last executing test programs:

9m8.746754124s ago: executing program 2 (id=1070):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=@framed={{}, [@map_idx_val, @tail_call, @printk={@d}, @initr0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000600)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8000ef, 0x1af1ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x8020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb2, 0x2, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x2}, 0x842a, 0x200000000000000, 0x7, 0x5, 0x0, 0x200000}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
close(0x4)

9m8.280909029s ago: executing program 2 (id=1071):
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x8903, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x9, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000001cc0)=ANY=[], 0xfdef)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x5, 0x41, 0x6, 0x2, 0x41, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)

9m7.590032118s ago: executing program 2 (id=1074):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x200000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='cpuacct.usage_percpu\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=[@cred={{0x1c}}, @rights={{0x10}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x80}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1d, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8946, &(0x7f0000000080))

9m7.371206911s ago: executing program 2 (id=1075):
socket$kcm(0x10, 0x2, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x100000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0xa, 0x5, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x6, 0x1d, &(0x7f0000000200), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000000), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$kcm(0xa, 0x5, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.kill\x00', 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x890b, &(0x7f0000000000))

9m7.112781754s ago: executing program 2 (id=1078):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x8)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x14869}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x3, 0x2)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='sched_kthread_stop\x00', r0}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_pressure(r1, &(0x7f0000000040)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)

9m6.662391s ago: executing program 2 (id=1083):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1b, 0xfffffffe, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80}, 0x108482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000740)={0x2, 0x80, 0xbb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="050000007f000000f00e00008001"], 0x50)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
close(r0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000700)='cgroup.procs\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='devices.list\x00', 0x26e1, 0x0)
write$cgroup_pid(r2, &(0x7f0000000740), 0x12)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000100)={'c', ' *:* ', 'r\x00'}, 0x8)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)

8m51.478658473s ago: executing program 32 (id=1083):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1b, 0xfffffffe, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80}, 0x108482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000740)={0x2, 0x80, 0xbb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="050000007f000000f00e00008001"], 0x50)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
close(r0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000700)='cgroup.procs\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='devices.list\x00', 0x26e1, 0x0)
write$cgroup_pid(r2, &(0x7f0000000740), 0x12)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000100)={'c', ' *:* ', 'r\x00'}, 0x8)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)

3.88707374s ago: executing program 1 (id=4683):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000000)=@framed={{0x4e, 0xa, 0xa, 0x0, 0x0, 0x71, 0x10, 0x12}, [], {0x95, 0x0, 0x0, 0x1000000}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$kcm(0xa, 0x2, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x2, 0x10)
socket$kcm(0x25, 0x1, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x8400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x60000000, 0x0, 0x30, 0x0, 0x0}, 0x50)
socket$kcm(0x10, 0x400000002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'netdevsim0\x00'})
socket$kcm(0x21, 0x2, 0x2)
socket$kcm(0x2, 0x5, 0x84)
socketpair(0x1, 0x1, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))

3.678275804s ago: executing program 1 (id=4688):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext, 0x100080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfff, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6c", 0x41}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r0 = socket$kcm(0x29, 0x5, 0x0)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)}, 0x40000040)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x84)

3.438099007s ago: executing program 1 (id=4692):
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8600, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, @perf_config_ext={0xa, 0x3ff}, 0x11a060, 0x400, 0x0, 0x0, 0xd3, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa65, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x15, 0x0, 0x1, 0x7ffffffd}, {}, {0x6, 0x0, 0x0, 0x4000}]})
r2 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x801c581f, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x20, 0x402283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x84}, 0x7602, 0x0, 0x80, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000380)}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8b06, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})

2.164941923s ago: executing program 1 (id=4702):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext, 0x100080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfff, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6c", 0x41}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r0 = socket$kcm(0x29, 0x5, 0x0)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)}, 0x40000040)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x84)

2.108156903s ago: executing program 3 (id=4704):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

1.921795866s ago: executing program 1 (id=4707):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

1.910330756s ago: executing program 3 (id=4708):
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0))
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x1e37cf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x401, 0x200, 0x0, 0x7, 0x0, 0x100}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000500)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x282, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
socket$kcm(0x21, 0x2, 0x2)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffff7fffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0), 0x161)
sendmsg$inet(r1, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00\x00\x00'], 0x30}, 0x0)

1.676393349s ago: executing program 1 (id=4711):
socket$kcm(0x2c, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x4e27, 0x0, @remote}, 0x80, 0x0, 0x0, &(0x7f0000001940)=ANY=[@ANYBLOB="c805000000000000290000003e"], 0x5c8}, 0x0)
socketpair(0x1e, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x40, 0xfffffffe, 0x7, 0x20029, 0x1, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x2, 0x3, @void, @value, @void, @value}, 0x50)
socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x12, &(0x7f0000000000), 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@array={0x0, 0x0, 0x0, 0x4, 0x3000000, {0x0, 0x6000000, 0x4}}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x2}]}}, 0xffffffffffffffff, 0x3e, 0xb1, 0x2, 0x0, 0x0, @void, @value}, 0x20)
write$cgroup_pid(r1, &(0x7f0000000380), 0x12)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.57692748s ago: executing program 3 (id=4714):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYBLOB='\n?'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac"], 0xfdef)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYRES32, @ANYBLOB="1c00000000000300000000000000010045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/13, @ANYRES32], 0x48)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'tunl0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

1.346263743s ago: executing program 3 (id=4716):
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x8, 0x0, 0x0}}, 0x10)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x20, 0x3, &(0x7f0000000200)=@framed={{0x85, 0x0, 0x0, 0x0, 0x31, 0x4}}, &(0x7f0000000600)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x1f00, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef436000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, 0x0, &(0x7f0000000000)=""/31}, 0x20)

1.344634443s ago: executing program 5 (id=4726):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYBLOB='\n?'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac"], 0xfdef)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYRES32, @ANYBLOB="1c00000000000300000000000000010045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/13, @ANYRES32], 0x48)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'tunl0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

1.171244176s ago: executing program 5 (id=4718):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

1.100842496s ago: executing program 4 (id=4719):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

1.099053736s ago: executing program 0 (id=4720):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

976.335058ms ago: executing program 0 (id=4721):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

975.747178ms ago: executing program 5 (id=4722):
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0))
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x1e37cf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x401, 0x200, 0x0, 0x7, 0x0, 0x100}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000500)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x282, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
socket$kcm(0x21, 0x2, 0x2)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffff7fffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r1, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00\x00\x00'], 0x30}, 0x0)

966.475318ms ago: executing program 4 (id=4723):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x8090)
recvmsg$unix(r0, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8264, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x2018, 0x0, 0x80000000, 0x4, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$kcm(0x2a, 0x2, 0x0)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0xa4, 0x1589, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, @perf_config_ext, 0x0, 0x5b, 0x0, 0x4, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xb, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="b400000000090000dd0a00000000000073013700000000009500000000000000425e494e53a90f38f870e056d03b2010633dee8a3a6601dbd212"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x300, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x10, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x40002, 0x0)
r3 = socket$kcm(0xa, 0x2, 0x88)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x3e, &(0x7f00000002c0)=r4, 0x4)
setsockopt$sock_attach_bpf(r3, 0x1, 0x41, &(0x7f0000000040)=r2, 0x4)

806.55837ms ago: executing program 0 (id=4724):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x4, 0x4}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
syz_open_procfs$namespace(0x0, &(0x7f0000000780)='ns/pid_for_children\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x90}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r2, 0xc008744c, &(0x7f0000000180))

645.342072ms ago: executing program 5 (id=4725):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000000)='net_dev_start_xmit\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

551.521423ms ago: executing program 4 (id=4727):
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0))
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x1e37cf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x401, 0x200, 0x0, 0x7, 0x0, 0x100}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000500)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x282, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
socket$kcm(0x21, 0x2, 0x2)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffff7fffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0), 0x161)
sendmsg$inet(r1, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00\x00\x00'], 0x30}, 0x0)

508.809384ms ago: executing program 3 (id=4728):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000000)=@framed={{0x4e, 0xa, 0xa, 0x0, 0x0, 0x71, 0x10, 0x12}, [], {0x95, 0x0, 0x0, 0x1000000}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$kcm(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$kcm(0x10, 0x2, 0x10)
socket$kcm(0x25, 0x1, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x8400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x60000000, 0x0, 0x30, 0x0, 0x0}, 0x50)
socket$kcm(0x10, 0x400000002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'netdevsim0\x00'})
socket$kcm(0x21, 0x2, 0x2)
socket$kcm(0x2, 0x5, 0x84)
socketpair(0x1, 0x1, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))

465.203115ms ago: executing program 0 (id=4729):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYBLOB='\n?'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac"], 0xfdef)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYRES32, @ANYBLOB="1c00000000000300000000000000010045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/13, @ANYRES32], 0x48)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'tunl0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

453.157615ms ago: executing program 5 (id=4730):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x80008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000540))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0e00009bd029ef8020ab070011000523a608463a", @ANYRES16=r2], 0xfe33)

363.456076ms ago: executing program 4 (id=4731):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext, 0x100080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfff, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6c", 0x41}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r0 = socket$kcm(0x29, 0x5, 0x0)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)}, 0x40000040)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x84)

262.323917ms ago: executing program 0 (id=4732):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x40200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000900)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200102f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa35f022eb"], 0xcfa4)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xfdef)
socketpair(0x1e, 0x1, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
socket$kcm(0x1e, 0x4, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003a80)={0x0, 0x0, 0x0}, 0x4008804)

247.445847ms ago: executing program 3 (id=4733):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$kcm(0x11, 0x200000000000002, 0x300)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x62, 0x1, 0x0, 0x0, 0x0, 0xce, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xa}}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xfff, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020006007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x1, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000300000000000000c29c18120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000280), &(0x7f00000002c0)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x0, &(0x7f0000000000)="43227504000000b32415f73227b2", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

208.207187ms ago: executing program 4 (id=4734):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = socket$kcm(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000004680)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f92624fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x39, &(0x7f0000000100)=r1, 0x120)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

150.137318ms ago: executing program 5 (id=4735):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext, 0x100080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6c", 0x41}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r0 = socket$kcm(0x29, 0x5, 0x0)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)}, 0x40000040)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x72, &(0x7f0000000000), 0xc)

661.89µs ago: executing program 0 (id=4736):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, @perf_config_ext, 0x100080}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfff, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r0 = socket$kcm(0x29, 0x5, 0x0)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)}, 0x40000040)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x72, &(0x7f0000000000), 0xc)

0s ago: executing program 4 (id=4737):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x8090)
recvmsg$unix(r0, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8264, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x2018, 0x0, 0x80000000, 0x4, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$kcm(0x2a, 0x2, 0x0)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0x0, 0x0, 0x0, 0x0, 0xa4, 0x1589, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, @perf_config_ext, 0x0, 0x5b, 0x0, 0x4, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xb, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="b400000000090000dd0a00000000000073013700000000009500000000000000425e494e53a90f38f870e056d03b2010633dee8a3a6601dbd212"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x300, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x10, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x40002, 0x0)
r3 = socket$kcm(0xa, 0x2, 0x88)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x3e, &(0x7f00000002c0)=r4, 0x4)
setsockopt$sock_attach_bpf(r3, 0x1, 0x41, &(0x7f0000000040)=r2, 0x4)

kernel console output (not intermixed with test programs):

