last executing test programs:

10.184605251s ago: executing program 0 (id=2373):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)="5c00000011006bec9e3be35c6e17aa31076b", 0x12}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001c80)={r2, &(0x7f0000000bc0)="f9f4623dc6e08cfa4c9fbfb9a9ce7525c080ee0f5a9a15659ecb7a83a5fa71fdb0a9494f374e59c76d020ff5daa9038defe3b4659745f8bd12dd591944cad65034db77eccefab9264e370c2ccdb6a16597ff4051889cf1e204b97e806cf31fb930a8c23fdbc5b1ec3ad219faa985df25403bf6e87aea36bb83a268efa4b6d41763da6213fc1321f34e58e4d1949212d037323f5905964c66e82d2cfb12d9acb6b3296e016452f4a9eee40073588bdf26be716a3a142f540e8664e24f4912ef636ee13ef74273384f2620964e2d6f9844732aade1828dbd69910860c6fbe11a060b6f4bab530f2025893a0558fef9dacff7a630e7bcb765ca216990f7db5fc0c9bf9f10446a334f7ae446b6ec6d5c19bd2935788bdd9c2f4a89a047df6fb02eac6564c3f9feaeaa3566b4232c5805d641df71c0368e97414d8c821c14b22c2fc365cc8ff500ca3b04f29b1f01b4abe106bf29593adc371e691b8bcc570fa07263e4814f2758e1b2b8f427cb29cdd6ceac51add5b8b546e082f1f72261f1ae23c43403a26de560f7bd9ce9264d608242b9c2ed50e96fec07a7e0ab26e1906a183efd3c5eadb7b12f31cb5fe9f316c2c26f66fa5285ce80166fccd6922ce1484bf4f7574515b8197660efab7d1b3342a41c0eb594b95231224e54d9e80ac78cb97f742172fc69963df3ea61dfd18ef6726622884f6b0674088b91de54fa81e7fbdd8e3f96d61e46e3eed761c078fd1089a81a38638c6be201c3558e0415c0b4812b0101e45dd4d05cd169bba03a9aa74760fd62184a630960569d683f6d681107eea0106d17e605e30a9cb87e9a64f4191a3d4e765db281a32f943bf614bf6cf9dbfb2266201b69326b09db45762685c532e3d391a9c26d4751846eaa70243ed47e569bfd0d060e0d4d8500edfd0af53c12a8e96939b3de1e0a9bf5026a1736d2779539d91fe4281256dfedd8f49731cfaf3e3e8de749a89433eb4adf55e7367bf21729392e4a7f6d5042e6d03cb1c06e8c30ed3fbf00efd5f902579b22d2075907f671c990cd732471a738aa7d9dd95df0b1b37a7893b5fd2620165cf1aa3aad2590918ab3befa1df76f9152ad85610eba4ff97aab0672546953bab00a8aec74f8895830a6ffa43227e4ecdc328458f8f556afe366ea9139eedac9819c1cb4ae52cf480d6b59832ee991a2c13e6643e0fe94d0f72ace4bd005742daf59f924bed9ba4d92e09101fb88754a286370d929221074ae43bc4ab3bc0b51bbb52655312b97a7cc8f576ca3ae05a79a0376fa80b4f016d28ba4475b99d0a1149f2a39b8a1df37df6903eee210a6baf7b715f83d91a0ee73b65602922ee2ab44e8940a95b3308d66e5c9fc61885bb774ac2cb5e2cd9fede1ef752a025e476447c2ebd485a290d25a2520f8ac71e228a4fba414c11cf5475a387dd51b051dcd1a3be7b5185b2c10613229c2e7c985090a73b36ca9131fe3165834d46aeacd01be33f6d1550511940f32c57cd24314d0d5e44c2f0982ae1e1282d722f38600cdf6a4be3ed76c17c9ab4cfd2785234fba9a0f938f1bd0db1eb413e0610ec0c7e69d432662216f3e2aa71570b13aa86635a6ad6983ccd8111dd9fec292c550167960e817f2052b24f4d18213191c1d77ab8c555c6eb62f8daff12f99b8c34016451503147de920c45e2db8918852f8524e3c78934353f5f0559492eaa71d774c9ccfb7240fd338b4070f8e1f896d9b0a27226b6d5a3c7986c2362853104ee6f6062798eb013438689dfae8fe8378875e356151b727e72d8cf90b0d033e034767e593bb31778c5655ce663f61902bfaf2f6c1b26db6645699b9f7aadbbef6d313655ff1a92f5ec13c591260d7a125acd09e3d70f4645d85f2515310219a76d59baff3a7eba63700f477aee0f6fc949abfab4a947e1b2e892092413e02fb4da53aacab444940b5ac6165d2720efe597d52199422a4341c7068b8d6ad88c51b8d62173f3199dd7b563141c4d8a3f4baaa3df3ace54110e85bda075bbb144d07f6e6f847a80a0ac185779b1b4bb3c8a154e3d7837c46f47c7df0bb88fb03618dc72602a8359d521c0d4282362693e62f92c274003f904e32e4ad624acbd9d34579ecc5dc49c19f85d42052528e95f6be548d91099e936bb5254e3a289f2f5a1d492973d48c8a6fc8c6646c630ffbe64fa9025e9da9b46f092d45c985bd42f3bf0da637df56bc026a95e3ff9fc1a73d47518a87118ba78bfdfeaf1e48878bdaff6d11186128447907ed584d767408ce0b58fe40ab97bcadc32c474eb02cb61101b168d9e6324997765b9981c46b01e9c4d3af441f5fb1f354d48f78bd064779e8267f104d8af4fa3a2e0478ea9b295b092f5d37fb8c60a3602a7544c49cfb967bba7834976a23197dff25865459e2997057b08107db3826db9ca42caffbadc288693a801ba9de6763baa897d1f8ad3d09f3fccdaf11b96a2b2e2b1c81f9b95937460c225d1731967957d97ee55ee5f5f0bd25781b39b777ce13831282eb465837d599a3941d1c7c8b79837cf3b92782536f9765eb68cfde65b91cf9fe4eb6195d9b45d115c1b988a8bd345558a446b08ec935c8a34db0f97bf1571a28f3d2f5233e57b220fc8cdbc4669baa06470b04615da27369184f2ba793e7635b7ab20b15733e91fcdd0f480419fbae8e12bce10cf4a8298b53e8aded1015912ca029f7bcd8380f36c98f0fb5902ea2d995a76c25b9c5bd8042ee51802d7f58890c359f30a4df51dfe63297a354a12325bb988f313a66c3c8168652a29d9166c55654303fab035cc5511bedd23d02769ebef90640db83cfa3bfdefbd7cc727e4559bec8ca6b0b3bfe49ef34c15c70eff524ee73047439b8079f2819f1545f3439faabedebd6b56c21254479fc46ae9e5d36b3e7ad1aad1d1fdb1299f97c340b78f71ab54979713f9b89baececa83b52209234e6ac20104510a60feb6d551f7f2131778c297b8f111264ec36cd9c44a9a8bee99149b1cf6150b368410113a1c44936a1284d8ad076fff48818f20cff4a73576002b518d1dc3bb04c187549e2806bd0057befb22b877f47565343d110b553d3dd7149475f4a9add558c0e64af7729656fa6d937d226e6c5bcf63fd87af6cc91da41f82ee48be89c94f6c4eba3524fdbcc9a4199134df511adfdad3c1f55d2c6401803eff023bc76456fc262b5c07ce537e22dbfebd15997ba1829dc455d196eb5c7f828a306c75eec505f36a1348cf0bb692e7ca8d1232bb8a51917dbb38d1b931c459c57bd48594b1f15a1725d9a0bf83b51e89bc8c7fe427653a1140604263423a94646205154f4e51a18c4bd4cd9eb6c2db8426e5d423c894346d305dd062768494ef3aa4bc9dbbb4a50aec695ee162166e354647f6d2ff4bb8490947d71b8f497e5f0bcdfcfd3edd20e05fe982a70be9dfae9e69df439f4d6aa9e3a25b2809445247bcfd43040d2449bec39a825c900afa1f9804727b919f2aa0eb5be3469d1047bab3b3e36f16389263cd5717e9df0b437c0e068f8e4980fc09931640cbcd98fe9c39ea1debf9b0ec3ce4bf6fcbefdf03cfe26ec4b86fa00f0048e5624525d9cf27c6c1348e83a45a934ce694f0ee56bd87982edfaf690a4005ac6ef257feda3943f71e7aa7d5a42aa7da00ae24cd3c848f81d0f63471e5c1817101c94113817d4b73e88a5f91a43c620595fc2eeff8fb481456a4189b6428a08b9e23a4cefe066714a0d855c2edda27b0cff89f3123effbb15d08f42d801f8ef0cfd48d6c33c1400733f91062970ef90088b9826026e09258b469abbc0950e612590cc101cdeae40fa8dade0a649f629c06c9d3ea910d4368d33c0660d6e884594f791b613b17f024a33af69ba2c946e57eb5f5db75cd5f2aa30c74ee4708971af2cd18052088613fb91b4105ae1f14105026988ac8bbb7042e6f731026d1e78211ed36d07445086990341d8955eaf682df3c5cb2b946e196332d03e2812c09f0060449106145063621f81f1ba7b4853aaa1bcc0c086b7e2348295a82b97610050674afa50c3b86cb49454d3098012d894f653773ff802a510d542be22f7882339c71589e72832ba49a35691e8ece3bf94aa9ea47b6b89389575c52b7545b955082893a638af96bd036f1cae587a73568918f58427acd7dcc87181075acb84f5942ec0bccf48b42a77e03b7fd6d85acbadff7b393ed5211c9d3cc93623ec1cfb07c6930588f8037f81570f7cb05e1d4fda830db31df605e381b763a3243fbc28ecc8a453f49c4d92d27904b421f2758809d99d901e4df26db0efcaa9e604802c66b782fecdd0068a447327c9759e59572046e8d31ca83dd0cdc1bd5bcb406d6526625d97d0a73faa58992434c84f4f95107ffe35453ed530cc5b0419007a157ab7b65e954faa4a5683124230b6ee65adf64c2548eb8cc2df58001b4ed3fa84a12eb849b01332756fb958be7d04cc2b578d89d6fbf5c0a2b5a74499e636e947aaafb92a8b4810aafb1f3ff2206e1fc3595feb74666f81a8b4cc67b63a0b709184721e292e9bfc6316656d6b9c4b20ebdd55571dbf4b83cafa94b869f1c261e013ade84b6b1aa4476c292398f714c56829fa91baa64488b3194f1099e87da94e294c2259d1ef31f7792213be8d1314cfc5b385eea6c1fec2d8d96c35c44a2f549b18d6eab96fcc8decfa5ecf71f2dd2e419804f62b0ea10694be05da3538fee3ed4eb2fdfb859cab87047d2a77875faec45086c014f3a69aeadb1fe808a452c0fec2e200513dcc51d0c2806c5efbf1bb1a7c213e0a210a1a8c3c7a43459dd56686ccc9b92d8c3c135be39ad9b0ad8362b294f4847445814bd8a18997e790c46c2cb7d11add0f452405d4283554627f3cf14b6b79eb12fff2df7eb4e81eb7d01f13c0aae5c42a27ee5c48213ac0ba1e48267bc69569269ea273eba82c8e93d34425a56be005e87e3d149dea4a52dda62075be4b8dc6d7a3dcdce1ef4f0e3ccd1b70518d38f355db45b6886cbff262f100d84142a7817dc70ebfeba41b1959980a63f47441beef762839b914eb0c9ca4fa019a940f288f90e92b28c394f25e0fd835072c0a7f23122188ebcd828a94554dbd705c651bf28b7f2d3f68204fb644879b8df5d9b5b140386c64dfd409fa19dacad85f721f9e2f3902c08d2a52637c1e22d2fe200cda28955f006444b9e3f62c86cdb49dd6d6ca0de01ca0f5a4f01ae88815f28b541c852ca471c5bd5f37df5a7dabb507601be576f060d84235ce77f9f4a8a901c9955c5575f2c0e59e0c1d7d165fe6f2d150ec07465d64700eba3fbf77dfc476a89b9c0e5bccaa25305abf2bd2af7b66d6c58b33e55937d1813b2450d02ee8d7d5d6829ffc1cd40fbd2dff277b5cc5f4a775fd8f121d3fa6cb62f47573f66b70427de0dd732d5640663a457560bb12348d41ba70bcf22205ad6d7db7a8eae6ff29cdd6fd134ec1baa9b8c638d2c7c2d24f07d72b709984b5ff34e27f9ae0ca2e544ce904a141fef53464860a3b217c9c9bb3741911d89aa31e384eb5f2a0c319e2ec2c1c33608ffe1c3091bdb726c92a2eaee1bc5365da997db7c6e47b39cbaf23728152115e47187d049fdf390fd5077ffab67007c359ce61b1f8dd1c5fac06442c6cb53871cc373e278a927515e7b422d3afe992f03505827373a349df18137f0d6347eae037141d911cf1546b6339bc2ae774b0e46491b5f4c6ebe2a4c958761ce990080e8f8b340078169c3ca8d3e9d5c9611db104f2c78d4d12e82542891ecf635ad83358ff61e9ab1af1398bd597e11f54c91b59e4d43a7e6a", &(0x7f0000001bc0)=""/156, 0x4}, 0x20)
write$cgroup_subtree(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800"], 0xfe33)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000ac0)="d8000000180081064e81f782db4cb904021d0800fe027c05e8fe55a10a0005000140e90003600e41b0000900ac00060011000000a4000500000000000000035c3b61c1d6ddb2c124c2110e00367f6f94007174cf6efb8000a007a290eb49e2f11d457fbace2ee5a7cef4094200001b14d6d930dfe1d9d322fe7c4a50b5b9bd6ee6f61e59eb4edbb57a00e97a6f6e7b7e2720637a1e7892811eb64252f19e00360db798262f3d40fad95667e006dcdf61951f215ce3bb9ad809d5ad42ce81ed0bffece0b4ff010000000000000dd6e4edef3d93452a09004b", 0xd8}], 0x1}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r3, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, &(0x7f0000000180)=[0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0], 0x0, 0x4d, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x3f, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)

9.962861007s ago: executing program 0 (id=2376):
r0 = socket$kcm(0x2b, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x41, &(0x7f00000006c0)=r1, 0x4)
perf_event_open(&(0x7f0000000580)={0x2, 0x80, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xa141, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x4}, 0x1829, 0x0, 0x0, 0x0, 0xe, 0x1, 0x9, 0x0, 0xad8f, 0x0, 0x40}, 0x0, 0x10, r1, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r1, <r3=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000140)='%pB    \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000000), &(0x7f0000000240)='%pS    \x00'}, 0x20)
close(r0)

9.706629054s ago: executing program 0 (id=2377):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x41, 0x0, 0x11}, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2, 0x0, 0x9}, {0x10000002, 0x0, 0x0, 0xc}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x8000, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10d, 0x11, &(0x7f0000000000), 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0x1a000}], 0x1}, 0x80d1)

9.495242969s ago: executing program 0 (id=2380):
socketpair(0x1, 0x1, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff7ffa}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
socketpair(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x0, 0x6, 0x0, 0x0}, 0x94)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r1, 0x0, 0xfe33)
socket$kcm(0x2, 0x7, 0x2)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x1, r0, 0x4)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000002100000000000000080000b7080000000000007b8af8ff00000000b708000035f500007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r4, 0x0, 0x6, 0x8, &(0x7f00000006c0)="051cf3b75a97", &(0x7f0000000700)=""/8, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x61, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e1406ca000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000100aaaaaaffbe7d"])
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000002a40)={0xffffffffffffffff, 0x20, &(0x7f0000002a00)={&(0x7f0000000a00)=""/4096, 0x1000, <r5=>0x0, &(0x7f0000001a00)=""/4096, 0x1000}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0xe, &(0x7f00000000c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0x94)

8.816097198s ago: executing program 0 (id=2383):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xfdef)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff98}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001e00)={&(0x7f0000000c40), 0x0, &(0x7f0000001d00), &(0x7f0000001dc0), 0xb8, r0}, 0x38)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r4}, &(0x7f0000000280), &(0x7f0000000240)=r1}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)=@generic={&(0x7f0000000340)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000002c0)=@generic={&(0x7f0000000200)='./file0\x00', r5}, 0x18)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0xcdd, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20f42, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000140)={'nr0\x00', 0x6132})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1e0000000000000000000800d26b5f2f00"], 0x48)
r7 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r8)
socket$kcm(0x2, 0x1, 0x84)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
socket$kcm(0x28, 0x5, 0x0)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
socketpair(0x5, 0x1, 0x5, &(0x7f0000000000))
write$cgroup_subtree(r6, &(0x7f0000000000), 0xfe3a)
sendmsg$inet(r3, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

7.595944741s ago: executing program 0 (id=2386):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8912, &(0x7f0000000080))
ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, &(0x7f0000000280)={'geneve0\x00'})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000680)={'ip6erspan0\x00', 0x2})
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff7ffa}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
socketpair(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x0, 0x6, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000001800000000000004", @ANYRES32], 0x0}, 0x90)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="33fe0000240013"], 0xfe33)
socket$kcm(0x2, 0x7, 0x2)
r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8)
perf_event_open$cgroup(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x3, 0x6, 0xa, 0x0, 0x5, 0x0, 0xc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x13, 0x4}, 0x3800, 0x1ff, 0x8, 0x7, 0xffffffffffffffff, 0x2, 0x80, 0x0, 0x4, 0x0, 0xf}, r4, 0x1, r2, 0x4)
write$cgroup_int(r4, &(0x7f0000000140)=0x7fffffffffffffff, 0x12)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000ac0)="4c000000140097f87059ae08060c040002ff0f020000000000001a350182fa73a69d35a21429b17cd02941601d60ffc0cca84708f7abca1b4e7d06a60300000072f750375ed08a5604000000", 0x4c}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r7, <r8=>0xffffffffffffffff}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000002100000000000000080000b7080000000000007b8af8ff00000000b708000035f500007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r9, 0x0, 0x10, 0x1, &(0x7f00000006c0)="051cf3b75a97acbf", &(0x7f0000000700)=""/8, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x1b)
sendmsg$kcm(r6, &(0x7f0000000680)={0x0, 0x61, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e1406ca000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000100aaaaaaffbe7d"])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000040000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000002a40)={0xffffffffffffffff, 0x20, &(0x7f0000002a00)={&(0x7f0000000a00)=""/4096, 0x1000, <r10=>0x0, &(0x7f0000001a00)=""/4096, 0x1000}}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0xe, &(0x7f00000000c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r11, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

4.266022333s ago: executing program 2 (id=2402):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002f40)=""/229, 0xe5}, 0x40000004)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/29], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x161)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0xc23d, 0xa0112, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext={0x594f, 0x5}, 0x1041c1, 0xc, 0x9, 0x1, 0x0, 0x300, 0x1}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="1310000016"], 0xfe33)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
gettid()
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x80000001, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x746f2f51, &(0x7f0000000080)=[{&(0x7f0000000040)="3f0400001c00810ce00f80ecdb4cb9f207c804a01f000000030006fb0a0002000a0ada1b40d80300000000000000", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)

4.188369475s ago: executing program 3 (id=2403):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1d, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f00000000c0)=[{0x25, 0x1, 0x3, 0xfffffffe}, {}, {0x28}, {0x6, 0x6}]})
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000380)={&(0x7f00000001c0)=@nfc={0x27, 0x0, 0x0, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000280)="8a2d7675", 0x4}, {&(0x7f00000002c0)="86b1e50d35fed32ae77b32bb23432bbbb0fb7600697f13923449ae72a6e2bd5fb8544234068d588508d5e7c1f8538a020632", 0x32}], 0x2}, 0x20000000)
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000000))
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000002340)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000001340)=""/4096, 0xfa, 0x1000, 0x1, 0x7}, 0x28)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r6, &(0x7f0000000080), 0x0}, 0x20)
r7 = socket$kcm(0xa, 0x1, 0x0)
setsockopt$sock_attach_bpf(r7, 0x29, 0x21, &(0x7f0000000100), 0x120)
sendmsg$kcm(r7, &(0x7f0000000000)={&(0x7f0000000540)=@l2tp6={0xa, 0x0, 0x0, @empty}, 0x80, 0x0}, 0x240440d1)
close(r5)
r8 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r8, 0x6, 0x1e, &(0x7f0000000500), 0x4)
r9 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7f, 0x7}, 0x104101, 0x4, 0x7fff, 0x1, 0x10, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000002090000850000004300000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r12}, 0xc)
ioctl$TUNGETVNETLE(r5, 0x8953, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x64, '\x00', 0x0, @fallback=0x2a, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)

3.751001487s ago: executing program 2 (id=2405):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x41, 0x0, 0x11}, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2, 0x0, 0x9}, {0x10000002, 0x0, 0x0, 0xc}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x9, 0x8000, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10d, 0x11, &(0x7f0000000000), 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0x1a000}], 0x1}, 0x80d1)

3.740632368s ago: executing program 1 (id=2412):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002f40)=""/229, 0xe5}, 0x40000004)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/29], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x161)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0xc23d, 0xa0112, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext={0x594f, 0x5}, 0x1041c1, 0xc, 0x9, 0x1, 0x0, 0x300, 0x1}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="1310000016"], 0xfe33)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
gettid()
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x80000001, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x746f2f51, &(0x7f0000000080)=[{&(0x7f0000000040)="3f0400001c00810ce00f80ecdb4cb9f207c804a01f000000030006fb0a0002000a0ada1b40d80300000000000000", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)

3.524514233s ago: executing program 3 (id=2406):
socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000300))
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, 0x0, 0x0}, 0x94)
r3 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0x9, &(0x7f0000000380), 0x98)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000980)={r2, 0xe0, &(0x7f0000000880)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000e9, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6a, &(0x7f0000000440)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000700), &(0x7f0000000740), 0x8, 0x53, 0x8, 0x8, &(0x7f0000000780)}}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000000f0000dbeaf9b9971a3ff4f4cf4993cc19597f048498aa429735e2d3c6c45da646", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r6, &(0x7f00000001c0), &(0x7f0000000000), 0x2}, 0x20)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000d80)="b8", 0x1}], 0x1}, 0xc080)
r7 = socket$kcm(0xa, 0x3, 0x3a)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x16, '\x00', r5, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
sendmsg$kcm(r7, &(0x7f00000005c0)={&(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000080), 0x1}, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000100)=ANY=[@ANYRES8=r5, @ANYRES32, @ANYBLOB="0f00"/20, @ANYRES8=r4, @ANYRESDEC=r0, @ANYBLOB="00000000200000000300"/28], 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = socket$kcm(0x10, 0x400000002, 0x0)
setsockopt$sock_attach_bpf(r9, 0x10e, 0xb, &(0x7f00000001c0), 0x4)
sendmsg$inet(r9, 0x0, 0x20000000)
r10 = openat$cgroup_procs(r8, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f0000000380), 0x12)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x100000000, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x36c, 0x4, @perf_config_ext={0x3, 0x80000000}, 0x0, 0x80000000000000c8, 0x7fff, 0x0, 0xa45, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))

