0
[ 1028.024082][T22613]  simple_read_from_buffer+0xe7/0x150
[ 1028.029612][T22613]  proc_fail_nth_read+0x1e8/0x260
[ 1028.034714][T22613]  ? proc_fault_inject_write+0x360/0x360
[ 1028.040589][T22613]  ? fsnotify_perm+0x271/0x5e0
[ 1028.042368][T22610] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1028.045409][T22613]  ? proc_fault_inject_write+0x360/0x360
[ 1028.059518][T22613]  vfs_read+0x28b/0x970
[ 1028.063805][T22613]  ? kernel_read+0x1e0/0x1e0
[ 1028.068419][T22613]  ? __fget_files+0x28/0x4b0
[ 1028.073033][T22613]  ? __fget_files+0x28/0x4b0
[ 1028.077659][T22613]  ? __fget_files+0x43d/0x4b0
[ 1028.082368][T22613]  ? __fdget_pos+0x2a3/0x330
[ 1028.086991][T22613]  ? ksys_read+0x75/0x260
[ 1028.091356][T22613]  ksys_read+0x150/0x260
[ 1028.095635][T22613]  ? vfs_write+0x990/0x990
[ 1028.100094][T22613]  ? lockdep_hardirqs_on+0x98/0x150
[ 1028.105335][T22613]  do_syscall_64+0x55/0xa0
[ 1028.109789][T22613]  ? clear_bhb_loop+0x40/0x90
[ 1028.114491][T22613]  ? clear_bhb_loop+0x40/0x90
[ 1028.119183][T22613]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1028.125098][T22613] RIP: 0033:0x7f9c3615d04e
[ 1028.129556][T22613] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1028.149195][T22613] RSP: 002b:00007f9c36ffefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1028.157647][T22613] RAX: ffffffffffffffda RBX: 00007f9c36fff6c0 RCX: 00007f9c3615d04e
[ 1028.165645][T22613] RDX: 000000000000000f RSI: 00007f9c36fff0a0 RDI: 0000000000000004
[ 1028.173634][T22613] RBP: 00007f9c36fff090 R08: 0000000000000000 R09: 0000000000000000
[ 1028.181634][T22613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1028.189623][T22613] R13: 00007f9c36416038 R14: 00007f9c36415fa0 R15: 00007ffc47a87598
[ 1028.197632][T22613]  </TASK>
[ 1028.509691][T22623] netlink: 'syz.0.5945': attribute type 1 has an invalid length.
[ 1028.570456][T22625] netlink: 'syz.3.5947': attribute type 10 has an invalid length.
[ 1028.582517][T22623] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.5945'.
[ 1029.595845][T22646] netlink: 199816 bytes leftover after parsing attributes in process `syz.1.5951'.
[ 1030.506059][T22649] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.5953'.
[ 1030.589917][T22662] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5958'.
[ 1032.364116][T22688] netlink: 'syz.1.5966': attribute type 21 has an invalid length.
[ 1032.385419][T22688] netlink: 'syz.1.5966': attribute type 3 has an invalid length.
[ 1032.410106][T22688] netlink: 144 bytes leftover after parsing attributes in process `syz.1.5966'.
[ 1032.483043][T22690] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5966'.
[ 1032.846178][T22686] netlink: 199816 bytes leftover after parsing attributes in process `syz.0.5965'.
[ 1033.094123][T22700] netlink: 'syz.2.5969': attribute type 11 has an invalid length.
[ 1033.102595][T22700] netlink: 184116 bytes leftover after parsing attributes in process `syz.2.5969'.
[ 1033.162384][T22699] netlink: 'syz.2.5969': attribute type 4 has an invalid length.
[ 1033.187916][T22699] netlink: 174100 bytes leftover after parsing attributes in process `syz.2.5969'.
[ 1034.310585][T22712] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.5972'.
[ 1035.799443][T22729] netlink: 'syz.2.5980': attribute type 10 has an invalid length.
[ 1035.810161][T22729] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5980'.
[ 1035.823328][T22729] openvswitch: netlink: Flow key attr not present in new flow.
[ 1037.089774][T22750] netlink: 'syz.3.5985': attribute type 4 has an invalid length.
[ 1037.121790][T22750] netlink: 174100 bytes leftover after parsing attributes in process `syz.3.5985'.
[ 1037.179229][T22745] netlink: 'syz.3.5985': attribute type 4 has an invalid length.
[ 1037.298956][T22745] netlink: 174100 bytes leftover after parsing attributes in process `syz.3.5985'.
[ 1038.235628][T22766] netlink: 'syz.1.5988': attribute type 10 has an invalid length.
[ 1038.256948][T22772] netlink: 'syz.2.5990': attribute type 10 has an invalid length.
[ 1038.258611][T22766] netlink: 'syz.1.5988': attribute type 10 has an invalid length.
[ 1038.281041][T22772] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.5990'.
[ 1038.303260][T22766] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.5988'.
[ 1038.322818][T22766] openvswitch: netlink: Message has 4 unknown bytes.
[ 1038.374160][T22772] openvswitch: netlink: Flow key attr not present in new flow.
[ 1038.517680][T22774] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5993'.
[ 1038.537317][T22774] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5993'.
[ 1038.577706][T22774] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5993'.
[ 1038.736777][T22782] netlink: 'syz.0.5995': attribute type 10 has an invalid length.
[ 1038.895904][T22788] FAULT_INJECTION: forcing a failure.
[ 1038.895904][T22788] name failslab, interval 1, probability 0, space 0, times 0
[ 1038.953576][T22788] CPU: 0 PID: 22788 Comm: syz.3.5996 Not tainted syzkaller #0
[ 1038.961189][T22788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1038.971338][T22788] Call Trace:
[ 1038.974688][T22788]  <TASK>
[ 1038.977683][T22788]  dump_stack_lvl+0x18c/0x250
[ 1038.982442][T22788]  ? show_regs_print_info+0x20/0x20
[ 1038.987713][T22788]  ? load_image+0x400/0x400
[ 1038.992294][T22788]  ? __might_sleep+0xe0/0xe0
[ 1038.996994][T22788]  ? __lock_acquire+0x7d40/0x7d40
[ 1039.002106][T22788]  should_fail_ex+0x39d/0x4d0
[ 1039.006864][T22788]  should_failslab+0x9/0x20
[ 1039.011440][T22788]  slab_pre_alloc_hook+0x59/0x310
[ 1039.016545][T22788]  ? bpf_prog_test_run_skb+0x238/0x12b0
[ 1039.022181][T22788]  ? bpf_prog_test_run_skb+0x238/0x12b0
[ 1039.027887][T22788]  __kmem_cache_alloc_node+0x53/0x250
[ 1039.033350][T22788]  ? bpf_prog_test_run_skb+0x238/0x12b0
[ 1039.039028][T22788]  __kmalloc+0xa4/0x230
[ 1039.043302][T22788]  bpf_prog_test_run_skb+0x238/0x12b0
[ 1039.048751][T22788]  ? __fget_files+0x28/0x4b0
[ 1039.053494][T22788]  ? __fget_files+0x28/0x4b0
[ 1039.058164][T22788]  ? __fget_files+0x43d/0x4b0
[ 1039.062933][T22788]  ? cpu_online+0x60/0x60
[ 1039.067337][T22788]  bpf_prog_test_run+0x321/0x390
[ 1039.072364][T22788]  __sys_bpf+0x49d/0x890
[ 1039.076708][T22788]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1039.082179][T22788]  ? lock_chain_count+0x20/0x20
[ 1039.087191][T22788]  __x64_sys_bpf+0x7c/0x90
[ 1039.091681][T22788]  do_syscall_64+0x55/0xa0
[ 1039.096180][T22788]  ? clear_bhb_loop+0x40/0x90
[ 1039.101584][T22788]  ? clear_bhb_loop+0x40/0x90
[ 1039.106344][T22788]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1039.112339][T22788] RIP: 0033:0x7f679319c819
[ 1039.116907][T22788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1039.136674][T22788] RSP: 002b:00007f6793faa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1039.145192][T22788] RAX: ffffffffffffffda RBX: 00007f6793416090 RCX: 00007f679319c819
[ 1039.153239][T22788] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[ 1039.161302][T22788] RBP: 00007f6793faa090 R08: 0000000000000000 R09: 0000000000000000
[ 1039.169333][T22788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1039.177719][T22788] R13: 00007f6793416128 R14: 00007f6793416090 R15: 00007ffeeadb5f18
[ 1039.185781][T22788]  </TASK>
[ 1039.934980][T22800] netlink: 'syz.1.5998': attribute type 4 has an invalid length.
[ 1039.997918][T22800] netlink: 174100 bytes leftover after parsing attributes in process `syz.1.5998'.
[ 1040.109999][T22798] netlink: 'syz.0.6000': attribute type 10 has an invalid length.
[ 1040.126114][T22798] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.6000'.
[ 1040.146737][T22798] openvswitch: netlink: Flow key attr not present in new flow.
[ 1040.181367][T22796] netlink: 'syz.1.5998': attribute type 4 has an invalid length.
[ 1040.227561][T22796] netlink: 174100 bytes leftover after parsing attributes in process `syz.1.5998'.
[ 1040.700970][T22806] netlink: 'syz.3.6003': attribute type 10 has an invalid length.
[ 1040.727618][T22806] netlink: 'syz.3.6003': attribute type 10 has an invalid length.
[ 1040.746020][T22806] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6003'.
[ 1040.779440][T22806] openvswitch: netlink: Message has 4 unknown bytes.
[ 1041.218223][T22807] delete_channel: no stack
[ 1041.531322][T22828] netlink: 'syz.3.6010': attribute type 10 has an invalid length.
[ 1041.547527][T22828] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6010'.
[ 1041.577374][T22828] openvswitch: netlink: Flow key attr not present in new flow.
[ 1041.996717][T22841] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6015'.
[ 1042.036663][T22841] openvswitch: netlink: Message has 4 unknown bytes.
[ 1043.060892][T22850] team0: Device ipvlan1 failed to register rx_handler
[ 1043.172650][T22861] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.6021'.
[ 1043.185178][T22861] openvswitch: netlink: Flow key attr not present in new flow.
[ 1043.272258][T22863] FAULT_INJECTION: forcing a failure.
[ 1043.272258][T22863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1043.324869][T22863] CPU: 1 PID: 22863 Comm: syz.1.6022 Not tainted syzkaller #0
[ 1043.332439][T22863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1043.342565][T22863] Call Trace:
[ 1043.345923][T22863]  <TASK>
[ 1043.348913][T22863]  dump_stack_lvl+0x18c/0x250
[ 1043.353753][T22863]  ? show_regs_print_info+0x20/0x20
[ 1043.359024][T22863]  ? load_image+0x400/0x400
[ 1043.363611][T22863]  ? __might_fault+0xaa/0x120
[ 1043.368353][T22863]  ? __lock_acquire+0x7d40/0x7d40
[ 1043.373444][T22863]  should_fail_ex+0x39d/0x4d0
[ 1043.378638][T22863]  _copy_to_user+0x2f/0xa0
[ 1043.383153][T22863]  bpf_verifier_vlog+0x2fa/0x870
[ 1043.388206][T22863]  __btf_verifier_log+0xe3/0x140
[ 1043.393234][T22863]  ? btf_check_sec_info+0x350/0x350
[ 1043.398602][T22863]  ? __lock_acquire+0x7d40/0x7d40
[ 1043.403705][T22863]  ? btf_parse_hdr+0x1f5/0x710
[ 1043.408547][T22863]  btf_parse_hdr+0x3f2/0x710
[ 1043.413295][T22863]  btf_new_fd+0x397/0x9f0
[ 1043.417729][T22863]  ? bpf_btf_show_fdinfo+0x80/0x80
[ 1043.423009][T22863]  ? capable+0x88/0xe0
[ 1043.427151][T22863]  __sys_bpf+0x670/0x890
[ 1043.431560][T22863]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1043.437009][T22863]  ? lock_chain_count+0x20/0x20
[ 1043.441964][T22863]  __x64_sys_bpf+0x7c/0x90
[ 1043.446501][T22863]  do_syscall_64+0x55/0xa0
[ 1043.450990][T22863]  ? clear_bhb_loop+0x40/0x90
[ 1043.455738][T22863]  ? clear_bhb_loop+0x40/0x90
[ 1043.460494][T22863]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1043.466466][T22863] RIP: 0033:0x7f233939c819
[ 1043.470946][T22863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1043.491757][T22863] RSP: 002b:00007f233a253028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1043.500256][T22863] RAX: ffffffffffffffda RBX: 00007f2339615fa0 RCX: 00007f233939c819
[ 1043.508390][T22863] RDX: 0000000000000028 RSI: 00002000000007c0 RDI: 0000000000000012
[ 1043.516960][T22863] RBP: 00007f233a253090 R08: 0000000000000000 R09: 0000000000000000
[ 1043.525202][T22863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1043.533320][T22863] R13: 00007f2339616038 R14: 00007f2339615fa0 R15: 00007fffcd44bef8
[ 1043.541368][T22863]  </TASK>
[ 1043.943391][T22888] validate_nla: 4 callbacks suppressed
[ 1043.943429][T22888] netlink: 'syz.3.6031': attribute type 10 has an invalid length.