5338][T14566]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  731.111531][T14566]  ? show_regs_print_info+0x12/0x12
[  731.116771][T14566]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  731.122977][T14566]  sysfs_warn_dup+0x8a/0xa0
[  731.127527][T14566]  sysfs_do_create_link_sd+0xc0/0x110
[  731.132950][T14566]  device_add+0x7ed/0xfb0
[  731.137331][T14566]  wiphy_register+0x1e68/0x2bd0
[  731.142263][T14566]  ? cfg80211_event_work+0x40/0x40
[  731.147417][T14566]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  731.153621][T14566]  ieee80211_register_hw+0x2c29/0x38c0
[  731.159138][T14566]  ? ieee80211_register_hw+0xf31/0x38c0
[  731.164727][T14566]  ? ieee80211_register_hw+0xe31/0x38c0
[  731.170346][T14566]  ? ieee80211_tasklet_handler+0x20/0x20
[  731.176026][T14566]  ? rcu_is_watching+0x11/0xa0
[  731.180892][T14566]  ? memset+0x1e/0x40
[  731.184931][T14566]  ? hrtimer_init+0x10c/0x220
[  731.189651][T14566]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  731.195435][T14566]  hwsim_new_radio_nl+0xafa/0xce0
[  731.200511][T14566]  genl_family_rcv_msg_doit+0x22e/0x320
[  731.206099][T14566]  ? end_current_label_crit_section+0x170/0x170
[  731.212385][T14566]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  731.218338][T14566]  ? bpf_lsm_capable+0x5/0x10
[  731.223058][T14566]  ? security_capable+0x85/0xb0
[  731.227956][T14566]  genl_rcv_msg+0x5f2/0x780
[  731.232510][T14566]  ? genl_bind+0x350/0x350
[  731.236957][T14566]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  731.243330][T14566]  ? lock_acquire+0x20f/0x490
[  731.248064][T14566]  netlink_rcv_skb+0x1de/0x420
[  731.252880][T14566]  ? genl_bind+0x350/0x350
[  731.257332][T14566]  ? netlink_ack+0x1100/0x1100
[  731.262146][T14566]  ? lockdep_hardirqs_on+0x94/0x140
[  731.267408][T14566]  ? down_read+0x1a8/0x2d0
[  731.271872][T14566]  genl_rcv+0x24/0x40
[  731.275881][T14566]  netlink_unicast+0x74c/0x8c0
[  731.280703][T14566]  netlink_sendmsg+0x89e/0xbc0
[  731.285527][T14566]  ? lockdep_hardirqs_on+0x94/0x140
[  731.290772][T14566]  ? netlink_getsockopt+0x540/0x540
[  731.296024][T14566]  ? ____sys_sendmsg+0x514/0x970
[  731.301012][T14566]  ? netlink_getsockopt+0x540/0x540
[  731.306254][T14566]  ____sys_sendmsg+0x59b/0x970
[  731.311077][T14566]  ? __sys_sendmsg_sock+0x30/0x30
[  731.316154][T14566]  ? __import_iovec+0x315/0x500
[  731.321053][T14566]  ? import_iovec+0x6f/0xa0
[  731.325600][T14566]  ___sys_sendmsg+0x21c/0x290
[  731.330324][T14566]  ? __sys_sendmsg+0x270/0x270
[  731.335184][T14566]  ? __fdget+0x17c/0x200
[  731.339478][T14566]  __se_sys_sendmsg+0x19e/0x270
[  731.344377][T14566]  ? perf_trace_preemptirq_template+0x287/0x330
[  731.350655][T14566]  ? __x64_sys_sendmsg+0x80/0x80
[  731.355655][T14566]  ? lockdep_hardirqs_on+0x94/0x140
[  731.360904][T14566]  do_syscall_64+0x4c/0xa0
[  731.365358][T14566]  ? clear_bhb_loop+0x60/0xb0
[  731.370067][T14566]  ? clear_bhb_loop+0x60/0xb0
[  731.374778][T14566]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  731.380712][T14566] RIP: 0033:0x7f5e7d58e969
[  731.385163][T14566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.404822][T14566] RSP: 002b:00007f5e7e378038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  731.413271][T14566] RAX: ffffffffffffffda RBX: 00007f5e7d7b5fa0 RCX: 00007f5e7d58e969
[  731.421276][T14566] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  731.429275][T14566] RBP: 00007f5e7d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  731.437283][T14566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  731.445377][T14566] R13: 0000000000000000 R14: 00007f5e7d7b5fa0 R15: 00007ffd88113fb8
[  731.453401][T14566]  </TASK>
[  732.188466][T14586] netlink: 14566 bytes leftover after parsing attributes in process `syz.5.3829'.
[  732.251721][T14583] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3827'.
[  734.930733][T14634] netlink: 14566 bytes leftover after parsing attributes in process `syz.0.3833'.
[  735.475842][T14647] delete_channel: no stack
[  735.838350][T14655] delete_channel: no stack
[  737.471556][T14679] netlink: 'syz.3.3848': attribute type 39 has an invalid length.
[  737.765977][T14681] netlink: 14566 bytes leftover after parsing attributes in process `syz.4.3850'.
[  738.452917][T14697] delete_channel: no stack
[  740.082434][T14718] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.3863'.
[  740.093677][T14720] netlink: 14566 bytes leftover after parsing attributes in process `syz.3.3865'.
[  740.245372][T14718] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  740.288140][T14718] CPU: 0 PID: 14718 Comm: syz.0.3863 Not tainted 6.1.139-syzkaller #0
[  740.296368][T14718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  740.306470][T14718] Call Trace:
[  740.309772][T14718]  <TASK>
[  740.312723][T14718]  dump_stack_lvl+0x168/0x22e
[  740.317452][T14718]  ? show_regs_print_info+0x12/0x12
[  740.322697][T14718]  ? load_image+0x3b0/0x3b0
[  740.327268][T14718]  ? sysfs_warn_dup+0x61/0xa0
[  740.332016][T14718]  sysfs_warn_dup+0x8a/0xa0
[  740.336572][T14718]  sysfs_do_create_link_sd+0xc0/0x110
[  740.341994][T14718]  device_add+0x7ed/0xfb0
[  740.346378][T14718]  wiphy_register+0x1e68/0x2bd0
[  740.351302][T14718]  ? cfg80211_event_work+0x40/0x40
[  740.356463][T14718]  ? minstrel_ht_alloc+0x894/0xa20
[  740.361627][T14718]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  740.367740][T14718]  ieee80211_register_hw+0x2c29/0x38c0
[  740.373255][T14718]  ? ieee80211_register_hw+0xf31/0x38c0
[  740.378844][T14718]  ? ieee80211_register_hw+0xe31/0x38c0
[  740.384449][T14718]  ? ieee80211_tasklet_handler+0x20/0x20
[  740.390140][T14718]  ? rcu_is_watching+0x11/0xa0
[  740.394958][T14718]  ? memset+0x1e/0x40
[  740.398986][T14718]  ? hrtimer_init+0x10c/0x220
[  740.403707][T14718]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  740.409495][T14718]  hwsim_new_radio_nl+0xafa/0xce0
[  740.414571][T14718]  genl_family_rcv_msg_doit+0x22e/0x320
[  740.420156][T14718]  ? end_current_label_crit_section+0x170/0x170
[  740.426448][T14718]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  740.432387][T14718]  ? bpf_lsm_capable+0x5/0x10
[  740.437108][T14718]  ? security_capable+0x85/0xb0
[  740.442003][T14718]  genl_rcv_msg+0x5f2/0x780
[  740.446551][T14718]  ? genl_bind+0x350/0x350
[  740.450997][T14718]  ? check_preemption_disabled+0x37/0x110
[  740.456834][T14718]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  740.463219][T14718]  netlink_rcv_skb+0x1de/0x420
[  740.468030][T14718]  ? genl_bind+0x350/0x350
[  740.472480][T14718]  ? netlink_ack+0x1100/0x1100
[  740.477291][T14718]  ? rcu_read_unlock_special+0x1/0x500
[  740.482787][T14718]  ? down_read+0x1a8/0x2d0
[  740.487241][T14718]  genl_rcv+0x24/0x40
[  740.491253][T14718]  netlink_unicast+0x74c/0x8c0
[  740.496069][T14718]  netlink_sendmsg+0x89e/0xbc0
[  740.500887][T14718]  ? netlink_getsockopt+0x540/0x540
[  740.506131][T14718]  ? aa_sock_msg_perm+0x94/0x150
[  740.511105][T14718]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  740.516431][T14718]  ? security_socket_sendmsg+0x7c/0xa0
[  740.521925][T14718]  ? netlink_getsockopt+0x540/0x540
[  740.527168][T14718]  ____sys_sendmsg+0x59b/0x970
[  740.531985][T14718]  ? __sys_sendmsg_sock+0x30/0x30
[  740.537051][T14718]  ? __import_iovec+0x315/0x500
[  740.541943][T14718]  ? import_iovec+0x6f/0xa0
[  740.546480][T14718]  ___sys_sendmsg+0x21c/0x290
[  740.551202][T14718]  ? __sys_sendmsg+0x270/0x270
[  740.556057][T14718]  ? __fdget+0x17c/0x200
[  740.560347][T14718]  __se_sys_sendmsg+0x19e/0x270
[  740.565246][T14718]  ? __x64_sys_sendmsg+0x80/0x80
[  740.570249][T14718]  do_syscall_64+0x4c/0xa0
[  740.574703][T14718]  ? clear_bhb_loop+0x60/0xb0
[  740.579416][T14718]  ? clear_bhb_loop+0x60/0xb0
[  740.584134][T14718]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  740.590074][T14718] RIP: 0033:0x7f9a0098e969
[  740.594519][T14718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  740.614166][T14718] RSP: 002b:00007f9a01849038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  740.622620][T14718] RAX: ffffffffffffffda RBX: 00007f9a00bb5fa0 RCX: 00007f9a0098e969
[  740.630629][T14718] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  740.638635][T14718] RBP: 00007f9a00a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  740.646639][T14718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  740.654656][T14718] R13: 0000000000000000 R14: 00007f9a00bb5fa0 R15: 00007fff766c3298
[  740.662692][T14718]  </TASK>
[  740.886102][T14725] netlink: 'syz.4.3867': attribute type 39 has an invalid length.
[  740.920952][T14730] delete_channel: no stack
[  741.993199][T14746] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.3874'.
[  742.130602][T14746] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  742.173394][T14746] CPU: 1 PID: 14746 Comm: syz.5.3874 Not tainted 6.1.139-syzkaller #0
[  742.181621][T14746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  742.191722][T14746] Call Trace:
[  742.195043][T14746]  <TASK>
[  742.198000][T14746]  dump_stack_lvl+0x168/0x22e
[  742.202739][T14746]  ? show_regs_print_info+0x12/0x12
[  742.207992][T14746]  ? load_image+0x3b0/0x3b0
[  742.212556][T14746]  sysfs_warn_dup+0x8a/0xa0
[  742.217084][T14746]  sysfs_do_create_link_sd+0xc0/0x110
[  742.222501][T14746]  device_add+0x7ed/0xfb0
[  742.226869][T14746]  wiphy_register+0x1e68/0x2bd0
[  742.231869][T14746]  ? __rtnl_unlock+0x14/0xe0
[  742.236499][T14746]  ? cfg80211_event_work+0x40/0x40
[  742.241635][T14746]  ? minstrel_ht_alloc+0x894/0xa20
[  742.246771][T14746]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  742.252859][T14746]  ieee80211_register_hw+0x2c29/0x38c0
[  742.258350][T14746]  ? ieee80211_register_hw+0xf31/0x38c0
[  742.263914][T14746]  ? ieee80211_register_hw+0xe31/0x38c0
[  742.269497][T14746]  ? ieee80211_tasklet_handler+0x20/0x20
[  742.275155][T14746]  ? rcu_is_watching+0x11/0xa0
[  742.279949][T14746]  ? memset+0x1e/0x40
[  742.283942][T14746]  ? hrtimer_init+0x10c/0x220
[  742.288652][T14746]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  742.294403][T14746]  hwsim_new_radio_nl+0xafa/0xce0
[  742.299454][T14746]  genl_family_rcv_msg_doit+0x22e/0x320
[  742.305014][T14746]  ? end_current_label_crit_section+0x170/0x170
[  742.311278][T14746]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  742.317196][T14746]  ? bpf_lsm_capable+0x5/0x10
[  742.321893][T14746]  ? security_capable+0x85/0xb0
[  742.326778][T14746]  genl_rcv_msg+0x5f2/0x780
[  742.331321][T14746]  ? genl_bind+0x350/0x350
[  742.335753][T14746]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  742.342115][T14746]  netlink_rcv_skb+0x1de/0x420
[  742.346903][T14746]  ? genl_bind+0x350/0x350
[  742.351333][T14746]  ? netlink_ack+0x1100/0x1100
[  742.356126][T14746]  ? down_read+0x1a8/0x2d0
[  742.360564][T14746]  genl_rcv+0x24/0x40
[  742.364555][T14746]  netlink_unicast+0x74c/0x8c0
[  742.369359][T14746]  netlink_sendmsg+0x89e/0xbc0
[  742.374155][T14746]  ? netlink_getsockopt+0x540/0x540
[  742.379435][T14746]  ? aa_sock_msg_perm+0x94/0x150
[  742.384414][T14746]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  742.389724][T14746]  ? security_socket_sendmsg+0x7c/0xa0
[  742.395199][T14746]  ? netlink_getsockopt+0x540/0x540
[  742.400434][T14746]  ____sys_sendmsg+0x59b/0x970
[  742.405231][T14746]  ? __sys_sendmsg_sock+0x30/0x30
[  742.410278][T14746]  ? __import_iovec+0x315/0x500
[  742.415151][T14746]  ? import_iovec+0x6f/0xa0
[  742.419669][T14746]  ___sys_sendmsg+0x21c/0x290
[  742.424370][T14746]  ? __sys_sendmsg+0x270/0x270
[  742.429189][T14746]  ? __fdget+0x17c/0x200
[  742.433457][T14746]  __se_sys_sendmsg+0x19e/0x270
[  742.438329][T14746]  ? __x64_sys_sendmsg+0x80/0x80
[  742.443305][T14746]  ? syscall_enter_from_user_mode+0x2a/0x80
[  742.449213][T14746]  do_syscall_64+0x4c/0xa0
[  742.453646][T14746]  ? clear_bhb_loop+0x60/0xb0
[  742.458332][T14746]  ? clear_bhb_loop+0x60/0xb0
[  742.463016][T14746]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  742.468932][T14746] RIP: 0033:0x7f6a82b8e969
[  742.473362][T14746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.492997][T14746] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  742.501422][T14746] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  742.509423][T14746] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  742.517502][T14746] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  742.525497][T14746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  742.533494][T14746] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  742.541621][T14746]  </TASK>
[  743.226819][T14760] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3890'.
[  743.353659][T14767] delete_channel: no stack
[  743.803714][T14776] netlink: 'syz.1.3885': attribute type 39 has an invalid length.
[  744.844226][T14796] netlink: 'syz.0.3891': attribute type 10 has an invalid length.
[  744.885956][T14796] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3891'.
[  745.050376][T14799] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.3893'.
[  745.245696][T14799] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  745.302019][T14799] CPU: 0 PID: 14799 Comm: syz.4.3893 Not tainted 6.1.139-syzkaller #0
[  745.310263][T14799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  745.320363][T14799] Call Trace:
[  745.323670][T14799]  <TASK>
[  745.326639][T14799]  dump_stack_lvl+0x168/0x22e
[  745.331370][T14799]  ? show_regs_print_info+0x12/0x12
[  745.336617][T14799]  ? load_image+0x3b0/0x3b0
[  745.341168][T14799]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  745.347285][T14799]  sysfs_warn_dup+0x8a/0xa0
[  745.351836][T14799]  sysfs_do_create_link_sd+0xc0/0x110
[  745.357263][T14799]  device_add+0x7ed/0xfb0
[  745.361644][T14799]  wiphy_register+0x1e68/0x2bd0
[  745.366559][T14799]  ? cfg80211_event_work+0x40/0x40
[  745.371708][T14799]  ? minstrel_ht_alloc+0x894/0xa20
[  745.376892][T14799]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  745.383001][T14799]  ieee80211_register_hw+0x2c29/0x38c0
[  745.388521][T14799]  ? ieee80211_register_hw+0xf31/0x38c0
[  745.394123][T14799]  ? ieee80211_register_hw+0xe31/0x38c0
[  745.399738][T14799]  ? ieee80211_tasklet_handler+0x20/0x20
[  745.405425][T14799]  ? rcu_is_watching+0x11/0xa0
[  745.410232][T14799]  ? memset+0x1e/0x40
[  745.414259][T14799]  ? hrtimer_init+0x10c/0x220
[  745.418991][T14799]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  745.424776][T14799]  hwsim_new_radio_nl+0xafa/0xce0
[  745.429865][T14799]  genl_family_rcv_msg_doit+0x22e/0x320
[  745.435451][T14799]  ? end_current_label_crit_section+0x170/0x170
[  745.441741][T14799]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  745.447679][T14799]  ? bpf_lsm_capable+0x5/0x10
[  745.452395][T14799]  ? security_capable+0x85/0xb0
[  745.457291][T14799]  genl_rcv_msg+0x5f2/0x780
[  745.461838][T14799]  ? genl_bind+0x350/0x350
[  745.466295][T14799]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  745.472670][T14799]  ? lock_acquire+0x20f/0x490
[  745.477389][T14799]  netlink_rcv_skb+0x1de/0x420
[  745.482199][T14799]  ? genl_bind+0x350/0x350
[  745.486663][T14799]  ? netlink_ack+0x1100/0x1100
[  745.491489][T14799]  ? down_read+0x1a8/0x2d0
[  745.495955][T14799]  genl_rcv+0x24/0x40
[  745.499974][T14799]  netlink_unicast+0x74c/0x8c0
[  745.504807][T14799]  netlink_sendmsg+0x89e/0xbc0
[  745.509632][T14799]  ? netlink_getsockopt+0x540/0x540
[  745.514882][T14799]  ? aa_sock_msg_perm+0x94/0x150
[  745.519860][T14799]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  745.525306][T14799]  ? security_socket_sendmsg+0x7c/0xa0
[  745.530813][T14799]  ? netlink_getsockopt+0x540/0x540
[  745.536056][T14799]  ____sys_sendmsg+0x59b/0x970
[  745.540877][T14799]  ? __sys_sendmsg_sock+0x30/0x30
[  745.545945][T14799]  ? __import_iovec+0x315/0x500
[  745.550849][T14799]  ? import_iovec+0x6f/0xa0
[  745.555405][T14799]  ___sys_sendmsg+0x21c/0x290
[  745.560236][T14799]  ? __sys_sendmsg+0x270/0x270
[  745.565098][T14799]  ? __fdget+0x17c/0x200
[  745.569388][T14799]  __se_sys_sendmsg+0x19e/0x270
[  745.574280][T14799]  ? ct_nmi_exit+0x145/0x1c0
[  745.578905][T14799]  ? __x64_sys_sendmsg+0x80/0x80
[  745.583904][T14799]  ? lockdep_hardirqs_on+0x94/0x140
[  745.589149][T14799]  do_syscall_64+0x4c/0xa0
[  745.593605][T14799]  ? clear_bhb_loop+0x60/0xb0
[  745.598323][T14799]  ? clear_bhb_loop+0x60/0xb0
[  745.603044][T14799]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  745.608987][T14799] RIP: 0033:0x7fa48cb8e969
[  745.613438][T14799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.633086][T14799] RSP: 002b:00007fa48da22038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  745.641540][T14799] RAX: ffffffffffffffda RBX: 00007fa48cdb5fa0 RCX: 00007fa48cb8e969
[  745.649550][T14799] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  745.657557][T14799] RBP: 00007fa48cc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  745.665562][T14799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  745.673560][T14799] R13: 0000000000000000 R14: 00007fa48cdb5fa0 R15: 00007ffc6f1a5b28
[  745.681584][T14799]  </TASK>
[  746.051220][T14811] delete_channel: no stack
[  746.805618][T14821] delete_channel: no stack
[  746.989179][T14830] netlink: 'syz.0.3903': attribute type 39 has an invalid length.
[  747.078256][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  747.084691][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  748.800530][T14860] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.3916'.
[  748.884323][T14860] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  748.928877][T14860] CPU: 1 PID: 14860 Comm: syz.5.3916 Not tainted 6.1.139-syzkaller #0
[  748.937106][T14860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  748.947201][T14860] Call Trace:
[  748.950514][T14860]  <TASK>
[  748.953479][T14860]  dump_stack_lvl+0x168/0x22e
[  748.958197][T14860]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  748.964388][T14860]  ? show_regs_print_info+0x12/0x12
[  748.969638][T14860]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  748.975854][T14860]  sysfs_warn_dup+0x8a/0xa0
[  748.980404][T14860]  sysfs_do_create_link_sd+0xc0/0x110
[  748.985830][T14860]  device_add+0x7ed/0xfb0
[  748.990214][T14860]  wiphy_register+0x1e68/0x2bd0
[  748.995130][T14860]  ? cfg80211_event_work+0x40/0x40
[  749.000292][T14860]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  749.006501][T14860]  ieee80211_register_hw+0x2c29/0x38c0
[  749.012016][T14860]  ? ieee80211_register_hw+0xf31/0x38c0
[  749.017611][T14860]  ? ieee80211_register_hw+0xe31/0x38c0
[  749.023223][T14860]  ? ieee80211_tasklet_handler+0x20/0x20
