last executing test programs:

8m28.496427621s ago: executing program 1 (id=2059):
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{}, 0x0, &(0x7f00000002c0)='%pB    \x00'}, 0x20)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x6, 0x9, 0x0, 0x8, 0x18000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x440, 0xc8, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r0, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001380)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r3, 0x1, 0x4, &(0x7f0000000040), 0x4)
perf_event_open(&(0x7f00000004c0)={0x4, 0x80, 0x1, 0xf0, 0x0, 0x0, 0x0, 0x1, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x101, 0x7}, 0x481a, 0x20000008, 0x0, 0x7, 0x0, 0x1, 0xf792, 0x0, 0xffffffff, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="090000000400000006000000ff"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000540)=ANY=[@ANYBLOB="18080000d0ff00000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff99, &(0x7f0000000340)=""/222, 0x0, 0x8}, 0x78)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000700000095", @ANYBLOB="ddfea7a75cd04bfd359dfc3aad5cab5c72804009b0802e7d1e05f5ae36dbf8bc5da736f3fd6d8859fde688c44a13369ecb403b5e9c26cf39005730c6ad530eaa7a7bc871d864e4c5afa37321a270bc5cd565a714f42475a1fcc67a2c95b020d920b55a9d8744bc340d4dfadd4a71e7d2ee607e79404dbfab289dbb956395fc4a5b356e42f22290a8ff597fd5f02208ba9cef41932343be480c3a8991c568"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xffffffffffffffe1, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x6b, 0x60000000, 0x0, 0x0, &(0x7f0000000400)="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"}, 0xf)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000440), &(0x7f0000000080), 0x619, r4}, 0x38)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
write$cgroup_subtree(r2, &(0x7f00000004c0)=ANY=[], 0xfdef)

8m27.677478716s ago: executing program 1 (id=2061):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000001240)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
sendmsg(r0, &(0x7f0000000840)={&(0x7f00000005c0)=@ll={0x11, 0x16, 0x0, 0x1, 0x1, 0x6, @broadcast}, 0x80, 0x0, 0x0, &(0x7f0000001280)=ANY=[], 0x1328}, 0x20000000) (fail_nth: 3)

8m27.261390104s ago: executing program 0 (id=2066):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x6, 0xc, &(0x7f0000000bc0)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x20, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000011c0)={r0, 0x18000000000002a0, 0xeff, 0x7, &(0x7f0000001240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x4068, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f00000002c0)=ANY=[@ANYBLOB="00001c0ea921510000000038008bf9bc90e542e4a17ef165d034e37dc62a4cfc82a6642d676d154e61b10d1cbf44c597a3f2ff1b6e2421cef7e23a7ae7dece526305bc901ebf14245a1e462ed1f23b6714427f8c1e04f82a792861c447c01573f79b9d3dc3b2362714930e433616a2d3082f6d62c6597a1a549164f71dcdd15c13eb019a2c1331dd5ec349a9145537be0edd9bd044e10ba48a62a8ce523a12868c1692b8cfae2f2ce30dc57b00"/182])
perf_event_open(&(0x7f0000000580)={0x5, 0x80, 0xed, 0xb, 0x40, 0xe5, 0x0, 0x0, 0xd040, 0x6, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_bp={0x0, 0x2}, 0x986, 0xfc, 0x4, 0x9, 0x81, 0x9, 0x5, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000080)=ANY=[@ANYBLOB="1802000000000000000000000000000085100000010000009500000000000000180000000001000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000002885000000c700000095"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x98, &(0x7f00000001c0)=""/152, 0x41000, 0xa}, 0x23)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0x4004743d, 0x110e22fff6)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080030000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r6, 0x0, 0x48b, 0x0, 0x18)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x18)
close(r2)
write$cgroup_type(r3, &(0x7f0000000280), 0x9)

8m27.037960484s ago: executing program 0 (id=2069):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e}, 0x94)
r0 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r0, &(0x7f0000002700)={&(0x7f0000000080)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000180)="90", 0x1}], 0x1}, 0x8040)
r1 = socket$kcm(0x10, 0x2, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800"/13], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
sendmsg$inet(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d00028422fb564500006e23e3f58e76110165f450e71bfc74e3002500028d459e37000f0000000000bf9367a17e51f60a64c9f4d4938037e786a6d0bdd700000000000000000051fd1f33597225", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40000) (fail_nth: 7)

8m26.576470573s ago: executing program 1 (id=2070):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0, &(0x7f00000002c0)}, 0x20)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ceb71c0010ec90db133c22a690ae7080000000000040875b0089"], 0xfe1b)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f375ffff86dd6317ce62070000000000000000431ccaf57b000000000000000001"], 0xfe1b)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_pressure(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x73)
setsockopt$sock_attach_bpf(r2, 0x29, 0x1f, 0x0, 0x19)
socket$kcm(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001a000000bca30000000000002403000064feffff620af0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="10000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r3], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="1c0000001d008103e00f80ecdb4cb9f207", 0x11}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000200)=ANY=[], 0xfe33)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@map=r0, 0x31, 0x1, 0x401, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=@raw=[@func, @map_fd, @exit, @jmp={0x5, 0x0, 0x4}], 0x0}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r6 = socket$kcm(0xa, 0x2, 0x73)
setsockopt$sock_attach_bpf(r6, 0x29, 0x1e, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r7}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f3, &(0x7f0000000040))

8m26.487285227s ago: executing program 0 (id=2071):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000047000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a876d839240d29c035055b67db3e6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7e8dc34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bb44b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334583239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bf4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc508afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd360000000000000000ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c97a088a22e8b15c3e233db00002e30d46a0024d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c29c5c0ed5bcdf510c3c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ced92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f68fa8d7c2dfb28e1f05e46b0933c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b19abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e}, 0x94)
r0 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(r0, &(0x7f0000002700)={&(0x7f0000000080)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000180)="90", 0x1}], 0x1}, 0x8040)
r1 = socket$kcm(0x10, 0x2, 0x4)
r2 = socket$kcm(0x10, 0x2, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x1400, &(0x7f0000000080)=[{&(0x7f0000000040)="140000001d000b63d25a80648c2594f90524fc60", 0x14}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000e40)="2e0000003e000511d25a80698c6394090124fc602f6e354016000180006000000000000000002cd65c65c3d7d756", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800"/13], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r5)
sendmsg$inet(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d00028422fb564500006e23e3f58e76110165f450e71bfc74e3002500028d459e37000f0000000000bf9367a17e51f60a64c9f4d4938037e786a6d0bdd700000000000000000051fd1f33597225", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40000)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002240)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
r9 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_tracing={0x1a, 0x11, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7fff}, [@alu={0x7, 0x1, 0x2, 0xb, 0x0, 0x4, 0xffffffffffffffff}, @tail_call, @jmp={0x5, 0x1, 0x0, 0x7, 0x1, 0x0, 0xffffffffffffffff}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xc0}, @alu={0x4, 0x1, 0x69981d1ada9106fd, 0x1, 0x2, 0x1, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x7}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x80000001}]}, &(0x7f0000000200)='GPL\x00', 0x5, 0x54, &(0x7f0000000280)=""/84, 0x41000, 0x6c, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000400)={0x3, 0x5, 0x5, 0xffffffff}, 0x10, 0x125e9, 0xffffffffffffffff, 0x5, &(0x7f0000000440)=[r6], &(0x7f0000000680)=[{0x0, 0x1, 0x27aad725, 0x3}, {0x3, 0x3, 0x3}, {0x1, 0x2, 0x8, 0x1}, {0x5, 0x3, 0x4, 0x7}, {0x3, 0x1, 0x0, 0x4}], 0x10, 0x7fff}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000900)={@map=r6, 0xd, 0x1, 0x1ff, &(0x7f0000000800)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x0, &(0x7f0000000840)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000008c0)=[0x0], <r10=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000940)={@map=r6, r9, 0x3e, 0x0, r8, @void, @value=r7, @void, @void, r10}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000b00)={r5, 0xe0, &(0x7f0000000a00)={0x0, <r11=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0], 0x0, 0xe7, &(0x7f0000000380)=[{}, {}], 0x10, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0xc5, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000100)={@ifindex, r3, 0x2a, 0x20, 0x0, @void, @void, @void, @value=r11, r10}, 0x20)

8m26.363103693s ago: executing program 0 (id=2073):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x922000000001, 0x106)
recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x10062)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x0, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000004000000000000009600000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70200cf0000000085000000860000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x5d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff], &(0x7f00000000c0)=[{0x5, 0x2, 0xc, 0xc}, {0x3, 0x4, 0x4}], 0x10, 0xc66e}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r2=>0xffffffffffffffff})
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0), 0x10, 0x4000020}, 0xfffffffffffffee5)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x801, 0x2, 0x10, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x68000000}, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0x6e, &(0x7f0000000000)=r7, 0x10)
r8 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r10)
recvmsg$unix(r9, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r11=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r8, 0x84, 0x11, &(0x7f0000000000)=r11, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r1}, 0x94)

8m26.299252226s ago: executing program 1 (id=2074):
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r2 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r2, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r2, r1})
sendmsg$kcm(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0xa, 0x1, 0x106)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000180)={@fallback, 0xffffffffffffffff, 0xc, 0xc}, 0x20)
setsockopt$sock_attach_bpf(r3, 0x1, 0x7, &(0x7f0000000040), 0x4)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x24000059)
close(r0)

8m25.385359065s ago: executing program 0 (id=2077):
r0 = socket$kcm(0x10, 0x3, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x16, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x46, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r2, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r3=>0x0, <r4=>0x0})
close(r3)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r5, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r6 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r6, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[], 0xfdef)
recvmsg(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000002540)=""/4096, 0x1000}], 0x1}, 0x101a0)
recvmsg(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000480)=""/158, 0x9e}], 0x1}, 0x20)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r7, &(0x7f0000000000)=ANY=[], 0x66)
sendmsg$inet(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="5c00000012006bb09a3fe3d86e17aa0a046b876c1d0048007ea60864160af3650400330038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a57aec408218841f080c9f4440c8037e70e0000c5bbfbffa849", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x48000)
r9 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r9, 0x89e2, &(0x7f0000000140)={r0})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x2904, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, 0x0, 0x0, 0x5}, 0x94)
r10 = socket$kcm(0x2, 0x1000000000000005, 0x0)
sendmsg$inet(r10, &(0x7f0000007940)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="20000000000000008400000002000000940404"], 0x20}, 0x0)

8m25.295496679s ago: executing program 1 (id=2078):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x108b84, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
close(0x3)

8m25.161278464s ago: executing program 0 (id=2079):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x10c0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107a83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x800006, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xfeffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0xff, 0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0xacc, 0x800000}, 0x0, 0xfff, 0xfffffe01, 0x2, 0x0, 0x10, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x830, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x5, &(0x7f0000000140), 0x55)
setsockopt$sock_attach_bpf(r1, 0x1, 0x6, 0x0, 0x0)
r3 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x23, &(0x7f0000000040), 0xf7)
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(r4, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x300080c1)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r10, &(0x7f00000001c0)='cpuset.cpu_exclusive\x00', 0x2, 0x0)
setsockopt$sock_attach_bpf(r8, 0x1, 0x32, &(0x7f0000000180)=r7, 0x4)
sendmsg$inet(r9, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x10)
setsockopt$sock_attach_bpf(r4, 0x1, 0x9, &(0x7f0000000800), 0x4)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='#{{\x00')

8m24.80059031s ago: executing program 32 (id=2079):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x10c0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107a83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x800006, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xfeffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0xff, 0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0xacc, 0x800000}, 0x0, 0xfff, 0xfffffe01, 0x2, 0x0, 0x10, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x830, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x5, &(0x7f0000000140), 0x55)
setsockopt$sock_attach_bpf(r1, 0x1, 0x6, 0x0, 0x0)
r3 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x23, &(0x7f0000000040), 0xf7)
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(r4, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x300080c1)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r10, &(0x7f00000001c0)='cpuset.cpu_exclusive\x00', 0x2, 0x0)
setsockopt$sock_attach_bpf(r8, 0x1, 0x32, &(0x7f0000000180)=r7, 0x4)
sendmsg$inet(r9, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x10)
setsockopt$sock_attach_bpf(r4, 0x1, 0x9, &(0x7f0000000800), 0x4)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='#{{\x00')

8m24.79274566s ago: executing program 1 (id=2083):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='mm_page_alloc\x00', r0}, 0x10) (async)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={@fallback=r0, 0x20, 0x0, 0x7, &(0x7f0000000040)=[0x0, 0x0], 0x2, 0x0, &(0x7f00000000c0)=[0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], <r1=>0x0}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000003c0)={0x1, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000200)={@ifindex=r2, r0, 0x1e, 0x14, r0, @void, @value=r0, @void, @void, r1}, 0x20)

8m24.56805574s ago: executing program 33 (id=2083):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='mm_page_alloc\x00', r0}, 0x10) (async)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={@fallback=r0, 0x20, 0x0, 0x7, &(0x7f0000000040)=[0x0, 0x0], 0x2, 0x0, &(0x7f00000000c0)=[0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], <r1=>0x0}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000003c0)={0x1, 0x58, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000200)={@ifindex=r2, r0, 0x1e, 0x14, r0, @void, @value=r0, @void, @void, r1}, 0x20)

4.235570039s ago: executing program 2 (id=3877):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
sendmsg$kcm(r0, &(0x7f0000000ec0)={0x0, 0x0, 0x0}, 0x4000000)

4.19516204s ago: executing program 2 (id=3878):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x9, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x94)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={r3, 0x0, 0x0}, 0x10)

2.956329253s ago: executing program 3 (id=3879):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x2, 0x1, 0x1, 0x0, 0x2e}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc00}, 0x48)

1.893510959s ago: executing program 2 (id=3882):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open$cgroup(0x0, r1, 0xffffffffffffffff, r0, 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_ext={0x1c, 0x6, &(0x7f0000000180)=@raw=[@generic={0x9, 0x2, 0x6, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0x52}], &(0x7f0000000300)='GPL\x00', 0x50c, 0x90, &(0x7f0000000440)=""/144, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x3, 0xd, 0x7fffffff, 0x5}, 0x10, 0x15514, 0xffffffffffffffff, 0x0, &(0x7f0000000640)=[0x1, 0x1, 0x1], 0x0, 0x10, 0xa39}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x6, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x310c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, 0x0}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000200000000000000000000030000000003000000020000000800000000000000000000010500000020000000000000000000000b"], 0x0, 0x4e}, 0x28)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9, 0x0, 0x0, 0xfffffffffff7bbfd, 0x1, 0x0, 0x0, 0x5ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_config_ext={0xc1, 0x4}, 0x84a0, 0x0, 0x0, 0x0, 0x7, 0xffffffff}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x10, 0xc, &(0x7f0000000b40)=ANY=[@ANYRES8=r0, @ANYBLOB="105479735a59dff11d67c1ef5588c9c0ed15310de04ebe3d64fc2332c428ac14fcdf8d07778946854c96d3954f8344dd84ac1393b1086ce2e8dfb1707dec9af5562c57568688d46ea096f3c964c20d712c9be9dd17", @ANYRES16], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r4 = socket$kcm(0x29, 0x2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x100, 0x2000000, 0xd384ed8852b2f03d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f3, &(0x7f0000000080))
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r7 = socket$kcm(0x11, 0x200000000000003, 0x300)
sendmsg$sock(r7, &(0x7f0000000600)={&(0x7f0000000280)=@hci={0x1f, 0x0, 0x3}, 0x80, 0x0}, 0x24004000)
r8 = socket$kcm(0x2, 0x1, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x8)
sendmsg$inet(r8, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000040)={r8, r6})
sendmsg$kcm(r4, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000580)='./cgroup/syz0\x00', 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x19, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffc35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.778010434s ago: executing program 3 (id=3884):
r0 = socket$kcm(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xc, 0x8000}, 0x8031, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)=@l2tp={0x2, 0x0, @private=0xa010100}, 0x80, &(0x7f0000000000)=[{0x0}], 0x1, &(0x7f0000003280)=ANY=[], 0x38}, 0x41)
syz_open_procfs$namespace(0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x3000c041)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000080000ffffff7f00000000003f734372a777d967f16f5679fd11432dcf606ed481541bfef2f0c30eb389d98bab510a6bba388cb857723860c6f1384d868fc964c9a6fdc71adf5c5550dffe0303ad20c50fa2a85438ffdb42ec5f00"/112, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x890b, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000860629c98500000015000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018010000203ea02500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000008000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
sendmsg$inet(r2, &(0x7f0000000100)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast1}}}], 0x20}, 0x4008804)
sendmsg$inet(r2, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x100904, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc601006034002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @private0}, 0x80, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00'], 0x28}, 0x0)

1.777573144s ago: executing program 4 (id=3885):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0xa}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e0ffff200000000021000aac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48) (fail_nth: 10)

1.750095665s ago: executing program 5 (id=3886):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
sendmsg$kcm(r0, &(0x7f0000000ec0)={0x0, 0x0, 0x0}, 0x4000000)

1.207567989s ago: executing program 5 (id=3887):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1d, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x14, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x9}, {}, {}, [@tail_call], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x4, 0x47, &(0x7f0000000340)=""/71, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb}, 0x94)
socket$kcm(0xa, 0x5, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socket$kcm(0xa, 0x2, 0x3a)
ioctl$SIOCSIFHWADDR(r1, 0x8922, &(0x7f0000002280)={'team0\x00', @random="2b0100004ec6"})
ioctl$SIOCSIFHWADDR(r0, 0x8b23, &(0x7f0000000000)={'wlan1\x00', @random="0011002000"})
r2 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r2, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x2c}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000000)='Gb', 0x5dc}], 0x1}, 0x480c0)

1.16741816s ago: executing program 3 (id=3888):
r0 = socket$kcm(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xc, 0x8000}, 0x8031, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)=@l2tp={0x2, 0x0, @private=0xa010100}, 0x80, &(0x7f0000000000)=[{0x0}], 0x1, &(0x7f0000003280)=ANY=[], 0x38}, 0x41)
syz_open_procfs$namespace(0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x3000c041)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000080000ffffff7f00000000003f734372a777d967f16f5679fd11432dcf606ed481541bfef2f0c30eb389d98bab510a6bba388cb857723860c6f1384d868fc964c9a6fdc71adf5c5550dffe0303ad20c50fa2a85438ffdb42ec5f00"/112, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x890b, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000860629c98500000015000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018010000203ea02500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000008000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
sendmsg$inet(r2, &(0x7f0000000100)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast1}}}], 0x20}, 0x4008804)
sendmsg$inet(r2, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x100904, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc601006034002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @private0}, 0x80, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00'], 0x28}, 0x0)

1.16590451s ago: executing program 4 (id=3896):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2f, 0xffffff99, &(0x7f0000000100)="b9ff03316844268cb89e14f086dd65e0ffff00122c00631177fbac14030a44079f03fe8000ff80000000000000000008ffff3a050b038da1880b251810a59d943be3f4aed50ea5a6b8686731cb89ef77523c899b699eeaa0eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f7ff4000000000000000000", 0x0, 0xfe, 0x60000000, 0x0, 0x0, &(0x7f0000000380)="b101000000353b", &(0x7f0000000000), 0x0, 0x700}, 0x2c) (fail_nth: 8)

1.025505686s ago: executing program 5 (id=3889):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2a040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x5, 0x7, 0xffffffff7fffffff, 0x6, 0x2, 0x0, 0x89f, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="1400000016000b63d25a80648c2566e506bce1e8", 0x14}], 0x1}, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x6, 0xe9e5ed412e3bf91f, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xae1d, 0x1, @perf_bp={0x0, 0x8}, 0x100410, 0x200, 0x1, 0x1, 0x6, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xfffffffffffffdff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000003e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x26, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

855.330094ms ago: executing program 4 (id=3890):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x9, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x94)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={r3, 0x0, 0x0}, 0x10)

854.362394ms ago: executing program 2 (id=3891):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03316844268cb89e14f086dd47e0ffff00124000632f77fbac14fe16e000030a44070203fe80000000000000845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x24, 0x60000000}, 0x2c)

791.010027ms ago: executing program 3 (id=3892):
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000090000000000000000cc905b1500000023"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000))
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$TUNSETVNETLE(r1, 0x400454dc, &(0x7f0000000140)=0x1)

711.44483ms ago: executing program 5 (id=3893):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0xe27)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x2f00020b, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x7515, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={0xffffffffffffffff, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
r1 = socket$kcm(0x11, 0x3, 0x0)
ioctl$TUNSETDEBUG(0xffffffffffffffff, 0x400454c9, &(0x7f0000000380)=0x8000)
sendmsg$kcm(r1, &(0x7f0000000040)={&(0x7f0000000280)=@nl=@unspec, 0x80, &(0x7f0000000140)=[{&(0x7f0000000100)}], 0x1}, 0x24008000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000300)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x5, 0xf1, &(0x7f0000000000)=""/241, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000980)={<r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000040)={'macvlan0\x00', @random="0100"})

710.8596ms ago: executing program 4 (id=3894):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000006c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x11, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0xfffffffd}, [@call={0x85, 0x0, 0x0, 0xe}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1316}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000003f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x15)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x10, 0x2, 0x0, 0xff, 0x0, 0xcbf0, 0x241a2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x3, @perf_config_ext={0x3e, 0x1}, 0x0, 0x2, 0xffffffff, 0x0, 0x4, 0xfffffffc, 0x8000, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x5, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x3}, [@map_idx_val={0x18, 0x5, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10000}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='blkio.bfq.dequeue\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='netfs_rreq\x00', r2, 0x0, 0x9}, 0x18)

693.480511ms ago: executing program 2 (id=3895):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
sendmsg$kcm(r0, &(0x7f0000000ec0)={0x0, 0x0, 0x0}, 0x4000000)

668.577831ms ago: executing program 3 (id=3897):
r0 = socket$kcm(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xc, 0x8000}, 0x8031, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)=@l2tp={0x2, 0x0, @private=0xa010100}, 0x80, &(0x7f0000000000)=[{0x0}], 0x1, &(0x7f0000003280)=ANY=[], 0x38}, 0x41)
syz_open_procfs$namespace(0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x3000c041)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000080000ffffff7f00000000003f734372a777d967f16f5679fd11432dcf606ed481541bfef2f0c30eb389d98bab510a6bba388cb857723860c6f1384d868fc964c9a6fdc71adf5c5550dffe0303ad20c50fa2a85438ffdb42ec5f00"/112, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x890b, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000860629c98500000015000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018010000203ea02500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000008000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
sendmsg$inet(r2, &(0x7f0000000100)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast1}}}], 0x20}, 0x4008804)
sendmsg$inet(r2, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x100904, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc601006034002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @private0}, 0x80, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00'], 0x28}, 0x0)

568.050315ms ago: executing program 4 (id=3898):
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='blkio.bfq.group_wait_time\x00', 0x26e1, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_config_ext={0x5, 0x5}, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x4861}, 0x0, 0x7, 0xffffffffffffffff, 0x8)
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})

567.265726ms ago: executing program 2 (id=3899):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702000002ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x5c, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x6, &(0x7f0000000040)="63eced8e46dc3f0adf3389f7b986", 0x0, 0xffffffff, 0x3000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x50)

566.999686ms ago: executing program 5 (id=3900):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000014006b02c84e21000af32c6e0a0600048000000044000100fe800e000000004e0033df090e8497b1ed90d3d376bd5f6ffe5aa677b1c6f99b2173b936b0f429712ea34460bc24f65ee2f308ff9d4f5a60eab556a705251e61", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) (fail_nth: 6)

88.252387ms ago: executing program 4 (id=3901):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open$cgroup(0x0, r1, 0xffffffffffffffff, r0, 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_ext={0x1c, 0x6, &(0x7f0000000180)=@raw=[@generic={0x9, 0x2, 0x6, 0x1}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0x52}], &(0x7f0000000300)='GPL\x00', 0x50c, 0x90, &(0x7f0000000440)=""/144, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x3, 0xd, 0x7fffffff, 0x5}, 0x10, 0x15514, 0xffffffffffffffff, 0x0, &(0x7f0000000640)=[0x1, 0x1, 0x1], 0x0, 0x10, 0xa39}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x6, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x310c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, 0x0}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000200000000000000000000030000000003000000020000000800000000000000000000010500000020000000000000000000000b"], 0x0, 0x4e}, 0x28)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9, 0x0, 0x0, 0xfffffffffff7bbfd, 0x1, 0x0, 0x0, 0x5ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_config_ext={0xc1, 0x4}, 0x84a0, 0x0, 0x0, 0x0, 0x7, 0xffffffff}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x10, 0xc, &(0x7f0000000b40)=ANY=[@ANYRES8=r0, @ANYBLOB="105479735a59dff11d67c1ef5588c9c0ed15310de04ebe3d64fc2332c428ac14fcdf8d07778946854c96d3954f8344dd84ac1393b1086ce2e8dfb1707dec9af5562c57568688d46ea096f3c964c20d712c9be9dd17", @ANYRES16], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r4 = socket$kcm(0x29, 0x2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x100, 0x2000000, 0xd384ed8852b2f03d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f3, &(0x7f0000000080))
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r7 = socket$kcm(0x11, 0x200000000000003, 0x300)
sendmsg$sock(r7, &(0x7f0000000600)={&(0x7f0000000280)=@hci={0x1f, 0x0, 0x3}, 0x80, 0x0}, 0x24004000)
r8 = socket$kcm(0x2, 0x1, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x8)
sendmsg$inet(r8, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000040)={r8, r6})
sendmsg$kcm(r4, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000580)='./cgroup/syz0\x00', 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x19, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffc35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

50.550748ms ago: executing program 5 (id=3902):
r0 = socket$kcm(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xc, 0x8000}, 0x8031, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)=@l2tp={0x2, 0x0, @private=0xa010100}, 0x80, &(0x7f0000000000)=[{0x0}], 0x1, &(0x7f0000003280)=ANY=[], 0x38}, 0x41)
syz_open_procfs$namespace(0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x3000c041)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000080000ffffff7f00000000003f734372a777d967f16f5679fd11432dcf606ed481541bfef2f0c30eb389d98bab510a6bba388cb857723860c6f1384d868fc964c9a6fdc71adf5c5550dffe0303ad20c50fa2a85438ffdb42ec5f00"/112, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = socket$kcm(0x2, 0x3, 0x84)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x890b, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000860629c98500000015000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018010000203ea02500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000008000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
sendmsg$inet(r2, &(0x7f0000000100)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast1}}}], 0x20}, 0x4008804)
sendmsg$inet(r2, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x100904, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc601006034002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @private0}, 0x80, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00'], 0x28}, 0x0)

0s ago: executing program 3 (id=3903):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1042, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff8, 0x3}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x23, 0x2, 0x0)
socket$kcm(0x29, 0x2, 0x0)
socket$kcm(0xa, 0x6, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001100)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYRES64=r2, @ANYRES64=r3, @ANYRES32=r3], 0x20)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x8, [{0x0, 0x3}]}, @ptr, @restrict={0x0, 0x0, 0x0, 0x9, 0x2}]}}, 0x0, 0x4a}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, r4, 0x0, 0x1}, 0x50)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000bc0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x3c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x10}}, @rights={{0x10}}], 0xa0}, 0x2160)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000)=0x4b)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'})
socketpair(0x1, 0x5, 0x0, &(0x7f0000000200))
openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x125000, 0x0)

kernel console output (not intermixed with test programs):