3.26505256s ago: executing program 1 (id=2407):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x6)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x2, 0x200000000000003, 0x106)
close(r0)
socket$kcm(0x2, 0x200000000000001, 0x106)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000002a00)={&(0x7f00000006c0)="c629f61194d36f868890e464dfad98e97216f2f181041a21bb4617ebe6adbd21e325b74a85eadcf7c8c0f66e7d85f2df5a0260861ba0a5ff9293270223e7af0858ef845d88fdc6721dd4ed35a2b62677e7caa97638e07cfd641b35b84ccd6fb1d6f233f741fbf71c63a3a8f54bef45066d1d58346790bc044929001b8bf86a04796619bc20", &(0x7f00000008c0)=""/209, &(0x7f0000001980)="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", &(0x7f0000002980)="68ca2ddd4452e024b12e2dc7fcb62af90fc5", 0x3, r1, 0x4}, 0x38)
sendmsg$tipc(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)="174a8a1c08079feec019b8c7abf2e5046bd083", 0x13, 0x24000840}, 0x20040089)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x3406c096)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000efffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000000000738af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000eb15000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000010c0)={r3, 0xe0, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000dc0)=[0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f0000000e00)=[0x0], &(0x7f0000000e40)=[0x0], 0x0, 0x71, &(0x7f0000000e80)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000f00), &(0x7f0000000f40), 0x8, 0xbc, 0x8, 0xfffffffffffffe2a, &(0x7f0000000640)}}, 0x10)
sendmsg$inet(r4, &(0x7f0000001240)={&(0x7f0000000040)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000000d40)=[{&(0x7f0000000200)="03178015", 0x4}, {&(0x7f0000000780)="1268ba16520e1d46858e4753461b99abeb3d191a09965d110b3087bd5a9c1ade23eec28861cfb12339a87113d8aa17cb8d03b2b8dfa590a5945d7ec595845f235712cf2bbdb9745f4ee310861773eaa2d87f88aa65fc12f59c7dbc0577828c3d", 0x60}, {&(0x7f0000000a00)="aa4b193e45a21d3155cafcdb6e6c9418cead2fae03da55d51448c21276e06c353e5ba607cc116db785c2d2ee4df3475ebdbb24f7f6f7d915c051ae8c8041d27a5327785eb6330f877de6045b7ef81a5b875eb96c2009e4127c6a495b969ff697b6ee9556e73326304876eaaee496a4aa3b4e111156185a3c15f12625cb6d8969a40eff429189271a82b309dd6cf52995c2d60f7c64293d3aa4692910b3a7f701f645253ce0914553c824f732beb09b85ede6bdc9e53dbf218b4a0a2ae10780c43a9f62c9aa258b274c9e072e", 0xcc}, {&(0x7f0000000b00)="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", 0xfd}, {&(0x7f0000000c00)="d52d86120ce01edc75e1c1025e99ce2026910fbec6e0c2875d94b2e956c923282e5be27505fef842cde36541b8ae0cd9c8474e0a34ca44cc22f5cc4893706fa1296c89be0bddee7bd0e995ff199b88ff6c9ff7b6750f51c9b2511c12c3bc749a30fc5bf903c8db98f49bf4ecbcbb98d75eac61d2ec73a108cc2c4ff8ed9c761e6d54fb4bd023af988c36cca8d85be8563a07e3e12b73218f810fa391195da2d4637d938d8d2ef25242a78745f3e690a2ce", 0xb1}, {&(0x7f0000000cc0)="8cf92c7fe28703d4d8948f539138e4a5796587d74c80e589b5915292ba33452ec3ce66595460bd684e5e64c352ba0f3bfeeee65cb78c29af152ac92068b38e5b2ad90e5eb9a82ac5719f3e3219c6da511dfad550807845674171", 0x5a}], 0x6, &(0x7f0000001100)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x5}}, @ip_ttl={{0x14, 0x0, 0x2, 0x3}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @rand_addr=0x64010102}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x54}}, @ip_retopts={{0x70, 0x0, 0x7, {[@end, @cipso={0x86, 0x36, 0x2, [{0x0, 0x3, "db"}, {0x7, 0xe, "714350b97b14d52b76abd910"}, {0x1, 0x4, "9170"}, {0x7, 0x12, "3f5aba8983129a017c07d20201d5bf8a"}, {0x5, 0x9, "c2cf40eccbfb19"}]}, @timestamp={0x44, 0x10, 0x34, 0x0, 0xc, [0xab52, 0x9, 0xf0c]}, @end, @lsrr={0x83, 0x13, 0xf0, [@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @private=0xa010101]}, @ra={0x94, 0x4}]}}}], 0x128}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x1f, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x297f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x3, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r7, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0)
perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0xa, 0x7, 0x1, 0x6, 0x0, 0x0, 0x2040, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x9, 0x5}, 0x4, 0x0, 0x6, 0x5, 0xf439, 0x101, 0x6, 0x0, 0x7, 0x0, 0x9}, r7, 0x0, r6, 0xd)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
close(r9)
recvmsg$unix(r8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd"], 0xcfa4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x3, [@fwd={0x1}, @struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x3}]}, @typedef={0x1, 0x0, 0x0, 0x8, 0x1}]}, {0x0, [0x5f]}}, &(0x7f0000000300)=""/209, 0x4b, 0xd1, 0x2}, 0x20)
write$cgroup_subtree(r10, &(0x7f0000000000)=ANY=[], 0xfdef)

3.26465195s ago: executing program 2 (id=2408):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xc48, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5, 0x184104, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x4}, 0x100600, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfdd9}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020039000b05d25a806f8c6394f90324fc602f00000008000300feff020037153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x6, 0x20, 0x2, 0x40, 0x0, 0x7fffffffffffffff, 0x8, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x2ee8, 0x4}, 0x108208, 0x4, 0x4, 0x4, 0x7, 0x1, 0x6, 0x0, 0x5, 0x0, 0x7fffffffffffffff}, 0x0, 0x4, r0, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="050000000000000079119900000000008510000002000000850000000500000095000000000000009500a5050000000002a22601d06c26dc40d42dfc1bff24c07ec1486d551999d3f10d67fe75fecc37186058a5fa935fecd973a3ac718e33d216dec9bed3de19dca78b9637b6d9d20a4492e14efc8802a51592406443ed34c2c271a0446c55dda3d304c163b255c9d38b378dddd3bfe503e15621c31ec3704e3c71b1260b0fa12baad67698a97a421c16753558a61abf9df10c14aa171322b19c138b1f367f8971ee229a0707b449e6ab4083ffea45cbed6515fa7bedfde4cfbc429c77c0ed32c2f5fdc380f5aeeb7b4a1e3a4289cf8332bc427d3685fdc303d84a573a820f5c86c66c6b47e5306977202576139fe60e5353b4b31f727c2aced140c1492201fe6038ba7dddf857ed3f93f9b497be7fc8e7d5c5edb45facb662eab81af20c9e940fa93a1e4a62855c8628a9c6a152fc0f0ad05a9870810e4d214a578b60fcef10003ebf48bd4abfea080c80"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)="5c00000011006bec9e3be35c6e17aa31076b876c1d0000007ea20864160af3653c001ac00400020208000200030001001400000007b556a737c160f9555b4755bb05251e618200000051f60a84c9f4d493", 0x51}, {&(0x7f0000000140)="7e3f15d6d2ee", 0x6}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(r5)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x4, 0x0, 0x0, 0x0, 0x2, 0xbd05, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x3}, 0x828, 0x8, 0x0, 0x0, 0xf65, 0x800000, 0x5, 0x0, 0x0, 0x0, 0x44}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="d80000001c0081044e81f782db44b904021d080201000000040000a118000c000600142603600e1208000f0100810401a8001600200001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x40840)
r6 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[@ANYBLOB="1303000054009155090893b31b71a54a07"], 0xfe33)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x8982, 0x20000000)
ioctl$TUNGETFILTER(r5, 0x801054db, &(0x7f0000000340)=""/127)
r7 = perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0xb9, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xc, 0x7}, 0x410, 0x2000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x9)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e00000003000000000000000800000000000000", @ANYRES32, @ANYBLOB="000000000000000200000000000000000000000062f5bc784b36cfb101dd18ce542426bd3bae4cd8523db5e3", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\v\x00\x00\x00@\x00'/28, @ANYRESOCT, @ANYRESDEC=r2], 0x50)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="61123000000000006113100000000000bf2000000000000016000200071b48013d030100000000009500000000000000bc26000000000000bf67000000000000070200000fff07276702000003000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)

3.216437961s ago: executing program 3 (id=2409):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8912, &(0x7f0000000080))
ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, &(0x7f0000000280)={'geneve0\x00'})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000680)={'ip6erspan0\x00', 0x2})
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff7ffa}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
socketpair(0x1, 0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x0, 0x6, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000001800000000000004", @ANYRES32], 0x0}, 0x90)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="33fe0000240013"], 0xfe33)
socket$kcm(0x2, 0x7, 0x2)
r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8)
perf_event_open$cgroup(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x3, 0x6, 0xa, 0x0, 0x5, 0x0, 0xc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x13, 0x4}, 0x3800, 0x1ff, 0x8, 0x7, 0xffffffffffffffff, 0x2, 0x80, 0x0, 0x4, 0x0, 0xf}, r4, 0x1, r2, 0x4)
write$cgroup_int(r4, &(0x7f0000000140)=0x7fffffffffffffff, 0x12)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000ac0)="4c000000140097f87059ae08060c040002ff0f020000000000001a350182fa73a69d35a21429b17cd02941601d60ffc0cca84708f7abca1b4e7d06a60300000072f750375ed08a5604000000", 0x4c}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r7, <r8=>0xffffffffffffffff}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000002100000000000000080000b7080000000000007b8af8ff00000000b708000035f500007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r9, 0x0, 0x10, 0x1, &(0x7f00000006c0)="051cf3b75a97acbf", &(0x7f0000000700)=""/8, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x1b)
sendmsg$kcm(r6, &(0x7f0000000680)={0x0, 0x61, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e1406ca000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000100aaaaaaffbe7d"])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000040000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000002a40)={0xffffffffffffffff, 0x20, &(0x7f0000002a00)={&(0x7f0000000a00)=""/4096, 0x1000, <r10=>0x0, &(0x7f0000001a00)=""/4096, 0x1000}}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0xe, &(0x7f00000000c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r11, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

2.004813695s ago: executing program 2 (id=2410):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_config_ext={0x40, 0x8}, 0x10a410, 0x3, 0x43a1bd76, 0x7, 0x7, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x7, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="1808000000000500000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bc8900000000000035090100000500009500000000000000b7080000000100007b9a00fe00000000b509ffffff1f0000c3aaf0fff1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7050000080000004608ebff76000000bf9800000000000056080000000000008500000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000006c0)="5c0000006c006bcd9e3fe3dc6e48aa31086b8703240000007ea60264160af365040014001f0003000e0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="d8000000210081044e810382db44b9040a00000000fe0500002015000600142603600e1209001100800000000001060000b94dcf5c0468c1d67f6f94007134cfeee0800089e408e8d8ef52b40800de00e06bbace8017cbec4c2ee5a7cef4090000001fb79164075ee4ce1b14d6d930dfe1d9db22fe7c9f8775730d16a4683f1aeb4edbb57a5035ccb29e00360db70100000040fad95667e006dcdf969b3ef35ce3bb9ae5abb3dbe08141a90bffece0b42a9ecbee5de6ccd40dd6e4edef3d93c42a83954b43370e9701008400002d3bc75dc0bb9dd33e438c", 0xd8}], 0x1}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a00)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r4 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000140)={[{0x2b, 'blkio'}, {0x2d, 'net_cls'}, {0x2d, 'net'}, {0x2b, 'perf_event'}, {0x2b, 'cpuset'}, {0x2d, 'io'}, {0x2d, 'blkio'}]}, 0x34)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000f91f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r6, r5}, 0xc)
r7 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r7, 0x29, 0x6, 0x0, 0x2000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb7020000"], 0x0, 0x8, 0x0, 0x0, 0x41000}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x891c, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'tunl0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x89f2, &(0x7f0000000080))

2.003022325s ago: executing program 1 (id=2418):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xc48, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5, 0x184104, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x4}, 0x100600, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfdd9}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020039000b05d25a806f8c6394f90324fc602f00000008000300feff020037153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x6, 0x20, 0x2, 0x40, 0x0, 0x7fffffffffffffff, 0x8, 0x6, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x2ee8, 0x4}, 0x108208, 0x4, 0x4, 0x4, 0x7, 0x1, 0x6, 0x0, 0x5, 0x0, 0x7fffffffffffffff}, 0x0, 0x4, r0, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)="5c00000011006bec9e3be35c6e17aa31076b876c1d0000007ea20864160af3653c001ac00400020208000200030001001400000007b556a737c160f9555b4755bb05251e618200000051f60a84c9f4d4938037e7", 0x54}, {&(0x7f0000000140)="7e3f15d6d2ee", 0x6}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(r5)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x4, 0x0, 0x0, 0x0, 0x2, 0xbd05, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x3}, 0x828, 0x8, 0x0, 0x0, 0xf65, 0x800000, 0x5, 0x0, 0x0, 0x0, 0x44}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="d80000001c0081044e81f782db44b904021d080201000000040000a118000c000600142603600e1208000f0100810401a8001600200001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x40840)
r6 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[@ANYBLOB="1303000054009155090893b31b71a54a07"], 0xfe33)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x8982, 0x20000000)
ioctl$TUNGETFILTER(r5, 0x801054db, &(0x7f0000000340)=""/127)
r7 = perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0xb9, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xc, 0x7}, 0x410, 0x2000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x9)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e00000003000000000000000800000000000000", @ANYRES32, @ANYBLOB="000000000000000200000000000000000000000062f5bc784b36cfb101dd18ce542426bd3bae4cd8523db5e3", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\v\x00\x00\x00@\x00'/28, @ANYRESOCT, @ANYRESDEC=r2], 0x50)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="61123000000000006113100000000000bf2000000000000016000200071b48013d030100000000009500000000000000bc26000000000000bf67000000000000070200000fff07276702000003000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)

1.747433462s ago: executing program 3 (id=2411):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001d008104e00f80ecdb4cb9f207c804a00d000000880802fb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)

1.307765714s ago: executing program 3 (id=2413):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000019c0)=@bpf_tracing={0x1a, 0x11, &(0x7f0000001880)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x40}, @tail_call, @ringbuf_query, @map_idx={0x18, 0x9, 0x5, 0x0, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @func={0x85, 0x0, 0x1, 0x0, 0x1}]}, &(0x7f0000001940)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x1a, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001980)={0x3, 0x3, 0x379, 0x3}, 0x10, 0x1fb1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfe}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000002dc0)={0x6, 0x5, &(0x7f0000001a80)=ANY=[@ANYBLOB="18020000feffffff000004000000000085000000410000008500000005000000950000000000ed00224485790ea6ccb01aff94b1e20faa4314e8406f3aa8e84ffaf5c0d00e04539cb9532d6384ac0c9906bb4f07f1321a9685a9aedf96e24d757d4d224f77d961b9f0389ad83fadeaceef29381dc7d34e825bc3a68a3f74bfd6360ae50e64c979f56f63437eb5520839dc94bfe2c59dba9e0b889a0365a860ea6c45679d9d428312434627b83ae3df81b53378"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x8}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0x18000000000002a0, 0x29, 0x0, &(0x7f00000001c0)="3caf26fa49a205e0f59e86349d9c6c3f69f1bf994b2ad5858e609b3f01b44900000000000000006bb6", 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000140)={0x948a, <r1=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000002d00)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0xfffffffc}, 0x8, 0x10, 0x0, 0x0, r1}, 0x94)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x9, 0x4, 0x4, 0x2, 0x80, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x5, 0x4, 0x4, 0xa8, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x18, 0xd, &(0x7f0000001b40)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x598}, [@map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}, @exit, @tail_call={{0x18, 0x2, 0x1, 0x0, r3}}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xc}]}, &(0x7f0000000440)='GPL\x00', 0xffff8001, 0x1000, &(0x7f0000002e80)=""/4096, 0x41000, 0x2, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, &(0x7f0000002b40)={0x6, 0x4000002}, 0x8, 0x10, &(0x7f0000002b80)={0x2, 0xa, 0xfffffffa, 0xf}, 0x10, r1, 0xffffffffffffffff, 0x1, &(0x7f0000002bc0)=[r2], &(0x7f0000002c00)=[{0x2, 0x5, 0x80, 0x2}], 0x10, 0x1}, 0x94)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000080)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x6c2b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
recvmsg$kcm(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x12, 0x9, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x4000}, 0x50)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000005000000080000000f"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x14, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000840)={r7}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r5, <r8=>0xffffffffffffffff}, &(0x7f0000000780), &(0x7f0000000740)=r7}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000017c0)={r8, &(0x7f00000006c0)="81bd61d703", &(0x7f00000016c0)=""/232}, 0x20)
r9 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0xa5ba2b88, &(0x7f0000000080)=[{&(0x7f00000004c0)="e03f03003b000b05d25a806c8c6394f901800000000000000b020a00053582c137153e37000c0280fc80ecd8a3c138d90b1000f80b", 0x33fe0}], 0x1}, 0x40000)
r10 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
close(r12)
close(r11)
recvmsg$unix(r11, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r13=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r10, 0x84, 0xd, &(0x7f0000000000)=r13, 0x8)

1.077416951s ago: executing program 2 (id=2414):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_config_ext={0x5, 0x1ff}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x100904, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000d40)=ANY=[@ANYBLOB="9feb01001800000000000000a8000000a8000000060000001000000006000084ff"], 0x0, 0xc6, 0x0, 0x1, 0xa72}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1e, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x0, 0x0, 0xa}, {0x1, 0x0, 0x2}, {0x0, 0x80004, 0x10100, 0x3}], 0x10, 0x1}, 0x94)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000248053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
r4 = gettid()
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x100, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300), 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000003c0)="10b8e7d4b2a7485f36760fca6f49b8c940f7335fa7ca2269326b33dcc28f843f2a6f570aa99a46400df495fdaeec657242643ee703b50ad9ef5df190134c311ada8ff77dec10e6a4608a1c525b0d56fb906d", 0x52}, {&(0x7f0000000500)="1788d66d9824d7a2836c1a0f426dd77ac903ae2c7f228bf0c1c394b050799a50a0feb8171af735818761a3fa44f7520faf9e6f199eacb43c60f326bbb396fcd21f1b4738b741c94cfc8b3e5453be721e1aa665f2a0d40f1e2dab7e0cfdf8492bbbfc773a28536c9e01dd01d41353e6d8dc6e2e7cbadf8daf45ccda4a53455c068dc2369c27af25134f400146663fac7858410866e5cebd3c", 0x98}, {&(0x7f00000005c0)="fb45b6aa1e02df35fb0da99ab22c08c7e6fb8a554797802af371d0ddae3a93c89157d16e924349c09eb940ce2ebcc5c5da3801232343010eea5b303a9ca854e340b5c44feb2d8236e89fdbb6f3a11c3a38f5dae69666243f4996f19d3d8afe46bf7397fdaaa990bef029646e928d3137e2478633f294a06ad715cf26780b578dd1bc0c1684ca8e16ef5658857705120cd954783d5f7a8aa9e6c3a46192edbeb1de6ff882c790dbe25463ed61625c6cd147eee1697b872a3ded10ddd9a2fe839d8f3594a30307c4310aedd230ef1fb5e00c94bc3dcda105e9b6de7777f57c", 0xde}, {&(0x7f00000006c0)="d861d7d274f98558afa4eb06d9f478e48fa84b109ed56f2584e48caddd7ee703db78e10cf173aa6c154f21b4737c72d34dba4be1cad2fab5fe9ee64779ba", 0x3e}, {&(0x7f0000000700)="b5993d1345be16c7139e9aa0a5d8d0c9667aeaee20dc316e4f66e058bb1764048d833e1b673204c47b6e5d4041edb553c95619c8d72e4cdcc5282bf726661b3082c24f6bab4e4f68dd842da5dd0effa64849a4f308c63400f3d3", 0x5a}, {&(0x7f0000000780)="712f15a62efe14fdd3d60af192b6fc4a82fd28c6b6b0cb0b9b0a85540672dc775570183b7bf26a537906d753b7aec4079941d6ece492ae353b6c70b6486fb957fc3f2c5c7a81035d98d611e77f5d0f1993dffd0c0e6c07", 0x57}, {&(0x7f0000000a00)="2d78c2f1b3b46631852f0cdecb591c04ad14f9fe57206b1f352b708770e412230563e04cfa00af2b7b8c7a6a2ce60d27674d3089391cd33ac14e96fcb356664a40256d4e5ff28870cc97e507de420c23086b3ce8247b8ea8e2418d75ac41c179f555c3e4677af02b15266c08ac25bc03e19363b62059027da4b105dc8024ce18d282b7f7ac1f3c326bfde758f8fed23bf677775534be0c62a686ca5ad0969ec020468bbec16e6f65d115da8deeb4a77f75", 0xb1}, {&(0x7f0000000ac0)="7d0f31aa3139c972ff23e82e06458e3a0adf8a37c178b1e43201f33be53c47a78f16b04b4bfed2e116a99c10f7759042ac0ac60cd8d3978e226d2665d1de48d5a0f13944c5604e0e216e35aea6375f8ab49dea4fec1391d9fa1da54709b3efc704bf8dbaa9c28e86687440e0a90fa6e6bd08feda17b7f301625338761166c63cb9cb479d0de507019569d31e0441ef", 0x8f}], 0x8}, 0xc805)
write$cgroup_subtree(r7, &(0x7f0000000380)={[{0x2b, 'pids'}, {0x2d, 'blkio'}, {0x2d, 'cpuacct'}]}, 0x16)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={r4, r5, 0x0, 0x1, &(0x7f0000000040)='\x00'}, 0x30)
syz_open_procfs$namespace(r4, &(0x7f00000002c0)='ns/pid_for_children\x00')
close(r2)
recvmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f0000000180)=r8, 0x17e)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03076844268cb89e14f008004be0ffff00124000633277fbac141416ac141416940807034d2f87e5890c6aab845013f2325f1a39018603178da1880b251812a59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126f4000000000000000000", 0x0, 0xfe, 0x60000000, 0x0, 0xfffffffffffffcb6, &(0x7f0000000000), &(0x7f0000000880)="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", 0x6}, 0x2c)

994.181553ms ago: executing program 1 (id=2415):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002f40)=""/229, 0xe5}, 0x40000004)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/27], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x161)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0xc23d, 0xa0112, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext={0x594f, 0x5}, 0x1041c1, 0xc, 0x9, 0x1, 0x0, 0x300, 0x1}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="1310000016"], 0xfe33)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
gettid()
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x80000001, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x746f2f51, &(0x7f0000000080)=[{&(0x7f0000000040)="3f0400001c00810ce00f80ecdb4cb9f207c804a01f000000030006fb0a0002000a0ada1b40d80300000000000000", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)