[  749.028905][T14860]  ? rcu_is_watching+0x11/0xa0
[  749.033716][T14860]  ? memset+0x1e/0x40
[  749.037737][T14860]  ? hrtimer_init+0x10c/0x220
[  749.042456][T14860]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  749.048236][T14860]  hwsim_new_radio_nl+0xafa/0xce0
[  749.053316][T14860]  genl_family_rcv_msg_doit+0x22e/0x320
[  749.058898][T14860]  ? end_current_label_crit_section+0x170/0x170
[  749.065180][T14860]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  749.071121][T14860]  ? bpf_lsm_capable+0x5/0x10
[  749.075844][T14860]  ? security_capable+0x85/0xb0
[  749.080743][T14860]  genl_rcv_msg+0x5f2/0x780
[  749.085290][T14860]  ? genl_bind+0x350/0x350
[  749.089738][T14860]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  749.096110][T14860]  ? lock_acquire+0x20f/0x490
[  749.100843][T14860]  netlink_rcv_skb+0x1de/0x420
[  749.105657][T14860]  ? genl_bind+0x350/0x350
[  749.110105][T14860]  ? netlink_ack+0x1100/0x1100
[  749.114919][T14860]  ? rcu_read_unlock_special+0x1/0x500
[  749.120417][T14860]  ? down_read+0x1a8/0x2d0
[  749.124875][T14860]  genl_rcv+0x24/0x40
[  749.128881][T14860]  netlink_unicast+0x74c/0x8c0
[  749.133678][T14860]  netlink_sendmsg+0x89e/0xbc0
[  749.138458][T14860]  ? lockdep_hardirqs_on+0x94/0x140
[  749.143688][T14860]  ? netlink_getsockopt+0x540/0x540
[  749.148910][T14860]  ? bpf_lsm_socket_accept+0x10/0x10
[  749.154214][T14860]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  749.159521][T14860]  ? security_socket_sendmsg+0x7c/0xa0
[  749.165004][T14860]  ? netlink_getsockopt+0x540/0x540
[  749.170228][T14860]  ____sys_sendmsg+0x59b/0x970
[  749.175030][T14860]  ? __sys_sendmsg_sock+0x30/0x30
[  749.180084][T14860]  ? __import_iovec+0x315/0x500
[  749.184959][T14860]  ? import_iovec+0x6f/0xa0
[  749.189478][T14860]  ___sys_sendmsg+0x21c/0x290
[  749.194180][T14860]  ? __sys_sendmsg+0x270/0x270
[  749.199001][T14860]  ? __fdget+0x17c/0x200
[  749.203263][T14860]  __se_sys_sendmsg+0x19e/0x270
[  749.208131][T14860]  ? ct_nmi_exit+0x145/0x1c0
[  749.212730][T14860]  ? __x64_sys_sendmsg+0x80/0x80
[  749.217704][T14860]  ? lockdep_hardirqs_on+0x94/0x140
[  749.222921][T14860]  do_syscall_64+0x4c/0xa0
[  749.227352][T14860]  ? clear_bhb_loop+0x60/0xb0
[  749.232054][T14860]  ? clear_bhb_loop+0x60/0xb0
[  749.236763][T14860]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  749.242686][T14860] RIP: 0033:0x7f6a82b8e969
[  749.247113][T14860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  749.266732][T14860] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  749.275156][T14860] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  749.283137][T14860] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  749.291113][T14860] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  749.299091][T14860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  749.307069][T14860] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  749.315063][T14860]  </TASK>
[  749.452030][T14866] delete_channel: no stack
[  750.039535][T14882] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3927'.
[  750.122298][T14884] netlink: 14566 bytes leftover after parsing attributes in process `syz.1.3925'.
[  750.724610][T14899] delete_channel: no stack
[  750.739098][T14896] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.3932'.
[  750.858784][T14896] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  750.931315][T14896] CPU: 1 PID: 14896 Comm: syz.5.3932 Not tainted 6.1.139-syzkaller #0
[  750.939545][T14896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  750.949644][T14896] Call Trace:
[  750.952949][T14896]  <TASK>
[  750.955901][T14896]  dump_stack_lvl+0x168/0x22e
[  750.960630][T14896]  ? show_regs_print_info+0x12/0x12
[  750.965877][T14896]  ? load_image+0x3b0/0x3b0
[  750.970434][T14896]  sysfs_warn_dup+0x8a/0xa0
[  750.974983][T14896]  sysfs_do_create_link_sd+0xc0/0x110
[  750.980404][T14896]  device_add+0x7ed/0xfb0
[  750.984786][T14896]  wiphy_register+0x1e68/0x2bd0
[  750.989704][T14896]  ? cfg80211_event_work+0x40/0x40
[  750.994859][T14896]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  751.001071][T14896]  ieee80211_register_hw+0x2c29/0x38c0
[  751.006602][T14896]  ? ieee80211_register_hw+0xf31/0x38c0
[  751.012200][T14896]  ? ieee80211_register_hw+0xe31/0x38c0
[  751.017798][T14896]  ? ieee80211_tasklet_handler+0x20/0x20
[  751.023486][T14896]  ? rcu_is_watching+0x11/0xa0
[  751.028297][T14896]  ? memset+0x1e/0x40
[  751.032401][T14896]  ? hrtimer_init+0x10c/0x220
[  751.037115][T14896]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  751.042889][T14896]  hwsim_new_radio_nl+0xafa/0xce0
[  751.047964][T14896]  genl_family_rcv_msg_doit+0x22e/0x320
[  751.053543][T14896]  ? end_current_label_crit_section+0x170/0x170
[  751.059829][T14896]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  751.065774][T14896]  ? bpf_lsm_capable+0x5/0x10
[  751.070494][T14896]  ? security_capable+0x85/0xb0
[  751.075401][T14896]  genl_rcv_msg+0x5f2/0x780
[  751.079944][T14896]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  751.086141][T14896]  ? genl_bind+0x350/0x350
[  751.090596][T14896]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  751.096966][T14896]  ? netlink_rcv_skb+0x1bd/0x420
[  751.101962][T14896]  netlink_rcv_skb+0x1de/0x420
[  751.106779][T14896]  ? genl_bind+0x350/0x350
[  751.111228][T14896]  ? netlink_ack+0x1100/0x1100
[  751.116048][T14896]  ? down_read+0x1a8/0x2d0
[  751.120502][T14896]  genl_rcv+0x24/0x40
[  751.124514][T14896]  netlink_unicast+0x74c/0x8c0
[  751.129334][T14896]  netlink_sendmsg+0x89e/0xbc0
[  751.134150][T14896]  ? netlink_getsockopt+0x540/0x540
[  751.139390][T14896]  ? aa_sock_msg_perm+0x94/0x150
[  751.144377][T14896]  ? aa_sk_perm+0x1/0x920
[  751.148745][T14896]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  751.154064][T14896]  ? security_socket_sendmsg+0x7c/0xa0
[  751.159555][T14896]  ? netlink_getsockopt+0x540/0x540
[  751.164807][T14896]  ____sys_sendmsg+0x59b/0x970
[  751.169634][T14896]  ? __sys_sendmsg_sock+0x30/0x30
[  751.174785][T14896]  ? __import_iovec+0x315/0x500
[  751.179691][T14896]  ? import_iovec+0x6f/0xa0
[  751.184232][T14896]  ___sys_sendmsg+0x21c/0x290
[  751.188958][T14896]  ? __sys_sendmsg+0x270/0x270
[  751.193816][T14896]  ? __fdget+0x17c/0x200
[  751.198106][T14896]  __se_sys_sendmsg+0x19e/0x270
[  751.203002][T14896]  ? __x64_sys_sendmsg+0x80/0x80
[  751.207996][T14896]  ? syscall_enter_from_user_mode+0x2a/0x80
[  751.213938][T14896]  do_syscall_64+0x4c/0xa0
[  751.218401][T14896]  ? clear_bhb_loop+0x60/0xb0
[  751.223109][T14896]  ? clear_bhb_loop+0x60/0xb0
[  751.227820][T14896]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  751.233761][T14896] RIP: 0033:0x7f6a82b8e969
[  751.238202][T14896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.257847][T14896] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  751.266298][T14896] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  751.274307][T14896] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  751.282313][T14896] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  751.290322][T14896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  751.298325][T14896] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  751.306351][T14896]  </TASK>
[  751.726132][T14906] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.3935'.
[  751.789713][T14906] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  751.857028][T14906] CPU: 0 PID: 14906 Comm: syz.3.3935 Not tainted 6.1.139-syzkaller #0
[  751.865260][T14906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  751.875353][T14906] Call Trace:
[  751.878680][T14906]  <TASK>
[  751.881650][T14906]  dump_stack_lvl+0x168/0x22e
[  751.886379][T14906]  ? show_regs_print_info+0x12/0x12
[  751.891625][T14906]  ? load_image+0x3b0/0x3b0
[  751.896160][T14906]  sysfs_warn_dup+0x8a/0xa0
[  751.900683][T14906]  sysfs_do_create_link_sd+0xc0/0x110
[  751.906081][T14906]  device_add+0x7ed/0xfb0
[  751.910439][T14906]  wiphy_register+0x1e68/0x2bd0
[  751.915345][T14906]  ? cfg80211_event_work+0x40/0x40
[  751.920478][T14906]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  751.926660][T14906]  ? ieee80211_register_hw+0x2b31/0x38c0
[  751.932321][T14906]  ieee80211_register_hw+0x2c29/0x38c0
[  751.937808][T14906]  ? ieee80211_register_hw+0xf31/0x38c0
[  751.943372][T14906]  ? ieee80211_register_hw+0xe31/0x38c0
[  751.948947][T14906]  ? ieee80211_tasklet_handler+0x20/0x20
[  751.954597][T14906]  ? rcu_is_watching+0x11/0xa0
[  751.959383][T14906]  ? memset+0x1e/0x40
[  751.963378][T14906]  ? hrtimer_init+0x10c/0x220
[  751.968069][T14906]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  751.973819][T14906]  hwsim_new_radio_nl+0xafa/0xce0
[  751.978863][T14906]  genl_family_rcv_msg_doit+0x22e/0x320
[  751.984421][T14906]  ? end_current_label_crit_section+0x170/0x170
[  751.990675][T14906]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  751.996582][T14906]  ? bpf_lsm_capable+0x5/0x10
[  752.001276][T14906]  ? security_capable+0x85/0xb0
[  752.006144][T14906]  genl_rcv_msg+0x5f2/0x780
[  752.010661][T14906]  ? genl_bind+0x350/0x350
[  752.015091][T14906]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  752.021445][T14906]  netlink_rcv_skb+0x1de/0x420
[  752.026228][T14906]  ? genl_bind+0x350/0x350
[  752.030667][T14906]  ? netlink_ack+0x1100/0x1100
[  752.035452][T14906]  ? down_read+0x1a8/0x2d0
[  752.039880][T14906]  genl_rcv+0x24/0x40
[  752.043868][T14906]  netlink_unicast+0x74c/0x8c0
[  752.048656][T14906]  netlink_sendmsg+0x89e/0xbc0
[  752.053558][T14906]  ? netlink_getsockopt+0x540/0x540
[  752.058784][T14906]  ? aa_sock_msg_perm+0x94/0x150
[  752.063735][T14906]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  752.069030][T14906]  ? security_socket_sendmsg+0x7c/0xa0
[  752.074498][T14906]  ? netlink_getsockopt+0x540/0x540
[  752.079741][T14906]  ____sys_sendmsg+0x59b/0x970
[  752.084540][T14906]  ? __sys_sendmsg_sock+0x30/0x30
[  752.089590][T14906]  ? __import_iovec+0x315/0x500
[  752.094466][T14906]  ? import_iovec+0x6f/0xa0
[  752.098981][T14906]  ___sys_sendmsg+0x21c/0x290
[  752.103701][T14906]  ? __sys_sendmsg+0x270/0x270
[  752.108527][T14906]  ? __fdget+0x17c/0x200
[  752.112792][T14906]  __se_sys_sendmsg+0x19e/0x270
[  752.117667][T14906]  ? __x64_sys_sendmsg+0x80/0x80
[  752.122637][T14906]  ? syscall_enter_from_user_mode+0x2a/0x80
[  752.128542][T14906]  do_syscall_64+0x4c/0xa0
[  752.132972][T14906]  ? clear_bhb_loop+0x60/0xb0
[  752.137655][T14906]  ? clear_bhb_loop+0x60/0xb0
[  752.142343][T14906]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  752.148254][T14906] RIP: 0033:0x7f5e7d58e969
[  752.152680][T14906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.172325][T14906] RSP: 002b:00007f5e7e378038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  752.180765][T14906] RAX: ffffffffffffffda RBX: 00007f5e7d7b5fa0 RCX: 00007f5e7d58e969
[  752.188761][T14906] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  752.196736][T14906] RBP: 00007f5e7d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  752.204711][T14906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  752.212692][T14906] R13: 0000000000000000 R14: 00007f5e7d7b5fa0 R15: 00007ffd88113fb8
[  752.220698][T14906]  </TASK>
[  753.002773][T14931] netlink: 14566 bytes leftover after parsing attributes in process `syz.4.3943'.
[  753.021559][T14930] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3944'.
[  753.246795][T14940] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.3945'.
[  753.292239][T14940] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  753.351239][T14940] CPU: 1 PID: 14940 Comm: syz.3.3945 Not tainted 6.1.139-syzkaller #0
[  753.359562][T14940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  753.369636][T14940] Call Trace:
[  753.372930][T14940]  <TASK>
[  753.375866][T14940]  dump_stack_lvl+0x168/0x22e
[  753.380563][T14940]  ? show_regs_print_info+0x12/0x12
[  753.385789][T14940]  ? load_image+0x3b0/0x3b0
[  753.390333][T14940]  sysfs_warn_dup+0x8a/0xa0
[  753.394867][T14940]  sysfs_do_create_link_sd+0xc0/0x110
[  753.400271][T14940]  device_add+0x7ed/0xfb0
[  753.404627][T14940]  wiphy_register+0x1e68/0x2bd0
[  753.409519][T14940]  ? cfg80211_event_work+0x40/0x40
[  753.414648][T14940]  ? minstrel_ht_alloc+0x894/0xa20
[  753.419779][T14940]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  753.425863][T14940]  ieee80211_register_hw+0x2c29/0x38c0
[  753.431350][T14940]  ? ieee80211_register_hw+0xf31/0x38c0
[  753.436907][T14940]  ? ieee80211_register_hw+0xe31/0x38c0
[  753.442479][T14940]  ? ieee80211_tasklet_handler+0x20/0x20
[  753.448136][T14940]  ? rcu_is_watching+0x11/0xa0
[  753.452924][T14940]  ? memset+0x1e/0x40
[  753.456917][T14940]  ? hrtimer_init+0x10c/0x220
[  753.461602][T14940]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  753.467349][T14940]  hwsim_new_radio_nl+0xafa/0xce0
[  753.472394][T14940]  genl_family_rcv_msg_doit+0x22e/0x320
[  753.477953][T14940]  ? end_current_label_crit_section+0x170/0x170
[  753.484213][T14940]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  753.490122][T14940]  ? bpf_lsm_capable+0x5/0x10
[  753.494814][T14940]  ? security_capable+0x85/0xb0
[  753.499684][T14940]  genl_rcv_msg+0x5f2/0x780
[  753.504211][T14940]  ? genl_bind+0x350/0x350
[  753.508634][T14940]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  753.514985][T14940]  netlink_rcv_skb+0x1de/0x420
[  753.519767][T14940]  ? genl_bind+0x350/0x350
[  753.524198][T14940]  ? netlink_ack+0x1100/0x1100
[  753.528987][T14940]  ? down_read+0x1a8/0x2d0
[  753.533417][T14940]  genl_rcv+0x24/0x40
[  753.537411][T14940]  netlink_unicast+0x74c/0x8c0
[  753.542203][T14940]  netlink_sendmsg+0x89e/0xbc0
[  753.546993][T14940]  ? netlink_getsockopt+0x540/0x540
[  753.552210][T14940]  ? aa_sock_msg_perm+0x94/0x150
[  753.557159][T14940]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  753.562476][T14940]  ? security_socket_sendmsg+0x7c/0xa0
[  753.567947][T14940]  ? netlink_getsockopt+0x540/0x540
[  753.573161][T14940]  ____sys_sendmsg+0x59b/0x970
[  753.577955][T14940]  ? __sys_sendmsg_sock+0x30/0x30
[  753.582992][T14940]  ? __import_iovec+0x315/0x500
[  753.587859][T14940]  ? import_iovec+0x6f/0xa0
[  753.592375][T14940]  ___sys_sendmsg+0x21c/0x290
[  753.597076][T14940]  ? __sys_sendmsg+0x270/0x270
[  753.601896][T14940]  ? __fdget+0x17c/0x200
[  753.606163][T14940]  __se_sys_sendmsg+0x19e/0x270
[  753.611057][T14940]  ? perf_trace_preemptirq_template+0x287/0x330
[  753.617312][T14940]  ? __x64_sys_sendmsg+0x80/0x80
[  753.622281][T14940]  ? lockdep_hardirqs_on+0x94/0x140
[  753.627500][T14940]  do_syscall_64+0x4c/0xa0
[  753.631930][T14940]  ? clear_bhb_loop+0x60/0xb0
[  753.636614][T14940]  ? clear_bhb_loop+0x60/0xb0
[  753.641308][T14940]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  753.647225][T14940] RIP: 0033:0x7f5e7d58e969
[  753.651647][T14940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.671271][T14940] RSP: 002b:00007f5e7e357038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  753.679703][T14940] RAX: ffffffffffffffda RBX: 00007f5e7d7b6080 RCX: 00007f5e7d58e969
[  753.687683][T14940] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  753.695664][T14940] RBP: 00007f5e7d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  753.703643][T14940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  753.711619][T14940] R13: 0000000000000000 R14: 00007f5e7d7b6080 R15: 00007ffd88113fb8
[  753.719619][T14940]  </TASK>
[  754.118282][T14956] netlink: 'syz.1.3951': attribute type 21 has an invalid length.
[  754.127084][T14956] netlink: 128 bytes leftover after parsing attributes in process `syz.1.3951'.
[  754.137212][T14956] netlink: 'syz.1.3951': attribute type 5 has an invalid length.
[  754.145440][T14956] netlink: 'syz.1.3951': attribute type 6 has an invalid length.
[  754.180687][T14956] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3951'.
[  754.315270][T14954] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.3953'.
[  754.358746][T14954] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  754.414917][T14954] CPU: 1 PID: 14954 Comm: syz.5.3953 Not tainted 6.1.139-syzkaller #0
[  754.423162][T14954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  754.433254][T14954] Call Trace:
[  754.436564][T14954]  <TASK>
[  754.439522][T14954]  dump_stack_lvl+0x168/0x22e
[  754.444251][T14954]  ? show_regs_print_info+0x12/0x12
[  754.449490][T14954]  ? load_image+0x3b0/0x3b0
[  754.454046][T14954]  sysfs_warn_dup+0x8a/0xa0
[  754.458594][T14954]  sysfs_do_create_link_sd+0xc0/0x110
[  754.464013][T14954]  device_add+0x7ed/0xfb0
[  754.468399][T14954]  wiphy_register+0x1e68/0x2bd0
[  754.473317][T14954]  ? cfg80211_event_work+0x40/0x40
[  754.478473][T14954]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  754.484673][T14954]  ? rtnl_unlock+0x5/0x10
[  754.489049][T14954]  ieee80211_register_hw+0x2c29/0x38c0
[  754.494567][T14954]  ? ieee80211_register_hw+0xf31/0x38c0
[  754.500166][T14954]  ? ieee80211_register_hw+0xe31/0x38c0
[  754.505766][T14954]  ? ieee80211_tasklet_handler+0x20/0x20
[  754.511456][T14954]  ? rcu_is_watching+0x11/0xa0
[  754.516275][T14954]  ? memset+0x1e/0x40
[  754.520295][T14954]  ? hrtimer_init+0x10c/0x220
[  754.525009][T14954]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  754.530778][T14954]  hwsim_new_radio_nl+0xafa/0xce0
[  754.535852][T14954]  genl_family_rcv_msg_doit+0x22e/0x320
[  754.541431][T14954]  ? end_current_label_crit_section+0x170/0x170
[  754.547712][T14954]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  754.553646][T14954]  ? bpf_lsm_capable+0x5/0x10
[  754.558361][T14954]  ? security_capable+0x85/0xb0
[  754.563257][T14954]  genl_rcv_msg+0x5f2/0x780
[  754.567809][T14954]  ? genl_bind+0x350/0x350
[  754.572262][T14954]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  754.578644][T14954]  netlink_rcv_skb+0x1de/0x420
[  754.583450][T14954]  ? genl_bind+0x350/0x350
[  754.587899][T14954]  ? netlink_ack+0x1100/0x1100
[  754.592718][T14954]  ? down_read+0x1a8/0x2d0
[  754.597176][T14954]  genl_rcv+0x24/0x40
[  754.601184][T14954]  netlink_unicast+0x74c/0x8c0
[  754.606007][T14954]  netlink_sendmsg+0x89e/0xbc0
[  754.610826][T14954]  ? netlink_getsockopt+0x540/0x540
[  754.616067][T14954]  ? aa_sock_msg_perm+0x94/0x150
[  754.621036][T14954]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  754.626362][T14954]  ? security_socket_sendmsg+0x7c/0xa0
[  754.631864][T14954]  ? netlink_getsockopt+0x540/0x540
[  754.637108][T14954]  ____sys_sendmsg+0x59b/0x970
[  754.641937][T14954]  ? __sys_sendmsg_sock+0x30/0x30
[  754.647006][T14954]  ? __import_iovec+0x315/0x500