[ 1043.967301][T22888] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6031'.
[ 1043.997506][T22888] openvswitch: netlink: Flow key attr not present in new flow.
[ 1044.034956][T22892] netlink: 'syz.1.6033': attribute type 10 has an invalid length.
[ 1044.046778][T22892] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.6033'.
[ 1044.058681][T22892] openvswitch: netlink: Flow key attr not present in new flow.
[ 1044.213347][T22898] netlink: 'syz.3.6034': attribute type 8 has an invalid length.
[ 1044.237462][T22898] netlink: 'syz.3.6034': attribute type 1 has an invalid length.
[ 1044.247356][T22898] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.6034'.
[ 1044.270600][T22900] tap0: tun_chr_ioctl cmd 1074025677
[ 1044.281193][T22900] tap0: linktype set to 825
[ 1044.713844][T22916] netlink: 'syz.3.6042': attribute type 10 has an invalid length.
[ 1044.731421][T22916] openvswitch: netlink: Flow key attr not present in new flow.
[ 1044.850410][T22918] netlink: 'syz.3.6045': attribute type 10 has an invalid length.
[ 1044.867615][T22918] openvswitch: netlink: Flow key attr not present in new flow.
[ 1045.310859][T22932] __nla_validate_parse: 3 callbacks suppressed
[ 1045.310880][T22932] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6047'.
[ 1045.328157][T22932] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6047'.
[ 1045.348760][T22932] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6047'.
[ 1045.427869][T22934] netlink: 'syz.0.6048': attribute type 9 has an invalid length.
[ 1045.435727][T22934] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.6048'.
[ 1046.345692][T22947] netlink: 'syz.3.6054': attribute type 10 has an invalid length.
[ 1046.358429][T22947] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6054'.
[ 1046.368183][T22947] openvswitch: netlink: Flow key attr not present in new flow.
[ 1046.457847][T22949] netlink: 'syz.1.6053': attribute type 1 has an invalid length.
[ 1046.484463][T22949] netlink: 181400 bytes leftover after parsing attributes in process `syz.1.6053'.
[ 1047.201140][T22971] netlink: 'syz.2.6064': attribute type 10 has an invalid length.
[ 1047.209727][T22971] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6064'.
[ 1047.219850][T22971] openvswitch: netlink: Flow key attr not present in new flow.
[ 1047.817564][T22995] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6072'.
[ 1047.837583][T22995] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6072'.
[ 1047.861864][T22995] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6072'.
[ 1048.053613][T23003] openvswitch: netlink: Flow key attr not present in new flow.
[ 1049.291502][T23029] validate_nla: 2 callbacks suppressed
[ 1049.291524][T23029] netlink: 'syz.3.6086': attribute type 10 has an invalid length.
[ 1049.347437][T23029] openvswitch: netlink: Flow key attr not present in new flow.
[ 1049.461999][T23034] netlink: 'syz.0.6088': attribute type 21 has an invalid length.
[ 1050.524584][T23054] netlink: 'syz.3.6096': attribute type 10 has an invalid length.
[ 1050.571870][T23054] __nla_validate_parse: 3 callbacks suppressed
[ 1050.571894][T23054] netlink: 55 bytes leftover after parsing attributes in process `syz.3.6096'.
[ 1051.575026][T23062] netlink: 'syz.2.6098': attribute type 10 has an invalid length.
[ 1051.593630][T23062] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6098'.
[ 1051.606579][T23062] openvswitch: netlink: Flow key attr not present in new flow.
[ 1052.658486][T23094] netlink: 'syz.2.6109': attribute type 10 has an invalid length.
[ 1052.686675][T23094] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6109'.
[ 1052.720489][T23094] openvswitch: netlink: Flow key attr not present in new flow.
[ 1053.955980][T23111] netlink: 'syz.0.6115': attribute type 10 has an invalid length.
[ 1053.978025][T23111] netlink: 55 bytes leftover after parsing attributes in process `syz.0.6115'.
[ 1054.399982][T23116] netlink: 'syz.3.6118': attribute type 10 has an invalid length.
[ 1054.430059][T23116] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6118'.
[ 1054.480797][T23116] openvswitch: netlink: Flow key attr not present in new flow.
[ 1054.822629][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.837426][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.400438][T23131] À: port 1(vlan0) entered blocking state
[ 1055.409861][T23131] À: port 1(vlan0) entered disabled state
[ 1056.901256][T23148] netlink: 'syz.0.6127': attribute type 10 has an invalid length.
[ 1056.910643][T23148] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.6127'.
[ 1056.922634][T23148] openvswitch: netlink: Flow key attr not present in new flow.
[ 1057.083330][T23150] netlink: 14 bytes leftover after parsing attributes in process `syz.0.6128'.
[ 1057.672881][T23150] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1057.736606][T23150] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1057.795789][T23150] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[ 1057.843473][T23150] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1057.921841][T23154] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.6131'.
[ 1057.984422][T23150] bond0 (unregistering): Released all slaves
[ 1058.914337][T23176] netlink: 'syz.3.6136': attribute type 10 has an invalid length.
[ 1058.931067][T23176] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6136'.
[ 1058.952514][T23176] openvswitch: netlink: Flow key attr not present in new flow.
[ 1060.383588][T23193] sit0: entered allmulticast mode
[ 1060.479759][T23194] sit0: entered promiscuous mode
[ 1060.992168][T23199] GPL: port 1(vlan0) entered blocking state
[ 1061.030621][T23199] GPL: port 1(vlan0) entered disabled state
[ 1061.077010][T23199] vlan0: entered allmulticast mode
[ 1061.102342][T23199] veth0_vlan: entered allmulticast mode
[ 1061.113645][T23199] vlan0: entered promiscuous mode
[ 1061.214829][T23204] netlink: 14 bytes leftover after parsing attributes in process `syz.2.6143'.
[ 1061.500340][T23204] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1061.518091][T23206] netlink: 'syz.3.6145': attribute type 10 has an invalid length.
[ 1061.537795][T23206] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6145'.
[ 1061.568204][T23206] openvswitch: netlink: Flow key attr not present in new flow.
[ 1061.613381][T23204] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1061.643384][T23204] bond0 (unregistering): Released all slaves
[ 1061.704819][T23210] netlink: 830 bytes leftover after parsing attributes in process `syz.1.6146'.
[ 1062.538186][T23231] netlink: 'syz.0.6153': attribute type 10 has an invalid length.
[ 1062.551008][T23231] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.6153'.
[ 1062.563653][T23231] openvswitch: netlink: Flow key attr not present in new flow.
[ 1063.196288][T23241] netlink: 'syz.2.6156': attribute type 10 has an invalid length.
[ 1063.214192][T23241] netlink: 2 bytes leftover after parsing attributes in process `syz.2.6156'.
[ 1063.251793][T23241] hsr0: entered promiscuous mode
[ 1063.342730][T23243] netlink: 'syz.1.6157': attribute type 10 has an invalid length.
[ 1063.357714][T23243] netlink: 'syz.1.6157': attribute type 10 has an invalid length.
[ 1063.371781][T23243] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6157'.
[ 1063.386209][T23239] netlink: 'syz.0.6155': attribute type 39 has an invalid length.
[ 1063.398302][T23243] openvswitch: netlink: Message has 4 unknown bytes.
[ 1063.692068][T23239] hsr_slave_1 (unregistering): left promiscuous mode
[ 1063.789353][T23254] netlink: 'syz.1.6160': attribute type 10 has an invalid length.
[ 1063.814572][T23254] netlink: 212412 bytes leftover after parsing attributes in process `syz.1.6160'.
[ 1063.832273][T23254] openvswitch: netlink: Flow key attr not present in new flow.
[ 1063.905389][T23247] netlink: 14 bytes leftover after parsing attributes in process `syz.3.6158'.
[ 1064.024934][T23247] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1064.073555][T23247] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1064.112299][T23247] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1064.124050][T23247] bond0 (unregistering): (slave team0): Releasing backup interface
[ 1064.139608][T23247] bond0 (unregistering): Released all slaves
[ 1064.212676][T23252] netlink: 'syz.2.6159': attribute type 1 has an invalid length.
[ 1065.556591][T23278] netlink: 'syz.0.6169': attribute type 10 has an invalid length.
[ 1065.579567][T23278] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.6169'.
[ 1065.622178][T23278] openvswitch: netlink: Flow key attr not present in new flow.
[ 1065.746729][T23284] netlink: 'syz.1.6171': attribute type 10 has an invalid length.
[ 1065.764305][T23284] team0: Device veth1_macvtap is up. Set it down before adding it as a team port
[ 1066.799978][T23313] netlink: 'syz.0.6179': attribute type 10 has an invalid length.
[ 1066.811461][T23313] netlink: 'syz.0.6179': attribute type 10 has an invalid length.
[ 1066.839978][T23313] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6179'.
[ 1066.855942][T23313] openvswitch: netlink: Message has 4 unknown bytes.
[ 1066.978327][T23301] netlink: 'syz.1.6174': attribute type 39 has an invalid length.
[ 1067.115120][T23301] hsr_slave_1 (unregistering): left promiscuous mode
[ 1067.244199][T23315] netlink: 'syz.3.6180': attribute type 10 has an invalid length.
[ 1067.261742][T23315] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6180'.
[ 1067.276730][T23315] openvswitch: netlink: Flow key attr not present in new flow.
[ 1067.483300][T23323] netlink: 'syz.3.6182': attribute type 21 has an invalid length.
[ 1067.525367][T23323] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6182'.
[ 1067.632426][T23317] netlink: 'syz.2.6181': attribute type 10 has an invalid length.
[ 1067.634889][T23323] netlink: 'syz.3.6182': attribute type 27 has an invalid length.
[ 1067.647990][T23317] netlink: 'syz.2.6181': attribute type 10 has an invalid length.
[ 1067.715619][T23323] netlink: 'syz.3.6182': attribute type 4 has an invalid length.
[ 1067.722509][T23317] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6181'.
[ 1067.799897][T23323] netlink: 152 bytes leftover after parsing attributes in process `syz.3.6182'.
[ 1067.896846][T23317] openvswitch: netlink: Message has 4 unknown bytes.
[ 1069.524137][T23345] netlink: 'syz.0.6190': attribute type 10 has an invalid length.
[ 1069.530436][T23347] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.6191'.
[ 1069.535405][T23345] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.6190'.
[ 1069.558211][T23347] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.6191'.
[ 1069.576281][T23345] openvswitch: netlink: Flow key attr not present in new flow.
[ 1069.594115][T23348] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.6191'.
[ 1070.179780][T23350] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1070.436163][T23359] hsr_slave_1 (unregistering): left promiscuous mode
[ 1071.045396][T23381] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6202'.
[ 1071.084319][T23381] openvswitch: netlink: Flow key attr not present in new flow.
[ 1071.582885][T23383] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6203'.
[ 1071.601229][T23383] openvswitch: netlink: Message has 4 unknown bytes.
[ 1073.381604][T23418] validate_nla: 4 callbacks suppressed
[ 1073.381650][T23418] netlink: 'syz.0.6216': attribute type 10 has an invalid length.
[ 1073.408107][T23421] netlink: 'syz.2.6217': attribute type 10 has an invalid length.
[ 1073.410756][T23418] netlink: 'syz.0.6216': attribute type 10 has an invalid length.
[ 1073.436782][T23418] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6216'.
[ 1073.447723][T23421] netlink: 'syz.2.6217': attribute type 10 has an invalid length.
[ 1073.471321][T23418] openvswitch: netlink: Message has 4 unknown bytes.
[ 1073.491282][T23421] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6217'.
[ 1073.518587][T23421] openvswitch: netlink: Message has 4 unknown bytes.
[ 1076.358188][T23457] netlink: 'syz.1.6231': attribute type 21 has an invalid length.
[ 1076.408658][T23457] netlink: 156 bytes leftover after parsing attributes in process `syz.1.6231'.
[ 1076.502538][T23457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6231'.
[ 1077.739625][T23493] netlink: 'syz.1.6244': attribute type 2 has an invalid length.
[ 1077.975580][T23493] netlink: 'syz.1.6244': attribute type 29 has an invalid length.
[ 1078.355015][T23493] netlink: 'syz.1.6244': attribute type 29 has an invalid length.
[ 1078.468897][T23499] netlink: 'syz.1.6244': attribute type 29 has an invalid length.
[ 1078.556999][T23503] netlink: 'syz.1.6244': attribute type 29 has an invalid length.