895.497525ms ago: executing program 3 (id=2416):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1c00000000000000000007000000440c0771640119626f"], 0x20}, 0x200040c4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x2, 0x73)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000002c0)={r2}, 0x4)
r3 = openat$cgroup_procs(r1, &(0x7f0000000100)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000001c0), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0xffffffffffffffff, r0, 0x0, 0x2, &(0x7f0000000080)='\xf3\x1e'}, 0x30)
socket$kcm(0x10, 0x2, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000003c0)="d8000000180081064e81f782db4cb904021d0800fe027c05e8fe55a10a0005000140020003600e41b0000900ac0006e01120000016001600014002000000035c3b61c1d67f6f94007174cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001b14d6d930dfe1d9d322fe7c4650b5b9bd6ee6f63f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b4ff010000000000000dd6e4edef3d93452a09004b43370e9703920723f97e46bb5c07540d3b", 0xd8}], 0x1}, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000000), 0x4)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r6 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r6, &(0x7f0000003780)={0x0, 0x3000000, &(0x7f0000000080)=[{&(0x7f0000000040)="0205000902000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
syz_clone(0x10eb22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b80, 0x2, @perf_config_ext={0xd, 0x9}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x0, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)

446.728728ms ago: executing program 1 (id=2417):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x2d89dd4bd82bb7f6, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x400, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000240)={{0x1, <r1=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000200)='%pS    \x00'}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={0x1, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r3, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, r1, 0x2, '\x00', r2, r3, 0x2}, 0x50)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000)=r4, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0x72e8, 0x2, 0xe, 0x1104, r1, 0x10001, '\x00', 0x0, r3, 0x2, 0x3, 0x0, 0xf}, 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='mem\x00\x10\x00\x00\x00\x00\x00\x00I\xa2l')
r5 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
close(r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="12000000010000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000200000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="2703022b590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000003c21c00b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001400)="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", 0xa91}], 0x3}, 0x40000)

426.802788ms ago: executing program 2 (id=2419):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1c00000000000000000007000000440c0771640119626f"], 0x20}, 0x200040c4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x2, 0x73)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
close(0xffffffffffffffff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000002c0)={r2}, 0x4)
r3 = openat$cgroup_procs(r1, &(0x7f0000000100)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000001c0), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0xffffffffffffffff, r0, 0x0, 0x2, &(0x7f0000000080)='\xf3\x1e'}, 0x30)
socket$kcm(0x10, 0x2, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000003c0)="d8000000180081064e81f782db4cb904021d0800fe027c05e8fe55a10a0005000140020003600e41b0000900ac0006e01120000016001600014002000000035c3b61c1d67f6f94007174cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001b14d6d930dfe1d9d322fe7c4650b5b9bd6ee6f63f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b4ff010000000000000dd6e4edef3d93452a09004b43370e9703920723f97e46bb5c07540d3b", 0xd8}], 0x1}, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000000), 0x4)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r6 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r6, &(0x7f0000003780)={0x0, 0x3000000, &(0x7f0000000080)=[{&(0x7f0000000040)="0205000902000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
syz_clone(0x10eb22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b80, 0x2, @perf_config_ext={0xd, 0x9}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x0, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 1 (id=2420):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000c40), 0x12)
r2 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f0000000b00)={&(0x7f0000000a80)=@hci={0x1f, 0x543, 0x6}, 0x80, &(0x7f0000000140)=[{&(0x7f00000000c0)="62031400d755af1765101226116642c400000000000000000000000000005a7880a49a338596076430f0c007c0ebf31385d3539266bc784a1bebb5cb8fd52164614eaca5b6df4f70b123d4dba79bb3680f32a76ae74588f8c01b99ec", 0x5c}, {&(0x7f0000001400)="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", 0xf0e}], 0x2}, 0x4041)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8904, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