lity 0, space 0, times 0
[  740.740693][T13220] CPU: 1 PID: 13220 Comm: syz.3.2342 Not tainted syzkaller #0
[  740.748231][T13220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  740.758319][T13220] Call Trace:
[  740.761627][T13220]  <TASK>
[  740.764592][T13220]  dump_stack_lvl+0x16c/0x230
[  740.769321][T13220]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  740.775524][T13220]  ? show_regs_print_info+0x20/0x20
[  740.780747][T13220]  ? load_image+0x3b0/0x3b0
[  740.785421][T13220]  should_fail_ex+0x39d/0x4d0
[  740.790117][T13220]  should_failslab+0x9/0x20
[  740.794651][T13220]  slab_pre_alloc_hook+0x59/0x310
[  740.799712][T13220]  kmem_cache_alloc+0x5a/0x2e0
[  740.804485][T13220]  ? skb_clone+0x1eb/0x370
[  740.808911][T13220]  skb_clone+0x1eb/0x370
[  740.813222][T13220]  __netlink_deliver_tap+0x41c/0x830
[  740.818557][T13220]  ? netlink_deliver_tap+0x2e/0x1b0
[  740.823785][T13220]  netlink_deliver_tap+0x19c/0x1b0
[  740.828924][T13220]  __netlink_sendskb+0x4b/0x90
[  740.833715][T13220]  netlink_dump+0x9fb/0xde0
[  740.838253][T13220]  ? netlink_lookup+0x200/0x200
[  740.843135][T13220]  ? netlink_autobind+0x300/0x300
[  740.848210][T13220]  ? netlink_lookup+0x30/0x200
[  740.852995][T13220]  ? netlink_lookup+0x30/0x200
[  740.857784][T13220]  __netlink_dump_start+0x5f1/0x810
[  740.863011][T13220]  rtnetlink_rcv_msg+0xba1/0xf10
[  740.867969][T13220]  ? inet6_dump_ifmcaddr+0x30/0x30
[  740.873105][T13220]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  740.878245][T13220]  ? rtnetlink_bind+0x80/0x80
[  740.882940][T13220]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  740.888936][T13220]  ? __dev_queue_xmit+0x245/0x35a0
[  740.894072][T13220]  ? lock_chain_count+0x20/0x20
[  740.898939][T13220]  ? __local_bh_enable_ip+0x12e/0x1c0
[  740.904338][T13220]  ? lockdep_hardirqs_on+0x98/0x150
[  740.909547][T13220]  ? __local_bh_enable_ip+0x12e/0x1c0
[  740.914930][T13220]  ? _local_bh_enable+0xa0/0xa0
[  740.919799][T13220]  ? __dev_queue_xmit+0x245/0x35a0
[  740.924929][T13220]  ? __dev_queue_xmit+0x1449/0x35a0
[  740.930155][T13220]  ? __dev_queue_xmit+0x245/0x35a0
[  740.935291][T13220]  ? inet6_dump_ifmcaddr+0x30/0x30
[  740.940419][T13220]  ? ref_tracker_free+0x634/0x7d0
[  740.945455][T13220]  ? __copy_skb_header+0xa7/0x550
[  740.950499][T13220]  netlink_rcv_skb+0x216/0x480
[  740.955276][T13220]  ? rtnetlink_bind+0x80/0x80
[  740.959970][T13220]  ? netlink_ack+0x1110/0x1110
[  740.964757][T13220]  ? __lock_acquire+0x7c80/0x7c80
[  740.969804][T13220]  ? netlink_deliver_tap+0x2e/0x1b0
[  740.975038][T13220]  netlink_unicast+0x751/0x8d0
[  740.979853][T13220]  netlink_sendmsg+0x8c1/0xbe0
[  740.984640][T13220]  ? lockdep_hardirqs_on+0x98/0x150
[  740.989849][T13220]  ? netlink_getsockopt+0x580/0x580
[  740.995075][T13220]  ? netlink_getsockopt+0x580/0x580
[  741.000291][T13220]  ____sys_sendmsg+0x5bf/0x950
[  741.005086][T13220]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  741.011265][T13220]  ? __asan_memset+0x22/0x40
[  741.015878][T13220]  ? __sys_sendmsg_sock+0x30/0x30
[  741.020919][T13220]  ? __import_iovec+0x5f2/0x860
[  741.025801][T13220]  ? import_iovec+0x73/0xa0
[  741.030333][T13220]  ___sys_sendmsg+0x220/0x290
[  741.035035][T13220]  ? __sys_sendmsg+0x270/0x270
[  741.039839][T13220]  ? seqcount_lockdep_reader_access+0x160/0x1c0
[  741.046116][T13220]  __se_sys_sendmsg+0x1a5/0x270
[  741.051007][T13220]  ? __x64_sys_sendmsg+0x80/0x80
[  741.055994][T13220]  do_syscall_64+0x55/0xb0
[  741.060447][T13220]  ? clear_bhb_loop+0x40/0x90
[  741.065343][T13220]  ? clear_bhb_loop+0x40/0x90
[  741.070075][T13220]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  741.076003][T13220] RIP: 0033:0x7f0901b8f749
[  741.080456][T13220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.100095][T13220] RSP: 002b:00007f0902ae5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  741.108526][T13220] RAX: ffffffffffffffda RBX: 00007f0901de5fa0 RCX: 00007f0901b8f749
[  741.116516][T13220] RDX: 0000000000000000 RSI: 0000200000001300 RDI: 0000000000000005
[  741.124501][T13220] RBP: 00007f0902ae5090 R08: 0000000000000000 R09: 0000000000000000
[  741.132484][T13220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  741.140462][T13220] R13: 00007f0901de6038 R14: 00007f0901de5fa0 R15: 00007ffe0eac6658
[  741.148462][T13220]  </TASK>
[  741.532087][T13068] team0: Port device team_slave_1 added
[  741.743580][T13264] FAULT_INJECTION: forcing a failure.
[  741.743580][T13264] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  741.775485][T13264] CPU: 0 PID: 13264 Comm: syz.2.2351 Not tainted syzkaller #0
[  741.783106][T13264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  741.793197][T13264] Call Trace:
[  741.796532][T13264]  <TASK>
[  741.799502][T13264]  dump_stack_lvl+0x16c/0x230
[  741.804245][T13264]  ? show_regs_print_info+0x20/0x20
[  741.809498][T13264]  ? load_image+0x3b0/0x3b0
[  741.814057][T13264]  ? __might_fault+0xaa/0x120
[  741.818770][T13264]  ? __lock_acquire+0x7c80/0x7c80
[  741.823838][T13264]  should_fail_ex+0x39d/0x4d0
[  741.828573][T13264]  _copy_from_user+0x2f/0xe0
[  741.833243][T13264]  btf_new_fd+0x348/0x980
[  741.837649][T13264]  ? bpf_btf_show_fdinfo+0x80/0x80
[  741.842809][T13264]  ? capable+0x88/0xe0
[  741.846929][T13264]  __sys_bpf+0x60e/0x800
[  741.851232][T13264]  ? bpf_link_show_fdinfo+0x350/0x350
[  741.856667][T13264]  ? lock_chain_count+0x20/0x20
[  741.861573][T13264]  __x64_sys_bpf+0x7c/0x90
[  741.866032][T13264]  do_syscall_64+0x55/0xb0
[  741.870488][T13264]  ? clear_bhb_loop+0x40/0x90
[  741.875198][T13264]  ? clear_bhb_loop+0x40/0x90
[  741.879924][T13264]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  741.885872][T13264] RIP: 0033:0x7fd13db8f749
[  741.890324][T13264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.910065][T13264] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  741.918506][T13264] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  741.926516][T13264] RDX: 0000000000000028 RSI: 0000200000000580 RDI: 0000000000000012
[  741.934508][T13264] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  741.942553][T13264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  741.950535][T13264] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  741.958538][T13264]  </TASK>
[  742.065422][T13068] batman_adv: batadv0: Adding interface: batadv_slave_0
[  742.095065][T13068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  742.186757][T13068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  742.463749][T13068] batman_adv: batadv0: Adding interface: batadv_slave_1
[  742.470798][T13068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  742.570734][T13068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  742.690439][T10373] hsr_slave_0: left promiscuous mode
[  742.698878][T10373] hsr_slave_1: left promiscuous mode
[  742.726235][T10373] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  742.738445][T10373] batman_adv: batadv0: Removing interface: batadv_slave_0
[  742.774630][T10373] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  742.806140][T10373] batman_adv: batadv0: Removing interface: batadv_slave_1
[  745.674190][T10373] bridge_slave_1: left allmulticast mode
[  745.679902][T10373] bridge_slave_1: left promiscuous mode
[  745.706502][T10373] bridge0: port 2(bridge_slave_1) entered disabled state
[  745.730954][T10373] bridge_slave_0: left allmulticast mode
[  745.741680][T10373] bridge_slave_0: left promiscuous mode
[  745.747500][T10373] bridge0: port 1(bridge_slave_0) entered disabled state
[  745.826464][T10373] veth1_macvtap: left promiscuous mode
[  745.847577][T10373] veth0_macvtap: left promiscuous mode
[  745.862322][T10373] veth1_vlan: left promiscuous mode
[  745.867752][T10373] veth0_vlan: left promiscuous mode
[  746.588504][T10373] team0 (unregistering): Port device team_slave_1 removed
[  746.635636][T10373] team0 (unregistering): Port device team_slave_0 removed
[  746.677471][T10373] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  746.729118][T10373] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  747.246047][T10373] bond0 (unregistering): Released all slaves
[  747.485102][T13068] hsr_slave_0: entered promiscuous mode
[  747.521954][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  747.531473][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  747.541958][T13068] hsr_slave_1: entered promiscuous mode
[  747.562826][T13068] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  747.570439][T13068] Cannot create hsr debugfs directory
[  750.565079][T13068] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  750.833416][T13068] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  750.882396][T13068] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  751.107789][T13068] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  751.742089][T13068] 8021q: adding VLAN 0 to HW filter on device bond0
[  751.806415][T13068] 8021q: adding VLAN 0 to HW filter on device team0
[  751.835463][T10371] bridge0: port 1(bridge_slave_0) entered blocking state
[  751.842733][T10371] bridge0: port 1(bridge_slave_0) entered forwarding state
[  751.914399][T10371] bridge0: port 2(bridge_slave_1) entered blocking state
[  751.921629][T10371] bridge0: port 2(bridge_slave_1) entered forwarding state
[  752.057224][T13415] syz.4.2392[13415] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  752.057526][T13415] syz.4.2392[13415] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  752.440178][T13068] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  753.097603][T13068] 8021q: adding VLAN 0 to HW filter on device batadv0
[  753.554816][T13068] veth0_vlan: entered promiscuous mode
[  753.576983][T13068] veth1_vlan: entered promiscuous mode
[  753.615268][T13068] veth0_macvtap: entered promiscuous mode
[  753.631736][T13068] veth1_macvtap: entered promiscuous mode
[  753.650810][T13068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  753.661396][T13068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.671243][T13068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  753.683024][T13068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.694762][T13068] batman_adv: batadv0: Interface activated: batadv_slave_0
[  753.707141][T13068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  753.718020][T13068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.728096][T13068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  753.739741][T13068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.749718][T13068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  753.760540][T13068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  753.772202][T13068] batman_adv: batadv0: Interface activated: batadv_slave_1
[  753.788255][T13068] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  753.797304][T13068] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  753.806159][T13068] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  753.815050][T13068] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  753.901105][T10385] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  753.909816][T10385] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  753.947932][T10371] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  753.955969][T10371] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  754.721823][ T5796] Bluetooth: hci2: command 0x0406 tx timeout
[  755.372469][T13469] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  755.382796][T13469] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  755.401764][T13469] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  755.410650][T13469] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  755.420537][T13469] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  755.428594][T13469] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  755.748707][T13467] chnl_net:caif_netlink_parms(): no params data found
[  758.157468][ T2948] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  758.212891][T13467] bridge0: port 1(bridge_slave_0) entered blocking state
[  758.220141][T13467] bridge0: port 1(bridge_slave_0) entered disabled state
[  758.248937][T13467] bridge_slave_0: entered allmulticast mode
[  758.256836][T13467] bridge_slave_0: entered promiscuous mode
[  758.302766][T13467] bridge0: port 2(bridge_slave_1) entered blocking state
[  758.309956][T13467] bridge0: port 2(bridge_slave_1) entered disabled state
[  758.343573][T13467] bridge_slave_1: entered allmulticast mode
[  758.351008][T13467] bridge_slave_1: entered promiscuous mode
[  759.264856][ T2948] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  759.318206][T13467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  759.349394][ T2948] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  759.372775][T13467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  759.474209][ T2948] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  759.512046][T13469] Bluetooth: hci4: command tx timeout
[  760.182508][T13467] team0: Port device team_slave_0 added
[  760.193077][T13467] team0: Port device team_slave_1 added
[  760.345717][T13467] batman_adv: batadv0: Adding interface: batadv_slave_0
[  760.379266][T13467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  760.416440][T13467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  760.457918][T13467] batman_adv: batadv0: Adding interface: batadv_slave_1
[  760.475498][T13467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  760.504838][T13467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  760.610038][T13507] netlink: 'syz.5.2399': attribute type 21 has an invalid length.
[  760.620767][T13507] netlink: 'syz.5.2399': attribute type 11 has an invalid length.
[  760.686973][T13467] hsr_slave_0: entered promiscuous mode
[  760.712169][T13467] hsr_slave_1: entered promiscuous mode
[  760.727785][T13467] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  760.742008][T13467] Cannot create hsr debugfs directory
[  761.593093][T13469] Bluetooth: hci4: command tx timeout
[  763.681783][T13469] Bluetooth: hci4: command tx timeout
[  764.195035][T13522] netlink: 'syz.5.2405': attribute type 10 has an invalid length.
[  764.353053][T13522] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  765.751763][T13469] Bluetooth: hci4: command tx timeout
[  765.970864][T13550] netlink: 'syz.5.2408': attribute type 10 has an invalid length.
[  765.987513][T13550] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  766.013109][T13550] batman_adv: batadv0: Removing interface: batadv_slave_0
[  766.041057][T13550] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  770.018385][T13584] netlink: 'syz.4.2416': attribute type 21 has an invalid length.
[  770.037824][T13584] netlink: 'syz.4.2416': attribute type 11 has an invalid length.
[  770.146294][T13467] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  770.185658][T13467] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  770.231278][T13467] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  770.243840][T13467] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  770.420690][T13591] netlink: 'syz.2.2419': attribute type 10 has an invalid length.
[  770.577903][T13591] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  770.600904][T13591] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  770.626519][T13591] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  770.721452][ T2948] hsr_slave_0: left promiscuous mode
[  770.808828][ T2948] hsr_slave_1: left promiscuous mode
[  770.832945][ T2948] batman_adv: batadv0: Removing interface: team0
[  770.840433][ T2948] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  770.848092][ T2948] batman_adv: batadv0: Removing interface: batadv_slave_0
[  770.857536][ T2948] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  770.865214][ T2948] batman_adv: batadv0: Removing interface: batadv_slave_1
[  770.882541][ T2948] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[  770.889766][ T2948] batman_adv: batadv0: Removing interface: hsr_slave_1
[  770.910603][ T2948] bridge_slave_1: left allmulticast mode
[  770.916505][ T2948] bridge_slave_1: left promiscuous mode
[  770.922572][ T2948] bridge0: port 2(bridge_slave_1) entered disabled state
[  770.932437][ T2948] bridge_slave_0: left allmulticast mode
[  770.938145][ T2948] bridge_slave_0: left promiscuous mode
[  770.944557][ T2948] bridge0: port 1(bridge_slave_0) entered disabled state
[  770.977068][ T2948] veth1_macvtap: left promiscuous mode
[  770.984404][ T2948] veth0_macvtap: left promiscuous mode
[  770.990149][ T2948] veth1_vlan: left promiscuous mode
[  770.995793][ T2948] veth0_vlan: left promiscuous mode
[  771.698583][ T2948] team0 (unregistering): Port device team_slave_1 removed
[  771.745804][ T2948] team0 (unregistering): Port device C removed
[  771.790076][ T2948] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  771.838502][ T2948] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  772.315822][ T2948] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  772.324816][ T2948] bond0 (unregistering): Released all slaves
[  772.664026][T13467] 8021q: adding VLAN 0 to HW filter on device bond0
[  772.785466][T13467] 8021q: adding VLAN 0 to HW filter on device team0
[  772.820516][T13606] netlink: 'syz.2.2425': attribute type 4 has an invalid length.
[  772.845758][T10385] bridge0: port 1(bridge_slave_0) entered blocking state
[  772.853006][T10385] bridge0: port 1(bridge_slave_0) entered forwarding state
[  772.873092][T13606] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2425'.
[  772.960730][ T1809] bridge0: port 2(bridge_slave_1) entered blocking state
[  772.967968][ T1809] bridge0: port 2(bridge_slave_1) entered forwarding state
[  773.527133][T13621] syzkaller0: entered promiscuous mode
[  773.543772][T13621] syzkaller0: entered allmulticast mode
[  773.602091][T13616] netlink: 'syz.4.2423': attribute type 10 has an invalid length.
[  773.610091][T13616] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  773.661124][T13616] batman_adv: batadv0: Removing interface: batadv_slave_0
[  773.884166][T13609] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.2423'.
[  773.893846][T13609] ksmbd: Daemon and kernel module version mismatch. ksmbd: 36, kernel module: 1. User-space ksmbd should terminate.
[  773.906565][T13629] delete_channel: no stack
[  773.918224][T13616] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  776.159398][T13467] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  776.170027][T13467] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  776.449428][T13467] 8021q: adding VLAN 0 to HW filter on device batadv0
[  776.495453][T13467] veth0_vlan: entered promiscuous mode
[  776.509825][T13467] veth1_vlan: entered promiscuous mode
[  776.540478][T13467] veth0_macvtap: entered promiscuous mode
[  776.550021][T13467] veth1_macvtap: entered promiscuous mode
[  776.570452][T13467] batman_adv: batadv0: Interface activated: batadv_slave_0
[  776.586220][T13467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  776.597053][T13467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  776.607052][T13467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  776.618084][T13467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  776.628260][T13467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  776.639010][T13467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  776.650740][T13467] batman_adv: batadv0: Interface activated: batadv_slave_1
[  776.665887][T13467] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  776.675239][T13467] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  776.684078][T13467] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  776.692944][T13467] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  776.768936][T10385] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  776.782604][T10385] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  776.809514][ T1809] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  776.817717][ T1809] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  776.970782][T13664] FAULT_INJECTION: forcing a failure.
[  776.970782][T13664] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  776.994104][T13664] CPU: 0 PID: 13664 Comm: syz.5.2439 Not tainted syzkaller #0
[  777.001740][T13664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  777.011831][T13664] Call Trace:
[  777.015139][T13664]  <TASK>
[  777.018104][T13664]  dump_stack_lvl+0x16c/0x230
[  777.022847][T13664]  ? show_regs_print_info+0x20/0x20
[  777.028106][T13664]  ? load_image+0x3b0/0x3b0
[  777.032657][T13664]  ? __might_fault+0xaa/0x120
[  777.037377][T13664]  ? __lock_acquire+0x7c80/0x7c80
[  777.042453][T13664]  should_fail_ex+0x39d/0x4d0
[  777.047198][T13664]  _copy_from_user+0x2f/0xe0
[  777.051869][T13664]  __sys_bpf+0x1e9/0x800
[  777.056161][T13664]  ? bpf_link_show_fdinfo+0x350/0x350
[  777.061685][T13664]  ? lock_chain_count+0x20/0x20
[  777.066590][T13664]  __x64_sys_bpf+0x7c/0x90
[  777.071075][T13664]  do_syscall_64+0x55/0xb0
[  777.075521][T13664]  ? clear_bhb_loop+0x40/0x90
[  777.080217][T13664]  ? clear_bhb_loop+0x40/0x90
[  777.084917][T13664]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  777.090833][T13664] RIP: 0033:0x7f991a98f749
[  777.095269][T13664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  777.114909][T13664] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  777.123344][T13664] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[  777.131336][T13664] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000011
[  777.139329][T13664] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  777.147318][T13664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  777.155316][T13664] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  777.163323][T13664]  </TASK>
[  777.176289][T13667] syz.3.2395[13667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  777.176581][T13667] syz.3.2395[13667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  777.885638][T13674] syz.5.2442[13674] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  777.929028][T13674] syz.5.2442[13674] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  777.948258][T13673] netlink: 'syz.3.2431': attribute type 10 has an invalid length.
[  778.134060][T13673] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  781.813193][T13714] FAULT_INJECTION: forcing a failure.
[  781.813193][T13714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  781.892864][T13715] netlink: 'syz.4.2446': attribute type 10 has an invalid length.
[  781.914262][T13714] CPU: 1 PID: 13714 Comm: syz.3.2445 Not tainted syzkaller #0
[  781.921922][T13714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  781.932063][T13714] Call Trace:
[  781.935416][T13714]  <TASK>
[  781.938431][T13714]  dump_stack_lvl+0x16c/0x230
[  781.943194][T13714]  ? show_regs_print_info+0x20/0x20
[  781.948451][T13714]  ? load_image+0x3b0/0x3b0
[  781.953007][T13714]  ? __might_fault+0xaa/0x120
[  781.957740][T13714]  ? __lock_acquire+0x7c80/0x7c80
[  781.962910][T13714]  should_fail_ex+0x39d/0x4d0
[  781.967674][T13714]  _copy_from_iter+0x1d3/0x1290
[  781.972573][T13714]  ? slab_post_alloc_hook+0x8a/0x4d0
[  781.977906][T13714]  ? __virt_addr_valid+0x18c/0x540
[  781.983153][T13714]  ? __lock_acquire+0x7c80/0x7c80
[  781.988228][T13714]  ? rcu_is_watching+0x15/0xb0
[  781.993054][T13714]  ? copyout_mc+0x70/0x70
[  781.997428][T13714]  ? __virt_addr_valid+0x18c/0x540
[  782.002587][T13714]  ? __virt_addr_valid+0x18c/0x540
[  782.007748][T13714]  ? __virt_addr_valid+0x469/0x540
[  782.012920][T13714]  ? __check_object_size+0x506/0xa30
[  782.018259][T13714]  netlink_sendmsg+0x75c/0xbe0
[  782.023095][T13714]  ? netlink_getsockopt+0x580/0x580
[  782.028346][T13714]  ? aa_sock_msg_perm+0x94/0x150
[  782.033356][T13714]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  782.038720][T13714]  ? security_socket_sendmsg+0x80/0xa0
[  782.044244][T13714]  ? netlink_getsockopt+0x580/0x580
[  782.049501][T13714]  ____sys_sendmsg+0x5bf/0x950
[  782.054342][T13714]  ? __asan_memset+0x22/0x40
[  782.058975][T13714]  ? __sys_sendmsg_sock+0x30/0x30
[  782.064052][T13714]  ? __import_iovec+0x5f2/0x860
[  782.068987][T13714]  ? import_iovec+0x73/0xa0
[  782.073818][T13714]  ___sys_sendmsg+0x220/0x290
[  782.078645][T13714]  ? __sys_sendmsg+0x270/0x270
[  782.083527][T13714]  ? __lock_acquire+0x7c80/0x7c80
[  782.088765][T13714]  __se_sys_sendmsg+0x1a5/0x270
[  782.093673][T13714]  ? __x64_sys_sendmsg+0x80/0x80
[  782.098809][T13714]  ? lockdep_hardirqs_on+0x98/0x150
[  782.104058][T13714]  do_syscall_64+0x55/0xb0
[  782.108642][T13714]  ? clear_bhb_loop+0x40/0x90
[  782.113402][T13714]  ? clear_bhb_loop+0x40/0x90
[  782.118164][T13714]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  782.124108][T13714] RIP: 0033:0x7f22ea18f749
[  782.128635][T13714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.148303][T13714] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  782.156803][T13714] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[  782.164856][T13714] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  782.173157][T13714] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[  782.181297][T13714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  782.189320][T13714] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[  782.197385][T13714]  </TASK>
[  782.416229][T13715] batman_adv: batadv0: Adding interface: team0
[  782.481497][T13715] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  782.532712][T13714] netlink: 'syz.3.2445': attribute type 4 has an invalid length.
[  782.540557][T13714] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.2445'.
[  782.561477][T13715] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  782.713312][T13710] netlink: 'syz.5.2443': attribute type 4 has an invalid length.
[  782.731870][T13710] netlink: 152 bytes leftover after parsing attributes in process `syz.5.2443'.
[  782.773960][T13710] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  784.030866][T13745] netlink: 'syz.3.2451': attribute type 4 has an invalid length.
[  784.078784][T13745] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2451'.
[  786.606577][T13745] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  786.812529][T13752] netlink: 160 bytes leftover after parsing attributes in process `syz.4.2455'.
[  790.014602][T13764] netlink: 'syz.3.2460': attribute type 10 has an invalid length.
[  790.076826][T13764] batman_adv: batadv0: Adding interface: team0
[  790.101883][T13764] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  790.148609][T13764] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  790.325067][T13776] netlink: 'syz.3.2464': attribute type 21 has an invalid length.
[  790.334737][T13776] netlink: 128 bytes leftover after parsing attributes in process `syz.3.2464'.
[  796.558688][T13799] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2470'.
[  796.737323][T13813] FAULT_INJECTION: forcing a failure.
[  796.737323][T13813] name failslab, interval 1, probability 0, space 0, times 0
[  796.761480][T13813] CPU: 0 PID: 13813 Comm: syz.3.2474 Not tainted syzkaller #0
[  796.769007][T13813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  796.779106][T13813] Call Trace:
[  796.782430][T13813]  <TASK>
[  796.785405][T13813]  dump_stack_lvl+0x16c/0x230
[  796.790230][T13813]  ? show_regs_print_info+0x20/0x20
[  796.795483][T13813]  ? load_image+0x3b0/0x3b0
[  796.800049][T13813]  ? verify_lock_unused+0x140/0x140
[  796.805316][T13813]  should_fail_ex+0x39d/0x4d0
[  796.810060][T13813]  should_failslab+0x9/0x20
[  796.814627][T13813]  slab_pre_alloc_hook+0x59/0x310
[  796.819713][T13813]  kmem_cache_alloc+0x5a/0x2e0
[  796.824525][T13813]  ? skb_clone+0x1eb/0x370
[  796.829003][T13813]  skb_clone+0x1eb/0x370
[  796.833310][T13813]  __netlink_deliver_tap+0x41c/0x830
[  796.838657][T13813]  ? netlink_deliver_tap+0x2e/0x1b0
[  796.843913][T13813]  netlink_deliver_tap+0x19c/0x1b0
[  796.849075][T13813]  netlink_unicast+0x72c/0x8d0
[  796.853900][T13813]  netlink_sendmsg+0x8c1/0xbe0
[  796.858736][T13813]  ? netlink_getsockopt+0x580/0x580
[  796.863988][T13813]  ? aa_sock_msg_perm+0x94/0x150
[  796.868975][T13813]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  796.874323][T13813]  ? security_socket_sendmsg+0x80/0xa0
[  796.879839][T13813]  ? netlink_getsockopt+0x580/0x580
[  796.885100][T13813]  ____sys_sendmsg+0x5bf/0x950
[  796.889930][T13813]  ? __asan_memset+0x22/0x40
[  796.894581][T13813]  ? __sys_sendmsg_sock+0x30/0x30
[  796.899798][T13813]  ? __import_iovec+0x3fa/0x860
[  796.904722][T13813]  ? import_iovec+0x73/0xa0
[  796.909282][T13813]  ___sys_sendmsg+0x220/0x290
[  796.914026][T13813]  ? __sys_sendmsg+0x270/0x270
[  796.918871][T13813]  ? __lock_acquire+0x7c80/0x7c80
[  796.923970][T13813]  __se_sys_sendmsg+0x1a5/0x270
[  796.928888][T13813]  ? __x64_sys_sendmsg+0x80/0x80
[  796.933977][T13813]  ? lockdep_hardirqs_on+0x98/0x150
[  796.939401][T13813]  do_syscall_64+0x55/0xb0
[  796.943872][T13813]  ? clear_bhb_loop+0x40/0x90
[  796.948597][T13813]  ? clear_bhb_loop+0x40/0x90
[  796.953323][T13813]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  796.959261][T13813] RIP: 0033:0x7f22ea18f749
[  796.963710][T13813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  796.983358][T13813] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  796.991810][T13813] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[  796.999824][T13813] RDX: 0000000004000000 RSI: 0000200000000040 RDI: 0000000000000003
[  797.007820][T13813] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[  797.015807][T13813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  797.023817][T13813] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[  797.031825][T13813]  </TASK>
[  797.618595][T13821] syz.4.2476 (13821) used greatest stack depth: 18344 bytes left
[  801.023705][T13850] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2484'.
[  801.278061][T13854] FAULT_INJECTION: forcing a failure.
[  801.278061][T13854] name failslab, interval 1, probability 0, space 0, times 0
[  801.291188][T13854] CPU: 1 PID: 13854 Comm: syz.2.2487 Not tainted syzkaller #0
[  801.298688][T13854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  801.308778][T13854] Call Trace:
[  801.312089][T13854]  <TASK>
[  801.315055][T13854]  dump_stack_lvl+0x16c/0x230
[  801.319780][T13854]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  801.325981][T13854]  ? show_regs_print_info+0x20/0x20
[  801.331259][T13854]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  801.337482][T13854]  should_fail_ex+0x39d/0x4d0
[  801.342240][T13854]  should_failslab+0x9/0x20
[  801.346797][T13854]  slab_pre_alloc_hook+0x59/0x310
[  801.351879][T13854]  ? lockdep_softirqs_on+0x570/0x570
[  801.357220][T13854]  kmem_cache_alloc+0x5a/0x2e0
[  801.362043][T13854]  ? skb_clone+0x1eb/0x370
[  801.366545][T13854]  skb_clone+0x1eb/0x370
[  801.370857][T13854]  bpf_clone_redirect+0xad/0x3d0
[  801.375861][T13854]  ? read_tsc+0x9/0x20
[  801.379985][T13854]  ? ktime_get+0x24b/0x280
[  801.384478][T13854]  bpf_prog_d583a5697f17c988+0x21/0x25
[  801.389983][T13854]  bpf_test_run+0x2c7/0x810
[  801.394539][T13854]  ? lock_chain_count+0x20/0x20
[  801.399448][T13854]  ? bpf_test_run+0x15c/0x810
[  801.404168][T13854]  ? convert___skb_to_skb+0x590/0x590
[  801.409591][T13854]  ? convert___skb_to_skb+0x3d/0x590
[  801.414919][T13854]  bpf_prog_test_run_skb+0xa67/0x11c0
[  801.420365][T13854]  ? cpu_online+0x60/0x60
[  801.424739][T13854]  bpf_prog_test_run+0x321/0x390
[  801.429728][T13854]  __sys_bpf+0x440/0x800
[  801.434010][T13854]  ? bpf_link_show_fdinfo+0x350/0x350
[  801.439438][T13854]  ? lock_chain_count+0x20/0x20
[  801.444329][T13854]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  801.450367][T13854]  __x64_sys_bpf+0x7c/0x90
[  801.454835][T13854]  do_syscall_64+0x55/0xb0
[  801.459287][T13854]  ? clear_bhb_loop+0x40/0x90
[  801.463993][T13854]  ? clear_bhb_loop+0x40/0x90
[  801.468704][T13854]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  801.474626][T13854] RIP: 0033:0x7fd13db8f749
[  801.479074][T13854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  801.498727][T13854] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  801.507190][T13854] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  801.515201][T13854] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[  801.523197][T13854] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  801.531192][T13854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  801.539185][T13854] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  801.547223][T13854]  </TASK>
[  804.294969][T13858] ªªªªªª: renamed from vlan0 (while UP)
[  805.621651][T13887] netlink: 'syz.3.2498': attribute type 10 has an invalid length.
[  805.646317][T13887] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2498'.
[  805.688374][T13889] FAULT_INJECTION: forcing a failure.
[  805.688374][T13889] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  805.713181][T13887] dummy0: entered promiscuous mode
[  805.730171][T13889] CPU: 1 PID: 13889 Comm: syz.2.2500 Not tainted syzkaller #0
[  805.737699][T13889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  805.747801][T13889] Call Trace:
[  805.751113][T13889]  <TASK>
[  805.754092][T13889]  dump_stack_lvl+0x16c/0x230
[  805.758824][T13889]  ? show_regs_print_info+0x20/0x20
[  805.764064][T13889]  ? load_image+0x3b0/0x3b0
[  805.768629][T13889]  ? __might_fault+0xaa/0x120
[  805.773358][T13889]  ? __lock_acquire+0x7c80/0x7c80
[  805.778433][T13889]  should_fail_ex+0x39d/0x4d0
[  805.783155][T13889]  _copy_from_iter+0x1d3/0x1290
[  805.788065][T13889]  ? __virt_addr_valid+0x18c/0x540
[  805.793262][T13889]  ? __lock_acquire+0x7c80/0x7c80