[ 1081.327014][T23508] netlink: 60 bytes leftover after parsing attributes in process `syz.1.6247'.
[ 1081.779289][T23518] netlink: 'syz.0.6251': attribute type 10 has an invalid length.
[ 1081.815590][T23518] netlink: 'syz.0.6251': attribute type 10 has an invalid length.
[ 1081.861990][T23518] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6251'.
[ 1081.915880][T23518] openvswitch: netlink: Message has 4 unknown bytes.
[ 1082.422479][T23531] netlink: 175200 bytes leftover after parsing attributes in process `syz.1.6252'.
[ 1083.004608][T14581] Bluetooth: hci4: ISO packet for unknown connection handle 1854
[ 1083.015657][T14581] Bluetooth: hci4: ISO packet for unknown connection handle 1854
[ 1087.078771][T23595] netlink: 'syz.2.6277': attribute type 10 has an invalid length.
[ 1087.103144][T23595] netlink: 'syz.2.6277': attribute type 10 has an invalid length.
[ 1087.119377][T23595] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6277'.
[ 1087.136279][T23595] openvswitch: netlink: Message has 4 unknown bytes.
[ 1089.434879][T23616] netlink: 'syz.3.6285': attribute type 10 has an invalid length.
[ 1089.459718][T23616] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6285'.
[ 1089.477243][T23612] netlink: 'syz.1.6284': attribute type 10 has an invalid length.
[ 1089.483120][T23616] openvswitch: netlink: Flow key attr not present in new flow.
[ 1089.516082][T23612] netlink: 'syz.1.6284': attribute type 10 has an invalid length.
[ 1089.528258][T23612] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6284'.
[ 1089.559701][T23612] openvswitch: netlink: Message has 4 unknown bytes.
[ 1091.547910][T23638] netlink: 'syz.1.6292': attribute type 10 has an invalid length.
[ 1091.565604][T23638] netlink: 'syz.1.6292': attribute type 10 has an invalid length.
[ 1091.600864][T23638] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6292'.
[ 1091.667175][T23638] openvswitch: netlink: Message has 4 unknown bytes.
[ 1091.678744][T23637] netlink: 'syz.3.6291': attribute type 10 has an invalid length.
[ 1091.697455][T23637] netlink: 'syz.3.6291': attribute type 10 has an invalid length.
[ 1091.724481][T23637] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6291'.
[ 1091.768146][T23637] openvswitch: netlink: Message has 4 unknown bytes.
[ 1092.238913][T23647] netlink: 'syz.2.6295': attribute type 10 has an invalid length.
[ 1092.252568][T23647] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6295'.
[ 1092.277327][T23647] openvswitch: netlink: Flow key attr not present in new flow.
[ 1092.891470][T23651] netlink: 'syz.3.6297': attribute type 10 has an invalid length.
[ 1092.905130][T23651] netlink: 'syz.3.6297': attribute type 10 has an invalid length.
[ 1092.918521][T23651] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6297'.
[ 1092.948094][T23651] openvswitch: netlink: Message has 4 unknown bytes.
[ 1094.124695][T23665] netlink: 55631 bytes leftover after parsing attributes in process `syz.2.6303'.
[ 1094.153184][T23665] netlink: 6328 bytes leftover after parsing attributes in process `syz.2.6303'.
[ 1094.289802][T14581] Bluetooth: hci0: Malformed LE Event: 0x0d
[ 1094.301356][T23664] netlink: 10 bytes leftover after parsing attributes in process `syz.3.6304'.
[ 1095.452993][T23675] netlink: 'syz.0.6305': attribute type 10 has an invalid length.
[ 1095.492663][T23675] netlink: 'syz.0.6305': attribute type 10 has an invalid length.
[ 1095.551196][T23675] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6305'.
[ 1095.625789][T23679] netlink: 'syz.1.6306': attribute type 10 has an invalid length.
[ 1095.640058][T23675] openvswitch: netlink: Message has 4 unknown bytes.
[ 1095.678025][T23679] netlink: 'syz.1.6306': attribute type 10 has an invalid length.
[ 1095.743925][T23679] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6306'.
[ 1095.803740][T23681] netlink: 'syz.3.6308': attribute type 10 has an invalid length.
[ 1095.817112][T23679] openvswitch: netlink: Message has 4 unknown bytes.
[ 1095.836469][T23681] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.6308'.
[ 1095.844230][T23683] netlink: 'syz.2.6309': attribute type 10 has an invalid length.
[ 1095.884168][T23683] netlink: 'syz.2.6309': attribute type 10 has an invalid length.
[ 1095.910746][T23683] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6309'.
[ 1095.910771][T23681] openvswitch: netlink: Flow key attr not present in new flow.
[ 1095.949597][T23683] openvswitch: netlink: Message has 4 unknown bytes.
[ 1096.181914][T23687] FAULT_INJECTION: forcing a failure.
[ 1096.181914][T23687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1096.211560][T23687] CPU: 1 PID: 23687 Comm: syz.0.6318 Not tainted syzkaller #0
[ 1096.220735][T23687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1096.232982][T23687] Call Trace:
[ 1096.236631][T23687]  <TASK>
[ 1096.239745][T23687]  dump_stack_lvl+0x18c/0x250
[ 1096.246601][T23687]  ? show_regs_print_info+0x20/0x20
[ 1096.252959][T23687]  ? load_image+0x400/0x400
[ 1096.261160][T23687]  ? __lock_acquire+0x7d40/0x7d40
[ 1096.268333][T23687]  ? snprintf+0xe9/0x140
[ 1096.274298][T23687]  should_fail_ex+0x39d/0x4d0
[ 1096.281040][T23687]  _copy_to_user+0x2f/0xa0
[ 1096.289479][T23687]  simple_read_from_buffer+0xe7/0x150
[ 1096.298322][T23687]  proc_fail_nth_read+0x1e8/0x260
[ 1096.305323][T23687]  ? proc_fault_inject_write+0x360/0x360
[ 1096.311752][T23687]  ? fsnotify_perm+0x271/0x5e0
[ 1096.317773][T23687]  ? proc_fault_inject_write+0x360/0x360
[ 1096.324904][T23687]  vfs_read+0x28b/0x970
[ 1096.330640][T23687]  ? kernel_read+0x1e0/0x1e0
[ 1096.336172][T23687]  ? __fget_files+0x28/0x4b0
[ 1096.341255][T23687]  ? __fget_files+0x28/0x4b0
[ 1096.348056][T23687]  ? __fget_files+0x43d/0x4b0
[ 1096.355559][T23687]  ? __fdget_pos+0x2a3/0x330
[ 1096.361582][T23687]  ? ksys_read+0x75/0x260
[ 1096.368083][T23687]  ksys_read+0x150/0x260
[ 1096.375551][T23687]  ? vfs_write+0x990/0x990
[ 1096.381829][T23687]  ? lockdep_hardirqs_on+0x98/0x150
[ 1096.387726][T23687]  do_syscall_64+0x55/0xa0
[ 1096.394830][T23687]  ? clear_bhb_loop+0x40/0x90
[ 1096.401091][T23687]  ? clear_bhb_loop+0x40/0x90
[ 1096.407806][T23687]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1096.414796][T23687] RIP: 0033:0x7f444015d04e
[ 1096.420734][T23687] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1096.445137][T23687] RSP: 002b:00007f4440fa0fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1096.457303][T23687] RAX: ffffffffffffffda RBX: 00007f4440fa16c0 RCX: 00007f444015d04e
[ 1096.467662][T23687] RDX: 000000000000000f RSI: 00007f4440fa10a0 RDI: 0000000000000004
[ 1096.477714][T23687] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[ 1096.488026][T23687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1096.497114][T23687] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[ 1096.507646][T23687]  </TASK>
[ 1098.158179][T23714] netlink: 'syz.0.6317': attribute type 27 has an invalid length.
[ 1098.178152][T23714] netlink: 'syz.0.6317': attribute type 4 has an invalid length.
[ 1098.206600][T23714] netlink: 152 bytes leftover after parsing attributes in process `syz.0.6317'.
[ 1098.504208][T23717] netlink: 'syz.1.6319': attribute type 10 has an invalid length.
[ 1098.520011][T23717] netlink: 'syz.1.6319': attribute type 10 has an invalid length.
[ 1098.532201][T23717] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6319'.
[ 1098.562094][T23717] openvswitch: netlink: Message has 4 unknown bytes.
[ 1100.640735][T23768] netlink: 'syz.0.6331': attribute type 10 has an invalid length.
[ 1100.654998][T23768] netlink: 'syz.0.6331': attribute type 10 has an invalid length.
[ 1100.669353][T23768] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6331'.
[ 1100.683367][T23768] openvswitch: netlink: Message has 4 unknown bytes.
[ 1101.163443][T23776] netlink: 'syz.0.6335': attribute type 10 has an invalid length.
[ 1101.179092][T23776] netlink: 'syz.0.6335': attribute type 10 has an invalid length.
[ 1101.203841][T23776] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6335'.
[ 1101.240664][T23776] openvswitch: netlink: Message has 4 unknown bytes.
[ 1101.283797][T23777] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.6336'.
[ 1101.295455][T23777] netlink: 6328 bytes leftover after parsing attributes in process `syz.3.6336'.
[ 1101.589966][T14581] Bluetooth: hci1: Malformed LE Event: 0x0d
[ 1102.308014][T23797] netlink: 'syz.0.6343': attribute type 10 has an invalid length.
[ 1102.324754][T23797] netlink: 'syz.0.6343': attribute type 10 has an invalid length.
[ 1102.348230][T23797] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6343'.
[ 1102.393510][T23797] openvswitch: netlink: Message has 4 unknown bytes.
[ 1102.524377][T23802] FAULT_INJECTION: forcing a failure.
[ 1102.524377][T23802] name failslab, interval 1, probability 0, space 0, times 0
[ 1102.543348][T23802] CPU: 1 PID: 23802 Comm: syz.1.6345 Not tainted syzkaller #0
[ 1102.552442][T23802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1102.564606][T23802] Call Trace:
[ 1102.568391][T23802]  <TASK>
[ 1102.572277][T23802]  dump_stack_lvl+0x18c/0x250
[ 1102.578997][T23802]  ? show_regs_print_info+0x20/0x20
[ 1102.586988][T23802]  ? load_image+0x400/0x400
[ 1102.592736][T23802]  ? __might_sleep+0xe0/0xe0
[ 1102.599131][T23802]  ? __lock_acquire+0x7d40/0x7d40
[ 1102.607423][T23802]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[ 1102.615823][T23802]  should_fail_ex+0x39d/0x4d0
[ 1102.621866][T23802]  should_failslab+0x9/0x20
[ 1102.627334][T23802]  slab_pre_alloc_hook+0x59/0x310
[ 1102.634605][T23802]  kmem_cache_alloc_lru+0x4d/0x2d0
[ 1102.641361][T23802]  ? __d_alloc+0x31/0x730
[ 1102.646975][T23802]  __d_alloc+0x31/0x730
[ 1102.653104][T23802]  ? __lock_acquire+0x7d40/0x7d40
[ 1102.658915][T23802]  ? do_raw_spin_lock+0x11f/0x2c0
[ 1102.665088][T23802]  d_alloc_pseudo+0x1d/0x70
[ 1102.670861][T23802]  alloc_file_pseudo+0xe4/0x210
[ 1102.677505][T23802]  ? alloc_empty_backing_file+0xe0/0xe0
[ 1102.684387][T23802]  ? alloc_fd+0x58f/0x630
[ 1102.690871][T23802]  anon_inode_getfd+0xca/0x1c0
[ 1102.698300][T23802]  btf_new_fd+0x856/0x9f0
[ 1102.703642][T23802]  ? bpf_btf_show_fdinfo+0x80/0x80
[ 1102.710522][T23802]  ? capable+0x88/0xe0
[ 1102.716362][T23802]  __sys_bpf+0x670/0x890
[ 1102.721744][T23802]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1102.728948][T23802]  ? lock_chain_count+0x20/0x20
[ 1102.735106][T23802]  __x64_sys_bpf+0x7c/0x90
[ 1102.741155][T23802]  do_syscall_64+0x55/0xa0
[ 1102.747696][T23802]  ? clear_bhb_loop+0x40/0x90
[ 1102.753227][T23802]  ? clear_bhb_loop+0x40/0x90
[ 1102.760098][T23802]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1102.769187][T23802] RIP: 0033:0x7f233939c819
[ 1102.774712][T23802] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1102.800056][T23802] RSP: 002b:00007f233a253028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1102.812421][T23802] RAX: ffffffffffffffda RBX: 00007f2339615fa0 RCX: 00007f233939c819
[ 1102.824864][T23802] RDX: 0000000000000020 RSI: 0000200000000340 RDI: 0000000000000012
[ 1102.834472][T23802] RBP: 00007f233a253090 R08: 0000000000000000 R09: 0000000000000000
[ 1102.845549][T23802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1102.856123][T23802] R13: 00007f2339616038 R14: 00007f2339615fa0 R15: 00007fffcd44bef8
[ 1102.868399][T23802]  </TASK>
[ 1103.113468][T23804] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6346'.