: attribute type 8 has an invalid length.
[  381.419645][T10828] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1571'.
[  382.032123][T10847] netlink: 'syz.0.1577': attribute type 10 has an invalid length.
[  382.272044][T10854] FAULT_INJECTION: forcing a failure.
[  382.272044][T10854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  382.295778][T10852] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1579'.
[  382.315065][T10854] CPU: 0 PID: 10854 Comm: syz.1.1580 Not tainted syzkaller #0
[  382.322641][T10854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  382.332775][T10854] Call Trace:
[  382.336123][T10854]  <TASK>
[  382.339131][T10854]  dump_stack_lvl+0x18c/0x250
[  382.343922][T10854]  ? show_regs_print_info+0x20/0x20
[  382.349221][T10854]  ? load_image+0x420/0x420
[  382.353844][T10854]  ? __might_fault+0xaa/0x120
[  382.358599][T10854]  ? __lock_acquire+0x7d40/0x7d40
[  382.363730][T10854]  should_fail_ex+0x39d/0x4d0
[  382.368511][T10854]  _copy_from_user+0x2f/0xe0
[  382.373273][T10854]  ___sys_recvmsg+0x176/0x590
[  382.378050][T10854]  ? __sys_recvmsg+0x2a0/0x2a0
[  382.382954][T10854]  ? ksys_write+0x1c4/0x260
[  382.387592][T10854]  ? __fget_files+0x43d/0x4b0
[  382.392408][T10854]  __x64_sys_recvmsg+0x20c/0x2e0
[  382.397435][T10854]  ? ___sys_recvmsg+0x590/0x590
[  382.402445][T10854]  ? lockdep_hardirqs_on+0x98/0x150
[  382.407733][T10854]  do_syscall_64+0x55/0xa0
[  382.412221][T10854]  ? clear_bhb_loop+0x40/0x90
[  382.416981][T10854]  ? clear_bhb_loop+0x40/0x90
[  382.421747][T10854]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  382.427712][T10854] RIP: 0033:0x7fbc8239cdd9
[  382.432206][T10854] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  382.451900][T10854] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  382.460419][T10854] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  382.468510][T10854] RDX: 0000000000000020 RSI: 0000200000001500 RDI: 0000000000000003
[  382.476531][T10854] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  382.484549][T10854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.492573][T10854] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  382.500634][T10854]  </TASK>
[  382.732332][T10857] netlink: 703 bytes leftover after parsing attributes in process `syz.3.1579'.
[  382.903345][T10861] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.1582'.
[  382.918168][T10861] bridge_slave_1: default FDB implementation only supports local addresses
[  383.456286][T10875] netlink: 'syz.3.1587': attribute type 5 has an invalid length.
[  383.822739][T10884] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1591'.
[  383.858230][T10884] netlink: 'syz.2.1591': attribute type 2 has an invalid length.
[  383.896107][T10884] netlink: 'syz.2.1591': attribute type 8 has an invalid length.
[  383.965595][T10888] netlink: 'syz.0.1590': attribute type 10 has an invalid length.
[  385.312595][T10913] bridge_slave_1: default FDB implementation only supports local addresses
[  385.640402][T10925] netlink: 'syz.1.1603': attribute type 10 has an invalid length.
[  385.785786][T10928] __nla_validate_parse: 4 callbacks suppressed
[  385.785806][T10928] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1605'.
[  385.813576][T10928] netlink: 'syz.2.1605': attribute type 2 has an invalid length.
[  385.825589][T10928] netlink: 'syz.2.1605': attribute type 8 has an invalid length.
[  385.834191][T10928] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1605'.
[  386.378998][T10944] netlink: 196 bytes leftover after parsing attributes in process `syz.0.1610'.
[  386.394293][T10942] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1608'.
[  386.539739][T10945] netlink: 703 bytes leftover after parsing attributes in process `syz.3.1608'.
[  387.011858][T10957] netlink: 'syz.0.1616': attribute type 5 has an invalid length.
[  387.164162][T10964] netlink: 'syz.3.1615': attribute type 10 has an invalid length.
[  387.291146][T10968] syzkaller0: create flow: hash 1302532992 index 1
[  387.370626][T10963] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.1617'.
[  387.388842][T10963] bridge_slave_1: default FDB implementation only supports local addresses
[  387.408195][ T6325] syzkaller0: tun_net_xmit 76
[  387.413684][ T6325] syzkaller0: tun_net_xmit 48
[  387.435927][ T5819] syzkaller0: tun_net_xmit 76
[  387.457277][  T967] syzkaller0: tun_net_xmit 76
[  387.492450][T10961] syzkaller0: delete flow: hash 1302532992 index 1
[  388.066556][T10977] netlink: 196 bytes leftover after parsing attributes in process `syz.3.1621'.
[  389.346120][T10979] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1622'.
[  389.358088][T10980] netlink: 'syz.3.1622': attribute type 2 has an invalid length.
[  389.367139][T10980] netlink: 'syz.3.1622': attribute type 8 has an invalid length.
[  389.376020][T10980] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1622'.
[  389.920651][T10986] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1623'.
[  390.478824][T11001] netlink: 'syz.2.1627': attribute type 10 has an invalid length.
[  390.730687][T11009] netlink: 'syz.0.1631': attribute type 2 has an invalid length.
[  390.749358][T11009] netlink: 'syz.0.1631': attribute type 8 has an invalid length.
[  390.837048][T11011] FAULT_INJECTION: forcing a failure.
[  390.837048][T11011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.850860][T11011] CPU: 0 PID: 11011 Comm: syz.3.1632 Not tainted syzkaller #0
[  390.858400][T11011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  390.868525][T11011] Call Trace:
[  390.871863][T11011]  <TASK>
[  390.874848][T11011]  dump_stack_lvl+0x18c/0x250
[  390.879598][T11011]  ? show_regs_print_info+0x20/0x20
[  390.884858][T11011]  ? load_image+0x420/0x420
[  390.889433][T11011]  ? __might_fault+0xaa/0x120
[  390.894178][T11011]  ? __lock_acquire+0x7d40/0x7d40
[  390.899363][T11011]  should_fail_ex+0x39d/0x4d0
[  390.904127][T11011]  _copy_from_user+0x2f/0xe0
[  390.908788][T11011]  bpf_prog_test_run_skb+0x266/0x12b0
[  390.914218][T11011]  ? __fget_files+0x28/0x4b0
[  390.918844][T11011]  ? __fget_files+0x28/0x4b0
[  390.923469][T11011]  ? __fget_files+0x43d/0x4b0
[  390.928193][T11011]  ? cpu_online+0x60/0x60
[  390.932553][T11011]  bpf_prog_test_run+0x321/0x390
[  390.937525][T11011]  __sys_bpf+0x49d/0x890
[  390.941809][T11011]  ? bpf_link_show_fdinfo+0x390/0x390
[  390.947228][T11011]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  390.953429][T11011]  __x64_sys_bpf+0x7c/0x90
[  390.957874][T11011]  do_syscall_64+0x55/0xa0
[  390.962317][T11011]  ? clear_bhb_loop+0x40/0x90
[  390.967037][T11011]  ? clear_bhb_loop+0x40/0x90
[  390.971747][T11011]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  390.977666][T11011] RIP: 0033:0x7f9e1699cdd9
[  390.982110][T11011] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  391.001747][T11011] RSP: 002b:00007f9e177a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  391.010196][T11011] RAX: ffffffffffffffda RBX: 00007f9e16c15fa0 RCX: 00007f9e1699cdd9
[  391.018205][T11011] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[  391.026212][T11011] RBP: 00007f9e177a9090 R08: 0000000000000000 R09: 0000000000000000
[  391.034210][T11011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  391.042217][T11011] R13: 00007f9e16c16038 R14: 00007f9e16c15fa0 R15: 00007ffcaf894718
[  391.050232][T11011]  </TASK>
[  391.138678][T11017] __nla_validate_parse: 4 callbacks suppressed
[  391.138728][T11017] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.1633'.
[  391.227096][T11017] bridge_slave_1: default FDB implementation only supports local addresses
[  391.594499][T11025] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1638'.
[  391.611481][T11026] netlink: 'syz.2.1637': attribute type 5 has an invalid length.
[  391.703505][T11025] netlink: 703 bytes leftover after parsing attributes in process `syz.3.1638'.
[  392.484680][T11046] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1644'.
[  392.506369][T11043] netlink: 'syz.1.1643': attribute type 10 has an invalid length.
[  392.550507][T11048] netlink: 'syz.3.1644': attribute type 2 has an invalid length.
[  392.560707][T11048] netlink: 'syz.3.1644': attribute type 8 has an invalid length.
[  392.570434][T11048] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1644'.
[  393.080648][T11062] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.1648'.
[  393.153558][T11062] bridge_slave_1: default FDB implementation only supports local addresses
[  393.369458][T11064] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.1650'.
[  393.580628][T11065] netlink: 703 bytes leftover after parsing attributes in process `syz.0.1650'.
[  394.267115][T11086] netlink: 'syz.1.1656': attribute type 10 has an invalid length.
[  394.786447][T11101] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1664'.
[  394.836210][T11100] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.1663'.
[  394.855285][T11101] netlink: 'syz.1.1664': attribute type 2 has an invalid length.
[  394.884090][T11101] netlink: 'syz.1.1664': attribute type 8 has an invalid length.
[  395.630934][T11103] bridge_slave_1: default FDB implementation only supports local addresses
[  396.029606][T11118] FAULT_INJECTION: forcing a failure.
[  396.029606][T11118] name failslab, interval 1, probability 0, space 0, times 0
[  396.102140][T11118] CPU: 0 PID: 11118 Comm: syz.0.1669 Not tainted syzkaller #0
[  396.109715][T11118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  396.119815][T11118] Call Trace:
[  396.123133][T11118]  <TASK>
[  396.126110][T11118]  dump_stack_lvl+0x18c/0x250
[  396.130841][T11118]  ? sctp_sendmsg+0x1575/0x28c0
[  396.135746][T11118]  ? ___sys_sendmsg+0x2a6/0x360
[  396.140646][T11118]  ? show_regs_print_info+0x20/0x20
[  396.145915][T11118]  ? load_image+0x420/0x420
[  396.150477][T11118]  should_fail_ex+0x39d/0x4d0
[  396.155192][T11118]  should_failslab+0x9/0x20
[  396.159754][T11118]  slab_pre_alloc_hook+0x59/0x310
[  396.164847][T11118]  ? sctp_add_bind_addr+0x8c/0x360
[  396.170031][T11118]  __kmem_cache_alloc_node+0x53/0x250
[  396.175470][T11118]  ? sctp_add_bind_addr+0x8c/0x360
[  396.180653][T11118]  kmalloc_trace+0x2a/0xe0
[  396.185134][T11118]  sctp_add_bind_addr+0x8c/0x360
[  396.190132][T11118]  sctp_copy_local_addr_list+0x315/0x4f0
[  396.195811][T11118]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  396.201609][T11118]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  396.207737][T11118]  ? sctp_v4_is_any+0x35/0x60
[  396.212455][T11118]  ? sctp_copy_one_addr+0x8c/0x350
[  396.217618][T11118]  sctp_bind_addr_copy+0xb3/0x3c0
[  396.222725][T11118]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  396.229130][T11118]  sctp_connect_new_asoc+0x2f9/0x6a0
[  396.234472][T11118]  ? __sctp_connect+0xd80/0xd80
[  396.239377][T11118]  ? __local_bh_enable_ip+0x13a/0x1c0
[  396.244812][T11118]  ? _local_bh_enable+0xa0/0xa0
[  396.249703][T11118]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  396.255560][T11118]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  396.261414][T11118]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  396.267012][T11118]  ? security_sctp_bind_connect+0x89/0xb0
[  396.272790][T11118]  sctp_sendmsg+0x1575/0x28c0
[  396.277710][T11118]  ? sctp_getsockopt+0xb60/0xb60
[  396.282709][T11118]  ? aa_sk_perm+0x83c/0x970
[  396.287277][T11118]  ? aa_af_perm+0x330/0x330
[  396.291839][T11118]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  396.298320][T11118]  ? sock_rps_record_flow+0x19/0x3f0
[  396.303672][T11118]  ? inet_sendmsg+0x7c/0x2f0
[  396.308316][T11118]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  396.313657][T11118]  ? security_socket_sendmsg+0x80/0xa0
[  396.319165][T11118]  ? inet_send_prepare+0x260/0x260
[  396.324328][T11118]  ____sys_sendmsg+0x5ba/0x960
[  396.329156][T11118]  ? __lock_acquire+0x7d40/0x7d40
[  396.334245][T11118]  ? __asan_memset+0x22/0x40
[  396.338896][T11118]  ? __sys_sendmsg_sock+0x30/0x30
[  396.343967][T11118]  ? __import_iovec+0x5f2/0x850
[  396.348909][T11118]  ? import_iovec+0x73/0xa0
[  396.353475][T11118]  ___sys_sendmsg+0x2a6/0x360
[  396.358206][T11118]  ? get_pid_task+0x20/0x1e0
[  396.362857][T11118]  ? __sys_sendmsg+0x2a0/0x2a0
[  396.367715][T11118]  ? __lock_acquire+0x7d40/0x7d40
[  396.372825][T11118]  __se_sys_sendmsg+0x1c2/0x2b0
[  396.377736][T11118]  ? __x64_sys_sendmsg+0x80/0x80
[  396.382741][T11118]  ? lockdep_hardirqs_on+0x98/0x150
[  396.388085][T11118]  do_syscall_64+0x55/0xa0
[  396.392548][T11118]  ? clear_bhb_loop+0x40/0x90
[  396.397282][T11118]  ? clear_bhb_loop+0x40/0x90
[  396.402013][T11118]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  396.407980][T11118] RIP: 0033:0x7fe94a99cdd9
[  396.412450][T11118] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  396.432105][T11118] RSP: 002b:00007fe94b925028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  396.440579][T11118] RAX: ffffffffffffffda RBX: 00007fe94ac15fa0 RCX: 00007fe94a99cdd9
[  396.448647][T11118] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000003
[  396.456675][T11118] RBP: 00007fe94b925090 R08: 0000000000000000 R09: 0000000000000000
[  396.464712][T11118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  396.472758][T11118] R13: 00007fe94ac16038 R14: 00007fe94ac15fa0 R15: 00007ffd8a01f968
[  396.480809][T11118]  </TASK>
[  396.791676][T11130] __nla_validate_parse: 4 callbacks suppressed
[  396.791712][T11130] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1673'.
[  396.827005][T11131] netlink: 'syz.2.1672': attribute type 10 has an invalid length.
[  396.881473][T11130] netlink: 'syz.0.1673': attribute type 2 has an invalid length.
[  396.891182][T11130] netlink: 'syz.0.1673': attribute type 8 has an invalid length.
[  396.899411][T11130] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1673'.
[  397.120030][T11138] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.1675'.
[  397.251944][T11138] netlink: 703 bytes leftover after parsing attributes in process `syz.1.1675'.
[  397.671973][T11153] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.1678'.
[  397.720041][T11153] bridge_slave_1: default FDB implementation only supports local addresses
[  397.858178][T11162] tap0: tun_chr_ioctl cmd 1074025677
[  397.863880][T11162] tap0: linktype set to 270
[  397.873261][T11157] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1681'.
[  398.240765][T11168] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1684'.
[  398.255022][T11168] netlink: 'syz.2.1684': attribute type 2 has an invalid length.
[  398.263460][T11168] netlink: 'syz.2.1684': attribute type 8 has an invalid length.
[  398.282590][T11168] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1684'.
[  398.307471][T11170] netlink: 'syz.1.1685': attribute type 10 has an invalid length.
[  398.668504][T11181] FAULT_INJECTION: forcing a failure.
[  398.668504][T11181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  398.669320][T11177] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1687'.
[  398.709745][T11181] CPU: 0 PID: 11181 Comm: syz.1.1688 Not tainted syzkaller #0
[  398.717329][T11181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  398.727565][T11181] Call Trace:
[  398.731020][T11181]  <TASK>
[  398.734033][T11181]  dump_stack_lvl+0x18c/0x250
[  398.738846][T11181]  ? show_regs_print_info+0x20/0x20
[  398.744143][T11181]  ? load_image+0x420/0x420
[  398.748754][T11181]  ? __might_fault+0xaa/0x120
[  398.753529][T11181]  ? __lock_acquire+0x7d40/0x7d40
[  398.758672][T11181]  should_fail_ex+0x39d/0x4d0
[  398.763467][T11181]  _copy_to_user+0x2f/0xa0
[  398.767977][T11181]  bpf_test_finish+0x25a/0x650
[  398.772860][T11181]  ? convert___skb_to_skb+0x590/0x590
[  398.778329][T11181]  ? convert_skb_to___skb+0x420/0x420
[  398.783835][T11181]  ? bpf_prog_test_run_skb+0x7ad/0x12b0
[  398.789484][T11181]  bpf_prog_test_run_skb+0xcc3/0x12b0
[  398.795023][T11181]  ? cpu_online+0x60/0x60
[  398.799467][T11181]  bpf_prog_test_run+0x321/0x390
[  398.804502][T11181]  __sys_bpf+0x49d/0x890
[  398.808855][T11181]  ? bpf_link_show_fdinfo+0x390/0x390
[  398.814392][T11181]  ? lock_chain_count+0x20/0x20
[  398.819387][T11181]  __x64_sys_bpf+0x7c/0x90
[  398.823894][T11181]  do_syscall_64+0x55/0xa0
[  398.828384][T11181]  ? clear_bhb_loop+0x40/0x90
[  398.833142][T11181]  ? clear_bhb_loop+0x40/0x90
[  398.837913][T11181]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  398.843895][T11181] RIP: 0033:0x7fbc8239cdd9
[  398.848408][T11181] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  398.868093][T11181] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  398.876605][T11181] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  398.884656][T11181] RDX: 0000000000000028 RSI: 0000200000000240 RDI: 000000000000000a
[  398.892719][T11181] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  398.900778][T11181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.908837][T11181] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  398.916961][T11181]  </TASK>
[  399.002804][T11182] netlink: 703 bytes leftover after parsing attributes in process `syz.3.1687'.
[  399.394284][T11192] netlink: 'syz.0.1692': attribute type 21 has an invalid length.
[  399.772560][T11202] bridge_slave_1: default FDB implementation only supports local addresses
[  400.098395][T11207] netlink: 'syz.3.1697': attribute type 10 has an invalid length.
[  400.506437][T11216] FAULT_INJECTION: forcing a failure.
[  400.506437][T11216] name failslab, interval 1, probability 0, space 0, times 0
[  400.535097][T11216] CPU: 0 PID: 11216 Comm: syz.3.1699 Not tainted syzkaller #0
[  400.542660][T11216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  400.552769][T11216] Call Trace:
[  400.556093][T11216]  <TASK>
[  400.559070][T11216]  dump_stack_lvl+0x18c/0x250
[  400.563822][T11216]  ? show_regs_print_info+0x20/0x20
[  400.569098][T11216]  ? load_image+0x420/0x420
[  400.573733][T11216]  ? __might_sleep+0xe0/0xe0
[  400.578376][T11216]  ? __lock_acquire+0x7d40/0x7d40
[  400.583458][T11216]  should_fail_ex+0x39d/0x4d0
[  400.588208][T11216]  should_failslab+0x9/0x20
[  400.592772][T11216]  slab_pre_alloc_hook+0x59/0x310
[  400.597860][T11216]  ? memcg_alloc_slab_cgroups+0x87/0x130
[  400.603550][T11216]  ? memcg_alloc_slab_cgroups+0x87/0x130
[  400.609237][T11216]  __kmem_cache_alloc_node+0x53/0x250
[  400.614672][T11216]  ? memcg_alloc_slab_cgroups+0x87/0x130
[  400.620354][T11216]  __kmalloc_node+0xa4/0x230
[  400.625006][T11216]  memcg_alloc_slab_cgroups+0x87/0x130
[  400.630518][T11216]  slab_post_alloc_hook+0xf4/0x4b0
[  400.635698][T11216]  kmem_cache_alloc_node+0x14c/0x320
[  400.641047][T11216]  ? __alloc_skb+0x103/0x2c0
[  400.645684][T11216]  __alloc_skb+0x103/0x2c0
[  400.650133][T11216]  alloc_skb_with_frags+0xca/0x7b0
[  400.655297][T11216]  ? _raw_spin_unlock+0x40/0x40
[  400.660192][T11216]  ? finish_wait+0xc7/0x1d0
[  400.664738][T11216]  sock_alloc_send_pskb+0x883/0x9a0
[  400.669997][T11216]  ? sock_kzfree_s+0x50/0x50
[  400.674627][T11216]  ? do_raw_spin_lock+0x11f/0x2c0
[  400.679697][T11216]  ? wake_bit_function+0x200/0x200
[  400.684879][T11216]  ? __rwlock_init+0x150/0x150
[  400.689695][T11216]  ? do_raw_spin_unlock+0x121/0x230
[  400.694936][T11216]  unix_dgram_sendmsg+0x5a2/0x16d0
[  400.700085][T11216]  ? verify_lock_unused+0x140/0x140
[  400.705325][T11216]  ? aa_sk_perm+0x83c/0x970
[  400.709870][T11216]  ? unix_dgram_poll+0x680/0x680
[  400.714833][T11216]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  400.721284][T11216]  ? aa_sock_msg_perm+0x94/0x150
[  400.726280][T11216]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  400.731623][T11216]  ? security_socket_sendmsg+0x80/0xa0
[  400.737132][T11216]  ? unix_dgram_poll+0x680/0x680
[  400.742118][T11216]  ____sys_sendmsg+0x5ba/0x960
[  400.746927][T11216]  ? __asan_memset+0x22/0x40
[  400.751546][T11216]  ? __sys_sendmsg_sock+0x30/0x30
[  400.756617][T11216]  ? __import_iovec+0x3fa/0x850
[  400.761527][T11216]  ? import_iovec+0x73/0xa0
[  400.766074][T11216]  ___sys_sendmsg+0x2a6/0x360
[  400.770798][T11216]  ? __sys_sendmsg+0x2a0/0x2a0
[  400.775628][T11216]  ? trace_call_bpf+0xc3/0x6c0
[  400.780437][T11216]  ? lockdep_softirqs_on+0x307/0x580
[  400.785782][T11216]  __se_sys_sendmsg+0x1c2/0x2b0
[  400.790685][T11216]  ? __x64_sys_sendmsg+0x80/0x80
[  400.795670][T11216]  ? lockdep_hardirqs_on+0x98/0x150
[  400.800926][T11216]  do_syscall_64+0x55/0xa0
[  400.805373][T11216]  ? clear_bhb_loop+0x40/0x90
[  400.810088][T11216]  ? clear_bhb_loop+0x40/0x90
[  400.814809][T11216]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  400.820748][T11216] RIP: 0033:0x7f9e1699cdd9
[  400.825198][T11216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  400.844927][T11216] RSP: 002b:00007f9e177a9028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  400.853399][T11216] RAX: ffffffffffffffda RBX: 00007f9e16c15fa0 RCX: 00007f9e1699cdd9
[  400.861401][T11216] RDX: 0000000000000000 RSI: 0000200000000700 RDI: 0000000000000004
[  400.869397][T11216] RBP: 00007f9e177a9090 R08: 0000000000000000 R09: 0000000000000000
[  400.877404][T11216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  400.885410][T11216] R13: 00007f9e16c16038 R14: 00007f9e16c15fa0 R15: 00007ffcaf894718
[  400.893427][T11216]  </TASK>
[  400.936680][T11219] netlink: 'syz.0.1700': attribute type 2 has an invalid length.
[  400.955826][T11219] netlink: 'syz.0.1700': attribute type 8 has an invalid length.
[  402.037801][T11237] __nla_validate_parse: 5 callbacks suppressed
[  402.037836][T11237] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1707'.
[  402.222147][T11237] netlink: 'syz.2.1707': attribute type 10 has an invalid length.
[  402.264004][T11251] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.1710'.
[  402.274893][T11251] bridge_slave_1: default FDB implementation only supports local addresses
[  402.569662][T11256] netlink: 'syz.0.1712': attribute type 2 has an invalid length.
[  402.586263][T11256] netlink: 'syz.0.1712': attribute type 8 has an invalid length.
[  402.597661][T11256] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1712'.
[  403.102021][T11272] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.1718'.
[  403.216822][T11269] netlink: 703 bytes leftover after parsing attributes in process `syz.1.1718'.
[  403.297731][T11274] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1721'.
[  403.480943][T11274] netlink: 'syz.3.1721': attribute type 10 has an invalid length.
[  403.640343][T11286] netlink: 'syz.0.1723': attribute type 2 has an invalid length.
[  403.650329][T11286] netlink: 'syz.0.1723': attribute type 8 has an invalid length.
[  403.659258][T11286] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1723'.
[  404.136627][T11301] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.1729'.
[  404.163153][T11301] bridge_slave_1: default FDB implementation only supports local addresses
[  404.599989][T11308] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1732'.
[  405.122214][T11308] netlink: 703 bytes leftover after parsing attributes in process `syz.3.1732'.
[  405.568292][T11322] netlink: 'syz.3.1735': attribute type 10 has an invalid length.
[  405.758622][T11328] netlink: 'syz.0.1737': attribute type 2 has an invalid length.
[  405.767276][T11328] netlink: 'syz.0.1737': attribute type 8 has an invalid length.
[  406.808861][T11349] bridge_slave_1: default FDB implementation only supports local addresses
[  406.972398][T11358] netlink: 'syz.0.1747': attribute type 4 has an invalid length.
[  407.121111][T11360] __nla_validate_parse: 7 callbacks suppressed
[  407.121132][T11360] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1749'.
[  407.186960][T11362] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1748'.
[  407.198513][T11360] netlink: 'syz.1.1749': attribute type 2 has an invalid length.
[  407.213478][T11360] netlink: 'syz.1.1749': attribute type 8 has an invalid length.
[  407.223031][T11360] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1749'.
[  407.296704][T11366] netlink: 'syz.0.1748': attribute type 10 has an invalid length.
[  407.564261][T11375] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.1753'.
[  407.776606][T11376] netlink: 703 bytes leftover after parsing attributes in process `syz.2.1753'.
[  408.523684][T11393] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1760'.
[  408.614321][T11393] validate_nla: 1 callbacks suppressed
[  408.614343][T11393] netlink: 'syz.0.1760': attribute type 2 has an invalid length.
[  408.644691][T11393] netlink: 'syz.0.1760': attribute type 8 has an invalid length.
[  408.652532][T11393] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1760'.
[  408.787849][T11402] netlink: 'syz.3.1762': attribute type 3 has an invalid length.
[  408.808408][T11402] netlink: 'syz.3.1762': attribute type 1 has an invalid length.
[  408.819264][T11402] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.1762'.
[  408.986302][T11408] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1764'.
[  409.042052][T11415] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.1765'.
[  409.096667][T11415] bridge_slave_1: default FDB implementation only supports local addresses
[  409.111618][T11408] netlink: 'syz.2.1764': attribute type 10 has an invalid length.
[  409.926710][T11431] FAULT_INJECTION: forcing a failure.
[  409.926710][T11431] name failslab, interval 1, probability 0, space 0, times 0
[  409.968750][T11431] CPU: 0 PID: 11431 Comm: syz.3.1772 Not tainted syzkaller #0
[  409.976336][T11431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  409.986438][T11431] Call Trace:
[  409.989755][T11431]  <TASK>
[  409.992724][T11431]  dump_stack_lvl+0x18c/0x250
[  409.997447][T11431]  ? show_regs_print_info+0x20/0x20
[  410.002684][T11431]  ? load_image+0x420/0x420
[  410.007232][T11431]  ? __might_sleep+0xe0/0xe0
[  410.011851][T11431]  ? __lock_acquire+0x7d40/0x7d40
[  410.016905][T11431]  should_fail_ex+0x39d/0x4d0
[  410.021617][T11431]  should_failslab+0x9/0x20
[  410.026184][T11431]  slab_pre_alloc_hook+0x59/0x310
[  410.031246][T11431]  ? sctp_association_new+0x89/0x25c0