[  805.798327][T13889]  ? sock_alloc_send_pskb+0x875/0x990
[  805.803747][T13889]  ? copyout_mc+0x70/0x70
[  805.808116][T13889]  ? __virt_addr_valid+0x18c/0x540
[  805.813267][T13889]  ? __virt_addr_valid+0x18c/0x540
[  805.818431][T13889]  ? __virt_addr_valid+0x469/0x540
[  805.823596][T13889]  ? __check_object_size+0x506/0xa30
[  805.828947][T13889]  skb_copy_datagram_from_iter+0xf4/0x6e0
[  805.834709][T13889]  ? dev_get_by_index+0x22/0x2d0
[  805.839682][T13889]  ? skb_put+0x11b/0x210
[  805.843983][T13889]  packet_sendmsg+0x3537/0x4d30
[  805.848910][T13889]  ? __might_sleep+0xe0/0xe0
[  805.853564][T13889]  ? perf_trace_lock+0xf7/0x380
[  805.858490][T13889]  ? aa_sk_perm+0x7fc/0x930
[  805.863040][T13889]  ? packet_getsockopt+0xa20/0xa20
[  805.868209][T13889]  ? aa_sock_msg_perm+0x94/0x150
[  805.873197][T13889]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  805.878526][T13889]  ? security_socket_sendmsg+0x80/0xa0
[  805.884027][T13889]  ? packet_getsockopt+0xa20/0xa20
[  805.889179][T13889]  ____sys_sendmsg+0x5bf/0x950
[  805.894000][T13889]  ? __asan_memset+0x22/0x40
[  805.898648][T13889]  ? __sys_sendmsg_sock+0x30/0x30
[  805.903716][T13889]  ? __import_iovec+0x5f2/0x860
[  805.908621][T13889]  ? import_iovec+0x73/0xa0
[  805.913179][T13889]  ___sys_sendmsg+0x220/0x290
[  805.917911][T13889]  ? __sys_sendmsg+0x270/0x270
[  805.922774][T13889]  ? __lock_acquire+0x7c80/0x7c80
[  805.927867][T13889]  __se_sys_sendmsg+0x1a5/0x270
[  805.932810][T13889]  ? __x64_sys_sendmsg+0x80/0x80
[  805.937811][T13889]  ? lockdep_hardirqs_on+0x98/0x150
[  805.943139][T13889]  do_syscall_64+0x55/0xb0
[  805.947608][T13889]  ? clear_bhb_loop+0x40/0x90
[  805.952323][T13889]  ? clear_bhb_loop+0x40/0x90
[  805.957043][T13889]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  805.962973][T13889] RIP: 0033:0x7fd13db8f749
[  805.967422][T13889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  805.987069][T13889] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  805.995525][T13889] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  806.003540][T13889] RDX: 0000000024008000 RSI: 0000200000000040 RDI: 0000000000000006
[  806.011557][T13889] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  806.019563][T13889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  806.027571][T13889] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  806.035599][T13889]  </TASK>
[  806.070600][T13887] bridge0: port 3(dummy0) entered blocking state
[  806.077468][T13887] bridge0: port 3(dummy0) entered disabled state
[  806.127517][T13887] dummy0: entered allmulticast mode
[  806.140199][T13887] bridge0: port 3(dummy0) entered blocking state
[  806.146766][T13887] bridge0: port 3(dummy0) entered forwarding state
[  807.758788][T13895] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2501'.
[  808.173058][T13906] syz.4.2506[13906] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  808.173346][T13906] syz.4.2506[13906] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  808.294105][T13907] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.2505'.
[  808.958310][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  808.974481][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  809.034491][T13915] netlink: 'syz.4.2507': attribute type 1 has an invalid length.
[  809.047234][T13915] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.2507'.
[  812.340922][T13925] mac80211_hwsim hwsim26 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  812.368196][T13928] netlink: 'syz.4.2513': attribute type 10 has an invalid length.
[  812.384061][T13928] netlink: 65015 bytes leftover after parsing attributes in process `syz.4.2513'.
[  814.273933][T13969] netlink: 'syz.4.2529': attribute type 3 has an invalid length.
[  814.309954][T13969] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2529'.
[  815.123961][   T11] wlan1: Trigger new scan to find an IBSS to join
[  816.488634][T13983] bridge_slave_1: left allmulticast mode
[  816.523533][T13983] bridge_slave_1: left promiscuous mode
[  816.543889][T13983] bridge0: port 2(bridge_slave_1) entered disabled state
[  816.786292][T13983] bridge_slave_0: left allmulticast mode
[  816.802949][T13983] bridge_slave_0: left promiscuous mode
[  816.833727][T13983] bridge0: port 1(bridge_slave_0) entered disabled state
[  817.483599][T14003] netlink: 'syz.3.2541': attribute type 10 has an invalid length.
[  817.521883][T14003] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2541'.
[  817.542220][T14003] batman_adv: batadv0: Removing interface: team0
[  820.156053][   T11] wlan1: Trigger new scan to find an IBSS to join
[  820.459298][T10371] wlan1: Creating new IBSS network, BSSID fe:7f:cb:b7:93:72
[  820.512001][T14003] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  820.834055][T14015] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2547'.
[  821.348720][T14029] FAULT_INJECTION: forcing a failure.
[  821.348720][T14029] name failslab, interval 1, probability 0, space 0, times 0
[  821.371908][T14029] CPU: 0 PID: 14029 Comm: syz.2.2552 Not tainted syzkaller #0
[  821.379441][T14029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  821.389529][T14029] Call Trace:
[  821.392838][T14029]  <TASK>
[  821.395801][T14029]  dump_stack_lvl+0x16c/0x230
[  821.400536][T14029]  ? show_regs_print_info+0x20/0x20
[  821.405782][T14029]  ? load_image+0x3b0/0x3b0
[  821.410338][T14029]  ? __might_sleep+0xe0/0xe0
[  821.414967][T14029]  ? __lock_acquire+0x7c80/0x7c80
[  821.420016][T14029]  should_fail_ex+0x39d/0x4d0
[  821.424739][T14029]  should_failslab+0x9/0x20
[  821.429254][T14029]  slab_pre_alloc_hook+0x59/0x310
[  821.434298][T14029]  ? alloc_perf_context+0x4e/0x220
[  821.439433][T14029]  __kmem_cache_alloc_node+0x53/0x260
[  821.444829][T14029]  ? alloc_perf_context+0x4e/0x220
[  821.449971][T14029]  kmalloc_trace+0x2a/0xe0
[  821.454437][T14029]  alloc_perf_context+0x4e/0x220
[  821.459391][T14029]  find_get_context+0x83/0x4f0
[  821.464180][T14029]  __se_sys_perf_event_open+0xa75/0x1c20
[  821.469825][T14029]  ? bpf_trace_run2+0xde/0x3c0
[  821.474630][T14029]  ? __x64_sys_perf_event_open+0xc0/0xc0
[  821.480289][T14029]  ? lock_chain_count+0x20/0x20
[  821.485162][T14029]  ? __x64_sys_perf_event_open+0x20/0xc0
[  821.490805][T14029]  do_syscall_64+0x55/0xb0
[  821.495233][T14029]  ? clear_bhb_loop+0x40/0x90
[  821.499919][T14029]  ? clear_bhb_loop+0x40/0x90
[  821.504610][T14029]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  821.510508][T14029] RIP: 0033:0x7fd13db8f749
[  821.514933][T14029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  821.534544][T14029] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  821.542957][T14029] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  821.550930][T14029] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000140
[  821.558909][T14029] RBP: 00007fd13e9d7090 R08: 0000000000000002 R09: 0000000000000000
[  821.566888][T14029] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  821.574866][T14029] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  821.582859][T14029]  </TASK>
[  821.720511][T14034] netlink: 'syz.4.2553': attribute type 10 has an invalid length.
[  821.914280][T14034] bond0: (slave netdevsim0): Releasing backup interface
[  822.025691][T14034] team0: Port device netdevsim0 added
[  822.536761][T14047] netlink: 9286 bytes leftover after parsing attributes in process `syz.4.2560'.
[  825.326450][T14060] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2563'.
[  825.513760][T14065] sctp: [Deprecated]: syz.2.2561 (pid 14065) Use of int in maxseg socket option.
[  825.513760][T14065] Use struct sctp_assoc_value instead
[  825.571654][T14066] netlink: 'syz.3.2565': attribute type 10 has an invalid length.
[  825.655948][T14066] 8021q: adding VLAN 0 to HW filter on device team0
[  825.740755][T14066] bond0: (slave team0): Enslaving as an active interface with an up link
[  826.333911][T14070] bridge_slave_1: left allmulticast mode
[  826.350568][T14070] bridge_slave_1: left promiscuous mode
[  826.364054][T14070] bridge0: port 2(bridge_slave_1) entered disabled state
[  826.474706][T14070] bridge_slave_0: left allmulticast mode
[  826.494031][T14070] bridge_slave_0: left promiscuous mode
[  826.502944][T14070] bridge0: port 1(bridge_slave_0) entered disabled state
[  827.528132][T14093] FAULT_INJECTION: forcing a failure.
[  827.528132][T14093] name failslab, interval 1, probability 0, space 0, times 0
[  827.547986][T14093] CPU: 1 PID: 14093 Comm: syz.5.2575 Not tainted syzkaller #0
[  827.555602][T14093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  827.565685][T14093] Call Trace:
[  827.568990][T14093]  <TASK>
[  827.571942][T14093]  dump_stack_lvl+0x16c/0x230
[  827.576653][T14093]  ? show_regs_print_info+0x20/0x20
[  827.581873][T14093]  ? load_image+0x3b0/0x3b0
[  827.586399][T14093]  ? __might_sleep+0xe0/0xe0
[  827.591013][T14093]  ? __lock_acquire+0x7c80/0x7c80
[  827.596060][T14093]  should_fail_ex+0x39d/0x4d0
[  827.600764][T14093]  should_failslab+0x9/0x20
[  827.605294][T14093]  slab_pre_alloc_hook+0x59/0x310
[  827.610356][T14093]  ? xfrm_state_walk_done+0x43/0x180
[  827.615667][T14093]  kmem_cache_alloc_node+0x60/0x330
[  827.620913][T14093]  ? __alloc_skb+0x108/0x2c0
[  827.625545][T14093]  __alloc_skb+0x108/0x2c0
[  827.630004][T14093]  pfkey_sendmsg+0xcc7/0x1050
[  827.634728][T14093]  ? perf_event_output_forward+0x2f7/0x3a0
[  827.640565][T14093]  ? pfkey_release+0x320/0x320
[  827.645347][T14093]  ? perf_event_output_forward+0x94/0x3a0
[  827.651105][T14093]  ? aa_sock_msg_perm+0x94/0x150
[  827.656254][T14093]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  827.661565][T14093]  ? security_socket_sendmsg+0x80/0xa0
[  827.667042][T14093]  ? pfkey_release+0x320/0x320
[  827.671826][T14093]  ____sys_sendmsg+0x5bf/0x950
[  827.676652][T14093]  ? __asan_memset+0x22/0x40
[  827.681261][T14093]  ? __sys_sendmsg_sock+0x30/0x30
[  827.686307][T14093]  ? __import_iovec+0x5f2/0x860
[  827.691185][T14093]  ? import_iovec+0x73/0xa0
[  827.695733][T14093]  ___sys_sendmsg+0x220/0x290
[  827.700437][T14093]  ? __sys_sendmsg+0x270/0x270
[  827.705260][T14093]  __se_sys_sendmsg+0x1a5/0x270
[  827.710129][T14093]  ? __x64_sys_sendmsg+0x80/0x80
[  827.715094][T14093]  ? syscall_enter_from_user_mode+0x2e/0x80
[  827.721027][T14093]  do_syscall_64+0x55/0xb0
[  827.725466][T14093]  ? clear_bhb_loop+0x40/0x90
[  827.730184][T14093]  ? clear_bhb_loop+0x40/0x90
[  827.734878][T14093]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  827.740780][T14093] RIP: 0033:0x7f991a98f749
[  827.745210][T14093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  827.764820][T14093] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  827.773242][T14093] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[  827.781244][T14093] RDX: 0000000000000000 RSI: 0000200000003780 RDI: 0000000000000009
[  827.789255][T14093] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  827.797228][T14093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  827.805218][T14093] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  827.813223][T14093]  </TASK>
[  828.125406][T14105] netlink: 192436 bytes leftover after parsing attributes in process `syz.3.2580'.
[  828.160522][T14105] openvswitch: netlink: Message has 20476 unknown bytes.
[  831.210589][T14117] FAULT_INJECTION: forcing a failure.
[  831.210589][T14117] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  831.233560][T14117] CPU: 1 PID: 14117 Comm: syz.4.2582 Not tainted syzkaller #0
[  831.241078][T14117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  831.251168][T14117] Call Trace:
[  831.254472][T14117]  <TASK>
[  831.257430][T14117]  dump_stack_lvl+0x16c/0x230
[  831.262162][T14117]  ? show_regs_print_info+0x20/0x20
[  831.267395][T14117]  ? load_image+0x3b0/0x3b0
[  831.271930][T14117]  ? __lock_acquire+0x7c80/0x7c80
[  831.276984][T14117]  ? snprintf+0xdb/0x120
[  831.281254][T14117]  should_fail_ex+0x39d/0x4d0
[  831.285988][T14117]  _copy_to_user+0x2f/0xa0
[  831.290436][T14117]  simple_read_from_buffer+0xe7/0x150
[  831.295848][T14117]  proc_fail_nth_read+0x1e3/0x250
[  831.300937][T14117]  ? proc_fault_inject_write+0x340/0x340
[  831.306614][T14117]  ? fsnotify_perm+0x271/0x5e0
[  831.311419][T14117]  ? proc_fault_inject_write+0x340/0x340
[  831.317079][T14117]  vfs_read+0x27e/0x920
[  831.321281][T14117]  ? kernel_read+0x1e0/0x1e0
[  831.325896][T14117]  ? __fget_files+0x28/0x4d0
[  831.330495][T14117]  ? __fget_files+0x44a/0x4d0
[  831.335190][T14117]  ? __fdget_pos+0x2a3/0x330
[  831.339798][T14117]  ? ksys_read+0x75/0x250
[  831.344150][T14117]  ksys_read+0x147/0x250
[  831.348402][T14117]  ? vfs_write+0x940/0x940
[  831.352829][T14117]  ? lockdep_hardirqs_on+0x98/0x150
[  831.358043][T14117]  do_syscall_64+0x55/0xb0
[  831.362476][T14117]  ? clear_bhb_loop+0x40/0x90
[  831.367178][T14117]  ? clear_bhb_loop+0x40/0x90
[  831.371865][T14117]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  831.377781][T14117] RIP: 0033:0x7f987218e15c
[  831.382215][T14117] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  831.401924][T14117] RSP: 002b:00007f9872f66030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  831.410347][T14117] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218e15c
[  831.418330][T14117] RDX: 000000000000000f RSI: 00007f9872f660a0 RDI: 0000000000000006
[  831.426315][T14117] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  831.434292][T14117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  831.442273][T14117] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  831.450287][T14117]  </TASK>
[  831.627051][T14121] FAULT_INJECTION: forcing a failure.
[  831.627051][T14121] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  831.668950][T14125] FAULT_INJECTION: forcing a failure.
[  831.668950][T14125] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  831.670670][T14121] CPU: 1 PID: 14121 Comm: syz.2.2585 Not tainted syzkaller #0
[  831.689493][T14121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  831.699575][T14121] Call Trace:
[  831.702867][T14121]  <TASK>
[  831.705827][T14121]  dump_stack_lvl+0x16c/0x230
[  831.710521][T14121]  ? show_regs_print_info+0x20/0x20
[  831.715728][T14121]  ? load_image+0x3b0/0x3b0
[  831.720237][T14121]  ? __might_fault+0xaa/0x120
[  831.724919][T14121]  ? __lock_acquire+0x7c80/0x7c80
[  831.729952][T14121]  should_fail_ex+0x39d/0x4d0
[  831.734650][T14121]  _copy_to_user+0x2f/0xa0
[  831.739082][T14121]  generic_map_lookup_batch+0x8c1/0xcd0
[  831.744656][T14121]  ? __lock_acquire+0x7c80/0x7c80
[  831.749695][T14121]  ? bpf_map_update_value+0x720/0x720
[  831.755080][T14121]  ? __fdget+0x180/0x210
[  831.759343][T14121]  ? bpf_map_update_value+0x720/0x720
[  831.764733][T14121]  bpf_map_do_batch+0x2cb/0x610
[  831.769590][T14121]  ? bpf_lsm_bpf+0x9/0x10
[  831.773932][T14121]  ? security_bpf+0x7e/0xa0
[  831.778443][T14121]  __sys_bpf+0x76e/0x800
[  831.782693][T14121]  ? bpf_link_show_fdinfo+0x350/0x350
[  831.788078][T14121]  ? lock_chain_count+0x20/0x20
[  831.792946][T14121]  __x64_sys_bpf+0x7c/0x90
[  831.797386][T14121]  do_syscall_64+0x55/0xb0
[  831.801821][T14121]  ? clear_bhb_loop+0x40/0x90
[  831.806517][T14121]  ? clear_bhb_loop+0x40/0x90
[  831.811223][T14121]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  831.817129][T14121] RIP: 0033:0x7fd13db8f749
[  831.821555][T14121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  831.841174][T14121] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  831.849609][T14121] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  831.857688][T14121] RDX: 0000000000000038 RSI: 00002000000003c0 RDI: 0000000000000018
[  831.865678][T14121] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  831.873654][T14121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  831.881634][T14121] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  831.889621][T14121]  </TASK>
[  831.907151][T14125] CPU: 1 PID: 14125 Comm: syz.4.2588 Not tainted syzkaller #0
[  831.914774][T14125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  831.919674][T14127] netlink: 9286 bytes leftover after parsing attributes in process `syz.5.2587'.
[  831.924858][T14125] Call Trace:
[  831.924899][T14125]  <TASK>
[  831.924909][T14125]  dump_stack_lvl+0x16c/0x230
[  831.924947][T14125]  ? show_regs_print_info+0x20/0x20
[  831.924976][T14125]  ? load_image+0x3b0/0x3b0
[  831.925002][T14125]  ? __might_fault+0xaa/0x120
[  831.925025][T14125]  ? __lock_acquire+0x7c80/0x7c80
[  831.925056][T14125]  should_fail_ex+0x39d/0x4d0
[  831.969257][T14125]  _copy_from_iter+0x1d3/0x1290
[  831.974142][T14125]  ? copyout_mc+0x70/0x70
[  831.978481][T14125]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  831.984476][T14125]  ? lock_chain_count+0x20/0x20
[  831.989338][T14125]  ? _raw_spin_lock_irq+0xaf/0xe0
[  831.994395][T14125]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  831.999793][T14125]  ? page_copy_sane+0x4e/0x270
[  832.004676][T14125]  copy_page_from_iter+0x7b/0x100
[  832.009719][T14125]  pipe_write+0x878/0x1af0
[  832.014169][T14125]  ? pipe_read+0x12a0/0x12a0
[  832.018837][T14125]  ? end_current_label_crit_section+0x149/0x170
[  832.025109][T14125]  ? common_file_perm+0x198/0x1f0
[  832.030150][T14125]  vfs_write+0x43b/0x940
[  832.034759][T14125]  ? file_end_write+0x250/0x250
[  832.039638][T14125]  ? __fget_files+0x44a/0x4d0
[  832.044344][T14125]  ? __fdget_pos+0x1d8/0x330
[  832.048947][T14125]  ? ksys_write+0x75/0x250
[  832.053389][T14125]  ksys_write+0x147/0x250
[  832.057740][T14125]  ? __ia32_sys_read+0x90/0x90
[  832.062527][T14125]  ? lockdep_hardirqs_on+0x98/0x150
[  832.067738][T14125]  do_syscall_64+0x55/0xb0
[  832.072173][T14125]  ? clear_bhb_loop+0x40/0x90
[  832.076874][T14125]  ? clear_bhb_loop+0x40/0x90
[  832.081564][T14125]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  832.087465][T14125] RIP: 0033:0x7f987218f749
[  832.091889][T14125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  832.111508][T14125] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  832.119933][T14125] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  832.127913][T14125] RDX: 000000000000fdef RSI: 0000200000000300 RDI: 0000000000000000
[  832.135977][T14125] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  832.144039][T14125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  832.152036][T14125] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  832.160062][T14125]  </TASK>
[  832.780335][T14143] FAULT_INJECTION: forcing a failure.
[  832.780335][T14143] name failslab, interval 1, probability 0, space 0, times 0
[  832.794009][T14143] CPU: 0 PID: 14143 Comm: syz.4.2593 Not tainted syzkaller #0
[  832.801512][T14143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  832.811601][T14143] Call Trace:
[  832.814906][T14143]  <TASK>
[  832.817859][T14143]  dump_stack_lvl+0x16c/0x230
[  832.822575][T14143]  ? show_regs_print_info+0x20/0x20
[  832.827818][T14143]  ? load_image+0x3b0/0x3b0
[  832.832363][T14143]  ? __might_sleep+0xe0/0xe0
[  832.836990][T14143]  ? __lock_acquire+0x7c80/0x7c80
[  832.842050][T14143]  ? prepend_path+0x4b/0x960
[  832.846672][T14143]  should_fail_ex+0x39d/0x4d0
[  832.851389][T14143]  should_failslab+0x9/0x20
[  832.855929][T14143]  slab_pre_alloc_hook+0x59/0x310
[  832.861019][T14143]  ? __asan_memcpy+0x40/0x70
[  832.865638][T14143]  ? tomoyo_encode+0x28b/0x540
[  832.870440][T14143]  ? tomoyo_encode+0x28b/0x540
[  832.875236][T14143]  __kmem_cache_alloc_node+0x53/0x260
[  832.880643][T14143]  ? prepend_path+0x4b/0x960
[  832.885263][T14143]  ? tomoyo_encode+0x28b/0x540
[  832.890056][T14143]  __kmalloc+0xa4/0x240
[  832.894249][T14143]  tomoyo_encode+0x28b/0x540
[  832.898879][T14143]  tomoyo_realpath_from_path+0x592/0x5d0
[  832.904574][T14143]  tomoyo_path_number_perm+0x1ea/0x590
[  832.910066][T14143]  ? tomoyo_path_number_perm+0x1ba/0x590
[  832.915728][T14143]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  832.921224][T14143]  ? ksys_write+0x1c1/0x250
[  832.925797][T14143]  ? __fget_files+0x28/0x4d0
[  832.930434][T14143]  security_file_ioctl+0x70/0xa0
[  832.935414][T14143]  __se_sys_ioctl+0x48/0x170
[  832.940043][T14143]  do_syscall_64+0x55/0xb0
[  832.944503][T14143]  ? clear_bhb_loop+0x40/0x90
[  832.949200][T14143]  ? clear_bhb_loop+0x40/0x90
[  832.953899][T14143]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  832.959817][T14143] RIP: 0033:0x7f987218f749
[  832.964262][T14143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  832.983888][T14143] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  832.992328][T14143] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  833.000353][T14143] RDX: 0000200000000400 RSI: 0000000000005452 RDI: 0000000000000003
[  833.008346][T14143] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  833.016423][T14143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  833.024410][T14143] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  833.032512][T14143]  </TASK>
[  833.048608][T14143] ERROR: Out of memory at tomoyo_realpath_from_path.
[  833.217364][T14148] netlink: 'syz.4.2594': attribute type 3 has an invalid length.
[  833.228632][T14148] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2594'.
[  835.984364][T14161] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2596'.
[  836.029607][T14165] FAULT_INJECTION: forcing a failure.
[  836.029607][T14165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  836.062630][T14165] CPU: 1 PID: 14165 Comm: syz.4.2598 Not tainted syzkaller #0
[  836.070176][T14165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  836.080254][T14165] Call Trace:
[  836.083550][T14165]  <TASK>
[  836.086502][T14165]  dump_stack_lvl+0x16c/0x230
[  836.091220][T14165]  ? show_regs_print_info+0x20/0x20
[  836.096446][T14165]  ? load_image+0x3b0/0x3b0
[  836.100970][T14165]  ? __lock_acquire+0x7c80/0x7c80
[  836.106013][T14165]  ? snprintf+0xdb/0x120
[  836.110269][T14165]  should_fail_ex+0x39d/0x4d0
[  836.114965][T14165]  _copy_to_user+0x2f/0xa0
[  836.119395][T14165]  simple_read_from_buffer+0xe7/0x150
[  836.124802][T14165]  proc_fail_nth_read+0x1e3/0x250
[  836.129848][T14165]  ? proc_fault_inject_write+0x340/0x340
[  836.135507][T14165]  ? fsnotify_perm+0x271/0x5e0
[  836.140287][T14165]  ? proc_fault_inject_write+0x340/0x340
[  836.145931][T14165]  vfs_read+0x27e/0x920
[  836.150107][T14165]  ? kernel_read+0x1e0/0x1e0
[  836.154718][T14165]  ? __fget_files+0x28/0x4d0
[  836.159320][T14165]  ? __fget_files+0x44a/0x4d0
[  836.164021][T14165]  ? __fdget_pos+0x2a3/0x330
[  836.168619][T14165]  ? ksys_read+0x75/0x250
[  836.172959][T14165]  ksys_read+0x147/0x250
[  836.177218][T14165]  ? vfs_write+0x940/0x940
[  836.181650][T14165]  ? lockdep_hardirqs_on+0x98/0x150
[  836.186870][T14165]  do_syscall_64+0x55/0xb0
[  836.191303][T14165]  ? clear_bhb_loop+0x40/0x90
[  836.195993][T14165]  ? clear_bhb_loop+0x40/0x90
[  836.200689][T14165]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  836.206608][T14165] RIP: 0033:0x7f987218e15c
[  836.211040][T14165] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  836.230659][T14165] RSP: 002b:00007f9872f66030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  836.239103][T14165] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218e15c
[  836.247089][T14165] RDX: 000000000000000f RSI: 00007f9872f660a0 RDI: 0000000000000006
[  836.255172][T14165] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  836.263157][T14165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  836.271156][T14165] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  836.279164][T14165]  </TASK>
[  836.426092][T14170] netlink: 'syz.2.2600': attribute type 7 has an invalid length.
[  836.450435][T14172] netlink: 'syz.3.2599': attribute type 21 has an invalid length.
[  836.558978][T14174] netlink: 'syz.2.2602': attribute type 7 has an invalid length.
[  836.702465][T14179] FAULT_INJECTION: forcing a failure.
[  836.702465][T14179] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  836.716572][T14179] CPU: 0 PID: 14179 Comm: syz.2.2605 Not tainted syzkaller #0
[  836.724102][T14179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  836.734206][T14179] Call Trace:
[  836.737512][T14179]  <TASK>
[  836.740468][T14179]  dump_stack_lvl+0x16c/0x230
[  836.745240][T14179]  ? show_regs_print_info+0x20/0x20
[  836.750495][T14179]  ? load_image+0x3b0/0x3b0
[  836.755057][T14179]  ? __lock_acquire+0x7c80/0x7c80
[  836.760134][T14179]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  836.766347][T14179]  should_fail_ex+0x39d/0x4d0
[  836.771082][T14179]  _copy_from_user+0x2f/0xe0
[  836.775721][T14179]  __copy_msghdr+0x3bb/0x580
[  836.780371][T14179]  ___sys_sendmsg+0x1a6/0x290
[  836.785102][T14179]  ? __sys_sendmsg+0x270/0x270
[  836.789981][T14179]  __se_sys_sendmsg+0x1a5/0x270
[  836.794894][T14179]  ? __x64_sys_sendmsg+0x80/0x80
[  836.799906][T14179]  ? syscall_enter_from_user_mode+0x2e/0x80
[  836.805853][T14179]  do_syscall_64+0x55/0xb0
[  836.810325][T14179]  ? clear_bhb_loop+0x40/0x90
[  836.815064][T14179]  ? clear_bhb_loop+0x40/0x90
[  836.819793][T14179]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  836.825727][T14179] RIP: 0033:0x7fd13db8f749
[  836.830188][T14179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  836.849850][T14179] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  836.858314][T14179] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  836.866328][T14179] RDX: 0000000000000000 RSI: 00002000000031c0 RDI: 0000000000000009
[  836.874428][T14179] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  836.882450][T14179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  836.890469][T14179] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  836.898499][T14179]  </TASK>
[  840.469823][T14200] netlink: 'syz.2.2612': attribute type 28 has an invalid length.
[  840.491278][T14200] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2612'.
[  844.787500][T14238] netlink: 'syz.2.2625': attribute type 10 has an invalid length.
[  844.846585][T14238] netlink: 55 bytes leftover after parsing attributes in process `syz.2.2625'.
[  846.871558][ T5801] Bluetooth: hci3: command 0x0406 tx timeout
[  849.186822][T14273] netlink: 'syz.5.2636': attribute type 21 has an invalid length.
[  850.000368][T14285] netlink: 64859 bytes leftover after parsing attributes in process `syz.2.2641'.
[  850.304373][T14293] FAULT_INJECTION: forcing a failure.
[  850.304373][T14293] name failslab, interval 1, probability 0, space 0, times 0
[  850.372935][T14293] CPU: 0 PID: 14293 Comm: syz.4.2635 Not tainted syzkaller #0
[  850.380842][T14293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  850.390918][T14293] Call Trace:
[  850.394301][T14293]  <TASK>
[  850.397347][T14293]  dump_stack_lvl+0x16c/0x230
[  850.402097][T14293]  ? show_regs_print_info+0x20/0x20
[  850.407328][T14293]  ? load_image+0x3b0/0x3b0
[  850.411912][T14293]  ? __might_sleep+0xe0/0xe0
[  850.416521][T14293]  ? __lock_acquire+0x7c80/0x7c80
[  850.421580][T14293]  ? register_lock_class+0xb5/0x890
[  850.426814][T14293]  should_fail_ex+0x39d/0x4d0
[  850.431520][T14293]  should_failslab+0x9/0x20
[  850.436502][T14293]  slab_pre_alloc_hook+0x59/0x310
[  850.441548][T14293]  ? __lock_acquire+0x1334/0x7c80
[  850.446591][T14293]  ? tcp_sendmsg_fastopen+0x1de/0x5d0
[  850.451989][T14293]  __kmem_cache_alloc_node+0x53/0x260
[  850.457391][T14293]  ? tcp_sendmsg_fastopen+0x1de/0x5d0
[  850.462817][T14293]  kmalloc_trace+0x2a/0xe0
[  850.467261][T14293]  tcp_sendmsg_fastopen+0x1de/0x5d0
[  850.472484][T14293]  tcp_sendmsg_locked+0x4555/0x4af0
[  850.477707][T14293]  ? verify_lock_unused+0x140/0x140
[  850.482926][T14293]  ? verify_lock_unused+0x140/0x140
[  850.488159][T14293]  ? mark_lock+0x94/0x320
[  850.492509][T14293]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  850.498507][T14293]  ? lock_chain_count+0x20/0x20
[  850.503379][T14293]  ? tcp_set_state+0x650/0x650
[  850.508179][T14293]  tcp_sendmsg+0x2f/0x50
[  850.512442][T14293]  ? inet6_compat_ioctl+0x380/0x380
[  850.517653][T14293]  ____sys_sendmsg+0x5bf/0x950
[  850.522443][T14293]  ? __asan_memset+0x22/0x40
[  850.527083][T14293]  ? __sys_sendmsg_sock+0x30/0x30
[  850.532157][T14293]  ? __import_iovec+0x3fa/0x860
[  850.537057][T14293]  ? import_iovec+0x73/0xa0
[  850.541585][T14293]  ___sys_sendmsg+0x220/0x290
[  850.546312][T14293]  ? __sys_sendmsg+0x270/0x270
[  850.551120][T14293]  ? __lock_acquire+0x7c80/0x7c80
[  850.556193][T14293]  __se_sys_sendmsg+0x1a5/0x270
[  850.561077][T14293]  ? __x64_sys_sendmsg+0x80/0x80
[  850.566048][T14293]  ? lockdep_hardirqs_on+0x98/0x150
[  850.571263][T14293]  do_syscall_64+0x55/0xb0
[  850.575698][T14293]  ? clear_bhb_loop+0x40/0x90
[  850.580385][T14293]  ? clear_bhb_loop+0x40/0x90
[  850.585082][T14293]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  850.591070][T14293] RIP: 0033:0x7f987218f749
[  850.595508][T14293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  850.615182][T14293] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  850.623879][T14293] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  850.631854][T14293] RDX: 0000000020000000 RSI: 0000200000000080 RDI: 0000000000000003
[  850.639828][T14293] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  850.647808][T14293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  850.655794][T14293] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  850.663796][T14293]  </TASK>
[  853.271723][T14314] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2647'.
[  853.722932][T14311] lo: entered allmulticast mode
[  854.189657][T14325] netlink: 64859 bytes leftover after parsing attributes in process `syz.3.2653'.
[  855.579531][T14356] netlink: 4595 bytes leftover after parsing attributes in process `syz.5.2662'.
[  855.606985][T14356] netlink: 4595 bytes leftover after parsing attributes in process `syz.5.2662'.
[  855.621876][T14356] netlink: 4595 bytes leftover after parsing attributes in process `syz.5.2662'.
[  857.245188][T14378] netlink: 64859 bytes leftover after parsing attributes in process `syz.4.2668'.
[  858.479355][T14393] netlink: 'syz.3.2673': attribute type 10 has an invalid length.
[  861.270707][T14401] FAULT_INJECTION: forcing a failure.
[  861.270707][T14401] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  861.300126][T14401] CPU: 1 PID: 14401 Comm: syz.3.2677 Not tainted syzkaller #0
[  861.307647][T14401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  861.317734][T14401] Call Trace:
[  861.321032][T14401]  <TASK>
[  861.323982][T14401]  dump_stack_lvl+0x16c/0x230
[  861.328712][T14401]  ? show_regs_print_info+0x20/0x20
[  861.333954][T14401]  ? load_image+0x3b0/0x3b0
[  861.338497][T14401]  ? __lock_acquire+0x7c80/0x7c80
[  861.343566][T14401]  should_fail_ex+0x39d/0x4d0
[  861.348292][T14401]  prepare_alloc_pages+0x1e2/0x5f0
[  861.353460][T14401]  __alloc_pages+0x127/0x460
[  861.358107][T14401]  ? zone_statistics+0x170/0x170
[  861.363120][T14401]  ? alloc_pages+0x4dc/0x740
[  861.367768][T14401]  ? do_raw_spin_unlock+0x121/0x230
[  861.373008][T14401]  __get_free_pages+0xc/0x30
[  861.377646][T14401]  kasan_populate_vmalloc_pte+0x35/0x100
[  861.383353][T14401]  __apply_to_page_range+0x878/0xdb0
[  861.388778][T14401]  ? kasan_populate_vmalloc+0x70/0x70
[  861.394186][T14401]  ? apply_to_page_range+0x50/0x50
[  861.399334][T14401]  ? do_raw_spin_unlock+0x121/0x230
[  861.404600][T14401]  alloc_vmap_area+0x1b4a/0x1c70
[  861.409616][T14401]  ? vm_map_ram+0xcb0/0xcb0
[  861.414156][T14401]  ? rcu_is_watching+0x15/0xb0
[  861.418985][T14401]  __get_vm_area_node+0x162/0x370
[  861.424095][T14401]  __vmalloc_node_range+0x36e/0x1320
[  861.429431][T14401]  ? array_map_alloc+0x280/0x6f0
[  861.434495][T14401]  ? verify_lock_unused+0x140/0x140
[  861.439756][T14401]  ? end_current_label_crit_section+0x170/0x170
[  861.446043][T14401]  ? free_vm_area+0x50/0x50
[  861.450594][T14401]  ? bpf_lsm_capable+0x9/0x10
[  861.455316][T14401]  bpf_map_area_alloc+0xf1/0x110
[  861.460292][T14401]  ? array_map_alloc+0x280/0x6f0
[  861.465273][T14401]  array_map_alloc+0x280/0x6f0
[  861.470089][T14401]  map_create+0x877/0x12f0
[  861.474543][T14401]  ? bpf_lsm_bpf+0x9/0x10
[  861.478922][T14401]  __sys_bpf+0x5f0/0x800
[  861.483207][T14401]  ? bpf_link_show_fdinfo+0x350/0x350
[  861.488628][T14401]  ? lock_chain_count+0x20/0x20
[  861.493514][T14401]  __x64_sys_bpf+0x7c/0x90
[  861.497960][T14401]  do_syscall_64+0x55/0xb0
[  861.502454][T14401]  ? clear_bhb_loop+0x40/0x90
[  861.507163][T14401]  ? clear_bhb_loop+0x40/0x90
[  861.511886][T14401]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  861.517819][T14401] RIP: 0033:0x7f22ea18f749
[  861.522268][T14401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.541915][T14401] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  861.550368][T14401] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[  861.558372][T14401] RDX: 0000000000000050 RSI: 0000200000000300 RDI: 0b00000000000000
[  861.566366][T14401] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[  861.574361][T14401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  861.582373][T14401] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[  861.590394][T14401]  </TASK>
[  861.937612][T14416] netlink: 'syz.4.2680': attribute type 10 has an invalid length.
[  861.945756][T14416] batman_adv: batadv0: Removing interface: team0
[  861.955001][T14416] 8021q: adding VLAN 0 to HW filter on device team0
[  861.966840][T14416] bond0: (slave team0): Enslaving as an active interface with an up link
[  862.129585][T14423] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2690'.
[  862.250182][T14424] netlink: 64859 bytes leftover after parsing attributes in process `syz.5.2681'.
