last executing test programs:

8.276716681s ago: executing program 0 (id=2370):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x4, &(0x7f0000000640)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000980)={@ifindex, 0x2b, 0x0, 0x2, &(0x7f0000000880), 0x0, 0x0, &(0x7f00000008c0)=[0x0], &(0x7f0000000900)=[0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000005c0)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYRES32=r0], &(0x7f0000000140)='GPL\x00', 0x400, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf}, 0x94)
r2 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r1}, 0x8)
close(r2)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x12, 0xc, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa01}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000005c0)={r2, r1, 0x4, r1}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000980)={r0, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000540)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, &(0x7f0000000800)=[0x0, 0x0, 0x0], &(0x7f0000000840)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xfb, &(0x7f0000000880)=[{}, {}], 0x10, 0x10, &(0x7f00000008c0), &(0x7f0000000900), 0x8, 0x7a, 0x8, 0x8, &(0x7f0000000940)}}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r3 = socket$kcm(0x2, 0x5, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x7, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], 0x0, 0x5}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000680)='GPL\x00')
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x6, &(0x7f00000000c0), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000180)=@l2tp6={0xa, 0x0, 0x6, @private0, 0x5, 0x4}, 0x80, &(0x7f0000000400)}, 0x22040841)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETOFFLOAD(r7, 0x400454d0, 0x52c5e529714e18f9)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8481f0000005e140604000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

7.908049688s ago: executing program 0 (id=2372):
socket$kcm(0xa, 0x2, 0x73)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x400, 0x0, 0x0, 0x2, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)="5c00000014006b", 0x7}, {&(0x7f00000017c0)="00000000ffffffff1f01a0c9a1171aa56a7f9138a6c073e99f8f2ffed6bd642c1238663e9e5189a46cb56c776afa8ec3d4d4d9c0648fc18bad3a6b5656235d60cb5af5c5a69e10ed9fd4ea", 0x4b}, {&(0x7f0000001840)="9a9245a259250adbc6e2", 0xa}], 0x3, 0x0, 0x0, 0x1f00c00e}, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030030000b12d25a80648c2594f90224fc60100c034002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

7.520121546s ago: executing program 0 (id=2375):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x8000, 0x32, 0x80000001, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x1, &(0x7f0000000600)=ANY=[@ANYBLOB="85ce2a5007000000a3da6b7e6c41a1089c2d7c3efe9ae5d6b116b127004e5e309311abd5b1a365660122a631208a0cda21fb1caa29c773d98a9f9104625fb9f158"], &(0x7f0000000340)='GPL\x00', 0xc, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x80)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00', 0x10})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000240)={{0xffffffffffffffff, <r4=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000200)='%pS    \x00'}, 0x20)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300)=0xffffffffffffffff, 0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000006c0)={0x6, <r6=>0x0}, 0x8)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000700)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000200000006110600000000000c6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1ad}, 0x48)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="e27a4b87225e04000500000015000000000000ebe38e94cab4330a84c17df7062ddfa4af88c8fb5fc9593dc6c90a47360e55632e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000880)=ANY=[@ANYRES32=r9, @ANYRES32=r8, @ANYBLOB="0500"/12, @ANYRES32, @ANYBLOB="8ecfe8993e68ea643a5ff61641821775c492fd6bb370e9e5817f184f477f828e237f1056d57d5d08f6e4e685460edd9c0cba9a30f4d858a4155ec46e0847fc36a109a5", @ANYRES64=0x0], 0x10)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1e000000090000000200000001000000949c0200", @ANYRES32=0x1, @ANYBLOB="010100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000003000200010020000b00000600000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000800)=@generic={&(0x7f00000007c0)='./file0\x00', 0x0, 0x10}, 0x18)
r12 = bpf$ITER_CREATE(0x21, &(0x7f0000000840), 0x8)
r13 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB="0300000000f9d22cb13208000000000000000000000000000000b75693948b217879938da26950b060b132687edb94235282dba544a66f3d7071f1f04960fbcf6d47c78babb74a53571290647e629dc6de9ed10340799f367068b3f791f3e198dcbdfd982f6d894e25decc3ea32bc31f9b3f213d6a0158fc02b4d95ade04181ed9080e35627d776905b28a5ff926ef8a5f8b3b", @ANYBLOB="6831c7f54e27c9739fa4c825192de4753b2222", @ANYRES32=r4, @ANYBLOB="02000000000000000000f3c75eab3b6167fb000038862363597d373f03ba1b1fee0c0000000000102450e02933b0c1a96b86e7f606e5f00faa91d153a611d18efa96729f00b2f454d5ac5ed17ea814871b9c6455cb7531452a9ff32d6035b3697e6397c119afaa3cdf65eca7a247645c6ca05430bcd9c49a4b694883ae2f06f26eb6fd1a114added05069c9f33b8048cb6c521b78b6c4aa9213ee02be84589b15000a5913048e92d7015d7ae7006"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x9, 0x15, &(0x7f0000000a80)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x4a, '\x00', 0x0, @cgroup_sock, r5, 0x8, &(0x7f0000000380)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000680)={0x5, 0x1, 0x8, 0x9}, 0x10, r6, 0xffffffffffffffff, 0x7, &(0x7f0000000140)=[r7, r9, r2, r10, r11, 0x1, r12, r13], &(0x7f0000000940)=[{0x4, 0x1, 0x4, 0xb}, {0x3, 0x5, 0x2, 0xb}, {0x0, 0x5, 0x0, 0x8}, {0x2, 0x5, 0x10, 0x1}, {0x2, 0x5, 0x9}, {0x5, 0x2, 0x0, 0xb}, {0x4, 0x3, 0x2, 0x9}], 0x10, 0x6}, 0x94)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f2, &(0x7f0000000080))
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a0001", 0x27}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x0, 0x6, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000001800000000000000", @ANYRES32], 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45", 0x8}], 0x1}, 0x10)
r14 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r14, &(0x7f0000000080)=ANY=[@ANYBLOB="33fe000024"], 0xfe33)
r15 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r15, 0x891b, &(0x7f0000000100))

6.74400167s ago: executing program 0 (id=2377):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0002}}}, 0x80, &(0x7f0000000480)=[{&(0x7f00000007c0)="27031c0016001400020000030000000006e1f0000000890900000002ee1680ca82973d2bd4b83695", 0x28}, {0x0}, {&(0x7f0000001980)="7d586d16062b1e1b9685b88189e0093982f6994b8df2fe56386ed999f1b34b06f2f69618bf033adc88f5360397a115f725e1165f4333f06cbce55a5f20f3095d1492f30e34c2e78534aa2059bcdd5e6c215f8a1d23f5b78a8119bd6c6c6e104923606c286343b114791a0a866bcccd0fb4fa8a960d6e7a59fd52884294b949a1a028d0fd8aefa6ee1070863365ffdfc3ab2876f7423594e3ff0182a3b92a1d51842ad30dab67f17c9938c758102e63c18870f229e0ffd2398686915f863c49fdc6e949856be1d47dac4f6d56e49c9fe34ec3306a64761d6fce755e911854ad8aaf1eb5411bdd83773c3dbf8a774f02e39ce9a13692a2e62e497588697b3406011dff49e483b7af2e2ab2324cdb0854dd9c05fcd9f7891d3f4d166b88a26a1463ac7f87ab1108eb14620661c1eb302caa7417ef79e463c0447f90f85a5b7c8dfed05edcd6cd56eb526a10b859e6e23f7e8d0911defae5937f74d4b60e05992585a3a88d7234c77a5038ae4c84942a6dd682094421a9d22e412f8500823a9482dcddef53022db0e12a7ba36547b7a62e5a22279966bf8c9783d5ca2ebcff237bbbc50ae48f87e4bca97b69279826358efe838bd7a503a2d42ee1989e9302a221882e5d149588122a48becb9d21da437bd16fb3f5de45b8a2098d7597c2d12229f5887719ffeacbf702dd2ca8d3208c56f125a4e90207112d664a279eefb37ed3bd9cd4087a1ade4f8afb23bdf540d2342c714425a382c9c70dc444caa1cccb4f378851829702787c5386caed6b9361e8525cb6b25a8caaf3c6090b43a981f03dcc806caaf5d70750859be2de86be08795188b55538e5bb687bacd577d8d8c12dbdd6fb1f180a19012a052d563fef0ed3a87b3df41a64331db2bf12473d38e03160cc18210425e4aeb63766899824508ba8bdf44f97351d1c9d0fd503863bc10443ec1636cd29a611cc2df523eb995d909d1a4f2807853f6f3dc238d59306367fb25ef0b43be8b4b74d49eb1e0a5fd0b2d682b9f42203026c279b470e31da23e41bfa3fb17fcdeca7b27a14a9fcc1b0e6d41efe6f5b357eaff60460cf61fe3ddddb1cf9b19569f98dc79f1280ae1e163f5b2d8efee979ec17d6108d82443189cffb15baca91855646745d319bae3d6cae9dfbb9bbe70d20e74ac9e55b06bf40eb987112f8cd370f", 0x346}], 0x3}, 0x24000008)

6.618149643s ago: executing program 0 (id=2380):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB, @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000000000f496e5961f5a02b4e27896f4dfc3876d26cd093eb5e4818bb7ea3047919ef4fa0dea8b429cdaad912fc563ea33503553f1f13a2d5ec6a8ea7a83e1fac0cb1df9253f25ab78bfb551058c9ec6a98e1a36364c3b4ccd26b70bc49eb962bc5a3ba6e32fa91780605e3b930ced"], 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
setsockopt$sock_attach_bpf(r2, 0x6, 0xd, &(0x7f0000000000), 0x4)
setsockopt$sock_attach_bpf(r2, 0x1, 0x31, &(0x7f0000000000), 0x4)