[  754.651901][T14954]  ? import_iovec+0x6f/0xa0
[  754.656446][T14954]  ___sys_sendmsg+0x21c/0x290
[  754.661180][T14954]  ? __sys_sendmsg+0x270/0x270
[  754.666048][T14954]  ? __fdget+0x17c/0x200
[  754.670338][T14954]  __se_sys_sendmsg+0x19e/0x270
[  754.675239][T14954]  ? __x64_sys_sendmsg+0x80/0x80
[  754.680238][T14954]  ? syscall_enter_from_user_mode+0x2a/0x80
[  754.686171][T14954]  do_syscall_64+0x4c/0xa0
[  754.690623][T14954]  ? clear_bhb_loop+0x60/0xb0
[  754.695331][T14954]  ? clear_bhb_loop+0x60/0xb0
[  754.700040][T14954]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  754.705976][T14954] RIP: 0033:0x7f6a82b8e969
[  754.710419][T14954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.730059][T14954] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  754.738519][T14954] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  754.746524][T14954] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  754.754525][T14954] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  754.762622][T14954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  754.770626][T14954] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  754.778647][T14954]  </TASK>
[  755.635948][T14987] netlink: 14566 bytes leftover after parsing attributes in process `syz.3.3960'.
[  755.784413][T14994] netlink: 'syz.5.3961': attribute type 10 has an invalid length.
[  755.824346][T14994] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3961'.
[  756.367395][T15007] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.3972'.
[  756.519098][T15007] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  756.692950][T15007] CPU: 0 PID: 15007 Comm: syz.3.3972 Not tainted 6.1.139-syzkaller #0
[  756.701199][T15007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  756.711291][T15007] Call Trace:
[  756.714594][T15007]  <TASK>
[  756.717541][T15007]  dump_stack_lvl+0x168/0x22e
[  756.722260][T15007]  ? show_regs_print_info+0x12/0x12
[  756.727593][T15007]  ? load_image+0x3b0/0x3b0
[  756.732152][T15007]  sysfs_warn_dup+0x8a/0xa0
[  756.736714][T15007]  sysfs_do_create_link_sd+0xc0/0x110
[  756.742140][T15007]  device_add+0x7ed/0xfb0
[  756.746525][T15007]  wiphy_register+0x1e68/0x2bd0
[  756.751435][T15007]  ? cfg80211_event_work+0x40/0x40
[  756.756587][T15007]  ? minstrel_ht_alloc+0x894/0xa20
[  756.761739][T15007]  ? strcmp+0x4a/0xb0
[  756.765770][T15007]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  756.771877][T15007]  ieee80211_register_hw+0x2c29/0x38c0
[  756.777377][T15007]  ? ieee80211_register_hw+0xf31/0x38c0
[  756.782948][T15007]  ? ieee80211_register_hw+0xe31/0x38c0
[  756.788515][T15007]  ? ieee80211_tasklet_handler+0x20/0x20
[  756.794166][T15007]  ? rcu_is_watching+0x11/0xa0
[  756.798953][T15007]  ? memset+0x1e/0x40
[  756.802949][T15007]  ? hrtimer_init+0x10c/0x220
[  756.807636][T15007]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  756.813384][T15007]  hwsim_new_radio_nl+0xafa/0xce0
[  756.818427][T15007]  genl_family_rcv_msg_doit+0x22e/0x320
[  756.823979][T15007]  ? end_current_label_crit_section+0x170/0x170
[  756.830236][T15007]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  756.836146][T15007]  ? bpf_lsm_capable+0x5/0x10
[  756.840841][T15007]  ? security_capable+0x85/0xb0
[  756.845710][T15007]  genl_rcv_msg+0x5f2/0x780
[  756.850225][T15007]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  756.856397][T15007]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  756.862563][T15007]  ? genl_bind+0x350/0x350
[  756.866986][T15007]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  756.873338][T15007]  netlink_rcv_skb+0x1de/0x420
[  756.878129][T15007]  ? genl_bind+0x350/0x350
[  756.882552][T15007]  ? netlink_ack+0x1100/0x1100
[  756.887339][T15007]  ? down_read+0x1a8/0x2d0
[  756.891767][T15007]  genl_rcv+0x24/0x40
[  756.895758][T15007]  netlink_unicast+0x74c/0x8c0
[  756.900545][T15007]  netlink_sendmsg+0x89e/0xbc0
[  756.905335][T15007]  ? netlink_getsockopt+0x540/0x540
[  756.910555][T15007]  ? aa_sock_msg_perm+0x94/0x150
[  756.915507][T15007]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  756.920804][T15007]  ? security_socket_sendmsg+0x7c/0xa0
[  756.926270][T15007]  ? netlink_getsockopt+0x540/0x540
[  756.931487][T15007]  ____sys_sendmsg+0x59b/0x970
[  756.936281][T15007]  ? __sys_sendmsg_sock+0x30/0x30
[  756.941321][T15007]  ? __import_iovec+0x315/0x500
[  756.946192][T15007]  ? import_iovec+0x6f/0xa0
[  756.950708][T15007]  ___sys_sendmsg+0x21c/0x290
[  756.955409][T15007]  ? __sys_sendmsg+0x270/0x270
[  756.960240][T15007]  ? lockdep_hardirqs_on+0x94/0x140
[  756.965478][T15007]  ? __fdget+0x17c/0x200
[  756.969743][T15007]  __se_sys_sendmsg+0x19e/0x270
[  756.974649][T15007]  ? perf_trace_preemptirq_template+0x287/0x330
[  756.980906][T15007]  ? __x64_sys_sendmsg+0x80/0x80
[  756.985877][T15007]  ? lockdep_hardirqs_on+0x94/0x140
[  756.991097][T15007]  do_syscall_64+0x4c/0xa0
[  756.995527][T15007]  ? clear_bhb_loop+0x60/0xb0
[  757.000218][T15007]  ? clear_bhb_loop+0x60/0xb0
[  757.004905][T15007]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  757.010817][T15007] RIP: 0033:0x7f5e7d58e969
[  757.015248][T15007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  757.035072][T15007] RSP: 002b:00007f5e7e378038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  757.043496][T15007] RAX: ffffffffffffffda RBX: 00007f5e7d7b5fa0 RCX: 00007f5e7d58e969
[  757.051564][T15007] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000c
[  757.059542][T15007] RBP: 00007f5e7d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  757.067519][T15007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  757.075498][T15007] R13: 0000000000000000 R14: 00007f5e7d7b5fa0 R15: 00007ffd88113fb8
[  757.083521][T15007]  </TASK>
[  758.498901][T15048] device syzkaller0 entered promiscuous mode
[  760.232975][T15074] netlink: 'syz.3.3996': attribute type 10 has an invalid length.
[  760.236923][T15071] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.3995'.
[  760.241135][T15074] netlink: 164 bytes leftover after parsing attributes in process `syz.3.3996'.
[  760.427315][T15071] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  760.446398][T15071] CPU: 0 PID: 15071 Comm: syz.1.3995 Not tainted 6.1.139-syzkaller #0
[  760.454628][T15071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  760.464737][T15071] Call Trace:
[  760.468041][T15071]  <TASK>
[  760.470995][T15071]  dump_stack_lvl+0x168/0x22e
[  760.475712][T15071]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  760.481917][T15071]  ? show_regs_print_info+0x12/0x12
[  760.487170][T15071]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  760.493381][T15071]  sysfs_warn_dup+0x8a/0xa0
[  760.498018][T15071]  sysfs_do_create_link_sd+0xc0/0x110
[  760.503439][T15071]  device_add+0x7ed/0xfb0
[  760.507878][T15071]  wiphy_register+0x1e68/0x2bd0
[  760.512794][T15071]  ? cfg80211_event_work+0x40/0x40
[  760.517948][T15071]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  760.524150][T15071]  ieee80211_register_hw+0x2c29/0x38c0
[  760.529754][T15071]  ? ieee80211_register_hw+0xf31/0x38c0
[  760.535344][T15071]  ? ieee80211_register_hw+0xe31/0x38c0
[  760.540944][T15071]  ? ieee80211_tasklet_handler+0x20/0x20
[  760.546626][T15071]  ? rcu_is_watching+0x11/0xa0
[  760.551443][T15071]  ? memset+0x1e/0x40
[  760.555468][T15071]  ? hrtimer_init+0x10c/0x220
[  760.560190][T15071]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  760.565973][T15071]  hwsim_new_radio_nl+0xafa/0xce0
[  760.571061][T15071]  genl_family_rcv_msg_doit+0x22e/0x320
[  760.576648][T15071]  ? end_current_label_crit_section+0x170/0x170
[  760.582940][T15071]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  760.588881][T15071]  ? bpf_lsm_capable+0x5/0x10
[  760.593599][T15071]  ? security_capable+0x85/0xb0
[  760.598513][T15071]  genl_rcv_msg+0x5f2/0x780
[  760.603050][T15071]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  760.609222][T15071]  ? genl_bind+0x350/0x350
[  760.613648][T15071]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  760.620002][T15071]  ? netlink_rcv_skb+0x1bd/0x420
[  760.624984][T15071]  netlink_rcv_skb+0x1de/0x420
[  760.629789][T15071]  ? genl_bind+0x350/0x350
[  760.634227][T15071]  ? netlink_ack+0x1100/0x1100
[  760.639024][T15071]  ? down_read+0x1a8/0x2d0
[  760.643460][T15071]  genl_rcv+0x24/0x40
[  760.647455][T15071]  netlink_unicast+0x74c/0x8c0
[  760.652246][T15071]  netlink_sendmsg+0x89e/0xbc0
[  760.657038][T15071]  ? netlink_getsockopt+0x540/0x540
[  760.662259][T15071]  ? aa_sock_msg_perm+0x94/0x150
[  760.667209][T15071]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  760.672505][T15071]  ? security_socket_sendmsg+0x7c/0xa0
[  760.677975][T15071]  ? netlink_getsockopt+0x540/0x540
[  760.683191][T15071]  ____sys_sendmsg+0x59b/0x970
[  760.687984][T15071]  ? __sys_sendmsg_sock+0x30/0x30
[  760.693025][T15071]  ? __import_iovec+0x315/0x500
[  760.697894][T15071]  ? import_iovec+0x6f/0xa0
[  760.702412][T15071]  ___sys_sendmsg+0x21c/0x290
[  760.707123][T15071]  ? __sys_sendmsg+0x270/0x270
[  760.711927][T15071]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  760.718203][T15071]  ? __fdget+0x17c/0x200
[  760.722477][T15071]  __se_sys_sendmsg+0x19e/0x270
[  760.727351][T15071]  ? perf_trace_preemptirq_template+0x287/0x330
[  760.733610][T15071]  ? __x64_sys_sendmsg+0x80/0x80
[  760.738582][T15071]  ? lockdep_hardirqs_on+0x94/0x140
[  760.743803][T15071]  do_syscall_64+0x4c/0xa0
[  760.748261][T15071]  ? clear_bhb_loop+0x60/0xb0
[  760.752946][T15071]  ? clear_bhb_loop+0x60/0xb0
[  760.757631][T15071]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  760.763548][T15071] RIP: 0033:0x7fe63898e969
[  760.767970][T15071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  760.787589][T15071] RSP: 002b:00007fe6397c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  760.796013][T15071] RAX: ffffffffffffffda RBX: 00007fe638bb5fa0 RCX: 00007fe63898e969
[  760.803994][T15071] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000d
[  760.811973][T15071] RBP: 00007fe638a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  760.820213][T15071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  760.828191][T15071] R13: 0000000000000000 R14: 00007fe638bb5fa0 R15: 00007ffd6d4ed558
[  760.836188][T15071]  </TASK>
[  761.629269][T15098] sock: sock_timestamping_bind_phc: sock not bind to device
[  761.688179][T15099] netlink: 'syz.1.4015': attribute type 10 has an invalid length.
[  761.713970][T15099] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4015'.
[  762.005038][T15111] netlink: 'syz.4.4010': attribute type 1 has an invalid length.
[  762.028711][T15111] netlink: 112865 bytes leftover after parsing attributes in process `syz.4.4010'.
[  763.045164][T15133] sock: sock_timestamping_bind_phc: sock not bind to device
[  763.380783][T15140] delete_channel: no stack
[  764.556642][T15167] netlink: 830 bytes leftover after parsing attributes in process `syz.3.4034'.
[  764.997631][T15174] delete_channel: no stack
[  765.104974][T15179] sock: sock_timestamping_bind_phc: sock not bind to device
[  765.342636][T15181] netlink: 'syz.3.4040': attribute type 21 has an invalid length.
[  765.372198][T15181] netlink: 128 bytes leftover after parsing attributes in process `syz.3.4040'.
[  765.385716][T15181] netlink: 'syz.3.4040': attribute type 5 has an invalid length.
[  765.401734][T15181] netlink: 'syz.3.4040': attribute type 6 has an invalid length.
[  765.411110][T15181] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4040'.
[  766.528698][T15210] device syzkaller0 entered promiscuous mode
[  766.603564][T15212] netlink: 'syz.4.4050': attribute type 10 has an invalid length.
[  766.625743][T15212] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4050'.
[  767.189473][T15225] netlink: 'syz.5.4054': attribute type 10 has an invalid length.
[  767.233636][T15225] netlink: 164 bytes leftover after parsing attributes in process `syz.5.4054'.
[  768.482328][T15254] netlink: 'syz.5.4066': attribute type 1 has an invalid length.
[  768.533174][T15254] netlink: 112865 bytes leftover after parsing attributes in process `syz.5.4066'.
[  768.886031][T15261] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4067'.
[  769.035797][T15261] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  769.055446][T15261] CPU: 1 PID: 15261 Comm: syz.4.4067 Not tainted 6.1.139-syzkaller #0
[  769.063669][T15261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  769.073767][T15261] Call Trace:
[  769.077081][T15261]  <TASK>
[  769.080041][T15261]  dump_stack_lvl+0x168/0x22e
[  769.084783][T15261]  ? show_regs_print_info+0x12/0x12
[  769.090035][T15261]  ? load_image+0x3b0/0x3b0
[  769.094604][T15261]  sysfs_warn_dup+0x8a/0xa0
[  769.099155][T15261]  sysfs_do_create_link_sd+0xc0/0x110
[  769.104579][T15261]  device_add+0x7ed/0xfb0
[  769.108962][T15261]  wiphy_register+0x1e68/0x2bd0
[  769.113890][T15261]  ? cfg80211_event_work+0x40/0x40
[  769.119048][T15261]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  769.125247][T15261]  ? rtnl_unlock+0x5/0x10
[  769.129627][T15261]  ieee80211_register_hw+0x2c29/0x38c0
[  769.135144][T15261]  ? ieee80211_register_hw+0xf31/0x38c0
[  769.140821][T15261]  ? ieee80211_register_hw+0xe31/0x38c0
[  769.146422][T15261]  ? ieee80211_tasklet_handler+0x20/0x20
[  769.152109][T15261]  ? rcu_is_watching+0x11/0xa0
[  769.156921][T15261]  ? memset+0x1e/0x40
[  769.160939][T15261]  ? hrtimer_init+0x10c/0x220
[  769.165667][T15261]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  769.171443][T15261]  hwsim_new_radio_nl+0xafa/0xce0
[  769.176524][T15261]  genl_family_rcv_msg_doit+0x22e/0x320
[  769.182108][T15261]  ? end_current_label_crit_section+0x170/0x170
[  769.188389][T15261]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  769.194433][T15261]  ? bpf_lsm_capable+0x5/0x10
[  769.199151][T15261]  ? security_capable+0x85/0xb0
[  769.204057][T15261]  genl_rcv_msg+0x5f2/0x780
[  769.208604][T15261]  ? genl_bind+0x350/0x350
[  769.213050][T15261]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  769.219427][T15261]  netlink_rcv_skb+0x1de/0x420
[  769.224239][T15261]  ? genl_bind+0x350/0x350
[  769.228694][T15261]  ? netlink_ack+0x1100/0x1100
[  769.233511][T15261]  ? down_read+0x1a8/0x2d0
[  769.237968][T15261]  genl_rcv+0x24/0x40
[  769.242000][T15261]  netlink_unicast+0x74c/0x8c0
[  769.246814][T15261]  netlink_sendmsg+0x89e/0xbc0
[  769.251628][T15261]  ? netlink_getsockopt+0x540/0x540
[  769.256872][T15261]  ? aa_sock_msg_perm+0x94/0x150
[  769.261845][T15261]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  769.267160][T15261]  ? security_socket_sendmsg+0x7c/0xa0
[  769.272648][T15261]  ? netlink_getsockopt+0x540/0x540
[  769.277888][T15261]  ____sys_sendmsg+0x59b/0x970
[  769.282703][T15261]  ? __sys_sendmsg_sock+0x30/0x30
[  769.287762][T15261]  ? __import_iovec+0x315/0x500
[  769.292652][T15261]  ? import_iovec+0x6f/0xa0
[  769.297192][T15261]  ___sys_sendmsg+0x21c/0x290
[  769.301917][T15261]  ? __sys_sendmsg+0x270/0x270
[  769.306791][T15261]  ? __fdget+0x17c/0x200
[  769.311083][T15261]  __se_sys_sendmsg+0x19e/0x270
[  769.315987][T15261]  ? __x64_sys_sendmsg+0x80/0x80
[  769.320987][T15261]  ? syscall_enter_from_user_mode+0x2a/0x80
[  769.326916][T15261]  do_syscall_64+0x4c/0xa0
[  769.331370][T15261]  ? clear_bhb_loop+0x60/0xb0
[  769.336077][T15261]  ? clear_bhb_loop+0x60/0xb0
[  769.340789][T15261]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  769.346726][T15261] RIP: 0033:0x7fa48cb8e969
[  769.351169][T15261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  769.370813][T15261] RSP: 002b:00007fa48da22038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  769.379268][T15261] RAX: ffffffffffffffda RBX: 00007fa48cdb5fa0 RCX: 00007fa48cb8e969
[  769.387373][T15261] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000d
[  769.395384][T15261] RBP: 00007fa48cc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  769.403391][T15261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  769.411405][T15261] R13: 0000000000000000 R14: 00007fa48cdb5fa0 R15: 00007ffc6f1a5b28
[  769.419441][T15261]  </TASK>
[  769.807944][T15271] netlink: 'syz.0.4071': attribute type 10 has an invalid length.
[  769.845190][T15271] netlink: 164 bytes leftover after parsing attributes in process `syz.0.4071'.
[  771.193247][T15304] netlink: 830 bytes leftover after parsing attributes in process `syz.1.4085'.
[  771.854347][T15321] netlink: 'syz.4.4090': attribute type 10 has an invalid length.
[  771.864970][T15321] netlink: 164 bytes leftover after parsing attributes in process `syz.4.4090'.
[  772.589411][T15343] netlink: 830 bytes leftover after parsing attributes in process `syz.0.4099'.
[  773.863841][T15377] netlink: 'syz.1.4113': attribute type 10 has an invalid length.
[  773.873033][T15377] netlink: 164 bytes leftover after parsing attributes in process `syz.1.4113'.
[  773.937623][T15383] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  773.957019][T15383] batman_adv: batadv0: Removing interface: batadv_slave_0
[  773.985514][T15383] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  773.996411][T15383] batman_adv: batadv0: Removing interface: batadv_slave_1
[  774.019784][T15383] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  774.030343][T15383] batman_adv: batadv0: Removing interface: hsr_slave_1
[  774.122050][T15383] team0: Port device batadv0 removed
[  774.175386][T15380] netlink: 830 bytes leftover after parsing attributes in process `syz.5.4116'.
[  775.899052][T15432] netlink: 830 bytes leftover after parsing attributes in process `syz.4.4135'.
[  777.444245][T15472] netlink: 830 bytes leftover after parsing attributes in process `syz.1.4154'.
[  777.956921][T15488] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.4158'.
[  778.087482][T15488] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  778.116245][T15488] CPU: 0 PID: 15488 Comm: syz.0.4158 Not tainted 6.1.139-syzkaller #0
[  778.124482][T15488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  778.134574][T15488] Call Trace:
[  778.137885][T15488]  <TASK>
[  778.140845][T15488]  dump_stack_lvl+0x168/0x22e
[  778.145574][T15488]  ? show_regs_print_info+0x12/0x12
[  778.150812][T15488]  ? load_image+0x3b0/0x3b0
[  778.155369][T15488]  sysfs_warn_dup+0x8a/0xa0
[  778.159915][T15488]  sysfs_do_create_link_sd+0xc0/0x110
[  778.165342][T15488]  device_add+0x7ed/0xfb0
[  778.169726][T15488]  wiphy_register+0x1e68/0x2bd0
[  778.174647][T15488]  ? cfg80211_event_work+0x40/0x40
[  778.179797][T15488]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  778.185989][T15488]  ? ieee80211_register_hw+0x29a0/0x38c0
[  778.191673][T15488]  ieee80211_register_hw+0x2c29/0x38c0