[  862.849318][T14444] netlink: 144316 bytes leftover after parsing attributes in process `syz.2.2692'.
[  862.940499][T14449] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2694'.
[  862.956923][T14449] FAULT_INJECTION: forcing a failure.
[  862.956923][T14449] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  862.973394][T14449] CPU: 1 PID: 14449 Comm: syz.4.2694 Not tainted syzkaller #0
[  862.980902][T14449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  862.990981][T14449] Call Trace:
[  862.994267][T14449]  <TASK>
[  862.997209][T14449]  dump_stack_lvl+0x16c/0x230
[  863.001928][T14449]  ? show_regs_print_info+0x20/0x20
[  863.007174][T14449]  ? load_image+0x3b0/0x3b0
[  863.011697][T14449]  ? __might_fault+0xaa/0x120
[  863.016487][T14449]  ? __lock_acquire+0x7c80/0x7c80
[  863.021538][T14449]  should_fail_ex+0x39d/0x4d0
[  863.026260][T14449]  _copy_from_user+0x2f/0xe0
[  863.030875][T14449]  kstrtouint_from_user+0xc2/0x150
[  863.036047][T14449]  ? kstrtol_from_user+0x150/0x150
[  863.041209][T14449]  proc_fail_nth_write+0x89/0x240
[  863.046270][T14449]  ? proc_fail_nth_read+0x250/0x250
[  863.051495][T14449]  ? proc_fail_nth_read+0x250/0x250
[  863.056708][T14449]  vfs_write+0x288/0x940
[  863.060987][T14449]  ? file_end_write+0x250/0x250
[  863.065880][T14449]  ? __fget_files+0x28/0x4d0
[  863.070755][T14449]  ? __fget_files+0x44a/0x4d0
[  863.075479][T14449]  ? __fdget_pos+0x2a3/0x330
[  863.080090][T14449]  ? ksys_write+0x75/0x250
[  863.084617][T14449]  ksys_write+0x147/0x250
[  863.088978][T14449]  ? __ia32_sys_read+0x90/0x90
[  863.093772][T14449]  ? lockdep_hardirqs_on+0x98/0x150
[  863.098987][T14449]  do_syscall_64+0x55/0xb0
[  863.103454][T14449]  ? clear_bhb_loop+0x40/0x90
[  863.108145][T14449]  ? clear_bhb_loop+0x40/0x90
[  863.112846][T14449]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  863.118795][T14449] RIP: 0033:0x7f987218e1ff
[  863.123241][T14449] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  863.142876][T14449] RSP: 002b:00007f9872f66030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  863.151320][T14449] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f987218e1ff
[  863.159310][T14449] RDX: 0000000000000001 RSI: 00007f9872f660a0 RDI: 0000000000000004
[  863.167309][T14449] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  863.175308][T14449] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  863.183294][T14449] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  863.191425][T14449]  </TASK>
[  864.053676][T14469] FAULT_INJECTION: forcing a failure.
[  864.053676][T14469] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  864.074680][T14469] CPU: 0 PID: 14469 Comm: syz.5.2702 Not tainted syzkaller #0
[  864.082221][T14469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  864.092330][T14469] Call Trace:
[  864.095655][T14469]  <TASK>
[  864.098638][T14469]  dump_stack_lvl+0x16c/0x230
[  864.103405][T14469]  ? show_regs_print_info+0x20/0x20
[  864.108684][T14469]  ? load_image+0x3b0/0x3b0
[  864.113264][T14469]  ? __might_fault+0xaa/0x120
[  864.118007][T14469]  ? __lock_acquire+0x7c80/0x7c80
[  864.123117][T14469]  should_fail_ex+0x39d/0x4d0
[  864.127913][T14469]  _copy_from_iter+0x1d3/0x1290
[  864.132871][T14469]  ? slab_post_alloc_hook+0x8a/0x4d0
[  864.138242][T14469]  ? __virt_addr_valid+0x18c/0x540
[  864.143422][T14469]  ? __lock_acquire+0x7c80/0x7c80
[  864.148510][T14469]  ? rcu_is_watching+0x15/0xb0
[  864.153363][T14469]  ? copyout_mc+0x70/0x70
[  864.157768][T14469]  ? __virt_addr_valid+0x18c/0x540
[  864.162944][T14469]  ? __virt_addr_valid+0x18c/0x540
[  864.168123][T14469]  ? __virt_addr_valid+0x469/0x540
[  864.173318][T14469]  ? __check_object_size+0x506/0xa30
[  864.178686][T14469]  netlink_sendmsg+0x75c/0xbe0
[  864.183550][T14469]  ? netlink_getsockopt+0x580/0x580
[  864.188820][T14469]  ? aa_sock_msg_perm+0x94/0x150
[  864.193835][T14469]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  864.199179][T14469]  ? security_socket_sendmsg+0x80/0xa0
[  864.204689][T14469]  ? netlink_getsockopt+0x580/0x580
[  864.209931][T14469]  ____sys_sendmsg+0x5bf/0x950
[  864.214749][T14469]  ? __asan_memset+0x22/0x40
[  864.219390][T14469]  ? __sys_sendmsg_sock+0x30/0x30
[  864.224462][T14469]  ? __import_iovec+0x5f2/0x860
[  864.229381][T14469]  ? import_iovec+0x73/0xa0
[  864.233940][T14469]  ___sys_sendmsg+0x220/0x290
[  864.238662][T14469]  ? __sys_sendmsg+0x270/0x270
[  864.243519][T14469]  ? __lock_acquire+0x7c80/0x7c80
[  864.248642][T14469]  __se_sys_sendmsg+0x1a5/0x270
[  864.253532][T14469]  ? __x64_sys_sendmsg+0x80/0x80
[  864.258575][T14469]  ? lockdep_hardirqs_on+0x98/0x150
[  864.263813][T14469]  do_syscall_64+0x55/0xb0
[  864.268264][T14469]  ? clear_bhb_loop+0x40/0x90
[  864.272973][T14469]  ? clear_bhb_loop+0x40/0x90
[  864.277717][T14469]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  864.283650][T14469] RIP: 0033:0x7f991a98f749
[  864.288121][T14469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  864.307860][T14469] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  864.316313][T14469] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[  864.324402][T14469] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000006
[  864.332402][T14469] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  864.340424][T14469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  864.348432][T14469] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  864.356528][T14469]  </TASK>
[  864.662284][T14481] netlink: 119384 bytes leftover after parsing attributes in process `syz.2.2707'.
[  864.697380][T14484] IPv6: pim6reg1: Disabled Multicast RS
[  865.224100][T14477] delete_channel: no stack
[  865.448021][T14497] netlink: 'syz.5.2712': attribute type 21 has an invalid length.
[  865.476013][T14497] netlink: 156 bytes leftover after parsing attributes in process `syz.5.2712'.
[  865.492521][T13469] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  865.526544][T14500] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2713'.
[  865.540299][T14500] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2713'.
[  865.582927][T14500] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2713'.
[  865.611144][T14504] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2715'.
[  866.713559][T14531] netlink: 'syz.2.2726': attribute type 21 has an invalid length.
[  867.799510][T14552] __nla_validate_parse: 3 callbacks suppressed
[  867.799529][T14552] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2736'.
[  868.512606][T14572] syzkaller0: entered promiscuous mode
[  868.518451][T14572] syzkaller0: entered allmulticast mode
[  869.475346][T14602] netlink: 'syz.5.2751': attribute type 10 has an invalid length.
[  869.531714][T14602] 8021q: adding VLAN 0 to HW filter on device team0
[  869.551191][T14602] bond0: (slave team0): Enslaving as an active interface with an up link
[  870.053092][T14625] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2759'.
[  870.076911][T14625] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2759'.
[  870.102167][T14626] ref_ctr_offset mismatch. inode: 0x1ee offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xffffff8c
[  870.124876][T14625] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2759'.
[  870.452316][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  870.458685][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  870.601056][T14639] FAULT_INJECTION: forcing a failure.
[  870.601056][T14639] name failslab, interval 1, probability 0, space 0, times 0
[  870.617878][T14639] CPU: 1 PID: 14639 Comm: syz.2.2766 Not tainted syzkaller #0
[  870.625384][T14639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  870.635465][T14639] Call Trace:
[  870.638764][T14639]  <TASK>
[  870.641719][T14639]  dump_stack_lvl+0x16c/0x230
[  870.646441][T14639]  ? show_regs_print_info+0x20/0x20
[  870.651661][T14639]  ? load_image+0x3b0/0x3b0
[  870.656185][T14639]  ? __might_sleep+0xe0/0xe0
[  870.660787][T14639]  ? __lock_acquire+0x7c80/0x7c80
[  870.665827][T14639]  should_fail_ex+0x39d/0x4d0
[  870.670552][T14639]  should_failslab+0x9/0x20
[  870.675087][T14639]  slab_pre_alloc_hook+0x59/0x310
[  870.680150][T14639]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[  870.685701][T14639]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[  870.691252][T14639]  __kmem_cache_alloc_node+0x53/0x260
[  870.696651][T14639]  ? __lock_acquire+0x7c80/0x7c80
[  870.701686][T14639]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[  870.707241][T14639]  __kmalloc+0xa4/0x240
[  870.711428][T14639]  bpf_prog_test_run_skb+0x22c/0x11c0
[  870.716831][T14639]  ? __fget_files+0x28/0x4d0
[  870.721444][T14639]  ? __fget_files+0x44a/0x4d0
[  870.726147][T14639]  ? cpu_online+0x60/0x60
[  870.730483][T14639]  bpf_prog_test_run+0x321/0x390
[  870.735429][T14639]  __sys_bpf+0x440/0x800
[  870.739681][T14639]  ? bpf_link_show_fdinfo+0x350/0x350
[  870.745072][T14639]  ? lock_chain_count+0x20/0x20
[  870.749938][T14639]  __x64_sys_bpf+0x7c/0x90
[  870.754362][T14639]  do_syscall_64+0x55/0xb0
[  870.758793][T14639]  ? clear_bhb_loop+0x40/0x90
[  870.763481][T14639]  ? clear_bhb_loop+0x40/0x90
[  870.768173][T14639]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  870.774076][T14639] RIP: 0033:0x7fd13db8f749
[  870.778498][T14639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  870.798110][T14639] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  870.806534][T14639] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  870.814532][T14639] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[  870.822504][T14639] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  870.830477][T14639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  870.838450][T14639] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  870.846445][T14639]  </TASK>
[  871.761643][T14668] netlink: 'syz.2.2778': attribute type 4 has an invalid length.
[  871.805030][T14668] netlink: 'syz.2.2778': attribute type 3 has an invalid length.
[  871.828009][T14668] netlink: 67184 bytes leftover after parsing attributes in process `syz.2.2778'.
[  872.762837][T14703] netlink: 'syz.2.2791': attribute type 10 has an invalid length.
[  875.454071][T14703] mac80211_hwsim hwsim16 wlan1: entered promiscuous mode
[  875.466144][T14703] mac80211_hwsim hwsim16 wlan1: entered allmulticast mode
[  875.489274][T14703] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  875.846861][T14717] FAULT_INJECTION: forcing a failure.
[  875.846861][T14717] name failslab, interval 1, probability 0, space 0, times 0
[  875.894234][T14717] CPU: 1 PID: 14717 Comm: syz.2.2798 Not tainted syzkaller #0
[  875.901755][T14717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  875.911841][T14717] Call Trace:
[  875.915147][T14717]  <TASK>
[  875.918100][T14717]  dump_stack_lvl+0x16c/0x230
[  875.922818][T14717]  ? sctp_sendmsg+0x155c/0x27e0
[  875.927704][T14717]  ? ___sys_sendmsg+0x220/0x290
[  875.932610][T14717]  ? show_regs_print_info+0x20/0x20
[  875.937863][T14717]  ? load_image+0x3b0/0x3b0
[  875.942419][T14717]  should_fail_ex+0x39d/0x4d0
[  875.947149][T14717]  should_failslab+0x9/0x20
[  875.951691][T14717]  slab_pre_alloc_hook+0x59/0x310
[  875.956757][T14717]  ? sctp_add_bind_addr+0x8c/0x360
[  875.961924][T14717]  __kmem_cache_alloc_node+0x53/0x260
[  875.967343][T14717]  ? sctp_add_bind_addr+0x8c/0x360
[  875.972493][T14717]  kmalloc_trace+0x2a/0xe0
[  875.976961][T14717]  sctp_add_bind_addr+0x8c/0x360
[  875.981960][T14717]  sctp_copy_local_addr_list+0x30c/0x4e0
[  875.987641][T14717]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  875.993404][T14717]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  875.999522][T14717]  ? sctp_v4_is_any+0x35/0x60
[  876.004241][T14717]  ? sctp_copy_one_addr+0x8c/0x350
[  876.009429][T14717]  sctp_bind_addr_copy+0xb3/0x3c0
[  876.014500][T14717]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  876.020958][T14717]  sctp_connect_new_asoc+0x2da/0x690
[  876.026379][T14717]  ? __sctp_connect+0xd20/0xd20
[  876.031261][T14717]  ? __local_bh_enable_ip+0x12e/0x1c0
[  876.036658][T14717]  ? _local_bh_enable+0xa0/0xa0
[  876.041542][T14717]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  876.047390][T14717]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  876.053240][T14717]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  876.058826][T14717]  ? security_sctp_bind_connect+0x89/0xb0
[  876.064674][T14717]  sctp_sendmsg+0x155c/0x27e0
[  876.069409][T14717]  ? sctp_getsockopt+0xb60/0xb60
[  876.074390][T14717]  ? perf_trace_lock_acquire+0xfb/0x3e0
[  876.079985][T14717]  ? aa_sk_perm+0x7fc/0x930
[  876.084542][T14717]  ? aa_af_perm+0x2b0/0x2b0
[  876.089080][T14717]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  876.095547][T14717]  ? sock_rps_record_flow+0x19/0x400
[  876.100861][T14717]  ? inet_send_prepare+0x260/0x260
[  876.106003][T14717]  ? inet_sendmsg+0x7c/0x2f0
[  876.110637][T14717]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  876.115971][T14717]  ? security_socket_sendmsg+0x80/0xa0
[  876.121496][T14717]  ? inet_send_prepare+0x260/0x260
[  876.126639][T14717]  ____sys_sendmsg+0x5bf/0x950
[  876.131459][T14717]  ? __asan_memset+0x22/0x40
[  876.136090][T14717]  ? __sys_sendmsg_sock+0x30/0x30
[  876.141240][T14717]  ? __import_iovec+0x5f2/0x860
[  876.146137][T14717]  ? import_iovec+0x73/0xa0
[  876.150677][T14717]  ___sys_sendmsg+0x220/0x290
[  876.155416][T14717]  ? __sys_sendmsg+0x270/0x270
[  876.160261][T14717]  ? __lock_acquire+0x7c80/0x7c80
[  876.165363][T14717]  __se_sys_sendmsg+0x1a5/0x270
[  876.170262][T14717]  ? __x64_sys_sendmsg+0x80/0x80
[  876.175260][T14717]  ? lockdep_hardirqs_on+0x98/0x150
[  876.180496][T14717]  do_syscall_64+0x55/0xb0
[  876.184965][T14717]  ? clear_bhb_loop+0x40/0x90
[  876.188392][T14724] netlink: 'syz.5.2795': attribute type 6 has an invalid length.
[  876.189665][T14717]  ? clear_bhb_loop+0x40/0x90
[  876.202092][T14717]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  876.208030][T14717] RIP: 0033:0x7fd13db8f749
[  876.212475][T14717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  876.218644][T14724] netlink: 168 bytes leftover after parsing attributes in process `syz.5.2795'.
[  876.232090][T14717] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  876.232117][T14717] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  876.232132][T14717] RDX: 0000000000008054 RSI: 0000200000000300 RDI: 0000000000000003
[  876.232144][T14717] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  876.232156][T14717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  876.232168][T14717] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  876.232200][T14717]  </TASK>
[  876.454308][T14730] netlink: 'syz.2.2803': attribute type 10 has an invalid length.
[  876.468078][T14730] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2803'.
[  876.711952][T14735] netlink: 'syz.2.2805': attribute type 7 has an invalid length.
[  877.160724][T14750] C: renamed from team_slave_0 (while UP)
[  877.180634][T14750] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2811'.
[  877.695699][T14770] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2820'.
[  879.138343][T14800] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  879.318600][T14800] netlink: 'syz.5.2828': attribute type 10 has an invalid length.
[  879.352277][T14800] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2828'.
[  879.484699][T14800] team0: Port device geneve0 added
[  879.880482][T14819] FAULT_INJECTION: forcing a failure.
[  879.880482][T14819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  879.901221][T14819] CPU: 1 PID: 14819 Comm: syz.5.2835 Not tainted syzkaller #0
[  879.908822][T14819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  879.918908][T14819] Call Trace:
[  879.922217][T14819]  <TASK>
[  879.925194][T14819]  dump_stack_lvl+0x16c/0x230
[  879.929922][T14819]  ? show_regs_print_info+0x20/0x20
[  879.935167][T14819]  ? load_image+0x3b0/0x3b0
[  879.939711][T14819]  ? __might_fault+0xaa/0x120
[  879.944434][T14819]  ? __lock_acquire+0x7c80/0x7c80
[  879.949499][T14819]  should_fail_ex+0x39d/0x4d0
[  879.954213][T14819]  _copy_from_iter+0x1d3/0x1290
[  879.959105][T14819]  ? __virt_addr_valid+0x18c/0x540
[  879.964259][T14819]  ? __lock_acquire+0x7c80/0x7c80
[  879.969323][T14819]  ? copyout_mc+0x70/0x70
[  879.973690][T14819]  ? __virt_addr_valid+0x18c/0x540
[  879.978839][T14819]  ? __virt_addr_valid+0x18c/0x540
[  879.983986][T14819]  ? __virt_addr_valid+0x469/0x540
[  879.989150][T14819]  ? __check_object_size+0x506/0xa30
[  879.994507][T14819]  kernfs_fop_write_iter+0x1a4/0x520
[  879.999832][T14819]  vfs_write+0x43b/0x940
[  880.004110][T14819]  ? file_end_write+0x250/0x250
[  880.008997][T14819]  ? __fget_files+0x44a/0x4d0
[  880.013720][T14819]  ? __fdget_pos+0x2a3/0x330
[  880.018356][T14819]  ? ksys_write+0x75/0x250
[  880.022796][T14819]  ksys_write+0x147/0x250
[  880.027130][T14819]  ? __ia32_sys_read+0x90/0x90
[  880.031898][T14819]  ? syscall_enter_from_user_mode+0x2e/0x80
[  880.037798][T14819]  do_syscall_64+0x55/0xb0
[  880.042233][T14819]  ? clear_bhb_loop+0x40/0x90
[  880.046916][T14819]  ? clear_bhb_loop+0x40/0x90
[  880.051592][T14819]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  880.057489][T14819] RIP: 0033:0x7f991a98f749
[  880.061924][T14819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  880.081546][T14819] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  880.089973][T14819] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[  880.097943][T14819] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 000000000000000a
[  880.105916][T14819] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  880.113890][T14819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  880.121875][T14819] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  880.129877][T14819]  </TASK>
[  881.166818][T14846] FAULT_INJECTION: forcing a failure.
[  881.166818][T14846] name failslab, interval 1, probability 0, space 0, times 0
[  881.226548][T14846] CPU: 0 PID: 14846 Comm: syz.3.2846 Not tainted syzkaller #0
[  881.234092][T14846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  881.244186][T14846] Call Trace:
[  881.247496][T14846]  <TASK>
[  881.250464][T14846]  dump_stack_lvl+0x16c/0x230
[  881.255190][T14846]  ? show_regs_print_info+0x20/0x20
[  881.260527][T14846]  ? load_image+0x3b0/0x3b0
[  881.265084][T14846]  ? __might_sleep+0xe0/0xe0
[  881.269725][T14846]  ? __lock_acquire+0x7c80/0x7c80
[  881.274797][T14846]  should_fail_ex+0x39d/0x4d0
[  881.279516][T14846]  should_failslab+0x9/0x20
[  881.284050][T14846]  slab_pre_alloc_hook+0x59/0x310
[  881.289129][T14846]  kmem_cache_alloc_node+0x60/0x330
[  881.294400][T14846]  ? __alloc_skb+0x108/0x2c0
[  881.299048][T14846]  __alloc_skb+0x108/0x2c0
[  881.303620][T14846]  netlink_dump+0x1cf/0xde0
[  881.308178][T14846]  ? rcu_is_watching+0x15/0xb0
[  881.312981][T14846]  ? trace_contention_end+0x39/0xe0
[  881.318251][T14846]  ? netlink_lookup+0x200/0x200
[  881.323193][T14846]  ? netlink_autobind+0x300/0x300
[  881.328259][T14846]  ? __local_bh_enable_ip+0x136/0x1c0
[  881.333688][T14846]  ? netlink_lookup+0x30/0x200
[  881.338497][T14846]  ? netlink_lookup+0x30/0x200
[  881.343285][T14846]  __netlink_dump_start+0x5f1/0x810
[  881.348513][T14846]  packet_diag_handler_dump+0x1bd/0x270
[  881.354098][T14846]  ? __lock_acquire+0x7c80/0x7c80
[  881.359136][T14846]  ? packet_sendmsg_spkt+0x1120/0x1120
[  881.364618][T14846]  ? packet_diag_handler_dump+0x270/0x270
[  881.370364][T14846]  ? sock_diag_lock_handler+0x19/0x280
[  881.375840][T14846]  ? sock_diag_lock_handler+0x19/0x280
[  881.381324][T14846]  ? packet_sendmsg_spkt+0x1120/0x1120
[  881.386813][T14846]  sock_diag_rcv_msg+0x3d8/0x600
[  881.391765][T14846]  netlink_rcv_skb+0x216/0x480
[  881.396546][T14846]  ? sock_diag_bind+0xb0/0xb0
[  881.401234][T14846]  ? netlink_ack+0x1110/0x1110
[  881.406020][T14846]  ? __lock_acquire+0x7c80/0x7c80
[  881.411059][T14846]  ? netlink_deliver_tap+0x2e/0x1b0
[  881.416278][T14846]  sock_diag_rcv+0x2a/0x40
[  881.420706][T14846]  netlink_unicast+0x751/0x8d0
[  881.425489][T14846]  netlink_sendmsg+0x8c1/0xbe0
[  881.430268][T14846]  ? lockdep_hardirqs_on+0x98/0x150
[  881.435493][T14846]  ? netlink_getsockopt+0x580/0x580
[  881.440712][T14846]  ? security_socket_sendmsg+0x45/0xa0
[  881.446205][T14846]  ? security_socket_sendmsg+0x80/0xa0
[  881.451673][T14846]  ? netlink_getsockopt+0x580/0x580
[  881.456884][T14846]  ____sys_sendmsg+0x5bf/0x950
[  881.461675][T14846]  ? __asan_memset+0x22/0x40
[  881.466278][T14846]  ? __sys_sendmsg_sock+0x30/0x30
[  881.471330][T14846]  ? __import_iovec+0x5f2/0x860
[  881.476221][T14846]  ? import_iovec+0x73/0xa0
[  881.480742][T14846]  ___sys_sendmsg+0x220/0x290
[  881.485433][T14846]  ? __sys_sendmsg+0x270/0x270
[  881.490249][T14846]  __se_sys_sendmsg+0x1a5/0x270
[  881.495146][T14846]  ? perf_trace_preemptirq_template+0x281/0x340
[  881.501415][T14846]  ? __x64_sys_sendmsg+0x80/0x80
[  881.506389][T14846]  ? lockdep_hardirqs_on+0x98/0x150
[  881.511596][T14846]  do_syscall_64+0x55/0xb0
[  881.516023][T14846]  ? clear_bhb_loop+0x40/0x90
[  881.520712][T14846]  ? clear_bhb_loop+0x40/0x90
[  881.525402][T14846]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  881.531306][T14846] RIP: 0033:0x7f22ea18f749
[  881.535907][T14846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  881.555537][T14846] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  881.563980][T14846] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[  881.571960][T14846] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000a
[  881.579962][T14846] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[  881.587970][T14846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  881.595955][T14846] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[  881.603952][T14846]  </TASK>
[  881.709751][T14854] FAULT_INJECTION: forcing a failure.
[  881.709751][T14854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  881.736302][T14854] CPU: 0 PID: 14854 Comm: syz.4.2847 Not tainted syzkaller #0
[  881.743926][T14854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  881.754019][T14854] Call Trace:
[  881.757322][T14854]  <TASK>
[  881.760288][T14854]  dump_stack_lvl+0x16c/0x230
[  881.765029][T14854]  ? show_regs_print_info+0x20/0x20
[  881.770280][T14854]  ? load_image+0x3b0/0x3b0
[  881.774825][T14854]  ? __lock_acquire+0x7c80/0x7c80
[  881.779892][T14854]  ? snprintf+0xdb/0x120
[  881.784171][T14854]  should_fail_ex+0x39d/0x4d0
[  881.788913][T14854]  _copy_to_user+0x2f/0xa0
[  881.793358][T14854]  simple_read_from_buffer+0xe7/0x150
[  881.798751][T14854]  proc_fail_nth_read+0x1e3/0x250
[  881.803789][T14854]  ? proc_fault_inject_write+0x340/0x340
[  881.809433][T14854]  ? fsnotify_perm+0x271/0x5e0
[  881.814208][T14854]  ? proc_fault_inject_write+0x340/0x340
[  881.819855][T14854]  vfs_read+0x27e/0x920
[  881.824027][T14854]  ? kernel_read+0x1e0/0x1e0
[  881.828631][T14854]  ? __fget_files+0x28/0x4d0
[  881.833233][T14854]  ? __fget_files+0x44a/0x4d0
[  881.837925][T14854]  ? __fdget_pos+0x2a3/0x330
[  881.842541][T14854]  ? ksys_read+0x75/0x250
[  881.846886][T14854]  ksys_read+0x147/0x250
[  881.851143][T14854]  ? vfs_write+0x940/0x940
[  881.855577][T14854]  ? lockdep_hardirqs_on+0x98/0x150
[  881.860789][T14854]  do_syscall_64+0x55/0xb0
[  881.865223][T14854]  ? clear_bhb_loop+0x40/0x90
[  881.869910][T14854]  ? clear_bhb_loop+0x40/0x90
[  881.874598][T14854]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  881.880498][T14854] RIP: 0033:0x7f987218e15c
[  881.884921][T14854] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  881.904532][T14854] RSP: 002b:00007f98703f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  881.912957][T14854] RAX: ffffffffffffffda RBX: 00007f98723e6180 RCX: 00007f987218e15c
[  881.920940][T14854] RDX: 000000000000000f RSI: 00007f98703f60a0 RDI: 0000000000000008
[  881.928919][T14854] RBP: 00007f98703f6090 R08: 0000000000000000 R09: 0000000000000000
[  881.936896][T14854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  881.945076][T14854] R13: 00007f98723e6218 R14: 00007f98723e6180 R15: 00007ffced531c48
[  881.953069][T14854]  </TASK>
[  882.711804][ T5801] Bluetooth: hci4: command 0x0406 tx timeout
[  885.629135][T14880] netlink: 203516 bytes leftover after parsing attributes in process `syz.4.2855'.
[  885.700059][T14885] hsr0: entered promiscuous mode
[  885.706658][T14885] hsr0: entered allmulticast mode
[  885.712337][T14885] hsr_slave_0: entered allmulticast mode
[  885.718167][T14885] hsr_slave_1: entered allmulticast mode
[  885.741375][T14880] netlink: 6332 bytes leftover after parsing attributes in process `syz.4.2855'.
[  890.004993][T14938] netlink: 'syz.3.2874': attribute type 3 has an invalid length.
[  890.022628][T14938] netlink: 'syz.3.2874': attribute type 16 has an invalid length.
[  890.091409][T14938] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2874'.
[  890.147279][T14940] FAULT_INJECTION: forcing a failure.
[  890.147279][T14940] name failslab, interval 1, probability 0, space 0, times 0
[  890.149831][T14943] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2878'.
[  890.170919][T14940] CPU: 0 PID: 14940 Comm: syz.4.2877 Not tainted syzkaller #0
[  890.178439][T14940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  890.188524][T14940] Call Trace:
[  890.191841][T14940]  <TASK>
[  890.194804][T14940]  dump_stack_lvl+0x16c/0x230
[  890.199526][T14940]  ? show_regs_print_info+0x20/0x20
[  890.204770][T14940]  ? load_image+0x3b0/0x3b0
[  890.209309][T14940]  ? __might_sleep+0xe0/0xe0
[  890.213936][T14940]  ? __lock_acquire+0x7c80/0x7c80
[  890.218996][T14940]  should_fail_ex+0x39d/0x4d0
[  890.223712][T14940]  should_failslab+0x9/0x20
[  890.228256][T14940]  slab_pre_alloc_hook+0x59/0x310
[  890.233329][T14940]  ? page_pool_create+0x71/0x5e0
[  890.238338][T14940]  __kmem_cache_alloc_node+0x53/0x260
[  890.243778][T14940]  ? page_pool_create+0x71/0x5e0
[  890.248764][T14940]  kmalloc_node_trace+0x26/0xe0
[  890.253644][T14940]  page_pool_create+0x71/0x5e0
[  890.258437][T14940]  bpf_test_run_xdp_live+0x1c1/0x1a20
[  890.263844][T14940]  ? 0xffffffffa0004740
[  890.268019][T14940]  ? bpf_dispatcher_change_prog+0xa76/0xcc0
[  890.273946][T14940]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  890.280128][T14940]  ? xdp_convert_md_to_buff+0x330/0x330
[  890.285712][T14940]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[  890.291969][T14940]  ? _copy_from_user+0xa5/0xe0
[  890.296745][T14940]  ? bpf_test_init+0x134/0x150
[  890.301526][T14940]  ? xdp_convert_md_to_buff+0x5b/0x330
[  890.306991][T14940]  bpf_prog_test_run_xdp+0x76c/0xfa0
[  890.312314][T14940]  ? __fget_files+0x1c/0x4d0
[  890.316932][T14940]  ? dev_put+0x80/0x80
[  890.321024][T14940]  ? dev_put+0x80/0x80
[  890.325128][T14940]  bpf_prog_test_run+0x321/0x390
[  890.330125][T14940]  __sys_bpf+0x440/0x800
[  890.334412][T14940]  ? bpf_link_show_fdinfo+0x350/0x350
[  890.339828][T14940]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  890.346021][T14940]  __x64_sys_bpf+0x7c/0x90
[  890.350452][T14940]  do_syscall_64+0x55/0xb0
[  890.354891][T14940]  ? clear_bhb_loop+0x40/0x90
[  890.359582][T14940]  ? clear_bhb_loop+0x40/0x90
[  890.364278][T14940]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  890.370189][T14940] RIP: 0033:0x7f987218f749
[  890.374630][T14940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  890.394341][T14940] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  890.402801][T14940] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  890.410782][T14940] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  890.418762][T14940] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  890.426747][T14940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  890.434746][T14940] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  890.442747][T14940]  </TASK>
[  895.830558][T14966] netlink: 'syz.5.2886': attribute type 1 has an invalid length.
[  895.844038][T14966] netlink: 'syz.5.2886': attribute type 4 has an invalid length.
[  895.861374][T14966] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.2886'.
[  896.167914][T14977] netlink: 61967 bytes leftover after parsing attributes in process `syz.2.2890'.
[  896.441785][T14983] netlink: 'syz.5.2892': attribute type 11 has an invalid length.
[  899.760096][T15006] netlink: 'syz.5.2898': attribute type 2 has an invalid length.
[  899.773609][T15006] netlink: 'syz.5.2898': attribute type 8 has an invalid length.
[  899.782235][T15006] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2898'.
[  899.882328][T15011] netlink: 'syz.2.2900': attribute type 1 has an invalid length.
[  899.895364][T15011] netlink: 'syz.2.2900': attribute type 4 has an invalid length.
[  899.904396][T15011] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.2900'.
[  900.129315][T15018] netlink: 160 bytes leftover after parsing attributes in process `syz.3.2901'.
[  900.327386][T15020] netlink: 'syz.4.2902': attribute type 10 has an invalid length.
[  903.820638][T15036] netlink: 'syz.3.2909': attribute type 11 has an invalid length.
[  904.679016][T15063] sctp: [Deprecated]: syz.3.2916 (pid 15063) Use of int in maxseg socket option.
[  904.679016][T15063] Use struct sctp_assoc_value instead
[  908.134549][T15082] FAULT_INJECTION: forcing a failure.
[  908.134549][T15082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  908.172498][T15082] CPU: 1 PID: 15082 Comm: syz.2.2927 Not tainted syzkaller #0
[  908.180022][T15082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  908.190129][T15082] Call Trace:
[  908.193423][T15082]  <TASK>
[  908.196380][T15082]  dump_stack_lvl+0x16c/0x230
[  908.201110][T15082]  ? show_regs_print_info+0x20/0x20
[  908.206349][T15082]  ? load_image+0x3b0/0x3b0
[  908.210889][T15082]  ? __might_fault+0xaa/0x120
[  908.215601][T15082]  ? __lock_acquire+0x7c80/0x7c80
[  908.220841][T15082]  should_fail_ex+0x39d/0x4d0
[  908.225583][T15082]  _copy_to_user+0x2f/0xa0
[  908.230039][T15082]  generic_map_lookup_batch+0x8c1/0xcd0
[  908.235630][T15082]  ? __lock_acquire+0x7c80/0x7c80
[  908.240697][T15082]  ? bpf_map_update_value+0x720/0x720
[  908.246117][T15082]  ? __fdget+0x180/0x210
[  908.250402][T15082]  ? bpf_map_update_value+0x720/0x720
[  908.255814][T15082]  bpf_map_do_batch+0x2cb/0x610
[  908.260692][T15082]  ? bpf_lsm_bpf+0x9/0x10
[  908.265059][T15082]  ? security_bpf+0x7e/0xa0
[  908.269605][T15082]  __sys_bpf+0x76e/0x800
[  908.273878][T15082]  ? bpf_link_show_fdinfo+0x350/0x350
[  908.279284][T15082]  ? lock_chain_count+0x20/0x20
[  908.284173][T15082]  __x64_sys_bpf+0x7c/0x90
[  908.288628][T15082]  do_syscall_64+0x55/0xb0
[  908.293073][T15082]  ? clear_bhb_loop+0x40/0x90
[  908.297793][T15082]  ? clear_bhb_loop+0x40/0x90
[  908.302515][T15082]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  908.308471][T15082] RIP: 0033:0x7fd13db8f749
[  908.312938][T15082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  908.332579][T15082] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  908.341033][T15082] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  908.349027][T15082] RDX: 0000000000000038 RSI: 00002000000003c0 RDI: 0000000000000018
[  908.357014][T15082] RBP: 00007fd13e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  908.365023][T15082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  908.373024][T15082] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  908.381057][T15082]  </TASK>
[  908.740981][T15083] netlink: 'syz.4.2926': attribute type 11 has an invalid length.
[  908.887135][T15098] netlink: 'syz.5.2931': attribute type 1 has an invalid length.
[  908.895519][T15098] netlink: 'syz.5.2931': attribute type 4 has an invalid length.
[  908.904138][T15098] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.2931'.
[  912.350110][T15122] netlink: 'syz.3.2941': attribute type 1 has an invalid length.
[  912.371489][T15122] netlink: 'syz.3.2941': attribute type 4 has an invalid length.
[  912.391750][T15122] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.2941'.
[  916.273332][T15150] netlink: 'syz.4.2950': attribute type 1 has an invalid length.
[  916.290348][T15150] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2950'.
[  916.343174][T15152] netlink: 'syz.2.2951': attribute type 1 has an invalid length.
[  916.362745][T15152] netlink: 'syz.2.2951': attribute type 4 has an invalid length.
[  916.373596][T15152] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.2951'.
[  917.117907][T15173] netlink: 'syz.2.2958': attribute type 7 has an invalid length.
[  921.576180][T15213] IPv6: Can't replace route, no match found
[  924.497501][T15230] FAULT_INJECTION: forcing a failure.
[  924.497501][T15230] name failslab, interval 1, probability 0, space 0, times 0
[  924.531549][T15230] CPU: 0 PID: 15230 Comm: syz.4.2979 Not tainted syzkaller #0
[  924.539104][T15230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  924.549184][T15230] Call Trace:
[  924.552493][T15230]  <TASK>
[  924.555452][T15230]  dump_stack_lvl+0x16c/0x230
[  924.560160][T15230]  ? show_regs_print_info+0x20/0x20
[  924.565369][T15230]  ? load_image+0x3b0/0x3b0
[  924.569890][T15230]  ? perf_trace_lock_acquire+0xfb/0x3e0
[  924.575473][T15230]  should_fail_ex+0x39d/0x4d0
[  924.580185][T15230]  should_failslab+0x9/0x20
[  924.584697][T15230]  slab_pre_alloc_hook+0x59/0x310
[  924.589738][T15230]  kmem_cache_alloc+0x5a/0x2e0
[  924.594521][T15230]  ? skb_clone+0x1eb/0x370
[  924.598993][T15230]  skb_clone+0x1eb/0x370
[  924.603265][T15230]  __netlink_deliver_tap+0x41c/0x830
[  924.608575][T15230]  ? netlink_deliver_tap+0x2e/0x1b0
[  924.613802][T15230]  netlink_deliver_tap+0x19c/0x1b0