[ 1103.126444][T23804] openvswitch: netlink: Message has 4 unknown bytes.
[ 1103.171461][T23809] FAULT_INJECTION: forcing a failure.
[ 1103.171461][T23809] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.192636][T23809] CPU: 0 PID: 23809 Comm: syz.0.6348 Not tainted syzkaller #0
[ 1103.201462][T23809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1103.215191][T23809] Call Trace:
[ 1103.220112][T23809]  <TASK>
[ 1103.224432][T23809]  dump_stack_lvl+0x18c/0x250
[ 1103.229687][T23809]  ? show_regs_print_info+0x20/0x20
[ 1103.236298][T23809]  ? load_image+0x400/0x400
[ 1103.241508][T23809]  ? __might_sleep+0xe0/0xe0
[ 1103.246941][T23809]  ? __lock_acquire+0x7d40/0x7d40
[ 1103.253319][T23809]  should_fail_ex+0x39d/0x4d0
[ 1103.259496][T23809]  should_failslab+0x9/0x20
[ 1103.264957][T23809]  slab_pre_alloc_hook+0x59/0x310
[ 1103.271532][T23809]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1103.278928][T23809]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1103.286848][T23809]  __kmem_cache_alloc_node+0x53/0x250
[ 1103.293538][T23809]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 1103.299959][T23809]  __kmalloc+0xa4/0x230
[ 1103.306203][T23809]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1103.313743][T23809]  tomoyo_path_number_perm+0x248/0x620
[ 1103.320840][T23809]  ? tomoyo_path_number_perm+0x217/0x620
[ 1103.327889][T23809]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1103.334171][T23809]  ? ksys_write+0x1c4/0x260
[ 1103.340715][T23809]  ? __fget_files+0x28/0x4b0
[ 1103.346419][T23809]  ? __fget_files+0x28/0x4b0
[ 1103.355624][T23809]  security_file_ioctl+0x70/0xa0
[ 1103.361017][T23809]  __se_sys_ioctl+0x48/0x170
[ 1103.366816][T23809]  do_syscall_64+0x55/0xa0
[ 1103.372204][T23809]  ? clear_bhb_loop+0x40/0x90
[ 1103.380146][T23809]  ? clear_bhb_loop+0x40/0x90
[ 1103.387095][T23809]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1103.395644][T23809] RIP: 0033:0x7f444019c819
[ 1103.401507][T23809] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1103.426005][T23809] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1103.437559][T23809] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[ 1103.449022][T23809] RDX: 0000200000000080 RSI: 0000000000008946 RDI: 0000000000000005
[ 1103.460343][T23809] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[ 1103.469560][T23809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1103.479525][T23809] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[ 1103.489672][T23809]  </TASK>
[ 1103.497815][T23809] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1103.656688][T23817] sctp: [Deprecated]: syz.0.6351 (pid 23817) Use of int in maxseg socket option.
[ 1103.656688][T23817] Use struct sctp_assoc_value instead
[ 1104.318741][T23837] validate_nla: 2 callbacks suppressed
[ 1104.318962][T23837] netlink: 'syz.3.6357': attribute type 10 has an invalid length.
[ 1104.351939][T23837] netlink: 'syz.3.6357': attribute type 10 has an invalid length.
[ 1104.366531][T23837] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6357'.
[ 1104.389277][T23837] openvswitch: netlink: Message has 4 unknown bytes.
[ 1105.022042][T23846] netlink: 'syz.2.6362': attribute type 10 has an invalid length.
[ 1105.033462][T23846] netlink: 'syz.2.6362': attribute type 10 has an invalid length.
[ 1105.044056][T23846] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6362'.
[ 1105.060546][T23846] openvswitch: netlink: Message has 4 unknown bytes.
[ 1105.272065][T23855] netlink: 'syz.3.6366': attribute type 11 has an invalid length.
[ 1105.290336][T23855] netlink: 184116 bytes leftover after parsing attributes in process `syz.3.6366'.
[ 1105.845173][T23868] netlink: 'syz.2.6369': attribute type 10 has an invalid length.
[ 1105.868295][T23868] netlink: 'syz.2.6369': attribute type 10 has an invalid length.
[ 1105.894717][T23868] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6369'.
[ 1105.934800][T23868] openvswitch: netlink: Message has 4 unknown bytes.
[ 1106.575066][T23882] netlink: 'syz.2.6375': attribute type 10 has an invalid length.
[ 1106.607569][T23882] netlink: 'syz.2.6375': attribute type 10 has an invalid length.
[ 1106.624072][T23882] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6375'.
[ 1106.650281][T23882] openvswitch: netlink: Message has 4 unknown bytes.
[ 1107.025888][T23890] FAULT_INJECTION: forcing a failure.
[ 1107.025888][T23890] name failslab, interval 1, probability 0, space 0, times 0
[ 1107.044713][T23890] CPU: 1 PID: 23890 Comm: syz.0.6378 Not tainted syzkaller #0
[ 1107.054417][T23890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1107.070749][T23890] Call Trace:
[ 1107.075407][T23890]  <TASK>
[ 1107.080824][T23890]  dump_stack_lvl+0x18c/0x250
[ 1107.087588][T23890]  ? show_regs_print_info+0x20/0x20
[ 1107.095985][T23890]  ? load_image+0x400/0x400
[ 1107.103388][T23890]  ? __might_sleep+0xe0/0xe0
[ 1107.109968][T23890]  ? __lock_acquire+0x7d40/0x7d40
[ 1107.115613][T23890]  should_fail_ex+0x39d/0x4d0
[ 1107.121006][T23890]  should_failslab+0x9/0x20
[ 1107.126977][T23890]  slab_pre_alloc_hook+0x59/0x310
[ 1107.134486][T23890]  kmem_cache_alloc+0x5a/0x2d0
[ 1107.139867][T23890]  ? __kernfs_new_node+0xe5/0x810
[ 1107.147758][T23890]  __kernfs_new_node+0xe5/0x810
[ 1107.153506][T23890]  ? idr_get_free+0x8db/0xa60
[ 1107.159176][T23890]  ? kernfs_new_node+0x260/0x260
[ 1107.164912][T23890]  ? verify_lock_unused+0x140/0x140
[ 1107.170867][T23890]  ? node_tag_clear+0x1ec/0x310
[ 1107.176348][T23890]  kernfs_new_node+0x14c/0x260
[ 1107.182520][T23890]  __kernfs_create_file+0x4b/0x2e0
[ 1107.188524][T23890]  sysfs_add_file_mode_ns+0x238/0x300
[ 1107.194948][T23890]  internal_create_group+0x434/0xd10
[ 1107.201458][T23890]  ? kernfs_add_one+0x14e/0x6b0
[ 1107.207209][T23890]  ? sysfs_create_group+0x20/0x20
[ 1107.213558][T23890]  ? up_write+0x1c3/0x410
[ 1107.219717][T23890]  sysfs_create_groups+0x59/0x120
[ 1107.226331][T23890]  device_add_attrs+0xdf/0x830
[ 1107.232667][T23890]  ? device_add_class_symlinks+0x240/0x240
[ 1107.233440][T23891] netlink: 'syz.3.6377': attribute type 10 has an invalid length.
[ 1107.239739][T23890]  ? device_add_class_symlinks+0x21f/0x240
[ 1107.239840][T23890]  device_add+0x528/0xc20
[ 1107.239871][T23890]  ? device_initialize+0x24b/0x440
[ 1107.239903][T23890]  netdev_register_kobject+0x188/0x320
[ 1107.239934][T23890]  register_netdevice+0x12ee/0x1bb0
[ 1107.239971][T23890]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[ 1107.239995][T23890]  ? netif_stacked_transfer_operstate+0x210/0x210
[ 1107.240014][T23890]  ? idr_alloc+0x20e/0x2f0
[ 1107.240038][T23890]  ? mutex_unlock+0x10/0x10
[ 1107.240059][T23890]  ? vscnprintf+0x80/0x80
[ 1107.240092][T23890]  ? net_generic+0x1e/0x240
[ 1107.269203][T23891] netlink: 'syz.3.6377': attribute type 10 has an invalid length.
[ 1107.274723][T23890]  ? net_generic+0x1e/0x240
[ 1107.274763][T23890]  ? radix_tree_lookup+0x267/0x280
[ 1107.274790][T23890]  ppp_dev_configure+0x84b/0xad0
[ 1107.274835][T23890]  ppp_ioctl+0x6e2/0x1a90
[ 1107.274886][T23890]  ? ppp_poll+0x250/0x250
[ 1107.274911][T23890]  ? __fget_files+0x28/0x4b0
[ 1107.274955][T23890]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1107.318927][T23891] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6377'.
[ 1107.328352][T23890]  ? security_file_ioctl+0x80/0xa0
[ 1107.328411][T23890]  ? ppp_poll+0x250/0x250
[ 1107.328436][T23890]  __se_sys_ioctl+0xfd/0x170
[ 1107.328468][T23890]  do_syscall_64+0x55/0xa0
[ 1107.328498][T23890]  ? clear_bhb_loop+0x40/0x90
[ 1107.328525][T23890]  ? clear_bhb_loop+0x40/0x90
[ 1107.328561][T23890]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1107.328741][T23890] RIP: 0033:0x7f444019c819
[ 1107.328765][T23890] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1107.328785][T23890] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1107.328813][T23890] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[ 1107.328829][T23890] RDX: 000000110e22fff6 RSI: 00000000c004743e RDI: 0000000000000004
[ 1107.328844][T23890] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[ 1107.328858][T23890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1107.329064][T23890] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[ 1107.329291][T23890]  </TASK>
[ 1107.538199][T23891] openvswitch: netlink: Message has 4 unknown bytes.
[ 1107.836807][T23896] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6380'.
[ 1107.944790][T23902] FAULT_INJECTION: forcing a failure.
[ 1107.944790][T23902] name failslab, interval 1, probability 0, space 0, times 0
[ 1107.989906][T23902] CPU: 0 PID: 23902 Comm: syz.3.6383 Not tainted syzkaller #0
[ 1107.999131][T23902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1108.012301][T23902] Call Trace:
[ 1108.015913][T23902]  <TASK>
[ 1108.019830][T23902]  dump_stack_lvl+0x18c/0x250
[ 1108.025159][T23902]  ? sctp_sendmsg+0x1575/0x28c0
[ 1108.030842][T23902]  ? ___sys_sendmsg+0x2a6/0x360
[ 1108.036298][T23902]  ? show_regs_print_info+0x20/0x20
[ 1108.042467][T23902]  ? load_image+0x400/0x400
[ 1108.049199][T23902]  should_fail_ex+0x39d/0x4d0
[ 1108.055133][T23902]  should_failslab+0x9/0x20
[ 1108.061654][T23902]  slab_pre_alloc_hook+0x59/0x310
[ 1108.068353][T23902]  ? sctp_add_bind_addr+0x8c/0x360
[ 1108.074867][T23902]  __kmem_cache_alloc_node+0x53/0x250
[ 1108.083587][T23902]  ? sctp_add_bind_addr+0x8c/0x360
[ 1108.089913][T23902]  kmalloc_trace+0x2a/0xe0
[ 1108.095741][T23902]  sctp_add_bind_addr+0x8c/0x360
[ 1108.102613][T23902]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1108.110257][T23902]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1108.119808][T23902]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1108.126840][T23902]  ? sctp_v4_is_any+0x35/0x60
[ 1108.132224][T23902]  ? sctp_copy_one_addr+0x8c/0x350
[ 1108.138038][T23902]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1108.145101][T23902]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1108.152734][T23902]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1108.158963][T23902]  ? __sctp_connect+0xd80/0xd80
[ 1108.165821][T23902]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1108.172808][T23902]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1108.180704][T23902]  ? security_sctp_bind_connect+0x89/0xb0
[ 1108.188258][T23902]  sctp_sendmsg+0x1575/0x28c0
[ 1108.195740][T23902]  ? sctp_getsockopt+0xb60/0xb60
[ 1108.203022][T23902]  ? aa_sk_perm+0x83c/0x970
[ 1108.209532][T23902]  ? aa_af_perm+0x330/0x330
[ 1108.215260][T23902]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1108.222992][T23902]  ? sock_rps_record_flow+0x19/0x3f0
[ 1108.229591][T23902]  ? inet_sendmsg+0xe9/0x2f0
[ 1108.235394][T23902]  ? inet_send_prepare+0x260/0x260
[ 1108.243559][T23902]  ____sys_sendmsg+0x5ba/0x960
[ 1108.249626][T23902]  ? __lock_acquire+0x7d40/0x7d40
[ 1108.258207][T23902]  ? __asan_memset+0x22/0x40
[ 1108.264578][T23902]  ? __sys_sendmsg_sock+0x30/0x30
[ 1108.270549][T23902]  ? __import_iovec+0x5f2/0x850
[ 1108.279499][T23902]  ? import_iovec+0x73/0xa0
[ 1108.285225][T23902]  ___sys_sendmsg+0x2a6/0x360
[ 1108.290848][T23902]  ? get_pid_task+0x20/0x1e0
[ 1108.296933][T23902]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1108.303814][T23902]  ? __lock_acquire+0x7d40/0x7d40
[ 1108.310946][T23902]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1108.316141][T23902]  ? __x64_sys_sendmsg+0x80/0x80
[ 1108.322835][T23902]  ? lockdep_hardirqs_on+0x98/0x150
[ 1108.329489][T23902]  do_syscall_64+0x55/0xa0
[ 1108.336061][T23902]  ? clear_bhb_loop+0x40/0x90
[ 1108.341846][T23902]  ? clear_bhb_loop+0x40/0x90
[ 1108.347213][T23902]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1108.354790][T23902] RIP: 0033:0x7f679319c819
[ 1108.360426][T23902] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1108.385520][T23902] RSP: 002b:00007f6793fcb028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1108.398291][T23902] RAX: ffffffffffffffda RBX: 00007f6793415fa0 RCX: 00007f679319c819
[ 1108.409016][T23902] RDX: 00000000000003e8 RSI: 00002000000004c0 RDI: 0000000000000003
[ 1108.419715][T23902] RBP: 00007f6793fcb090 R08: 0000000000000000 R09: 0000000000000000
[ 1108.430968][T23902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1108.442354][T23902] R13: 00007f6793416038 R14: 00007f6793415fa0 R15: 00007ffeeadb5f18
[ 1108.453656][T23902]  </TASK>
[ 1108.484820][T23906] FAULT_INJECTION: forcing a failure.