[  410.036737][T11431]  __kmem_cache_alloc_node+0x53/0x250
[  410.042152][T11431]  ? sctp_association_new+0x89/0x25c0
[  410.047554][T11431]  kmalloc_trace+0x2a/0xe0
[  410.052004][T11431]  sctp_association_new+0x89/0x25c0
[  410.057232][T11431]  ? sctp_do_bind+0x6bd/0x990
[  410.061950][T11431]  sctp_connect_new_asoc+0x2de/0x6a0
[  410.067270][T11431]  ? __sctp_connect+0xd80/0xd80
[  410.072151][T11431]  ? __local_bh_enable_ip+0x13a/0x1c0
[  410.077563][T11431]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  410.083141][T11431]  ? security_sctp_bind_connect+0x89/0xb0
[  410.088898][T11431]  sctp_sendmsg+0x1575/0x28c0
[  410.093619][T11431]  ? sctp_getsockopt+0xb60/0xb60
[  410.098590][T11431]  ? aa_sk_perm+0x83c/0x970
[  410.103136][T11431]  ? aa_af_perm+0x330/0x330
[  410.107704][T11431]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  410.114153][T11431]  ? sock_rps_record_flow+0x19/0x3f0
[  410.119477][T11431]  ? inet_sendmsg+0xe9/0x2f0
[  410.124103][T11431]  ? inet_send_prepare+0x260/0x260
[  410.129245][T11431]  ____sys_sendmsg+0x5ba/0x960
[  410.134045][T11431]  ? __lock_acquire+0x7d40/0x7d40
[  410.139103][T11431]  ? __asan_memset+0x22/0x40
[  410.143722][T11431]  ? __sys_sendmsg_sock+0x30/0x30
[  410.148765][T11431]  ? __import_iovec+0x5f2/0x850
[  410.153650][T11431]  ? import_iovec+0x73/0xa0
[  410.158179][T11431]  ___sys_sendmsg+0x2a6/0x360
[  410.162878][T11431]  ? get_pid_task+0x20/0x1e0
[  410.167517][T11431]  ? __sys_sendmsg+0x2a0/0x2a0
[  410.172322][T11431]  ? __lock_acquire+0x7d40/0x7d40
[  410.177409][T11431]  __se_sys_sendmsg+0x1c2/0x2b0
[  410.182289][T11431]  ? __x64_sys_sendmsg+0x80/0x80
[  410.187269][T11431]  ? lockdep_hardirqs_on+0x98/0x150
[  410.192514][T11431]  do_syscall_64+0x55/0xa0
[  410.196951][T11431]  ? clear_bhb_loop+0x40/0x90
[  410.201656][T11431]  ? clear_bhb_loop+0x40/0x90
[  410.206368][T11431]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  410.212304][T11431] RIP: 0033:0x7f9e1699cdd9
[  410.216772][T11431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  410.236403][T11431] RSP: 002b:00007f9e177a9028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  410.244853][T11431] RAX: ffffffffffffffda RBX: 00007f9e16c15fa0 RCX: 00007f9e1699cdd9
[  410.252851][T11431] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 0000000000000003
[  410.260848][T11431] RBP: 00007f9e177a9090 R08: 0000000000000000 R09: 0000000000000000
[  410.268846][T11431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.276844][T11431] R13: 00007f9e16c16038 R14: 00007f9e16c15fa0 R15: 00007ffcaf894718
[  410.284849][T11431]  </TASK>
[  410.404032][T11434] netlink: 'syz.2.1773': attribute type 2 has an invalid length.
[  410.429172][T11434] netlink: 'syz.2.1773': attribute type 8 has an invalid length.
[  410.900180][T11452] netlink: 'syz.0.1776': attribute type 10 has an invalid length.
[  411.338921][T11457] bridge_slave_1: default FDB implementation only supports local addresses
[  411.808845][T11472] netlink: set zone limit has 8 unknown bytes
[  411.912315][T11474] netlink: 'syz.0.1786': attribute type 5 has an invalid length.
[  412.250786][T11484] __nla_validate_parse: 9 callbacks suppressed
[  412.250806][T11484] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.1790'.
[  412.347355][T11485] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1789'.
[  412.365141][T11481] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1788'.
[  412.470055][T11484] netlink: 703 bytes leftover after parsing attributes in process `syz.1.1790'.
[  412.528062][T11485] netlink: 'syz.3.1789': attribute type 2 has an invalid length.
[  412.569496][T11485] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1789'.
[  413.000473][T11497] FAULT_INJECTION: forcing a failure.
[  413.000473][T11497] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  413.016633][T11497] CPU: 1 PID: 11497 Comm: syz.2.1792 Not tainted syzkaller #0
[  413.024205][T11497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  413.034325][T11497] Call Trace:
[  413.037657][T11497]  <TASK>
[  413.040632][T11497]  dump_stack_lvl+0x18c/0x250
[  413.045384][T11497]  ? show_regs_print_info+0x20/0x20
[  413.050661][T11497]  ? load_image+0x420/0x420
[  413.055234][T11497]  ? __might_fault+0xaa/0x120
[  413.059973][T11497]  ? __lock_acquire+0x7d40/0x7d40
[  413.065055][T11497]  should_fail_ex+0x39d/0x4d0
[  413.069822][T11497]  _copy_from_user+0x2f/0xe0
[  413.074461][T11497]  bpf_prog_test_run_xdp+0xd77/0x10e0
[  413.079906][T11497]  ? dev_put+0x80/0x80
[  413.084049][T11497]  ? dev_put+0x80/0x80
[  413.088170][T11497]  bpf_prog_test_run+0x321/0x390
[  413.093181][T11497]  __sys_bpf+0x49d/0x890
[  413.097477][T11497]  ? bpf_link_show_fdinfo+0x390/0x390
[  413.102927][T11497]  ? lock_chain_count+0x20/0x20
[  413.107848][T11497]  __x64_sys_bpf+0x7c/0x90
[  413.112321][T11497]  do_syscall_64+0x55/0xa0
[  413.116788][T11497]  ? clear_bhb_loop+0x40/0x90
[  413.121516][T11497]  ? clear_bhb_loop+0x40/0x90
[  413.126250][T11497]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  413.132205][T11497] RIP: 0033:0x7feddc99cdd9
[  413.136677][T11497] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  413.156337][T11497] RSP: 002b:00007feddd8c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  413.164836][T11497] RAX: ffffffffffffffda RBX: 00007feddcc15fa0 RCX: 00007feddc99cdd9
[  413.172890][T11497] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  413.181085][T11497] RBP: 00007feddd8c0090 R08: 0000000000000000 R09: 0000000000000000
[  413.189105][T11497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  413.197120][T11497] R13: 00007feddcc16038 R14: 00007feddcc15fa0 R15: 00007ffe6e132228
[  413.205160][T11497]  </TASK>
[  413.394898][T11501] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1793'.
[  413.404031][T11501] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  413.422030][T11499] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1793'.
[  413.435301][T11499] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  413.947332][T11521] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.1799'.
[  414.140094][T11524] netlink: 703 bytes leftover after parsing attributes in process `syz.1.1799'.
[  414.241491][T11526] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1800'.
[  414.452007][T11526] validate_nla: 4 callbacks suppressed
[  414.452067][T11526] netlink: 'syz.3.1800': attribute type 10 has an invalid length.
[  414.864501][T11535] netlink: 'syz.2.1803': attribute type 2 has an invalid length.
[  414.874560][T11535] netlink: 'syz.2.1803': attribute type 8 has an invalid length.
[  415.022149][T11539] bridge_slave_1: default FDB implementation only supports local addresses
[  415.360254][T11555] netlink: 'syz.3.1809': attribute type 3 has an invalid length.
[  415.982040][T11562] netlink: 'syz.0.1813': attribute type 5 has an invalid length.
[  416.068756][T11570] netlink: 'syz.1.1812': attribute type 10 has an invalid length.
[  417.100236][T11594] bridge_slave_1: default FDB implementation only supports local addresses
[  417.308797][T11597] __nla_validate_parse: 9 callbacks suppressed
[  417.308815][T11597] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1823'.
[  417.441371][T11602] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1825'.
[  417.474249][T11598] netlink: 703 bytes leftover after parsing attributes in process `syz.3.1823'.
[  417.490294][T11602] netlink: 'syz.2.1825': attribute type 2 has an invalid length.
[  417.501288][T11602] netlink: 'syz.2.1825': attribute type 8 has an invalid length.
[  417.511849][T11602] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1825'.
[  418.108797][T11606] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1826'.
[  418.244132][T11613] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.1828'.
[  418.260108][T11606] netlink: 'syz.2.1826': attribute type 10 has an invalid length.
[  418.966984][T11634] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1834'.
[  418.998281][T11634] netlink: 'syz.2.1834': attribute type 2 has an invalid length.
[  419.026218][T11634] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1834'.
[  419.168501][T11637] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.1835'.
[  419.189851][T11637] bridge_slave_1: default FDB implementation only supports local addresses
[  419.312012][T11640] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.1836'.
[  420.123198][T11649] validate_nla: 1 callbacks suppressed
[  420.123218][T11649] netlink: 'syz.1.1839': attribute type 9 has an invalid length.
[  420.406659][T11654] netlink: 'syz.2.1838': attribute type 10 has an invalid length.
[  420.737955][T11660] netlink: 'syz.1.1841': attribute type 5 has an invalid length.
[  422.263929][T11679] netlink: 'syz.0.1846': attribute type 2 has an invalid length.
[  422.281163][T11679] netlink: 'syz.0.1846': attribute type 8 has an invalid length.
[  422.453864][T11682] __nla_validate_parse: 7 callbacks suppressed
[  422.453901][T11682] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.1847'.
[  422.474440][T11682] bridge_slave_1: default FDB implementation only supports local addresses
[  422.626286][T11687] FAULT_INJECTION: forcing a failure.
[  422.626286][T11687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  422.640840][T11687] CPU: 0 PID: 11687 Comm: syz.0.1850 Not tainted syzkaller #0
[  422.648362][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  422.658462][T11687] Call Trace:
[  422.661776][T11687]  <TASK>
[  422.664739][T11687]  dump_stack_lvl+0x18c/0x250
[  422.669503][T11687]  ? show_regs_print_info+0x20/0x20
[  422.674760][T11687]  ? load_image+0x420/0x420
[  422.679333][T11687]  ? __might_fault+0xaa/0x120
[  422.684063][T11687]  ? __lock_acquire+0x7d40/0x7d40
[  422.689170][T11687]  should_fail_ex+0x39d/0x4d0
[  422.693910][T11687]  _copy_from_iter+0x1d9/0x12e0
[  422.698826][T11687]  ? __virt_addr_valid+0x18c/0x540
[  422.703987][T11687]  ? __lock_acquire+0x7d40/0x7d40
[  422.709060][T11687]  ? sock_alloc_send_pskb+0x8a1/0x9a0
[  422.714505][T11687]  ? copyout_mc+0x70/0x70
[  422.718878][T11687]  ? __virt_addr_valid+0x18c/0x540
[  422.724034][T11687]  ? __virt_addr_valid+0x18c/0x540
[  422.729198][T11687]  ? __virt_addr_valid+0x469/0x540
[  422.734447][T11687]  ? __check_object_size+0x506/0xa20
[  422.739778][T11687]  skb_copy_datagram_from_iter+0xf4/0x6e0
[  422.745546][T11687]  ? skb_put+0x11b/0x210
[  422.749820][T11687]  unix_stream_sendmsg+0x562/0xbf0
[  422.754975][T11687]  ? unix_show_fdinfo+0x270/0x270
[  422.760027][T11687]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  422.766497][T11687]  ? aa_sock_msg_perm+0x94/0x150
[  422.771474][T11687]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  422.776794][T11687]  ? security_socket_sendmsg+0x80/0xa0
[  422.782313][T11687]  ? unix_show_fdinfo+0x270/0x270
[  422.787384][T11687]  ____sys_sendmsg+0x5ba/0x960
[  422.792203][T11687]  ? __asan_memset+0x22/0x40
[  422.796827][T11687]  ? __sys_sendmsg_sock+0x30/0x30
[  422.801877][T11687]  ? __import_iovec+0x5f2/0x850
[  422.806771][T11687]  ? import_iovec+0x73/0xa0
[  422.811313][T11687]  ___sys_sendmsg+0x2a6/0x360
[  422.816042][T11687]  ? get_pid_task+0x20/0x1e0
[  422.820679][T11687]  ? __sys_sendmsg+0x2a0/0x2a0
[  422.825479][T11687]  ? __lock_acquire+0x7d40/0x7d40
[  422.830553][T11687]  __se_sys_sendmsg+0x1c2/0x2b0
[  422.835428][T11687]  ? __x64_sys_sendmsg+0x80/0x80
[  422.840406][T11687]  ? lockdep_hardirqs_on+0x98/0x150
[  422.845633][T11687]  do_syscall_64+0x55/0xa0
[  422.850073][T11687]  ? clear_bhb_loop+0x40/0x90
[  422.854779][T11687]  ? clear_bhb_loop+0x40/0x90
[  422.859489][T11687]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  422.865409][T11687] RIP: 0033:0x7fe94a99cdd9
[  422.869843][T11687] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  422.889493][T11687] RSP: 002b:00007fe94b925028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  422.897955][T11687] RAX: ffffffffffffffda RBX: 00007fe94ac15fa0 RCX: 00007fe94a99cdd9
[  422.905957][T11687] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000004
[  422.913954][T11687] RBP: 00007fe94b925090 R08: 0000000000000000 R09: 0000000000000000
[  422.921946][T11687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  422.929940][T11687] R13: 00007fe94ac16038 R14: 00007fe94ac15fa0 R15: 00007ffd8a01f968
[  422.937953][T11687]  </TASK>
[  423.157377][T11690] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1851'.
[  423.278122][T11690] netlink: 'syz.0.1851': attribute type 10 has an invalid length.
[  423.879688][T11709] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1856'.
[  423.898635][T11709] netlink: 'syz.2.1856': attribute type 2 has an invalid length.
[  423.907128][T11709] netlink: 'syz.2.1856': attribute type 8 has an invalid length.
[  423.948116][T11709] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1856'.
[  423.998865][T11707] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.1855'.
[  424.465096][T11711] netlink: 703 bytes leftover after parsing attributes in process `syz.0.1855'.
[  425.092018][T11725] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.1860'.
[  425.131302][T11725] bridge_slave_1: default FDB implementation only supports local addresses
[  425.198507][T11727] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1862'.
[  425.278442][T11729] netlink: 'syz.3.1862': attribute type 10 has an invalid length.
[  425.388509][T11737] FAULT_INJECTION: forcing a failure.
[  425.388509][T11737] name failslab, interval 1, probability 0, space 0, times 0
[  425.401280][T11737] CPU: 1 PID: 11737 Comm: syz.1.1865 Not tainted syzkaller #0
[  425.408853][T11737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  425.418970][T11737] Call Trace:
[  425.422296][T11737]  <TASK>
[  425.425265][T11737]  dump_stack_lvl+0x18c/0x250
[  425.430006][T11737]  ? show_regs_print_info+0x20/0x20
[  425.435366][T11737]  ? load_image+0x420/0x420
[  425.439934][T11737]  ? skb_network_protocol+0x529/0x780
[  425.445367][T11737]  should_fail_ex+0x39d/0x4d0
[  425.450109][T11737]  should_failslab+0x9/0x20
[  425.454695][T11737]  slab_pre_alloc_hook+0x59/0x310
[  425.459803][T11737]  kmem_cache_alloc+0x5a/0x2d0
[  425.464625][T11737]  ? skb_clone+0x1eb/0x370
[  425.469101][T11737]  skb_clone+0x1eb/0x370
[  425.473392][T11737]  ? dev_queue_xmit_nit+0x212/0xbb0
[  425.478658][T11737]  dev_queue_xmit_nit+0x24d/0xbb0
[  425.483754][T11737]  ? dev_queue_xmit_nit+0x2d/0xbb0
[  425.488940][T11737]  ? validate_xmit_skb+0x949/0xf60
[  425.494215][T11737]  dev_hard_start_xmit+0x148/0x740
[  425.499411][T11737]  __dev_queue_xmit+0x19a3/0x3660
[  425.504515][T11737]  ? __dev_queue_xmit+0x265/0x3660
[  425.509714][T11737]  ? netdev_core_pick_tx+0x340/0x340
[  425.515083][T11737]  ? skb_release_data+0x1d1/0x7b0
[  425.520372][T11737]  __bpf_tx_skb+0x189/0x250
[  425.524940][T11737]  bpf_clone_redirect+0x30f/0x4a0
[  425.530061][T11737]  bpf_prog_208b094576c80b22+0x5e/0x63
[  425.535583][T11737]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  425.541632][T11737]  ? lock_chain_count+0x20/0x20
[  425.546544][T11737]  ? seqcount_lockdep_reader_access+0x12b/0x1d0
[  425.552847][T11737]  ? lockdep_softirqs_on+0x580/0x580
[  425.558190][T11737]  ? ktime_get+0x7f/0x280
[  425.562602][T11737]  ? seqcount_lockdep_reader_access+0x191/0x1d0
[  425.569006][T11737]  ? ktime_get_real_ts64+0x440/0x440
[  425.574349][T11737]  ? __x64_sys_bpf+0x7c/0x90
[  425.579005][T11737]  ? __local_bh_disable_ip+0x108/0x1a0
[  425.584523][T11737]  ? __cant_sleep+0x220/0x220
[  425.589259][T11737]  ? read_tsc+0x9/0x20
[  425.593385][T11737]  ? ktime_get+0x24b/0x280
[  425.597862][T11737]  ? bpf_test_run+0x174/0x870
[  425.602592][T11737]  bpf_test_run+0x2df/0x870
[  425.607168][T11737]  ? bpf_test_run+0x174/0x870
[  425.611916][T11737]  ? convert___skb_to_skb+0x590/0x590
[  425.617347][T11737]  ? eth_get_headlen+0x210/0x210
[  425.622351][T11737]  ? slab_build_skb+0x25f/0x3f0
[  425.627302][T11737]  ? convert___skb_to_skb+0x3d/0x590
[  425.632643][T11737]  bpf_prog_test_run_skb+0xad2/0x12b0
[  425.638088][T11737]  ? cpu_online+0x60/0x60
[  425.642465][T11737]  bpf_prog_test_run+0x321/0x390
[  425.647463][T11737]  __sys_bpf+0x49d/0x890
[  425.651762][T11737]  ? bpf_link_show_fdinfo+0x390/0x390
[  425.657239][T11737]  ? lock_chain_count+0x20/0x20
[  425.662151][T11737]  __x64_sys_bpf+0x7c/0x90
[  425.666616][T11737]  do_syscall_64+0x55/0xa0
[  425.671102][T11737]  ? clear_bhb_loop+0x40/0x90
[  425.675840][T11737]  ? clear_bhb_loop+0x40/0x90
[  425.680561][T11737]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  425.686501][T11737] RIP: 0033:0x7fbc8239cdd9
[  425.690964][T11737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  425.710609][T11737] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  425.719065][T11737] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  425.727070][T11737] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 000000000000000a
[  425.735091][T11737] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  425.743105][T11737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.751120][T11737] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  425.759141][T11737]  </TASK>
[  425.965906][T11746] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1868'.
[  425.997775][T11746] netlink: 'syz.0.1868': attribute type 2 has an invalid length.
[  426.019317][T11746] netlink: 'syz.0.1868': attribute type 8 has an invalid length.
[  426.020363][T11743] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.1867'.
[  426.274955][T11751] netlink: 'syz.2.1870': attribute type 3 has an invalid length.
[  426.531904][T11754] netlink: 'syz.0.1871': attribute type 5 has an invalid length.
[  426.869112][T11764] bridge_slave_1: default FDB implementation only supports local addresses
[  426.896884][T11768] netlink: 'syz.1.1875': attribute type 10 has an invalid length.
[  427.478789][T11780] netlink: 'syz.2.1879': attribute type 2 has an invalid length.
[  427.491900][T11780] netlink: 'syz.2.1879': attribute type 8 has an invalid length.
[  427.501001][T11780] __nla_validate_parse: 6 callbacks suppressed
[  427.501019][T11780] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1879'.
[  427.518673][T11782] netlink: 16399 bytes leftover after parsing attributes in process `syz.1.1880'.
[  427.796539][T11789] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.1882'.
[  427.933919][T11791] netlink: 703 bytes leftover after parsing attributes in process `syz.1.1882'.
[  428.403647][T11797] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1885'.
[  428.497735][T11804] netlink: 'syz.1.1885': attribute type 10 has an invalid length.
[  428.728152][T11807] netlink: 56843 bytes leftover after parsing attributes in process `syz.2.1887'.
[  428.881820][T11815] netlink: 'syz.2.1890': attribute type 39 has an invalid length.
[  429.066779][T11818] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.1889'.
[  429.077751][T11818] bridge_slave_1: default FDB implementation only supports local addresses
[  429.107004][T11817] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.1891'.
[  429.229099][T11817] netlink: 703 bytes leftover after parsing attributes in process `syz.2.1891'.
[  429.580610][T11825] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1894'.
[  430.053397][T11841] macsec0: entered allmulticast mode
[  431.289962][T11861] bridge_slave_1: default FDB implementation only supports local addresses
[  431.353102][T11866] validate_nla: 5 callbacks suppressed
[  431.353126][T11866] netlink: 'syz.1.1907': attribute type 2 has an invalid length.
[  431.368040][T11866] netlink: 'syz.1.1907': attribute type 8 has an invalid length.
[  431.654089][T11874] netlink: 'syz.1.1908': attribute type 10 has an invalid length.
[  432.209053][T11886] netlink: 'syz.1.1914': attribute type 5 has an invalid length.
[  432.712623][T11894] __nla_validate_parse: 11 callbacks suppressed
[  432.712646][T11894] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1916'.
[  432.834980][T11895] netlink: 'syz.0.1916': attribute type 2 has an invalid length.
[  432.843692][T11895] netlink: 'syz.0.1916': attribute type 8 has an invalid length.
[  432.854198][T11895] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1916'.
[  433.310015][T11902] netlink: 'syz.0.1918': attribute type 3 has an invalid length.
[  433.319421][T11902] netlink: 'syz.0.1918': attribute type 275 has an invalid length.
[  433.921793][T11916] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1921'.
[  434.069231][T11916] netlink: 'syz.0.1921': attribute type 10 has an invalid length.
[  434.479796][T11925] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.1924'.
[  434.544302][T11926] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.1923'.
[  434.567208][T11926] bridge_slave_1: default FDB implementation only supports local addresses
[  434.667173][T11927] netlink: 703 bytes leftover after parsing attributes in process `syz.2.1924'.
[  435.032540][T11938] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1927'.
[  435.055510][T11938] netlink: 'syz.2.1927': attribute type 2 has an invalid length.
[  435.064280][T11938] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1927'.
[  435.175439][T11943] FAULT_INJECTION: forcing a failure.
[  435.175439][T11943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  435.189749][T11943] CPU: 1 PID: 11943 Comm: syz.1.1929 Not tainted syzkaller #0
[  435.197281][T11943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  435.207394][T11943] Call Trace:
[  435.210727][T11943]  <TASK>
[  435.213721][T11943]  dump_stack_lvl+0x18c/0x250
[  435.218475][T11943]  ? show_regs_print_info+0x20/0x20
[  435.223744][T11943]  ? load_image+0x420/0x420
[  435.228308][T11943]  ? __lock_acquire+0x7d40/0x7d40
[  435.233394][T11943]  should_fail_ex+0x39d/0x4d0
[  435.238180][T11943]  _copy_from_user+0x2f/0xe0
[  435.242829][T11943]  __copy_msghdr+0x3bb/0x580
[  435.247473][T11943]  ___sys_sendmsg+0x214/0x360
[  435.252198][T11943]  ? get_pid_task+0x20/0x1e0
[  435.256855][T11943]  ? __sys_sendmsg+0x2a0/0x2a0
[  435.261691][T11943]  ? __lock_acquire+0x7d40/0x7d40
[  435.266893][T11943]  __se_sys_sendmsg+0x1c2/0x2b0
[  435.271818][T11943]  ? __x64_sys_sendmsg+0x80/0x80
[  435.276825][T11943]  ? lockdep_hardirqs_on+0x98/0x150
[  435.282086][T11943]  do_syscall_64+0x55/0xa0
[  435.286544][T11943]  ? clear_bhb_loop+0x40/0x90
[  435.291277][T11943]  ? clear_bhb_loop+0x40/0x90
[  435.296013][T11943]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  435.301962][T11943] RIP: 0033:0x7fbc8239cdd9
[  435.306422][T11943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  435.326086][T11943] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  435.334570][T11943] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  435.342605][T11943] RDX: 0000000000000060 RSI: 0000200000000080 RDI: 0000000000000003
[  435.350640][T11943] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  435.358674][T11943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  435.366704][T11943] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  435.374756][T11943]  </TASK>
[  435.389697][T11945] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1930'.
[  435.496284][T11947] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1931'.
[  436.882549][T11971] bridge_slave_1: default FDB implementation only supports local addresses
[  437.337712][T11987] validate_nla: 4 callbacks suppressed
[  437.337732][T11987] netlink: 'syz.1.1942': attribute type 10 has an invalid length.
[  437.368281][T11988] netlink: zone id is out of range
[  437.413220][T11989] netlink: 'syz.3.1945': attribute type 2 has an invalid length.
[  437.425096][T11989] netlink: 'syz.3.1945': attribute type 8 has an invalid length.
[  437.848349][T12001] __nla_validate_parse: 8 callbacks suppressed
[  437.848364][T12001] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.1948'.
[  437.968233][T12002] netlink: 703 bytes leftover after parsing attributes in process `syz.1.1948'.
[  438.005492][T12004] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.1950'.
[  438.026974][T12004] bridge_slave_1: default FDB implementation only supports local addresses
[  438.204971][T12006] netlink: 'syz.0.1951': attribute type 46 has an invalid length.
[  438.229189][T12006] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1951'.
[  438.414498][T12015] netlink: 'syz.0.1955': attribute type 5 has an invalid length.
[  438.498267][T12019] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1956'.
[  438.608349][T12022] netlink: 'syz.1.1956': attribute type 10 has an invalid length.
[  439.131245][T12032] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.1959'.
[  439.147872][T12032] bridge_slave_1: default FDB implementation only supports local addresses
[  439.451287][T12041] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.1962'.
[  439.589930][T12045] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1963'.
[  439.701127][T12048] netlink: 'syz.1.1961': attribute type 46 has an invalid length.
[  439.711202][T12048] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1961'.
[  439.726134][T12045] netlink: 'syz.3.1963': attribute type 2 has an invalid length.
[  439.744948][T12045] netlink: 'syz.3.1963': attribute type 8 has an invalid length.
[  439.765116][T12045] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1963'.
[  440.250605][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  440.257370][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  441.086134][T12075] netlink: 'syz.3.1970': attribute type 29 has an invalid length.
[  441.502834][T12080] bridge_slave_1: default FDB implementation only supports local addresses
[  442.316875][T12095] FAULT_INJECTION: forcing a failure.
[  442.316875][T12095] name failslab, interval 1, probability 0, space 0, times 0
[  442.374069][T12095] CPU: 1 PID: 12095 Comm: syz.1.1974 Not tainted syzkaller #0
[  442.381634][T12095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  442.391755][T12095] Call Trace:
[  442.395077][T12095]  <TASK>
[  442.398053][T12095]  dump_stack_lvl+0x18c/0x250
[  442.402799][T12095]  ? __alloc_skb+0x138/0x2c0