[  924.618946][T15230]  netlink_dump+0x8df/0xde0
[  924.623498][T15230]  ? netlink_lookup+0x200/0x200
[  924.628407][T15230]  ? netlink_autobind+0x300/0x300
[  924.633477][T15230]  ? __local_bh_enable_ip+0x12e/0x1c0
[  924.638895][T15230]  ? netlink_lookup+0x30/0x200
[  924.643688][T15230]  ? netlink_lookup+0x30/0x200
[  924.648490][T15230]  __netlink_dump_start+0x5f1/0x810
[  924.653714][T15230]  xsk_diag_handler_dump+0x184/0x220
[  924.659023][T15230]  ? __lock_acquire+0x7c80/0x7c80
[  924.664148][T15230]  ? xp_dma_sync_for_device_slow+0x50/0x50
[  924.669969][T15230]  ? xsk_diag_handler_dump+0x220/0x220
[  924.675459][T15230]  ? sock_diag_lock_handler+0x19/0x280
[  924.680941][T15230]  ? sock_diag_lock_handler+0x19/0x280
[  924.686406][T15230]  ? xp_dma_sync_for_device_slow+0x50/0x50
[  924.692233][T15230]  sock_diag_rcv_msg+0x3d8/0x600
[  924.697191][T15230]  netlink_rcv_skb+0x216/0x480
[  924.701985][T15230]  ? sock_diag_bind+0xb0/0xb0
[  924.706689][T15230]  ? netlink_ack+0x1110/0x1110
[  924.711488][T15230]  ? __lock_acquire+0x7c80/0x7c80
[  924.716559][T15230]  ? netlink_deliver_tap+0x2e/0x1b0
[  924.721832][T15230]  sock_diag_rcv+0x2a/0x40
[  924.726266][T15230]  netlink_unicast+0x751/0x8d0
[  924.731041][T15230]  netlink_sendmsg+0x8c1/0xbe0
[  924.735841][T15230]  ? netlink_getsockopt+0x580/0x580
[  924.741062][T15230]  ? aa_sock_msg_perm+0x94/0x150
[  924.746015][T15230]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  924.751334][T15230]  ? security_socket_sendmsg+0x80/0xa0
[  924.756832][T15230]  ? netlink_getsockopt+0x580/0x580
[  924.762052][T15230]  ____sys_sendmsg+0x5bf/0x950
[  924.766849][T15230]  ? __asan_memset+0x22/0x40
[  924.771461][T15230]  ? __sys_sendmsg_sock+0x30/0x30
[  924.776513][T15230]  ? __import_iovec+0x5f2/0x860
[  924.781400][T15230]  ? import_iovec+0x73/0xa0
[  924.785945][T15230]  ___sys_sendmsg+0x220/0x290
[  924.790645][T15230]  ? __sys_sendmsg+0x270/0x270
[  924.795447][T15230]  ? __lock_acquire+0x7c80/0x7c80
[  924.800541][T15230]  __se_sys_sendmsg+0x1a5/0x270
[  924.805404][T15230]  ? __x64_sys_sendmsg+0x80/0x80
[  924.810378][T15230]  ? lockdep_hardirqs_on+0x98/0x150
[  924.815601][T15230]  do_syscall_64+0x55/0xb0
[  924.820055][T15230]  ? clear_bhb_loop+0x40/0x90
[  924.824752][T15230]  ? clear_bhb_loop+0x40/0x90
[  924.829446][T15230]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  924.835441][T15230] RIP: 0033:0x7f987218f749
[  924.839852][T15230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  924.859465][T15230] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  924.867885][T15230] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  924.875869][T15230] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000005
[  924.883850][T15230] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  924.891849][T15230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  924.899836][T15230] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  924.907823][T15230]  </TASK>
[  926.185357][T15251] syz.2.2986[15251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.185515][T15251] syz.2.2986[15251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.340391][T15251] netlink: 'syz.2.2986': attribute type 10 has an invalid length.
[  926.370189][T15251] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2986'.
[  926.447327][T15251] bond0: (slave team0): Releasing backup interface
[  926.553644][T15251] team0: left promiscuous mode
[  926.561100][T15251] C: left promiscuous mode
[  926.585862][T15251] team_slave_1: left promiscuous mode
[  926.612832][T15251] team0: left allmulticast mode
[  926.618374][T15251] C: left allmulticast mode
[  926.631564][T15251] team_slave_1: left allmulticast mode
[  927.632251][T15251] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  927.712771][T15260] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2988'.
[  928.633096][T15288] FAULT_INJECTION: forcing a failure.
[  928.633096][T15288] name failslab, interval 1, probability 0, space 0, times 0
[  928.647130][T15288] CPU: 1 PID: 15288 Comm: syz.3.2999 Not tainted syzkaller #0
[  928.654641][T15288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  928.664716][T15288] Call Trace:
[  928.668007][T15288]  <TASK>
[  928.670955][T15288]  dump_stack_lvl+0x16c/0x230
[  928.675661][T15288]  ? sctp_sendmsg+0x155c/0x27e0
[  928.680551][T15288]  ? ___sys_sendmsg+0x220/0x290
[  928.685414][T15288]  ? show_regs_print_info+0x20/0x20
[  928.690623][T15288]  ? load_image+0x3b0/0x3b0
[  928.695170][T15288]  should_fail_ex+0x39d/0x4d0
[  928.699871][T15288]  should_failslab+0x9/0x20
[  928.704397][T15288]  slab_pre_alloc_hook+0x59/0x310
[  928.709461][T15288]  ? sctp_add_bind_addr+0x8c/0x360
[  928.714592][T15288]  __kmem_cache_alloc_node+0x53/0x260
[  928.719981][T15288]  ? sctp_add_bind_addr+0x8c/0x360
[  928.725114][T15288]  kmalloc_trace+0x2a/0xe0
[  928.729550][T15288]  sctp_add_bind_addr+0x8c/0x360
[  928.734591][T15288]  sctp_copy_local_addr_list+0x30c/0x4e0
[  928.740240][T15288]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  928.745980][T15288]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  928.752068][T15288]  ? sctp_v4_is_any+0x35/0x60
[  928.756762][T15288]  ? sctp_copy_one_addr+0x8c/0x350
[  928.761924][T15288]  sctp_bind_addr_copy+0xb3/0x3c0
[  928.766972][T15288]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  928.773312][T15288]  sctp_connect_new_asoc+0x2da/0x690
[  928.778615][T15288]  ? __sctp_connect+0xd20/0xd20
[  928.783479][T15288]  ? __local_bh_enable_ip+0x12e/0x1c0
[  928.788859][T15288]  ? _local_bh_enable+0xa0/0xa0
[  928.793713][T15288]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  928.799550][T15288]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  928.805376][T15288]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  928.810944][T15288]  ? security_sctp_bind_connect+0x89/0xb0
[  928.816682][T15288]  sctp_sendmsg+0x155c/0x27e0
[  928.821481][T15288]  ? sctp_getsockopt+0xb60/0xb60
[  928.826438][T15288]  ? perf_trace_lock+0xf7/0x380
[  928.831315][T15288]  ? aa_sk_perm+0x7fc/0x930
[  928.835966][T15288]  ? aa_af_perm+0x2b0/0x2b0
[  928.840493][T15288]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  928.846954][T15288]  ? sock_rps_record_flow+0x19/0x400
[  928.852257][T15288]  ? inet_send_prepare+0x260/0x260
[  928.857377][T15288]  ? inet_sendmsg+0x7c/0x2f0
[  928.861977][T15288]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  928.867270][T15288]  ? security_socket_sendmsg+0x80/0xa0
[  928.872733][T15288]  ? inet_send_prepare+0x260/0x260
[  928.877847][T15288]  ____sys_sendmsg+0x5bf/0x950
[  928.882637][T15288]  ? __asan_memset+0x22/0x40
[  928.887244][T15288]  ? __sys_sendmsg_sock+0x30/0x30
[  928.892283][T15288]  ? __import_iovec+0x5f2/0x860
[  928.897159][T15288]  ? import_iovec+0x73/0xa0
[  928.901693][T15288]  ___sys_sendmsg+0x220/0x290
[  928.906398][T15288]  ? __sys_sendmsg+0x270/0x270
[  928.911208][T15288]  ? __lock_acquire+0x7c80/0x7c80
[  928.916269][T15288]  __se_sys_sendmsg+0x1a5/0x270
[  928.921136][T15288]  ? __x64_sys_sendmsg+0x80/0x80
[  928.926102][T15288]  ? lockdep_hardirqs_on+0x98/0x150
[  928.931328][T15288]  do_syscall_64+0x55/0xb0
[  928.935758][T15288]  ? clear_bhb_loop+0x40/0x90
[  928.940448][T15288]  ? clear_bhb_loop+0x40/0x90
[  928.945138][T15288]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  928.951054][T15288] RIP: 0033:0x7f22ea18f749
[  928.955477][T15288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  928.975091][T15288] RSP: 002b:00007f22eaf8c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  928.983517][T15288] RAX: ffffffffffffffda RBX: 00007f22ea3e6090 RCX: 00007f22ea18f749
[  928.991498][T15288] RDX: 0000000000000810 RSI: 0000200000000b80 RDI: 0000000000000003
[  928.999476][T15288] RBP: 00007f22eaf8c090 R08: 0000000000000000 R09: 0000000000000000
[  929.007460][T15288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  929.015444][T15288] R13: 00007f22ea3e6128 R14: 00007f22ea3e6090 R15: 00007ffc163749e8
[  929.023442][T15288]  </TASK>
[  929.688982][T15304] netlink: 'syz.5.3005': attribute type 16 has an invalid length.
[  929.739773][T15304] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3005'.
[  929.779333][T15304] FAULT_INJECTION: forcing a failure.
[  929.779333][T15304] name failslab, interval 1, probability 0, space 0, times 0
[  929.819875][T15304] CPU: 0 PID: 15304 Comm: syz.5.3005 Not tainted syzkaller #0
[  929.827394][T15304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  929.837486][T15304] Call Trace:
[  929.840799][T15304]  <TASK>
[  929.843750][T15304]  dump_stack_lvl+0x16c/0x230
[  929.848484][T15304]  ? show_regs_print_info+0x20/0x20
[  929.853732][T15304]  ? load_image+0x3b0/0x3b0
[  929.858274][T15304]  ? __might_sleep+0xe0/0xe0
[  929.862918][T15304]  ? __lock_acquire+0x7c80/0x7c80
[  929.867992][T15304]  should_fail_ex+0x39d/0x4d0
[  929.872728][T15304]  should_failslab+0x9/0x20
[  929.877300][T15304]  slab_pre_alloc_hook+0x59/0x310
[  929.882383][T15304]  ? __lock_acquire+0x7c80/0x7c80
[  929.887449][T15304]  kmem_cache_alloc_node+0x60/0x330
[  929.892692][T15304]  ? __alloc_skb+0x108/0x2c0
[  929.897329][T15304]  __alloc_skb+0x108/0x2c0
[  929.901793][T15304]  inet_rtm_getroute+0x74f/0x2750
[  929.906870][T15304]  ? kernel_text_address+0xa0/0xd0
[  929.912039][T15304]  ? arch_stack_walk+0x160/0x190
[  929.917026][T15304]  ? ip_rt_multicast_event+0x80/0x80
[  929.922376][T15304]  ? nlmon_xmit+0xb0/0x100
[  929.926853][T15304]  ? __dev_queue_xmit+0x1a64/0x35a0
[  929.932083][T15304]  ? __netlink_deliver_tap+0x5ab/0x830
[  929.937577][T15304]  ? netlink_deliver_tap+0x19c/0x1b0
[  929.942919][T15304]  ? __lock_acquire+0x7c80/0x7c80
[  929.947999][T15304]  ? ip_rt_multicast_event+0x80/0x80
[  929.953325][T15304]  rtnetlink_rcv_msg+0x81a/0xf10
[  929.958313][T15304]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  929.963477][T15304]  ? lockdep_hardirqs_on+0x98/0x150
[  929.968711][T15304]  ? rtnetlink_bind+0x80/0x80
[  929.973419][T15304]  ? perf_trace_preemptirq_template+0xa4/0x340
[  929.979614][T15304]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  929.985631][T15304]  ? lock_chain_count+0x20/0x20
[  929.990527][T15304]  ? __local_bh_enable_ip+0x12e/0x1c0
[  929.995941][T15304]  ? lockdep_hardirqs_on+0x98/0x150
[  930.001178][T15304]  ? __local_bh_enable_ip+0x12e/0x1c0
[  930.006602][T15304]  ? _local_bh_enable+0xa0/0xa0
[  930.011493][T15304]  ? __dev_queue_xmit+0x245/0x35a0
[  930.016640][T15304]  ? __dev_queue_xmit+0x1449/0x35a0
[  930.021899][T15304]  ? __dev_queue_xmit+0x245/0x35a0
[  930.027054][T15304]  ? ref_tracker_free+0x634/0x7d0
[  930.032114][T15304]  ? __copy_skb_header+0xa7/0x550
[  930.037193][T15304]  netlink_rcv_skb+0x216/0x480
[  930.042028][T15304]  ? rtnetlink_bind+0x80/0x80
[  930.046752][T15304]  ? netlink_ack+0x1110/0x1110
[  930.051588][T15304]  ? __lock_acquire+0x7c80/0x7c80
[  930.056685][T15304]  ? netlink_deliver_tap+0x2e/0x1b0
[  930.061928][T15304]  netlink_unicast+0x751/0x8d0
[  930.066742][T15304]  netlink_sendmsg+0x8c1/0xbe0
[  930.071540][T15304]  ? netlink_getsockopt+0x580/0x580
[  930.076760][T15304]  ? aa_sock_msg_perm+0x94/0x150
[  930.081715][T15304]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  930.087013][T15304]  ? security_socket_sendmsg+0x80/0xa0
[  930.092496][T15304]  ? netlink_getsockopt+0x580/0x580
[  930.097715][T15304]  ____sys_sendmsg+0x5bf/0x950
[  930.102504][T15304]  ? __asan_memset+0x22/0x40
[  930.107109][T15304]  ? __sys_sendmsg_sock+0x30/0x30
[  930.112156][T15304]  ? __import_iovec+0x3fa/0x860
[  930.117036][T15304]  ? import_iovec+0x73/0xa0
[  930.121563][T15304]  ___sys_sendmsg+0x220/0x290
[  930.126364][T15304]  ? __sys_sendmsg+0x270/0x270
[  930.131184][T15304]  ? __lock_acquire+0x7c80/0x7c80
[  930.136261][T15304]  __se_sys_sendmsg+0x1a5/0x270
[  930.141134][T15304]  ? __x64_sys_sendmsg+0x80/0x80
[  930.146107][T15304]  ? lockdep_hardirqs_on+0x98/0x150
[  930.151323][T15304]  do_syscall_64+0x55/0xb0
[  930.155770][T15304]  ? clear_bhb_loop+0x40/0x90
[  930.160452][T15304]  ? clear_bhb_loop+0x40/0x90
[  930.165143][T15304]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  930.171146][T15304] RIP: 0033:0x7f991a98f749
[  930.175573][T15304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  930.195192][T15304] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  930.203616][T15304] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[  930.211601][T15304] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  930.219755][T15304] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  930.227730][T15304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  930.235719][T15304] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  930.243715][T15304]  </TASK>
[  931.903689][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  931.910353][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  931.971338][T15344] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3020'.
[  931.989171][T15344] netlink: 'syz.4.3020': attribute type 12 has an invalid length.
[  931.998015][T15344] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3020'.
[  932.372960][T15347] netlink: 'syz.4.3022': attribute type 10 has an invalid length.
[  932.391154][T15347] netlink: 55 bytes leftover after parsing attributes in process `syz.4.3022'.
[  932.700636][T15356] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3025'.
[  932.710753][T15356] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3025'.
[  932.729573][T15356] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3025'.
[  936.433566][T15383] FAULT_INJECTION: forcing a failure.
[  936.433566][T15383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  936.496746][T15383] CPU: 0 PID: 15383 Comm: syz.5.3036 Not tainted syzkaller #0
[  936.504286][T15383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  936.514373][T15383] Call Trace:
[  936.517713][T15383]  <TASK>
[  936.520677][T15383]  dump_stack_lvl+0x16c/0x230
[  936.525413][T15383]  ? show_regs_print_info+0x20/0x20
[  936.530683][T15383]  ? load_image+0x3b0/0x3b0
[  936.535238][T15383]  ? __might_fault+0xaa/0x120
[  936.539964][T15383]  ? __lock_acquire+0x7c80/0x7c80
[  936.545034][T15383]  should_fail_ex+0x39d/0x4d0
[  936.549842][T15383]  _copy_from_iter+0x1d3/0x1290
[  936.554734][T15383]  ? slab_post_alloc_hook+0x8a/0x4d0
[  936.560054][T15383]  ? __virt_addr_valid+0x18c/0x540
[  936.565205][T15383]  ? __lock_acquire+0x7c80/0x7c80
[  936.570265][T15383]  ? rcu_is_watching+0x15/0xb0
[  936.575080][T15383]  ? copyout_mc+0x70/0x70
[  936.579447][T15383]  ? __virt_addr_valid+0x18c/0x540
[  936.584607][T15383]  ? __virt_addr_valid+0x18c/0x540
[  936.589759][T15383]  ? __virt_addr_valid+0x469/0x540
[  936.594917][T15383]  ? __check_object_size+0x506/0xa30
[  936.600254][T15383]  netlink_sendmsg+0x75c/0xbe0
[  936.605068][T15383]  ? netlink_getsockopt+0x580/0x580
[  936.610316][T15383]  ? aa_sock_msg_perm+0x94/0x150
[  936.615300][T15383]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  936.620625][T15383]  ? security_socket_sendmsg+0x80/0xa0
[  936.626121][T15383]  ? netlink_getsockopt+0x580/0x580
[  936.631386][T15383]  ____sys_sendmsg+0x5bf/0x950
[  936.636200][T15383]  ? __asan_memset+0x22/0x40
[  936.640822][T15383]  ? __sys_sendmsg_sock+0x30/0x30
[  936.645885][T15383]  ? __import_iovec+0x5f2/0x860
[  936.650789][T15383]  ? import_iovec+0x73/0xa0
[  936.655337][T15383]  ___sys_sendmsg+0x220/0x290
[  936.660065][T15383]  ? __sys_sendmsg+0x270/0x270
[  936.664937][T15383]  __se_sys_sendmsg+0x1a5/0x270
[  936.669837][T15383]  ? __x64_sys_sendmsg+0x80/0x80
[  936.674837][T15383]  ? syscall_enter_from_user_mode+0x2e/0x80
[  936.680766][T15383]  do_syscall_64+0x55/0xb0
[  936.685217][T15383]  ? clear_bhb_loop+0x40/0x90
[  936.689924][T15383]  ? clear_bhb_loop+0x40/0x90
[  936.694648][T15383]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  936.700571][T15383] RIP: 0033:0x7f991a98f749
[  936.705021][T15383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  936.724661][T15383] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  936.733114][T15383] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[  936.741122][T15383] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000009
[  936.749164][T15383] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  936.757182][T15383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  936.765189][T15383] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  936.773210][T15383]  </TASK>
[  937.574034][T15408] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.3045'.
[  937.593526][T15408] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  938.225027][T15422] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3050'.
[  938.242300][T15422] netlink: 6 bytes leftover after parsing attributes in process `syz.3.3050'.
[  939.053449][T15439] syz.5.3056[15439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  939.053615][T15439] syz.5.3056[15439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  939.329074][T15442] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3057'.
[  939.392299][T15440] netlink: 'syz.5.3056': attribute type 10 has an invalid length.
[  939.461866][T15440] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3056'.
[  939.753625][T15440] bond0: (slave team0): Releasing backup interface
[  940.118312][T15440] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  940.138352][T15442] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  940.154985][T15442] CPU: 0 PID: 15442 Comm: syz.2.3057 Not tainted syzkaller #0
[  940.162508][T15442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  940.172679][T15442] Call Trace:
[  940.175970][T15442]  <TASK>
[  940.178907][T15442]  dump_stack_lvl+0x16c/0x230
[  940.183617][T15442]  ? show_regs_print_info+0x20/0x20
[  940.188870][T15442]  ? load_image+0x3b0/0x3b0
[  940.193403][T15442]  sysfs_warn_dup+0x8e/0xa0
[  940.197939][T15442]  sysfs_do_create_link_sd+0xc0/0x110
[  940.203338][T15442]  device_add_class_symlinks+0x1cf/0x240
[  940.208995][T15442]  device_add+0x507/0xc20
[  940.213349][T15442]  wiphy_register+0x1e74/0x2c00
[  940.218242][T15442]  ? cfg80211_event_work+0x40/0x40
[  940.223376][T15442]  ? minstrel_ht_alloc+0x88a/0x990
[  940.228507][T15442]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  940.234588][T15442]  ieee80211_register_hw+0x2de8/0x3b10
[  940.240077][T15442]  ? ieee80211_register_hw+0xf11/0x3b10
[  940.245649][T15442]  ? ieee80211_tasklet_handler+0x20/0x20
[  940.251300][T15442]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  940.257255][T15442]  ? __debug_object_init+0xe8/0x430
[  940.262488][T15442]  ? __asan_memset+0x22/0x40
[  940.267099][T15442]  ? __hrtimer_init+0x186/0x270
[  940.271970][T15442]  mac80211_hwsim_new_radio+0x2a00/0x4cf0
[  940.277735][T15442]  ? mac80211_hwsim_free+0x220/0x220
[  940.283030][T15442]  ? rcu_is_watching+0x15/0xb0
[  940.287807][T15442]  ? kstrndup+0xbd/0x140
[  940.292077][T15442]  hwsim_new_radio_nl+0xd78/0x19d0
[  940.297200][T15442]  ? __nla_validate+0x50/0x50
[  940.301905][T15442]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  940.308254][T15442]  ? __nla_parse+0x40/0x50
[  940.312694][T15442]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  940.319061][T15442]  genl_family_rcv_msg_doit+0x209/0x2f0
[  940.324643][T15442]  ? genl_family_rcv_msg_dumpit+0x2c0/0x2c0
[  940.330579][T15442]  ? bpf_lsm_capable+0x9/0x10
[  940.335289][T15442]  ? security_capable+0x89/0xb0
[  940.340161][T15442]  genl_rcv_msg+0x60b/0x790
[  940.344689][T15442]  ? genl_bind+0x360/0x360
[  940.349133][T15442]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  940.355485][T15442]  ? perf_trace_lock+0xf7/0x380
[  940.360365][T15442]  netlink_rcv_skb+0x216/0x480
[  940.365166][T15442]  ? genl_bind+0x360/0x360
[  940.369618][T15442]  ? netlink_ack+0x1110/0x1110
[  940.374411][T15442]  ? __lock_acquire+0x7c80/0x7c80
[  940.379451][T15442]  ? down_read+0x1ac/0x2e0
[  940.383887][T15442]  genl_rcv+0x28/0x40
[  940.387904][T15442]  netlink_unicast+0x751/0x8d0
[  940.392699][T15442]  netlink_sendmsg+0x8c1/0xbe0
[  940.397508][T15442]  ? netlink_getsockopt+0x580/0x580
[  940.402720][T15442]  ? aa_sock_msg_perm+0x94/0x150
[  940.407670][T15442]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  940.412969][T15442]  ? security_socket_sendmsg+0x80/0xa0
[  940.418462][T15442]  ? netlink_getsockopt+0x580/0x580
[  940.423729][T15442]  ____sys_sendmsg+0x5bf/0x950
[  940.428534][T15442]  ? __asan_memset+0x22/0x40
[  940.433168][T15442]  ? __sys_sendmsg_sock+0x30/0x30
[  940.438239][T15442]  ? __import_iovec+0x5f2/0x860
[  940.443153][T15442]  ? import_iovec+0x73/0xa0
[  940.447685][T15442]  ___sys_sendmsg+0x220/0x290
[  940.452396][T15442]  ? __sys_sendmsg+0x270/0x270
[  940.457246][T15442]  __se_sys_sendmsg+0x1a5/0x270
[  940.462124][T15442]  ? perf_trace_preemptirq_template+0x281/0x340
[  940.468396][T15442]  ? __x64_sys_sendmsg+0x80/0x80
[  940.473373][T15442]  ? lockdep_hardirqs_on+0x98/0x150
[  940.478600][T15442]  do_syscall_64+0x55/0xb0
[  940.483031][T15442]  ? clear_bhb_loop+0x40/0x90
[  940.487727][T15442]  ? clear_bhb_loop+0x40/0x90
[  940.492421][T15442]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  940.498430][T15442] RIP: 0033:0x7fd13db8f749
[  940.502963][T15442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  940.522584][T15442] RSP: 002b:00007fd13e9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  940.531041][T15442] RAX: ffffffffffffffda RBX: 00007fd13dde5fa0 RCX: 00007fd13db8f749
[  940.539019][T15442] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  940.547008][T15442] RBP: 00007fd13dc13f91 R08: 0000000000000000 R09: 0000000000000000
[  940.554991][T15442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  940.562973][T15442] R13: 00007fd13dde6038 R14: 00007fd13dde5fa0 R15: 00007ffd85231938
[  940.570986][T15442]  </TASK>
[  940.796398][T15453] netlink: 'syz.3.3061': attribute type 1 has an invalid length.
[  940.831753][T15453] netlink: 5 bytes leftover after parsing attributes in process `syz.3.3061'.
[  944.994262][T15489] netlink: 'syz.4.3070': attribute type 21 has an invalid length.
[  945.012937][T15491] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3071'.
[  945.025694][T15489] netlink: 'syz.4.3070': attribute type 1 has an invalid length.
[  945.039382][T15489] FAULT_INJECTION: forcing a failure.
[  945.039382][T15489] name failslab, interval 1, probability 0, space 0, times 0
[  945.053718][T15489] CPU: 1 PID: 15489 Comm: syz.4.3070 Not tainted syzkaller #0
[  945.061243][T15489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  945.071333][T15489] Call Trace:
[  945.074638][T15489]  <TASK>
[  945.077607][T15489]  dump_stack_lvl+0x16c/0x230
[  945.082421][T15489]  ? show_regs_print_info+0x20/0x20
[  945.087674][T15489]  ? load_image+0x3b0/0x3b0
[  945.092217][T15489]  ? __lock_acquire+0x7c80/0x7c80
[  945.097281][T15489]  should_fail_ex+0x39d/0x4d0
[  945.101997][T15489]  should_failslab+0x9/0x20
[  945.106535][T15489]  slab_pre_alloc_hook+0x59/0x310
[  945.111606][T15489]  kmem_cache_alloc+0x5a/0x2e0
[  945.116404][T15489]  ? fib_table_insert+0x4a8/0x1b50
[  945.121568][T15489]  fib_table_insert+0x4a8/0x1b50
[  945.126569][T15489]  ? fib_trie_table+0x138/0x1c0
[  945.131463][T15489]  inet_rtm_newroute+0x127/0x200
[  945.136450][T15489]  ? rcu_read_unlock+0xa0/0xa0
[  945.141290][T15489]  ? rcu_read_unlock+0xa0/0xa0
[  945.146106][T15489]  rtnetlink_rcv_msg+0x7c7/0xf10
[  945.151080][T15489]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  945.156222][T15489]  ? lockdep_hardirqs_on+0x98/0x150
[  945.161454][T15489]  ? rtnetlink_bind+0x80/0x80
[  945.166165][T15489]  ? perf_trace_preemptirq_template+0xa4/0x340
[  945.172367][T15489]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  945.178383][T15489]  ? lock_chain_count+0x20/0x20
[  945.183261][T15489]  ? __local_bh_enable_ip+0x12e/0x1c0
[  945.188646][T15489]  ? lockdep_hardirqs_on+0x98/0x150
[  945.193897][T15489]  ? __local_bh_enable_ip+0x12e/0x1c0
[  945.199294][T15489]  ? _local_bh_enable+0xa0/0xa0
[  945.204160][T15489]  ? __dev_queue_xmit+0x245/0x35a0
[  945.209292][T15489]  ? __dev_queue_xmit+0x1449/0x35a0
[  945.214519][T15489]  ? __dev_queue_xmit+0x245/0x35a0
[  945.219647][T15489]  ? ref_tracker_free+0x634/0x7d0
[  945.224682][T15489]  ? __copy_skb_header+0xa7/0x550
[  945.229735][T15489]  netlink_rcv_skb+0x216/0x480
[  945.234517][T15489]  ? rtnetlink_bind+0x80/0x80
[  945.239197][T15489]  ? netlink_ack+0x1110/0x1110
[  945.243979][T15489]  ? __lock_acquire+0x7c80/0x7c80
[  945.249030][T15489]  ? netlink_deliver_tap+0x2e/0x1b0
[  945.254243][T15489]  netlink_unicast+0x751/0x8d0
[  945.259022][T15489]  netlink_sendmsg+0x8c1/0xbe0
[  945.263803][T15489]  ? netlink_getsockopt+0x580/0x580
[  945.269021][T15489]  ? aa_sock_msg_perm+0x94/0x150
[  945.273965][T15489]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  945.279254][T15489]  ? security_socket_sendmsg+0x80/0xa0
[  945.284718][T15489]  ? netlink_getsockopt+0x580/0x580
[  945.289934][T15489]  ____sys_sendmsg+0x5bf/0x950
[  945.294720][T15489]  ? __asan_memset+0x22/0x40
[  945.299319][T15489]  ? __sys_sendmsg_sock+0x30/0x30
[  945.304359][T15489]  ? __import_iovec+0x5f2/0x860
[  945.309232][T15489]  ? import_iovec+0x73/0xa0
[  945.313756][T15489]  ___sys_sendmsg+0x220/0x290
[  945.318451][T15489]  ? __sys_sendmsg+0x270/0x270
[  945.323261][T15489]  ? __lock_acquire+0x7c80/0x7c80
[  945.328331][T15489]  __se_sys_sendmsg+0x1a5/0x270
[  945.333221][T15489]  ? __x64_sys_sendmsg+0x80/0x80
[  945.338183][T15489]  ? lockdep_hardirqs_on+0x98/0x150
[  945.343388][T15489]  do_syscall_64+0x55/0xb0
[  945.347811][T15489]  ? clear_bhb_loop+0x40/0x90
[  945.352494][T15489]  ? clear_bhb_loop+0x40/0x90
[  945.357176][T15489]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  945.363074][T15489] RIP: 0033:0x7f987218f749
[  945.367495][T15489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  945.387102][T15489] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  945.395524][T15489] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  945.403515][T15489] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[  945.411516][T15489] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  945.419504][T15489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  945.427497][T15489] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  945.435516][T15489]  </TASK>
[  945.589594][T15491] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  946.243127][T15502] netlink: 'syz.3.3075': attribute type 27 has an invalid length.
[  949.383117][T15522] FAULT_INJECTION: forcing a failure.
[  949.383117][T15522] name failslab, interval 1, probability 0, space 0, times 0
[  949.412168][T15522] CPU: 1 PID: 15522 Comm: syz.4.3085 Not tainted syzkaller #0
[  949.419714][T15522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  949.429829][T15522] Call Trace:
[  949.433175][T15522]  <TASK>
[  949.436161][T15522]  dump_stack_lvl+0x16c/0x230
[  949.440913][T15522]  ? show_regs_print_info+0x20/0x20
[  949.446172][T15522]  ? load_image+0x3b0/0x3b0
[  949.450736][T15522]  ? __might_sleep+0xe0/0xe0
[  949.455386][T15522]  ? __lock_acquire+0x7c80/0x7c80
[  949.460482][T15522]  should_fail_ex+0x39d/0x4d0
[  949.465245][T15522]  should_failslab+0x9/0x20
[  949.469816][T15522]  slab_pre_alloc_hook+0x59/0x310
[  949.474917][T15522]  kmem_cache_alloc_node+0x60/0x330
[  949.480173][T15522]  ? __alloc_skb+0x108/0x2c0
[  949.484827][T15522]  __alloc_skb+0x108/0x2c0
[  949.489308][T15522]  alloc_skb_with_frags+0xca/0x7c0
[  949.494464][T15522]  ? release_sock+0x2f/0x1c0
[  949.499086][T15522]  ? reacquire_held_locks+0x2ff/0x5a0
[  949.504504][T15522]  ? release_sock+0x2f/0x1c0
[  949.509130][T15522]  ? pn_socket_bind+0x3ff/0x530
[  949.514015][T15522]  ? pn_socket_bind+0x3ff/0x530
[  949.518894][T15522]  sock_alloc_send_pskb+0x857/0x990
[  949.524151][T15522]  ? sock_kzfree_s+0x50/0x50
[  949.528774][T15522]  ? lock_chain_count+0x20/0x20
[  949.533647][T15522]  ? pn_socket_bind+0x3ff/0x530
[  949.538534][T15522]  ? __local_bh_enable_ip+0x12e/0x1c0
[  949.543948][T15522]  ? lockdep_hardirqs_on+0x98/0x150
[  949.549179][T15522]  pn_sendmsg+0x1b1/0x400
[  949.553544][T15522]  ? pn_init+0x40/0x40
[  949.557639][T15522]  ? pn_socket_bind+0x3ff/0x530
[  949.562518][T15522]  ? pn_socket_bind+0x3ff/0x530
[  949.567411][T15522]  pn_socket_sendmsg+0x1bd/0x220
[  949.572392][T15522]  ? pn_socket_ioctl+0x350/0x350
[  949.577378][T15522]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  949.582697][T15522]  ? security_socket_sendmsg+0x80/0xa0
[  949.588180][T15522]  ? pn_socket_ioctl+0x350/0x350
[  949.593146][T15522]  ____sys_sendmsg+0x5bf/0x950
[  949.597952][T15522]  ? __asan_memset+0x22/0x40
[  949.602576][T15522]  ? __sys_sendmsg_sock+0x30/0x30
[  949.607629][T15522]  ? __import_iovec+0x3fa/0x860
[  949.612549][T15522]  ? import_iovec+0x73/0xa0
[  949.617093][T15522]  ___sys_sendmsg+0x220/0x290
[  949.621814][T15522]  ? __sys_sendmsg+0x270/0x270
[  949.626647][T15522]  ? __lock_acquire+0x7c80/0x7c80
[  949.631736][T15522]  __se_sys_sendmsg+0x1a5/0x270
[  949.636619][T15522]  ? __x64_sys_sendmsg+0x80/0x80
[  949.641619][T15522]  ? lockdep_hardirqs_on+0x98/0x150
[  949.646844][T15522]  do_syscall_64+0x55/0xb0
[  949.651291][T15522]  ? clear_bhb_loop+0x40/0x90
[  949.655996][T15522]  ? clear_bhb_loop+0x40/0x90
[  949.660697][T15522]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  949.666650][T15522] RIP: 0033:0x7f987218f749
[  949.671103][T15522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  949.690733][T15522] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  949.699179][T15522] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  949.707177][T15522] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000004
[  949.715171][T15522] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  949.723161][T15522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  949.731150][T15522] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  949.739169][T15522]  </TASK>
[  949.965728][T15532] syz.3.3086[15532] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  949.965888][T15532] syz.3.3086[15532] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  950.430466][T15532] netlink: 'syz.3.3086': attribute type 10 has an invalid length.
[  950.474695][T15532] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3086'.
[  950.513528][T15532] bond0: (slave team0): Releasing backup interface
[  950.540121][T15532] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  954.295178][T15576] netlink: 'syz.2.3103': attribute type 2 has an invalid length.
[  954.304238][T15576] netlink: 'syz.2.3103': attribute type 8 has an invalid length.
[  954.318590][T15576] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3103'.
[  958.968666][T15630] netlink: 'syz.2.3122': attribute type 39 has an invalid length.
[  962.639010][T15663] netlink: 'syz.3.3133': attribute type 33 has an invalid length.
[  962.688874][T15663] netlink: 'syz.3.3133': attribute type 3 has an invalid length.
[  962.706148][T15663] netlink: 153952 bytes leftover after parsing attributes in process `syz.3.3133'.
[  962.747975][T15669] netlink: 'syz.4.3135': attribute type 2 has an invalid length.
[  962.760742][T15669] netlink: 'syz.4.3135': attribute type 8 has an invalid length.
[  962.769737][T15669] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3135'.
[  963.572796][T15680] netlink: 'syz.5.3139': attribute type 39 has an invalid length.
[  966.648977][T15699] netlink: 'syz.2.3147': attribute type 33 has an invalid length.
[  966.671782][T15699] netlink: 'syz.2.3147': attribute type 3 has an invalid length.
[  966.679890][T15699] netlink: 153952 bytes leftover after parsing attributes in process `syz.2.3147'.
[  967.470813][T15725] netlink: 'syz.3.3154': attribute type 39 has an invalid length.
[  968.148347][T15742] netlink: 'syz.4.3163': attribute type 33 has an invalid length.
[  968.158897][T15742] netlink: 'syz.4.3163': attribute type 3 has an invalid length.
[  968.169369][T15742] netlink: 153952 bytes leftover after parsing attributes in process `syz.4.3163'.
[  968.606423][T15759] netlink: 'syz.2.3169': attribute type 1 has an invalid length.
[  968.615175][T15759] netlink: 'syz.2.3169': attribute type 2 has an invalid length.
[  968.623432][T15759] netlink: 'syz.2.3169': attribute type 2 has an invalid length.
[  968.650166][T15759] netlink: 'syz.2.3169': attribute type 3 has an invalid length.
[  968.672616][T15759] netlink: 'syz.2.3169': attribute type 4 has an invalid length.
[  968.691461][T15759] netlink: 126304 bytes leftover after parsing attributes in process `syz.2.3169'.
[  970.464962][T15805] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.3186'.
[  970.501675][T15805] lo: entered promiscuous mode
[  970.511717][T15805] lo: left allmulticast mode
[  971.236779][T15822] FAULT_INJECTION: forcing a failure.
[  971.236779][T15822] name failslab, interval 1, probability 0, space 0, times 0
[  971.261756][T15822] CPU: 1 PID: 15822 Comm: syz.3.3193 Not tainted syzkaller #0
[  971.269273][T15822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  971.279403][T15822] Call Trace:
[  971.282714][T15822]  <TASK>
[  971.285689][T15822]  dump_stack_lvl+0x16c/0x230
[  971.290411][T15822]  ? show_regs_print_info+0x20/0x20
[  971.295641][T15822]  ? load_image+0x3b0/0x3b0
[  971.300175][T15822]  ? perf_trace_preemptirq_template+0xa4/0x340
[  971.306384][T15822]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  971.312423][T15822]  should_fail_ex+0x39d/0x4d0
[  971.317155][T15822]  should_failslab+0x9/0x20
[  971.321710][T15822]  slab_pre_alloc_hook+0x59/0x310
[  971.326784][T15822]  ? lockdep_hardirqs_on+0x98/0x150
[  971.332047][T15822]  kmem_cache_alloc+0x5a/0x2e0
[  971.336835][T15822]  ? skb_clone+0x1eb/0x370