6.385562657s ago: executing program 2 (id=2383):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x40)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$kcm(0x28, 0x5, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000b80)=ANY=[@ANYRES32, @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="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", @ANYRES32=r1, @ANYRES32=0x0, @ANYBLOB], 0x20)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xc, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00'}, 0x94)
setsockopt$sock_attach_bpf(r4, 0x88, 0x67, &(0x7f00000002c0)=r5, 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000080)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10, 0x0, 0x0, &(0x7f0000000b40)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x16}, @local}}}], 0x20}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x28, 0x6, 0x0, 0x44)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000540)={r6, &(0x7f0000000400), 0x0}, 0x20)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00#\x00'/20, @ANYRESOCT=r3, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000a40)="ca1e336a83fc76aa0791d8ce94ce70cad0208cc4bc552a0ce46b55c5b23b9cbe621db1c7caaddad3ebd577a6ea2bf9ced36f138f133ec8e9551e19da4fae6570212b691d91a00ca039176171a31c4b3a771291f5bae0ffffffff6e32c54e20c844f6652a5f28cd006da90116f1f1f9d0eae3ca12674b6573c32bed0442c63b5554390f259b8365222fa8183af4bec5c5800900c1a45c23f4729ace28c9e30dc5b1d455dc24efbca7fa1d3264c856286681707738772cc40a9b330448beac81d4fd0000000000000000", &(0x7f0000000100)=""/11, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r7, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc603406034002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
syz_clone(0x80001000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

6.23601861s ago: executing program 0 (id=2385):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)

2.768063137s ago: executing program 1 (id=2396):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0002}}}, 0x80, &(0x7f0000000480)=[{&(0x7f00000007c0)="27031c0016001400020000030000000006e1f0000000890900000002ee1680ca82973d2bd4b836954268e611c00aab", 0x2f}, {0x0}, {&(0x7f0000001980)="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", 0x346}], 0x3}, 0x24000008)

2.62547579s ago: executing program 1 (id=2397):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x14, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0xb}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x700}, {0x85, 0x0, 0x0, 0x86}}, {}, [@jmp={0x5, 0x1, 0xb, 0xa, 0x0, 0x6}, @jmp={0x5, 0x0, 0xd, 0x0, 0x0, 0xfffffffffffffff4, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, @jmp={0x5, 0x1, 0xc, 0x0, 0x9, 0xfffffffffffffff8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x2a}}}, &(0x7f0000000080)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x2}, 0x94)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x4}, 0x104101, 0x4, 0x2000000, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup, 0x36, 0x0, 0xa815, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000300)}, 0x40)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x10}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x5}, 0x94)
r5 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x1828a6, 0xca, 0x2, 0x0, 0x4, 0x400000, 0x0, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg$unix(r1, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0208, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_bp={0x0, 0x6}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, r5, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, r5, 0x1)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[@ANYRES8=r2, @ANYBLOB='>\x00'], 0x9a)
r7 = getpid()
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000880)=r7, 0x12)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2141, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x100904, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5}, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.558712511s ago: executing program 3 (id=2398):
r0 = socket$kcm(0x29, 0x2, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x58, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1e, 0x5, &(0x7f0000001000)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', r1, @fallback=0x2d}, 0xffffffffffffffaa)
r3 = socket$kcm(0x2, 0x1, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0)
sendmsg$inet(r3, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r3, r2})
sendmsg$kcm(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x18000}], 0x20}, 0x0)

2.548163831s ago: executing program 2 (id=2399):
r0 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={0x0, &(0x7f0000000300), 0x0, 0x0, 0x1, 0xffff}, 0x28)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, @perf_config_ext={0x3ff, 0x452}, 0x100301, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd11=\x11\xc8\xdd\x15\xcc\xd2\xf1d\'%\x11c\x91l,'}, 0x30)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180), 0x10)
socket$kcm(0x1e, 0x4, 0x0)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xa, 0xffffffffffffffff}, 0x820, 0x0, 0x0, 0x4, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180))
r4 = socket$kcm(0x1e, 0x5, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r5=>0x0, <r6=>0x0})
close(r5)
setsockopt$sock_attach_bpf(r6, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r7 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r7, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r4, &(0x7f0000000100)={&(0x7f00000004c0)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x2, 0x0, 0x1}}, 0x80, 0x0}, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8b9f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10654, 0x0, 0x4, 0x0, 0x0, 0x0, 0xf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x2}, 0x5029, 0x2, 0x4, 0x9, 0x0, 0xd}, 0x0, 0xffffffffffffffff, r3, 0x0)
socket$kcm(0x29, 0x5, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000002e00000085000000a00000009500"/40], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r9, 0x0, 0xe, 0x0, &(0x7f0000000000)="c1188e19b95d02ff4284860151b0", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$PERF_EVENT_IOC_DISABLE(r8, 0x2401, 0x5)

2.339978785s ago: executing program 3 (id=2400):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)

1.904914134s ago: executing program 2 (id=2401):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x4000000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x36, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff64}, 0x40000040)

1.462014222s ago: executing program 1 (id=2402):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="620ac4ff000000007110b30000000000180100002000642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000006000000850000000600000095"], &(0x7f0000000480)='GPL\x00'}, 0x94) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="620ac4ff000000007110b30000000000180100002000642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000006000000850000000600000095"], &(0x7f0000000480)='GPL\x00'}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_devices(r2, 0x0, 0x2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfe33)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="5c00000012006bab9a3fe3d86e17aa0b046b0800000048380019001931a0e69e4460bc06000000a701251e6182949a3651f60a84c9f4000000000000002571cd53b9851b30599980bc00"/89, 0x59}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x88010) (async)
sendmsg$inet(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="5c00000012006bab9a3fe3d86e17aa0b046b0800000048380019001931a0e69e4460bc06000000a701251e6182949a3651f60a84c9f4000000000000002571cd53b9851b30599980bc00"/89, 0x59}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x88010)
recvmsg$kcm(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/262, 0x106}, {&(0x7f0000000c00)=""/230, 0xe6}, {&(0x7f0000003080)=""/4057, 0xfd9}, {&(0x7f0000002dc0)=""/214, 0xd6}, {&(0x7f0000000680)=""/164, 0xa4}, {&(0x7f0000000840)=""/199, 0xc7}, {&(0x7f0000000d00)=""/4046, 0xfce}, {&(0x7f0000000b00)=""/194, 0xc2}, {&(0x7f0000000300)=""/158, 0x9e}, {&(0x7f0000000140)=""/196, 0xc4}], 0xa}, 0x40012100)
recvmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async)
recvmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x12, &(0x7f0000000200)=@raw=[@func, @func, @func, @func={0x85, 0x0, 0x1, 0x0, 0x8}, @func, @snprintf], &(0x7f0000000780)='GPL\x00'}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYRES16=r3, @ANYBLOB="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"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r4}, &(0x7f0000000380), &(0x7f00000003c0)=r5}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r6}, 0x10)

1.293678575s ago: executing program 2 (id=2403):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="02000000040000000800", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000000000f496e5961f5a02b4e27896f4dfc3876d26cd093eb5e4818bb7ea3047919ef4fa0dea8b429cdaad912fc563ea33503553f1f13a2d5ec6a8ea7a83e1fac0cb1df9253f25ab78bfb551058c9ec6a98e1a36364c3b4ccd26b70bc49eb962bc5a3ba6e32fa91780605e3b930ced"], 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
setsockopt$sock_attach_bpf(r2, 0x6, 0xd, &(0x7f0000000000), 0x4)
setsockopt$sock_attach_bpf(r2, 0x1, 0x31, &(0x7f0000000000), 0x4)

1.143994438s ago: executing program 1 (id=2404):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0002}}}, 0x80, &(0x7f0000000480)=[{&(0x7f00000007c0)="27031c0016001400020000030000000006e1f0000000890900000002ee1680ca82973d2bd4b836954268e611c00aab", 0x2f}, {0x0}, {&(0x7f0000001980)="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", 0x346}], 0x3}, 0x24000008)

1.114124599s ago: executing program 3 (id=2405):
socket$kcm(0xa, 0x2, 0x73)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x400, 0x0, 0x0, 0x2, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
socket$kcm(0x10, 0x2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x0, 0x1, 0x4}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x4, 0x10006}]}, 0x94)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030030000b12d25a80648c2594f90224fc60100c034002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

992.562861ms ago: executing program 2 (id=2406):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x40)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$kcm(0x28, 0x5, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000b80)=ANY=[@ANYRES32, @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="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", @ANYRES32=r1, @ANYRES32=0x0, @ANYBLOB], 0x20)
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xc, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00'}, 0x94)
setsockopt$sock_attach_bpf(r4, 0x88, 0x67, &(0x7f00000002c0)=r5, 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000080)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10, 0x0, 0x0, &(0x7f0000000b40)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x16}, @local}}}], 0x20}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x28, 0x6, 0x0, 0x44)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000540)={r6, &(0x7f0000000400), 0x0}, 0x20)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00#\x00'/20, @ANYRESOCT=r3, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000a40)="ca1e336a83fc76aa0791d8ce94ce70cad0208cc4bc552a0ce46b55c5b23b9cbe621db1c7caaddad3ebd577a6ea2bf9ced36f138f133ec8e9551e19da4fae6570212b691d91a00ca039176171a31c4b3a771291f5bae0ffffffff6e32c54e20c844f6652a5f28cd006da90116f1f1f9d0eae3ca12674b6573c32bed0442c63b5554390f259b8365222fa8183af4bec5c5800900c1a45c23f4729ace28c9e30dc5b1d455dc24efbca7fa1d3264c856286681707738772cc40a9b330448beac81d4fd0000000000000000", &(0x7f0000000100)=""/11, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r7, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc603406034002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
syz_clone(0x80001000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