[  778.197188][T15488]  ? ieee80211_register_hw+0xf31/0x38c0
[  778.202776][T15488]  ? ieee80211_register_hw+0xe31/0x38c0
[  778.208372][T15488]  ? ieee80211_tasklet_handler+0x20/0x20
[  778.214058][T15488]  ? rcu_is_watching+0x11/0xa0
[  778.218872][T15488]  ? memset+0x1e/0x40
[  778.222895][T15488]  ? hrtimer_init+0x10c/0x220
[  778.227613][T15488]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  778.233403][T15488]  hwsim_new_radio_nl+0xafa/0xce0
[  778.238489][T15488]  genl_family_rcv_msg_doit+0x22e/0x320
[  778.244073][T15488]  ? end_current_label_crit_section+0x170/0x170
[  778.250357][T15488]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  778.256297][T15488]  ? bpf_lsm_capable+0x5/0x10
[  778.261017][T15488]  ? security_capable+0x85/0xb0
[  778.265917][T15488]  genl_rcv_msg+0x5f2/0x780
[  778.270464][T15488]  ? genl_bind+0x350/0x350
[  778.274907][T15488]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  778.281310][T15488]  netlink_rcv_skb+0x1de/0x420
[  778.286122][T15488]  ? genl_bind+0x350/0x350
[  778.290578][T15488]  ? netlink_ack+0x1100/0x1100
[  778.295428][T15488]  ? down_read+0x1a8/0x2d0
[  778.299889][T15488]  genl_rcv+0x24/0x40
[  778.303906][T15488]  netlink_unicast+0x74c/0x8c0
[  778.308731][T15488]  netlink_sendmsg+0x89e/0xbc0
[  778.313551][T15488]  ? netlink_getsockopt+0x540/0x540
[  778.318813][T15488]  ? aa_sock_msg_perm+0x94/0x150
[  778.323784][T15488]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  778.329105][T15488]  ? security_socket_sendmsg+0x7c/0xa0
[  778.334598][T15488]  ? netlink_getsockopt+0x540/0x540
[  778.339851][T15488]  ____sys_sendmsg+0x59b/0x970
[  778.344674][T15488]  ? __sys_sendmsg_sock+0x30/0x30
[  778.349738][T15488]  ? __import_iovec+0x315/0x500
[  778.354643][T15488]  ? import_iovec+0x6f/0xa0
[  778.359273][T15488]  ___sys_sendmsg+0x21c/0x290
[  778.363996][T15488]  ? __sys_sendmsg+0x270/0x270
[  778.368812][T15488]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  778.374862][T15488]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  778.381063][T15488]  ? __se_sys_sendmsg+0x71/0x270
[  778.386038][T15488]  ? __se_sys_sendmsg+0xcd/0x270
[  778.391028][T15488]  ? kasan_check_range+0x81/0x290
[  778.396109][T15488]  __se_sys_sendmsg+0x19e/0x270
[  778.401007][T15488]  ? perf_trace_preemptirq_template+0x287/0x330
[  778.407292][T15488]  ? __x64_sys_sendmsg+0x80/0x80
[  778.412294][T15488]  ? lockdep_hardirqs_on+0x94/0x140
[  778.417547][T15488]  do_syscall_64+0x4c/0xa0
[  778.422010][T15488]  ? clear_bhb_loop+0x60/0xb0
[  778.426810][T15488]  ? clear_bhb_loop+0x60/0xb0
[  778.431522][T15488]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  778.437465][T15488] RIP: 0033:0x7f9a0098e969
[  778.441912][T15488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  778.461553][T15488] RSP: 002b:00007f9a01849038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  778.470018][T15488] RAX: ffffffffffffffda RBX: 00007f9a00bb5fa0 RCX: 00007f9a0098e969
[  778.478022][T15488] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000d
[  778.486004][T15488] RBP: 00007f9a00a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  778.493981][T15488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  778.501956][T15488] R13: 0000000000000000 R14: 00007f9a00bb5fa0 R15: 00007fff766c3298
[  778.509950][T15488]  </TASK>
[  779.140937][T15512] netlink: 830 bytes leftover after parsing attributes in process `syz.3.4169'.
[  779.183315][T15514] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  779.190810][T15514] batman_adv: batadv0: Removing interface: batadv_slave_1
[  779.249057][T15514] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  779.269128][T15514] batman_adv: batadv0: Removing interface: hsr_slave_1
[  779.415561][T15514] team0: Port device batadv0 removed
[  780.407863][T15546] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.4182'.
[  780.467896][T15546] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  780.499698][T15546] CPU: 0 PID: 15546 Comm: syz.5.4182 Not tainted 6.1.139-syzkaller #0
[  780.507929][T15546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  780.518016][T15546] Call Trace:
[  780.521322][T15546]  <TASK>
[  780.524274][T15546]  dump_stack_lvl+0x168/0x22e
[  780.528995][T15546]  ? show_regs_print_info+0x12/0x12
[  780.534234][T15546]  ? load_image+0x3b0/0x3b0
[  780.538789][T15546]  sysfs_warn_dup+0x8a/0xa0
[  780.543342][T15546]  sysfs_do_create_link_sd+0xc0/0x110
[  780.548767][T15546]  device_add+0x7ed/0xfb0
[  780.553159][T15546]  wiphy_register+0x1e68/0x2bd0
[  780.558080][T15546]  ? cfg80211_event_work+0x40/0x40
[  780.563247][T15546]  ? minstrel_ht_alloc+0x894/0xa20
[  780.568408][T15546]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  780.574511][T15546]  ieee80211_register_hw+0x2c29/0x38c0
[  780.580032][T15546]  ? ieee80211_register_hw+0xf31/0x38c0
[  780.585702][T15546]  ? ieee80211_register_hw+0xe31/0x38c0
[  780.591306][T15546]  ? ieee80211_tasklet_handler+0x20/0x20
[  780.596997][T15546]  ? rcu_is_watching+0x11/0xa0
[  780.601812][T15546]  ? memset+0x1e/0x40
[  780.605840][T15546]  ? hrtimer_init+0x10c/0x220
[  780.610565][T15546]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  780.616352][T15546]  hwsim_new_radio_nl+0xafa/0xce0
[  780.621435][T15546]  genl_family_rcv_msg_doit+0x22e/0x320
[  780.627195][T15546]  ? end_current_label_crit_section+0x170/0x170
[  780.633488][T15546]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  780.639431][T15546]  ? bpf_lsm_capable+0x5/0x10
[  780.644160][T15546]  ? security_capable+0x85/0xb0
[  780.649074][T15546]  genl_rcv_msg+0x5f2/0x780
[  780.653626][T15546]  ? genl_bind+0x350/0x350
[  780.658074][T15546]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  780.664467][T15546]  netlink_rcv_skb+0x1de/0x420
[  780.669282][T15546]  ? genl_bind+0x350/0x350
[  780.673735][T15546]  ? netlink_ack+0x1100/0x1100
[  780.678550][T15546]  ? down_read+0x1a8/0x2d0
[  780.683005][T15546]  genl_rcv+0x24/0x40
[  780.687020][T15546]  netlink_unicast+0x74c/0x8c0
[  780.691840][T15546]  netlink_sendmsg+0x89e/0xbc0
[  780.696750][T15546]  ? netlink_getsockopt+0x540/0x540
[  780.702009][T15546]  ? aa_sock_msg_perm+0x94/0x150
[  780.706999][T15546]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  780.712321][T15546]  ? security_socket_sendmsg+0x7c/0xa0
[  780.717812][T15546]  ? netlink_getsockopt+0x540/0x540
[  780.723060][T15546]  ____sys_sendmsg+0x59b/0x970
[  780.727885][T15546]  ? __sys_sendmsg_sock+0x30/0x30
[  780.733038][T15546]  ? __import_iovec+0x315/0x500
[  780.737937][T15546]  ? import_iovec+0x6f/0xa0
[  780.742480][T15546]  ___sys_sendmsg+0x21c/0x290
[  780.747214][T15546]  ? __sys_sendmsg+0x270/0x270
[  780.752055][T15546]  ? seqcount_lockdep_reader_access+0x15c/0x1c0
[  780.758365][T15546]  ? __fdget+0x17c/0x200
[  780.762658][T15546]  __se_sys_sendmsg+0x19e/0x270
[  780.767558][T15546]  ? perf_trace_preemptirq_template+0x287/0x330
[  780.773850][T15546]  ? __x64_sys_sendmsg+0x80/0x80
[  780.778859][T15546]  ? lockdep_hardirqs_on+0x94/0x140
[  780.784116][T15546]  do_syscall_64+0x4c/0xa0
[  780.788578][T15546]  ? clear_bhb_loop+0x60/0xb0
[  780.793287][T15546]  ? clear_bhb_loop+0x60/0xb0
[  780.798003][T15546]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  780.803942][T15546] RIP: 0033:0x7f6a82b8e969
[  780.808392][T15546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  780.828034][T15546] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  780.836464][T15546] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  780.844532][T15546] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000d
[  780.852518][T15546] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  780.860509][T15546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  780.868755][T15546] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  780.876751][T15546]  </TASK>
[  781.254745][T15569] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  781.273524][T15569] batman_adv: batadv0: Removing interface: batadv_slave_1
[  781.318156][T15569] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  781.333333][T15569] batman_adv: batadv0: Removing interface: hsr_slave_1
[  781.435261][T15569] device batadv0 left promiscuous mode
[  781.454455][T15569] team0: Port device batadv0 removed
[  782.665752][T15596] netlink: 'syz.3.4202': attribute type 1 has an invalid length.
[  782.679899][T15596] netlink: 112865 bytes leftover after parsing attributes in process `syz.3.4202'.
[  783.135756][T15612] netlink: 'syz.1.4207': attribute type 28 has an invalid length.
[  783.307685][T15616] netlink: 'syz.5.4210': attribute type 1 has an invalid length.
[  783.341873][T15616] netlink: 212408 bytes leftover after parsing attributes in process `syz.5.4210'.
[  784.590298][T15649] netlink: 'syz.1.4224': attribute type 1 has an invalid length.
[  784.600036][T15649] netlink: 112865 bytes leftover after parsing attributes in process `syz.1.4224'.
[  784.648805][T15655] netlink: 'syz.3.4225': attribute type 1 has an invalid length.
[  784.659174][T15655] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.4225'.
[  785.502777][T15683] netlink: 'syz.1.4238': attribute type 2 has an invalid length.
[  785.530977][T15683] netlink: 'syz.1.4238': attribute type 8 has an invalid length.
[  785.556328][T15683] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4238'.
[  785.831159][T15691] netlink: 'syz.0.4240': attribute type 1 has an invalid length.
[  785.894319][T15691] netlink: 112865 bytes leftover after parsing attributes in process `syz.0.4240'.
[  786.612995][T15714] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4250'.
[  787.020214][T15728] netlink: 'syz.1.4266': attribute type 1 has an invalid length.
[  787.033495][T15728] netlink: 112865 bytes leftover after parsing attributes in process `syz.1.4266'.
[  787.050179][T15727] netlink: 'syz.3.4255': attribute type 28 has an invalid length.
[  787.587299][T15741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  787.595186][T15741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  787.623211][T15741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  787.637210][T15741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  787.671524][T15741] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  787.690463][T15741] batman_adv: batadv0: Removing interface: hsr_slave_1
[  787.780478][T15741] team0: Port device batadv0 removed
[  788.384255][T15758] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4268'.
[  788.790518][T15766] netlink: 'syz.5.4272': attribute type 28 has an invalid length.
[  789.419642][T15780] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4279'.
[  789.519345][T15780] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  789.541939][T15780] CPU: 0 PID: 15780 Comm: syz.4.4279 Not tainted 6.1.139-syzkaller #0
[  789.550179][T15780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  789.560278][T15780] Call Trace:
[  789.563589][T15780]  <TASK>
[  789.566549][T15780]  dump_stack_lvl+0x168/0x22e
[  789.571274][T15780]  ? show_regs_print_info+0x12/0x12
[  789.576521][T15780]  ? load_image+0x3b0/0x3b0
[  789.581080][T15780]  sysfs_warn_dup+0x8a/0xa0
[  789.585628][T15780]  sysfs_do_create_link_sd+0xc0/0x110
[  789.591047][T15780]  device_add+0x7ed/0xfb0
[  789.595436][T15780]  wiphy_register+0x1e68/0x2bd0
[  789.600366][T15780]  ? cfg80211_event_work+0x40/0x40
[  789.605527][T15780]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  789.611731][T15780]  ? ieee80211_register_hw+0x2a56/0x38c0
[  789.617421][T15780]  ieee80211_register_hw+0x2c29/0x38c0
[  789.622942][T15780]  ? ieee80211_register_hw+0xf31/0x38c0
[  789.628531][T15780]  ? ieee80211_register_hw+0xe31/0x38c0
[  789.634133][T15780]  ? ieee80211_tasklet_handler+0x20/0x20
[  789.639816][T15780]  ? rcu_is_watching+0x11/0xa0
[  789.644630][T15780]  ? memset+0x1e/0x40
[  789.648655][T15780]  ? hrtimer_init+0x10c/0x220
[  789.653382][T15780]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  789.659167][T15780]  hwsim_new_radio_nl+0xafa/0xce0
[  789.664244][T15780]  genl_family_rcv_msg_doit+0x22e/0x320
[  789.669828][T15780]  ? end_current_label_crit_section+0x170/0x170
[  789.676128][T15780]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  789.682081][T15780]  ? bpf_lsm_capable+0x5/0x10
[  789.686813][T15780]  ? security_capable+0x85/0xb0
[  789.691719][T15780]  genl_rcv_msg+0x5f2/0x780
[  789.696280][T15780]  ? genl_bind+0x350/0x350
[  789.700729][T15780]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  789.707118][T15780]  ? lock_chain_count+0x20/0x20
[  789.712033][T15780]  netlink_rcv_skb+0x1de/0x420
[  789.716853][T15780]  ? genl_bind+0x350/0x350
[  789.721329][T15780]  ? netlink_ack+0x1100/0x1100
[  789.726340][T15780]  ? down_read+0x67/0x2d0
[  789.730807][T15780]  ? down_read+0x1a8/0x2d0
[  789.735268][T15780]  genl_rcv+0x24/0x40
[  789.739393][T15780]  netlink_unicast+0x74c/0x8c0
[  789.744228][T15780]  netlink_sendmsg+0x89e/0xbc0
[  789.749057][T15780]  ? netlink_getsockopt+0x540/0x540
[  789.754307][T15780]  ? aa_sock_msg_perm+0x94/0x150
[  789.759284][T15780]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  789.764608][T15780]  ? security_socket_sendmsg+0x7c/0xa0
[  789.770117][T15780]  ? netlink_getsockopt+0x540/0x540
[  789.775359][T15780]  ____sys_sendmsg+0x59b/0x970
[  789.780186][T15780]  ? __sys_sendmsg_sock+0x30/0x30
[  789.785268][T15780]  ? __import_iovec+0x315/0x500
[  789.790177][T15780]  ? import_iovec+0x6f/0xa0
[  789.794741][T15780]  ___sys_sendmsg+0x21c/0x290
[  789.799474][T15780]  ? __sys_sendmsg+0x270/0x270
[  789.804317][T15780]  ? lockdep_hardirqs_on+0x94/0x140
[  789.809588][T15780]  ? __fdget+0x17c/0x200
[  789.813882][T15780]  __se_sys_sendmsg+0x19e/0x270
[  789.818780][T15780]  ? perf_trace_preemptirq_template+0x287/0x330
[  789.825067][T15780]  ? __x64_sys_sendmsg+0x80/0x80
[  789.830073][T15780]  ? lockdep_hardirqs_on+0x94/0x140
[  789.835325][T15780]  do_syscall_64+0x4c/0xa0
[  789.839783][T15780]  ? clear_bhb_loop+0x60/0xb0
[  789.844501][T15780]  ? clear_bhb_loop+0x60/0xb0
[  789.849216][T15780]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  789.855156][T15780] RIP: 0033:0x7fa48cb8e969
[  789.859606][T15780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  789.879345][T15780] RSP: 002b:00007fa48da22038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  789.887815][T15780] RAX: ffffffffffffffda RBX: 00007fa48cdb5fa0 RCX: 00007fa48cb8e969
[  789.895827][T15780] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000d
[  789.903835][T15780] RBP: 00007fa48cc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  789.911838][T15780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  789.919841][T15780] R13: 0000000000000000 R14: 00007fa48cdb5fa0 R15: 00007ffc6f1a5b28
[  789.927889][T15780]  </TASK>
[  790.259667][T15784] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  790.273268][T15784] batman_adv: batadv0: Removing interface: batadv_slave_1
[  790.284422][T15784] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  790.301957][T15784] batman_adv: batadv0: Removing interface: hsr_slave_1
[  790.339008][T15784] device batadv0 left promiscuous mode
[  790.353950][T15784] team0: Port device batadv0 removed
[  791.632193][T15816] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4293'.
[  791.756910][T15821] netlink: 'syz.5.4295': attribute type 1 has an invalid length.
[  791.765457][T15821] netlink: 112865 bytes leftover after parsing attributes in process `syz.5.4295'.
[  792.840600][T15835] netlink: 'syz.4.4301': attribute type 10 has an invalid length.
[  793.033788][T15835] 8021q: adding VLAN 0 to HW filter on device bond0
[  793.106367][T15835] device bond0 entered promiscuous mode
[  793.114233][T15835] device bond_slave_0 entered promiscuous mode
[  793.127612][T15835] device bond_slave_1 entered promiscuous mode
[  793.145122][T15835] device batadv_slave_0 entered promiscuous mode
[  793.174222][T15835] team0: Port device bond0 added
[  793.726054][T15855] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4309'.
[  795.768235][T15899] netlink: 132 bytes leftover after parsing attributes in process `syz.5.4324'.
[  796.741846][T15930] netlink: 'syz.5.4337': attribute type 29 has an invalid length.
[  797.048553][T15930] netlink: 'syz.5.4337': attribute type 29 has an invalid length.
[  797.493105][   T48] Bluetooth: hci5: unexpected event 0x10 length: 15 > 1
[  797.493390][   T48] Bluetooth: hci5: hardware error 0x00
[  798.406357][T15974] delete_channel: no stack
[  798.907239][T16001] netlink: 'syz.1.4367': attribute type 29 has an invalid length.
[  798.921969][T16001] netlink: 'syz.1.4367': attribute type 29 has an invalid length.
[  799.404488][T16010] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.4371'.
[  799.554916][   T48] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  799.636939][T16010] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  799.671638][T16010] CPU: 1 PID: 16010 Comm: syz.3.4371 Not tainted 6.1.139-syzkaller #0
[  799.680174][T16010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  799.690273][T16010] Call Trace:
[  799.693585][T16010]  <TASK>
[  799.696570][T16010]  dump_stack_lvl+0x168/0x22e
[  799.701299][T16010]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  799.707501][T16010]  ? show_regs_print_info+0x12/0x12
[  799.712757][T16010]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  799.718979][T16010]  sysfs_warn_dup+0x8a/0xa0
[  799.723537][T16010]  sysfs_do_create_link_sd+0xc0/0x110
[  799.728961][T16010]  device_add+0x7ed/0xfb0
[  799.733346][T16010]  wiphy_register+0x1e68/0x2bd0
[  799.738265][T16010]  ? cfg80211_event_work+0x40/0x40
[  799.743419][T16010]  ? minstrel_ht_alloc+0x894/0xa20
[  799.748585][T16010]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  799.754698][T16010]  ieee80211_register_hw+0x2c29/0x38c0
[  799.760219][T16010]  ? ieee80211_register_hw+0xf31/0x38c0
[  799.765833][T16010]  ? ieee80211_register_hw+0xe31/0x38c0
[  799.771440][T16010]  ? ieee80211_tasklet_handler+0x20/0x20
[  799.777124][T16010]  ? rcu_is_watching+0x11/0xa0
[  799.781932][T16010]  ? memset+0x1e/0x40
[  799.785951][T16010]  ? hrtimer_init+0x10c/0x220
[  799.790675][T16010]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  799.796458][T16010]  hwsim_new_radio_nl+0xafa/0xce0
[  799.801539][T16010]  genl_family_rcv_msg_doit+0x22e/0x320
[  799.807126][T16010]  ? end_current_label_crit_section+0x170/0x170
[  799.813411][T16010]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  799.819400][T16010]  ? bpf_lsm_capable+0x5/0x10
[  799.824125][T16010]  ? security_capable+0x85/0xb0
[  799.829027][T16010]  genl_rcv_msg+0x5f2/0x780