[  971.341358][T15822]  skb_clone+0x1eb/0x370
[  971.345635][T15822]  __netlink_deliver_tap+0x41c/0x830
[  971.350944][T15822]  ? netlink_deliver_tap+0x2e/0x1b0
[  971.356164][T15822]  netlink_deliver_tap+0x19c/0x1b0
[  971.361289][T15822]  netlink_unicast+0x72c/0x8d0
[  971.366087][T15822]  netlink_sendmsg+0x8c1/0xbe0
[  971.370883][T15822]  ? netlink_getsockopt+0x580/0x580
[  971.376103][T15822]  ? aa_sock_msg_perm+0x94/0x150
[  971.381054][T15822]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  971.386368][T15822]  ? security_socket_sendmsg+0x80/0xa0
[  971.391837][T15822]  ? netlink_getsockopt+0x580/0x580
[  971.397050][T15822]  ____sys_sendmsg+0x5bf/0x950
[  971.401836][T15822]  ? __asan_memset+0x22/0x40
[  971.406460][T15822]  ? __sys_sendmsg_sock+0x30/0x30
[  971.411527][T15822]  ? __import_iovec+0x5f2/0x860
[  971.416534][T15822]  ? import_iovec+0x73/0xa0
[  971.421087][T15822]  ___sys_sendmsg+0x220/0x290
[  971.425790][T15822]  ? __sys_sendmsg+0x270/0x270
[  971.430601][T15822]  ? __lock_acquire+0x7c80/0x7c80
[  971.435674][T15822]  __se_sys_sendmsg+0x1a5/0x270
[  971.440556][T15822]  ? __x64_sys_sendmsg+0x80/0x80
[  971.445543][T15822]  ? lockdep_hardirqs_on+0x98/0x150
[  971.450756][T15822]  do_syscall_64+0x55/0xb0
[  971.455182][T15822]  ? clear_bhb_loop+0x40/0x90
[  971.459866][T15822]  ? clear_bhb_loop+0x40/0x90
[  971.464570][T15822]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  971.470473][T15822] RIP: 0033:0x7f22ea18f749
[  971.474895][T15822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  971.494515][T15822] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  971.503032][T15822] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[  971.511010][T15822] RDX: 00000000200000c0 RSI: 0000200000000000 RDI: 0000000000000005
[  971.518998][T15822] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[  971.527071][T15822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  971.535056][T15822] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[  971.543055][T15822]  </TASK>
[  971.656825][T15827] validate_nla: 7 callbacks suppressed
[  971.656842][T15827] netlink: 'syz.3.3195': attribute type 21 has an invalid length.
[  971.675630][T15827] netlink: 'syz.3.3195': attribute type 6 has an invalid length.
[  971.684019][T15827] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3195'.
[  971.799785][T15831] FAULT_INJECTION: forcing a failure.
[  971.799785][T15831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  971.820977][T15831] CPU: 0 PID: 15831 Comm: syz.4.3198 Not tainted syzkaller #0
[  971.828544][T15831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  971.838633][T15831] Call Trace:
[  971.841933][T15831]  <TASK>
[  971.844879][T15831]  dump_stack_lvl+0x16c/0x230
[  971.849592][T15831]  ? show_regs_print_info+0x20/0x20
[  971.854833][T15831]  ? load_image+0x3b0/0x3b0
[  971.859378][T15831]  ? __might_fault+0xaa/0x120
[  971.864079][T15831]  ? __lock_acquire+0x7c80/0x7c80
[  971.869138][T15831]  should_fail_ex+0x39d/0x4d0
[  971.873862][T15831]  _copy_from_iter+0x1d3/0x1290
[  971.878806][T15831]  ? rep_movs_alternative+0x4a/0x90
[  971.884046][T15831]  ? _copy_from_iter+0x248/0x1290
[  971.889112][T15831]  ? __virt_addr_valid+0x18c/0x540
[  971.894260][T15831]  ? __lock_acquire+0x7c80/0x7c80
[  971.899334][T15831]  ? copyout_mc+0x70/0x70
[  971.903706][T15831]  ? copyout_mc+0x70/0x70
[  971.908071][T15831]  ? __virt_addr_valid+0x18c/0x540
[  971.913221][T15831]  ? page_copy_sane+0x16a/0x270
[  971.918110][T15831]  copy_page_from_iter+0x7b/0x100
[  971.923175][T15831]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  971.929033][T15831]  tun_get_user+0x1583/0x3bf0
[  971.933774][T15831]  ? trace_event_raw_event_lock+0x230/0x230
[  971.939697][T15831]  ? aa_file_perm+0x120/0xec0
[  971.944389][T15831]  ? aa_file_perm+0x3e8/0xec0
[  971.949072][T15831]  ? rcu_read_unlock+0xa0/0xa0
[  971.953857][T15831]  ? tun_get+0x1c/0x2e0
[  971.958044][T15831]  ? __lock_acquire+0x7c80/0x7c80
[  971.963074][T15831]  ? tun_get+0x1c/0x2e0
[  971.967244][T15831]  tun_chr_write_iter+0x119/0x200
[  971.972297][T15831]  vfs_write+0x43b/0x940
[  971.976553][T15831]  ? file_end_write+0x250/0x250
[  971.981436][T15831]  ? __fget_files+0x44a/0x4d0
[  971.986140][T15831]  ? __fdget_pos+0x1d8/0x330
[  971.990769][T15831]  ? ksys_write+0x75/0x250
[  971.995233][T15831]  ksys_write+0x147/0x250
[  971.999604][T15831]  ? __ia32_sys_read+0x90/0x90
[  972.004406][T15831]  ? lockdep_hardirqs_on+0x98/0x150
[  972.009635][T15831]  do_syscall_64+0x55/0xb0
[  972.014060][T15831]  ? clear_bhb_loop+0x40/0x90
[  972.018746][T15831]  ? clear_bhb_loop+0x40/0x90
[  972.023430][T15831]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  972.029349][T15831] RIP: 0033:0x7f987218f749
[  972.033784][T15831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  972.053396][T15831] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  972.061808][T15831] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[  972.069777][T15831] RDX: 000000000000fdef RSI: 0000200000000300 RDI: 00000000000000c8
[  972.077749][T15831] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[  972.085729][T15831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  972.093711][T15831] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[  972.101703][T15831]  </TASK>
[  972.175788][T15839] IPv6: Can't replace route, no match found
[  972.253478][T15838] mac80211_hwsim hwsim28 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  972.280671][T15838] netlink: 'syz.3.3200': attribute type 10 has an invalid length.
[  972.337678][T15838] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  975.483748][T15858] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.3207'.
[  975.519501][T15858] lo: entered allmulticast mode
[  975.616787][T15858] lo: entered promiscuous mode
[  975.638884][T15858] lo: left allmulticast mode
[  975.962456][T15872] netlink: 'syz.2.3214': attribute type 7 has an invalid length.
[  976.480162][T15885] netlink: 'syz.3.3216': attribute type 10 has an invalid length.
[  976.580163][T15888] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.3216'.
[  976.602367][T15885] 8021q: adding VLAN 0 to HW filter on device team0
[  976.660295][T15885] bond0: (slave team0): Enslaving as an active interface with an up link
[  976.718427][T15888] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.3216'.
[  976.758001][T15877] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.3216'.
[  976.777786][T15889] netlink: 4083 bytes leftover after parsing attributes in process `syz.3.3216'.
[  979.313472][T15897] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.3223'.
[  979.622707][T15907] IPv6: Can't replace route, no match found
[  979.665328][T15907] mac80211_hwsim hwsim16 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  979.680191][T15910] netlink: 'syz.3.3228': attribute type 10 has an invalid length.
[  979.708839][T15910] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3228'.
[  979.721684][T15910] veth0_vlan: entered allmulticast mode
[  979.737019][T15910] bridge0: port 4(veth0_vlan) entered blocking state
[  979.745244][T15910] bridge0: port 4(veth0_vlan) entered disabled state
[  979.781751][T15910] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  979.806032][T15907] netlink: 'syz.2.3227': attribute type 10 has an invalid length.
[  979.855573][T15905] netlink: 'syz.5.3226': attribute type 27 has an invalid length.
[  983.302821][T15935] netlink: 'syz.2.3241': attribute type 10 has an invalid length.
[  983.310935][T15935] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3241'.
[  983.346023][T15935] veth0_vlan: left promiscuous mode
[  983.358591][T15935] veth0_vlan: entered promiscuous mode
[  983.400502][T15940] netlink: 209844 bytes leftover after parsing attributes in process `syz.5.3242'.
[  983.429762][T15935] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  987.037990][T15973] netlink: 'syz.4.3255': attribute type 10 has an invalid length.
[  987.087286][T15973] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3255'.
[  987.112031][T15973] veth0_vlan: entered allmulticast mode
[  987.169137][T15973] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  987.220365][T15979] delete_channel: no stack
[  990.855567][T16006] FAULT_INJECTION: forcing a failure.
[  990.855567][T16006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  990.869585][T16006] CPU: 1 PID: 16006 Comm: syz.5.3267 Not tainted syzkaller #0
[  990.877081][T16006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  990.887165][T16006] Call Trace:
[  990.890477][T16006]  <TASK>
[  990.893434][T16006]  dump_stack_lvl+0x16c/0x230
[  990.898149][T16006]  ? show_regs_print_info+0x20/0x20
[  990.903391][T16006]  ? load_image+0x3b0/0x3b0
[  990.907935][T16006]  ? __lock_acquire+0x7c80/0x7c80
[  990.912987][T16006]  ? snprintf+0xdb/0x120
[  990.917269][T16006]  should_fail_ex+0x39d/0x4d0
[  990.921993][T16006]  _copy_to_user+0x2f/0xa0
[  990.926443][T16006]  simple_read_from_buffer+0xe7/0x150
[  990.931897][T16006]  proc_fail_nth_read+0x1e3/0x250
[  990.936959][T16006]  ? proc_fault_inject_write+0x340/0x340
[  990.942627][T16006]  ? fsnotify_perm+0x271/0x5e0
[  990.947444][T16006]  ? proc_fault_inject_write+0x340/0x340
[  990.953119][T16006]  vfs_read+0x27e/0x920
[  990.957314][T16006]  ? kernel_read+0x1e0/0x1e0
[  990.961931][T16006]  ? __fget_files+0x28/0x4d0
[  990.966545][T16006]  ? __fget_files+0x44a/0x4d0
[  990.971295][T16006]  ? __fdget_pos+0x2a3/0x330
[  990.975922][T16006]  ? ksys_read+0x75/0x250
[  990.980291][T16006]  ksys_read+0x147/0x250
[  990.984573][T16006]  ? vfs_write+0x940/0x940
[  990.989023][T16006]  ? lockdep_hardirqs_on+0x98/0x150
[  990.994246][T16006]  do_syscall_64+0x55/0xb0
[  990.998708][T16006]  ? clear_bhb_loop+0x40/0x90
[  991.003449][T16006]  ? clear_bhb_loop+0x40/0x90
[  991.008150][T16006]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  991.014066][T16006] RIP: 0033:0x7f991a98e15c
[  991.018503][T16006] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  991.038138][T16006] RSP: 002b:00007f991b878030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  991.046591][T16006] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98e15c
[  991.054614][T16006] RDX: 000000000000000f RSI: 00007f991b8780a0 RDI: 0000000000000004
[  991.062610][T16006] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[  991.070604][T16006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  991.078592][T16006] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[  991.086601][T16006]  </TASK>
[  991.177385][T16010] netlink: 'syz.2.3265': attribute type 27 has an invalid length.
[  993.277430][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  993.285996][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  995.943421][T16053] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1002.358366][T16102] netlink: 'syz.5.3298': attribute type 27 has an invalid length.
[ 1002.369580][T16104] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.3299'.
[ 1010.922137][T16194] netlink: 'syz.3.3333': attribute type 27 has an invalid length.
[ 1014.301025][T16219] netlink: 'syz.4.3344': attribute type 3 has an invalid length.
[ 1014.310703][T16219] netlink: 130984 bytes leftover after parsing attributes in process `syz.4.3344'.
[ 1014.495177][T16221] netlink: 'syz.5.3345': attribute type 27 has an invalid length.
[ 1017.714528][T16240] netlink: 'syz.5.3354': attribute type 21 has an invalid length.
[ 1017.744193][T16240] netlink: 'syz.5.3354': attribute type 1 has an invalid length.
[ 1017.763644][T16240] FAULT_INJECTION: forcing a failure.
[ 1017.763644][T16240] name failslab, interval 1, probability 0, space 0, times 0
[ 1017.808290][T16240] CPU: 1 PID: 16240 Comm: syz.5.3354 Not tainted syzkaller #0
[ 1017.815846][T16240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1017.825970][T16240] Call Trace:
[ 1017.829342][T16240]  <TASK>
[ 1017.832333][T16240]  dump_stack_lvl+0x16c/0x230
[ 1017.837101][T16240]  ? show_regs_print_info+0x20/0x20
[ 1017.842381][T16240]  ? load_image+0x3b0/0x3b0
[ 1017.846970][T16240]  ? __lock_acquire+0x7c80/0x7c80
[ 1017.852104][T16240]  should_fail_ex+0x39d/0x4d0
[ 1017.856881][T16240]  should_failslab+0x9/0x20
[ 1017.861471][T16240]  slab_pre_alloc_hook+0x59/0x310
[ 1017.866602][T16240]  kmem_cache_alloc+0x5a/0x2e0
[ 1017.871436][T16240]  ? fib_insert_alias+0x13b/0x1210
[ 1017.876648][T16240]  fib_insert_alias+0x13b/0x1210
[ 1017.881684][T16240]  ? rcu_is_watching+0x15/0xb0
[ 1017.886559][T16240]  ? kmem_cache_alloc+0x14d/0x2e0
[ 1017.891668][T16240]  ? fib_table_insert+0x4a8/0x1b50
[ 1017.896889][T16240]  fib_table_insert+0x67d/0x1b50
[ 1017.901975][T16240]  ? fib_trie_table+0x138/0x1c0
[ 1017.906959][T16240]  inet_rtm_newroute+0x127/0x200
[ 1017.911999][T16240]  ? rcu_read_unlock+0xa0/0xa0
[ 1017.916953][T16240]  ? rcu_read_unlock+0xa0/0xa0
[ 1017.921832][T16240]  rtnetlink_rcv_msg+0x7c7/0xf10
[ 1017.926850][T16240]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[ 1017.932071][T16240]  ? rtnetlink_bind+0x80/0x80
[ 1017.936820][T16240]  ? perf_tp_event+0x12d7/0x13a0
[ 1017.941864][T16240]  ? perf_trace_run_bpf_submit+0x1c0/0x1c0
[ 1017.947746][T16240]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1017.953829][T16240]  ? __dev_queue_xmit+0x245/0x35a0
[ 1017.959159][T16240]  ? __dev_queue_xmit+0x245/0x35a0
[ 1017.964351][T16240]  ? __dev_queue_xmit+0x1449/0x35a0
[ 1017.969802][T16240]  ? perf_trace_run_bpf_submit+0xf4/0x1c0
[ 1017.975623][T16240]  ? perf_trace_lock+0x2ed/0x380
[ 1017.980641][T16240]  ? __copy_skb_header+0xa7/0x550
[ 1017.985792][T16240]  netlink_rcv_skb+0x216/0x480
[ 1017.990637][T16240]  ? rtnetlink_bind+0x80/0x80
[ 1017.995392][T16240]  ? netlink_ack+0x1110/0x1110
[ 1018.000295][T16240]  ? __lock_acquire+0x7c80/0x7c80
[ 1018.005434][T16240]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1018.010734][T16240]  netlink_unicast+0x751/0x8d0
[ 1018.015628][T16240]  netlink_sendmsg+0x8c1/0xbe0
[ 1018.020504][T16240]  ? netlink_getsockopt+0x580/0x580
[ 1018.025776][T16240]  ? aa_sock_msg_perm+0x94/0x150
[ 1018.030785][T16240]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1018.036104][T16240]  ? security_socket_sendmsg+0x80/0xa0
[ 1018.042378][T16240]  ? netlink_getsockopt+0x580/0x580
[ 1018.047626][T16240]  ____sys_sendmsg+0x5bf/0x950
[ 1018.052461][T16240]  ? __asan_memset+0x22/0x40
[ 1018.057087][T16240]  ? __sys_sendmsg_sock+0x30/0x30
[ 1018.062152][T16240]  ? __import_iovec+0x5f2/0x860
[ 1018.067093][T16240]  ? import_iovec+0x73/0xa0
[ 1018.071656][T16240]  ___sys_sendmsg+0x220/0x290
[ 1018.076386][T16240]  ? __sys_sendmsg+0x270/0x270
[ 1018.081292][T16240]  ? __lock_acquire+0x7c80/0x7c80
[ 1018.086437][T16240]  __se_sys_sendmsg+0x1a5/0x270
[ 1018.091346][T16240]  ? __x64_sys_sendmsg+0x80/0x80
[ 1018.096384][T16240]  ? lockdep_hardirqs_on+0x98/0x150
[ 1018.101635][T16240]  do_syscall_64+0x55/0xb0
[ 1018.106077][T16240]  ? clear_bhb_loop+0x40/0x90
[ 1018.110782][T16240]  ? clear_bhb_loop+0x40/0x90
[ 1018.115504][T16240]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1018.121447][T16240] RIP: 0033:0x7f991a98f749
[ 1018.125903][T16240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1018.145556][T16240] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1018.154019][T16240] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[ 1018.162036][T16240] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000004
[ 1018.170078][T16240] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[ 1018.178085][T16240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1018.186091][T16240] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[ 1018.194177][T16240]  </TASK>
[ 1018.492276][T16252] netlink: 'syz.2.3357': attribute type 27 has an invalid length.
[ 1018.536695][T16258] FAULT_INJECTION: forcing a failure.
[ 1018.536695][T16258] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1018.588630][T16258] CPU: 1 PID: 16258 Comm: syz.3.3359 Not tainted syzkaller #0
[ 1018.596144][T16258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1018.606201][T16258] Call Trace:
[ 1018.609481][T16258]  <TASK>
[ 1018.612412][T16258]  dump_stack_lvl+0x16c/0x230
[ 1018.617109][T16258]  ? show_regs_print_info+0x20/0x20
[ 1018.622332][T16258]  ? load_image+0x3b0/0x3b0
[ 1018.626849][T16258]  ? __lock_acquire+0x7c80/0x7c80
[ 1018.631888][T16258]  ? snprintf+0xdb/0x120
[ 1018.636137][T16258]  should_fail_ex+0x39d/0x4d0
[ 1018.640826][T16258]  _copy_to_user+0x2f/0xa0
[ 1018.645266][T16258]  simple_read_from_buffer+0xe7/0x150
[ 1018.650659][T16258]  proc_fail_nth_read+0x1e3/0x250
[ 1018.655700][T16258]  ? proc_fault_inject_write+0x340/0x340
[ 1018.661350][T16258]  ? fsnotify_perm+0x271/0x5e0
[ 1018.666125][T16258]  ? proc_fault_inject_write+0x340/0x340
[ 1018.671759][T16258]  vfs_read+0x27e/0x920
[ 1018.675924][T16258]  ? kernel_read+0x1e0/0x1e0
[ 1018.680632][T16258]  ? __fget_files+0x28/0x4d0
[ 1018.685232][T16258]  ? __fget_files+0x44a/0x4d0
[ 1018.689916][T16258]  ? __fdget_pos+0x2a3/0x330
[ 1018.694517][T16258]  ? ksys_read+0x75/0x250
[ 1018.698859][T16258]  ksys_read+0x147/0x250
[ 1018.703118][T16258]  ? vfs_write+0x940/0x940
[ 1018.707557][T16258]  ? lockdep_hardirqs_on+0x98/0x150
[ 1018.712769][T16258]  do_syscall_64+0x55/0xb0
[ 1018.717190][T16258]  ? clear_bhb_loop+0x40/0x90
[ 1018.721874][T16258]  ? clear_bhb_loop+0x40/0x90
[ 1018.726564][T16258]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1018.732487][T16258] RIP: 0033:0x7f22ea18e15c
[ 1018.736906][T16258] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1018.756519][T16258] RSP: 002b:00007f22eafad030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1018.764949][T16258] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18e15c
[ 1018.772924][T16258] RDX: 000000000000000f RSI: 00007f22eafad0a0 RDI: 0000000000000006
[ 1018.780905][T16258] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[ 1018.788885][T16258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1018.796877][T16258] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[ 1018.804875][T16258]  </TASK>
[ 1022.386277][T16280] netlink: 16098 bytes leftover after parsing attributes in process `syz.5.3371'.
[ 1022.415136][T16278] netlink: 'syz.3.3369': attribute type 27 has an invalid length.
[ 1022.510788][T16283] netlink: 'syz.4.3370': attribute type 27 has an invalid length.
[ 1023.007617][T16306] netlink: 'syz.3.3382': attribute type 28 has an invalid length.
[ 1023.029100][T16306] netlink: 'syz.3.3382': attribute type 3 has an invalid length.
[ 1023.054241][T16306] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3382'.
[ 1026.016470][T16319] netlink: 'syz.2.3383': attribute type 27 has an invalid length.
[ 1026.640863][T16345] syzkaller0: entered promiscuous mode
[ 1026.649584][T16345] syzkaller0: entered allmulticast mode
[ 1033.284483][T16378] FAULT_INJECTION: forcing a failure.
[ 1033.284483][T16378] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.330232][T16378] CPU: 1 PID: 16378 Comm: syz.5.3406 Not tainted syzkaller #0
[ 1033.337752][T16378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1033.347835][T16378] Call Trace:
[ 1033.351140][T16378]  <TASK>
[ 1033.354098][T16378]  dump_stack_lvl+0x16c/0x230
[ 1033.358822][T16378]  ? show_regs_print_info+0x20/0x20
[ 1033.364138][T16378]  ? load_image+0x3b0/0x3b0
[ 1033.368670][T16378]  ? __might_sleep+0xe0/0xe0
[ 1033.373302][T16378]  ? __lock_acquire+0x7c80/0x7c80
[ 1033.378346][T16378]  ? mark_lock+0x94/0x320
[ 1033.382709][T16378]  should_fail_ex+0x39d/0x4d0
[ 1033.387435][T16378]  should_failslab+0x9/0x20
[ 1033.391974][T16378]  slab_pre_alloc_hook+0x59/0x310
[ 1033.397036][T16378]  ? __get_vm_area_node+0x125/0x370
[ 1033.402278][T16378]  __kmem_cache_alloc_node+0x53/0x260
[ 1033.407684][T16378]  ? __get_vm_area_node+0x125/0x370
[ 1033.412917][T16378]  kmalloc_node_trace+0x26/0xe0
[ 1033.417887][T16378]  __get_vm_area_node+0x125/0x370
[ 1033.422948][T16378]  __vmalloc_node_range+0x36e/0x1320
[ 1033.428267][T16378]  ? bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.433855][T16378]  ? mark_lock+0x94/0x320
[ 1033.438217][T16378]  ? __lock_acquire+0x1334/0x7c80
[ 1033.443272][T16378]  ? verify_lock_unused+0x140/0x140
[ 1033.448508][T16378]  ? free_vm_area+0x50/0x50
[ 1033.453072][T16378]  ? end_current_label_crit_section+0x170/0x170
[ 1033.459343][T16378]  ? mark_lock+0x94/0x320
[ 1033.463706][T16378]  ? bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.469275][T16378]  __vmalloc+0x7a/0x90
[ 1033.473378][T16378]  ? bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.478963][T16378]  bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.484372][T16378]  ? bpf_prog_alloc+0x2b/0x1b0
[ 1033.489169][T16378]  bpf_prog_alloc+0x3d/0x1b0
[ 1033.493919][T16378]  bpf_prog_load+0x6b8/0x16d0
[ 1033.498650][T16378]  ? map_freeze+0x420/0x420
[ 1033.503177][T16378]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1033.509353][T16378]  ? lockdep_hardirqs_on+0x98/0x150
[ 1033.514581][T16378]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1033.520782][T16378]  ? bpf_lsm_audit_rule_free+0x10/0x10
[ 1033.526280][T16378]  ? bpf_lsm_bpf+0x9/0x10
[ 1033.530647][T16378]  ? security_bpf+0x7e/0xa0
[ 1033.535208][T16378]  __sys_bpf+0x55a/0x800
[ 1033.539485][T16378]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1033.544916][T16378]  ? lock_chain_count+0x20/0x20
[ 1033.549826][T16378]  __x64_sys_bpf+0x7c/0x90
[ 1033.554271][T16378]  do_syscall_64+0x55/0xb0
[ 1033.558731][T16378]  ? clear_bhb_loop+0x40/0x90
[ 1033.563431][T16378]  ? clear_bhb_loop+0x40/0x90
[ 1033.568138][T16378]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1033.574064][T16378] RIP: 0033:0x7f991a98f749
[ 1033.578508][T16378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1033.598160][T16378] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1033.606621][T16378] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[ 1033.614712][T16378] RDX: 0000000000000048 RSI: 0000200000000200 RDI: 0000000000000005
[ 1033.622707][T16378] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[ 1033.630701][T16378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1033.638709][T16378] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[ 1033.646747][T16378]  </TASK>
[ 1033.735547][T16378] syz.5.3406: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz5,mems_allowed=0-1
[ 1033.773075][T16378] CPU: 1 PID: 16378 Comm: syz.5.3406 Not tainted syzkaller #0
[ 1033.780607][T16378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1033.790706][T16378] Call Trace:
[ 1033.794021][T16378]  <TASK>
[ 1033.796980][T16378]  dump_stack_lvl+0x16c/0x230
[ 1033.801713][T16378]  ? show_regs_print_info+0x20/0x20
[ 1033.806946][T16378]  ? load_image+0x3b0/0x3b0
[ 1033.811488][T16378]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1033.817944][T16378]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 1033.824505][T16378]  warn_alloc+0x210/0x300
[ 1033.828891][T16378]  ? zone_watermark_ok_safe+0x230/0x230
[ 1033.834484][T16378]  ? __get_vm_area_node+0x356/0x370
[ 1033.839756][T16378]  __vmalloc_node_range+0x393/0x1320
[ 1033.845080][T16378]  ? mark_lock+0x94/0x320
[ 1033.849449][T16378]  ? __lock_acquire+0x1334/0x7c80
[ 1033.854510][T16378]  ? verify_lock_unused+0x140/0x140
[ 1033.859760][T16378]  ? free_vm_area+0x50/0x50
[ 1033.864304][T16378]  ? end_current_label_crit_section+0x170/0x170
[ 1033.870580][T16378]  ? mark_lock+0x94/0x320
[ 1033.874944][T16378]  ? bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.880522][T16378]  __vmalloc+0x7a/0x90
[ 1033.884640][T16378]  ? bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.890220][T16378]  bpf_prog_alloc_no_stats+0x47/0x440
[ 1033.895632][T16378]  ? bpf_prog_alloc+0x2b/0x1b0
[ 1033.900432][T16378]  bpf_prog_alloc+0x3d/0x1b0
[ 1033.905057][T16378]  bpf_prog_load+0x6b8/0x16d0
[ 1033.909777][T16378]  ? map_freeze+0x420/0x420
[ 1033.914310][T16378]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1033.920509][T16378]  ? lockdep_hardirqs_on+0x98/0x150
[ 1033.925742][T16378]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1033.931936][T16378]  ? bpf_lsm_audit_rule_free+0x10/0x10
[ 1033.937432][T16378]  ? bpf_lsm_bpf+0x9/0x10
[ 1033.941792][T16378]  ? security_bpf+0x7e/0xa0
[ 1033.946324][T16378]  __sys_bpf+0x55a/0x800
[ 1033.950610][T16378]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1033.956026][T16378]  ? lock_chain_count+0x20/0x20
[ 1033.960923][T16378]  __x64_sys_bpf+0x7c/0x90
[ 1033.965377][T16378]  do_syscall_64+0x55/0xb0
[ 1033.969826][T16378]  ? clear_bhb_loop+0x40/0x90
[ 1033.974530][T16378]  ? clear_bhb_loop+0x40/0x90
[ 1033.979235][T16378]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1033.985151][T16378] RIP: 0033:0x7f991a98f749
[ 1033.989588][T16378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1034.009264][T16378] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1034.017721][T16378] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[ 1034.025716][T16378] RDX: 0000000000000048 RSI: 0000200000000200 RDI: 0000000000000005
[ 1034.033726][T16378] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[ 1034.041726][T16378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1034.049816][T16378] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[ 1034.057840][T16378]  </TASK>
[ 1034.124187][T16378] Mem-Info:
[ 1034.127351][T16378] active_anon:6115 inactive_anon:0 isolated_anon:0
[ 1034.127351][T16378]  active_file:19475 inactive_file:40231 isolated_file:0
[ 1034.127351][T16378]  unevictable:768 dirty:123 writeback:0
[ 1034.127351][T16378]  slab_reclaimable:10462 slab_unreclaimable:96732
[ 1034.127351][T16378]  mapped:25026 shmem:1385 pagetables:648
[ 1034.127351][T16378]  sec_pagetables:0 bounce:0
[ 1034.127351][T16378]  kernel_misc_reclaimable:0
[ 1034.127351][T16378]  free:1335010 free_pcp:12130 free_cma:0
[ 1034.177570][T16378] Node 0 active_anon:24476kB inactive_anon:0kB active_file:77900kB inactive_file:160724kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100116kB dirty:500kB writeback:0kB shmem:4004kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11568kB pagetables:2652kB sec_pagetables:0kB all_unreclaimable? no
[ 1034.222008][T16378] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1034.257986][T16378] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1034.289954][T16378] lowmem_reserve[]: 0 2525 2526 2526 2526
[ 1034.296148][T16378] Node 0 DMA32 free:1423560kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:24432kB inactive_anon:0kB active_file:77900kB inactive_file:159404kB unevictable:1536kB writepending:500kB present:3129332kB managed:2589600kB mlocked:0kB bounce:0kB free_pcp:37148kB local_pcp:20712kB free_cma:0kB
[ 1034.338994][T16378] lowmem_reserve[]: 0 0 1 1 1
[ 1034.346009][T16378] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1034.378322][T16378] lowmem_reserve[]: 0 0 0 0 0
[ 1034.383394][T16378] Node 1 Normal free:3901100kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:10472kB local_pcp:4384kB free_cma:0kB
[ 1034.417742][T16378] lowmem_reserve[]: 0 0 0 0 0
[ 1034.422839][T16378] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1034.446656][T16378] Node 0 DMA32: 624*4kB (UME) 819*8kB (UME) 1147*16kB (UME) 1072*32kB (UME) 703*64kB (UME) 578*128kB (UME) 269*256kB (UME) 95*512kB (UM) 55*1024kB (UME) 22*2048kB (UM) 250*4096kB (UM) = 1423560kB
[ 1034.470716][T16378] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1034.487940][T16378] Node 1 Normal: 269*4kB (UME) 47*8kB (UME) 30*16kB (UME) 239*32kB (UME) 59*64kB (UME) 13*128kB (UE) 2*256kB (UE) 1*512kB (M) 0*1024kB 1*2048kB (E) 948*4096kB (M) = 3901100kB
[ 1034.510257][T16378] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1034.520262][T16378] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1034.534320][T16378] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1034.544516][T16378] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1034.565834][T16378] 61091 total pagecache pages
[ 1034.570555][T16378] 0 pages in swap cache
[ 1034.576174][T16378] Free swap  = 124996kB
[ 1034.580356][T16378] Total swap = 124996kB
[ 1034.587981][T16378] 2097051 pages RAM
[ 1034.592133][T16378] 0 pages HighMem/MovableOnly
[ 1034.596850][T16378] 416137 pages reserved
[ 1034.605512][T16378] 0 pages cma reserved
[ 1036.503881][T16393] netlink: 'syz.2.3413': attribute type 21 has an invalid length.
[ 1036.520705][T16397] FAULT_INJECTION: forcing a failure.
[ 1036.520705][T16397] name failslab, interval 1, probability 0, space 0, times 0
[ 1036.569094][T16397] CPU: 1 PID: 16397 Comm: syz.4.3414 Not tainted syzkaller #0
[ 1036.576621][T16397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1036.586722][T16397] Call Trace:
[ 1036.590026][T16397]  <TASK>
[ 1036.592983][T16397]  dump_stack_lvl+0x16c/0x230
[ 1036.597707][T16397]  ? show_regs_print_info+0x20/0x20
[ 1036.602951][T16397]  ? load_image+0x3b0/0x3b0
[ 1036.607498][T16397]  ? __might_sleep+0xe0/0xe0
[ 1036.612141][T16397]  ? __lock_acquire+0x7c80/0x7c80
[ 1036.617208][T16397]  ? __lock_acquire+0x1260/0x7c80
[ 1036.622275][T16397]  should_fail_ex+0x39d/0x4d0
[ 1036.627003][T16397]  should_failslab+0x9/0x20
[ 1036.631537][T16397]  slab_pre_alloc_hook+0x59/0x310
[ 1036.636606][T16397]  kmem_cache_alloc_node+0x60/0x330
[ 1036.641845][T16397]  ? __alloc_skb+0x108/0x2c0
[ 1036.646479][T16397]  __alloc_skb+0x108/0x2c0
[ 1036.650929][T16397]  alloc_skb_with_frags+0xca/0x7c0
[ 1036.656075][T16397]  ? __lock_acquire+0x1260/0x7c80
[ 1036.661140][T16397]  sock_alloc_send_pskb+0x857/0x990
[ 1036.666498][T16397]  ? sock_kzfree_s+0x50/0x50
[ 1036.671138][T16397]  ? dev_get_by_index+0x22/0x2d0
[ 1036.676133][T16397]  ? dev_get_by_index+0x22/0x2d0
[ 1036.681117][T16397]  packet_sendmsg+0x313f/0x4d30
[ 1036.686067][T16397]  ? __might_sleep+0xe0/0xe0
[ 1036.690689][T16397]  ? __lock_acquire+0x1260/0x7c80
[ 1036.695755][T16397]  ? verify_lock_unused+0x140/0x140
[ 1036.700997][T16397]  ? aa_sk_perm+0x7fc/0x930
[ 1036.705536][T16397]  ? packet_getsockopt+0xa20/0xa20
[ 1036.710693][T16397]  ? aa_sock_msg_perm+0x94/0x150
[ 1036.715672][T16397]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1036.720979][T16397]  ? security_socket_sendmsg+0x80/0xa0
[ 1036.726475][T16397]  ? packet_getsockopt+0xa20/0xa20
[ 1036.731618][T16397]  ____sys_sendmsg+0x5bf/0x950
[ 1036.736429][T16397]  ? __asan_memset+0x22/0x40
[ 1036.741053][T16397]  ? __sys_sendmsg_sock+0x30/0x30
[ 1036.746116][T16397]  ? __import_iovec+0x5f2/0x860
[ 1036.751016][T16397]  ? import_iovec+0x73/0xa0
[ 1036.755583][T16397]  ___sys_sendmsg+0x220/0x290
[ 1036.760296][T16397]  ? __sys_sendmsg+0x270/0x270
[ 1036.765159][T16397]  ? __lock_acquire+0x7c80/0x7c80
[ 1036.770264][T16397]  __se_sys_sendmsg+0x1a5/0x270
[ 1036.775162][T16397]  ? __x64_sys_sendmsg+0x80/0x80
[ 1036.780172][T16397]  ? lockdep_hardirqs_on+0x98/0x150
[ 1036.785485][T16397]  do_syscall_64+0x55/0xb0
[ 1036.789925][T16397]  ? clear_bhb_loop+0x40/0x90
[ 1036.794625][T16397]  ? clear_bhb_loop+0x40/0x90
[ 1036.799335][T16397]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1036.805246][T16397] RIP: 0033:0x7f987218f749
[ 1036.809689][T16397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1036.829494][T16397] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1036.837940][T16397] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[ 1036.845939][T16397] RDX: 00000000000480c0 RSI: 0000200000000200 RDI: 0000000000000003
[ 1036.853960][T16397] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[ 1036.861969][T16397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1036.869967][T16397] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[ 1036.878008][T16397]  </TASK>
[ 1037.275362][T16411] netlink: 'syz.4.3421': attribute type 2 has an invalid length.
[ 1037.335157][T16411] netlink: 'syz.4.3421': attribute type 1 has an invalid length.
[ 1037.351804][T16411] netlink: 152 bytes leftover after parsing attributes in process `syz.4.3421'.
[ 1038.425269][ T5801] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1038.434472][ T5801] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1038.442327][ T5801] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1038.451180][ T5801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1038.460327][ T5801] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1038.468689][ T5801] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1038.569385][ T8768] bond0: (slave ): Releasing backup interface
[ 1038.577961][ T8768]  (unregistering): left promiscuous mode
[ 1038.584780][ T8768]  (unregistering): left allmulticast mode
[ 1040.551510][ T5801] Bluetooth: hci1: command tx timeout
[ 1041.677936][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.811980][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.854697][T16454] sit0: entered allmulticast mode
[ 1041.998252][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1042.042647][T16454] sit0: entered promiscuous mode
[ 1042.248997][   T11] bond0: (slave netdevsim0): Releasing backup interface
[ 1042.276824][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode
[ 1042.292399][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode
[ 1042.304295][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1042.486696][T16474] netlink: 'syz.4.3445': attribute type 7 has an invalid length.
[ 1042.631986][ T5801] Bluetooth: hci1: command tx timeout
[ 1042.679880][T16431] chnl_net:caif_netlink_parms(): no params data found
[ 1043.394720][T16431] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1043.435112][T16431] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.460520][T16431] bridge_slave_0: entered allmulticast mode
[ 1043.472770][T16431] bridge_slave_0: entered promiscuous mode
[ 1043.483875][T16431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1043.491009][T16431] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.541548][T16431] bridge_slave_1: entered allmulticast mode