817.225134ms ago: executing program 1 (id=2407):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="7c02d6f3ee3fb5230008000008", @ANYBLOB="ac141410"], 0x48}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x5}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f0, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x7, 0x4, &(0x7f0000000880)=ANY=[@ANYBLOB="180000000900000000000000000000003c0001000000000095"], &(0x7f00000005c0)='syzkaller\x00', 0x6}, 0x94)
r5 = socket$kcm(0xa, 0x1, 0x0)
setsockopt$sock_attach_bpf(r5, 0x29, 0x6, &(0x7f0000001240)=r4, 0x46)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000001c0)={r2})
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000001300)='cpu.stat\x00', 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x89a1, &(0x7f0000000900)={'nr0\x00', @multicast})
r8 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r8, 0x40042408, r9)
socket$kcm(0x21, 0x7, 0xa)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000240)={r7, r9, 0x4, r4}, 0x10)

770.082885ms ago: executing program 3 (id=2408):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socketpair(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b705000000000000611087000000000007000000000000009500000000000000d5306045269daac8f373861fed3f45688a1326ce3f0633bbf4e6845ef691bb24e11ef7433afe99e2c7fcc2df2d2e0e10ac9b12e51778b103399993d95d5db727a97b9b3e8828fe65ec3f583a122ba714b16ad0054d1114202310a98ea0abe654ff9e422570f8a64c83842cfd4a0789ebad7e0fa16083e8d2"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, 0x0)
close(0xffffffffffffffff)
r1 = perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x7a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x4, 0x4}, 0x40dd, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000000)='cpu<=0||!')
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r4, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000cc0)=@l2tp6={0xa, 0x0, 0x1000, @mcast1, 0x7, 0x83}, 0x80, &(0x7f0000000180)=[{&(0x7f00000007c0)="f4000900062b3325fe80000000000000dc8b850f23848f7e5c74a57f32cd8caf80bc8e7a2f3ce32a", 0x28}], 0x1}, 0x800)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000008c0), 0x4)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x4000, 0x2}, 0x0, 0x5, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b04, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@func={0x3, 0x0, 0x0, 0xc, 0x2}]}, {0x0, [0x0, 0x0]}}, &(0x7f0000000340)=""/220, 0x28, 0xdc, 0x1}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x50)

613.628568ms ago: executing program 2 (id=2409):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x14, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0xb}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x700}, {0x85, 0x0, 0x0, 0x86}}, {}, [@jmp={0x5, 0x1, 0xb, 0xa, 0x0, 0x6}, @jmp={0x5, 0x0, 0xd, 0x0, 0x0, 0xfffffffffffffff4, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, @jmp={0x5, 0x1, 0xc, 0x0, 0x9, 0xfffffffffffffff8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x2a}}}, &(0x7f0000000080)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x2}, 0x94)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x4}, 0x104101, 0x4, 0x2000000, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup, 0x36, 0x0, 0xa815, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000300)}, 0x40)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0x10}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x5}, 0x94)
r5 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x1828a6, 0xca, 0x2, 0x0, 0x4, 0x400000, 0x0, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
recvmsg$unix(r1, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb0208, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_bp={0x0, 0x6}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, r5, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, r5, 0x1)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[@ANYRES8=r2, @ANYBLOB='>\x00'], 0x9a)
r7 = getpid()
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000880)=r7, 0x12)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2141, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x100904, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5}, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

246.398055ms ago: executing program 3 (id=2410):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x100904, 0x0, 0x0, 0x0, 0x200000, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x88)
sendmsg$kcm(r2, &(0x7f0000000280)={&(0x7f00000000c0)=@in6={0xa, 0x4e23, 0x10, @remote, 0x5}, 0x80, 0x0}, 0x40)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200), 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r5, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r5, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)="ec000900062b2c25fe800000f7ffffffdc8b851a238466cc80007a000000ad6e911b51818462b4003a000001828c75416cf99116e3a902d8", 0x38}], 0x2}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = perf_event_open$cgroup(&(0x7f0000000140)={0x4, 0x80, 0x1, 0x2, 0x5, 0x1, 0x0, 0x64d, 0x84000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_config_ext={0xe, 0x80000000}, 0x102051, 0x6, 0x2, 0x5, 0x9, 0x5, 0x3, 0x0, 0xfffffff7, 0x0, 0xe000}, 0xffffffffffffffff, 0x0, r1, 0xa)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r6, 0xc008240a, &(0x7f0000000000)={0x1, 0x0, [0x0]})

123.940438ms ago: executing program 1 (id=2411):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x2a, 0x0, &(0x7f00000020c0)="b9ff03316844268cb89e14f0080047e0ffff00124000632f0100000000000000030a07080403fe800000", 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x3}}, 0x10, 0x0}, 0x20008000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0a00000004000000dd0000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000700000018150000", @ANYRES64=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001d0000001801000020786c2500000000902020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000500000000000000000000850000007b00000095"], 0x0}, 0x94)
close(0x3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r5}, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000980)={{r4}, &(0x7f0000000200), &(0x7f0000000900)=r5}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x13, &(0x7f0000000c00)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3189, 0x0, 0x0, 0x0, 0xff}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@btf_id={0x18, 0x8, 0x3, 0x0, 0x3}, @cb_func={0x18, 0x0, 0x4, 0x0, 0x7}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x19}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000006a95c59765b9921515f4fcc2eb637b6a140da05ab8a25264524fa95866c24c0a34d58300bb67e95bdf77d2149bbbb4e2c5ccd4b0602833174c2762239f3adba7fce852c0848787cd942b33a730c00590a2e199576d8aea0a5c633432ece2ad2ab19d86ca4815790f"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000000c0)=ANY=[@ANYRES32=r7, @ANYRES32=r6, @ANYBLOB='&\x00'/12, @ANYRES32, @ANYBLOB="2c161929a3210aa6fb3c603299c477b3c95dc11f4556", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r7}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000a80)=""/20, 0x14}], 0x1}, 0x0)

0s ago: executing program 3 (id=2412):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000180)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe55a10a000700110000000a600e41b0000900ac00060411000000160005000a0003000248035c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000008af26c8b7b55f4d2a6823a45f28fcb1d", 0xd8}], 0x1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0xf, &(0x7f0000000040), 0x4)
recvmsg$unix(r1, &(0x7f0000000680)={&(0x7f0000000080)=@abs, 0xfffffffffffffcea, &(0x7f0000000580)=[{&(0x7f0000000100)=""/20, 0xffffffffffffffcc}, {&(0x7f0000000600)=""/63, 0x3f}, {&(0x7f0000000280)=""/175, 0xaf}, {&(0x7f0000000340)=""/186, 0xba}, {&(0x7f0000000400)=""/169, 0xa9}, {&(0x7f00000004c0)=""/172, 0xba}], 0x6, &(0x7f00000006c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb8}, 0x2101)

kernel console output (not intermixed with test programs):