[  799.833564][T16010]  ? genl_bind+0x350/0x350
[  799.838020][T16010]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  799.844414][T16010]  netlink_rcv_skb+0x1de/0x420
[  799.849229][T16010]  ? genl_bind+0x350/0x350
[  799.853684][T16010]  ? netlink_ack+0x1100/0x1100
[  799.858504][T16010]  ? down_read+0x1a8/0x2d0
[  799.862964][T16010]  genl_rcv+0x24/0x40
[  799.867065][T16010]  netlink_unicast+0x74c/0x8c0
[  799.871984][T16010]  netlink_sendmsg+0x89e/0xbc0
[  799.876799][T16010]  ? netlink_getsockopt+0x540/0x540
[  799.882064][T16010]  ? aa_sock_msg_perm+0x94/0x150
[  799.887044][T16010]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  799.892376][T16010]  ? security_socket_sendmsg+0x7c/0xa0
[  799.897876][T16010]  ? netlink_getsockopt+0x540/0x540
[  799.903132][T16010]  ____sys_sendmsg+0x59b/0x970
[  799.907952][T16010]  ? __sys_sendmsg_sock+0x30/0x30
[  799.913021][T16010]  ? __import_iovec+0x315/0x500
[  799.917920][T16010]  ? import_iovec+0x6f/0xa0
[  799.922474][T16010]  ___sys_sendmsg+0x21c/0x290
[  799.927203][T16010]  ? __sys_sendmsg+0x270/0x270
[  799.932066][T16010]  ? __fdget+0x17c/0x200
[  799.936366][T16010]  __se_sys_sendmsg+0x19e/0x270
[  799.941270][T16010]  ? __x64_sys_sendmsg+0x80/0x80
[  799.946280][T16010]  ? syscall_enter_from_user_mode+0x2a/0x80
[  799.952217][T16010]  do_syscall_64+0x4c/0xa0
[  799.956676][T16010]  ? clear_bhb_loop+0x60/0xb0
[  799.961386][T16010]  ? clear_bhb_loop+0x60/0xb0
[  799.966097][T16010]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  799.972039][T16010] RIP: 0033:0x7f5e7d58e969
[  799.976483][T16010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  799.996133][T16010] RSP: 002b:00007f5e7e378038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  800.004589][T16010] RAX: ffffffffffffffda RBX: 00007f5e7d7b5fa0 RCX: 00007f5e7d58e969
[  800.012596][T16010] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  800.020595][T16010] RBP: 00007f5e7d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  800.028598][T16010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  800.036601][T16010] R13: 0000000000000000 R14: 00007f5e7d7b5fa0 R15: 00007ffd88113fb8
[  800.044629][T16010]  </TASK>
[  800.848306][T16035] netlink: 'syz.1.4379': attribute type 1 has an invalid length.
[  800.861323][T16035] netlink: 112865 bytes leftover after parsing attributes in process `syz.1.4379'.
[  802.149966][T16060] netlink: 'syz.3.4391': attribute type 10 has an invalid length.
[  802.401043][T16060] 8021q: adding VLAN 0 to HW filter on device bond0
[  802.504204][T16060] team0: Port device bond0 added
[  802.737727][T16072] netlink: 'syz.0.4394': attribute type 29 has an invalid length.
[  802.775871][T16072] netlink: 'syz.0.4394': attribute type 29 has an invalid length.
[  803.636250][T16098] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.4405'.
[  803.701119][T16098] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  803.722909][T16098] CPU: 1 PID: 16098 Comm: syz.0.4405 Not tainted 6.1.139-syzkaller #0
[  803.731145][T16098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  803.741236][T16098] Call Trace:
[  803.744642][T16098]  <TASK>
[  803.747613][T16098]  dump_stack_lvl+0x168/0x22e
[  803.752339][T16098]  ? show_regs_print_info+0x12/0x12
[  803.757582][T16098]  ? load_image+0x3b0/0x3b0
[  803.762141][T16098]  sysfs_warn_dup+0x8a/0xa0
[  803.766689][T16098]  sysfs_do_create_link_sd+0xc0/0x110
[  803.772111][T16098]  device_add+0x7ed/0xfb0
[  803.776499][T16098]  wiphy_register+0x1e68/0x2bd0
[  803.781418][T16098]  ? cfg80211_event_work+0x40/0x40
[  803.786583][T16098]  ? minstrel_ht_alloc+0x894/0xa20
[  803.791753][T16098]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  803.797863][T16098]  ieee80211_register_hw+0x2c29/0x38c0
[  803.803379][T16098]  ? ieee80211_register_hw+0xf31/0x38c0
[  803.808981][T16098]  ? ieee80211_register_hw+0xe31/0x38c0
[  803.814593][T16098]  ? ieee80211_tasklet_handler+0x20/0x20
[  803.820280][T16098]  ? rcu_is_watching+0x11/0xa0
[  803.825093][T16098]  ? memset+0x1e/0x40
[  803.829095][T16098]  ? hrtimer_init+0x10c/0x220
[  803.833784][T16098]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  803.839534][T16098]  hwsim_new_radio_nl+0xafa/0xce0
[  803.844582][T16098]  genl_family_rcv_msg_doit+0x22e/0x320
[  803.850153][T16098]  ? end_current_label_crit_section+0x170/0x170
[  803.856409][T16098]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  803.862328][T16098]  ? bpf_lsm_capable+0x5/0x10
[  803.867023][T16098]  ? security_capable+0x85/0xb0
[  803.871894][T16098]  genl_rcv_msg+0x5f2/0x780
[  803.876420][T16098]  ? genl_bind+0x350/0x350
[  803.880853][T16098]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  803.887207][T16098]  netlink_rcv_skb+0x1de/0x420
[  803.891991][T16098]  ? genl_bind+0x350/0x350
[  803.896422][T16098]  ? netlink_ack+0x1100/0x1100
[  803.901216][T16098]  ? down_read+0x1a8/0x2d0
[  803.905651][T16098]  genl_rcv+0x24/0x40
[  803.909639][T16098]  netlink_unicast+0x74c/0x8c0
[  803.914428][T16098]  netlink_sendmsg+0x89e/0xbc0
[  803.919221][T16098]  ? netlink_getsockopt+0x540/0x540
[  803.924443][T16098]  ? aa_sock_msg_perm+0x94/0x150
[  803.929393][T16098]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  803.934726][T16098]  ? security_socket_sendmsg+0x7c/0xa0
[  803.940194][T16098]  ? netlink_getsockopt+0x540/0x540
[  803.945415][T16098]  ____sys_sendmsg+0x59b/0x970
[  803.950213][T16098]  ? __sys_sendmsg_sock+0x30/0x30
[  803.955261][T16098]  ? __import_iovec+0x315/0x500
[  803.960141][T16098]  ? import_iovec+0x6f/0xa0
[  803.964660][T16098]  ___sys_sendmsg+0x21c/0x290
[  803.969360][T16098]  ? __sys_sendmsg+0x270/0x270
[  803.974182][T16098]  ? __fdget+0x17c/0x200
[  803.978454][T16098]  __se_sys_sendmsg+0x19e/0x270
[  803.983327][T16098]  ? __x64_sys_sendmsg+0x80/0x80
[  803.988299][T16098]  ? syscall_enter_from_user_mode+0x2a/0x80
[  803.994210][T16098]  do_syscall_64+0x4c/0xa0
[  803.998644][T16098]  ? clear_bhb_loop+0x60/0xb0
[  804.003329][T16098]  ? clear_bhb_loop+0x60/0xb0
[  804.008019][T16098]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  804.013958][T16098] RIP: 0033:0x7f9a0098e969
[  804.018391][T16098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  804.038013][T16098] RSP: 002b:00007f9a01849038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  804.046444][T16098] RAX: ffffffffffffffda RBX: 00007f9a00bb5fa0 RCX: 00007f9a0098e969
[  804.054424][T16098] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  804.062408][T16098] RBP: 00007f9a00a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  804.070400][T16098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  804.078380][T16098] R13: 0000000000000000 R14: 00007f9a00bb5fa0 R15: 00007fff766c3298
[  804.086380][T16098]  </TASK>
[  804.409506][T16092] delete_channel: no stack
[  805.717838][T16155] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4426'.
[  805.790083][T16155] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  805.840700][T16155] CPU: 1 PID: 16155 Comm: syz.4.4426 Not tainted 6.1.139-syzkaller #0
[  805.848941][T16155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  805.859055][T16155] Call Trace:
[  805.862375][T16155]  <TASK>
[  805.865352][T16155]  dump_stack_lvl+0x168/0x22e
[  805.870070][T16155]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  805.876259][T16155]  ? show_regs_print_info+0x12/0x12
[  805.881479][T16155]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  805.887678][T16155]  sysfs_warn_dup+0x8a/0xa0
[  805.892210][T16155]  sysfs_do_create_link_sd+0xc0/0x110
[  805.897616][T16155]  device_add+0x7ed/0xfb0
[  805.901990][T16155]  wiphy_register+0x1e68/0x2bd0
[  805.906882][T16155]  ? cfg80211_event_work+0x40/0x40
[  805.912015][T16155]  ? minstrel_ht_alloc+0x894/0xa20
[  805.917148][T16155]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  805.923234][T16155]  ieee80211_register_hw+0x2c29/0x38c0
[  805.928720][T16155]  ? ieee80211_register_hw+0xf31/0x38c0
[  805.934281][T16155]  ? ieee80211_register_hw+0xe31/0x38c0
[  805.939850][T16155]  ? ieee80211_tasklet_handler+0x20/0x20
[  805.945512][T16155]  ? rcu_is_watching+0x11/0xa0
[  805.950473][T16155]  ? memset+0x1e/0x40
[  805.954602][T16155]  ? hrtimer_init+0x10c/0x220
[  805.959299][T16155]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  805.965051][T16155]  hwsim_new_radio_nl+0xafa/0xce0
[  805.970101][T16155]  genl_family_rcv_msg_doit+0x22e/0x320
[  805.975658][T16155]  ? end_current_label_crit_section+0x170/0x170
[  805.981913][T16155]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  805.987824][T16155]  ? bpf_lsm_capable+0x5/0x10
[  805.992517][T16155]  ? security_capable+0x85/0xb0
[  805.997392][T16155]  genl_rcv_msg+0x5f2/0x780
[  806.001913][T16155]  ? genl_bind+0x350/0x350
[  806.006337][T16155]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  806.012686][T16155]  ? lock_acquire+0x20f/0x490
[  806.017393][T16155]  netlink_rcv_skb+0x1de/0x420
[  806.022176][T16155]  ? genl_bind+0x350/0x350
[  806.026606][T16155]  ? netlink_ack+0x1100/0x1100
[  806.031396][T16155]  ? down_read+0x1a8/0x2d0
[  806.035833][T16155]  genl_rcv+0x24/0x40
[  806.039824][T16155]  netlink_unicast+0x74c/0x8c0
[  806.044619][T16155]  netlink_sendmsg+0x89e/0xbc0
[  806.049410][T16155]  ? netlink_getsockopt+0x540/0x540
[  806.054628][T16155]  ? __sanitizer_cov_trace_pc+0x32/0x60
[  806.060192][T16155]  ? aa_sock_msg_perm+0x94/0x150
[  806.065146][T16155]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  806.070447][T16155]  ? security_socket_sendmsg+0x7c/0xa0
[  806.075916][T16155]  ? netlink_getsockopt+0x540/0x540
[  806.081138][T16155]  ____sys_sendmsg+0x59b/0x970
[  806.085931][T16155]  ? __sys_sendmsg_sock+0x30/0x30
[  806.090983][T16155]  ? __import_iovec+0x315/0x500
[  806.095854][T16155]  ? import_iovec+0x6f/0xa0
[  806.100373][T16155]  ___sys_sendmsg+0x21c/0x290
[  806.105102][T16155]  ? __sys_sendmsg+0x270/0x270
[  806.109921][T16155]  ? __fdget+0x17c/0x200
[  806.114186][T16155]  __se_sys_sendmsg+0x19e/0x270
[  806.119060][T16155]  ? __x64_sys_sendmsg+0x80/0x80
[  806.124029][T16155]  ? syscall_enter_from_user_mode+0x2a/0x80
[  806.129936][T16155]  do_syscall_64+0x4c/0xa0
[  806.134370][T16155]  ? clear_bhb_loop+0x60/0xb0
[  806.139055][T16155]  ? clear_bhb_loop+0x60/0xb0
[  806.143749][T16155]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  806.149670][T16155] RIP: 0033:0x7fa48cb8e969
[  806.154098][T16155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  806.173802][T16155] RSP: 002b:00007fa48da22038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  806.182349][T16155] RAX: ffffffffffffffda RBX: 00007fa48cdb5fa0 RCX: 00007fa48cb8e969
[  806.190352][T16155] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  806.198340][T16155] RBP: 00007fa48cc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  806.206320][T16155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  806.214299][T16155] R13: 0000000000000000 R14: 00007fa48cdb5fa0 R15: 00007ffc6f1a5b28
[  806.222297][T16155]  </TASK>
[  806.264264][T16163] netlink: 'syz.3.4427': attribute type 10 has an invalid length.
[  806.385913][T16163] team0: Port device netdevsim0 added
[  806.392253][T16162] netlink: 'syz.3.4427': attribute type 10 has an invalid length.
[  806.536846][T16162] team0: Port device netdevsim0 removed
[  806.607725][T16154] delete_channel: no stack
[  806.655074][T16162] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  806.987927][T16175] netlink: 188 bytes leftover after parsing attributes in process `syz.1.4431'.
[  808.525789][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  808.532197][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  808.700011][T16199] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.4442'.
[  808.816336][T16199] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  808.830512][T16199] CPU: 1 PID: 16199 Comm: syz.1.4442 Not tainted 6.1.139-syzkaller #0
[  808.838728][T16199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  808.848826][T16199] Call Trace:
[  808.852134][T16199]  <TASK>
[  808.855089][T16199]  dump_stack_lvl+0x168/0x22e
[  808.859818][T16199]  ? show_regs_print_info+0x12/0x12
[  808.865058][T16199]  ? load_image+0x3b0/0x3b0
[  808.869611][T16199]  sysfs_warn_dup+0x8a/0xa0
[  808.874158][T16199]  sysfs_do_create_link_sd+0xc0/0x110
[  808.879575][T16199]  device_add+0x7ed/0xfb0
[  808.883965][T16199]  wiphy_register+0x1e68/0x2bd0
[  808.888889][T16199]  ? cfg80211_event_work+0x40/0x40
[  808.894055][T16199]  ? minstrel_ht_alloc+0x894/0xa20
[  808.899218][T16199]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  808.905340][T16199]  ieee80211_register_hw+0x2c29/0x38c0
[  808.910860][T16199]  ? ieee80211_register_hw+0xf31/0x38c0
[  808.916453][T16199]  ? ieee80211_register_hw+0xe31/0x38c0
[  808.922061][T16199]  ? ieee80211_tasklet_handler+0x20/0x20
[  808.927748][T16199]  ? rcu_is_watching+0x11/0xa0
[  808.932562][T16199]  ? memset+0x1e/0x40
[  808.936579][T16199]  ? hrtimer_init+0x10c/0x220
[  808.941301][T16199]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  808.947089][T16199]  hwsim_new_radio_nl+0xafa/0xce0
[  808.952179][T16199]  genl_family_rcv_msg_doit+0x22e/0x320
[  808.957764][T16199]  ? end_current_label_crit_section+0x170/0x170
[  808.964056][T16199]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  808.970000][T16199]  ? bpf_lsm_capable+0x5/0x10
[  808.974725][T16199]  ? security_capable+0x85/0xb0
[  808.979643][T16199]  genl_rcv_msg+0x5f2/0x780
[  808.984200][T16199]  ? genl_bind+0x350/0x350
[  808.988649][T16199]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  808.995036][T16199]  netlink_rcv_skb+0x1de/0x420
[  808.999858][T16199]  ? genl_bind+0x350/0x350
[  809.004316][T16199]  ? netlink_ack+0x1100/0x1100
[  809.009152][T16199]  ? down_read+0x1a8/0x2d0
[  809.013613][T16199]  genl_rcv+0x24/0x40
[  809.017634][T16199]  netlink_unicast+0x74c/0x8c0
[  809.022455][T16199]  netlink_sendmsg+0x89e/0xbc0
[  809.027279][T16199]  ? netlink_getsockopt+0x540/0x540
[  809.032535][T16199]  ? aa_sock_msg_perm+0x94/0x150
[  809.037515][T16199]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  809.042841][T16199]  ? security_socket_sendmsg+0x7c/0xa0
[  809.048342][T16199]  ? netlink_getsockopt+0x540/0x540
[  809.053677][T16199]  ____sys_sendmsg+0x59b/0x970
[  809.058501][T16199]  ? __sys_sendmsg_sock+0x30/0x30
[  809.063571][T16199]  ? __import_iovec+0x315/0x500
[  809.068468][T16199]  ? import_iovec+0x6f/0xa0
[  809.073019][T16199]  ___sys_sendmsg+0x21c/0x290
[  809.077750][T16199]  ? __sys_sendmsg+0x270/0x270
[  809.082691][T16199]  ? __fdget+0x17c/0x200
[  809.086986][T16199]  __se_sys_sendmsg+0x19e/0x270
[  809.091980][T16199]  ? __x64_sys_sendmsg+0x80/0x80
[  809.096995][T16199]  ? syscall_enter_from_user_mode+0x2a/0x80
[  809.102935][T16199]  do_syscall_64+0x4c/0xa0
[  809.107385][T16199]  ? clear_bhb_loop+0x60/0xb0
[  809.112066][T16199]  ? clear_bhb_loop+0x60/0xb0
[  809.116759][T16199]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  809.122681][T16199] RIP: 0033:0x7fe63898e969
[  809.127131][T16199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  809.146867][T16199] RSP: 002b:00007fe6397c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  809.155675][T16199] RAX: ffffffffffffffda RBX: 00007fe638bb5fa0 RCX: 00007fe63898e969
[  809.164133][T16199] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  809.172146][T16199] RBP: 00007fe638a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  809.180152][T16199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  809.188165][T16199] R13: 0000000000000000 R14: 00007fe638bb5fa0 R15: 00007ffd6d4ed558
[  809.196200][T16199]  </TASK>
[  810.225743][T16234] netlink: 'syz.3.4458': attribute type 29 has an invalid length.
[  810.266171][T16234] netlink: 'syz.3.4458': attribute type 29 has an invalid length.
[  810.686595][T16244] netlink: 'syz.0.4463': attribute type 10 has an invalid length.
[  810.901958][T16244] team0: Device bond0 is already an upper device of the team interface
[  811.447019][T16260] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.4465'.
[  811.502136][T16260] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  811.544838][T16260] CPU: 0 PID: 16260 Comm: syz.5.4465 Not tainted 6.1.139-syzkaller #0
[  811.553079][T16260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  811.563169][T16260] Call Trace:
[  811.566473][T16260]  <TASK>
[  811.569425][T16260]  dump_stack_lvl+0x168/0x22e
[  811.574153][T16260]  ? show_regs_print_info+0x12/0x12
[  811.579399][T16260]  ? load_image+0x3b0/0x3b0
[  811.583958][T16260]  sysfs_warn_dup+0x8a/0xa0
[  811.588519][T16260]  sysfs_do_create_link_sd+0xc0/0x110
[  811.593946][T16260]  device_add+0x7ed/0xfb0
[  811.598331][T16260]  wiphy_register+0x1e68/0x2bd0
[  811.603247][T16260]  ? cfg80211_event_work+0x40/0x40
[  811.608459][T16260]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  811.614579][T16260]  ieee80211_register_hw+0x2c29/0x38c0
[  811.620108][T16260]  ? ieee80211_register_hw+0xf31/0x38c0
[  811.625704][T16260]  ? ieee80211_register_hw+0xe31/0x38c0
[  811.631309][T16260]  ? ieee80211_tasklet_handler+0x20/0x20
[  811.637000][T16260]  ? rcu_is_watching+0x11/0xa0
[  811.641815][T16260]  ? memset+0x1e/0x40
[  811.645843][T16260]  ? hrtimer_init+0x10c/0x220
[  811.650570][T16260]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  811.656355][T16260]  hwsim_new_radio_nl+0xafa/0xce0
[  811.661444][T16260]  genl_family_rcv_msg_doit+0x22e/0x320
[  811.667027][T16260]  ? end_current_label_crit_section+0x170/0x170
[  811.673313][T16260]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  811.679253][T16260]  ? bpf_lsm_capable+0x5/0x10
[  811.683972][T16260]  ? security_capable+0x85/0xb0
[  811.688879][T16260]  genl_rcv_msg+0x5f2/0x780
[  811.693435][T16260]  ? genl_bind+0x350/0x350
[  811.697888][T16260]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  811.704275][T16260]  netlink_rcv_skb+0x1de/0x420
[  811.709077][T16260]  ? genl_bind+0x350/0x350
[  811.713554][T16260]  ? netlink_ack+0x1100/0x1100
[  811.718350][T16260]  ? down_read+0x1a8/0x2d0
[  811.722791][T16260]  genl_rcv+0x24/0x40
[  811.726783][T16260]  netlink_unicast+0x74c/0x8c0
[  811.731573][T16260]  netlink_sendmsg+0x89e/0xbc0
[  811.736366][T16260]  ? netlink_getsockopt+0x540/0x540
[  811.741582][T16260]  ? aa_sock_msg_perm+0x94/0x150
[  811.746534][T16260]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  811.751832][T16260]  ? security_socket_sendmsg+0x7c/0xa0
[  811.757308][T16260]  ? netlink_getsockopt+0x540/0x540
[  811.762525][T16260]  ____sys_sendmsg+0x59b/0x970
[  811.767320][T16260]  ? __sys_sendmsg_sock+0x30/0x30
[  811.772359][T16260]  ? __import_iovec+0x315/0x500
[  811.777226][T16260]  ? import_iovec+0x6f/0xa0