[ 1043.569168][T16431] bridge_slave_1: entered promiscuous mode
[ 1043.750998][T16514] netlink: 'syz.5.3454': attribute type 7 has an invalid length.
[ 1043.908795][T16431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1043.934116][T16431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1044.095931][T16431] team0: Port device team_slave_0 added
[ 1044.104830][T16431] team0: Port device team_slave_1 added
[ 1044.253291][T16431] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1044.260599][T16431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1044.290159][T16431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1044.328948][T16431] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1044.337192][T16431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1044.381456][T16431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1044.711361][ T5801] Bluetooth: hci1: command tx timeout
[ 1044.759532][T16431] hsr_slave_0: entered promiscuous mode
[ 1044.772078][T16431] hsr_slave_1: entered promiscuous mode
[ 1046.791427][ T5801] Bluetooth: hci1: command tx timeout
[ 1048.116967][   T11] bond0: (slave wlan1): Releasing backup interface
[ 1048.132333][   T11] mac80211_hwsim hwsim16 wlan1 (unregistering): left promiscuous mode
[ 1048.140581][   T11] mac80211_hwsim hwsim16 wlan1 (unregistering): left allmulticast mode
[ 1048.555809][   T11] hsr_slave_0: left promiscuous mode
[ 1048.661473][   T11] hsr_slave_1: left promiscuous mode
[ 1048.677705][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1048.693178][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1048.792169][   T11] veth0_macvtap: left promiscuous mode
[ 1048.820026][   T11] veth1_vlan: left promiscuous mode
[ 1054.718701][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.725343][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.638659][   T11] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[ 1055.647918][   T11] batadv_slave_0 (unregistering): left promiscuous mode
[ 1055.655827][   T11] batadv_slave_0 (unregistering): left allmulticast mode
[ 1055.725797][   T11] team0 (unregistering): Port device team_slave_1 removed
[ 1055.794331][   T11] team0 (unregistering): Port device C removed
[ 1055.832119][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1055.842427][   T11] bond_slave_1 (unregistering): left promiscuous mode
[ 1055.849278][   T11] bond_slave_1 (unregistering): left allmulticast mode
[ 1055.890152][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1055.900834][   T11] bond_slave_0 (unregistering): left promiscuous mode
[ 1055.907728][   T11] bond_slave_0 (unregistering): left allmulticast mode
[ 1056.107102][   T11] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1056.116361][   T11] dummy0 (unregistering): left promiscuous mode
[ 1056.123229][   T11] dummy0 (unregistering): left allmulticast mode
[ 1056.338813][   T11] bond0 (unregistering): Released all slaves
[ 1056.394406][T16595] netlink: 'syz.4.3475': attribute type 27 has an invalid length.
[ 1057.090998][T16656] netlink: 'syz.5.3490': attribute type 3 has an invalid length.
[ 1057.103965][T16656] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3490'.
[ 1057.228349][T16658] netlink: 'syz.5.3490': attribute type 7 has an invalid length.
[ 1057.250999][T16658] netlink: 'syz.5.3490': attribute type 1 has an invalid length.
[ 1057.261491][T16660] netlink: 'syz.3.3491': attribute type 39 has an invalid length.
[ 1057.270694][T16658] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.3490'.
[ 1057.704920][T16431] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1057.726617][T16431] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1057.757842][T16431] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1057.785799][T16431] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1058.013911][T16431] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1058.028471][T16678] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3496'.
[ 1058.055225][T16431] 8021q: adding VLAN 0 to HW filter on device team0
[ 1058.081049][ T1809] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1058.088250][ T1809] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1058.152251][T16678] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3496'.
[ 1058.189215][ T1809] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1058.196432][ T1809] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1058.225283][T16683] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3496'.
[ 1058.472916][T16695] netlink: 'syz.3.3501': attribute type 10 has an invalid length.
[ 1058.480865][T16695] netlink: 55 bytes leftover after parsing attributes in process `syz.3.3501'.
[ 1059.179716][T16693] lo: left promiscuous mode
[ 1059.185436][T16693] lo: entered allmulticast mode
[ 1059.558882][T16431] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1059.864327][T16431] veth0_vlan: entered promiscuous mode
[ 1059.912649][T16431] veth1_vlan: entered promiscuous mode
[ 1059.949278][T16729] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3507'.
[ 1060.034938][T16726] netlink: 'syz.4.3506': attribute type 3 has an invalid length.
[ 1060.044625][T16726] netlink: 176588 bytes leftover after parsing attributes in process `syz.4.3506'.
[ 1060.113562][T16431] veth0_macvtap: entered promiscuous mode
[ 1060.140443][T16431] veth1_macvtap: entered promiscuous mode
[ 1060.220988][T16431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1060.251656][T16431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.272819][T16431] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1060.303935][T16431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1060.331280][T16431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.341138][T16431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1060.368967][T16431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.379377][T16431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1060.390326][T16431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1060.406462][T16431] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1060.435111][T16431] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1060.444150][T16431] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1060.453511][T16431] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1060.471635][T16431] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1060.649196][T16450] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1060.679897][T16450] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1060.726191][T16450] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1060.743564][T16450] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1060.928164][T16748] netlink: 'syz.4.3515': attribute type 12 has an invalid length.
[ 1060.946040][T16748] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3515'.
[ 1061.254098][T16760] netlink: 'syz.4.3511': attribute type 10 has an invalid length.
[ 1061.280661][T16760] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3511'.
[ 1061.306850][T16760] team0: entered promiscuous mode
[ 1061.328453][T16760] C: entered promiscuous mode
[ 1061.347577][T16760] team_slave_1: entered promiscuous mode
[ 1061.373639][T16760] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[ 1061.404260][T16760] team0: entered allmulticast mode
[ 1061.416473][T16760] C: entered allmulticast mode
[ 1061.425304][T16760] team_slave_1: entered allmulticast mode
[ 1061.440815][T16760] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[ 1061.466775][T16760] bond0: (slave team0): Releasing backup interface
[ 1061.627140][T16760] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1061.951547][T16782] netlink: 'syz.2.3518': attribute type 39 has an invalid length.
[ 1062.280819][T16795] netlink: 'syz.3.3519': attribute type 27 has an invalid length.
[ 1062.313172][T16798] netlink: 'syz.2.3522': attribute type 21 has an invalid length.
[ 1062.346615][T16798] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1062.831841][T16816] FAULT_INJECTION: forcing a failure.
[ 1062.831841][T16816] name failslab, interval 1, probability 0, space 0, times 0
[ 1062.861454][T16816] CPU: 0 PID: 16816 Comm: syz.2.3526 Not tainted syzkaller #0
[ 1062.868992][T16816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1062.879088][T16816] Call Trace:
[ 1062.882423][T16816]  <TASK>
[ 1062.885399][T16816]  dump_stack_lvl+0x16c/0x230
[ 1062.890134][T16816]  ? show_regs_print_info+0x20/0x20
[ 1062.895392][T16816]  ? load_image+0x3b0/0x3b0
[ 1062.899952][T16816]  ? __might_sleep+0xe0/0xe0
[ 1062.904592][T16816]  ? __lock_acquire+0x7c80/0x7c80
[ 1062.909671][T16816]  should_fail_ex+0x39d/0x4d0
[ 1062.914417][T16816]  should_failslab+0x9/0x20
[ 1062.918969][T16816]  slab_pre_alloc_hook+0x59/0x310
[ 1062.924084][T16816]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[ 1062.929666][T16816]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[ 1062.935228][T16816]  __kmem_cache_alloc_node+0x53/0x260
[ 1062.940621][T16816]  ? __lock_acquire+0x7c80/0x7c80
[ 1062.945667][T16816]  ? bpf_prog_test_run_skb+0x22c/0x11c0
[ 1062.951233][T16816]  __kmalloc+0xa4/0x240
[ 1062.955451][T16816]  bpf_prog_test_run_skb+0x22c/0x11c0
[ 1062.960838][T16816]  ? __fget_files+0x28/0x4d0
[ 1062.965464][T16816]  ? __fget_files+0x44a/0x4d0
[ 1062.970188][T16816]  ? cpu_online+0x60/0x60
[ 1062.974539][T16816]  bpf_prog_test_run+0x321/0x390
[ 1062.979498][T16816]  __sys_bpf+0x440/0x800
[ 1062.983790][T16816]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1062.989209][T16816]  ? lock_chain_count+0x20/0x20
[ 1062.994099][T16816]  __x64_sys_bpf+0x7c/0x90
[ 1062.998531][T16816]  do_syscall_64+0x55/0xb0
[ 1063.002968][T16816]  ? clear_bhb_loop+0x40/0x90
[ 1063.007662][T16816]  ? clear_bhb_loop+0x40/0x90
[ 1063.012359][T16816]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1063.018270][T16816] RIP: 0033:0x7fc07818f749
[ 1063.022709][T16816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1063.042374][T16816] RSP: 002b:00007fc078fbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1063.050809][T16816] RAX: ffffffffffffffda RBX: 00007fc0783e5fa0 RCX: 00007fc07818f749
[ 1063.058811][T16816] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[ 1063.066791][T16816] RBP: 00007fc078fbf090 R08: 0000000000000000 R09: 0000000000000000
[ 1063.074770][T16816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1063.082757][T16816] R13: 00007fc0783e6038 R14: 00007fc0783e5fa0 R15: 00007fffea4eb3c8
[ 1063.090799][T16816]  </TASK>
[ 1063.908590][T16844] netlink: 'syz.5.3531': attribute type 39 has an invalid length.
[ 1064.010803][T16841] netlink: 'syz.3.3530': attribute type 10 has an invalid length.
[ 1064.447323][T16841] team0: Port device geneve1 added
[ 1066.849120][T16893] netlink: 'syz.2.3543': attribute type 3 has an invalid length.
[ 1066.912634][T16893] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3543'.
[ 1067.141023][T16898] netlink: 'syz.3.3544': attribute type 3 has an invalid length.
[ 1067.239232][T16898] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3544'.
[ 1067.259859][T16893] netlink: 'syz.2.3543': attribute type 7 has an invalid length.
[ 1067.299403][T16893] netlink: 'syz.2.3543': attribute type 1 has an invalid length.
[ 1067.416531][T16893] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.3543'.
[ 1067.887881][T16903] FAULT_INJECTION: forcing a failure.
[ 1067.887881][T16903] name failslab, interval 1, probability 0, space 0, times 0
[ 1067.923705][T16903] CPU: 1 PID: 16903 Comm: syz.3.3545 Not tainted syzkaller #0
[ 1067.931235][T16903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1067.941326][T16903] Call Trace:
[ 1067.944637][T16903]  <TASK>
[ 1067.947599][T16903]  dump_stack_lvl+0x16c/0x230
[ 1067.952320][T16903]  ? show_regs_print_info+0x20/0x20
[ 1067.957556][T16903]  ? load_image+0x3b0/0x3b0
[ 1067.962098][T16903]  ? __might_sleep+0xe0/0xe0
[ 1067.966723][T16903]  ? __lock_acquire+0x7c80/0x7c80
[ 1067.971788][T16903]  ? __lock_acquire+0x1260/0x7c80
[ 1067.976853][T16903]  should_fail_ex+0x39d/0x4d0
[ 1067.981583][T16903]  should_failslab+0x9/0x20
[ 1067.986118][T16903]  slab_pre_alloc_hook+0x59/0x310
[ 1067.991167][T16903]  kmem_cache_alloc_node+0x60/0x330
[ 1067.996385][T16903]  ? __alloc_skb+0x108/0x2c0
[ 1068.001073][T16903]  __alloc_skb+0x108/0x2c0
[ 1068.005532][T16903]  alloc_skb_with_frags+0xca/0x7c0
[ 1068.010672][T16903]  ? trace_event_raw_event_lock_acquire+0x2a0/0x2a0
[ 1068.017282][T16903]  ? __lock_acquire+0x1260/0x7c80
[ 1068.022321][T16903]  sock_alloc_send_pskb+0x857/0x990
[ 1068.027583][T16903]  ? sock_kzfree_s+0x50/0x50
[ 1068.032186][T16903]  ? perf_trace_lock_acquire+0xfb/0x3e0
[ 1068.037757][T16903]  ? dev_get_by_index+0x22/0x2d0
[ 1068.042704][T16903]  ? dev_get_by_index+0x22/0x2d0
[ 1068.047654][T16903]  packet_sendmsg+0x313f/0x4d30
[ 1068.052548][T16903]  ? __might_sleep+0xe0/0xe0
[ 1068.057156][T16903]  ? perf_trace_lock_acquire+0xfb/0x3e0
[ 1068.062718][T16903]  ? trace_event_raw_event_lock_acquire+0x2a0/0x2a0
[ 1068.069313][T16903]  ? perf_trace_lock_acquire+0xfb/0x3e0
[ 1068.074878][T16903]  ? aa_sk_perm+0x7fc/0x930
[ 1068.079401][T16903]  ? packet_getsockopt+0xa20/0xa20
[ 1068.084537][T16903]  ? aa_sock_msg_perm+0x94/0x150
[ 1068.089484][T16903]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1068.094785][T16903]  ? security_socket_sendmsg+0x80/0xa0
[ 1068.100287][T16903]  ? packet_getsockopt+0xa20/0xa20
[ 1068.105419][T16903]  ____sys_sendmsg+0x5bf/0x950
[ 1068.110212][T16903]  ? __asan_memset+0x22/0x40
[ 1068.114818][T16903]  ? __sys_sendmsg_sock+0x30/0x30
[ 1068.119863][T16903]  ? __import_iovec+0x5f2/0x860
[ 1068.124743][T16903]  ? import_iovec+0x73/0xa0
[ 1068.129272][T16903]  ___sys_sendmsg+0x220/0x290
[ 1068.133969][T16903]  ? __sys_sendmsg+0x270/0x270
[ 1068.138769][T16903]  ? __lock_acquire+0x7c80/0x7c80
[ 1068.143845][T16903]  __se_sys_sendmsg+0x1a5/0x270
[ 1068.148722][T16903]  ? __x64_sys_sendmsg+0x80/0x80
[ 1068.153708][T16903]  ? lockdep_hardirqs_on+0x98/0x150
[ 1068.159009][T16903]  do_syscall_64+0x55/0xb0
[ 1068.163459][T16903]  ? clear_bhb_loop+0x40/0x90
[ 1068.168148][T16903]  ? clear_bhb_loop+0x40/0x90
[ 1068.172854][T16903]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1068.178752][T16903] RIP: 0033:0x7f22ea18f749
[ 1068.183189][T16903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1068.202899][T16903] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1068.211332][T16903] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[ 1068.219312][T16903] RDX: 00000000000480c0 RSI: 0000200000000200 RDI: 0000000000000003
[ 1068.227296][T16903] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[ 1068.235280][T16903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1068.243268][T16903] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[ 1068.251284][T16903]  </TASK>
[ 1068.624747][T16912] FAULT_INJECTION: forcing a failure.
[ 1068.624747][T16912] name failslab, interval 1, probability 0, space 0, times 0
[ 1068.691286][T16912] CPU: 1 PID: 16912 Comm: syz.3.3549 Not tainted syzkaller #0
[ 1068.698816][T16912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1068.708906][T16912] Call Trace:
[ 1068.712215][T16912]  <TASK>
[ 1068.715175][T16912]  dump_stack_lvl+0x16c/0x230
[ 1068.719899][T16912]  ? show_regs_print_info+0x20/0x20
[ 1068.725126][T16912]  ? load_image+0x3b0/0x3b0
[ 1068.729650][T16912]  ? __might_sleep+0xe0/0xe0
[ 1068.734290][T16912]  ? __lock_acquire+0x7c80/0x7c80
[ 1068.739333][T16912]  should_fail_ex+0x39d/0x4d0
[ 1068.744038][T16912]  should_failslab+0x9/0x20
[ 1068.748579][T16912]  slab_pre_alloc_hook+0x59/0x310
[ 1068.753623][T16912]  ? __request_module+0x2c2/0x5b0
[ 1068.758665][T16912]  ? __request_module+0x2c2/0x5b0
[ 1068.763708][T16912]  __kmem_cache_alloc_node+0x53/0x260
[ 1068.769112][T16912]  ? __request_module+0x2c2/0x5b0
[ 1068.774151][T16912]  __kmalloc_node_track_caller+0xa2/0x230
[ 1068.779905][T16912]  kstrdup+0x3b/0x80
[ 1068.783814][T16912]  __request_module+0x2c2/0x5b0
[ 1068.788672][T16912]  ? module_enforce_rwx_sections+0x150/0x150
[ 1068.794662][T16912]  ? bpf_lsm_capable+0x9/0x10
[ 1068.799369][T16912]  ? security_capable+0x89/0xb0
[ 1068.804230][T16912]  ? dev_load+0x21/0x1f0
[ 1068.808486][T16912]  dev_load+0x18b/0x1f0
[ 1068.812656][T16912]  devinet_ioctl+0x13a/0x1c60
[ 1068.817380][T16912]  ? __might_fault+0xc6/0x120
[ 1068.822063][T16912]  ? inet_ifa_byprefix+0x2a0/0x2a0
[ 1068.827183][T16912]  ? _copy_from_user+0xa5/0xe0
[ 1068.831956][T16912]  ? get_user_ifreq+0x12b/0x180
[ 1068.836830][T16912]  inet_ioctl+0x3c1/0x4c0
[ 1068.841166][T16912]  ? tomoyo_path_number_perm+0x1ba/0x590
[ 1068.846820][T16912]  ? inet_shutdown+0x370/0x370
[ 1068.851603][T16912]  ? slab_free_freelist_hook+0x130/0x1b0
[ 1068.857257][T16912]  ? tomoyo_path_number_perm+0x477/0x590
[ 1068.862937][T16912]  ? __kmem_cache_free+0xba/0x1f0
[ 1068.867991][T16912]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1068.873477][T16912]  sock_do_ioctl+0xd7/0x2f0
[ 1068.877996][T16912]  ? sock_show_fdinfo+0xb0/0xb0
[ 1068.882885][T16912]  sock_ioctl+0x623/0x7a0
[ 1068.887230][T16912]  ? sock_poll+0x3d0/0x3d0
[ 1068.891686][T16912]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1068.896652][T16912]  ? security_file_ioctl+0x80/0xa0
[ 1068.901780][T16912]  ? sock_poll+0x3d0/0x3d0
[ 1068.906208][T16912]  __se_sys_ioctl+0xfd/0x170
[ 1068.910819][T16912]  do_syscall_64+0x55/0xb0
[ 1068.915252][T16912]  ? clear_bhb_loop+0x40/0x90
[ 1068.919940][T16912]  ? clear_bhb_loop+0x40/0x90
[ 1068.924630][T16912]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1068.930536][T16912] RIP: 0033:0x7f22ea18f749
[ 1068.934963][T16912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1068.954585][T16912] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1068.963048][T16912] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[ 1068.971034][T16912] RDX: 0000200000000100 RSI: 000000000000891a RDI: 0000000000000003
[ 1068.979022][T16912] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[ 1068.987040][T16912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1068.995023][T16912] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[ 1069.003025][T16912]  </TASK>
[ 1069.154222][T16919] FAULT_INJECTION: forcing a failure.
[ 1069.154222][T16919] name failslab, interval 1, probability 0, space 0, times 0
[ 1069.191915][T16919] CPU: 1 PID: 16919 Comm: syz.2.3552 Not tainted syzkaller #0
[ 1069.199612][T16919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1069.209675][T16919] Call Trace:
[ 1069.212964][T16919]  <TASK>
[ 1069.215929][T16919]  dump_stack_lvl+0x16c/0x230
[ 1069.220625][T16919]  ? show_regs_print_info+0x20/0x20
[ 1069.225845][T16919]  ? load_image+0x3b0/0x3b0
[ 1069.230374][T16919]  ? __lock_acquire+0x7c80/0x7c80
[ 1069.235414][T16919]  should_fail_ex+0x39d/0x4d0
[ 1069.240131][T16919]  should_failslab+0x9/0x20
[ 1069.244649][T16919]  slab_pre_alloc_hook+0x59/0x310
[ 1069.249719][T16919]  ? __lock_acquire+0x7c80/0x7c80
[ 1069.254770][T16919]  kmem_cache_alloc+0x5a/0x2e0
[ 1069.259560][T16919]  ? security_file_alloc+0x34/0x120
[ 1069.264782][T16919]  security_file_alloc+0x34/0x120
[ 1069.269839][T16919]  init_file+0x94/0x1f0
[ 1069.274022][T16919]  alloc_empty_file+0xb7/0x1d0
[ 1069.278811][T16919]  alloc_file+0x5c/0x600
[ 1069.283080][T16919]  alloc_file_pseudo+0x17e/0x200
[ 1069.288038][T16919]  ? alloc_empty_backing_file+0xe0/0xe0
[ 1069.293606][T16919]  ? init_peercred+0x263/0x2c0
[ 1069.298392][T16919]  sock_alloc_file+0xb7/0x280
[ 1069.303093][T16919]  __sys_socketpair+0x2d0/0x550
[ 1069.307961][T16919]  __x64_sys_socketpair+0x9b/0xb0
[ 1069.313012][T16919]  do_syscall_64+0x55/0xb0
[ 1069.317475][T16919]  ? clear_bhb_loop+0x40/0x90
[ 1069.322182][T16919]  ? clear_bhb_loop+0x40/0x90
[ 1069.326879][T16919]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1069.332782][T16919] RIP: 0033:0x7fc07818f749
[ 1069.337209][T16919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1069.356833][T16919] RSP: 002b:00007fc078fbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 1069.365276][T16919] RAX: ffffffffffffffda RBX: 00007fc0783e5fa0 RCX: 00007fc07818f749
[ 1069.373306][T16919] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[ 1069.381305][T16919] RBP: 00007fc078fbf090 R08: 0000000000000000 R09: 0000000000000000
[ 1069.389302][T16919] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1069.397297][T16919] R13: 00007fc0783e6038 R14: 00007fc0783e5fa0 R15: 00007fffea4eb3c8
[ 1069.405343][T16919]  </TASK>
[ 1069.757101][T16924] netlink: 'syz.4.3554': attribute type 10 has an invalid length.
[ 1069.784269][T16924] netlink: 2 bytes leftover after parsing attributes in process `syz.4.3554'.
[ 1069.835049][T16934] netlink: 'syz.5.3556': attribute type 3 has an invalid length.
[ 1069.912682][T16934] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3556'.
[ 1069.958376][T16924] 8021q: adding VLAN 0 to HW filter on device team0
[ 1070.345339][T16948] netlink: 209844 bytes leftover after parsing attributes in process `syz.5.3560'.
[ 1070.530341][T16950] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1070.699903][T16946] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1070.784433][T16957] netlink: 830 bytes leftover after parsing attributes in process `syz.4.3564'.
[ 1071.925655][T16982] mac80211_hwsim hwsim23 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1072.514964][T16993] netlink: 'syz.4.3574': attribute type 5 has an invalid length.
[ 1073.160983][T17017] mac80211_hwsim hwsim28 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1074.152528][ T3471] wlan1: Trigger new scan to find an IBSS to join
[ 1079.202303][ T1809] wlan1: Trigger new scan to find an IBSS to join
[ 1080.111093][   T11] wlan1: Creating new IBSS network, BSSID 0e:92:34:0b:90:a2
[ 1080.376602][T17079] netlink: 'syz.5.3611': attribute type 3 has an invalid length.
[ 1080.388342][T17079] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3611'.
[ 1084.390618][T17120] netlink: 'syz.3.3624': attribute type 3 has an invalid length.
[ 1084.414140][T17120] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3624'.
[ 1088.666605][T17174] netlink: 'syz.3.3639': attribute type 3 has an invalid length.
[ 1088.701340][T17174] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3639'.
[ 1091.169247][T17172] netlink: 'syz.4.3641': attribute type 10 has an invalid length.
[ 1091.862421][T17203] netlink: 'syz.2.3651': attribute type 21 has an invalid length.
[ 1091.908312][T17203] veth1_macvtap: left promiscuous mode
[ 1091.918327][T17203] macsec0: entered promiscuous mode
[ 1091.924690][T17203] macsec0: entered allmulticast mode
[ 1092.298640][T17209] netlink: 'syz.4.3650': attribute type 3 has an invalid length.
[ 1092.368204][T17209] netlink: 176588 bytes leftover after parsing attributes in process `syz.4.3650'.
[ 1092.536557][T17211] netlink: 'syz.3.3652': attribute type 3 has an invalid length.
[ 1092.559081][T17211] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3652'.
[ 1095.539554][T17222] netlink: 'syz.5.3656': attribute type 3 has an invalid length.
[ 1095.564327][T17222] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3656'.
[ 1095.824207][T17235] netlink: 'syz.4.3662': attribute type 21 has an invalid length.
[ 1096.277058][T17245] netlink: 'syz.2.3663': attribute type 3 has an invalid length.
[ 1096.286831][T17245] netlink: 176588 bytes leftover after parsing attributes in process `syz.2.3663'.
[ 1097.050657][T17261] netlink: 'syz.2.3669': attribute type 3 has an invalid length.
[ 1097.064717][T17261] netlink: 176588 bytes leftover after parsing attributes in process `syz.2.3669'.
[ 1100.109242][T17278] netlink: 'syz.3.3675': attribute type 21 has an invalid length.
[ 1100.150797][T17276] Dead loop on virtual device ip6_vti0, fix it urgently!
[ 1100.201705][T17278] veth1_macvtap: left promiscuous mode
[ 1100.219931][T17278] macsec0: entered promiscuous mode
[ 1100.231490][T17278] macsec0: entered allmulticast mode
[ 1104.145809][T17312] FAULT_INJECTION: forcing a failure.
[ 1104.145809][T17312] name failslab, interval 1, probability 0, space 0, times 0
[ 1104.216374][T17312] CPU: 0 PID: 17312 Comm: syz.2.3687 Not tainted syzkaller #0
[ 1104.223905][T17312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1104.233991][T17312] Call Trace:
[ 1104.237307][T17312]  <TASK>
[ 1104.240264][T17312]  dump_stack_lvl+0x16c/0x230
[ 1104.244988][T17312]  ? show_regs_print_info+0x20/0x20
[ 1104.250224][T17312]  ? load_image+0x3b0/0x3b0
[ 1104.254762][T17312]  ? __might_sleep+0xe0/0xe0
[ 1104.259391][T17312]  ? __lock_acquire+0x7c80/0x7c80
[ 1104.264445][T17312]  ? iov_iter_get_pages_alloc2+0xc0/0xc0
[ 1104.270126][T17312]  should_fail_ex+0x39d/0x4d0
[ 1104.274886][T17312]  should_failslab+0x9/0x20
[ 1104.279434][T17312]  slab_pre_alloc_hook+0x59/0x310
[ 1104.284562][T17312]  kmem_cache_alloc_node+0x60/0x330
[ 1104.289811][T17312]  ? __alloc_skb+0x108/0x2c0
[ 1104.294442][T17312]  __alloc_skb+0x108/0x2c0
[ 1104.298900][T17312]  __ip_append_data+0x2a23/0x3bd0
[ 1104.304019][T17312]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[ 1104.308919][T17312]  ? ip_setup_cork+0x860/0x860
[ 1104.313740][T17312]  ? ip_setup_cork+0x530/0x860
[ 1104.318581][T17312]  ip_make_skb+0x1da/0x3f0
[ 1104.323059][T17312]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[ 1104.327962][T17312]  ? ip_flush_pending_frames+0x250/0x250
[ 1104.333684][T17312]  udp_sendmsg+0x1a90/0x2380
[ 1104.338329][T17312]  ? release_sock+0x2f/0x1c0
[ 1104.342978][T17312]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[ 1104.347982][T17312]  ? udp_cmsg_send+0x350/0x350
[ 1104.352808][T17312]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1104.358835][T17312]  ? lock_chain_count+0x20/0x20
[ 1104.363732][T17312]  ? inet_sendmsg+0x14b/0x2f0
[ 1104.368447][T17312]  ? __local_bh_enable_ip+0x12e/0x1c0
[ 1104.373850][T17312]  ? _local_bh_enable+0xa0/0xa0
[ 1104.378760][T17312]  ? inet_sendmsg+0x14b/0x2f0
[ 1104.383477][T17312]  ? inet_sendmsg+0x14b/0x2f0
[ 1104.388204][T17312]  ? inet_send_prepare+0x260/0x260
[ 1104.393353][T17312]  ____sys_sendmsg+0x5bf/0x950
[ 1104.398189][T17312]  ? __sys_sendmsg_sock+0x30/0x30
[ 1104.403259][T17312]  ? __import_iovec+0x5f2/0x860
[ 1104.408163][T17312]  ? import_iovec+0x73/0xa0
[ 1104.412714][T17312]  ___sys_sendmsg+0x220/0x290
[ 1104.417444][T17312]  ? __sys_sendmsg+0x270/0x270
[ 1104.422269][T17312]  ? __lock_acquire+0x7c80/0x7c80
[ 1104.427367][T17312]  __se_sys_sendmsg+0x1a5/0x270
[ 1104.432255][T17312]  ? __x64_sys_sendmsg+0x80/0x80
[ 1104.437250][T17312]  ? lockdep_hardirqs_on+0x98/0x150
[ 1104.442486][T17312]  do_syscall_64+0x55/0xb0
[ 1104.446939][T17312]  ? clear_bhb_loop+0x40/0x90
[ 1104.451687][T17312]  ? clear_bhb_loop+0x40/0x90
[ 1104.456396][T17312]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1104.462330][T17312] RIP: 0033:0x7fc07818f749
[ 1104.466785][T17312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1104.486423][T17312] RSP: 002b:00007fc078f9e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1104.494874][T17312] RAX: ffffffffffffffda RBX: 00007fc0783e6090 RCX: 00007fc07818f749
[ 1104.502890][T17312] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1104.510980][T17312] RBP: 00007fc078f9e090 R08: 0000000000000000 R09: 0000000000000000
[ 1104.518969][T17312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1104.526949][T17312] R13: 00007fc0783e6128 R14: 00007fc0783e6090 R15: 00007fffea4eb3c8
[ 1104.534954][T17312]  </TASK>
[ 1104.946965][T17324] syzkaller0: entered promiscuous mode
[ 1104.986058][T17324] syzkaller0: entered allmulticast mode
[ 1108.108044][T17350] netlink: 'syz.4.3712': attribute type 3 has an invalid length.
[ 1108.116303][T17350] netlink: 176588 bytes leftover after parsing attributes in process `syz.4.3712'.
[ 1109.897525][T17364] syz.4.3711[17364] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1109.897651][T17364] syz.4.3711[17364] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1109.917475][T17364] netlink: 'syz.4.3711': attribute type 10 has an invalid length.
[ 1109.952974][T17364] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3711'.
[ 1109.966080][T17364] dummy0: entered promiscuous mode
[ 1109.970505][T17368] FAULT_INJECTION: forcing a failure.
[ 1109.970505][T17368] name failslab, interval 1, probability 0, space 0, times 0
[ 1109.974106][T17364] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 1110.001581][T17368] CPU: 0 PID: 17368 Comm: syz.3.3714 Not tainted syzkaller #0
[ 1110.009116][T17368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1110.019218][T17368] Call Trace:
[ 1110.022522][T17368]  <TASK>
[ 1110.025473][T17368]  dump_stack_lvl+0x16c/0x230
[ 1110.030179][T17368]  ? show_regs_print_info+0x20/0x20
[ 1110.035404][T17368]  ? load_image+0x3b0/0x3b0
[ 1110.039930][T17368]  ? perf_trace_lock+0xf7/0x380
[ 1110.044838][T17368]  should_fail_ex+0x39d/0x4d0
[ 1110.049546][T17368]  should_failslab+0x9/0x20
[ 1110.054079][T17368]  slab_pre_alloc_hook+0x59/0x310
[ 1110.059129][T17368]  kmem_cache_alloc+0x5a/0x2e0
[ 1110.063911][T17368]  ? skb_clone+0x1eb/0x370
[ 1110.068357][T17368]  skb_clone+0x1eb/0x370
[ 1110.072630][T17368]  __netlink_deliver_tap+0x41c/0x830
[ 1110.077946][T17368]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1110.083171][T17368]  netlink_deliver_tap+0x19c/0x1b0
[ 1110.088305][T17368]  netlink_dump+0x8df/0xde0
[ 1110.092850][T17368]  ? netlink_lookup+0x200/0x200
[ 1110.097735][T17368]  ? ns_capable+0x89/0xe0
[ 1110.102097][T17368]  ? __inet_diag_dump_start+0x884/0x9e0
[ 1110.107673][T17368]  __netlink_dump_start+0x5f1/0x810
[ 1110.112903][T17368]  inet_diag_rcv_msg_compat+0x1eb/0x3c0
[ 1110.118491][T17368]  ? __inet_diag_dump+0x380/0x380
[ 1110.123541][T17368]  ? sock_diag_rcv_msg+0xd1/0x600
[ 1110.128589][T17368]  ? inet_diag_rcv_msg_compat+0x3c0/0x3c0
[ 1110.134330][T17368]  ? inet_diag_dump_start_compat+0x20/0x20
[ 1110.140169][T17368]  ? inet_diag_dump+0x50/0x50
[ 1110.144888][T17368]  ? __inet_diag_dump+0x380/0x380
[ 1110.149970][T17368]  sock_diag_rcv_msg+0x3d8/0x600
[ 1110.154948][T17368]  netlink_rcv_skb+0x216/0x480
[ 1110.159731][T17368]  ? sock_diag_bind+0xb0/0xb0
[ 1110.164454][T17368]  ? netlink_ack+0x1110/0x1110
[ 1110.169267][T17368]  ? __lock_acquire+0x7c80/0x7c80
[ 1110.174341][T17368]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1110.179567][T17368]  sock_diag_rcv+0x2a/0x40
[ 1110.183997][T17368]  netlink_unicast+0x751/0x8d0
[ 1110.188802][T17368]  netlink_sendmsg+0x8c1/0xbe0
[ 1110.193593][T17368]  ? netlink_getsockopt+0x580/0x580
[ 1110.198811][T17368]  ? aa_sock_msg_perm+0x94/0x150
[ 1110.203764][T17368]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1110.209071][T17368]  ? security_socket_sendmsg+0x80/0xa0
[ 1110.214548][T17368]  ? netlink_getsockopt+0x580/0x580
[ 1110.219764][T17368]  ____sys_sendmsg+0x5bf/0x950
[ 1110.224554][T17368]  ? __asan_memset+0x22/0x40
[ 1110.229162][T17368]  ? __sys_sendmsg_sock+0x30/0x30
[ 1110.234203][T17368]  ? __import_iovec+0x5f2/0x860
[ 1110.239083][T17368]  ? import_iovec+0x73/0xa0
[ 1110.243612][T17368]  ___sys_sendmsg+0x220/0x290
[ 1110.248318][T17368]  ? __sys_sendmsg+0x270/0x270
[ 1110.253116][T17368]  ? __lock_acquire+0x7c80/0x7c80
[ 1110.258197][T17368]  __se_sys_sendmsg+0x1a5/0x270
[ 1110.263075][T17368]  ? __x64_sys_sendmsg+0x80/0x80
[ 1110.268053][T17368]  ? lockdep_hardirqs_on+0x98/0x150
[ 1110.273290][T17368]  do_syscall_64+0x55/0xb0
[ 1110.277749][T17368]  ? clear_bhb_loop+0x40/0x90
[ 1110.282445][T17368]  ? clear_bhb_loop+0x40/0x90
[ 1110.287141][T17368]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1110.293048][T17368] RIP: 0033:0x7f22ea18f749
[ 1110.297479][T17368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1110.317102][T17368] RSP: 002b:00007f22eafad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1110.325537][T17368] RAX: ffffffffffffffda RBX: 00007f22ea3e5fa0 RCX: 00007f22ea18f749
[ 1110.333528][T17368] RDX: 0000000004000010 RSI: 0000200000000240 RDI: 0000000000000003
[ 1110.341523][T17368] RBP: 00007f22eafad090 R08: 0000000000000000 R09: 0000000000000000
[ 1110.349508][T17368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1110.357497][T17368] R13: 00007f22ea3e6038 R14: 00007f22ea3e5fa0 R15: 00007ffc163749e8
[ 1110.365591][T17368]  </TASK>
[ 1110.395012][T10391] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1110.574124][T17382] netlink: 4595 bytes leftover after parsing attributes in process `syz.4.3711'.
[ 1110.647071][T17380] netlink: 'syz.5.3718': attribute type 3 has an invalid length.
[ 1110.655805][T17380] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3718'.
[ 1110.906253][T17388] netlink: 'syz.5.3719': attribute type 3 has an invalid length.
[ 1110.935662][T17388] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3719'.
[ 1111.469048][T17409] netlink: 'syz.4.3728': attribute type 3 has an invalid length.
[ 1111.477513][T17409] netlink: 176588 bytes leftover after parsing attributes in process `syz.4.3728'.
[ 1111.511492][T17411] syz.2.3729[17411] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1111.511631][T17411] syz.2.3729[17411] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1111.543096][T17411] netlink: 'syz.2.3729': attribute type 10 has an invalid length.
[ 1111.572454][T17411] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3729'.
[ 1111.586550][T17411] dummy0: entered promiscuous mode
[ 1111.593030][T17411] bridge0: port 3(dummy0) entered blocking state
[ 1111.599738][T17411] bridge0: port 3(dummy0) entered disabled state
[ 1111.611044][T17411] dummy0: entered allmulticast mode
[ 1111.619484][T17411] bridge0: port 3(dummy0) entered blocking state
[ 1111.626017][T17411] bridge0: port 3(dummy0) entered forwarding state
[ 1111.816389][T17425] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.3729'.
[ 1111.989630][T17429] netlink: 'syz.3.3733': attribute type 3 has an invalid length.