[ 1108.484820][T23906] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1108.522093][T23906] CPU: 1 PID: 23906 Comm: syz.0.6382 Not tainted syzkaller #0
[ 1108.531832][T23906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1108.544880][T23906] Call Trace:
[ 1108.549718][T23906]  <TASK>
[ 1108.553764][T23906]  dump_stack_lvl+0x18c/0x250
[ 1108.560951][T23906]  ? show_regs_print_info+0x20/0x20
[ 1108.567075][T23906]  ? load_image+0x400/0x400
[ 1108.572834][T23906]  ? __lock_acquire+0x7d40/0x7d40
[ 1108.579865][T23906]  ? snprintf+0xe9/0x140
[ 1108.585240][T23906]  should_fail_ex+0x39d/0x4d0
[ 1108.593963][T23906]  _copy_to_user+0x2f/0xa0
[ 1108.599258][T23906]  simple_read_from_buffer+0xe7/0x150
[ 1108.606416][T23906]  proc_fail_nth_read+0x1e8/0x260
[ 1108.613668][T23906]  ? proc_fault_inject_write+0x360/0x360
[ 1108.620388][T23906]  ? fsnotify_perm+0x271/0x5e0
[ 1108.630507][T23906]  ? proc_fault_inject_write+0x360/0x360
[ 1108.638251][T23906]  vfs_read+0x28b/0x970
[ 1108.644947][T23906]  ? kernel_read+0x1e0/0x1e0
[ 1108.651027][T23906]  ? __fget_files+0x28/0x4b0
[ 1108.658101][T23906]  ? __fget_files+0x28/0x4b0
[ 1108.664872][T23906]  ? __fget_files+0x43d/0x4b0
[ 1108.673094][T23906]  ? __fdget_pos+0x2a3/0x330
[ 1108.679905][T23906]  ? ksys_read+0x75/0x260
[ 1108.685837][T23906]  ksys_read+0x150/0x260
[ 1108.691666][T23906]  ? vfs_write+0x990/0x990
[ 1108.699094][T23906]  ? lockdep_hardirqs_on+0x98/0x150
[ 1108.705541][T23906]  do_syscall_64+0x55/0xa0
[ 1108.712394][T23906]  ? clear_bhb_loop+0x40/0x90
[ 1108.718244][T23906]  ? clear_bhb_loop+0x40/0x90
[ 1108.724154][T23906]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1108.732322][T23906] RIP: 0033:0x7f444015d04e
[ 1108.737545][T23906] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1108.763904][T23906] RSP: 002b:00007f4440f7ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1108.774055][T23906] RAX: ffffffffffffffda RBX: 00007f4440f806c0 RCX: 00007f444015d04e
[ 1108.786340][T23906] RDX: 000000000000000f RSI: 00007f4440f800a0 RDI: 0000000000000005
[ 1108.798685][T23906] RBP: 00007f4440f80090 R08: 0000000000000000 R09: 0000000000000000
[ 1108.808956][T23906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1108.818749][T23906] R13: 00007f4440416128 R14: 00007f4440416090 R15: 00007ffc04d65398
[ 1108.828332][T23906]  </TASK>
[ 1109.362176][T23913] validate_nla: 1 callbacks suppressed
[ 1109.362247][T23913] netlink: 'syz.2.6386': attribute type 10 has an invalid length.
[ 1109.406585][T23913] netlink: 'syz.2.6386': attribute type 10 has an invalid length.
[ 1109.436822][T23913] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6386'.
[ 1109.483011][T23913] openvswitch: netlink: Message has 4 unknown bytes.
[ 1109.624942][T23918] netlink: 'syz.3.6388': attribute type 10 has an invalid length.
[ 1109.638301][T23918] netlink: 'syz.3.6388': attribute type 10 has an invalid length.
[ 1109.649668][T23918] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6388'.
[ 1109.676315][T23918] openvswitch: netlink: Message has 4 unknown bytes.
[ 1110.265483][T23929] netlink: 14546 bytes leftover after parsing attributes in process `syz.3.6392'.
[ 1111.051491][T23935] netlink: 156 bytes leftover after parsing attributes in process `syz.1.6394'.
[ 1111.132068][T23941] netlink: 156 bytes leftover after parsing attributes in process `syz.1.6394'.
[ 1111.936627][T23961] netlink: 'syz.0.6400': attribute type 10 has an invalid length.
[ 1112.011678][T23961] netlink: 'syz.0.6400': attribute type 10 has an invalid length.
[ 1112.036549][T23961] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6400'.
[ 1112.089641][T23961] openvswitch: netlink: Message has 4 unknown bytes.
[ 1112.433534][T23969] netlink: 14546 bytes leftover after parsing attributes in process `syz.2.6405'.
[ 1112.951741][T23984] netlink: 14546 bytes leftover after parsing attributes in process `syz.0.6418'.
[ 1113.470367][T23996] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.6414'.
[ 1113.979271][T24006] netlink: 'syz.2.6415': attribute type 1 has an invalid length.
[ 1114.091700][T24010] netlink: 'syz.2.6415': attribute type 1 has an invalid length.
[ 1114.127377][T24006] netlink: 16098 bytes leftover after parsing attributes in process `syz.2.6415'.
[ 1115.655403][T24025] FAULT_INJECTION: forcing a failure.
[ 1115.655403][T24025] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.713303][T24025] CPU: 0 PID: 24025 Comm: syz.0.6422 Not tainted syzkaller #0
[ 1115.721569][T24025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1115.735775][T24025] Call Trace:
[ 1115.739787][T24025]  <TASK>
[ 1115.744184][T24025]  dump_stack_lvl+0x18c/0x250
[ 1115.752452][T24025]  ? sctp_sendmsg+0x1575/0x28c0
[ 1115.760178][T24025]  ? ___sys_sendmsg+0x2a6/0x360
[ 1115.767807][T24025]  ? show_regs_print_info+0x20/0x20
[ 1115.773773][T24025]  ? load_image+0x400/0x400
[ 1115.779107][T24025]  should_fail_ex+0x39d/0x4d0
[ 1115.785848][T24025]  should_failslab+0x9/0x20
[ 1115.791671][T24025]  slab_pre_alloc_hook+0x59/0x310
[ 1115.799066][T24025]  ? sctp_add_bind_addr+0x8c/0x360
[ 1115.805323][T24025]  __kmem_cache_alloc_node+0x53/0x250
[ 1115.812465][T24025]  ? sctp_add_bind_addr+0x8c/0x360
[ 1115.818471][T24025]  kmalloc_trace+0x2a/0xe0
[ 1115.823966][T24025]  sctp_add_bind_addr+0x8c/0x360
[ 1115.830717][T24025]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1115.838053][T24025]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1115.845394][T24025]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1115.854101][T24025]  ? sctp_v4_is_any+0x35/0x60
[ 1115.860210][T24025]  ? sctp_copy_one_addr+0x8c/0x350
[ 1115.867067][T24025]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1115.873323][T24025]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1115.882426][T24025]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1115.890980][T24025]  ? __sctp_connect+0xd80/0xd80
[ 1115.897123][T24025]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1115.904951][T24025]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1115.912850][T24025]  ? security_sctp_bind_connect+0x89/0xb0
[ 1115.920828][T24025]  sctp_sendmsg+0x1575/0x28c0
[ 1115.926245][T24025]  ? sctp_getsockopt+0xb60/0xb60
[ 1115.933897][T24025]  ? aa_sk_perm+0x83c/0x970
[ 1115.939449][T24025]  ? aa_af_perm+0x330/0x330
[ 1115.945954][T24025]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1115.955439][T24025]  ? sock_rps_record_flow+0x19/0x3f0
[ 1115.962651][T24025]  ? inet_sendmsg+0xe9/0x2f0
[ 1115.968450][T24025]  ? inet_send_prepare+0x260/0x260
[ 1115.976168][T24025]  ____sys_sendmsg+0x5ba/0x960
[ 1115.982943][T24025]  ? __lock_acquire+0x7d40/0x7d40
[ 1115.989019][T24025]  ? __asan_memset+0x22/0x40
[ 1115.995150][T24025]  ? __sys_sendmsg_sock+0x30/0x30
[ 1116.001862][T24025]  ? __import_iovec+0x5f2/0x850
[ 1116.008466][T24025]  ? import_iovec+0x73/0xa0
[ 1116.017259][T24025]  ___sys_sendmsg+0x2a6/0x360
[ 1116.024419][T24025]  ? get_pid_task+0x20/0x1e0
[ 1116.029671][T24025]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1116.035511][T24025]  ? __lock_acquire+0x7d40/0x7d40
[ 1116.041460][T24025]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1116.047809][T24025]  ? __x64_sys_sendmsg+0x80/0x80
[ 1116.054144][T24025]  ? lockdep_hardirqs_on+0x98/0x150
[ 1116.060684][T24025]  do_syscall_64+0x55/0xa0
[ 1116.068278][T24025]  ? clear_bhb_loop+0x40/0x90
[ 1116.075142][T24025]  ? clear_bhb_loop+0x40/0x90
[ 1116.080958][T24025]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1116.088429][T24025] RIP: 0033:0x7f444019c819
[ 1116.093531][T24025] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1116.121125][T24025] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1116.131428][T24025] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[ 1116.142345][T24025] RDX: 00000000000003e8 RSI: 00002000000004c0 RDI: 0000000000000005
[ 1116.152125][T24025] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[ 1116.166289][T24025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1116.178551][T24025] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[ 1116.189821][T24025]  </TASK>
[ 1116.281392][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.290226][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.405902][T24034] netlink: 'syz.3.6425': attribute type 39 has an invalid length.
[ 1116.763169][T24038] bridge_slave_0: mtu less than device minimum
[ 1117.253398][T24049] netlink: 'syz.0.6432': attribute type 10 has an invalid length.
[ 1117.291052][T24053] netlink: 'syz.3.6431': attribute type 1 has an invalid length.
[ 1117.363104][T24054] netlink: 'syz.3.6431': attribute type 1 has an invalid length.
[ 1117.390517][T24053] __nla_validate_parse: 2 callbacks suppressed
[ 1117.390538][T24053] netlink: 16098 bytes leftover after parsing attributes in process `syz.3.6431'.
[ 1117.486400][T24054] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.6431'.
[ 1117.592178][T24053] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6431'.
[ 1118.051227][T24061] netlink: 'syz.2.6436': attribute type 39 has an invalid length.
[ 1118.486482][T24068] netlink: 'syz.0.6439': attribute type 21 has an invalid length.
[ 1118.528017][T24068] netlink: 156 bytes leftover after parsing attributes in process `syz.0.6439'.
[ 1119.055424][T24079] netlink: 'syz.0.6443': attribute type 10 has an invalid length.
[ 1119.097885][T24079] netlink: 210880 bytes leftover after parsing attributes in process `syz.0.6443'.
[ 1119.952695][T24093] netlink: 10 bytes leftover after parsing attributes in process `syz.3.6447'.