[  811.781740][T16260]  ___sys_sendmsg+0x21c/0x290
[  811.786449][T16260]  ? __sys_sendmsg+0x270/0x270
[  811.791268][T16260]  ? __fdget+0x17c/0x200
[  811.795531][T16260]  __se_sys_sendmsg+0x19e/0x270
[  811.800402][T16260]  ? __x64_sys_sendmsg+0x80/0x80
[  811.805404][T16260]  ? syscall_enter_from_user_mode+0x2a/0x80
[  811.811320][T16260]  do_syscall_64+0x4c/0xa0
[  811.815752][T16260]  ? clear_bhb_loop+0x60/0xb0
[  811.820441][T16260]  ? clear_bhb_loop+0x60/0xb0
[  811.825129][T16260]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  811.831043][T16260] RIP: 0033:0x7f6a82b8e969
[  811.835470][T16260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  811.855101][T16260] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  811.863529][T16260] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  811.871509][T16260] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  811.879490][T16260] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  811.887560][T16260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  811.895538][T16260] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  811.903536][T16260]  </TASK>
[  811.932698][T16262] netlink: 'syz.1.4470': attribute type 10 has an invalid length.
[  812.156786][T16262] device netdevsim0 entered promiscuous mode
[  812.199118][T16262] team0: Port device netdevsim0 added
[  812.199548][T16271] netlink: 'syz.3.4473': attribute type 1 has an invalid length.
[  812.205728][T16271] netlink: 112865 bytes leftover after parsing attributes in process `syz.3.4473'.
[  812.252940][T16268] netlink: 'syz.1.4470': attribute type 10 has an invalid length.
[  812.292112][T16268] device netdevsim0 left promiscuous mode
[  812.386249][T16268] team0: Port device netdevsim0 removed
[  812.405920][T16268] device netdevsim0 entered promiscuous mode
[  812.423464][T16268] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  812.796364][T16283] netlink: 'syz.5.4478': attribute type 10 has an invalid length.
[  812.874102][T16283] 8021q: adding VLAN 0 to HW filter on device bond0
[  812.891901][T16283] device bond0 entered promiscuous mode
[  812.915927][T16283] device bond_slave_0 entered promiscuous mode
[  812.923906][T16283] device bond_slave_1 entered promiscuous mode
[  812.930917][T16283] device batadv_slave_0 entered promiscuous mode
[  812.940122][T16283] team0: Port device bond0 added
[  814.041344][T16300] netlink: 'syz.1.4484': attribute type 11 has an invalid length.
[  814.074298][T16300] netlink: 173820 bytes leftover after parsing attributes in process `syz.1.4484'.
[  814.125380][T16298] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  815.410006][T16334] netlink: 'syz.4.4500': attribute type 11 has an invalid length.
[  815.441570][T16334] netlink: 173820 bytes leftover after parsing attributes in process `syz.4.4500'.
[  815.501480][T16333] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  816.298463][T16363] delete_channel: no stack
[  816.324532][T16363] delete_channel: no stack
[  816.491555][T16365] netlink: 122896 bytes leftover after parsing attributes in process `syz.1.4513'.
[  816.567371][T16365] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  816.602641][T16365] CPU: 0 PID: 16365 Comm: syz.1.4513 Not tainted 6.1.139-syzkaller #0
[  816.610875][T16365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  816.620967][T16365] Call Trace:
[  816.624275][T16365]  <TASK>
[  816.627238][T16365]  dump_stack_lvl+0x168/0x22e
[  816.631967][T16365]  ? show_regs_print_info+0x12/0x12
[  816.637217][T16365]  ? load_image+0x3b0/0x3b0
[  816.641771][T16365]  sysfs_warn_dup+0x8a/0xa0
[  816.646319][T16365]  sysfs_do_create_link_sd+0xc0/0x110
[  816.651741][T16365]  device_add+0x7ed/0xfb0
[  816.656121][T16365]  wiphy_register+0x1e68/0x2bd0
[  816.661034][T16365]  ? cfg80211_event_work+0x40/0x40
[  816.666208][T16365]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  816.672319][T16365]  ieee80211_register_hw+0x2c29/0x38c0
[  816.677836][T16365]  ? ieee80211_register_hw+0xf31/0x38c0
[  816.683425][T16365]  ? ieee80211_register_hw+0xe31/0x38c0
[  816.689033][T16365]  ? ieee80211_tasklet_handler+0x20/0x20
[  816.694721][T16365]  ? rcu_is_watching+0x11/0xa0
[  816.699548][T16365]  ? memset+0x1e/0x40
[  816.703568][T16365]  ? hrtimer_init+0x10c/0x220
[  816.708282][T16365]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  816.714063][T16365]  hwsim_new_radio_nl+0xafa/0xce0
[  816.719144][T16365]  genl_family_rcv_msg_doit+0x22e/0x320
[  816.724727][T16365]  ? end_current_label_crit_section+0x170/0x170
[  816.731014][T16365]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  816.736952][T16365]  ? bpf_lsm_capable+0x5/0x10
[  816.741678][T16365]  ? security_capable+0x85/0xb0
[  816.746575][T16365]  genl_rcv_msg+0x5f2/0x780
[  816.751126][T16365]  ? genl_bind+0x350/0x350
[  816.755568][T16365]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  816.761950][T16365]  netlink_rcv_skb+0x1de/0x420
[  816.766761][T16365]  ? genl_bind+0x350/0x350
[  816.771214][T16365]  ? netlink_ack+0x1100/0x1100
[  816.776034][T16365]  ? down_read+0x1a8/0x2d0
[  816.780496][T16365]  genl_rcv+0x24/0x40
[  816.784512][T16365]  netlink_unicast+0x74c/0x8c0
[  816.789328][T16365]  netlink_sendmsg+0x89e/0xbc0
[  816.794142][T16365]  ? netlink_getsockopt+0x540/0x540
[  816.799378][T16365]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  816.805401][T16365]  ? aa_sock_msg_perm+0x94/0x150
[  816.810375][T16365]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  816.815694][T16365]  ? security_socket_sendmsg+0x7c/0xa0
[  816.821184][T16365]  ? netlink_getsockopt+0x540/0x540
[  816.826425][T16365]  ____sys_sendmsg+0x59b/0x970
[  816.831236][T16365]  ? lockdep_hardirqs_on+0x94/0x140
[  816.836492][T16365]  ? __sys_sendmsg_sock+0x30/0x30
[  816.841565][T16365]  ? __import_iovec+0x457/0x500
[  816.846455][T16365]  ? import_iovec+0x6f/0xa0
[  816.851041][T16365]  ___sys_sendmsg+0x21c/0x290
[  816.855770][T16365]  ? __sys_sendmsg+0x270/0x270
[  816.860630][T16365]  ? __fdget+0x17c/0x200
[  816.864915][T16365]  __se_sys_sendmsg+0x19e/0x270
[  816.869800][T16365]  ? perf_trace_preemptirq_template+0x287/0x330
[  816.876068][T16365]  ? __x64_sys_sendmsg+0x80/0x80
[  816.881045][T16365]  ? lockdep_hardirqs_on+0x94/0x140
[  816.886274][T16365]  do_syscall_64+0x4c/0xa0
[  816.890713][T16365]  ? clear_bhb_loop+0x60/0xb0
[  816.895399][T16365]  ? clear_bhb_loop+0x60/0xb0
[  816.900092][T16365]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  816.906009][T16365] RIP: 0033:0x7fe63898e969
[  816.910437][T16365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  816.930063][T16365] RSP: 002b:00007fe6397c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  816.938498][T16365] RAX: ffffffffffffffda RBX: 00007fe638bb5fa0 RCX: 00007fe63898e969
[  816.946483][T16365] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  816.954502][T16365] RBP: 00007fe638a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  816.962483][T16365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  816.970468][T16365] R13: 0000000000000000 R14: 00007fe638bb5fa0 R15: 00007ffd6d4ed558
[  816.978481][T16365]  </TASK>
[  817.195325][T16379] netlink: 'syz.5.4519': attribute type 11 has an invalid length.
[  817.210301][T16379] netlink: 173820 bytes leftover after parsing attributes in process `syz.5.4519'.
[  817.228063][T16377] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  818.089233][T16415] netlink: 'syz.4.4532': attribute type 29 has an invalid length.
[  818.107248][T16417] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.4535'.
[  818.132238][T16415] netlink: 'syz.4.4532': attribute type 29 has an invalid length.
[  818.180919][T16417] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  818.230636][T16417] CPU: 0 PID: 16417 Comm: syz.5.4535 Not tainted 6.1.139-syzkaller #0
[  818.238871][T16417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  818.248968][T16417] Call Trace:
[  818.252277][T16417]  <TASK>
[  818.255237][T16417]  dump_stack_lvl+0x168/0x22e
[  818.259960][T16417]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  818.266166][T16417]  ? show_regs_print_info+0x12/0x12
[  818.271430][T16417]  ? load_image+0x3b0/0x3b0
[  818.275987][T16417]  sysfs_warn_dup+0x8a/0xa0
[  818.280536][T16417]  sysfs_do_create_link_sd+0xc0/0x110
[  818.285961][T16417]  device_add+0x7ed/0xfb0
[  818.290343][T16417]  wiphy_register+0x1e68/0x2bd0
[  818.295263][T16417]  ? cfg80211_event_work+0x40/0x40
[  818.300414][T16417]  ? minstrel_ht_alloc+0x894/0xa20
[  818.305573][T16417]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  818.311680][T16417]  ieee80211_register_hw+0x2c29/0x38c0
[  818.317192][T16417]  ? ieee80211_register_hw+0xf31/0x38c0
[  818.322777][T16417]  ? ieee80211_register_hw+0xe31/0x38c0
[  818.328379][T16417]  ? ieee80211_tasklet_handler+0x20/0x20
[  818.334063][T16417]  ? rcu_is_watching+0x11/0xa0
[  818.338871][T16417]  ? memset+0x1e/0x40
[  818.342883][T16417]  ? hrtimer_init+0x10c/0x220
[  818.347600][T16417]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  818.353386][T16417]  hwsim_new_radio_nl+0xafa/0xce0
[  818.358551][T16417]  genl_family_rcv_msg_doit+0x22e/0x320
[  818.364131][T16417]  ? end_current_label_crit_section+0x170/0x170
[  818.370413][T16417]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  818.376356][T16417]  ? bpf_lsm_capable+0x5/0x10
[  818.381071][T16417]  ? security_capable+0x85/0xb0
[  818.385972][T16417]  genl_rcv_msg+0x5f2/0x780
[  818.390519][T16417]  ? genl_bind+0x350/0x350
[  818.394962][T16417]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  818.401348][T16417]  netlink_rcv_skb+0x1de/0x420
[  818.406160][T16417]  ? genl_bind+0x350/0x350
[  818.410610][T16417]  ? netlink_ack+0x1100/0x1100
[  818.415429][T16417]  ? down_read+0x1a8/0x2d0
[  818.419887][T16417]  genl_rcv+0x24/0x40
[  818.423906][T16417]  netlink_unicast+0x74c/0x8c0
[  818.428725][T16417]  netlink_sendmsg+0x89e/0xbc0
[  818.433544][T16417]  ? netlink_getsockopt+0x540/0x540
[  818.438792][T16417]  ? aa_sock_msg_perm+0x94/0x150
[  818.443765][T16417]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  818.449084][T16417]  ? security_socket_sendmsg+0x7c/0xa0
[  818.454576][T16417]  ? netlink_getsockopt+0x540/0x540
[  818.459825][T16417]  ____sys_sendmsg+0x59b/0x970
[  818.464651][T16417]  ? __sys_sendmsg_sock+0x30/0x30
[  818.469742][T16417]  ? import_iovec+0x6f/0xa0
[  818.474286][T16417]  ___sys_sendmsg+0x21c/0x290
[  818.479017][T16417]  ? __sys_sendmsg+0x270/0x270
[  818.483880][T16417]  ? __fdget+0x17c/0x200
[  818.488177][T16417]  __se_sys_sendmsg+0x19e/0x270
[  818.493078][T16417]  ? __x64_sys_sendmsg+0x80/0x80
[  818.498078][T16417]  ? syscall_enter_from_user_mode+0x2a/0x80
[  818.504007][T16417]  do_syscall_64+0x4c/0xa0
[  818.508461][T16417]  ? clear_bhb_loop+0x60/0xb0
[  818.513170][T16417]  ? clear_bhb_loop+0x60/0xb0
[  818.517880][T16417]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  818.523819][T16417] RIP: 0033:0x7f6a82b8e969
[  818.528268][T16417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  818.547918][T16417] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  818.556382][T16417] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  818.564393][T16417] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  818.572398][T16417] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  818.580404][T16417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  818.588413][T16417] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  818.596445][T16417]  </TASK>
[  818.860032][T16429] netlink: 'syz.3.4539': attribute type 11 has an invalid length.
[  818.878332][T16429] netlink: 173820 bytes leftover after parsing attributes in process `syz.3.4539'.
[  818.928018][T16426] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  819.219864][T16441] delete_channel: no stack
[  819.245659][T16441] delete_channel: no stack
[  819.262321][T16439] netlink: 122896 bytes leftover after parsing attributes in process `syz.5.4554'.
[  819.330227][T16439] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  819.339352][T16439] CPU: 1 PID: 16439 Comm: syz.5.4554 Not tainted 6.1.139-syzkaller #0
[  819.347549][T16439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  819.357626][T16439] Call Trace:
[  819.360915][T16439]  <TASK>
[  819.363854][T16439]  dump_stack_lvl+0x168/0x22e
[  819.368576][T16439]  ? show_regs_print_info+0x12/0x12
[  819.373804][T16439]  ? load_image+0x3b0/0x3b0
[  819.378337][T16439]  sysfs_warn_dup+0x8a/0xa0
[  819.382862][T16439]  sysfs_do_create_link_sd+0xc0/0x110
[  819.388266][T16439]  device_add+0x7ed/0xfb0
[  819.392633][T16439]  wiphy_register+0x1e68/0x2bd0
[  819.397521][T16439]  ? cfg80211_event_work+0x40/0x40
[  819.402671][T16439]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  819.408752][T16439]  ieee80211_register_hw+0x2c29/0x38c0
[  819.414237][T16439]  ? ieee80211_register_hw+0xf31/0x38c0
[  819.419804][T16439]  ? ieee80211_register_hw+0xe31/0x38c0
[  819.425374][T16439]  ? ieee80211_tasklet_handler+0x20/0x20
[  819.431037][T16439]  ? rcu_is_watching+0x11/0xa0
[  819.435838][T16439]  ? memset+0x1e/0x40
[  819.439840][T16439]  ? hrtimer_init+0x10c/0x220
[  819.444539][T16439]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  819.450305][T16439]  hwsim_new_radio_nl+0xafa/0xce0
[  819.455399][T16439]  genl_family_rcv_msg_doit+0x22e/0x320
[  819.461048][T16439]  ? end_current_label_crit_section+0x170/0x170
[  819.467305][T16439]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  819.473224][T16439]  ? bpf_lsm_capable+0x5/0x10
[  819.477918][T16439]  ? security_capable+0x85/0xb0
[  819.482802][T16439]  genl_rcv_msg+0x5f2/0x780
[  819.487322][T16439]  ? genl_bind+0x350/0x350
[  819.491747][T16439]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  819.498100][T16439]  netlink_rcv_skb+0x1de/0x420
[  819.502898][T16439]  ? genl_bind+0x350/0x350
[  819.507328][T16439]  ? netlink_ack+0x1100/0x1100
[  819.512123][T16439]  ? down_read+0x1a8/0x2d0
[  819.516554][T16439]  genl_rcv+0x24/0x40
[  819.520551][T16439]  netlink_unicast+0x74c/0x8c0
[  819.525351][T16439]  netlink_sendmsg+0x89e/0xbc0
[  819.530227][T16439]  ? netlink_getsockopt+0x540/0x540
[  819.535445][T16439]  ? aa_sock_msg_perm+0x94/0x150
[  819.540397][T16439]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  819.545693][T16439]  ? security_socket_sendmsg+0x7c/0xa0
[  819.551159][T16439]  ? netlink_getsockopt+0x540/0x540
[  819.556374][T16439]  ____sys_sendmsg+0x59b/0x970
[  819.561167][T16439]  ? __sys_sendmsg_sock+0x30/0x30
[  819.566204][T16439]  ? __import_iovec+0x315/0x500
[  819.571074][T16439]  ? import_iovec+0x6f/0xa0
[  819.575593][T16439]  ___sys_sendmsg+0x21c/0x290
[  819.580289][T16439]  ? __sys_sendmsg+0x270/0x270
[  819.585093][T16439]  ? rcu_is_watching+0x11/0xa0
[  819.589886][T16439]  ? __fdget+0x17c/0x200
[  819.594150][T16439]  __se_sys_sendmsg+0x19e/0x270
[  819.599019][T16439]  ? perf_trace_preemptirq_template+0x287/0x330
[  819.605277][T16439]  ? __x64_sys_sendmsg+0x80/0x80
[  819.610251][T16439]  ? lockdep_hardirqs_on+0x94/0x140
[  819.615475][T16439]  do_syscall_64+0x4c/0xa0
[  819.619905][T16439]  ? clear_bhb_loop+0x60/0xb0
[  819.624594][T16439]  ? clear_bhb_loop+0x60/0xb0
[  819.629284][T16439]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  819.635201][T16439] RIP: 0033:0x7f6a82b8e969
[  819.639624][T16439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  819.659240][T16439] RSP: 002b:00007f6a83983038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  819.667671][T16439] RAX: ffffffffffffffda RBX: 00007f6a82db5fa0 RCX: 00007f6a82b8e969
[  819.675652][T16439] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  819.683628][T16439] RBP: 00007f6a82c10ab1 R08: 0000000000000000 R09: 0000000000000000
[  819.691612][T16439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  819.699589][T16439] R13: 0000000000000000 R14: 00007f6a82db5fa0 R15: 00007ffcea9a6b58
[  819.707674][T16439]  </TASK>
[  820.145313][T16457] netlink: 'syz.1.4551': attribute type 10 has an invalid length.
[  820.173284][T16457] netlink: 55 bytes leftover after parsing attributes in process `syz.1.4551'.
[  820.337281][T16462] netlink: 'syz.0.4552': attribute type 29 has an invalid length.
[  821.122081][T16462] netlink: 'syz.0.4552': attribute type 29 has an invalid length.
[  821.429452][T16483] delete_channel: no stack
[  821.463550][T16483] delete_channel: no stack
[  822.220136][T16516] delete_channel: no stack
[  822.230893][T16516] delete_channel: no stack
[  822.283055][T16518] netlink: 'syz.5.4580': attribute type 10 has an invalid length.
[  822.460496][T16518] device netdevsim0 entered promiscuous mode
[  822.496198][T16518] team0: Port device netdevsim0 added
[  822.509061][T16521] netlink: 'syz.5.4580': attribute type 10 has an invalid length.
[  822.526666][T16521] device netdevsim0 left promiscuous mode
[  822.585032][T16521] team0: Port device netdevsim0 removed
[  822.609269][T16521] device netdevsim0 entered promiscuous mode
[  822.617068][T16521] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  823.555815][T16561] netlink: 'syz.4.4599': attribute type 10 has an invalid length.
[  823.735741][T16561] device netdevsim0 entered promiscuous mode
[  823.775100][T16561] team0: Port device netdevsim0 added
[  823.804430][T16565] netlink: 'syz.4.4599': attribute type 10 has an invalid length.
[  823.813269][T16565] device netdevsim0 left promiscuous mode
[  823.864237][T16565] team0: Port device netdevsim0 removed
[  823.882849][T16565] device netdevsim0 entered promiscuous mode
[  823.890367][T16565] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  823.899981][T16566] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4602'.
[  823.918872][T16566] device caif0 entered promiscuous mode
[  824.795004][T16609] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4617'.
[  824.879803][T16609] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  824.912741][T16609] CPU: 1 PID: 16609 Comm: syz.4.4617 Not tainted 6.1.139-syzkaller #0
[  824.920974][T16609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  824.931068][T16609] Call Trace:
[  824.934385][T16609]  <TASK>
[  824.937337][T16609]  dump_stack_lvl+0x168/0x22e
[  824.942041][T16609]  ? show_regs_print_info+0x12/0x12
[  824.947261][T16609]  ? load_image+0x3b0/0x3b0
[  824.951787][T16609]  sysfs_warn_dup+0x8a/0xa0
[  824.956311][T16609]  sysfs_do_create_link_sd+0xc0/0x110
[  824.961703][T16609]  device_add+0x7ed/0xfb0
[  824.966062][T16609]  wiphy_register+0x1e68/0x2bd0
[  824.970948][T16609]  ? cfg80211_event_work+0x40/0x40
[  824.976084][T16609]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  824.982168][T16609]  ieee80211_register_hw+0x2c29/0x38c0