[ 1111.998728][T17429] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3733'.
[ 1112.055750][T17435] 
@0Ù: renamed from bond_slave_1 (while UP)
[ 1112.656994][T17450] netlink: 'syz.2.3741': attribute type 3 has an invalid length.
[ 1112.670145][T17450] netlink: 176588 bytes leftover after parsing attributes in process `syz.2.3741'.
[ 1112.884864][T17463] netlink: 'syz.4.3743': attribute type 21 has an invalid length.
[ 1112.893859][T17463] netlink: 'syz.4.3743': attribute type 11 has an invalid length.
[ 1113.104327][T17467] netlink: 'syz.2.3746': attribute type 3 has an invalid length.
[ 1113.780588][T17490] mac80211_hwsim hwsim34 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1114.490021][T17502] netlink: 'syz.5.3755': attribute type 21 has an invalid length.
[ 1114.498727][T17502] netlink: 'syz.5.3755': attribute type 11 has an invalid length.
[ 1114.619960][T17503] netlink: 'syz.2.3757': attribute type 21 has an invalid length.
[ 1114.641514][T17503] netlink: 'syz.2.3757': attribute type 11 has an invalid length.
[ 1114.696741][T17508] netlink: 'syz.4.3759': attribute type 51 has an invalid length.
[ 1114.978374][T17516] netlink: 'syz.3.3762': attribute type 21 has an invalid length.
[ 1114.986327][T17516] netlink: 'syz.3.3762': attribute type 11 has an invalid length.
[ 1115.142092][T17519] netlink: 'syz.5.3764': attribute type 21 has an invalid length.
[ 1115.150369][T17519] netlink: 'syz.5.3764': attribute type 11 has an invalid length.
[ 1115.398472][T17521] FAULT_INJECTION: forcing a failure.
[ 1115.398472][T17521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1115.420735][T17521] CPU: 1 PID: 17521 Comm: syz.2.3765 Not tainted syzkaller #0
[ 1115.428225][T17521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1115.438301][T17521] Call Trace:
[ 1115.441612][T17521]  <TASK>
[ 1115.444565][T17521]  dump_stack_lvl+0x16c/0x230
[ 1115.449261][T17521]  ? show_regs_print_info+0x20/0x20
[ 1115.454489][T17521]  ? load_image+0x3b0/0x3b0
[ 1115.459028][T17521]  ? __might_fault+0xaa/0x120
[ 1115.463738][T17521]  ? __lock_acquire+0x7c80/0x7c80
[ 1115.468790][T17521]  should_fail_ex+0x39d/0x4d0
[ 1115.473511][T17521]  _copy_from_user+0x2f/0xe0
[ 1115.478126][T17521]  btf_new_fd+0x348/0x980
[ 1115.482482][T17521]  ? bpf_btf_show_fdinfo+0x80/0x80
[ 1115.487613][T17521]  ? capable+0x88/0xe0
[ 1115.491719][T17521]  __sys_bpf+0x60e/0x800
[ 1115.495972][T17521]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1115.501447][T17521]  ? lock_chain_count+0x20/0x20
[ 1115.506316][T17521]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1115.512395][T17521]  __x64_sys_bpf+0x7c/0x90
[ 1115.516814][T17521]  do_syscall_64+0x55/0xb0
[ 1115.521248][T17521]  ? clear_bhb_loop+0x40/0x90
[ 1115.525941][T17521]  ? clear_bhb_loop+0x40/0x90
[ 1115.530630][T17521]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1115.536536][T17521] RIP: 0033:0x7fc07818f749
[ 1115.540957][T17521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1115.560571][T17521] RSP: 002b:00007fc078fbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1115.569019][T17521] RAX: ffffffffffffffda RBX: 00007fc0783e5fa0 RCX: 00007fc07818f749
[ 1115.577004][T17521] RDX: 0000000000000028 RSI: 0000200000000580 RDI: 0000000000000012
[ 1115.584988][T17521] RBP: 00007fc078fbf090 R08: 0000000000000000 R09: 0000000000000000
[ 1115.592969][T17521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1115.600946][T17521] R13: 00007fc0783e6038 R14: 00007fc0783e5fa0 R15: 00007fffea4eb3c8
[ 1115.608945][T17521]  </TASK>
[ 1115.797321][T17527] FAULT_INJECTION: forcing a failure.
[ 1115.797321][T17527] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.810119][T17527] CPU: 1 PID: 17527 Comm: syz.4.3768 Not tainted syzkaller #0
[ 1115.817610][T17527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1115.827693][T17527] Call Trace:
[ 1115.830998][T17527]  <TASK>
[ 1115.833969][T17527]  dump_stack_lvl+0x16c/0x230
[ 1115.838680][T17527]  ? show_regs_print_info+0x20/0x20
[ 1115.843913][T17527]  ? load_image+0x3b0/0x3b0
[ 1115.848449][T17527]  ? skb_network_protocol+0x509/0x760
[ 1115.853868][T17527]  should_fail_ex+0x39d/0x4d0
[ 1115.858588][T17527]  should_failslab+0x9/0x20
[ 1115.863128][T17527]  slab_pre_alloc_hook+0x59/0x310
[ 1115.868183][T17527]  kmem_cache_alloc+0x5a/0x2e0
[ 1115.872978][T17527]  ? skb_clone+0x1eb/0x370
[ 1115.877447][T17527]  skb_clone+0x1eb/0x370
[ 1115.881716][T17527]  ? dev_queue_xmit_nit+0x212/0xbb0
[ 1115.886927][T17527]  dev_queue_xmit_nit+0x24d/0xbb0
[ 1115.891991][T17527]  ? dev_queue_xmit_nit+0x2d/0xbb0
[ 1115.897130][T17527]  ? validate_xmit_skb+0x953/0xf50
[ 1115.902257][T17527]  dev_hard_start_xmit+0x148/0x740
[ 1115.907397][T17527]  __dev_queue_xmit+0x1a64/0x35a0
[ 1115.912444][T17527]  ? __dev_queue_xmit+0x245/0x35a0
[ 1115.917565][T17527]  ? netdev_core_pick_tx+0x340/0x340
[ 1115.922861][T17527]  ? __copy_skb_header+0xa7/0x550
[ 1115.927923][T17527]  ? __asan_memcpy+0x40/0x70
[ 1115.932530][T17527]  ? __skb_clone+0x63/0x790
[ 1115.937055][T17527]  ? __skb_clone+0x480/0x790
[ 1115.941667][T17527]  ? skb_clone+0x21f/0x370
[ 1115.946094][T17527]  __netlink_deliver_tap+0x5ab/0x830
[ 1115.951401][T17527]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1115.956608][T17527]  netlink_deliver_tap+0x19c/0x1b0
[ 1115.961765][T17527]  netlink_unicast+0x72c/0x8d0
[ 1115.966559][T17527]  netlink_sendmsg+0x8c1/0xbe0
[ 1115.971360][T17527]  ? netlink_getsockopt+0x580/0x580
[ 1115.976583][T17527]  ? aa_sock_msg_perm+0x94/0x150
[ 1115.981540][T17527]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1115.986835][T17527]  ? security_socket_sendmsg+0x80/0xa0
[ 1115.992304][T17527]  ? netlink_getsockopt+0x580/0x580
[ 1115.997507][T17527]  ____sys_sendmsg+0x5bf/0x950
[ 1116.002417][T17527]  ? __asan_memset+0x22/0x40
[ 1116.007024][T17527]  ? __sys_sendmsg_sock+0x30/0x30
[ 1116.012062][T17527]  ? __import_iovec+0x5f2/0x860
[ 1116.016935][T17527]  ? import_iovec+0x73/0xa0
[ 1116.021456][T17527]  ___sys_sendmsg+0x220/0x290
[ 1116.026153][T17527]  ? __sys_sendmsg+0x270/0x270
[ 1116.030946][T17527]  ? __lock_acquire+0x7c80/0x7c80
[ 1116.035991][T17527]  __se_sys_sendmsg+0x1a5/0x270
[ 1116.040938][T17527]  ? __x64_sys_sendmsg+0x80/0x80
[ 1116.045901][T17527]  ? lockdep_hardirqs_on+0x98/0x150
[ 1116.051106][T17527]  do_syscall_64+0x55/0xb0
[ 1116.055534][T17527]  ? clear_bhb_loop+0x40/0x90
[ 1116.060215][T17527]  ? clear_bhb_loop+0x40/0x90
[ 1116.064901][T17527]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1116.070806][T17527] RIP: 0033:0x7f987218f749
[ 1116.075233][T17527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1116.094852][T17527] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1116.103276][T17527] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[ 1116.111269][T17527] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[ 1116.119252][T17527] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[ 1116.127226][T17527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1116.135220][T17527] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[ 1116.143206][T17527]  </TASK>
[ 1116.172526][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.178952][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.626646][T17552] __nla_validate_parse: 1 callbacks suppressed
[ 1116.626663][T17552] netlink: 104088 bytes leftover after parsing attributes in process `syz.3.3776'.
[ 1117.259699][T17556] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3778'.
[ 1117.270788][T17556] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[ 1117.344130][T17556] netlink: 55 bytes leftover after parsing attributes in process `syz.4.3778'.
[ 1117.933764][T17581] netlink: 188 bytes leftover after parsing attributes in process `syz.4.3788'.
[ 1118.114915][T17586] netlink: 188 bytes leftover after parsing attributes in process `syz.3.3789'.
[ 1118.597086][T17603] FAULT_INJECTION: forcing a failure.
[ 1118.597086][T17603] name failslab, interval 1, probability 0, space 0, times 0
[ 1118.612294][T17603] CPU: 1 PID: 17603 Comm: syz.2.3795 Not tainted syzkaller #0
[ 1118.619810][T17603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1118.629899][T17603] Call Trace:
[ 1118.633214][T17603]  <TASK>
[ 1118.636181][T17603]  dump_stack_lvl+0x16c/0x230
[ 1118.640892][T17603]  ? show_regs_print_info+0x20/0x20
[ 1118.646101][T17603]  ? load_image+0x3b0/0x3b0
[ 1118.650634][T17603]  ? __might_sleep+0xe0/0xe0
[ 1118.655238][T17603]  ? __lock_acquire+0x7c80/0x7c80
[ 1118.660268][T17603]  ? prepend_path+0x4b/0x960
[ 1118.664945][T17603]  should_fail_ex+0x39d/0x4d0
[ 1118.669639][T17603]  should_failslab+0x9/0x20
[ 1118.674149][T17603]  slab_pre_alloc_hook+0x59/0x310
[ 1118.679179][T17603]  ? __asan_memcpy+0x40/0x70
[ 1118.683780][T17603]  ? tomoyo_encode+0x28b/0x540
[ 1118.688581][T17603]  ? tomoyo_encode+0x28b/0x540
[ 1118.693350][T17603]  __kmem_cache_alloc_node+0x53/0x260
[ 1118.698725][T17603]  ? prepend_path+0x4b/0x960
[ 1118.703321][T17603]  ? tomoyo_encode+0x28b/0x540
[ 1118.708097][T17603]  __kmalloc+0xa4/0x240
[ 1118.712267][T17603]  tomoyo_encode+0x28b/0x540
[ 1118.716872][T17603]  tomoyo_realpath_from_path+0x592/0x5d0
[ 1118.722519][T17603]  tomoyo_path_number_perm+0x1ea/0x590
[ 1118.728003][T17603]  ? tomoyo_path_number_perm+0x1ba/0x590
[ 1118.733645][T17603]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1118.739112][T17603]  ? ksys_write+0x1c1/0x250
[ 1118.743651][T17603]  ? __fget_files+0x28/0x4d0
[ 1118.748274][T17603]  security_file_ioctl+0x70/0xa0
[ 1118.753222][T17603]  __se_sys_ioctl+0x48/0x170
[ 1118.757813][T17603]  do_syscall_64+0x55/0xb0
[ 1118.762228][T17603]  ? clear_bhb_loop+0x40/0x90
[ 1118.766906][T17603]  ? clear_bhb_loop+0x40/0x90
[ 1118.771602][T17603]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1118.777501][T17603] RIP: 0033:0x7fc07818f749
[ 1118.781915][T17603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1118.801525][T17603] RSP: 002b:00007fc078fbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1118.809956][T17603] RAX: ffffffffffffffda RBX: 00007fc0783e5fa0 RCX: 00007fc07818f749
[ 1118.817930][T17603] RDX: 00002000000002c0 RSI: 0000000040107447 RDI: 0000000000000004
[ 1118.825898][T17603] RBP: 00007fc078fbf090 R08: 0000000000000000 R09: 0000000000000000
[ 1118.833886][T17603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1118.841861][T17603] R13: 00007fc0783e6038 R14: 00007fc0783e5fa0 R15: 00007fffea4eb3c8
[ 1118.849846][T17603]  </TASK>
[ 1118.864670][T17603] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1119.112674][T17614] validate_nla: 7 callbacks suppressed
[ 1119.112695][T17614] netlink: 'syz.5.3799': attribute type 3 has an invalid length.
[ 1119.126250][T17614] netlink: 'syz.5.3799': attribute type 1 has an invalid length.
[ 1119.134247][T17614] netlink: 130160 bytes leftover after parsing attributes in process `syz.5.3799'.
[ 1119.350039][T17621] netlink: 'syz.5.3803': attribute type 3 has an invalid length.
[ 1119.360951][T17621] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3803'.
[ 1119.454566][T17624] FAULT_INJECTION: forcing a failure.
[ 1119.454566][T17624] name failslab, interval 1, probability 0, space 0, times 0
[ 1119.468774][T17624] CPU: 0 PID: 17624 Comm: syz.4.3804 Not tainted syzkaller #0
[ 1119.476290][T17624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1119.486450][T17624] Call Trace:
[ 1119.489746][T17624]  <TASK>
[ 1119.492709][T17624]  dump_stack_lvl+0x16c/0x230
[ 1119.497410][T17624]  ? show_regs_print_info+0x20/0x20
[ 1119.502622][T17624]  ? load_image+0x3b0/0x3b0
[ 1119.507137][T17624]  ? __might_sleep+0xe0/0xe0
[ 1119.511745][T17624]  ? __lock_acquire+0x7c80/0x7c80
[ 1119.516778][T17624]  ? stack_trace_save+0x9c/0xe0
[ 1119.521637][T17624]  ? stack_trace_snprint+0xf0/0xf0
[ 1119.526763][T17624]  should_fail_ex+0x39d/0x4d0
[ 1119.531457][T17624]  should_failslab+0x9/0x20
[ 1119.535974][T17624]  slab_pre_alloc_hook+0x59/0x310
[ 1119.541008][T17624]  ? kasan_set_track+0x5f/0x70
[ 1119.545776][T17624]  ? kasan_set_track+0x4e/0x70
[ 1119.550547][T17624]  ? __kasan_kmalloc+0x8f/0xa0
[ 1119.555320][T17624]  kmem_cache_alloc_node+0x60/0x330
[ 1119.560530][T17624]  ? netlink_sendmsg+0x8c1/0xbe0
[ 1119.565496][T17624]  ? __alloc_skb+0x108/0x2c0
[ 1119.570117][T17624]  __alloc_skb+0x108/0x2c0
[ 1119.574553][T17624]  netlink_dump+0x1cf/0xde0
[ 1119.579097][T17624]  ? netlink_lookup+0x200/0x200
[ 1119.583971][T17624]  ? __kasan_kmalloc+0x8f/0xa0
[ 1119.588747][T17624]  ? __inet_diag_dump_start+0x884/0x9e0
[ 1119.594301][T17624]  ? netlink_lookup+0x30/0x200
[ 1119.599085][T17624]  __netlink_dump_start+0x5f1/0x810
[ 1119.604298][T17624]  inet_diag_handler_cmd+0x1c0/0x290
[ 1119.609595][T17624]  ? inet_diag_unregister+0xb0/0xb0
[ 1119.614804][T17624]  ? inet_diag_handler_get_info+0x770/0x770
[ 1119.620710][T17624]  ? inet_diag_dump_start+0x20/0x20
[ 1119.625926][T17624]  ? inet_diag_dump+0x50/0x50
[ 1119.630628][T17624]  ? sock_diag_lock_handler+0x19/0x280
[ 1119.636118][T17624]  ? sock_diag_lock_handler+0x19/0x280
[ 1119.641595][T17624]  ? inet_diag_unregister+0xb0/0xb0
[ 1119.646806][T17624]  sock_diag_rcv_msg+0x3d8/0x600
[ 1119.651758][T17624]  netlink_rcv_skb+0x216/0x480
[ 1119.656539][T17624]  ? sock_diag_bind+0xb0/0xb0
[ 1119.661231][T17624]  ? netlink_ack+0x1110/0x1110
[ 1119.666018][T17624]  ? __lock_acquire+0x7c80/0x7c80
[ 1119.671063][T17624]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1119.676277][T17624]  sock_diag_rcv+0x2a/0x40
[ 1119.680709][T17624]  netlink_unicast+0x751/0x8d0
[ 1119.685497][T17624]  netlink_sendmsg+0x8c1/0xbe0
[ 1119.690283][T17624]  ? netlink_getsockopt+0x580/0x580
[ 1119.695496][T17624]  ? aa_sock_msg_perm+0x94/0x150
[ 1119.700719][T17624]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1119.706014][T17624]  ? security_socket_sendmsg+0x80/0xa0
[ 1119.711493][T17624]  ? netlink_getsockopt+0x580/0x580
[ 1119.716699][T17624]  ____sys_sendmsg+0x5bf/0x950
[ 1119.721484][T17624]  ? __asan_memset+0x22/0x40
[ 1119.726101][T17624]  ? __sys_sendmsg_sock+0x30/0x30
[ 1119.731132][T17624]  ? __import_iovec+0x5f2/0x860
[ 1119.736007][T17624]  ? import_iovec+0x73/0xa0
[ 1119.740525][T17624]  ___sys_sendmsg+0x220/0x290
[ 1119.745216][T17624]  ? __sys_sendmsg+0x270/0x270
[ 1119.750001][T17624]  ? __lock_acquire+0x7c80/0x7c80
[ 1119.755052][T17624]  __se_sys_sendmsg+0x1a5/0x270
[ 1119.759927][T17624]  ? __x64_sys_sendmsg+0x80/0x80
[ 1119.764909][T17624]  ? lockdep_hardirqs_on+0x98/0x150
[ 1119.770114][T17624]  do_syscall_64+0x55/0xb0
[ 1119.774546][T17624]  ? clear_bhb_loop+0x40/0x90
[ 1119.779247][T17624]  ? clear_bhb_loop+0x40/0x90
[ 1119.783938][T17624]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1119.789842][T17624] RIP: 0033:0x7f987218f749
[ 1119.794263][T17624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1119.813877][T17624] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1119.822295][T17624] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[ 1119.830268][T17624] RDX: 0000000000040000 RSI: 00002000000003c0 RDI: 0000000000000004
[ 1119.838242][T17624] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[ 1119.846221][T17624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1119.854202][T17624] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[ 1119.862196][T17624]  </TASK>
[ 1120.389139][T17640] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3810'.
[ 1120.780862][T17644] netlink: 'syz.2.3811': attribute type 21 has an invalid length.
[ 1120.795037][T17644] netlink: 'syz.2.3811': attribute type 11 has an invalid length.
[ 1121.065773][T17651] FAULT_INJECTION: forcing a failure.
[ 1121.065773][T17651] name failslab, interval 1, probability 0, space 0, times 0
[ 1121.104398][T17651] CPU: 1 PID: 17651 Comm: syz.4.3814 Not tainted syzkaller #0
[ 1121.111923][T17651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1121.122031][T17651] Call Trace:
[ 1121.125352][T17651]  <TASK>
[ 1121.128324][T17651]  dump_stack_lvl+0x16c/0x230
[ 1121.133064][T17651]  ? show_regs_print_info+0x20/0x20
[ 1121.138321][T17651]  ? load_image+0x3b0/0x3b0
[ 1121.142911][T17651]  ? __might_sleep+0xe0/0xe0
[ 1121.147568][T17651]  ? __lock_acquire+0x7c80/0x7c80
[ 1121.152646][T17651]  ? mark_lock+0x94/0x320
[ 1121.157045][T17651]  should_fail_ex+0x39d/0x4d0
[ 1121.161804][T17651]  should_failslab+0x9/0x20
[ 1121.166372][T17651]  slab_pre_alloc_hook+0x59/0x310
[ 1121.171472][T17651]  kmem_cache_alloc_node+0x60/0x330
[ 1121.176729][T17651]  ? __alloc_skb+0x108/0x2c0
[ 1121.181436][T17651]  __alloc_skb+0x108/0x2c0
[ 1121.185952][T17651]  inet_netconf_notify_devconf+0x173/0x230
[ 1121.191856][T17651]  inetdev_event+0x789/0x15c0
[ 1121.196620][T17651]  ? trace_event_raw_event_notifier_info+0x1b0/0x1b0
[ 1121.203363][T17651]  ? devinet_exit_net+0x220/0x220
[ 1121.208576][T17651]  notifier_call_chain+0x197/0x390
[ 1121.213807][T17651]  unregister_netdevice_many_notify+0xf36/0x1810
[ 1121.220224][T17651]  ? trace_raw_output_contention_end+0xd0/0xd0
[ 1121.226464][T17651]  ? unregister_netdevice_many+0x20/0x20
[ 1121.232198][T17651]  ? rcu_is_watching+0x15/0xb0
[ 1121.237039][T17651]  ? trace_contention_end+0x39/0xe0
[ 1121.242332][T17651]  ? __mutex_lock+0x304/0xcc0
[ 1121.247138][T17651]  unregister_netdevice_queue+0x324/0x360
[ 1121.252928][T17651]  ? list_netdevice+0x730/0x730
[ 1121.257915][T17651]  ppp_release+0xf0/0x1f0
[ 1121.262318][T17651]  ? ppp_open+0x70/0x70
[ 1121.266533][T17651]  __fput+0x234/0x970
[ 1121.270621][T17651]  __se_sys_close+0x15f/0x220
[ 1121.275387][T17651]  do_syscall_64+0x55/0xb0
[ 1121.279906][T17651]  ? clear_bhb_loop+0x40/0x90
[ 1121.284657][T17651]  ? clear_bhb_loop+0x40/0x90
[ 1121.289413][T17651]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1121.295384][T17651] RIP: 0033:0x7f987218f749
[ 1121.299867][T17651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1121.319522][T17651] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1121.327991][T17651] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[ 1121.336015][T17651] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1121.344064][T17651] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[ 1121.352109][T17651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1121.360149][T17651] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[ 1121.368239][T17651]  </TASK>
[ 1121.468900][T17655] netlink: 'syz.3.3813': attribute type 3 has an invalid length.
[ 1121.479927][T17655] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3813'.
[ 1122.095046][T17678] netlink: 'syz.4.3821': attribute type 21 has an invalid length.
[ 1122.104658][T17678] netlink: 'syz.4.3821': attribute type 11 has an invalid length.
[ 1122.590433][T17702] netlink: 'syz.2.3825': attribute type 12 has an invalid length.
[ 1122.603111][T17702] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3825'.
[ 1122.850399][T17708] netlink: 'syz.2.3826': attribute type 3 has an invalid length.
[ 1122.861456][T17708] netlink: 176588 bytes leftover after parsing attributes in process `syz.2.3826'.
[ 1123.372318][T17724] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3838'.
[ 1125.497536][T17761] validate_nla: 1 callbacks suppressed
[ 1125.497554][T17761] netlink: 'syz.3.3845': attribute type 3 has an invalid length.
[ 1125.512651][T17761] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3845'.
[ 1125.917585][T17774] netlink: 'syz.3.3850': attribute type 1 has an invalid length.
[ 1125.930599][T17777] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1125.938401][T17774] netlink: 157116 bytes leftover after parsing attributes in process `syz.3.3850'.
[ 1125.995469][T17778] lo: entered allmulticast mode
[ 1126.199374][T17785] FAULT_INJECTION: forcing a failure.
[ 1126.199374][T17785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1126.220316][T17785] CPU: 0 PID: 17785 Comm: syz.2.3854 Not tainted syzkaller #0
[ 1126.227844][T17785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1126.237930][T17785] Call Trace:
[ 1126.241229][T17785]  <TASK>
[ 1126.244188][T17785]  dump_stack_lvl+0x16c/0x230
[ 1126.248901][T17785]  ? show_regs_print_info+0x20/0x20
[ 1126.254137][T17785]  ? load_image+0x3b0/0x3b0
[ 1126.258668][T17785]  ? __might_fault+0xaa/0x120
[ 1126.263385][T17785]  ? __lock_acquire+0x7c80/0x7c80
[ 1126.268528][T17785]  ? __virt_addr_valid+0x18c/0x540
[ 1126.273763][T17785]  should_fail_ex+0x39d/0x4d0
[ 1126.278520][T17785]  _copy_from_user+0x2f/0xe0
[ 1126.283145][T17785]  bpf_prog_test_run_skb+0x259/0x11c0
[ 1126.288536][T17785]  ? lockdep_hardirqs_on+0x98/0x150
[ 1126.293760][T17785]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1126.299946][T17785]  ? cpu_online+0x60/0x60
[ 1126.304304][T17785]  ? cpu_online+0x60/0x60
[ 1126.308656][T17785]  bpf_prog_test_run+0x321/0x390
[ 1126.313625][T17785]  __sys_bpf+0x440/0x800
[ 1126.317909][T17785]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1126.323326][T17785]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1126.329520][T17785]  __x64_sys_bpf+0x7c/0x90
[ 1126.333972][T17785]  do_syscall_64+0x55/0xb0
[ 1126.338419][T17785]  ? clear_bhb_loop+0x40/0x90
[ 1126.343119][T17785]  ? clear_bhb_loop+0x40/0x90
[ 1126.347844][T17785]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1126.353766][T17785] RIP: 0033:0x7fc07818f749
[ 1126.358290][T17785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1126.377966][T17785] RSP: 002b:00007fc078fbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1126.386429][T17785] RAX: ffffffffffffffda RBX: 00007fc0783e5fa0 RCX: 00007fc07818f749
[ 1126.394479][T17785] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[ 1126.402490][T17785] RBP: 00007fc078fbf090 R08: 0000000000000000 R09: 0000000000000000
[ 1126.410492][T17785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1126.418487][T17785] R13: 00007fc0783e6038 R14: 00007fc0783e5fa0 R15: 00007fffea4eb3c8
[ 1126.426505][T17785]  </TASK>
[ 1127.382534][T17796] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1127.489689][T17799] netlink: 'syz.2.3858': attribute type 3 has an invalid length.
[ 1127.523756][T17799] netlink: 176588 bytes leftover after parsing attributes in process `syz.2.3858'.
[ 1127.820420][T17806] tap0: tun_chr_ioctl cmd 1074025677
[ 1127.838970][T17806] tap0: linktype set to 773
[ 1127.848581][T17806] tap0: tun_chr_ioctl cmd 1074025681
[ 1128.076667][T17810] netlink: 65055 bytes leftover after parsing attributes in process `syz.5.3862'.
[ 1129.597922][T17838] netlink: 'syz.4.3872': attribute type 3 has an invalid length.
[ 1129.611555][T17838] netlink: 176588 bytes leftover after parsing attributes in process `syz.4.3872'.
[ 1132.786212][T17871] FAULT_INJECTION: forcing a failure.
[ 1132.786212][T17871] name failslab, interval 1, probability 0, space 0, times 0
[ 1132.798952][T17871] CPU: 1 PID: 17871 Comm: syz.4.3885 Not tainted syzkaller #0
[ 1132.806441][T17871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1132.816524][T17871] Call Trace:
[ 1132.819827][T17871]  <TASK>
[ 1132.822782][T17871]  dump_stack_lvl+0x16c/0x230
[ 1132.827493][T17871]  ? show_regs_print_info+0x20/0x20
[ 1132.832718][T17871]  ? load_image+0x3b0/0x3b0
[ 1132.837254][T17871]  should_fail_ex+0x39d/0x4d0
[ 1132.841963][T17871]  should_failslab+0x9/0x20
[ 1132.846491][T17871]  slab_pre_alloc_hook+0x59/0x310
[ 1132.851558][T17871]  kmem_cache_alloc+0x5a/0x2e0
[ 1132.856360][T17871]  ? dst_alloc+0x105/0x170
[ 1132.860801][T17871]  dst_alloc+0x105/0x170
[ 1132.865072][T17871]  ip_route_output_key_hash_rcu+0x14f0/0x2360
[ 1132.871174][T17871]  ? ip_route_output_key_hash+0x12f/0x340
[ 1132.876911][T17871]  ip_route_output_key_hash+0x20b/0x340
[ 1132.882471][T17871]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1132.888555][T17871]  ? ip_route_input_rcu+0x3010/0x3010
[ 1132.893961][T17871]  ? __asan_memset+0x22/0x40
[ 1132.898580][T17871]  ip_route_output_flow+0x2a/0x150
[ 1132.903811][T17871]  ip_tunnel_xmit+0x96c/0x2360
[ 1132.908619][T17871]  ? ip_tunnel_xmit+0x120/0x2360
[ 1132.913604][T17871]  ? ip4_dst_hoplimit+0x2d0/0x2d0
[ 1132.918652][T17871]  ? kmem_cache_free+0xf8/0x280
[ 1132.923552][T17871]  ? gre_build_header+0x25b/0x990
[ 1132.928613][T17871]  ipgre_xmit+0x7a6/0xb20
[ 1132.932978][T17871]  dev_hard_start_xmit+0x246/0x740
[ 1132.938135][T17871]  __dev_queue_xmit+0x1a64/0x35a0
[ 1132.943200][T17871]  ? __dev_queue_xmit+0x245/0x35a0
[ 1132.948343][T17871]  ? __kmem_cache_alloc_node+0x13e/0x260
[ 1132.954003][T17871]  ? netdev_core_pick_tx+0x340/0x340
[ 1132.959310][T17871]  ? skb_release_data+0x1cf/0x800
[ 1132.964376][T17871]  ? pskb_expand_head+0xbfe/0x1230
[ 1132.969507][T17871]  ? __bpf_redirect+0x533/0xe60
[ 1132.974384][T17871]  __bpf_tx_skb+0x189/0x250
[ 1132.978905][T17871]  bpf_clone_redirect+0x270/0x3d0
[ 1132.983963][T17871]  bpf_prog_208b094576c80b22+0x5e/0x63
[ 1132.989447][T17871]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1132.995457][T17871]  ? lock_chain_count+0x20/0x20
[ 1133.000343][T17871]  ? seqcount_lockdep_reader_access+0x124/0x1c0
[ 1133.006650][T17871]  ? lockdep_softirqs_on+0x570/0x570
[ 1133.011968][T17871]  ? ktime_get+0x7f/0x280
[ 1133.016331][T17871]  ? seqcount_lockdep_reader_access+0x176/0x1c0
[ 1133.022599][T17871]  ? ktime_get_real_ts64+0x420/0x420
[ 1133.027905][T17871]  ? bpf_prog_test_run+0x321/0x390
[ 1133.033041][T17871]  ? __local_bh_disable_ip+0xf2/0x190
[ 1133.038434][T17871]  ? __cant_sleep+0x210/0x210
[ 1133.043136][T17871]  ? read_tsc+0x9/0x20
[ 1133.047241][T17871]  ? ktime_get+0x24b/0x280
[ 1133.051685][T17871]  ? bpf_test_run+0x15c/0x810
[ 1133.056393][T17871]  bpf_test_run+0x2c7/0x810
[ 1133.060929][T17871]  ? bpf_test_run+0x15c/0x810
[ 1133.065626][T17871]  ? convert___skb_to_skb+0x590/0x590
[ 1133.071044][T17871]  ? eth_get_headlen+0x200/0x200
[ 1133.076044][T17871]  ? slab_build_skb+0x25f/0x3f0
[ 1133.080925][T17871]  ? convert___skb_to_skb+0x3d/0x590
[ 1133.086235][T17871]  bpf_prog_test_run_skb+0xa67/0x11c0
[ 1133.091635][T17871]  ? cpu_online+0x60/0x60
[ 1133.095981][T17871]  bpf_prog_test_run+0x321/0x390
[ 1133.100942][T17871]  __sys_bpf+0x440/0x800
[ 1133.105218][T17871]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1133.110631][T17871]  ? lock_chain_count+0x20/0x20
[ 1133.115565][T17871]  __x64_sys_bpf+0x7c/0x90
[ 1133.120007][T17871]  do_syscall_64+0x55/0xb0
[ 1133.124469][T17871]  ? clear_bhb_loop+0x40/0x90
[ 1133.129176][T17871]  ? clear_bhb_loop+0x40/0x90
[ 1133.133896][T17871]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1133.139822][T17871] RIP: 0033:0x7f987218f749
[ 1133.144276][T17871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1133.163912][T17871] RSP: 002b:00007f9872f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1133.172383][T17871] RAX: ffffffffffffffda RBX: 00007f98723e5fa0 RCX: 00007f987218f749
[ 1133.180383][T17871] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 000000000000000a
[ 1133.188379][T17871] RBP: 00007f9872f66090 R08: 0000000000000000 R09: 0000000000000000
[ 1133.196371][T17871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1133.204373][T17871] R13: 00007f98723e6038 R14: 00007f98723e5fa0 R15: 00007ffced531c48
[ 1133.212393][T17871]  </TASK>
[ 1133.231662][T17872] netlink: 'syz.3.3884': attribute type 3 has an invalid length.
[ 1133.241082][T17872] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3884'.
[ 1133.569497][T17879] netlink: 'syz.3.3888': attribute type 3 has an invalid length.
[ 1133.584167][T17879] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3888'.
[ 1134.006539][T17896] netlink: 'syz.3.3897': attribute type 3 has an invalid length.
[ 1134.027173][T17896] netlink: 176588 bytes leftover after parsing attributes in process `syz.3.3897'.
[ 1134.038259][T17902] FAULT_INJECTION: forcing a failure.
[ 1134.038259][T17902] name failslab, interval 1, probability 0, space 0, times 0
[ 1134.081975][T17902] CPU: 0 PID: 17902 Comm: syz.5.3900 Not tainted syzkaller #0
[ 1134.089498][T17902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1134.099599][T17902] Call Trace:
[ 1134.102911][T17902]  <TASK>
[ 1134.105874][T17902]  dump_stack_lvl+0x16c/0x230
[ 1134.110596][T17902]  ? show_regs_print_info+0x20/0x20
[ 1134.115843][T17902]  ? load_image+0x3b0/0x3b0
[ 1134.120352][T17902]  ? __might_sleep+0xe0/0xe0
[ 1134.124948][T17902]  ? __lock_acquire+0x7c80/0x7c80
[ 1134.129982][T17902]  should_fail_ex+0x39d/0x4d0
[ 1134.134683][T17902]  should_failslab+0x9/0x20
[ 1134.139187][T17902]  slab_pre_alloc_hook+0x59/0x310
[ 1134.144224][T17902]  ? lockdep_hardirqs_on+0x98/0x150
[ 1134.149449][T17902]  kmem_cache_alloc_node+0x60/0x330
[ 1134.154679][T17902]  ? __alloc_skb+0x108/0x2c0
[ 1134.159306][T17902]  __alloc_skb+0x108/0x2c0
[ 1134.163760][T17902]  netlink_ack+0x376/0x1110
[ 1134.168299][T17902]  ? __dev_queue_xmit+0x245/0x35a0
[ 1134.173446][T17902]  ? netlink_dump+0xde0/0xde0
[ 1134.178181][T17902]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1134.183418][T17902]  ? perf_trace_lock+0xf7/0x380
[ 1134.188328][T17902]  ? __copy_skb_header+0xa7/0x550
[ 1134.193371][T17902]  netlink_rcv_skb+0x29a/0x480
[ 1134.198164][T17902]  ? rtnetlink_bind+0x80/0x80
[ 1134.202845][T17902]  ? netlink_ack+0x1110/0x1110
[ 1134.207632][T17902]  ? __lock_acquire+0x7c80/0x7c80
[ 1134.212666][T17902]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1134.217898][T17902]  netlink_unicast+0x751/0x8d0
[ 1134.222688][T17902]  netlink_sendmsg+0x8c1/0xbe0
[ 1134.227477][T17902]  ? netlink_getsockopt+0x580/0x580
[ 1134.232685][T17902]  ? aa_sock_msg_perm+0x94/0x150
[ 1134.237630][T17902]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1134.242924][T17902]  ? security_socket_sendmsg+0x80/0xa0
[ 1134.248383][T17902]  ? netlink_getsockopt+0x580/0x580
[ 1134.253602][T17902]  ____sys_sendmsg+0x5bf/0x950
[ 1134.258387][T17902]  ? __asan_memset+0x22/0x40
[ 1134.262982][T17902]  ? __sys_sendmsg_sock+0x30/0x30
[ 1134.268022][T17902]  ? __import_iovec+0x5f2/0x860
[ 1134.272888][T17902]  ? import_iovec+0x73/0xa0
[ 1134.277422][T17902]  ___sys_sendmsg+0x220/0x290
[ 1134.282114][T17902]  ? __sys_sendmsg+0x270/0x270
[ 1134.286905][T17902]  ? __lock_acquire+0x7c80/0x7c80
[ 1134.291953][T17902]  __se_sys_sendmsg+0x1a5/0x270
[ 1134.296821][T17902]  ? __x64_sys_sendmsg+0x80/0x80
[ 1134.301783][T17902]  ? lockdep_hardirqs_on+0x98/0x150
[ 1134.306983][T17902]  do_syscall_64+0x55/0xb0
[ 1134.311410][T17902]  ? clear_bhb_loop+0x40/0x90
[ 1134.316095][T17902]  ? clear_bhb_loop+0x40/0x90
[ 1134.320783][T17902]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1134.326691][T17902] RIP: 0033:0x7f991a98f749
[ 1134.331132][T17902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1134.350914][T17902] RSP: 002b:00007f991b878038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1134.359341][T17902] RAX: ffffffffffffffda RBX: 00007f991abe5fa0 RCX: 00007f991a98f749
[ 1134.367314][T17902] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[ 1134.375299][T17902] RBP: 00007f991b878090 R08: 0000000000000000 R09: 0000000000000000
[ 1134.383265][T17902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1134.391244][T17902] R13: 00007f991abe6038 R14: 00007f991abe5fa0 R15: 00007fff3e19ea98
[ 1134.399249][T17902]  </TASK>
[ 1134.580220][T17909] netlink: 'syz.5.3902': attribute type 3 has an invalid length.
[ 1134.588564][T17909] netlink: 176588 bytes leftover after parsing attributes in process `syz.5.3902'.
[ 1135.501087][ T1809] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1135.631017][ T1809] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1135.727096][ T1809] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1135.846594][ T1809] bond0: (slave netdevsim0): Releasing backup interface
[ 1135.856443][ T1809] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1137.286493][ T1809] hsr_slave_0: left promiscuous mode
[ 1137.297642][ T1809] hsr_slave_1: left promiscuous mode
[ 1137.308235][ T1809] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1137.316225][ T1809] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1137.353241][ T1809] veth1_macvtap: left promiscuous mode
[ 1137.358819][ T1809] veth0_macvtap: left promiscuous mode
[ 1137.365448][ T1809] veth1_vlan: left promiscuous mode
[ 1137.370878][ T1809] veth0_vlan: left promiscuous mode
[ 1137.612385][ T1809] team0 (unregistering): Port device geneve0 removed
[ 1137.957965][ T1809] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[ 1138.003219][ T1809] team0 (unregistering): Port device team_slave_1 removed
[ 1138.048478][ T1809] team0 (unregistering): Port device team_slave_0 removed
[ 1138.095358][ T1809] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1138.137385][ T1809] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1138.554935][ T1809] bond0 (unregistering): Released all slaves
[ 1140.607321][ T1809] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1140.697699][ T1809] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1140.772881][ T1809] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1140.840914][ T1809] netdevsim netdevsim4 netdevsim0 (unregistering): left promiscuous mode
[ 1140.851420][ T1809] netdevsim netdevsim4 netdevsim0 (unregistering): left allmulticast mode
[ 1140.867859][ T1809] team0: Port device netdevsim0 removed
[ 1140.876604][ T1809] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1141.464046][ T3471] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1142.565575][ T1809] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1142.644293][ T1809] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1142.738636][ T1809] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1142.810215][ T1809] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.002238][ T1809] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.081215][ T1809] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.157823][ T1809] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.220888][ T1809] bond0: (slave netdevsim0): Releasing backup interface
[ 1143.235423][ T1809] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0