[ 1120.032080][T24088] netlink: 180 bytes leftover after parsing attributes in process `syz.1.6445'.
[ 1120.087824][T24092] netlink: 'syz.2.6446': attribute type 39 has an invalid length.
[ 1120.524889][T24100] FAULT_INJECTION: forcing a failure.
[ 1120.524889][T24100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1120.547246][T24100] CPU: 0 PID: 24100 Comm: syz.0.6450 Not tainted syzkaller #0
[ 1120.556715][T24100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1120.569142][T24100] Call Trace:
[ 1120.573162][T24100]  <TASK>
[ 1120.576427][T24100]  dump_stack_lvl+0x18c/0x250
[ 1120.581898][T24100]  ? show_regs_print_info+0x20/0x20
[ 1120.587592][T24100]  ? load_image+0x400/0x400
[ 1120.593892][T24100]  ? __might_fault+0xaa/0x120
[ 1120.599917][T24100]  ? __lock_acquire+0x7d40/0x7d40
[ 1120.605921][T24100]  should_fail_ex+0x39d/0x4d0
[ 1120.612111][T24100]  _copy_from_user+0x2f/0xe0
[ 1120.620944][T24100]  __sys_bpf+0x23e/0x890
[ 1120.626937][T24100]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1120.633791][T24100]  ? lock_chain_count+0x20/0x20
[ 1120.640758][T24100]  __x64_sys_bpf+0x7c/0x90
[ 1120.645697][T24100]  do_syscall_64+0x55/0xa0
[ 1120.651045][T24100]  ? clear_bhb_loop+0x40/0x90
[ 1120.657377][T24100]  ? clear_bhb_loop+0x40/0x90
[ 1120.663010][T24100]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1120.671023][T24100] RIP: 0033:0x7f444019c819
[ 1120.675877][T24100] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1120.700413][T24100] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1120.710243][T24100] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[ 1120.722231][T24100] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[ 1120.733544][T24100] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[ 1120.742708][T24100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1120.752997][T24100] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[ 1120.765322][T24100]  </TASK>
[ 1121.386954][T24112] netlink: 'syz.3.6453': attribute type 10 has an invalid length.
[ 1121.451443][T24112] netlink: 'syz.3.6453': attribute type 10 has an invalid length.
[ 1121.461261][T24119] netlink: 'syz.2.6457': attribute type 39 has an invalid length.
[ 1121.490586][T24112] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6453'.
[ 1121.511487][T24112] openvswitch: netlink: Message has 4 unknown bytes.
[ 1121.669277][T24124] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.6458'.
[ 1121.693277][T24124] bridge_slave_1: default FDB implementation only supports local addresses
[ 1121.963752][T24135] netlink: 3752 bytes leftover after parsing attributes in process `syz.2.6463'.
[ 1121.993246][T24135] syzkaller0: entered allmulticast mode
[ 1122.275582][T24145] netlink: 'syz.3.6466': attribute type 39 has an invalid length.
[ 1122.525630][T24151] netlink: 'syz.2.6468': attribute type 10 has an invalid length.
[ 1122.547692][T24151] netlink: 210880 bytes leftover after parsing attributes in process `syz.2.6468'.
[ 1123.336747][T24171] netlink: 'syz.0.6476': attribute type 10 has an invalid length.
[ 1123.375495][T24175] netlink: 'syz.1.6477': attribute type 39 has an invalid length.
[ 1124.186479][T24187] FAULT_INJECTION: forcing a failure.
[ 1124.186479][T24187] name failslab, interval 1, probability 0, space 0, times 0
[ 1124.237662][T24187] CPU: 0 PID: 24187 Comm: syz.2.6483 Not tainted syzkaller #0
[ 1124.246665][T24187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1124.259548][T24187] Call Trace:
[ 1124.264675][T24187]  <TASK>
[ 1124.268331][T24187]  dump_stack_lvl+0x18c/0x250
[ 1124.274971][T24187]  ? show_regs_print_info+0x20/0x20
[ 1124.281197][T24187]  ? load_image+0x400/0x400
[ 1124.287437][T24187]  ? __might_sleep+0xe0/0xe0
[ 1124.293764][T24187]  ? __lock_acquire+0x7d40/0x7d40
[ 1124.301097][T24187]  should_fail_ex+0x39d/0x4d0
[ 1124.308196][T24187]  should_failslab+0x9/0x20
[ 1124.313831][T24187]  slab_pre_alloc_hook+0x59/0x310
[ 1124.319768][T24187]  ? lockdep_hardirqs_on+0x98/0x150
[ 1124.326609][T24187]  kmem_cache_alloc_node+0x60/0x320
[ 1124.332807][T24187]  ? __alloc_skb+0x103/0x2c0
[ 1124.340361][T24187]  __alloc_skb+0x103/0x2c0
[ 1124.345282][T24187]  netlink_ack+0x376/0x1180
[ 1124.350313][T24187]  ? __dev_queue_xmit+0x265/0x3660
[ 1124.356445][T24187]  ? netlink_dump+0xe50/0xe50
[ 1124.367489][T24187]  ? ref_tracker_free+0x690/0x840
[ 1124.375452][T24187]  netlink_rcv_skb+0x2c5/0x4d0
[ 1124.381636][T24187]  ? rtnetlink_bind+0x80/0x80
[ 1124.386692][T24187]  ? netlink_ack+0x1180/0x1180
[ 1124.392774][T24187]  ? __lock_acquire+0x7d40/0x7d40
[ 1124.399839][T24187]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1124.406880][T24187]  netlink_unicast+0x751/0x8d0
[ 1124.414012][T24187]  netlink_sendmsg+0x8d0/0xbf0
[ 1124.419866][T24187]  ? netlink_getsockopt+0x590/0x590
[ 1124.428696][T24187]  ? aa_sock_msg_perm+0x94/0x150
[ 1124.434273][T24187]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1124.440209][T24187]  ? security_socket_sendmsg+0x80/0xa0
[ 1124.446775][T24187]  ? netlink_getsockopt+0x590/0x590
[ 1124.454015][T24187]  ____sys_sendmsg+0x5ba/0x960
[ 1124.461107][T24187]  ? __asan_memset+0x22/0x40
[ 1124.467925][T24187]  ? __sys_sendmsg_sock+0x30/0x30
[ 1124.474620][T24187]  ? __import_iovec+0x5f2/0x850
[ 1124.480402][T24187]  ? import_iovec+0x73/0xa0
[ 1124.485556][T24187]  ___sys_sendmsg+0x2a6/0x360
[ 1124.491241][T24187]  ? get_pid_task+0x20/0x1e0
[ 1124.497031][T24187]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1124.503563][T24187]  ? __lock_acquire+0x7d40/0x7d40
[ 1124.509741][T24187]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1124.515414][T24187]  ? __x64_sys_sendmsg+0x80/0x80
[ 1124.522726][T24187]  ? lockdep_hardirqs_on+0x98/0x150
[ 1124.529158][T24187]  do_syscall_64+0x55/0xa0
[ 1124.534616][T24187]  ? clear_bhb_loop+0x40/0x90
[ 1124.540286][T24187]  ? clear_bhb_loop+0x40/0x90
[ 1124.545703][T24187]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1124.552569][T24187] RIP: 0033:0x7f9c3619c819
[ 1124.559435][T24187] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1124.582371][T24187] RSP: 002b:00007f9c36fff028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1124.593676][T24187] RAX: ffffffffffffffda RBX: 00007f9c36415fa0 RCX: 00007f9c3619c819
[ 1124.605349][T24187] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[ 1124.617448][T24187] RBP: 00007f9c36fff090 R08: 0000000000000000 R09: 0000000000000000
[ 1124.626311][T24187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1124.637290][T24187] R13: 00007f9c36416038 R14: 00007f9c36415fa0 R15: 00007ffc47a87598
[ 1124.648823][T24187]  </TASK>
[ 1125.204610][T24203] netlink: 'syz.2.6484': attribute type 10 has an invalid length.
[ 1125.291136][T24203] veth1_macvtap: left promiscuous mode
[ 1125.400357][T24210] netlink: 'syz.1.6488': attribute type 39 has an invalid length.
[ 1125.412093][T24209] netlink: 'syz.3.6489': attribute type 10 has an invalid length.
[ 1125.794575][T24226] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x37
[ 1125.961116][T24233] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x37
[ 1126.222836][T24238] netlink: 'syz.1.6500': attribute type 10 has an invalid length.
[ 1126.250265][T24238] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6500'.
[ 1126.277966][T24238] openvswitch: netlink: Message has 4 unknown bytes.
[ 1130.134940][T24269] validate_nla: 1 callbacks suppressed
[ 1130.134962][T24269] netlink: 'syz.3.6507': attribute type 41 has an invalid length.
[ 1130.215164][T24262] netlink: 'syz.1.6508': attribute type 10 has an invalid length.
[ 1130.248339][T24262] netlink: 'syz.1.6508': attribute type 10 has an invalid length.
[ 1130.282505][T24262] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6508'.
[ 1130.337928][T24262] openvswitch: netlink: Message has 4 unknown bytes.
[ 1130.521132][T24269] netlink: 'syz.3.6507': attribute type 4 has an invalid length.
[ 1130.569293][T24269] netlink: 156 bytes leftover after parsing attributes in process `syz.3.6507'.
[ 1131.645259][T24286] netlink: 'syz.2.6513': attribute type 10 has an invalid length.
[ 1131.664093][T24286] netlink: 'syz.2.6513': attribute type 10 has an invalid length.
[ 1131.708143][T24286] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6513'.
[ 1131.748515][T24286] openvswitch: netlink: Message has 4 unknown bytes.
[ 1132.693957][T24303] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.6520'.
[ 1132.807760][T24299] netlink: 14 bytes leftover after parsing attributes in process `syz.2.6518'.
[ 1132.916034][T24299] veth0_macvtap: left promiscuous mode
[ 1133.193974][T24309] netlink: 146936 bytes leftover after parsing attributes in process `syz.0.6521'.
[ 1133.820299][T24319] netlink: 'syz.3.6525': attribute type 10 has an invalid length.
[ 1133.847920][T24319] netlink: 'syz.3.6525': attribute type 10 has an invalid length.
[ 1133.882244][T24319] netlink: 209216 bytes leftover after parsing attributes in process `syz.3.6525'.
[ 1133.931546][T24319] openvswitch: netlink: Message has 4 unknown bytes.
[ 1134.239620][T24324] netlink: 'syz.2.6526': attribute type 10 has an invalid length.
[ 1134.251182][T24324] netlink: 'syz.2.6526': attribute type 10 has an invalid length.
[ 1134.264524][T24324] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6526'.
[ 1134.278506][T24324] openvswitch: netlink: Message has 4 unknown bytes.
[ 1135.720162][T24340] FAULT_INJECTION: forcing a failure.
[ 1135.720162][T24340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1135.778280][T24340] CPU: 0 PID: 24340 Comm: syz.1.6532 Not tainted syzkaller #0
[ 1135.787486][T24340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1135.800027][T24340] Call Trace:
[ 1135.803714][T24340]  <TASK>
[ 1135.807045][T24340]  dump_stack_lvl+0x18c/0x250
[ 1135.813153][T24340]  ? show_regs_print_info+0x20/0x20
[ 1135.820132][T24340]  ? load_image+0x400/0x400
[ 1135.825693][T24340]  ? __might_fault+0xaa/0x120
[ 1135.831201][T24340]  ? __lock_acquire+0x7d40/0x7d40
[ 1135.836980][T24340]  should_fail_ex+0x39d/0x4d0
[ 1135.842764][T24340]  _copy_from_user+0x2f/0xe0
[ 1135.849044][T24340]  generic_map_update_batch+0x54b/0x810
[ 1135.856715][T24340]  ? rcu_read_unlock+0xa0/0xa0
[ 1135.864685][T24340]  ? __fdget+0x180/0x210
[ 1135.870520][T24340]  ? rcu_read_unlock+0xa0/0xa0
[ 1135.876270][T24340]  bpf_map_do_batch+0x3d7/0x610
[ 1135.882615][T24340]  __sys_bpf+0x381/0x890
[ 1135.889461][T24340]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1135.896718][T24340]  ? lock_chain_count+0x20/0x20
[ 1135.902546][T24340]  __x64_sys_bpf+0x7c/0x90
[ 1135.909401][T24340]  do_syscall_64+0x55/0xa0
[ 1135.914781][T24340]  ? clear_bhb_loop+0x40/0x90
[ 1135.920657][T24340]  ? clear_bhb_loop+0x40/0x90
[ 1135.926479][T24340]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1135.933723][T24340] RIP: 0033:0x7f233939c819
[ 1135.939855][T24340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1135.967116][T24340] RSP: 002b:00007f233a253028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1135.977285][T24340] RAX: ffffffffffffffda RBX: 00007f2339615fa0 RCX: 00007f233939c819
[ 1135.987076][T24340] RDX: 0000000000000038 RSI: 00002000000002c0 RDI: 000000000000001a
[ 1135.997648][T24340] RBP: 00007f233a253090 R08: 0000000000000000 R09: 0000000000000000
[ 1136.009351][T24340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1136.019433][T24340] R13: 00007f2339616038 R14: 00007f2339615fa0 R15: 00007fffcd44bef8
[ 1136.029916][T24340]  </TASK>
[ 1136.301515][T24348] netlink: 'syz.2.6535': attribute type 10 has an invalid length.