  232.168252][T10270]  ? __lock_acquire+0x7c80/0x7c80
[  232.173296][T10270]  should_fail_ex+0x39d/0x4d0
[  232.177992][T10270]  should_failslab+0x9/0x20
[  232.182495][T10270]  slab_pre_alloc_hook+0x59/0x310
[  232.187520][T10270]  ? ip_options_get+0x52/0x4a0
[  232.192287][T10270]  ? ip_options_get+0x52/0x4a0
[  232.197044][T10270]  __kmem_cache_alloc_node+0x53/0x260
[  232.202410][T10270]  ? tomoyo_profile+0x50/0x50
[  232.207079][T10270]  ? ip_options_get+0x52/0x4a0
[  232.211834][T10270]  __kmalloc+0xa4/0x240
[  232.215983][T10270]  ip_options_get+0x52/0x4a0
[  232.220581][T10270]  ? tomoyo_check_inet_address+0x273/0x8a0
[  232.226394][T10270]  ip_cmsg_send+0x591/0xa70
[  232.230903][T10270]  raw_sendmsg+0x4cf/0x1950
[  232.235406][T10270]  ? compat_raw_ioctl+0x70/0x70
[  232.240259][T10270]  ? aa_sk_perm+0x7fc/0x930
[  232.244767][T10270]  ? tomoyo_socket_sendmsg_permission+0x216/0x2f0
[  232.251186][T10270]  ? sock_rps_record_flow+0x19/0x400
[  232.256461][T10270]  ? inet_send_prepare+0x260/0x260
[  232.261564][T10270]  ? inet_sendmsg+0x7c/0x2f0
[  232.266146][T10270]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  232.271424][T10270]  ? security_socket_sendmsg+0x80/0xa0
[  232.276872][T10270]  ? inet_send_prepare+0x260/0x260
[  232.281971][T10270]  ____sys_sendmsg+0x5bf/0x950
[  232.286733][T10270]  ? __sys_sendmsg_sock+0x30/0x30
[  232.291747][T10270]  ? __import_iovec+0x3fa/0x860
[  232.296595][T10270]  ? import_iovec+0x73/0xa0
[  232.301091][T10270]  ___sys_sendmsg+0x220/0x290
[  232.305771][T10270]  ? __sys_sendmsg+0x270/0x270
[  232.310549][T10270]  ? __lock_acquire+0x7c80/0x7c80
[  232.315577][T10270]  __se_sys_sendmsg+0x1a5/0x270
[  232.320422][T10270]  ? __x64_sys_sendmsg+0x80/0x80
[  232.325360][T10270]  ? lockdep_hardirqs_on+0x98/0x150
[  232.330551][T10270]  do_syscall_64+0x55/0xb0
[  232.334954][T10270]  ? clear_bhb_loop+0x40/0x90
[  232.339615][T10270]  ? clear_bhb_loop+0x40/0x90
[  232.344281][T10270]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  232.350166][T10270] RIP: 0033:0x7f7f2f38ebe9
[  232.354572][T10270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.374164][T10270] RSP: 002b:00007f7f30188038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  232.382566][T10270] RAX: ffffffffffffffda RBX: 00007f7f2f5c5fa0 RCX: 00007f7f2f38ebe9
[  232.390527][T10270] RDX: 0000000000000084 RSI: 00002000000000c0 RDI: 000000000000000f
[  232.398486][T10270] RBP: 00007f7f30188090 R08: 0000000000000000 R09: 0000000000000000
[  232.406453][T10270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.414425][T10270] R13: 00007f7f2f5c6038 R14: 00007f7f2f5c5fa0 R15: 00007ffea68ba3b8
[  232.422412][T10270]  </TASK>
[  233.206206][T10292] validate_nla: 16 callbacks suppressed
[  233.206227][T10292] netlink: 'syz.0.1695': attribute type 3 has an invalid length.
[  233.250203][T10292] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.1695'.
[  233.355584][T10292] netlink: 'syz.0.1695': attribute type 39 has an invalid length.
[  233.681475][T10304] IPv6: Can't replace route, no match found
[  233.713370][T10303] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  234.128476][T10321] netlink: 'syz.2.1706': attribute type 3 has an invalid length.
[  234.152713][T10321] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.1706'.
[  234.258771][T10321] netlink: 'syz.2.1706': attribute type 39 has an invalid length.
[  235.157206][T10349] FAULT_INJECTION: forcing a failure.
[  235.157206][T10349] name failslab, interval 1, probability 0, space 0, times 0
[  235.189035][T10349] CPU: 1 PID: 10349 Comm: syz.3.1717 Not tainted syzkaller #0
[  235.196549][T10349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  235.206627][T10349] Call Trace:
[  235.209914][T10349]  <TASK>
[  235.212865][T10349]  dump_stack_lvl+0x16c/0x230
[  235.217562][T10349]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  235.223731][T10349]  ? show_regs_print_info+0x20/0x20
[  235.228938][T10349]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  235.235108][T10349]  should_fail_ex+0x39d/0x4d0
[  235.239795][T10349]  should_failslab+0x9/0x20
[  235.244305][T10349]  slab_pre_alloc_hook+0x59/0x310
[  235.249337][T10349]  kmem_cache_alloc_lru+0x4d/0x2e0
[  235.254467][T10349]  ? sock_alloc_inode+0x28/0xc0
[  235.259318][T10349]  sock_alloc_inode+0x28/0xc0
[  235.263999][T10349]  ? sockfs_init_fs_context+0xb0/0xb0
[  235.269365][T10349]  new_inode_pseudo+0x63/0x1d0
[  235.274127][T10349]  __sock_create+0x12d/0x940
[  235.278710][T10349]  ? __asan_memset+0x22/0x40
[  235.283296][T10349]  udp_sock_create4+0xbf/0x4b0
[  235.288055][T10349]  ? erspan_exit_batch_net+0x30/0x30
[  235.293358][T10349]  rxrpc_lookup_local+0xccb/0x1550
[  235.298474][T10349]  ? rxrpc_local_dont_fragment+0x70/0x70
[  235.304104][T10349]  ? lockdep_hardirqs_on+0x98/0x150
[  235.309297][T10349]  ? _local_bh_enable+0xa0/0xa0
[  235.314160][T10349]  rxrpc_sendmsg+0x30a/0x5b0
[  235.318748][T10349]  ? rxrpc_getsockopt+0x150/0x150
[  235.323764][T10349]  ____sys_sendmsg+0x5bf/0x950
[  235.328527][T10349]  ? __sys_sendmsg_sock+0x30/0x30
[  235.333543][T10349]  ? __import_iovec+0x5f2/0x860
[  235.338392][T10349]  ? import_iovec+0x73/0xa0
[  235.342887][T10349]  ___sys_sendmsg+0x220/0x290
[  235.347643][T10349]  ? __sys_sendmsg+0x270/0x270
[  235.352417][T10349]  ? seqcount_lockdep_reader_access+0x160/0x1c0
[  235.358675][T10349]  __se_sys_sendmsg+0x1a5/0x270
[  235.363530][T10349]  ? __x64_sys_sendmsg+0x80/0x80
[  235.368477][T10349]  ? lockdep_hardirqs_on+0x98/0x150
[  235.373668][T10349]  do_syscall_64+0x55/0xb0
[  235.378073][T10349]  ? clear_bhb_loop+0x40/0x90
[  235.382736][T10349]  ? clear_bhb_loop+0x40/0x90
[  235.387400][T10349]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  235.393287][T10349] RIP: 0033:0x7f276c58ebe9
[  235.397693][T10349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.417288][T10349] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  235.425711][T10349] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  235.433692][T10349] RDX: 000000000000ff00 RSI: 0000200000000000 RDI: 0000000000000006
[  235.441660][T10349] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  235.449626][T10349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.457591][T10349] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  235.465567][T10349]  </TASK>
[  235.535327][T10349] socket: no more sockets
[  235.546100][T10357] netlink: 'syz.0.1719': attribute type 3 has an invalid length.
[  235.573202][T10357] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.1719'.
[  235.692656][T10355] netlink: 'syz.0.1719': attribute type 39 has an invalid length.
[  235.772603][T10363] netlink: 'syz.2.1721': attribute type 21 has an invalid length.
[  236.974214][T10382] netlink: 'syz.0.1727': attribute type 10 has an invalid length.
[  237.767924][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  237.907300][T10405] netlink: 'syz.1.1734': attribute type 10 has an invalid length.
[  237.915863][T10405] netlink: 55 bytes leftover after parsing attributes in process `syz.1.1734'.
[  238.844756][T10423] netlink: 'syz.2.1738': attribute type 10 has an invalid length.
[  238.919096][T10423] veth0_vlan: left promiscuous mode
[  238.964482][T10423] veth0_vlan: entered promiscuous mode
[  238.976108][T10423] team0: Device veth0_vlan failed to register rx_handler
[  239.045036][T10430] IPv6: Can't replace route, no match found
[  239.053509][T10435] FAULT_INJECTION: forcing a failure.
[  239.053509][T10435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  239.066979][T10435] CPU: 1 PID: 10435 Comm: syz.1.1742 Not tainted syzkaller #0
[  239.074450][T10435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  239.084501][T10435] Call Trace:
[  239.087776][T10435]  <TASK>
[  239.090700][T10435]  dump_stack_lvl+0x16c/0x230
[  239.095383][T10435]  ? show_regs_print_info+0x20/0x20
[  239.100578][T10435]  ? load_image+0x3b0/0x3b0
[  239.105081][T10435]  ? shmem_get_folio_gfp+0x138c/0x2ac0
[  239.110535][T10435]  ? __lock_acquire+0x7c80/0x7c80
[  239.115551][T10435]  ? __rwlock_init+0x150/0x150
[  239.120313][T10435]  should_fail_ex+0x39d/0x4d0
[  239.124989][T10435]  copy_page_from_iter_atomic+0x2a2/0x1530
[  239.130788][T10435]  ? shmem_get_folio_gfp+0x2705/0x2ac0
[  239.136251][T10435]  ? iov_iter_zero+0x1120/0x1120
[  239.141193][T10435]  ? shmem_write_begin+0x1cf/0x420
[  239.146303][T10435]  generic_perform_write+0x350/0x5b0
[  239.151594][T10435]  ? generic_file_direct_write+0x3e0/0x3e0
[  239.157397][T10435]  ? file_update_time+0x1a2/0x1b0
[  239.162417][T10435]  shmem_file_write_iter+0xfb/0x120
[  239.167611][T10435]  vfs_write+0x43b/0x940
[  239.171857][T10435]  ? file_end_write+0x250/0x250
[  239.176708][T10435]  ? __fget_files+0x44a/0x4d0
[  239.181415][T10435]  ? __fdget_pos+0x2a3/0x330
[  239.186011][T10435]  ? ksys_write+0x75/0x250
[  239.190436][T10435]  ksys_write+0x147/0x250
[  239.194769][T10435]  ? __ia32_sys_read+0x90/0x90
[  239.199556][T10435]  ? trace_sys_enter+0x1f/0x80
[  239.204339][T10435]  do_syscall_64+0x55/0xb0