[  442.407451][T12095]  ? show_regs_print_info+0x20/0x20
[  442.412725][T12095]  ? load_image+0x420/0x420
[  442.417303][T12095]  should_fail_ex+0x39d/0x4d0
[  442.422080][T12095]  should_failslab+0x9/0x20
[  442.426632][T12095]  slab_pre_alloc_hook+0x59/0x310
[  442.431729][T12095]  kmem_cache_alloc+0x5a/0x2d0
[  442.436640][T12095]  ? skb_clone+0x1eb/0x370
[  442.441133][T12095]  skb_clone+0x1eb/0x370
[  442.445472][T12095]  __netlink_deliver_tap+0x41c/0x830
[  442.450837][T12095]  ? netlink_deliver_tap+0x2e/0x1b0
[  442.456103][T12095]  netlink_deliver_tap+0x19c/0x1b0
[  442.461378][T12095]  netlink_dump+0x94b/0xe50
[  442.465982][T12095]  ? netlink_lookup+0x200/0x200
[  442.470908][T12095]  ? slab_free_freelist_hook+0x130/0x1a0
[  442.476605][T12095]  ? netlink_recvmsg+0x5e7/0xe60
[  442.481610][T12095]  ? kmem_cache_free+0xf8/0x270
[  442.486538][T12095]  netlink_recvmsg+0x693/0xe60
[  442.491388][T12095]  ? netlink_sendmsg+0xbf0/0xbf0
[  442.496397][T12095]  ? aa_af_perm+0x330/0x330
[  442.501066][T12095]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  442.506418][T12095]  ? security_socket_recvmsg+0x89/0xb0
[  442.511933][T12095]  ? netlink_sendmsg+0xbf0/0xbf0
[  442.516947][T12095]  ____sys_recvmsg+0x2ce/0x5e0
[  442.521928][T12095]  ? __sys_recvmsg_sock+0x50/0x50
[  442.527042][T12095]  ? import_iovec+0x73/0xa0
[  442.531621][T12095]  ___sys_recvmsg+0x216/0x590
[  442.536366][T12095]  ? __sys_recvmsg+0x2a0/0x2a0
[  442.541229][T12095]  ? ksys_write+0x1c4/0x260
[  442.545902][T12095]  ? __fget_files+0x43d/0x4b0
[  442.550673][T12095]  __x64_sys_recvmsg+0x20c/0x2e0
[  442.555675][T12095]  ? ___sys_recvmsg+0x590/0x590
[  442.560602][T12095]  ? lockdep_hardirqs_on+0x98/0x150
[  442.565863][T12095]  do_syscall_64+0x55/0xa0
[  442.570328][T12095]  ? clear_bhb_loop+0x40/0x90
[  442.575060][T12095]  ? clear_bhb_loop+0x40/0x90
[  442.579807][T12095]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  442.585758][T12095] RIP: 0033:0x7fbc8239cdd9
[  442.590221][T12095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  442.609882][T12095] RSP: 002b:00007fbc83193028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  442.618355][T12095] RAX: ffffffffffffffda RBX: 00007fbc82616180 RCX: 00007fbc8239cdd9
[  442.626379][T12095] RDX: 0000000000000000 RSI: 0000200000000cc0 RDI: 0000000000000003
[  442.634423][T12095] RBP: 00007fbc83193090 R08: 0000000000000000 R09: 0000000000000000
[  442.642450][T12095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.650478][T12095] R13: 00007fbc82616218 R14: 00007fbc82616180 R15: 00007ffe66103768
[  442.658531][T12095]  </TASK>
[  442.845763][T12101] validate_nla: 8 callbacks suppressed
[  442.845904][T12101] netlink: 'syz.3.1976': attribute type 2 has an invalid length.
[  442.874826][T12101] netlink: 'syz.3.1976': attribute type 8 has an invalid length.
[  442.893321][T12101] __nla_validate_parse: 6 callbacks suppressed
[  442.893363][T12101] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1976'.
[  443.706877][T12117] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1981'.
[  443.857183][T12117] netlink: 'syz.2.1981': attribute type 10 has an invalid length.
[  443.884851][T12124] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.1983'.
[  444.120380][T12124] netlink: 703 bytes leftover after parsing attributes in process `syz.0.1983'.
[  444.602230][T12134] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.1985'.
[  444.625010][T12134] bridge_slave_1: default FDB implementation only supports local addresses
[  444.823227][T12140] netlink: 'syz.2.1987': attribute type 5 has an invalid length.
[  444.893917][T12142] netlink: 15487 bytes leftover after parsing attributes in process `syz.3.1989'.
[  445.701698][T12153] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1992'.
[  445.804160][T12153] netlink: 'syz.0.1992': attribute type 2 has an invalid length.
[  445.818538][T12153] netlink: 'syz.0.1992': attribute type 8 has an invalid length.
[  445.844776][T12153] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1992'.
[  446.549633][T12162] netlink: 209628 bytes leftover after parsing attributes in process `syz.1.1994'.
[  446.559510][T12162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1994'.
[  447.155437][T12169] netlink: 'syz.0.1995': attribute type 10 has an invalid length.
[  447.230045][T12172] bridge_slave_1: default FDB implementation only supports local addresses
[  447.506782][T12181] FAULT_INJECTION: forcing a failure.
[  447.506782][T12181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  447.555042][T12181] CPU: 0 PID: 12181 Comm: syz.3.2001 Not tainted syzkaller #0
[  447.562633][T12181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  447.572781][T12181] Call Trace:
[  447.576134][T12181]  <TASK>
[  447.579144][T12181]  dump_stack_lvl+0x18c/0x250
[  447.583932][T12181]  ? show_regs_print_info+0x20/0x20
[  447.589235][T12181]  ? load_image+0x420/0x420
[  447.593858][T12181]  ? __might_fault+0xaa/0x120
[  447.598618][T12181]  ? __lock_acquire+0x7d40/0x7d40
[  447.603756][T12181]  should_fail_ex+0x39d/0x4d0
[  447.608570][T12181]  _copy_from_user+0x2f/0xe0
[  447.613253][T12181]  vmemdup_user+0xac/0x1e0
[  447.617848][T12181]  map_get_next_key+0x228/0x620
[  447.622779][T12181]  ? __might_fault+0xc6/0x120
[  447.627535][T12181]  ? __might_fault+0xaa/0x120
[  447.632305][T12181]  ? bpf_lsm_bpf+0x9/0x10
[  447.636744][T12181]  __sys_bpf+0x715/0x890
[  447.641176][T12181]  ? bpf_link_show_fdinfo+0x390/0x390
[  447.641277][T12180] netlink: 'syz.1.1999': attribute type 1 has an invalid length.
[  447.646655][T12181]  ? lock_chain_count+0x20/0x20
[  447.646724][T12181]  __x64_sys_bpf+0x7c/0x90
[  447.646761][T12181]  do_syscall_64+0x55/0xa0
[  447.646785][T12181]  ? clear_bhb_loop+0x40/0x90
[  447.646816][T12181]  ? clear_bhb_loop+0x40/0x90
[  447.646857][T12181]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  447.646888][T12181] RIP: 0033:0x7f9e1699cdd9
[  447.646916][T12181] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  447.646939][T12181] RSP: 002b:00007f9e177a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  447.646971][T12181] RAX: ffffffffffffffda RBX: 00007f9e16c15fa0 RCX: 00007f9e1699cdd9
[  447.646991][T12181] RDX: 0000000000000020 RSI: 00002000000004c0 RDI: 0000000000000004
[  447.647008][T12181] RBP: 00007f9e177a9090 R08: 0000000000000000 R09: 0000000000000000
[  447.647026][T12181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  447.647043][T12181] R13: 00007f9e16c16038 R14: 00007f9e16c15fa0 R15: 00007ffcaf894718
[  447.647121][T12181]  </TASK>
[  447.804852][T12180] netlink: 'syz.1.1999': attribute type 4 has an invalid length.
[  448.153013][T12193] __nla_validate_parse: 5 callbacks suppressed
[  448.153031][T12193] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2003'.
[  448.180201][T12193] netlink: 'syz.0.2003': attribute type 2 has an invalid length.
[  448.189606][T12193] netlink: 'syz.0.2003': attribute type 8 has an invalid length.
[  448.198039][T12193] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2003'.
[  448.404330][T12198] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2006'.
[  448.451363][T12196] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2004'.
[  448.563017][T12201] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2006'.
[  448.894361][T12206] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2008'.
[  449.119982][T12208] netlink: 'syz.1.2008': attribute type 10 has an invalid length.
[  449.205995][T12204] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2007'.
[  449.245632][T12204] bridge_slave_1: default FDB implementation only supports local addresses
[  449.676314][T12221] netlink: 'syz.1.2013': attribute type 1 has an invalid length.
[  449.696295][T12221] netlink: 16150 bytes leftover after parsing attributes in process `syz.1.2013'.
[  449.898841][T12230] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2015'.
[  449.926463][T12230] netlink: 'syz.3.2015': attribute type 2 has an invalid length.
[  449.945303][T12230] netlink: 'syz.3.2015': attribute type 8 has an invalid length.
[  449.954047][T12230] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2015'.
[  450.274118][T12239] bridge_slave_1: default FDB implementation only supports local addresses
[  450.569516][T12243] netlink: 'syz.2.2020': attribute type 5 has an invalid length.
[  450.775329][T12250] netlink: 'syz.1.2021': attribute type 10 has an invalid length.
[  451.273262][T12260] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  451.721236][T12270] bridge_slave_1: default FDB implementation only supports local addresses
[  452.172708][T12278] netlink: 'syz.1.2031': attribute type 2 has an invalid length.
[  452.195906][T12278] netlink: 'syz.1.2031': attribute type 8 has an invalid length.
[  453.101480][T12303] bridge_slave_1: default FDB implementation only supports local addresses
[  453.357272][T12309] __nla_validate_parse: 12 callbacks suppressed
[  453.357292][T12309] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2041'.
[  453.520124][T12309] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2041'.
[  453.729621][T12318] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2045'.
[  453.764510][T12320] netlink: 830 bytes leftover after parsing attributes in process `syz.1.2046'.
[  453.808610][T12322] validate_nla: 1 callbacks suppressed
[  453.808629][T12322] netlink: 'syz.2.2045': attribute type 10 has an invalid length.
[  453.854396][T12320] netlink: 'syz.1.2046': attribute type 2 has an invalid length.
[  453.880194][T12320] netlink: 'syz.1.2046': attribute type 8 has an invalid length.
[  453.921220][T12320] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2046'.
[  453.972212][T12326] netlink: 'syz.0.2047': attribute type 5 has an invalid length.
[  454.382235][T12338] FAULT_INJECTION: forcing a failure.
[  454.382235][T12338] name failslab, interval 1, probability 0, space 0, times 0
[  454.437322][T12338] CPU: 1 PID: 12338 Comm: syz.1.2052 Not tainted syzkaller #0
[  454.444903][T12338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  454.455012][T12338] Call Trace:
[  454.458333][T12338]  <TASK>
[  454.461423][T12338]  dump_stack_lvl+0x18c/0x250
[  454.466167][T12338]  ? show_regs_print_info+0x20/0x20
[  454.471443][T12338]  ? load_image+0x420/0x420
[  454.476005][T12338]  ? __might_sleep+0xe0/0xe0
[  454.480646][T12338]  ? __lock_acquire+0x7d40/0x7d40
[  454.485734][T12338]  should_fail_ex+0x39d/0x4d0
[  454.490489][T12338]  should_failslab+0x9/0x20
[  454.495158][T12338]  slab_pre_alloc_hook+0x59/0x310
[  454.500245][T12338]  ? sk_prot_alloc+0xe7/0x210
[  454.505000][T12338]  ? sk_prot_alloc+0xe7/0x210
[  454.509734][T12338]  __kmem_cache_alloc_node+0x53/0x250
[  454.515178][T12338]  ? sk_prot_alloc+0xe7/0x210
[  454.519923][T12338]  __kmalloc+0xa4/0x230
[  454.524163][T12338]  sk_prot_alloc+0xe7/0x210
[  454.528730][T12338]  ? sk_alloc+0x24/0x360
[  454.533040][T12338]  sk_alloc+0x3a/0x360
[  454.535932][T12334] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.2050'.
[  454.537144][T12338]  ? bpf_ctx_init+0x163/0x1a0
[  454.537170][T12338]  ? bpf_prog_test_run_skb+0x273/0x12b0
[  454.537198][T12338]  bpf_prog_test_run_skb+0x3a5/0x12b0
[  454.537220][T12338]  ? __fget_files+0x28/0x4b0
[  454.537247][T12338]  ? __fget_files+0x28/0x4b0
[  454.537274][T12338]  ? __fget_files+0x43d/0x4b0
[  454.537313][T12338]  ? cpu_online+0x60/0x60
[  454.537356][T12338]  bpf_prog_test_run+0x321/0x390
[  454.537385][T12338]  __sys_bpf+0x49d/0x890
[  454.537411][T12338]  ? bpf_link_show_fdinfo+0x390/0x390
[  454.537452][T12338]  ? lock_chain_count+0x20/0x20
[  454.537488][T12338]  __x64_sys_bpf+0x7c/0x90
[  454.537512][T12338]  do_syscall_64+0x55/0xa0
[  454.608816][T12338]  ? clear_bhb_loop+0x40/0x90
[  454.613527][T12338]  ? clear_bhb_loop+0x40/0x90
[  454.618238][T12338]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  454.624165][T12338] RIP: 0033:0x7fbc8239cdd9
[  454.628612][T12338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  454.648423][T12338] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  454.656869][T12338] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  454.664869][T12338] RDX: 0000000000000050 RSI: 0000200000000000 RDI: 000000000000000a
[  454.672979][T12338] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  454.680997][T12338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  454.689004][T12338] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  454.697193][T12338]  </TASK>
[  454.713347][T12334] bridge_slave_1: default FDB implementation only supports local addresses
[  455.366093][T12352] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2056'.
[  455.716739][T12356] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2056'.
[  455.910455][T12360] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2058'.
[  455.933714][T12362] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2059'.
[  456.042691][T12362] netlink: 'syz.3.2059': attribute type 2 has an invalid length.
[  456.064958][T12362] netlink: 'syz.3.2059': attribute type 8 has an invalid length.
[  456.086820][T12364] netlink: 'syz.1.2058': attribute type 10 has an invalid length.
[  456.564755][T12375] FAULT_INJECTION: forcing a failure.
[  456.564755][T12375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  456.630442][T12375] CPU: 0 PID: 12375 Comm: syz.1.2062 Not tainted syzkaller #0
[  456.638012][T12375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  456.648132][T12375] Call Trace:
[  456.651469][T12375]  <TASK>
[  456.654454][T12375]  dump_stack_lvl+0x18c/0x250
[  456.659266][T12375]  ? show_regs_print_info+0x20/0x20
[  456.664555][T12375]  ? load_image+0x420/0x420
[  456.669152][T12375]  ? __might_fault+0xaa/0x120
[  456.673900][T12375]  ? __lock_acquire+0x7d40/0x7d40
[  456.679016][T12375]  should_fail_ex+0x39d/0x4d0
[  456.683774][T12375]  _copy_from_iter+0x1d9/0x12e0
[  456.688698][T12375]  ? __virt_addr_valid+0x18c/0x540
[  456.693882][T12375]  ? __lock_acquire+0x7d40/0x7d40
[  456.698977][T12375]  ? copyout_mc+0x70/0x70
[  456.703378][T12375]  ? __virt_addr_valid+0x18c/0x540
[  456.708553][T12375]  ? __virt_addr_valid+0x18c/0x540
[  456.713725][T12375]  ? __virt_addr_valid+0x469/0x540
[  456.718895][T12375]  ? __check_object_size+0x506/0xa20
[  456.724270][T12375]  kernfs_fop_write_iter+0x1a4/0x520
[  456.729717][T12375]  vfs_write+0x46c/0x990
[  456.734042][T12375]  ? file_end_write+0x250/0x250
[  456.738970][T12375]  ? __fget_files+0x43d/0x4b0
[  456.743726][T12375]  ? __fdget_pos+0x2a3/0x330
[  456.748367][T12375]  ? ksys_write+0x75/0x260
[  456.752855][T12375]  ksys_write+0x150/0x260
[  456.757244][T12375]  ? __ia32_sys_read+0x90/0x90
[  456.762072][T12375]  ? lockdep_hardirqs_on+0x98/0x150
[  456.767349][T12375]  do_syscall_64+0x55/0xa0
[  456.771844][T12375]  ? clear_bhb_loop+0x40/0x90
[  456.776574][T12375]  ? clear_bhb_loop+0x40/0x90
[  456.781318][T12375]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  456.787267][T12375] RIP: 0033:0x7fbc8239cdd9
[  456.791735][T12375] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  456.811390][T12375] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  456.819842][T12375] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  456.827843][T12375] RDX: 0000000000000012 RSI: 0000200000000180 RDI: 000000000000000a
[  456.835881][T12375] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  456.843968][T12375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  456.852017][T12375] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  456.860047][T12375]  </TASK>
[  457.613321][T12377] bridge_slave_1: default FDB implementation only supports local addresses
[  457.855657][T12382] bridge_slave_1: default FDB implementation only supports local addresses
[  458.594144][T12373] __nla_validate_parse: 4 callbacks suppressed
[  458.594162][T12373] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2061'.
[  458.791673][T12399] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2068'.
[  459.341097][T12401] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2068'.
[  459.489132][T12407] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2070'.
[  459.510088][T12408] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2071'.
[  459.579884][T12408] netlink: 'syz.2.2071': attribute type 2 has an invalid length.
[  459.612590][T12408] netlink: 'syz.2.2071': attribute type 8 has an invalid length.
[  459.641820][T12408] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2071'.
[  459.673696][T12412] netlink: 'syz.1.2070': attribute type 10 has an invalid length.
[  460.473351][T12421] netlink: 'syz.0.2074': attribute type 5 has an invalid length.
[  461.100577][T12433] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2077'.
[  461.111457][T12433] bridge_slave_1: default FDB implementation only supports local addresses
[  461.125930][T12439] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2080'.
[  461.436176][T12443] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2081'.
[  462.267003][T12451] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2081'.
[  462.312862][T12456] netlink: 'syz.2.2084': attribute type 2 has an invalid length.
[  462.341377][T12456] netlink: 'syz.2.2084': attribute type 8 has an invalid length.
[  462.615044][T12459] netlink: 'syz.1.2085': attribute type 10 has an invalid length.
[  462.802833][T12470] FAULT_INJECTION: forcing a failure.
[  462.802833][T12470] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  462.816850][T12470] CPU: 0 PID: 12470 Comm: syz.3.2087 Not tainted syzkaller #0
[  462.824407][T12470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  462.834572][T12470] Call Trace:
[  462.837936][T12470]  <TASK>
[  462.840940][T12470]  dump_stack_lvl+0x18c/0x250
[  462.845742][T12470]  ? show_regs_print_info+0x20/0x20
[  462.851057][T12470]  ? load_image+0x420/0x420
[  462.855662][T12470]  ? __might_fault+0xaa/0x120
[  462.860459][T12470]  ? __lock_acquire+0x7d40/0x7d40
[  462.865593][T12470]  should_fail_ex+0x39d/0x4d0
[  462.870435][T12470]  _copy_from_user+0x2f/0xe0
[  462.875126][T12470]  vmemdup_user+0xac/0x1e0
[  462.879641][T12470]  map_get_next_key+0x228/0x620
[  462.884561][T12470]  ? __might_fault+0xc6/0x120
[  462.889316][T12470]  ? __might_fault+0xaa/0x120
[  462.894076][T12470]  ? bpf_lsm_bpf+0x9/0x10
[  462.898517][T12470]  __sys_bpf+0x715/0x890
[  462.902862][T12470]  ? bpf_link_show_fdinfo+0x390/0x390
[  462.908385][T12470]  ? lock_chain_count+0x20/0x20
[  462.913368][T12470]  __x64_sys_bpf+0x7c/0x90
[  462.917878][T12470]  do_syscall_64+0x55/0xa0
[  462.922363][T12470]  ? clear_bhb_loop+0x40/0x90
[  462.927160][T12470]  ? clear_bhb_loop+0x40/0x90
[  462.931924][T12470]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  462.937905][T12470] RIP: 0033:0x7f9e1699cdd9
[  462.942403][T12470] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  462.962092][T12470] RSP: 002b:00007f9e177a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  462.970590][T12470] RAX: ffffffffffffffda RBX: 00007f9e16c15fa0 RCX: 00007f9e1699cdd9
[  462.978635][T12470] RDX: 0000000000000020 RSI: 00002000000004c0 RDI: 0000000000000004
[  462.986675][T12470] RBP: 00007f9e177a9090 R08: 0000000000000000 R09: 0000000000000000
[  462.994718][T12470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  463.002757][T12470] R13: 00007f9e16c16038 R14: 00007f9e16c15fa0 R15: 00007ffcaf894718
[  463.010864][T12470]  </TASK>
[  463.378952][T12479] bridge_slave_1: default FDB implementation only supports local addresses
[  463.823534][T12490] __nla_validate_parse: 4 callbacks suppressed
[  463.823736][T12490] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2094'.
[  464.092820][T12494] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2094'.
[  464.499914][T12492] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2096'.
[  464.694185][T12492] netlink: 'syz.2.2096': attribute type 10 has an invalid length.
[  465.350786][T12509] netlink: 763 bytes leftover after parsing attributes in process `syz.1.2099'.
[  465.368864][T12512] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2100'.
[  465.404931][T12513] netlink: 'syz.2.2100': attribute type 2 has an invalid length.
[  465.428373][T12513] netlink: 'syz.2.2100': attribute type 8 has an invalid length.
[  465.448384][T12513] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2100'.
[  465.683429][T12522] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2102'.
[  465.768520][T12522] bridge_slave_1: default FDB implementation only supports local addresses
[  466.100521][T12532] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2106'.
[  466.277193][T12536] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2106'.
[  466.522841][T12538] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2108'.
[  466.546337][T12540] netlink: 'syz.0.2109': attribute type 5 has an invalid length.
[  466.590973][T12544] netlink: 'syz.2.2108': attribute type 10 has an invalid length.
[  467.191303][T12552] bridge_slave_1: default FDB implementation only supports local addresses
[  467.555789][T12559] netlink: 'syz.3.2116': attribute type 2 has an invalid length.
[  467.563711][T12559] netlink: 'syz.3.2116': attribute type 8 has an invalid length.
[  468.043687][T12573] netlink: 'syz.1.2120': attribute type 17 has an invalid length.
[  468.706698][T12582] netlink: 'syz.1.2122': attribute type 10 has an invalid length.
[  469.060802][T12592] __nla_validate_parse: 8 callbacks suppressed
[  469.060839][T12592] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.2125'.
[  469.101082][T12592] bridge_slave_1: default FDB implementation only supports local addresses
[  469.172992][T12599] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2129'.
[  469.202657][T12599] netlink: 'syz.3.2129': attribute type 2 has an invalid length.
[  469.222715][T12599] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2129'.
[  469.331098][T12603] netlink: 172 bytes leftover after parsing attributes in process `syz.2.2130'.
[  469.381310][T12605] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2131'.
[  469.544429][T12609] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2131'.
[  469.577492][T12608] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2132'.
[  469.795356][T12611] validate_nla: 2 callbacks suppressed
[  469.795393][T12611] netlink: 'syz.2.2133': attribute type 5 has an invalid length.
[  469.836939][T12613] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2134'.
[  469.988060][T12613] netlink: 'syz.1.2134': attribute type 10 has an invalid length.
[  470.651271][T12628] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2139'.
[  470.706659][T12628] bridge_slave_1: default FDB implementation only supports local addresses
[  471.083166][T12639] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2143'.
[  471.694357][T12652] netlink: 'syz.0.2147': attribute type 2 has an invalid length.
[  471.713089][T12652] netlink: 'syz.0.2147': attribute type 8 has an invalid length.
[  471.885193][T12661] netlink: 'syz.3.2149': attribute type 10 has an invalid length.
[  471.964453][T12663] bridge_slave_1: default FDB implementation only supports local addresses
[  472.190214][T12667] netlink: 'syz.0.2153': attribute type 10 has an invalid length.
[  472.251406][T12668] netlink: 'syz.1.2152': attribute type 10 has an invalid length.
[  472.767937][T12682] netlink: 'syz.3.2159': attribute type 2 has an invalid length.
[  472.777862][T12682] netlink: 'syz.3.2159': attribute type 8 has an invalid length.
[  473.180162][T12689] bridge_slave_1: default FDB implementation only supports local addresses
[  473.247525][T12692] netlink: 'syz.0.2162': attribute type 5 has an invalid length.
[  474.310258][T12714] FAULT_INJECTION: forcing a failure.
[  474.310258][T12714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  474.325655][T12714] CPU: 0 PID: 12714 Comm: syz.3.2169 Not tainted syzkaller #0
[  474.333208][T12714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  474.343308][T12714] Call Trace:
[  474.346634][T12714]  <TASK>
[  474.349632][T12714]  dump_stack_lvl+0x18c/0x250
[  474.354379][T12714]  ? show_regs_print_info+0x20/0x20
[  474.359644][T12714]  ? load_image+0x420/0x420
[  474.364218][T12714]  ? __might_fault+0xaa/0x120
[  474.368945][T12714]  ? __lock_acquire+0x7d40/0x7d40
[  474.374044][T12714]  should_fail_ex+0x39d/0x4d0
[  474.378818][T12714]  _copy_to_user+0x2f/0xa0
[  474.383293][T12714]  bpf_test_finish+0x25a/0x650
[  474.388122][T12714]  ? convert___skb_to_skb+0x590/0x590
[  474.393537][T12714]  ? convert_skb_to___skb+0x420/0x420
[  474.398947][T12714]  ? slab_build_skb+0x25f/0x3f0
[  474.403832][T12714]  bpf_prog_test_run_skb+0xcc3/0x12b0
[  474.409250][T12714]  ? cpu_online+0x60/0x60
[  474.413604][T12714]  bpf_prog_test_run+0x321/0x390
[  474.418574][T12714]  __sys_bpf+0x49d/0x890
[  474.422846][T12714]  ? bpf_link_show_fdinfo+0x390/0x390
[  474.428257][T12714]  ? lock_chain_count+0x20/0x20
[  474.433146][T12714]  __x64_sys_bpf+0x7c/0x90
[  474.437699][T12714]  do_syscall_64+0x55/0xa0
[  474.442231][T12714]  ? clear_bhb_loop+0x40/0x90
[  474.446966][T12714]  ? clear_bhb_loop+0x40/0x90
[  474.451678][T12714]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  474.457601][T12714] RIP: 0033:0x7f9e1699cdd9
[  474.462065][T12714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  474.481726][T12714] RSP: 002b:00007f9e177a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  474.490176][T12714] RAX: ffffffffffffffda RBX: 00007f9e16c15fa0 RCX: 00007f9e1699cdd9
[  474.498175][T12714] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a
[  474.506176][T12714] RBP: 00007f9e177a9090 R08: 0000000000000000 R09: 0000000000000000
[  474.514172][T12714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  474.522165][T12714] R13: 00007f9e16c16038 R14: 00007f9e16c15fa0 R15: 00007ffcaf894718
[  474.530172][T12714]  </TASK>
[  474.715616][T12717] __nla_validate_parse: 13 callbacks suppressed
[  474.715638][T12717] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2170'.
[  474.962345][T12720] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2170'.