[ 1136.311954][T24348] netlink: 'syz.2.6535': attribute type 10 has an invalid length.
[ 1136.344978][T24347] netlink: 'syz.0.6533': attribute type 41 has an invalid length.
[ 1136.355182][T24348] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6535'.
[ 1136.391386][T24348] openvswitch: netlink: Message has 4 unknown bytes.
[ 1136.775514][T24347] netlink: 'syz.0.6533': attribute type 4 has an invalid length.
[ 1136.848062][T24347] netlink: 156 bytes leftover after parsing attributes in process `syz.0.6533'.
[ 1137.619930][T24367] syzkaller0: entered promiscuous mode
[ 1137.632748][T24367] syzkaller0: entered allmulticast mode
[ 1144.316945][T24389] netlink: 'syz.2.6546': attribute type 10 has an invalid length.
[ 1144.331098][T24389] netlink: 'syz.2.6546': attribute type 10 has an invalid length.
[ 1144.345106][T24389] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6546'.
[ 1144.385808][T24389] openvswitch: netlink: Message has 4 unknown bytes.
[ 1144.823450][T24397] netlink: 'syz.0.6556': attribute type 10 has an invalid length.
[ 1144.856740][T24401] netlink: 'syz.2.6547': attribute type 41 has an invalid length.
[ 1144.877659][T24397] netlink: 'syz.0.6556': attribute type 10 has an invalid length.
[ 1144.933856][T24397] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6556'.
[ 1144.985868][T24397] openvswitch: netlink: Message has 4 unknown bytes.
[ 1145.045642][T24403] netlink: 'syz.2.6547': attribute type 4 has an invalid length.
[ 1145.077514][T24403] netlink: 156 bytes leftover after parsing attributes in process `syz.2.6547'.
[ 1145.502944][T24410] netlink: 'syz.2.6549': attribute type 10 has an invalid length.
[ 1146.423963][T24437] netlink: 'syz.3.6559': attribute type 3 has an invalid length.
[ 1148.973579][T24482] netlink: 'syz.1.6575': attribute type 10 has an invalid length.
[ 1148.996327][T24482] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[ 1149.224920][T24488] netlink: 64859 bytes leftover after parsing attributes in process `syz.3.6577'.
[ 1149.355787][T24497] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.6580'.
[ 1149.500309][T24497] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[ 1150.255122][T24504] netlink: 153952 bytes leftover after parsing attributes in process `syz.0.6581'.
[ 1150.352928][T24508] FAULT_INJECTION: forcing a failure.
[ 1150.352928][T24508] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1150.399603][T24508] CPU: 0 PID: 24508 Comm: syz.1.6583 Not tainted syzkaller #0
[ 1150.409488][T24508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1150.421947][T24508] Call Trace:
[ 1150.426340][T24508]  <TASK>
[ 1150.430391][T24508]  dump_stack_lvl+0x18c/0x250
[ 1150.436663][T24508]  ? show_regs_print_info+0x20/0x20
[ 1150.443388][T24508]  ? load_image+0x400/0x400
[ 1150.448569][T24508]  ? __might_fault+0xaa/0x120
[ 1150.455442][T24508]  ? __lock_acquire+0x7d40/0x7d40
[ 1150.462081][T24508]  should_fail_ex+0x39d/0x4d0
[ 1150.468084][T24508]  _copy_to_user+0x2f/0xa0
[ 1150.475274][T24508]  bpf_verifier_vlog+0x5db/0x870
[ 1150.482894][T24508]  __btf_verifier_log+0xe3/0x140
[ 1150.489130][T24508]  ? __kernel_text_address+0xd/0x30
[ 1150.495565][T24508]  ? unwind_get_return_address+0x91/0xc0
[ 1150.503446][T24508]  ? btf_check_sec_info+0x350/0x350
[ 1150.511005][T24508]  __btf_verifier_log_type+0x3c7/0x690
[ 1150.519904][T24508]  ? btf_int_show+0x2890/0x2890
[ 1150.527037][T24508]  ? kvmalloc_node+0x70/0x180
[ 1150.532997][T24508]  ? __x64_sys_bpf+0x7c/0x90
[ 1150.539304][T24508]  ? do_syscall_64+0x55/0xa0
[ 1150.545160][T24508]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1150.552970][T24508]  btf_verifier_log_member+0x1c7/0x800
[ 1150.559307][T24508]  ? __btf_verifier_log_type+0x690/0x690
[ 1150.567419][T24508]  btf_struct_resolve+0xbb2/0x12a0
[ 1150.574826][T24508]  btf_resolve+0x426/0x1480
[ 1150.582181][T24508]  btf_parse_type_sec+0x582/0x1930
[ 1150.588443][T24508]  ? btf_verifier_log+0x1a0/0x1a0
[ 1150.594848][T24508]  ? btf_parse_str_sec+0x20d/0x2a0
[ 1150.602035][T24508]  btf_new_fd+0x440/0x9f0
[ 1150.607910][T24508]  ? bpf_btf_show_fdinfo+0x80/0x80
[ 1150.613641][T24508]  ? capable+0x88/0xe0
[ 1150.618948][T24508]  __sys_bpf+0x670/0x890
[ 1150.625302][T24508]  ? bpf_link_show_fdinfo+0x390/0x390
[ 1150.632075][T24508]  ? lock_chain_count+0x20/0x20
[ 1150.638630][T24508]  __x64_sys_bpf+0x7c/0x90
[ 1150.646016][T24508]  do_syscall_64+0x55/0xa0
[ 1150.651800][T24508]  ? clear_bhb_loop+0x40/0x90
[ 1150.657246][T24508]  ? clear_bhb_loop+0x40/0x90
[ 1150.663792][T24508]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1150.671850][T24508] RIP: 0033:0x7f233939c819
[ 1150.677766][T24508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1150.701985][T24508] RSP: 002b:00007f233a253028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1150.711642][T24508] RAX: ffffffffffffffda RBX: 00007f2339615fa0 RCX: 00007f233939c819
[ 1150.723423][T24508] RDX: 0000000000000028 RSI: 0000200000000380 RDI: 0000000000000012
[ 1150.732601][T24508] RBP: 00007f233a253090 R08: 0000000000000000 R09: 0000000000000000
[ 1150.743252][T24508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1150.752870][T24508] R13: 00007f2339616038 R14: 00007f2339615fa0 R15: 00007fffcd44bef8
[ 1150.763798][T24508]  </TASK>
[ 1152.161958][T24534] netlink: 209592 bytes leftover after parsing attributes in process `syz.1.6589'.
[ 1152.166654][T24530] syzkaller0: entered promiscuous mode
[ 1152.185907][T24530] syzkaller0: entered allmulticast mode
[ 1156.252237][T24561] ip6gretap0: refused to change device tx_queue_len
[ 1156.443679][T24562] netlink: 'syz.1.6598': attribute type 2 has an invalid length.
[ 1157.265781][T24573] netlink: 'syz.2.6601': attribute type 10 has an invalid length.
[ 1157.303547][T24573] netlink: 'syz.2.6601': attribute type 10 has an invalid length.
[ 1157.335907][T24573] netlink: 209216 bytes leftover after parsing attributes in process `syz.2.6601'.
[ 1157.367835][T24573] openvswitch: netlink: Message has 4 unknown bytes.
[ 1158.061665][T24623] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1158.071262][T24623] IPv6: NLM_F_CREATE should be set when creating new route
[ 1158.081834][T24623] IPv6: NLM_F_CREATE should be set when creating new route
[ 1158.090869][T24623] IPv6: NLM_F_CREATE should be set when creating new route
[ 1160.944675][T24627] netlink: 'syz.2.6608': attribute type 10 has an invalid length.
[ 1161.162274][T24627] team0: Port device geneve1 added
[ 1161.182443][T24647] netlink: 156 bytes leftover after parsing attributes in process `syz.0.6612'.
[ 1162.037551][T24668] netlink: 'syz.0.6619': attribute type 10 has an invalid length.
[ 1162.196820][T24668] team0: Port device wlan1 added
[ 1162.286940][T24667] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1162.306111][T24673] netlink: 'syz.1.6621': attribute type 10 has an invalid length.
[ 1162.327185][T24673] netlink: 'syz.1.6621': attribute type 10 has an invalid length.
[ 1162.336823][T24673] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6621'.
[ 1162.369120][T24673] openvswitch: netlink: Message has 4 unknown bytes.
[ 1162.632502][T24679] netlink: 121460 bytes leftover after parsing attributes in process `syz.3.6623'.
[ 1162.657260][T24679] netlink: 21068 bytes leftover after parsing attributes in process `syz.3.6623'.
[ 1163.719046][T24701] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6631'.
[ 1164.160871][T24701] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[ 1164.408532][T24714] netlink: 'syz.2.6633': attribute type 10 has an invalid length.
[ 1164.426901][T24714] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6633'.
[ 1164.457473][T24714] openvswitch: netlink: Flow key attr not present in new flow.
[ 1164.568959][T24705] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.6630'.
[ 1164.605572][T24705] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[ 1164.649458][T24716] netlink: 'syz.1.6634': attribute type 10 has an invalid length.
[ 1164.680614][T24716] team0: Port device wlan1 added
[ 1165.066332][T24721] netlink: 'syz.2.6636': attribute type 10 has an invalid length.
[ 1165.074954][T24711] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1165.118136][T24721] hsr0: left promiscuous mode
[ 1165.131573][T24727] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6636'.
[ 1165.195100][T24721] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[ 1165.235938][T24727] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6636'.
[ 1165.316582][T24728] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6636'.
[ 1165.732972][T24732] netlink: 'syz.1.6638': attribute type 10 has an invalid length.
[ 1165.755264][T24732] netlink: 'syz.1.6638': attribute type 10 has an invalid length.
[ 1165.785083][T24732] netlink: 209216 bytes leftover after parsing attributes in process `syz.1.6638'.
[ 1165.813825][T24732] openvswitch: netlink: Message has 4 unknown bytes.
[ 1166.086910][T24747] FAULT_INJECTION: forcing a failure.