[  239.208770][T10435]  ? clear_bhb_loop+0x40/0x90
[  239.213448][T10435]  ? clear_bhb_loop+0x40/0x90
[  239.218119][T10435]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  239.224019][T10435] RIP: 0033:0x7fa3eb58ebe9
[  239.228428][T10435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.248029][T10435] RSP: 002b:00007fa3ec3d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  239.256435][T10435] RAX: ffffffffffffffda RBX: 00007fa3eb7c5fa0 RCX: 00007fa3eb58ebe9
[  239.264399][T10435] RDX: 00000000002a979d RSI: 0000200000000000 RDI: 0000000000000003
[  239.272361][T10435] RBP: 00007fa3ec3d0090 R08: 0000000000000000 R09: 0000000000000000
[  239.280324][T10435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  239.288285][T10435] R13: 00007fa3eb7c6038 R14: 00007fa3eb7c5fa0 R15: 00007ffc44ae7418
[  239.296260][T10435]  </TASK>
[  239.302208][T10433] mac80211_hwsim hwsim7 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  239.999992][T10455] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  240.125970][T10468] netlink: 'syz.0.1753': attribute type 29 has an invalid length.
[  240.136681][T10468] netlink: 'syz.0.1753': attribute type 29 has an invalid length.
[  240.156291][T10468] syz.0.1753 (10468) used obsolete PPPIOCDETACH ioctl
[  240.658282][T10482] netlink: 'syz.1.1759': attribute type 3 has an invalid length.
[  240.666484][T10482] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.1759'.
[  242.044544][T10537] netlink: 'syz.3.1778': attribute type 3 has an invalid length.
[  242.069568][T10538] netlink: 'syz.1.1777': attribute type 1 has an invalid length.
[  242.079557][T10537] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.1778'.
[  242.090084][T10538] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.1777'.
[  242.124664][T10538] netlink: 'syz.1.1777': attribute type 21 has an invalid length.
[  242.136536][T10538] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1777'.
[  242.153392][T10538] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1777'.
[  242.164043][T10537] netlink: 'syz.3.1778': attribute type 39 has an invalid length.
[  242.372449][T10550] netlink: 64859 bytes leftover after parsing attributes in process `syz.3.1783'.
[  242.885946][ T5782] Bluetooth: hci1: ISO packet for unknown connection handle 62
[  243.579824][T10584] netlink: 'syz.2.1794': attribute type 1 has an invalid length.
[  243.587798][T10584] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.1794'.
[  243.790576][T10596] netlink: 'syz.0.1797': attribute type 10 has an invalid length.
[  243.798721][T10596] netlink: 55 bytes leftover after parsing attributes in process `syz.0.1797'.
[  244.406223][ T5782] Bluetooth: hci1: ISO packet for unknown connection handle 62
[  244.935828][T10618] netlink: 'syz.2.1806': attribute type 1 has an invalid length.
[  244.953543][T10618] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.1806'.
[  245.148749][T10633] FAULT_INJECTION: forcing a failure.
[  245.148749][T10633] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  245.194730][T10633] CPU: 1 PID: 10633 Comm: syz.3.1811 Not tainted syzkaller #0
[  245.202245][T10633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  245.212323][T10633] Call Trace:
[  245.215631][T10633]  <TASK>
[  245.218577][T10633]  dump_stack_lvl+0x16c/0x230
[  245.223289][T10633]  ? show_regs_print_info+0x20/0x20
[  245.228519][T10633]  ? load_image+0x3b0/0x3b0
[  245.233043][T10633]  ? __might_fault+0xaa/0x120
[  245.237738][T10633]  ? __lock_acquire+0x7c80/0x7c80
[  245.242790][T10633]  should_fail_ex+0x39d/0x4d0
[  245.247495][T10633]  _copy_from_user+0x2f/0xe0
[  245.252100][T10633]  __sys_bpf+0x1e9/0x800
[  245.256357][T10633]  ? bpf_link_show_fdinfo+0x350/0x350
[  245.261731][T10633]  ? lock_chain_count+0x20/0x20
[  245.266586][T10633]  __x64_sys_bpf+0x7c/0x90
[  245.270996][T10633]  do_syscall_64+0x55/0xb0
[  245.275408][T10633]  ? clear_bhb_loop+0x40/0x90
[  245.280077][T10633]  ? clear_bhb_loop+0x40/0x90
[  245.284748][T10633]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  245.290640][T10633] RIP: 0033:0x7f276c58ebe9
[  245.295050][T10633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.314646][T10633] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  245.323055][T10633] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  245.331016][T10633] RDX: 0000000000000017 RSI: 00002000000001c0 RDI: 0000000000000014
[  245.338976][T10633] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  245.346935][T10633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.354895][T10633] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  245.362871][T10633]  </TASK>
[  245.888616][T10657] netlink: 'syz.0.1819': attribute type 1 has an invalid length.
[  245.898990][T10657] netlink: 16150 bytes leftover after parsing attributes in process `syz.0.1819'.
[  246.080003][T10662] netlink: 'syz.0.1821': attribute type 5 has an invalid length.
[  246.191524][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  246.848908][T10686] netlink: 'syz.0.1830': attribute type 1 has an invalid length.
[  246.875358][T10686] netlink: 16150 bytes leftover after parsing attributes in process `syz.0.1830'.
[  247.725492][T10717] netlink: 'syz.0.1841': attribute type 1 has an invalid length.
[  247.745499][T10717] netlink: 16150 bytes leftover after parsing attributes in process `syz.0.1841'.
[  247.876299][ T5782] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  248.276100][T10730] netlink: 'syz.0.1846': attribute type 39 has an invalid length.
[  248.559055][T10747] netlink: 'syz.2.1852': attribute type 1 has an invalid length.
[  248.567437][T10747] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.1852'.
[  248.976383][T10763] netlink: 'syz.2.1857': attribute type 3 has an invalid length.
[  249.017410][T10763] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.1857'.
[  250.815692][T10763] netlink: 'syz.2.1857': attribute type 39 has an invalid length.
[  250.873981][T10765] syzkaller0: entered promiscuous mode
[  250.879513][T10765] syzkaller0: entered allmulticast mode
[  250.902539][T10775] netlink: 'syz.1.1856': attribute type 2 has an invalid length.
[  250.914139][T10775] netlink: 10822 bytes leftover after parsing attributes in process `syz.1.1856'.
[  250.926166][T10776] IPv6: Can't replace route, no match found
[  252.367382][T10786] netlink: 'syz.2.1862': attribute type 1 has an invalid length.
[  252.375305][T10786] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.1862'.
[  252.557701][T10795] IPv6: Can't replace route, no match found
[  252.785151][T10808] netlink: 'syz.1.1870': attribute type 3 has an invalid length.
[  252.835326][T10808] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.1870'.
[  252.974900][T10808] netlink: 'syz.1.1870': attribute type 39 has an invalid length.
[  253.315639][T10818] netlink: 'syz.2.1873': attribute type 1 has an invalid length.
[  253.331574][T10818] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.1873'.
[  253.685206][T10839] netlink: 'syz.3.1881': attribute type 3 has an invalid length.
[  253.693133][T10839] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.1881'.
[  253.741777][T10839] netlink: 'syz.3.1881': attribute type 39 has an invalid length.
[  254.245472][T10854] netlink: 'syz.0.1885': attribute type 1 has an invalid length.
[  254.254013][T10854] netlink: 16150 bytes leftover after parsing attributes in process `syz.0.1885'.
[  254.723987][T10877] netlink: 'syz.3.1893': attribute type 3 has an invalid length.
[  254.750263][T10877] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.1893'.
[  254.796206][T10881] FAULT_INJECTION: forcing a failure.
[  254.796206][T10881] name failslab, interval 1, probability 0, space 0, times 0
[  254.809318][T10881] CPU: 0 PID: 10881 Comm: syz.1.1894 Not tainted syzkaller #0
[  254.816803][T10881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.826872][T10881] Call Trace:
[  254.830165][T10881]  <TASK>
[  254.833108][T10881]  dump_stack_lvl+0x16c/0x230
[  254.837800][T10881]  ? sctp_sendmsg+0x155c/0x27e0
[  254.842671][T10881]  ? ___sys_sendmsg+0x220/0x290
[  254.848760][T10881]  ? show_regs_print_info+0x20/0x20
[  254.853978][T10881]  ? load_image+0x3b0/0x3b0
[  254.858519][T10881]  should_fail_ex+0x39d/0x4d0
[  254.863213][T10881]  should_failslab+0x9/0x20
[  254.867717][T10881]  slab_pre_alloc_hook+0x59/0x310
[  254.872743][T10881]  ? sctp_add_bind_addr+0x8c/0x360
[  254.877854][T10881]  __kmem_cache_alloc_node+0x53/0x260
[  254.883226][T10881]  ? sctp_add_bind_addr+0x8c/0x360
[  254.888329][T10881]  kmalloc_trace+0x2a/0xe0
[  254.892742][T10881]  sctp_add_bind_addr+0x8c/0x360
[  254.897700][T10881]  sctp_copy_local_addr_list+0x30c/0x4e0
[  254.903333][T10881]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  254.909043][T10881]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  254.915106][T10881]  ? sctp_v4_is_any+0x35/0x60
[  254.919773][T10881]  ? sctp_copy_one_addr+0x8c/0x350
[  254.924876][T10881]  sctp_bind_addr_copy+0xb3/0x3c0