[  474.981092][T12719] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.2171'.
[  475.009060][T12719] bridge_slave_1: default FDB implementation only supports local addresses
[  475.439114][T12728] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2173'.
[  475.465811][T12728] validate_nla: 1 callbacks suppressed
[  475.465830][T12728] netlink: 'syz.2.2173': attribute type 2 has an invalid length.
[  475.497851][T12728] netlink: 'syz.2.2173': attribute type 8 has an invalid length.
[  475.507720][T12728] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2173'.
[  475.564986][T12730] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.2174'.
[  475.739558][T12738] netlink: 'syz.3.2174': attribute type 10 has an invalid length.
[  475.847952][T12741] IPv6: Can't replace route, no match found
[  475.857901][T12741] netlink: 'syz.1.2177': attribute type 5 has an invalid length.
[  476.042201][T12745] netlink: 55 bytes leftover after parsing attributes in process `syz.3.2178'.
[  476.781348][T12754] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2181'.
[  476.846471][T12754] bridge_slave_1: default FDB implementation only supports local addresses
[  476.894359][T12756] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2182'.
[  477.103331][T12759] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2182'.
[  477.650859][T12779] netlink: 'syz.1.2186': attribute type 10 has an invalid length.
[  477.675293][T12773] netlink: 'syz.3.2187': attribute type 2 has an invalid length.
[  477.697396][T12773] netlink: 'syz.3.2187': attribute type 8 has an invalid length.
[  478.019766][T12785] sock: sock_set_timeout: `syz.1.2189' (pid 12785) tries to set negative timeout
[  478.070494][   T51] Bluetooth: hci1: unexpected subevent 0x0e length: 150 > 15
[  478.110139][T12786] netlink: 'syz.2.2190': attribute type 1 has an invalid length.
[  478.397399][T12790] bridge_slave_1: default FDB implementation only supports local addresses
[  478.692542][T12796] FAULT_INJECTION: forcing a failure.
[  478.692542][T12796] name failslab, interval 1, probability 0, space 0, times 0
[  478.719655][T12796] CPU: 0 PID: 12796 Comm: syz.2.2194 Not tainted syzkaller #0
[  478.727217][T12796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  478.737329][T12796] Call Trace:
[  478.740661][T12796]  <TASK>
[  478.743651][T12796]  dump_stack_lvl+0x18c/0x250
[  478.748399][T12796]  ? lock_chain_count+0x20/0x20
[  478.753314][T12796]  ? show_regs_print_info+0x20/0x20
[  478.758598][T12796]  ? load_image+0x420/0x420
[  478.763170][T12796]  ? lockdep_hardirqs_on+0x98/0x150
[  478.768454][T12796]  should_fail_ex+0x39d/0x4d0
[  478.773211][T12796]  should_failslab+0x9/0x20
[  478.777796][T12796]  slab_pre_alloc_hook+0x59/0x310
[  478.782890][T12796]  ? fib_trie_table+0x33/0x1c0
[  478.787754][T12796]  ? fib_trie_table+0x33/0x1c0
[  478.792574][T12796]  __kmem_cache_alloc_node+0x53/0x250
[  478.798051][T12796]  ? fib_trie_table+0x33/0x1c0
[  478.802903][T12796]  __kmalloc+0xa4/0x230
[  478.807163][T12796]  fib_trie_table+0x33/0x1c0
[  478.811850][T12796]  fib_new_table+0x135/0x2d0
[  478.816595][T12796]  fib4_rule_configure+0x258/0xb00
[  478.821826][T12796]  fib_nl_newrule+0x12cf/0x1dc0
[  478.826853][T12796]  ? fib_rules_seq_read+0xf0/0xf0
[  478.831999][T12796]  ? rcu_is_watching+0x15/0xb0
[  478.836852][T12796]  ? trace_contention_end+0x39/0xe0
[  478.842241][T12796]  ? rtnetlink_rcv_msg+0x221/0xfa0
[  478.847527][T12796]  ? rtnetlink_rcv_msg+0x221/0xfa0
[  478.852748][T12796]  ? fib_rules_seq_read+0xf0/0xf0
[  478.857862][T12796]  rtnetlink_rcv_msg+0x869/0xfa0
[  478.862943][T12796]  ? rtnetlink_bind+0x80/0x80
[  478.867745][T12796]  ? perf_tp_event+0x13d7/0x1520
[  478.872795][T12796]  ? perf_trace_run_bpf_submit+0x1c0/0x1c0
[  478.878825][T12796]  ? __dev_queue_xmit+0x265/0x3660
[  478.884071][T12796]  ? perf_trace_run_bpf_submit+0xf4/0x1c0
[  478.889931][T12796]  netlink_rcv_skb+0x241/0x4d0
[  478.894797][T12796]  ? rtnetlink_bind+0x80/0x80
[  478.899601][T12796]  ? netlink_ack+0x1180/0x1180
[  478.904496][T12796]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  478.910797][T12796]  netlink_unicast+0x751/0x8d0
[  478.915730][T12796]  netlink_sendmsg+0x8d0/0xbf0
[  478.920589][T12796]  ? lockdep_hardirqs_on+0x98/0x150
[  478.925929][T12796]  ? netlink_getsockopt+0x590/0x590
[  478.931239][T12796]  ? audit_tree_destroy_watch+0x20/0x20
[  478.936888][T12796]  ? security_socket_sendmsg+0x80/0xa0
[  478.942424][T12796]  ? netlink_getsockopt+0x590/0x590
[  478.947729][T12796]  ____sys_sendmsg+0x5ba/0x960
[  478.952641][T12796]  ? __asan_memset+0x22/0x40
[  478.957337][T12796]  ? __sys_sendmsg_sock+0x30/0x30
[  478.962425][T12796]  ? __import_iovec+0x5f2/0x850
[  478.967389][T12796]  ? import_iovec+0x73/0xa0
[  478.971993][T12796]  ___sys_sendmsg+0x2a6/0x360
[  478.976778][T12796]  ? __sys_sendmsg+0x2a0/0x2a0
[  478.981730][T12796]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[  478.988132][T12796]  __se_sys_sendmsg+0x1c2/0x2b0
[  478.993083][T12796]  ? __x64_sys_sendmsg+0x80/0x80
[  478.998161][T12796]  ? lockdep_hardirqs_on+0x98/0x150
[  479.003454][T12796]  do_syscall_64+0x55/0xa0
[  479.007946][T12796]  ? clear_bhb_loop+0x40/0x90
[  479.012713][T12796]  ? clear_bhb_loop+0x40/0x90
[  479.017484][T12796]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  479.023462][T12796] RIP: 0033:0x7feddc99cdd9
[  479.027962][T12796] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  479.047654][T12796] RSP: 002b:00007feddd8c0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  479.056215][T12796] RAX: ffffffffffffffda RBX: 00007feddcc15fa0 RCX: 00007feddc99cdd9
[  479.064302][T12796] RDX: 0000000000000004 RSI: 00002000000000c0 RDI: 0000000000000007
[  479.072357][T12796] RBP: 00007feddd8c0090 R08: 0000000000000000 R09: 0000000000000000
[  479.080400][T12796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  479.088437][T12796] R13: 00007feddcc16038 R14: 00007feddcc15fa0 R15: 00007ffe6e132228
[  479.096546][T12796]  </TASK>
[  479.176027][T12794] netlink: 'syz.3.2193': attribute type 5 has an invalid length.
[  479.519086][T12796] netlink: 'syz.2.2194': attribute type 1 has an invalid length.
[  479.751129][T12807] __nla_validate_parse: 8 callbacks suppressed
[  479.751170][T12807] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2197'.
[  479.851194][T12812] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2198'.
[  480.196082][T12827] netlink: 830 bytes leftover after parsing attributes in process `syz.1.2201'.
[  480.209219][T12829] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2202'.
[  480.232638][T12829] bridge_slave_1: default FDB implementation only supports local addresses
[  480.278543][T12827] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2201'.
[  480.471136][   T51] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  480.497677][T12834] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2206'.
[  480.738660][T12840] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2206'.
[  480.972516][T12842] validate_nla: 4 callbacks suppressed
[  480.972530][T12842] netlink: 'syz.0.2207': attribute type 5 has an invalid length.
[  481.201272][T12851] netlink: 'syz.3.2210': attribute type 10 has an invalid length.
[  481.210281][T12851] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2210'.
[  481.227674][T12851] batman_adv: batadv0: Adding interface: virt_wifi0
[  481.247520][T12851] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  481.290332][T12851] batman_adv: batadv0: Interface activated: virt_wifi0
[  481.443909][T12855] netlink: 'syz.1.2211': attribute type 29 has an invalid length.
[  481.550949][T12855] netlink: 'syz.1.2211': attribute type 29 has an invalid length.
[  481.646716][T12856] netlink: 'syz.1.2211': attribute type 29 has an invalid length.
[  481.655167][T12862] netlink: 'syz.2.2213': attribute type 2 has an invalid length.
[  481.664250][T12862] netlink: 'syz.2.2213': attribute type 8 has an invalid length.
[  481.673520][T12862] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2213'.
[  481.685954][T12860] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2213'.
[  481.757075][T12855] netlink: 'syz.1.2211': attribute type 29 has an invalid length.
[  481.797218][T12861] netlink: 'syz.1.2211': attribute type 29 has an invalid length.
[  481.866307][T12863] netlink: 'syz.3.2212': attribute type 10 has an invalid length.
[  481.967576][T12867] bridge_slave_1: default FDB implementation only supports local addresses
[  483.138119][T12899] bridge_slave_1: default FDB implementation only supports local addresses
[  483.425004][T12912] FAULT_INJECTION: forcing a failure.
[  483.425004][T12912] name failslab, interval 1, probability 0, space 0, times 0
[  483.438688][T12912] CPU: 1 PID: 12912 Comm: syz.1.2228 Not tainted syzkaller #0
[  483.446187][T12912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  483.456288][T12912] Call Trace:
[  483.459606][T12912]  <TASK>
[  483.462572][T12912]  dump_stack_lvl+0x18c/0x250
[  483.467288][T12912]  ? __alloc_skb+0x138/0x2c0
[  483.471913][T12912]  ? show_regs_print_info+0x20/0x20
[  483.477158][T12912]  ? load_image+0x420/0x420
[  483.481724][T12912]  should_fail_ex+0x39d/0x4d0
[  483.486446][T12912]  should_failslab+0x9/0x20
[  483.490992][T12912]  slab_pre_alloc_hook+0x59/0x310
[  483.496083][T12912]  kmem_cache_alloc+0x5a/0x2d0
[  483.500915][T12912]  ? skb_clone+0x1eb/0x370
[  483.505377][T12912]  skb_clone+0x1eb/0x370
[  483.509693][T12912]  __netlink_deliver_tap+0x41c/0x830
[  483.515063][T12912]  ? netlink_deliver_tap+0x2e/0x1b0
[  483.520334][T12912]  netlink_deliver_tap+0x19c/0x1b0
[  483.525519][T12912]  netlink_dump+0x94b/0xe50
[  483.530116][T12912]  ? __virt_addr_valid+0x18c/0x540
[  483.535270][T12912]  ? netlink_lookup+0x200/0x200
[  483.540201][T12912]  ? skb_copy_datagram_iter+0x200/0x200
[  483.545798][T12912]  ? refcount_dec_and_test+0x4f/0x70
[  483.551119][T12912]  netlink_recvmsg+0x693/0xe60
[  483.555940][T12912]  ? netlink_sendmsg+0xbf0/0xbf0
[  483.560932][T12912]  ? aa_af_perm+0x330/0x330
[  483.565476][T12912]  ? __lock_acquire+0x1273/0x7d40
[  483.570579][T12912]  ? verify_lock_unused+0x140/0x140
[  483.575843][T12912]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  483.581183][T12912]  ? security_socket_recvmsg+0x89/0xb0
[  483.586677][T12912]  ? netlink_sendmsg+0xbf0/0xbf0
[  483.591672][T12912]  ____sys_recvmsg+0x2ce/0x5e0
[  483.596495][T12912]  ? __sys_recvmsg_sock+0x50/0x50
[  483.602096][T12912]  ? import_iovec+0x73/0xa0
[  483.606645][T12912]  ___sys_recvmsg+0x216/0x590
[  483.611375][T12912]  ? __sys_recvmsg+0x2a0/0x2a0
[  483.616224][T12912]  ? ksys_write+0x1c4/0x260
[  483.620797][T12912]  ? __fget_files+0x43d/0x4b0
[  483.625585][T12912]  __x64_sys_recvmsg+0x20c/0x2e0
[  483.630585][T12912]  ? ___sys_recvmsg+0x590/0x590
[  483.635502][T12912]  ? lockdep_hardirqs_on+0x98/0x150
[  483.640745][T12912]  do_syscall_64+0x55/0xa0
[  483.645212][T12912]  ? clear_bhb_loop+0x40/0x90
[  483.649985][T12912]  ? clear_bhb_loop+0x40/0x90
[  483.654704][T12912]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  483.660641][T12912] RIP: 0033:0x7fbc8239cdd9
[  483.665079][T12912] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  483.684727][T12912] RSP: 002b:00007fbc831d5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  483.693294][T12912] RAX: ffffffffffffffda RBX: 00007fbc82615fa0 RCX: 00007fbc8239cdd9
[  483.701328][T12912] RDX: 0000000000000002 RSI: 0000200000001c80 RDI: 0000000000000003
[  483.709345][T12912] RBP: 00007fbc831d5090 R08: 0000000000000000 R09: 0000000000000000
[  483.717358][T12912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  483.725464][T12912] R13: 00007fbc82616038 R14: 00007fbc82615fa0 R15: 00007ffe66103768
[  483.733522][T12912]  </TASK>
[  483.863057][T12894] delete_channel: no stack
[  484.915728][T12930] __nla_validate_parse: 13 callbacks suppressed
[  484.915748][T12930] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2233'.
[  484.938655][T12933] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2234'.
[  484.956781][T12933] bridge_slave_1: default FDB implementation only supports local addresses
[  485.543870][T12937] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.2236'.
[  485.580751][T12943] netlink: 128 bytes leftover after parsing attributes in process `syz.3.2238'.
[  485.602274][T12946] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2238'.
[  485.652499][T12947] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2239'.
[  485.737488][T12947] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2239'.
[  486.422640][T12961] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2242'.
[  486.540280][T12962] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2243'.
[  486.573675][T12962] bridge_slave_1: default FDB implementation only supports local addresses
[  486.593507][T12963] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2242'.
[  487.270518][T12977] validate_nla: 15 callbacks suppressed
[  487.270536][T12977] netlink: 'syz.3.2249': attribute type 10 has an invalid length.
[  487.741024][T12979] netlink: 'syz.0.2247': attribute type 2 has an invalid length.
[  487.758043][T12979] netlink: 'syz.0.2247': attribute type 8 has an invalid length.
[  487.795995][T12978] bridge_slave_1: default FDB implementation only supports local addresses
[  488.102126][T12989] netlink: 'syz.1.2252': attribute type 2 has an invalid length.
[  488.119824][T12989] netlink: 'syz.1.2252': attribute type 8 has an invalid length.
[  488.131466][T12990] bridge_slave_1: default FDB implementation only supports local addresses
[  488.148286][T12986] netlink: 'syz.3.2251': attribute type 5 has an invalid length.
[  488.745893][T13001] bridge_slave_1: default FDB implementation only supports local addresses
[  489.925269][T13016] __nla_validate_parse: 13 callbacks suppressed
[  489.925288][T13016] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2267'.
[  490.326287][T13019] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2267'.
[  490.395484][T13012] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.2257'.
[  490.411367][T13012] bridge_slave_1: default FDB implementation only supports local addresses
[  490.685233][T13012] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2257'.
[  490.803355][T13025] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2259'.
[  490.828997][T13025] bridge_slave_1: default FDB implementation only supports local addresses
[  490.857747][T13012] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[  490.875238][T13027] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2260'.
[  490.956590][T13027] netlink: 'syz.2.2260': attribute type 10 has an invalid length.
[  491.277914][T13032] netlink: 174280 bytes leftover after parsing attributes in process `syz.0.2261'.
[  492.229899][T13046] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2269'.
[  492.300045][T13044] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2266'.
[  492.339166][T13050] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2269'.
[  492.379643][T13049] netlink: 'syz.2.2266': attribute type 2 has an invalid length.
[  492.407969][T13049] netlink: 'syz.2.2266': attribute type 8 has an invalid length.
[  492.559647][ T5781] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  492.570785][ T5781] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  492.580181][ T5781] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  492.590240][ T5781] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  492.602694][ T5781] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  492.612862][ T5781] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  492.745964][T13051] bridge_slave_1: default FDB implementation only supports local addresses
[  492.862790][ T6327] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.884318][T13057] netlink: 'syz.2.2270': attribute type 2 has an invalid length.
[  492.997312][ T6327] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  493.109857][ T6327] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  493.254123][ T6327] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  493.268162][T13065] netlink: 'syz.2.2273': attribute type 5 has an invalid length.
[  493.297405][T13062] netlink: 'syz.0.2271': attribute type 2 has an invalid length.
[  493.328028][T13062] netlink: 'syz.0.2271': attribute type 8 has an invalid length.
[  493.494022][T13060] netlink: 'syz.3.2272': attribute type 10 has an invalid length.
[  493.774039][T13054] chnl_net:caif_netlink_parms(): no params data found
[  494.278529][ T6327] tipc: Left network mode
[  494.443370][T13086] netlink: 'syz.3.2277': attribute type 2 has an invalid length.
[  494.452447][T13086] netlink: 'syz.3.2277': attribute type 8 has an invalid length.
[  494.735875][ T5781] Bluetooth: hci1: command tx timeout
[  495.040979][T13054] bridge0: port 1(bridge_slave_0) entered blocking state
[  495.053676][T13054] bridge0: port 1(bridge_slave_0) entered disabled state
[  495.064505][T13054] bridge_slave_0: entered allmulticast mode
[  495.076290][T13054] bridge_slave_0: entered promiscuous mode
[  495.211356][T13054] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.234892][T13054] bridge0: port 2(bridge_slave_1) entered disabled state
[  495.242353][T13054] bridge_slave_1: entered allmulticast mode
[  495.252546][T13104] __nla_validate_parse: 13 callbacks suppressed
[  495.252564][T13104] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2286'.
[  495.279692][T13054] bridge_slave_1: entered promiscuous mode
[  495.620772][T13104] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2286'.
[  495.777271][T13054] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  495.818813][T13054] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  496.049617][T13118] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2280'.
[  496.160441][T13119] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2281'.
[  496.173722][T13119] bridge_slave_1: default FDB implementation only supports local addresses
[  496.236190][T13054] team0: Port device team_slave_0 added
[  496.320199][T13054] team0: Port device team_slave_1 added
[  496.400951][T13120] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2280'.
[  496.526941][T13054] batman_adv: batadv0: Adding interface: batadv_slave_0
[  496.534068][T13054] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.607835][T13054] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  496.631576][T13054] batman_adv: batadv0: Adding interface: batadv_slave_1
[  496.640742][T13054] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.672957][T13054] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.804990][ T5781] Bluetooth: hci1: command tx timeout
[  496.853231][T13054] hsr_slave_0: entered promiscuous mode
[  496.860274][T13054] hsr_slave_1: entered promiscuous mode
[  497.401886][T13137] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.2283'.
[  497.470837][T13145] netlink: 'syz.3.2283': attribute type 10 has an invalid length.
[  498.290259][T13160] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2287'.
[  498.358301][T13163] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2288'.
[  498.388740][T13161] netlink: 'syz.3.2287': attribute type 2 has an invalid length.
[  498.414324][T13161] netlink: 'syz.3.2287': attribute type 8 has an invalid length.
[  498.430071][T13165] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2289'.
[  498.455806][T13161] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2287'.
[  498.895142][ T5781] Bluetooth: hci1: command tx timeout
[  498.911196][ T6327] vlan0: left allmulticast mode
[  498.928403][ T6327] veth0_vlan: left allmulticast mode
[  498.974990][ T6327] vlan0: left promiscuous mode
[  498.981057][ T6327] À: port 1(vlan0) entered disabled state
[  499.040906][ T6327] hsr_slave_0: left promiscuous mode
[  499.112119][ T6327] hsr_slave_1: left promiscuous mode
[  499.141624][ T6327] bridge_slave_1: left allmulticast mode
[  499.164092][ T6327] bridge_slave_1: left promiscuous mode
[  499.184097][ T6327] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.250727][ T6327] bridge_slave_0: left allmulticast mode
[  499.259794][ T6327] bridge_slave_0: left promiscuous mode
[  499.266956][ T6327] bridge0: port 1(bridge_slave_0) entered disabled state
[  499.321317][ T6327] veth0_macvtap: left promiscuous mode
[  499.330205][ T6327] veth1_vlan: left promiscuous mode
[  499.337947][ T6327] veth0_vlan: left promiscuous mode
[  500.240322][ T6327] team0 (unregistering): Port device team_slave_1 removed
[  500.293966][ T6327] team0 (unregistering): Port device team_slave_0 removed
[  500.789996][T13169] __nla_validate_parse: 1 callbacks suppressed
[  500.790014][T13169] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2289'.
[  500.860116][T13183] netlink: 'syz.3.2292': attribute type 2 has an invalid length.
[  500.875919][T13183] netlink: 'syz.3.2292': attribute type 8 has an invalid length.
[  500.883835][T13183] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2292'.
[  500.966664][ T5781] Bluetooth: hci1: command tx timeout
[  501.161337][T13198] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2293'.
[  501.259487][T13202] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2294'.
[  501.562105][T13198] netlink: 'syz.2.2293': attribute type 10 has an invalid length.
[  501.693541][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  501.701598][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  501.738998][T13208] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2294'.
[  501.861453][T13054] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  501.931800][T13054] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  501.997123][T13054] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  502.036867][T13054] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  502.352660][T13222] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2296'.
[  502.483736][T13054] 8021q: adding VLAN 0 to HW filter on device bond0
[  502.670086][T13228] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2298'.
[  502.708551][T13221] netlink: 'syz.2.2297': attribute type 5 has an invalid length.
[  502.793976][T13222] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2296'.
[  503.303553][T13229] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2298'.
[  503.434230][T13054] 8021q: adding VLAN 0 to HW filter on device team0
[  503.520370][   T55] bridge0: port 1(bridge_slave_0) entered blocking state
[  503.527664][   T55] bridge0: port 1(bridge_slave_0) entered forwarding state
[  503.596853][ T8640] bridge0: port 2(bridge_slave_1) entered blocking state
[  503.604098][ T8640] bridge0: port 2(bridge_slave_1) entered forwarding state
[  503.834250][T13236] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2299'.
[  503.876935][T13240] netlink: 'syz.3.2299': attribute type 2 has an invalid length.
[  503.891872][T13240] netlink: 'syz.3.2299': attribute type 8 has an invalid length.
[  504.158110][T13054] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  504.296485][T13244] syzkaller0: create flow: hash 1302532992 index 1
[  504.666486][T13243] syzkaller0: delete flow: hash 1302532992 index 1
[  506.906243][T13264] __nla_validate_parse: 1 callbacks suppressed
[  506.906284][T13264] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2302'.
[  506.950650][T13264] bridge_slave_1: default FDB implementation only supports local addresses
[  507.071603][T13054] 8021q: adding VLAN 0 to HW filter on device batadv0
[  507.364807][T13054] veth0_vlan: entered promiscuous mode
[  507.380004][T13054] veth1_vlan: entered promiscuous mode
[  507.486229][T13054] veth0_macvtap: entered promiscuous mode
[  507.497811][T13054] veth1_macvtap: entered promiscuous mode
[  507.523049][T13054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  507.536200][T13054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  507.551468][T13054] batman_adv: batadv0: Interface activated: batadv_slave_0
[  507.569760][T13054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  507.580311][T13054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  507.591816][T13054] batman_adv: batadv0: Interface activated: batadv_slave_1
[  507.605677][T13054] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  507.614456][T13054] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  507.623625][T13054] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  507.637167][T13054] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  507.842435][ T6325] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.874708][ T6325] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  507.952317][   T55] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.967577][   T55] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  508.196669][T13307] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.2305'.
[  508.215505][T13305] netlink: 'syz.0.2311': attribute type 5 has an invalid length.
[  508.281963][T13312] netlink: 'syz.3.2305': attribute type 10 has an invalid length.
[  508.349920][T13311] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2262'.
[  508.410497][T13311] bridge_slave_1: default FDB implementation only supports local addresses
[  508.613396][T13317] netlink: 'syz.2.2306': attribute type 2 has an invalid length.
[  508.640298][T13317] netlink: 'syz.2.2306': attribute type 8 has an invalid length.
[  508.673374][T13317] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2306'.
[  508.939787][T13324] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2307'.
[  509.299184][T13324] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2307'.
[  509.616959][T13335] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2309'.
[  509.644061][T13335] netlink: 'syz.3.2309': attribute type 2 has an invalid length.
[  509.658573][T13335] netlink: 'syz.3.2309': attribute type 8 has an invalid length.
[  509.667462][T13335] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2309'.
[  509.793895][T13337] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2310'.
[  509.984277][T13344] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2310'.