[  824.987652][T16609]  ? ieee80211_register_hw+0xf31/0x38c0
[  824.993214][T16609]  ? ieee80211_register_hw+0xe31/0x38c0
[  824.998786][T16609]  ? ieee80211_tasklet_handler+0x20/0x20
[  825.004442][T16609]  ? rcu_is_watching+0x11/0xa0
[  825.009226][T16609]  ? memset+0x1e/0x40
[  825.013221][T16609]  ? hrtimer_init+0x10c/0x220
[  825.017915][T16609]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  825.023665][T16609]  hwsim_new_radio_nl+0xafa/0xce0
[  825.028714][T16609]  genl_family_rcv_msg_doit+0x22e/0x320
[  825.034359][T16609]  ? end_current_label_crit_section+0x170/0x170
[  825.040617][T16609]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  825.046536][T16609]  ? bpf_lsm_capable+0x5/0x10
[  825.051232][T16609]  ? security_capable+0x85/0xb0
[  825.056101][T16609]  genl_rcv_msg+0x5f2/0x780
[  825.060628][T16609]  ? genl_bind+0x350/0x350
[  825.065055][T16609]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  825.071401][T16609]  ? lock_acquire+0x20f/0x490
[  825.076105][T16609]  netlink_rcv_skb+0x1de/0x420
[  825.080898][T16609]  ? genl_bind+0x350/0x350
[  825.085328][T16609]  ? netlink_ack+0x1100/0x1100
[  825.090117][T16609]  ? down_read+0x1a8/0x2d0
[  825.094642][T16609]  genl_rcv+0x24/0x40
[  825.098630][T16609]  netlink_unicast+0x74c/0x8c0
[  825.103422][T16609]  netlink_sendmsg+0x89e/0xbc0
[  825.108298][T16609]  ? netlink_getsockopt+0x540/0x540
[  825.113523][T16609]  ? aa_sock_msg_perm+0x94/0x150
[  825.118477][T16609]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  825.123774][T16609]  ? security_socket_sendmsg+0x7c/0xa0
[  825.129267][T16609]  ? netlink_getsockopt+0x540/0x540
[  825.134500][T16609]  ____sys_sendmsg+0x59b/0x970
[  825.139305][T16609]  ? __sys_sendmsg_sock+0x30/0x30
[  825.144352][T16609]  ? __import_iovec+0x315/0x500
[  825.149228][T16609]  ? import_iovec+0x6f/0xa0
[  825.153750][T16609]  ___sys_sendmsg+0x21c/0x290
[  825.158455][T16609]  ? __sys_sendmsg+0x270/0x270
[  825.163366][T16609]  ? __fdget+0x17c/0x200
[  825.167632][T16609]  __se_sys_sendmsg+0x19e/0x270
[  825.172505][T16609]  ? __x64_sys_sendmsg+0x80/0x80
[  825.177475][T16609]  ? syscall_enter_from_user_mode+0x2a/0x80
[  825.183411][T16609]  do_syscall_64+0x4c/0xa0
[  825.187873][T16609]  ? clear_bhb_loop+0x60/0xb0
[  825.192559][T16609]  ? clear_bhb_loop+0x60/0xb0
[  825.197245][T16609]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  825.203174][T16609] RIP: 0033:0x7fa48cb8e969
[  825.207604][T16609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  825.227223][T16609] RSP: 002b:00007fa48da22038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  825.235651][T16609] RAX: ffffffffffffffda RBX: 00007fa48cdb5fa0 RCX: 00007fa48cb8e969
[  825.243633][T16609] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  825.251614][T16609] RBP: 00007fa48cc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  825.259597][T16609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  825.267574][T16609] R13: 0000000000000000 R14: 00007fa48cdb5fa0 R15: 00007ffc6f1a5b28
[  825.275572][T16609]  </TASK>
[  825.841402][T16632] netlink: 'syz.0.4625': attribute type 10 has an invalid length.
[  826.036412][T16632] team0: Port device netdevsim0 added
[  826.059889][T16636] netlink: 'syz.0.4625': attribute type 10 has an invalid length.
[  826.090528][T16636] team0: Port device netdevsim0 removed
[  826.114730][T16636] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  826.243766][T16645] netlink: 'syz.4.4633': attribute type 10 has an invalid length.
[  826.266629][T16645] netlink: 55 bytes leftover after parsing attributes in process `syz.4.4633'.
[  826.604843][T16656] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.4639'.
[  827.010130][T16656] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  827.021054][T16656] CPU: 0 PID: 16656 Comm: syz.0.4639 Not tainted 6.1.139-syzkaller #0
[  827.029266][T16656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  827.039352][T16656] Call Trace:
[  827.042663][T16656]  <TASK>
[  827.045632][T16656]  dump_stack_lvl+0x168/0x22e
[  827.050380][T16656]  ? show_regs_print_info+0x12/0x12
[  827.055623][T16656]  ? load_image+0x3b0/0x3b0
[  827.060178][T16656]  sysfs_warn_dup+0x8a/0xa0
[  827.064711][T16656]  sysfs_do_create_link_sd+0xc0/0x110
[  827.070100][T16656]  device_add+0x7ed/0xfb0
[  827.074455][T16656]  wiphy_register+0x1e68/0x2bd0
[  827.079343][T16656]  ? cfg80211_event_work+0x40/0x40
[  827.084482][T16656]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  827.090561][T16656]  ieee80211_register_hw+0x2c29/0x38c0
[  827.096047][T16656]  ? ieee80211_register_hw+0xf31/0x38c0
[  827.101606][T16656]  ? ieee80211_register_hw+0xe31/0x38c0
[  827.107174][T16656]  ? ieee80211_tasklet_handler+0x20/0x20
[  827.112826][T16656]  ? rcu_is_watching+0x11/0xa0
[  827.117606][T16656]  ? memset+0x1e/0x40
[  827.121599][T16656]  ? hrtimer_init+0x10c/0x220
[  827.126288][T16656]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  827.132034][T16656]  hwsim_new_radio_nl+0xafa/0xce0
[  827.137084][T16656]  genl_family_rcv_msg_doit+0x22e/0x320
[  827.142641][T16656]  ? end_current_label_crit_section+0x170/0x170
[  827.148901][T16656]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  827.154813][T16656]  ? bpf_lsm_capable+0x5/0x10
[  827.159537][T16656]  ? security_capable+0x85/0xb0
[  827.164406][T16656]  genl_rcv_msg+0x5f2/0x780
[  827.168933][T16656]  ? genl_bind+0x350/0x350
[  827.173359][T16656]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  827.179718][T16656]  netlink_rcv_skb+0x1de/0x420
[  827.184504][T16656]  ? genl_bind+0x350/0x350
[  827.188953][T16656]  ? netlink_ack+0x1100/0x1100
[  827.193742][T16656]  ? down_read+0x1a8/0x2d0
[  827.198257][T16656]  genl_rcv+0x24/0x40
[  827.202245][T16656]  netlink_unicast+0x74c/0x8c0
[  827.207030][T16656]  netlink_sendmsg+0x89e/0xbc0
[  827.211818][T16656]  ? netlink_getsockopt+0x540/0x540
[  827.217060][T16656]  ? lockdep_hardirqs_on+0x94/0x140
[  827.222300][T16656]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  827.228482][T16656]  ? aa_sock_msg_perm+0x94/0x150
[  827.233446][T16656]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  827.238870][T16656]  ? security_socket_sendmsg+0x7c/0xa0
[  827.244359][T16656]  ? netlink_getsockopt+0x540/0x540
[  827.249588][T16656]  ____sys_sendmsg+0x59b/0x970
[  827.254377][T16656]  ? iovec_from_user+0x2d7/0x360
[  827.259336][T16656]  ? __sys_sendmsg_sock+0x30/0x30
[  827.264468][T16656]  ? __import_iovec+0x315/0x500
[  827.269339][T16656]  ? import_iovec+0x6f/0xa0
[  827.273857][T16656]  ___sys_sendmsg+0x21c/0x290
[  827.278563][T16656]  ? __sys_sendmsg+0x270/0x270
[  827.283382][T16656]  ? __fdget+0x17c/0x200
[  827.287642][T16656]  __se_sys_sendmsg+0x19e/0x270
[  827.292512][T16656]  ? __x64_sys_sendmsg+0x80/0x80
[  827.297487][T16656]  ? syscall_enter_from_user_mode+0x2a/0x80
[  827.303394][T16656]  do_syscall_64+0x4c/0xa0
[  827.307829][T16656]  ? clear_bhb_loop+0x60/0xb0
[  827.312511][T16656]  ? clear_bhb_loop+0x60/0xb0
[  827.317193][T16656]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  827.323114][T16656] RIP: 0033:0x7f9a0098e969
[  827.327537][T16656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.347157][T16656] RSP: 002b:00007f9a01849038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  827.355581][T16656] RAX: ffffffffffffffda RBX: 00007f9a00bb5fa0 RCX: 00007f9a0098e969
[  827.363563][T16656] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  827.371564][T16656] RBP: 00007f9a00a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  827.379555][T16656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  827.387625][T16656] R13: 0000000000000000 R14: 00007f9a00bb5fa0 R15: 00007fff766c3298
[  827.395625][T16656]  </TASK>
[  828.188840][T16688] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4655'.
[  828.216797][T16688] device caif0 entered promiscuous mode
[  828.259292][T16692] netlink: 'syz.5.4657': attribute type 10 has an invalid length.
[  828.271563][T16692] netlink: 55 bytes leftover after parsing attributes in process `syz.5.4657'.
[  829.601606][T16737] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4676'.
[  829.652499][T16737] device caif0 entered promiscuous mode
[  830.978649][T16787] netlink: 122896 bytes leftover after parsing attributes in process `syz.4.4697'.
[  831.000521][T16787] sysfs: cannot create duplicate filename '/class/ieee80211/!!
'
[  831.011067][T16787] CPU: 0 PID: 16787 Comm: syz.4.4697 Not tainted 6.1.139-syzkaller #0
[  831.019277][T16787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  831.029375][T16787] Call Trace:
[  831.032685][T16787]  <TASK>
[  831.035641][T16787]  dump_stack_lvl+0x168/0x22e
[  831.040377][T16787]  ? show_regs_print_info+0x12/0x12
[  831.045618][T16787]  ? load_image+0x3b0/0x3b0
[  831.050175][T16787]  sysfs_warn_dup+0x8a/0xa0
[  831.054722][T16787]  sysfs_do_create_link_sd+0xc0/0x110
[  831.060141][T16787]  device_add+0x7ed/0xfb0
[  831.064519][T16787]  wiphy_register+0x1e68/0x2bd0
[  831.069439][T16787]  ? cfg80211_event_work+0x40/0x40
[  831.074590][T16787]  ? minstrel_ht_alloc+0x894/0xa20
[  831.079751][T16787]  ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0
[  831.085859][T16787]  ieee80211_register_hw+0x2c29/0x38c0
[  831.091376][T16787]  ? ieee80211_register_hw+0xf31/0x38c0
[  831.096959][T16787]  ? ieee80211_register_hw+0xe31/0x38c0
[  831.102557][T16787]  ? ieee80211_tasklet_handler+0x20/0x20
[  831.108235][T16787]  ? rcu_is_watching+0x11/0xa0
[  831.113044][T16787]  ? memset+0x1e/0x40
[  831.117053][T16787]  ? hrtimer_init+0x10c/0x220
[  831.121767][T16787]  mac80211_hwsim_new_radio+0x28c2/0x4c40
[  831.127546][T16787]  hwsim_new_radio_nl+0xafa/0xce0
[  831.132621][T16787]  genl_family_rcv_msg_doit+0x22e/0x320
[  831.138200][T16787]  ? end_current_label_crit_section+0x170/0x170
[  831.144486][T16787]  ? genl_family_rcv_msg_dumpit+0x340/0x340
[  831.150508][T16787]  ? bpf_lsm_capable+0x5/0x10
[  831.155220][T16787]  ? security_capable+0x85/0xb0
[  831.160113][T16787]  genl_rcv_msg+0x5f2/0x780
[  831.164667][T16787]  ? genl_bind+0x350/0x350
[  831.169107][T16787]  ? hwsim_tx_info_frame_received_nl+0xfb0/0xfb0
[  831.175489][T16787]  netlink_rcv_skb+0x1de/0x420
[  831.180294][T16787]  ? genl_bind+0x350/0x350
[  831.184744][T16787]  ? netlink_ack+0x1100/0x1100
[  831.189566][T16787]  ? down_read+0x1a8/0x2d0
[  831.194020][T16787]  genl_rcv+0x24/0x40
[  831.198029][T16787]  netlink_unicast+0x74c/0x8c0
[  831.202845][T16787]  netlink_sendmsg+0x89e/0xbc0
[  831.207684][T16787]  ? netlink_getsockopt+0x540/0x540
[  831.212952][T16787]  ? aa_sock_msg_perm+0x94/0x150
[  831.217934][T16787]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  831.223251][T16787]  ? security_socket_sendmsg+0x7c/0xa0
[  831.228745][T16787]  ? netlink_getsockopt+0x540/0x540
[  831.233985][T16787]  ____sys_sendmsg+0x59b/0x970
[  831.238807][T16787]  ? __sys_sendmsg_sock+0x30/0x30
[  831.243871][T16787]  ? __import_iovec+0x315/0x500
[  831.248768][T16787]  ? import_iovec+0x6f/0xa0
[  831.253306][T16787]  ___sys_sendmsg+0x21c/0x290
[  831.258026][T16787]  ? __sys_sendmsg+0x270/0x270
[  831.262893][T16787]  ? __fdget+0x17c/0x200
[  831.267185][T16787]  __se_sys_sendmsg+0x19e/0x270
[  831.272080][T16787]  ? perf_trace_preemptirq_template+0x287/0x330
[  831.278363][T16787]  ? __x64_sys_sendmsg+0x80/0x80
[  831.283365][T16787]  ? lockdep_hardirqs_on+0x94/0x140
[  831.288626][T16787]  do_syscall_64+0x4c/0xa0
[  831.293081][T16787]  ? clear_bhb_loop+0x60/0xb0
[  831.297784][T16787]  ? clear_bhb_loop+0x60/0xb0
[  831.302491][T16787]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  831.308424][T16787] RIP: 0033:0x7fa48cb8e969
[  831.312867][T16787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  831.332540][T16787] RSP: 002b:00007fa48da01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  831.341010][T16787] RAX: ffffffffffffffda RBX: 00007fa48cdb6080 RCX: 00007fa48cb8e969
[  831.349021][T16787] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000a
[  831.357025][T16787] RBP: 00007fa48cc10ab1 R08: 0000000000000000 R09: 0000000000000000
[  831.365018][T16787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  831.373013][T16787] R13: 0000000000000000 R14: 00007fa48cdb6080 R15: 00007ffc6f1a5b28
[  831.381036][T16787]  </TASK>
[  832.697191][T16829] netlink: 'syz.3.4716': attribute type 10 has an invalid length.
[  832.721583][T16829] netlink: 55 bytes leftover after parsing attributes in process `syz.3.4716'.
[  833.508286][T16854] netlink: 'syz.5.4730': attribute type 1 has an invalid length.
[  833.754599][T16863] BUG: kernel NULL pointer dereference, address: 0000000000000000
[  833.762470][T16863] #PF: supervisor instruction fetch in kernel mode
[  833.768998][T16863] #PF: error_code(0x0010) - not-present page
[  833.775192][T16863] PGD 7300b067 P4D 7300b067 PUD 0 
[  833.780362][T16863] Oops: 0010 [#1] PREEMPT SMP KASAN
[  833.785599][T16863] CPU: 1 PID: 16863 Comm: syz.3.4733 Not tainted 6.1.139-syzkaller #0
[  833.793780][T16863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  833.803948][T16863] RIP: 0010:0x0
[  833.807466][T16863] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  833.814880][T16863] RSP: 0018:ffffc9000536f218 EFLAGS: 00010246
[  833.820983][T16863] RAX: 1ffffffff1617517 RBX: 000000000000000f RCX: 0000000000000000
[  833.828980][T16863] RDX: ffffc9000536f2c0 RSI: 0000000000000001 RDI: ffff888078214000
[  833.836984][T16863] RBP: ffffc9000536f330 R08: dffffc0000000000 R09: ffffed100f042808
[  833.844990][T16863] R10: ffffed100f042808 R11: 1ffff1100f042807 R12: ffffe8ffffd457c8
[  833.853000][T16863] R13: ffffffff8b0ba8b8 R14: 0000000000000000 R15: ffff888078214000
[  833.861015][T16863] FS:  00007f5e7e3786c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  833.869977][T16863] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  833.876574][T16863] CR2: ffffffffffffffd6 CR3: 0000000028ebd000 CR4: 00000000003506e0
[  833.884562][T16863] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  833.892555][T16863] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  833.900556][T16863] Call Trace:
[  833.903856][T16863]  <TASK>
[  833.906803][T16863]  bond_xdp_xmit+0x309/0x520
[  833.911421][T16863]  ? irqentry_enter+0x33/0x50
[  833.916115][T16863]  ? bond_xdp_xmit+0x93/0x520
[  833.920838][T16863]  ? bond_xdp+0x840/0x840
[  833.925216][T16863]  bq_xmit_all+0xc99/0x10d0
[  833.929758][T16863]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  833.935935][T16863]  ? page_ext_put+0x98/0xb0
[  833.940465][T16863]  ? __lock_acquire+0x7c50/0x7c50
[  833.945506][T16863]  ? __page_table_check_zero+0x17a/0x4b0
[  833.951168][T16863]  ? get_page_from_freelist+0x1a26/0x1ac0
[  833.956903][T16863]  ? __dev_flush+0x1b0/0x1b0
[  833.961518][T16863]  ? perf_trace_preemptirq_template+0xa0/0x330
[  833.967696][T16863]  ? __next_zones_zonelist+0x99/0x120
[  833.973093][T16863]  ? rcu_lockdep_current_cpu_online+0x33/0x120
[  833.979291][T16863]  ? rcu_read_lock_bh_held+0x76/0xe0
[  833.984600][T16863]  ? rcu_read_lock_held+0x40/0x40
[  833.989644][T16863]  bq_enqueue+0x337/0x3d0
[  833.994000][T16863]  dev_map_enqueue_multi+0xff9/0x1160
[  833.999393][T16863]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  834.005566][T16863]  ? dev_map_enqueue+0x340/0x340
[  834.010525][T16863]  ? rcu_is_watching+0x11/0xa0
[  834.015313][T16863]  ? trace_page_pool_state_hold+0xa7/0x250
[  834.021140][T16863]  ? __page_pool_alloc_pages_slow+0x6ec/0x890
[  834.027227][T16863]  ? __cant_sleep+0x210/0x210
[  834.031929][T16863]  xdp_do_redirect_frame+0x477/0x650
[  834.037238][T16863]  bpf_test_run_xdp_live+0x9dd/0x1970
[  834.042645][T16863]  ? bpf_test_run_xdp_live+0x45c/0x1970
[  834.048218][T16863]  ? xdp_convert_md_to_buff+0x330/0x330
[  834.053796][T16863]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[  834.060076][T16863]  ? xdp_convert_md_to_buff+0x27b/0x330
[  834.065647][T16863]  ? xdp_convert_md_to_buff+0x5b/0x330
[  834.071133][T16863]  bpf_prog_test_run_xdp+0x6f1/0xe50
[  834.076454][T16863]  ? dev_put+0x80/0x80
[  834.080547][T16863]  ? dev_put+0x80/0x80
[  834.084678][T16863]  bpf_prog_test_run+0x31e/0x390
[  834.089646][T16863]  __sys_bpf+0x593/0x6d0
[  834.093909][T16863]  ? bpf_link_show_fdinfo+0x310/0x310
[  834.099317][T16863]  ? lock_chain_count+0x20/0x20
[  834.104189][T16863]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  834.110202][T16863]  __x64_sys_bpf+0x78/0x90
[  834.114646][T16863]  do_syscall_64+0x4c/0xa0
[  834.119105][T16863]  ? clear_bhb_loop+0x60/0xb0
[  834.123804][T16863]  ? clear_bhb_loop+0x60/0xb0
[  834.128499][T16863]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  834.134458][T16863] RIP: 0033:0x7f5e7d58e969
[  834.138897][T16863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  834.158527][T16863] RSP: 002b:00007f5e7e378038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  834.166956][T16863] RAX: ffffffffffffffda RBX: 00007f5e7d7b5fa0 RCX: 00007f5e7d58e969
[  834.174939][T16863] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  834.182927][T16863] RBP: 00007f5e7d610ab1 R08: 0000000000000000 R09: 0000000000000000
[  834.190913][T16863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  834.198890][T16863] R13: 0000000000000000 R14: 00007f5e7d7b5fa0 R15: 00007ffd88113fb8
[  834.206902][T16863]  </TASK>
[  834.209935][T16863] Modules linked in:
[  834.213845][T16863] CR2: 0000000000000000
[  834.218010][T16863] ---[ end trace 0000000000000000 ]---
[  834.223468][T16863] RIP: 0010:0x0
[  834.226938][T16863] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  834.234306][T16863] RSP: 0018:ffffc9000536f218 EFLAGS: 00010246
[  834.240381][T16863] RAX: 1ffffffff1617517 RBX: 000000000000000f RCX: 0000000000000000
[  834.248373][T16863] RDX: ffffc9000536f2c0 RSI: 0000000000000001 RDI: ffff888078214000
[  834.256352][T16863] RBP: ffffc9000536f330 R08: dffffc0000000000 R09: ffffed100f042808
[  834.264338][T16863] R10: ffffed100f042808 R11: 1ffff1100f042807 R12: ffffe8ffffd457c8
[  834.272325][T16863] R13: ffffffff8b0ba8b8 R14: 0000000000000000 R15: ffff888078214000
[  834.280309][T16863] FS:  00007f5e7e3786c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  834.289251][T16863] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  834.295842][T16863] CR2: ffffffffffffffd6 CR3: 0000000028ebd000 CR4: 00000000003506e0
[  834.303819][T16863] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  834.311794][T16863] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  834.319771][T16863] Kernel panic - not syncing: Fatal exception in interrupt
[  834.327216][T16863] Kernel Offset: disabled
[  834.331540][T16863] Rebooting in 86400 seconds..