[  254.929892][T10881]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  254.936218][T10881]  sctp_connect_new_asoc+0x2da/0x690
[  254.941501][T10881]  ? __sctp_connect+0xd20/0xd20
[  254.946347][T10881]  ? __local_bh_enable_ip+0x12e/0x1c0
[  254.951715][T10881]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  254.957251][T10881]  ? security_sctp_bind_connect+0x89/0xb0
[  254.962964][T10881]  sctp_sendmsg+0x155c/0x27e0
[  254.967640][T10881]  ? sctp_getsockopt+0xb60/0xb60
[  254.972578][T10881]  ? aa_sk_perm+0x7fc/0x930
[  254.977081][T10881]  ? aa_af_perm+0x2b0/0x2b0
[  254.981573][T10881]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  254.987984][T10881]  ? sock_rps_record_flow+0x19/0x400
[  254.993259][T10881]  ? inet_send_prepare+0x260/0x260
[  254.998359][T10881]  ? inet_sendmsg+0xe9/0x2f0
[  255.002946][T10881]  ? inet_send_prepare+0x260/0x260
[  255.008041][T10881]  ____sys_sendmsg+0x5bf/0x950
[  255.012806][T10881]  ? __asan_memset+0x22/0x40
[  255.017388][T10881]  ? __sys_sendmsg_sock+0x30/0x30
[  255.022407][T10881]  ? __import_iovec+0x5f2/0x860
[  255.027256][T10881]  ? import_iovec+0x73/0xa0
[  255.031752][T10881]  ___sys_sendmsg+0x220/0x290
[  255.036425][T10881]  ? __sys_sendmsg+0x270/0x270
[  255.041197][T10881]  ? __lock_acquire+0x7c80/0x7c80
[  255.046227][T10881]  __se_sys_sendmsg+0x1a5/0x270
[  255.051072][T10881]  ? __x64_sys_sendmsg+0x80/0x80
[  255.056014][T10881]  ? lockdep_hardirqs_on+0x98/0x150
[  255.061228][T10881]  do_syscall_64+0x55/0xb0
[  255.065635][T10881]  ? clear_bhb_loop+0x40/0x90
[  255.070296][T10881]  ? clear_bhb_loop+0x40/0x90
[  255.074958][T10881]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.080868][T10881] RIP: 0033:0x7fa3eb58ebe9
[  255.085281][T10881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.104881][T10881] RSP: 002b:00007fa3ec3d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  255.113290][T10881] RAX: ffffffffffffffda RBX: 00007fa3eb7c5fa0 RCX: 00007fa3eb58ebe9
[  255.121250][T10881] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  255.129209][T10881] RBP: 00007fa3ec3d0090 R08: 0000000000000000 R09: 0000000000000000
[  255.137168][T10881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  255.145126][T10881] R13: 00007fa3eb7c6038 R14: 00007fa3eb7c5fa0 R15: 00007ffc44ae7418
[  255.153096][T10881]  </TASK>
[  255.309227][T10890] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.1897'.
[  255.829672][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  255.836821][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  256.184886][T10912] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1903'.
[  256.207846][T10915] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1903'.
[  256.232692][T10914] validate_nla: 2 callbacks suppressed
[  256.232711][T10914] netlink: 'syz.0.1905': attribute type 3 has an invalid length.
[  256.263974][T10914] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.1905'.
[  256.351580][T10914] netlink: 'syz.0.1905': attribute type 39 has an invalid length.
[  256.689905][T10937] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1913'.
[  256.705568][T10937] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  256.724475][T10937] CPU: 1 PID: 10937 Comm: syz.2.1913 Not tainted syzkaller #0
[  256.732003][T10937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  256.742085][T10937] Call Trace:
[  256.745393][T10937]  <TASK>
[  256.748353][T10937]  dump_stack_lvl+0x16c/0x230
[  256.753076][T10937]  ? show_regs_print_info+0x20/0x20
[  256.758307][T10937]  ? load_image+0x3b0/0x3b0
[  256.762861][T10937]  sysfs_warn_dup+0x8e/0xa0
[  256.767404][T10937]  sysfs_do_create_link_sd+0xc0/0x110
[  256.772821][T10937]  device_add_class_symlinks+0x1cf/0x240
[  256.778498][T10937]  device_add+0x507/0xc20
[  256.782882][T10937]  wiphy_register+0x1e74/0x2c00
[  256.787805][T10937]  ? cfg80211_event_work+0x40/0x40
[  256.792948][T10937]  ? minstrel_ht_alloc+0x88a/0x990
[  256.798108][T10937]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  256.804219][T10937]  ieee80211_register_hw+0x2dc2/0x3ac0
[  256.809748][T10937]  ? ieee80211_tasklet_handler+0x20/0x20
[  256.815406][T10937]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  256.821343][T10937]  ? __debug_object_init+0xe8/0x430
[  256.826567][T10937]  ? __asan_memset+0x22/0x40
[  256.831164][T10937]  ? __hrtimer_init+0x186/0x270
[  256.836018][T10937]  mac80211_hwsim_new_radio+0x2a00/0x4cf0
[  256.841767][T10937]  ? mac80211_hwsim_free+0x220/0x220
[  256.847049][T10937]  ? rcu_is_watching+0x15/0xb0
[  256.851812][T10937]  ? kstrndup+0xbd/0x140
[  256.856073][T10937]  hwsim_new_radio_nl+0xd78/0x19d0
[  256.861212][T10937]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  256.867558][T10937]  ? __nla_parse+0x40/0x50
[  256.871983][T10937]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  256.878322][T10937]  genl_family_rcv_msg_doit+0x209/0x2f0
[  256.883878][T10937]  ? genl_family_rcv_msg_dumpit+0x2c0/0x2c0
[  256.889784][T10937]  ? bpf_lsm_capable+0x9/0x10
[  256.894462][T10937]  ? security_capable+0x89/0xb0
[  256.899320][T10937]  genl_rcv_msg+0x60b/0x790
[  256.903834][T10937]  ? genl_bind+0x360/0x360
[  256.908249][T10937]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  256.914574][T10937]  ? perf_trace_lock+0x2ed/0x380
[  256.919533][T10937]  netlink_rcv_skb+0x216/0x480
[  256.924302][T10937]  ? genl_bind+0x360/0x360
[  256.928725][T10937]  ? netlink_ack+0x1110/0x1110
[  256.933512][T10937]  ? __lock_acquire+0x7c80/0x7c80
[  256.938551][T10937]  ? down_read+0x1ac/0x2e0
[  256.942971][T10937]  genl_rcv+0x28/0x40
[  256.946951][T10937]  netlink_unicast+0x751/0x8d0
[  256.951730][T10937]  netlink_sendmsg+0x8c1/0xbe0
[  256.956507][T10937]  ? netlink_getsockopt+0x580/0x580
[  256.961715][T10937]  ? aa_sock_msg_perm+0x94/0x150
[  256.966657][T10937]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  256.971941][T10937]  ? security_socket_sendmsg+0x80/0xa0
[  256.977397][T10937]  ? netlink_getsockopt+0x580/0x580
[  256.982593][T10937]  ____sys_sendmsg+0x5bf/0x950
[  256.987368][T10937]  ? __asan_memset+0x22/0x40
[  256.991957][T10937]  ? __sys_sendmsg_sock+0x30/0x30
[  256.996980][T10937]  ? __import_iovec+0x5f2/0x860
[  257.001844][T10937]  ? import_iovec+0x73/0xa0
[  257.006352][T10937]  ___sys_sendmsg+0x220/0x290
[  257.011033][T10937]  ? __sys_sendmsg+0x270/0x270
[  257.015866][T10937]  __se_sys_sendmsg+0x1a5/0x270
[  257.020714][T10937]  ? perf_trace_preemptirq_template+0x281/0x340
[  257.026963][T10937]  ? __x64_sys_sendmsg+0x80/0x80
[  257.031927][T10937]  ? lockdep_hardirqs_on+0x98/0x150
[  257.037131][T10937]  do_syscall_64+0x55/0xb0
[  257.041549][T10937]  ? clear_bhb_loop+0x40/0x90
[  257.046221][T10937]  ? clear_bhb_loop+0x40/0x90
[  257.050893][T10937]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  257.056787][T10937] RIP: 0033:0x7f7f2f38ebe9
[  257.061202][T10937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.080805][T10937] RSP: 002b:00007f7f30188038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  257.089220][T10937] RAX: ffffffffffffffda RBX: 00007f7f2f5c5fa0 RCX: 00007f7f2f38ebe9
[  257.097187][T10937] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  257.105155][T10937] RBP: 00007f7f2f411e19 R08: 0000000000000000 R09: 0000000000000000
[  257.113120][T10937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.121084][T10937] R13: 00007f7f2f5c6038 R14: 00007f7f2f5c5fa0 R15: 00007ffea68ba3b8
[  257.129076][T10937]  </TASK>
[  257.203182][T10948] netlink: 'syz.2.1913': attribute type 21 has an invalid length.
[  257.427043][T10954] netlink: 'syz.1.1917': attribute type 3 has an invalid length.
[  257.483866][T10958] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1918'.
[  257.521368][T10954] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.1917'.
[  257.972135][T10965] netlink: 'syz.1.1917': attribute type 39 has an invalid length.
[  258.365182][T10973] netlink: 16166 bytes leftover after parsing attributes in process `syz.1.1922'.
[  258.624305][T10991] netlink: 'syz.1.1931': attribute type 3 has an invalid length.
[  258.630587][T10989] netlink: 'syz.0.1929': attribute type 10 has an invalid length.
[  258.648667][T10989] team0: Port device wlan1 added
[  258.676570][T10991] netlink: 'syz.1.1931': attribute type 39 has an invalid length.
[  259.416811][T11017] netlink: 'syz.2.1941': attribute type 3 has an invalid length.
[  259.426140][T11017] __nla_validate_parse: 2 callbacks suppressed
[  259.426156][T11017] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.1941'.
[  259.522723][T11017] netlink: 'syz.2.1941': attribute type 39 has an invalid length.
[  259.782904][T11031] netlink: 16166 bytes leftover after parsing attributes in process `syz.3.1946'.
[  259.865329][T11037] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1949'.
[  259.896051][T11041] FAULT_INJECTION: forcing a failure.
[  259.896051][T11041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.911488][T11041] CPU: 0 PID: 11041 Comm: syz.2.1950 Not tainted syzkaller #0