[  511.155679][T13353] netlink: 'syz.3.2322': attribute type 2 has an invalid length.
[  511.173378][T13353] netlink: 'syz.3.2322': attribute type 8 has an invalid length.
[  511.561514][T13362] bridge_slave_1: default FDB implementation only supports local addresses
[  511.644427][T13366] netlink: 'syz.2.2317': attribute type 10 has an invalid length.
[  511.865311][T13372] bridge_slave_1: default FDB implementation only supports local addresses
[  512.123808][T13377] __nla_validate_parse: 7 callbacks suppressed
[  512.123845][T13377] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2331'.
[  512.188943][T13379] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2321'.
[  512.413752][T13382] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2321'.
[  512.444330][T13377] netlink: 'syz.1.2331': attribute type 10 has an invalid length.
[  512.759941][T13377] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  513.107091][T13396] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2325'.
[  513.252218][T13396] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2325'.
[  513.672708][T13399] validate_nla: 1 callbacks suppressed
[  513.672780][T13399] netlink: 'syz.1.2326': attribute type 19 has an invalid length.
[  513.915509][T13399] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2326'.
[  513.967573][T13400] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  513.975114][T13400] IPv6: NLM_F_CREATE should be set when creating new route
[  513.982792][T13400] IPv6: NLM_F_CREATE should be set when creating new route
[  513.990361][T13400] IPv6: NLM_F_CREATE should be set when creating new route
[  515.760983][T13412] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2329'.
[  515.790758][T13412] bridge_slave_1: default FDB implementation only supports local addresses
[  516.582551][T13416] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2330'.
[  516.604388][T13419] netlink: 830 bytes leftover after parsing attributes in process `syz.3.2332'.
[  516.664378][T13417] netlink: 'syz.1.2330': attribute type 10 has an invalid length.
[  516.687451][T13422] netlink: 'syz.3.2332': attribute type 2 has an invalid length.
[  516.700835][T13422] netlink: 'syz.3.2332': attribute type 8 has an invalid length.
[  516.709394][T13422] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2332'.
[  517.495671][T13428] netlink: 'syz.1.2334': attribute type 2 has an invalid length.
[  517.591994][T13428] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2334'.
[  517.935992][T13431] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.2336'.
[  518.000611][T13433] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2335'.
[  518.041840][T13433] netlink: 'syz.2.2335': attribute type 2 has an invalid length.
[  518.057254][T13433] netlink: 'syz.2.2335': attribute type 8 has an invalid length.
[  518.068651][T13433] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2335'.
[  518.094092][T13431] netlink: 'syz.3.2336': attribute type 10 has an invalid length.
[  518.188494][T13439] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2337'.
[  518.683126][T13443] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2337'.
[  519.001518][T13447] netlink: 1047 bytes leftover after parsing attributes in process `syz.0.2339'.
[  519.037058][T13447] bridge_slave_1: default FDB implementation only supports local addresses
[  519.065870][T13451] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2348'.
[  519.148017][T13451] netlink: 'syz.2.2348': attribute type 10 has an invalid length.
[  519.260819][T13455] netlink: 'syz.1.2341': attribute type 5 has an invalid length.
[  520.046179][T13459] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2340'.
[  520.058127][T13459] bridge_slave_1: default FDB implementation only supports local addresses
[  520.191934][T13468] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.2343'.
[  520.457769][T13472] netlink: 'syz.2.2343': attribute type 10 has an invalid length.
[  521.222730][T13459] debugfs: Directory '!!ô!' with parent 'ieee80211' already present!
[  521.401991][T13478] netlink: 'syz.2.2344': attribute type 2 has an invalid length.
[  521.442216][T13478] netlink: 'syz.2.2344': attribute type 8 has an invalid length.
[  523.865384][T13489] netlink: 'syz.3.2346': attribute type 2 has an invalid length.
[  523.925408][T13491] __nla_validate_parse: 3 callbacks suppressed
[  523.925428][T13491] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2357'.
[  523.943388][T13490] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2347'.
[  523.962367][T13489] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2346'.
[  524.452124][T13492] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2347'.
[  524.483997][T13493] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2357'.
[  524.717467][T13497] netlink: 'syz.0.2355': attribute type 5 has an invalid length.
[  524.925882][T13501] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2350'.
[  524.989811][T13503] netlink: 830 bytes leftover after parsing attributes in process `syz.1.2349'.
[  525.282153][T13502] netlink: 'syz.3.2351': attribute type 5 has an invalid length.
[  525.339827][T13505] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2350'.
[  525.419442][T13503] netlink: 'syz.1.2349': attribute type 2 has an invalid length.
[  525.458961][T13503] netlink: 'syz.1.2349': attribute type 8 has an invalid length.
[  525.499370][T13503] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2349'.
[  526.058946][T13511] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.2352'.
[  526.181803][T13517] netlink: 'syz.2.2353': attribute type 6 has an invalid length.
[  526.203504][T13516] netlink: 'syz.1.2352': attribute type 10 has an invalid length.
[  527.342298][T13519] netlink: 'syz.1.2364': attribute type 2 has an invalid length.
[  527.355232][T13519] netlink: 'syz.1.2364': attribute type 8 has an invalid length.
[  527.419028][T13521] netlink: 'syz.2.2365': attribute type 5 has an invalid length.
[  527.522006][T13526] netlink: 'syz.3.2354': attribute type 10 has an invalid length.
[  529.027694][T13543] __nla_validate_parse: 4 callbacks suppressed
[  529.027712][T13543] netlink: 129384 bytes leftover after parsing attributes in process `syz.3.2359'.
[  529.769742][T13543] netlink: 703 bytes leftover after parsing attributes in process `syz.3.2359'.
[  531.294123][T13548] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2361'.
[  531.310672][T13549] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2360'.
[  531.322680][T13548] bridge_slave_1: default FDB implementation only supports local addresses
[  531.656039][T13551] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2360'.
[  531.737730][T13554] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.2363'.
[  531.900952][T13556] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.2366'.
[  531.927128][T13556] bridge_slave_1: default FDB implementation only supports local addresses
[  531.948668][T13557] netlink: 703 bytes leftover after parsing attributes in process `syz.0.2363'.
[  532.397362][T13560] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2368'.
[  532.439673][T13560] validate_nla: 1 callbacks suppressed
[  532.439692][T13560] netlink: 'syz.2.2368': attribute type 2 has an invalid length.
[  532.474890][T13560] netlink: 'syz.2.2368': attribute type 8 has an invalid length.
[  532.508690][T13560] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2368'.
[  532.556236][T13566] bridge_slave_1: default FDB implementation only supports local addresses
[  532.863136][T13578] netlink: 'syz.0.2373': attribute type 5 has an invalid length.
[  532.898570][T13580] netlink: 'syz.3.2374': attribute type 5 has an invalid length.
[  533.041289][T13584] netlink: 'syz.1.2375': attribute type 10 has an invalid length.
[  533.805749][T13594] bridge_slave_1: default FDB implementation only supports local addresses
[  534.181841][T13606] __nla_validate_parse: 7 callbacks suppressed
[  534.181877][T13606] netlink: 1047 bytes leftover after parsing attributes in process `syz.2.2381'.
[  534.203883][T13606] bridge_slave_1: default FDB implementation only supports local addresses
[  534.383562][T13610] delete_channel: no stack
[  535.436938][T13616] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2387'.
[  535.472566][T13616] netlink: 'syz.2.2387': attribute type 2 has an invalid length.
[  535.483919][T13616] netlink: 'syz.2.2387': attribute type 8 has an invalid length.
[  535.495280][T13616] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2387'.
[  535.533728][T13615] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.2386'.
[  535.705604][T13617] netlink: 'syz.0.2386': attribute type 10 has an invalid length.
[  536.161070][T13623] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2389'.
[  536.301476][T13623] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2389'.
[  536.717773][T13626] netlink: 'syz.3.2390': attribute type 29 has an invalid length.
[  536.769395][T13626] netlink: 'syz.3.2390': attribute type 29 has an invalid length.
[  537.039214][T13637] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  537.049799][T13637] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  537.065769][T13637] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  537.093329][T13637] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  537.113944][T13637] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  537.122976][T13637] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  537.152373][T13634] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2392'.
[  537.166844][T13634] bridge_slave_1: default FDB implementation only supports local addresses
[  537.313437][T13642] syz.2.2393[13642] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  537.313610][T13642] syz.2.2393[13642] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  537.392323][   T55] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.750369][   T55] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.851154][   T55] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.873587][T13654] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2397'.
[  537.981326][   T55] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  538.009604][T13636] chnl_net:caif_netlink_parms(): no params data found
[  538.076318][T13660] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2399'.
[  538.220941][T13661] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2399'.
[  538.475364][T13665] validate_nla: 4 callbacks suppressed
[  538.475382][T13665] netlink: 'syz.2.2400': attribute type 10 has an invalid length.
[  538.491623][T13665] netlink: 'syz.2.2400': attribute type 10 has an invalid length.
[  538.500166][T13665] openvswitch: netlink: Message has 4 unknown bytes.
[  538.543684][T13636] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.558902][T13636] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.589769][T13636] bridge_slave_0: entered allmulticast mode
[  538.601115][T13636] bridge_slave_0: entered promiscuous mode
[  538.611894][T13636] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.620250][T13636] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.629368][T13636] bridge_slave_1: entered allmulticast mode
[  538.642994][T13636] bridge_slave_1: entered promiscuous mode
[  538.754374][T13636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  538.820558][   T55] tipc: Left network mode
[  538.833802][T13636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  538.975882][T13671] bridge_slave_1: default FDB implementation only supports local addresses
[  539.077425][T13636] team0: Port device team_slave_0 added
[  539.089803][T13636] team0: Port device team_slave_1 added
[  539.206028][ T5781] Bluetooth: hci0: command tx timeout
[  539.237391][T13636] batman_adv: batadv0: Adding interface: batadv_slave_0
[  539.244768][T13636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.271157][T13636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  539.286068][T13636] batman_adv: batadv0: Adding interface: batadv_slave_1
[  539.293155][T13636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.353676][T13636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  539.457979][T13679] __nla_validate_parse: 3 callbacks suppressed
[  539.458048][T13679] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2412'.
[  539.497009][T13679] bridge_slave_1: default FDB implementation only supports local addresses
[  539.710556][T13636] hsr_slave_0: entered promiscuous mode
[  539.765267][T13636] hsr_slave_1: entered promiscuous mode
[  539.790351][T13636] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  539.862922][T13636] Cannot create hsr debugfs directory
[  539.906738][T13692] netlink: 129384 bytes leftover after parsing attributes in process `syz.2.2408'.
[  540.378235][T13690] syz.1.2407[13690] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  540.381694][T13690] syz.1.2407[13690] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  540.774916][T13698] netlink: 703 bytes leftover after parsing attributes in process `syz.2.2408'.
[  540.863454][T13700] netlink: 'syz.3.2409': attribute type 10 has an invalid length.
[  541.076371][T13713] netlink: 129384 bytes leftover after parsing attributes in process `syz.1.2418'.
[  541.304647][ T5781] Bluetooth: hci0: command tx timeout
[  541.337121][T13718] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2410'.
[  541.716069][T13716] netlink: 703 bytes leftover after parsing attributes in process `syz.1.2418'.
[  541.789086][T13723] netlink: 'syz.3.2413': attribute type 10 has an invalid length.
[  541.797375][T13723] netlink: 'syz.3.2413': attribute type 10 has an invalid length.
[  541.815118][T13723] netlink: 212256 bytes leftover after parsing attributes in process `syz.3.2413'.
[  541.842130][T13723] openvswitch: netlink: Message has 4 unknown bytes.
[  541.984207][T13726] netlink: 209592 bytes leftover after parsing attributes in process `syz.2.2414'.
[  542.012024][T13726] netlink: zone id is out of range
[  542.238349][T13728] netlink: 1047 bytes leftover after parsing attributes in process `syz.1.2415'.
[  542.282280][T13728] bridge_slave_1: default FDB implementation only supports local addresses
[  542.359343][T13731] netlink: 'syz.3.2416': attribute type 5 has an invalid length.
[  542.662870][T13735] netlink: 'syz.2.2419': attribute type 5 has an invalid length.
[  542.925737][   T55] 
[  542.928137][   T55] ======================================================
[  542.935187][   T55] WARNING: possible circular locking dependency detected
[  542.942251][   T55] syzkaller #0 Not tainted
[  542.946698][   T55] ------------------------------------------------------
[  542.953762][   T55] kworker/u4:4/55 is trying to acquire lock:
[  542.959771][   T55] ffff888061264d00 (team->team_lock_key){+.+.}-{3:3}, at: team_del_slave+0x32/0x1c0
[  542.969243][   T55] 
[  542.969243][   T55] but task is already holding lock:
[  542.976651][   T55] ffff88807de50768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: ieee80211_remove_interfaces+0x29a/0x690
[  542.987076][   T55] 
[  542.987076][   T55] which lock already depends on the new lock.
[  542.987076][   T55] 
[  542.997504][   T55] 
[  542.997504][   T55] the existing dependency chain (in reverse order) is:
[  543.006532][   T55] 
[  543.006532][   T55] -> #1 (&rdev->wiphy.mtx){+.+.}-{3:3}:
[  543.014320][   T55]        __mutex_lock+0x136/0xcc0
[  543.019453][   T55]        ieee80211_open+0x144/0x200
[  543.024677][   T55]        __dev_open+0x2cb/0x430
[  543.029550][   T55]        dev_open+0xab/0x190
[  543.034168][   T55]        team_add_slave+0x75f/0x29a0
[  543.039492][   T55]        do_setlink+0xdfe/0x4130
[  543.044462][   T55]        rtnl_newlink+0x17da/0x20a0
[  543.049720][   T55]        rtnetlink_rcv_msg+0x869/0xfa0
[  543.055196][   T55]        netlink_rcv_skb+0x241/0x4d0
[  543.060510][   T55]        netlink_unicast+0x751/0x8d0
[  543.065817][   T55]        netlink_sendmsg+0x8d0/0xbf0
[  543.071127][   T55]        ____sys_sendmsg+0x5ba/0x960
[  543.076432][   T55]        ___sys_sendmsg+0x2a6/0x360
[  543.081646][   T55]        __se_sys_sendmsg+0x1c2/0x2b0
[  543.087039][   T55]        do_syscall_64+0x55/0xa0
[  543.092000][   T55]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  543.098444][   T55] 
[  543.098444][   T55] -> #0 (team->team_lock_key){+.+.}-{3:3}:
[  543.106456][   T55]        __lock_acquire+0x2df1/0x7d40
[  543.111844][   T55]        lock_acquire+0x19e/0x420
[  543.116903][   T55]        __mutex_lock+0x136/0xcc0
[  543.121952][   T55]        team_del_slave+0x32/0x1c0
[  543.127094][   T55]        team_device_event+0x28d/0xa20
[  543.132609][   T55]        notifier_call_chain+0x197/0x380
[  543.138269][   T55]        unregister_netdevice_many_notify+0x100d/0x1900
[  543.145225][   T55]        unregister_netdevice_queue+0x32c/0x370
[  543.151484][   T55]        _cfg80211_unregister_wdev+0x16b/0x580
[  543.157664][   T55]        ieee80211_remove_interfaces+0x49e/0x690
[  543.164012][   T55]        ieee80211_unregister_hw+0x5d/0x2a0
[  543.169921][   T55]        mac80211_hwsim_del_radio+0x289/0x480
[  543.176008][   T55]        hwsim_exit_net+0x58d/0x650
[  543.181223][   T55]        cleanup_net+0x70a/0xbb0
[  543.186196][   T55]        process_scheduled_works+0xa5d/0x15d0
[  543.192300][   T55]        worker_thread+0xa55/0xfc0
[  543.197436][   T55]        kthread+0x2fa/0x390
[  543.202044][   T55]        ret_from_fork+0x48/0x80
[  543.207008][   T55]        ret_from_fork_asm+0x11/0x20
[  543.212332][   T55] 
[  543.212332][   T55] other info that might help us debug this:
[  543.212332][   T55] 
[  543.222591][   T55]  Possible unsafe locking scenario:
[  543.222591][   T55] 
[  543.230052][   T55]        CPU0                    CPU1
[  543.235432][   T55]        ----                    ----
[  543.240816][   T55]   lock(&rdev->wiphy.mtx);
[  543.245342][   T55]                                lock(team->team_lock_key);
[  543.252640][   T55]                                lock(&rdev->wiphy.mtx);
[  543.259707][   T55]   lock(team->team_lock_key);
[  543.264490][   T55] 
[  543.264490][   T55]  *** DEADLOCK ***
[  543.264490][   T55] 
[  543.272645][   T55] 5 locks held by kworker/u4:4/55:
[  543.277769][   T55]  #0: ffff88801a254938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  543.288686][   T55]  #1: ffffc9000120fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  543.299240][   T55]  #2: ffffffff8e3b5ad0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x14c/0xbb0
[  543.308669][   T55]  #3: ffffffff8e3c2b08 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_unregister_hw+0x55/0x2a0
[  543.318521][   T55]  #4: ffff88807de50768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: ieee80211_remove_interfaces+0x29a/0x690
[  543.329334][   T55] 
[  543.329334][   T55] stack backtrace:
[  543.335231][   T55] CPU: 0 PID: 55 Comm: kworker/u4:4 Not tainted syzkaller #0
[  543.342614][   T55] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  543.352682][   T55] Workqueue: netns cleanup_net
[  543.357493][   T55] Call Trace:
[  543.360805][   T55]  <TASK>
[  543.363784][   T55]  dump_stack_lvl+0x18c/0x250
[  543.368490][   T55]  ? load_image+0x420/0x420
[  543.373035][   T55]  ? show_regs_print_info+0x20/0x20
[  543.378265][   T55]  ? print_circular_bug+0x12b/0x1a0
[  543.383490][   T55]  check_noncircular+0x2fc/0x400
[  543.388457][   T55]  ? print_deadlock_bug+0x5d0/0x5d0
[  543.393683][   T55]  ? lockdep_lock+0xf5/0x230
[  543.398293][   T55]  ? __lock_acquire+0x1273/0x7d40
[  543.403355][   T55]  ? _find_first_zero_bit+0xd3/0x100
[  543.408674][   T55]  __lock_acquire+0x2df1/0x7d40
[  543.413557][   T55]  ? verify_lock_unused+0x140/0x140
[  543.418787][   T55]  ? verify_lock_unused+0x140/0x140
[  543.424019][   T55]  lock_acquire+0x19e/0x420
[  543.428547][   T55]  ? team_del_slave+0x32/0x1c0
[  543.433352][   T55]  ? __might_sleep+0xe0/0xe0
[  543.437966][   T55]  ? read_lock_is_recursive+0x20/0x20
[  543.443369][   T55]  __mutex_lock+0x136/0xcc0
[  543.447889][   T55]  ? team_del_slave+0x32/0x1c0
[  543.452680][   T55]  ? __lock_acquire+0x7d40/0x7d40
[  543.457727][   T55]  ? rcu_is_watching+0x15/0xb0
[  543.462519][   T55]  ? trace_contention_end+0x39/0xe0
[  543.467745][   T55]  ? __mutex_lock+0x315/0xcc0
[  543.472434][   T55]  ? team_del_slave+0x32/0x1c0
[  543.477218][   T55]  ? mutex_lock_nested+0x20/0x20
[  543.482163][   T55]  ? bond_netdev_event+0xeb/0xf20
[  543.487245][   T55]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  543.492912][   T55]  team_del_slave+0x32/0x1c0
[  543.497545][   T55]  team_device_event+0x28d/0xa20
[  543.502526][   T55]  notifier_call_chain+0x197/0x380
[  543.507692][   T55]  unregister_netdevice_many_notify+0x100d/0x1900
[  543.514164][   T55]  ? lock_chain_count+0x20/0x20
[  543.519053][   T55]  ? unregister_netdevice_many+0x20/0x20
[  543.524721][   T55]  ? kernfs_remove_by_name_ns+0x117/0x150
[  543.530479][   T55]  ? __lock_acquire+0x7d40/0x7d40
[  543.535535][   T55]  unregister_netdevice_queue+0x32c/0x370
[  543.541286][   T55]  ? list_netdevice+0x730/0x730
[  543.546161][   T55]  ? kernfs_remove_by_name_ns+0x117/0x150
[  543.551907][   T55]  _cfg80211_unregister_wdev+0x16b/0x580
[  543.557562][   T55]  ieee80211_remove_interfaces+0x49e/0x690
[  543.563425][   T55]  ? ieee80211_do_stop+0x1e20/0x1e20
[  543.568731][   T55]  ? rcu_is_watching+0x15/0xb0
[  543.573525][   T55]  ieee80211_unregister_hw+0x5d/0x2a0
[  543.578931][   T55]  mac80211_hwsim_del_radio+0x289/0x480
[  543.584509][   T55]  ? rhashtable_remove_fast+0xc00/0xc00
[  543.590088][   T55]  hwsim_exit_net+0x58d/0x650
[  543.594784][   T55]  ? hwsim_init_net+0x90/0x90
[  543.599479][   T55]  ? __ip_vs_dev_cleanup_batch+0x238/0x250
[  543.605330][   T55]  cleanup_net+0x70a/0xbb0
[  543.609778][   T55]  ? ops_free_list+0x3b0/0x3b0
[  543.614576][   T55]  ? _raw_spin_unlock_irq+0x23/0x50
[  543.619801][   T55]  ? process_scheduled_works+0x96f/0x15d0
[  543.625548][   T55]  ? process_scheduled_works+0x96f/0x15d0
[  543.631303][   T55]  process_scheduled_works+0xa5d/0x15d0
[  543.636885][   T55]  ? worker_attach_to_pool+0x380/0x380
[  543.642374][   T55]  ? assign_work+0x3d2/0x5d0
[  543.646989][   T55]  worker_thread+0xa55/0xfc0
[  543.651620][   T55]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  543.657536][   T55]  ? _raw_spin_unlock+0x40/0x40
[  543.662433][   T55]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  543.668355][   T55]  kthread+0x2fa/0x390
[  543.672443][   T55]  ? pr_cont_work+0x560/0x560
[  543.677148][   T55]  ? kthread_blkcg+0xd0/0xd0
[  543.681759][   T55]  ret_from_fork+0x48/0x80
[  543.686309][   T55]  ? kthread_blkcg+0xd0/0xd0
[  543.690938][   T55]  ret_from_fork_asm+0x11/0x20
[  543.695760][   T55]  </TASK>
[  543.714693][ T5781] Bluetooth: hci0: command tx timeout
[  543.755895][   T55] team0: Port device wlan1 removed
[  544.308512][   T55] bridge_slave_1: left allmulticast mode
[  544.314286][   T55] bridge_slave_1: left promiscuous mode
[  544.320494][   T55] bridge0: port 2(bridge_slave_1) entered disabled state
[  544.329228][   T55] bridge_slave_0: left allmulticast mode
[  544.335003][   T55] bridge_slave_0: left promiscuous mode
[  544.340799][   T55] bridge0: port 1(bridge_slave_0) entered disabled state
[  544.351999][   T55] veth0_macvtap: left promiscuous mode
[  544.580342][   T55] team0 (unregistering): Port device team_slave_1 removed
[  544.609045][   T55] team0 (unregistering): Port device team_slave_0 removed
[  544.944379][T13636] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  544.967059][T13636] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  544.978668][T13636] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  545.006180][T13636] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  545.257307][T13636] 8021q: adding VLAN 0 to HW filter on device bond0
[  545.441336][T13636] 8021q: adding VLAN 0 to HW filter on device team0
[  545.511479][ T6327] bridge0: port 1(bridge_slave_0) entered blocking state
[  545.518799][ T6327] bridge0: port 1(bridge_slave_0) entered forwarding state
[  545.540949][ T6327] bridge0: port 2(bridge_slave_1) entered blocking state
[  545.548211][ T6327] bridge0: port 2(bridge_slave_1) entered forwarding state
[  545.765290][ T5781] Bluetooth: hci0: command tx timeout
[  546.010171][T13636] 8021q: adding VLAN 0 to HW filter on device batadv0
[  546.064609][T13636] veth0_vlan: entered promiscuous mode
[  546.081943][T13636] veth1_vlan: entered promiscuous mode
[  546.139997][T13636] veth0_macvtap: entered promiscuous mode
[  546.168070][T13636] veth1_macvtap: entered promiscuous mode
[  546.203677][T13636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  546.215043][T13636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.224989][T13636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  546.236267][T13636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.247999][T13636] batman_adv: batadv0: Interface activated: batadv_slave_0
[  546.280628][T13636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  546.319512][T13636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.364572][T13636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  546.395174][T13636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  546.406491][T13636] batman_adv: batadv0: Interface activated: batadv_slave_1
[  546.427310][T13636] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  546.444795][T13636] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  546.453569][T13636] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  546.463172][T13636] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  546.518031][T13636] ieee80211 phy24: Selected rate control algorithm 'minstrel_ht'
[  546.569267][ T6327] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.572962][T13636] ieee80211 phy25: Selected rate control algorithm 'minstrel_ht'
[  546.588824][ T6327] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.627762][ T6325] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.637087][ T6325] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50