[ 1166.086910][T24747] name failslab, interval 1, probability 0, space 0, times 0
[ 1166.104024][T24747] CPU: 1 PID: 24747 Comm: syz.0.6643 Not tainted syzkaller #0
[ 1166.113185][T24747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1166.126186][T24747] Call Trace:
[ 1166.130501][T24747]  <TASK>
[ 1166.134405][T24747]  dump_stack_lvl+0x18c/0x250
[ 1166.139952][T24747]  ? sctp_sendmsg+0x1575/0x28c0
[ 1166.145427][T24747]  ? ___sys_sendmsg+0x2a6/0x360
[ 1166.150977][T24747]  ? show_regs_print_info+0x20/0x20
[ 1166.157139][T24747]  ? load_image+0x400/0x400
[ 1166.162005][T24747]  should_fail_ex+0x39d/0x4d0
[ 1166.167135][T24747]  should_failslab+0x9/0x20
[ 1166.172607][T24747]  slab_pre_alloc_hook+0x59/0x310
[ 1166.178180][T24747]  ? sctp_add_bind_addr+0x8c/0x360
[ 1166.183536][T24747]  __kmem_cache_alloc_node+0x53/0x250
[ 1166.189259][T24747]  ? sctp_add_bind_addr+0x8c/0x360
[ 1166.194711][T24747]  kmalloc_trace+0x2a/0xe0
[ 1166.199769][T24747]  sctp_add_bind_addr+0x8c/0x360
[ 1166.208050][T24747]  sctp_copy_local_addr_list+0x315/0x4f0
[ 1166.216635][T24747]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[ 1166.224623][T24747]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[ 1166.231346][T24747]  ? sctp_v4_is_any+0x35/0x60
[ 1166.236656][T24747]  ? sctp_copy_one_addr+0x8c/0x350
[ 1166.242641][T24747]  sctp_bind_addr_copy+0xb3/0x3c0
[ 1166.248176][T24747]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[ 1166.255593][T24747]  sctp_connect_new_asoc+0x2f9/0x6a0
[ 1166.261600][T24747]  ? __sctp_connect+0xd80/0xd80
[ 1166.267552][T24747]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1166.273305][T24747]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1166.279214][T24747]  ? security_sctp_bind_connect+0x89/0xb0
[ 1166.285361][T24747]  sctp_sendmsg+0x1575/0x28c0
[ 1166.291680][T24747]  ? sctp_getsockopt+0xb60/0xb60
[ 1166.296994][T24747]  ? aa_sk_perm+0x83c/0x970
[ 1166.302404][T24747]  ? aa_af_perm+0x330/0x330
[ 1166.307877][T24747]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[ 1166.314699][T24747]  ? sock_rps_record_flow+0x19/0x3f0
[ 1166.320411][T24747]  ? inet_sendmsg+0xe9/0x2f0
[ 1166.325862][T24747]  ? inet_send_prepare+0x260/0x260
[ 1166.331349][T24747]  ____sys_sendmsg+0x5ba/0x960
[ 1166.336875][T24747]  ? __lock_acquire+0x7d40/0x7d40
[ 1166.342777][T24747]  ? __asan_memset+0x22/0x40
[ 1166.347635][T24747]  ? __sys_sendmsg_sock+0x30/0x30
[ 1166.352976][T24747]  ? __import_iovec+0x5f2/0x850
[ 1166.358346][T24747]  ? import_iovec+0x73/0xa0
[ 1166.363194][T24747]  ___sys_sendmsg+0x2a6/0x360
[ 1166.368124][T24747]  ? get_pid_task+0x20/0x1e0
[ 1166.373034][T24747]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1166.378135][T24747]  ? __lock_acquire+0x7d40/0x7d40
[ 1166.383353][T24747]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1166.388690][T24747]  ? __x64_sys_sendmsg+0x80/0x80
[ 1166.393889][T24747]  ? lockdep_hardirqs_on+0x98/0x150
[ 1166.399325][T24747]  do_syscall_64+0x55/0xa0
[ 1166.404603][T24747]  ? clear_bhb_loop+0x40/0x90
[ 1166.410156][T24747]  ? clear_bhb_loop+0x40/0x90
[ 1166.415948][T24747]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1166.423797][T24747] RIP: 0033:0x7f444019c819
[ 1166.428448][T24747] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1166.449951][T24747] RSP: 002b:00007f4440fa1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1166.461036][T24747] RAX: ffffffffffffffda RBX: 00007f4440415fa0 RCX: 00007f444019c819
[ 1166.469966][T24747] RDX: 0000000000000040 RSI: 0000200000000e40 RDI: 0000000000000004
[ 1166.477980][T24747] RBP: 00007f4440fa1090 R08: 0000000000000000 R09: 0000000000000000
[ 1166.486399][T24747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1166.495309][T24747] R13: 00007f4440416038 R14: 00007f4440415fa0 R15: 00007ffc04d65398
[ 1166.503978][T24747]  </TASK>
[ 1167.121519][T24753] netlink: 'syz.0.6645': attribute type 10 has an invalid length.
[ 1167.133972][T24756] netlink: 'syz.2.6647': attribute type 10 has an invalid length.
[ 1167.137546][T24753] netlink: 'syz.0.6645': attribute type 10 has an invalid length.
[ 1167.154323][T24753] netlink: 209216 bytes leftover after parsing attributes in process `syz.0.6645'.
[ 1167.167804][T24753] openvswitch: netlink: Message has 4 unknown bytes.
[ 1167.261597][T24756] team0: Port device wlan1 added
[ 1167.397918][T24755] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1167.424606][T24764] netlink: 'syz.3.6650': attribute type 10 has an invalid length.
[ 1167.437422][T24764] netlink: 'syz.3.6650': attribute type 10 has an invalid length.
[ 1167.455372][T24764] openvswitch: netlink: Message has 4 unknown bytes.
[ 1177.623370][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.633383][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.064639][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.077150][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[ 1272.557038][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[ 1272.565805][    C1] rcu: 	1-....: (10501 ticks this GP) idle=f94c/1/0x4000000000000000 softirq=96487/96487 fqs=4966
[ 1272.580669][    C1] rcu: 	         hardirqs   softirqs   csw/system
[ 1272.588598][    C1] rcu: 	 number:  1220843          0            0
[ 1272.597247][    C1] rcu: 	cputime:    17038      35450           33   ==> 52500(ms)
[ 1272.609405][    C1] rcu: 	(t=10502 jiffies g=129809 q=989 ncpus=2)
[ 1272.617598][    C1] CPU: 1 PID: 24770 Comm: syz.1.6652 Not tainted syzkaller #0
[ 1272.625404][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1272.638647][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xc0/0x120
[ 1272.646632][    C1] Code: c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f7 44 24 20 00 02 00 00 41 c6 04 07 f8 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 7b d9 cc f6 65 8b 05 ec 06 74 75 85 c0 74 3c 48 c7 04 24 0e 36
[ 1272.670567][    C1] RSP: 0018:ffffc900001f0720 EFLAGS: 00000206
[ 1272.677982][    C1] RAX: dffffc0000000004 RBX: 0000000000000a06 RCX: 6321f3c821993500
[ 1272.687467][    C1] RDX: dffffc0000000000 RSI: ffffffff8acac9e0 RDI: 0000000000000001
[ 1272.696629][    C1] RBP: ffffc900001f07b8 R08: ffffffff911c35c7 R09: 1ffffffff22386b8
[ 1272.706024][    C1] R10: dffffc0000000000 R11: fffffbfff22386b9 R12: dffffc0000000000
[ 1272.715449][    C1] R13: ffff888069780000 R14: ffffffff974c8910 R15: 1ffff9200003e0e4
[ 1272.725782][    C1] FS:  00007f233a2536c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1272.736850][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1272.745089][    C1] CR2: 00007ffeeadb4ff0 CR3: 000000002fa71000 CR4: 00000000003506e0
[ 1272.754064][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1272.763709][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 1272.774718][    C1] Call Trace:
[ 1272.778922][    C1]  <IRQ>
[ 1272.782239][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 1272.789318][    C1]  debug_check_no_obj_freed+0x51f/0x540
[ 1272.797222][    C1]  free_unref_page_prepare+0x1da/0x8c0
[ 1272.806610][    C1]  free_unref_page+0x32/0x2e0
[ 1272.813355][    C1]  ? destroy_large_folio+0x170/0x2f0
[ 1272.821758][    C1]  skb_release_data+0x49a/0x800
[ 1272.829463][    C1]  __kfree_skb+0x57/0x70
[ 1272.836290][    C1]  tcp_write_queue_purge+0x143/0x2f0
[ 1272.844185][    C1]  tcp_done_with_error+0x43/0xc0
[ 1272.850198][    C1]  tcp_retransmit_timer+0x1728/0x3020
[ 1272.856701][    C1]  ? tcp_delack_timer_handler+0x4d0/0x4d0
[ 1272.864629][    C1]  ? read_tsc+0x9/0x20
[ 1272.869549][    C1]  ? ktime_get+0x24b/0x280
[ 1272.874688][    C1]  ? tcp_write_timer_handler+0x2f7/0x920
[ 1272.881691][    C1]  tcp_write_timer+0x12a/0x280
[ 1272.888105][    C1]  call_timer_fn+0x189/0x540
[ 1272.894582][    C1]  ? tcp_init_xmit_timers+0xb0/0xb0
[ 1272.901746][    C1]  ? call_timer_fn+0xd2/0x540
[ 1272.908913][    C1]  ? __run_timers+0x800/0x800
[ 1272.915438][    C1]  ? tcp_init_xmit_timers+0xb0/0xb0
[ 1272.921632][    C1]  __run_timers+0x542/0x800
[ 1272.927940][    C1]  ? detach_timer+0x2b0/0x2b0
[ 1272.934398][    C1]  run_timer_softirq+0x67/0xf0
[ 1272.941195][    C1]  handle_softirqs+0x280/0x820
[ 1272.949251][    C1]  ? __irq_exit_rcu+0xd3/0x190
[ 1272.955806][    C1]  ? do_softirq+0x1a0/0x1a0
[ 1272.962569][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1272.969011][    C1]  __irq_exit_rcu+0xd3/0x190
[ 1272.974938][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1272.981543][    C1]  irq_exit_rcu+0x9/0x20
[ 1272.986619][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1272.996581][    C1]  </IRQ>
[ 1273.000098][    C1]  <TASK>
[ 1273.004557][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1273.012509][    C1] RIP: 0010:finish_task_switch+0x26a/0x8f0
[ 1273.020293][    C1] Code: 0f 84 33 01 00 00 48 85 db 0f 85 52 01 00 00 0f 1f 44 00 00 4c 8b 75 d0 4c 89 e7 e8 90 43 32 09 e8 eb 27 30 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[ 1273.046122][    C1] RSP: 0018:ffffc900054c7758 EFLAGS: 00000282
[ 1273.054445][    C1] RAX: 6321f3c821993500 RBX: 0000000000000000 RCX: 6321f3c821993500
[ 1273.064218][    C1] RDX: dffffc0000000000 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c89a0
[ 1273.076209][    C1] RBP: ffffc900054c77b0 R08: ffffffff911c35ff R09: 1ffffffff22386bf
[ 1273.089528][    C1] R10: dffffc0000000000 R11: fffffbfff22386c0 R12: ffff88807d2b9e00
[ 1273.098930][    C1] R13: dffffc0000000000 R14: ffff8880620a5a00 R15: ffff8880b8f3cac8
[ 1273.109494][    C1]  ? finish_task_switch+0x265/0x8f0
[ 1273.116120][    C1]  __schedule+0x155b/0x45a0
[ 1273.121969][    C1]  ? mark_lock+0x94/0x320
[ 1273.127628][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1273.134332][    C1]  ? lock_chain_count+0x20/0x20
[ 1273.140067][    C1]  ? asan.module_dtor+0x20/0x20
[ 1273.145753][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1273.154182][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1273.161194][    C1]  ? preempt_schedule+0xc0/0xd0
[ 1273.168165][    C1]  preempt_schedule_common+0x82/0xc0
[ 1273.174308][    C1]  preempt_schedule+0xc0/0xd0
[ 1273.181385][    C1]  ? schedule_preempt_disabled+0x20/0x20
[ 1273.188531][    C1]  ? event_function+0x300/0x300
[ 1273.195102][    C1]  ? smp_call_function_single+0x5a0/0x5a0
[ 1273.205126][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 1273.212236][    C1]  ? smp_call_function_single+0x488/0x5a0
[ 1273.218718][    C1]  smp_call_function_single+0x48d/0x5a0
[ 1273.226446][    C1]  ? event_function+0x300/0x300
[ 1273.232787][    C1]  ? flush_smp_call_function_queue+0x250/0x250
[ 1273.241391][    C1]  ? event_function+0x300/0x300
[ 1273.247339][    C1]  ? alloc_file+0x88/0x600
[ 1273.252102][    C1]  perf_install_in_context+0x5be/0x920
[ 1273.257976][    C1]  ? exclusive_event_installable+0x2c0/0x2c0
[ 1273.265654][    C1]  ? add_event_to_ctx+0x1180/0x1180
[ 1273.270972][    C1]  ? exclusive_event_installable+0xd3/0x2c0
[ 1273.277295][    C1]  ? anon_inode_getfile+0x109/0x1a0
[ 1273.287903][    C1]  ? perf_event__header_size+0x165/0x220
[ 1273.295801][    C1]  __se_sys_perf_event_open+0x1836/0x1c50
[ 1273.302224][    C1]  ? security_bpf+0x7e/0xa0
[ 1273.307342][    C1]  ? __x64_sys_perf_event_open+0xc0/0xc0
[ 1273.314800][    C1]  ? lock_chain_count+0x20/0x20
[ 1273.320095][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1273.325781][    C1]  ? __x64_sys_perf_event_open+0x20/0xc0
[ 1273.332205][    C1]  do_syscall_64+0x55/0xa0
[ 1273.337484][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1273.342556][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1273.347908][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1273.354977][    C1] RIP: 0033:0x7f233939c819
[ 1273.359526][    C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1273.383345][    C1] RSP: 002b:00007f233a253028 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[ 1273.392849][    C1] RAX: ffffffffffffffda RBX: 00007f2339615fa0 RCX: 00007f233939c819
[ 1273.403210][    C1] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000140
[ 1273.412110][    C1] RBP: 00007f2339432c91 R08: 0000000000000002 R09: 0000000000000000
[ 1273.421013][    C1] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1273.433827][    C1] R13: 00007f2339616038 R14: 00007f2339615fa0 R15: 00007fffcd44bef8
[ 1273.442390][    C1]  </TASK>
SYZFAIL: failed to send rpc
fd=3 want=840 sent=0 n=-1 (errno 104: Connection reset by peer)
[ 1275.738723][ T5084] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1275.750924][ T5084] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1275.763674][ T5084] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1275.774527][ T5084] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1275.784623][ T5084] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1275.795417][ T5084] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1277.857435][ T5084] Bluetooth: hci2: command tx timeout
[ 1279.937332][ T5084] Bluetooth: hci2: command tx timeout
[ 1282.017304][ T5084] Bluetooth: hci2: command tx timeout