[  259.915787][T11037] .`: renamed from bond0 (while UP)
[  259.918954][T11041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  259.918967][T11041] Call Trace:
[  259.937493][T11041]  <TASK>
[  259.940431][T11041]  dump_stack_lvl+0x16c/0x230
[  259.945130][T11041]  ? show_regs_print_info+0x20/0x20
[  259.950350][T11041]  ? load_image+0x3b0/0x3b0
[  259.954868][T11041]  ? __might_fault+0xaa/0x120
[  259.959597][T11041]  ? __lock_acquire+0x7c80/0x7c80
[  259.964624][T11041]  should_fail_ex+0x39d/0x4d0
[  259.969305][T11041]  _copy_from_user+0x2f/0xe0
[  259.973899][T11041]  ___sys_sendmsg+0x159/0x290
[  259.978578][T11041]  ? __sys_sendmsg+0x270/0x270
[  259.983351][T11041]  ? __lock_acquire+0x7c80/0x7c80
[  259.988380][T11041]  __se_sys_sendmsg+0x1a5/0x270
[  259.993221][T11041]  ? __x64_sys_sendmsg+0x80/0x80
[  259.998158][T11041]  ? lockdep_hardirqs_on+0x98/0x150
[  260.003352][T11041]  do_syscall_64+0x55/0xb0
[  260.007760][T11041]  ? clear_bhb_loop+0x40/0x90
[  260.012426][T11041]  ? clear_bhb_loop+0x40/0x90
[  260.017093][T11041]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  260.022988][T11041] RIP: 0033:0x7f7f2f38ebe9
[  260.027393][T11041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.046989][T11041] RSP: 002b:00007f7f30188038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  260.055391][T11041] RAX: ffffffffffffffda RBX: 00007f7f2f5c5fa0 RCX: 00007f7f2f38ebe9
[  260.063351][T11041] RDX: 0000000060044084 RSI: 0000200000000000 RDI: 0000000000000003
[  260.071315][T11041] RBP: 00007f7f30188090 R08: 0000000000000000 R09: 0000000000000000
[  260.079287][T11041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.087244][T11041] R13: 00007f7f2f5c6038 R14: 00007f7f2f5c5fa0 R15: 00007ffea68ba3b8
[  260.095217][T11041]  </TASK>
[  260.111270][T11039] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1951'.
[  260.138976][T11039] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1951'.
[  260.164630][T11039] .`: renamed from bond0
[  260.265422][T11051] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.1954'.
[  260.340705][T11055] FAULT_INJECTION: forcing a failure.
[  260.340705][T11055] name failslab, interval 1, probability 0, space 0, times 0
[  260.374110][T11055] CPU: 0 PID: 11055 Comm: syz.1.1957 Not tainted syzkaller #0
[  260.381642][T11055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  260.391740][T11055] Call Trace:
[  260.395060][T11055]  <TASK>
[  260.398023][T11055]  dump_stack_lvl+0x16c/0x230
[  260.402757][T11055]  ? show_regs_print_info+0x20/0x20
[  260.408011][T11055]  ? load_image+0x3b0/0x3b0
[  260.412574][T11055]  ? verify_lock_unused+0x140/0x140
[  260.417807][T11055]  ? perf_trace_lock+0x2ed/0x380
[  260.422782][T11055]  should_fail_ex+0x39d/0x4d0
[  260.427493][T11055]  should_failslab+0x9/0x20
[  260.432018][T11055]  slab_pre_alloc_hook+0x59/0x310
[  260.437072][T11055]  kmem_cache_alloc+0x5a/0x2e0
[  260.441847][T11055]  ? skb_clone+0x1eb/0x370
[  260.446297][T11055]  skb_clone+0x1eb/0x370
[  260.450561][T11055]  __netlink_deliver_tap+0x41c/0x830
[  260.455887][T11055]  ? netlink_deliver_tap+0x2e/0x1b0
[  260.461100][T11055]  netlink_deliver_tap+0x19c/0x1b0
[  260.466233][T11055]  netlink_unicast+0x72c/0x8d0
[  260.471038][T11055]  netlink_sendmsg+0x8c1/0xbe0
[  260.475861][T11055]  ? netlink_getsockopt+0x580/0x580
[  260.481076][T11055]  ? aa_sock_msg_perm+0x94/0x150
[  260.486031][T11055]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  260.491327][T11055]  ? security_socket_sendmsg+0x80/0xa0
[  260.496799][T11055]  ? netlink_getsockopt+0x580/0x580
[  260.502030][T11055]  ____sys_sendmsg+0x5bf/0x950
[  260.506822][T11055]  ? __asan_memset+0x22/0x40
[  260.511423][T11055]  ? __sys_sendmsg_sock+0x30/0x30
[  260.516455][T11055]  ? __import_iovec+0x5f2/0x860
[  260.521340][T11055]  ? import_iovec+0x73/0xa0
[  260.525864][T11055]  ___sys_sendmsg+0x220/0x290
[  260.530558][T11055]  ? __sys_sendmsg+0x270/0x270
[  260.535384][T11055]  ? __lock_acquire+0x7c80/0x7c80
[  260.540475][T11055]  __se_sys_sendmsg+0x1a5/0x270
[  260.545354][T11055]  ? __x64_sys_sendmsg+0x80/0x80
[  260.550343][T11055]  ? lockdep_hardirqs_on+0x98/0x150
[  260.555562][T11055]  do_syscall_64+0x55/0xb0
[  260.559985][T11055]  ? clear_bhb_loop+0x40/0x90
[  260.564666][T11055]  ? clear_bhb_loop+0x40/0x90
[  260.569352][T11055]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  260.575260][T11055] RIP: 0033:0x7fa3eb58ebe9
[  260.579683][T11055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.599298][T11055] RSP: 002b:00007fa3ec3d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  260.607724][T11055] RAX: ffffffffffffffda RBX: 00007fa3eb7c5fa0 RCX: 00007fa3eb58ebe9
[  260.615701][T11055] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  260.623675][T11055] RBP: 00007fa3ec3d0090 R08: 0000000000000000 R09: 0000000000000000
[  260.631655][T11055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.639630][T11055] R13: 00007fa3eb7c6038 R14: 00007fa3eb7c5fa0 R15: 00007ffc44ae7418
[  260.647645][T11055]  </TASK>
[  260.847699][T11068] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  261.964783][T11089] validate_nla: 4 callbacks suppressed
[  261.964804][T11089] netlink: 'syz.3.1967': attribute type 3 has an invalid length.
[  261.978239][ T8268] wlan1: Trigger new scan to find an IBSS to join
[  261.999983][T11089] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.1967'.
[  263.122641][T11084] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  263.139948][T11089] netlink: 'syz.3.1967': attribute type 39 has an invalid length.
[  263.596888][T11115] netlink: 'syz.2.1977': attribute type 10 has an invalid length.
[  263.656240][T11115] 8021q: adding VLAN 0 to HW filter on device bond0
[  263.699127][T11115] bond0: entered allmulticast mode
[  263.708843][T11115] bond_slave_1: entered allmulticast mode
[  263.741646][T11115] team0: Port device bond0 added
[  263.774839][T11121] netlink: 'syz.3.1978': attribute type 3 has an invalid length.
[  263.792754][T11121] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.1978'.
[  263.869003][T11124] netlink: 'syz.3.1978': attribute type 39 has an invalid length.
[  264.007061][T11130] netlink: 'syz.3.1980': attribute type 21 has an invalid length.
[  264.144156][T11140] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.1983'.
[  264.441808][T11146] syzkaller0: entered promiscuous mode
[  264.458411][T11146] syzkaller0: entered allmulticast mode
[  264.619270][T11151] netlink: 'syz.1.1988': attribute type 3 has an invalid length.
[  264.627560][T11151] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.1988'.
[  264.714325][T11155] netlink: 'syz.1.1988': attribute type 39 has an invalid length.
[  265.408882][T11167] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.1992'.
[  265.701839][T11181] FAULT_INJECTION: forcing a failure.
[  265.701839][T11181] name failslab, interval 1, probability 0, space 0, times 0
[  265.718703][T11179] netlink: 'syz.0.1997': attribute type 3 has an invalid length.
[  265.730290][T11179] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.1997'.
[  265.740091][T11181] CPU: 0 PID: 11181 Comm: syz.1.1998 Not tainted syzkaller #0
[  265.747572][T11181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  265.757640][T11181] Call Trace:
[  265.760931][T11181]  <TASK>
[  265.763874][T11181]  dump_stack_lvl+0x16c/0x230
[  265.768579][T11181]  ? show_regs_print_info+0x20/0x20
[  265.773793][T11181]  ? load_image+0x3b0/0x3b0
[  265.778316][T11181]  ? __might_sleep+0xe0/0xe0
[  265.782926][T11181]  ? __lock_acquire+0x7c80/0x7c80
[  265.787971][T11181]  should_fail_ex+0x39d/0x4d0
[  265.792670][T11181]  should_failslab+0x9/0x20
[  265.797190][T11181]  slab_pre_alloc_hook+0x59/0x310
[  265.802220][T11181]  ? tomoyo_encode+0x28b/0x540
[  265.806990][T11181]  ? tomoyo_encode+0x28b/0x540
[  265.811759][T11181]  __kmem_cache_alloc_node+0x53/0x260
[  265.817136][T11181]  ? tomoyo_encode+0x28b/0x540
[  265.821898][T11181]  __kmalloc+0xa4/0x240
[  265.826051][T11181]  tomoyo_encode+0x28b/0x540
[  265.830644][T11181]  tomoyo_realpath_from_path+0x592/0x5d0
[  265.836284][T11181]  tomoyo_path_number_perm+0x1ea/0x590
[  265.841737][T11181]  ? tomoyo_path_number_perm+0x1ba/0x590
[  265.847367][T11181]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  265.852826][T11181]  ? ksys_write+0x1c1/0x250
[  265.857345][T11181]  ? __fget_files+0x28/0x4d0
[  265.861937][T11181]  security_file_ioctl+0x70/0xa0
[  265.866873][T11181]  __se_sys_ioctl+0x48/0x170
[  265.871458][T11181]  do_syscall_64+0x55/0xb0
[  265.875863][T11181]  ? clear_bhb_loop+0x40/0x90
[  265.880527][T11181]  ? clear_bhb_loop+0x40/0x90
[  265.885195][T11181]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  265.891081][T11181] RIP: 0033:0x7fa3eb58ebe9
[  265.895489][T11181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.915084][T11181] RSP: 002b:00007fa3ec3d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  265.923488][T11181] RAX: ffffffffffffffda RBX: 00007fa3eb7c5fa0 RCX: 00007fa3eb58ebe9
[  265.931460][T11181] RDX: 0000200000000000 RSI: 0000000000008b04 RDI: 0000000000000004
[  265.939432][T11181] RBP: 00007fa3ec3d0090 R08: 0000000000000000 R09: 0000000000000000
[  265.947400][T11181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  265.955363][T11181] R13: 00007fa3eb7c6038 R14: 00007fa3eb7c5fa0 R15: 00007ffc44ae7418
[  265.963346][T11181]  </TASK>
[  265.981531][   T11] wlan1: Trigger new scan to find an IBSS to join
[  266.002484][T11181] ERROR: Out of memory at tomoyo_realpath_from_path.
[  266.026363][T11179] netlink: 'syz.0.1997': attribute type 39 has an invalid length.
[  266.253383][T11194] FAULT_INJECTION: forcing a failure.
[  266.253383][T11194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.283082][T11196] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2003'.
[  266.297536][T11194] CPU: 0 PID: 11194 Comm: syz.2.2002 Not tainted syzkaller #0
[  266.305035][T11194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  266.315104][T11194] Call Trace:
[  266.318393][T11194]  <TASK>
[  266.321322][T11194]  dump_stack_lvl+0x16c/0x230
[  266.326006][T11194]  ? show_regs_print_info+0x20/0x20
[  266.331200][T11194]  ? load_image+0x3b0/0x3b0
[  266.335696][T11194]  ? __might_fault+0xaa/0x120
[  266.340364][T11194]  ? __lock_acquire+0x7c80/0x7c80
[  266.345389][T11194]  should_fail_ex+0x39d/0x4d0
[  266.350069][T11194]  _copy_from_iter+0x1d3/0x1290
[  266.354922][T11194]  ? copyout_mc+0x70/0x70
[  266.359242][T11194]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  266.365215][T11194]  ? lock_chain_count+0x20/0x20
[  266.370056][T11194]  ? _raw_spin_lock_irq+0xaf/0xe0
[  266.375074][T11194]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  266.380445][T11194]  ? page_copy_sane+0x4e/0x270
[  266.385205][T11194]  copy_page_from_iter+0x7b/0x100
[  266.390221][T11194]  pipe_write+0x878/0x1af0
[  266.394669][T11194]  ? pipe_read+0x12a0/0x12a0
[  266.399261][T11194]  ? end_current_label_crit_section+0x149/0x170
[  266.405496][T11194]  ? common_file_perm+0x198/0x1f0
[  266.410520][T11194]  vfs_write+0x43b/0x940
[  266.414767][T11194]  ? file_end_write+0x250/0x250
[  266.419618][T11194]  ? __fget_files+0x44a/0x4d0
[  266.424295][T11194]  ? __fdget_pos+0x1d8/0x330
[  266.428880][T11194]  ? ksys_write+0x75/0x250
[  266.433296][T11194]  ksys_write+0x147/0x250
[  266.437619][T11194]  ? __ia32_sys_read+0x90/0x90
[  266.442379][T11194]  ? lockdep_hardirqs_on+0x98/0x150
[  266.447573][T11194]  do_syscall_64+0x55/0xb0
[  266.451982][T11194]  ? clear_bhb_loop+0x40/0x90
[  266.456647][T11194]  ? clear_bhb_loop+0x40/0x90
[  266.461311][T11194]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  266.467197][T11194] RIP: 0033:0x7f7f2f38ebe9
[  266.471604][T11194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.491208][T11194] RSP: 002b:00007f7f30188038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  266.499618][T11194] RAX: ffffffffffffffda RBX: 00007f7f2f5c5fa0 RCX: 00007f7f2f38ebe9
[  266.507583][T11194] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000000
[  266.515543][T11194] RBP: 00007f7f30188090 R08: 0000000000000000 R09: 0000000000000000
[  266.523501][T11194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  266.531459][T11194] R13: 00007f7f2f5c6038 R14: 00007f7f2f5c5fa0 R15: 00007ffea68ba3b8
[  266.539455][T11194]  </TASK>
[  266.567597][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  266.887415][T11206] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2009'.
[  266.985456][T11212] validate_nla: 1 callbacks suppressed
[  266.985471][T11212] netlink: 'syz.0.2009': attribute type 39 has an invalid length.
[  267.152966][T11218] FAULT_INJECTION: forcing a failure.
[  267.152966][T11218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.166166][T11218] CPU: 0 PID: 11218 Comm: syz.3.2011 Not tainted syzkaller #0
[  267.173644][T11218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  267.183726][T11218] Call Trace:
[  267.187022][T11218]  <TASK>
[  267.189965][T11218]  dump_stack_lvl+0x16c/0x230
[  267.194664][T11218]  ? show_regs_print_info+0x20/0x20
[  267.199887][T11218]  ? load_image+0x3b0/0x3b0
[  267.204406][T11218]  ? shmem_get_folio_gfp+0x138c/0x2ac0
[  267.209888][T11218]  ? __lock_acquire+0x7c80/0x7c80
[  267.214929][T11218]  ? __rwlock_init+0x150/0x150
[  267.219712][T11218]  should_fail_ex+0x39d/0x4d0
[  267.224417][T11218]  copy_page_from_iter_atomic+0x2a2/0x1530
[  267.230228][T11218]  ? shmem_get_folio_gfp+0x2705/0x2ac0
[  267.235691][T11218]  ? iov_iter_zero+0x1120/0x1120
[  267.240636][T11218]  ? shmem_write_begin+0x1cf/0x420
[  267.245745][T11218]  generic_perform_write+0x350/0x5b0
[  267.251043][T11218]  ? generic_file_direct_write+0x3e0/0x3e0
[  267.256852][T11218]  ? file_update_time+0x1a2/0x1b0
[  267.261871][T11218]  shmem_file_write_iter+0xfb/0x120
[  267.267062][T11218]  vfs_write+0x43b/0x940
[  267.271301][T11218]  ? file_end_write+0x250/0x250
[  267.276231][T11218]  ? __fget_files+0x44a/0x4d0
[  267.280904][T11218]  ? __fdget_pos+0x2a3/0x330
[  267.285483][T11218]  ? ksys_write+0x75/0x250
[  267.289893][T11218]  ksys_write+0x147/0x250
[  267.294216][T11218]  ? __ia32_sys_read+0x90/0x90
[  267.298978][T11218]  ? lockdep_hardirqs_on+0x98/0x150
[  267.304181][T11218]  do_syscall_64+0x55/0xb0
[  267.308584][T11218]  ? clear_bhb_loop+0x40/0x90
[  267.313250][T11218]  ? clear_bhb_loop+0x40/0x90
[  267.317920][T11218]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  267.323808][T11218] RIP: 0033:0x7f276c58ebe9
[  267.328217][T11218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.347815][T11218] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  267.356219][T11218] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  267.364181][T11218] RDX: 00000000002a979d RSI: 0000200000000000 RDI: 0000000000000003
[  267.372139][T11218] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  267.380096][T11218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  267.388051][T11218] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  267.396027][T11218]  </TASK>
[  267.713876][T11226] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2014'.
[  267.973763][   T78] wlan1: Creating new IBSS network, BSSID 46:8c:d1:47:f3:f8
[  268.216853][T11242] netlink: 'syz.0.2020': attribute type 3 has an invalid length.
[  268.232077][T11242] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2020'.
[  268.329404][T11247] netlink: 'syz.0.2020': attribute type 39 has an invalid length.
[  268.434156][T11253] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.2025'.
[  268.566195][T11257] FAULT_INJECTION: forcing a failure.
[  268.566195][T11257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  268.597061][T11257] CPU: 1 PID: 11257 Comm: syz.0.2027 Not tainted syzkaller #0
[  268.604591][T11257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  268.614683][T11257] Call Trace:
[  268.618003][T11257]  <TASK>
[  268.620976][T11257]  dump_stack_lvl+0x16c/0x230
[  268.625711][T11257]  ? show_regs_print_info+0x20/0x20
[  268.630963][T11257]  ? load_image+0x3b0/0x3b0
[  268.635512][T11257]  ? __might_fault+0xaa/0x120
[  268.640234][T11257]  ? __lock_acquire+0x7c80/0x7c80
[  268.645316][T11257]  should_fail_ex+0x39d/0x4d0
[  268.650054][T11257]  _copy_from_user+0x2f/0xe0
[  268.654690][T11257]  __sys_bpf+0x1e9/0x800
[  268.658970][T11257]  ? bpf_link_show_fdinfo+0x350/0x350
[  268.664380][T11257]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  268.670567][T11257]  __x64_sys_bpf+0x7c/0x90
[  268.674996][T11257]  do_syscall_64+0x55/0xb0
[  268.679434][T11257]  ? clear_bhb_loop+0x40/0x90
[  268.684113][T11257]  ? clear_bhb_loop+0x40/0x90
[  268.688796][T11257]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  268.694699][T11257] RIP: 0033:0x7f9ff518ebe9
[  268.699123][T11257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.718736][T11257] RSP: 002b:00007f9ff5fe4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  268.727202][T11257] RAX: ffffffffffffffda RBX: 00007f9ff53c5fa0 RCX: 00007f9ff518ebe9
[  268.735181][T11257] RDX: 0000000000000020 RSI: 0000200000000a40 RDI: 0000000000000009
[  268.743156][T11257] RBP: 00007f9ff5fe4090 R08: 0000000000000000 R09: 0000000000000000
[  268.751134][T11257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.759117][T11257] R13: 00007f9ff53c6038 R14: 00007f9ff53c5fa0 R15: 00007ffce1eadd88
[  268.767126][T11257]  </TASK>
[  268.782637][T11260] netlink: 'syz.2.2028': attribute type 2 has an invalid length.
[  268.790438][T11260] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2028'.
[  269.089646][T11266] netlink: 'syz.0.2031': attribute type 1 has an invalid length.
[  269.129553][T11268] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2032'.
[  270.426672][T11301] FAULT_INJECTION: forcing a failure.
[  270.426672][T11301] name failslab, interval 1, probability 0, space 0, times 0
[  270.452600][T11301] CPU: 1 PID: 11301 Comm: syz.3.2042 Not tainted syzkaller #0
[  270.460110][T11301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  270.470180][T11301] Call Trace:
[  270.473476][T11301]  <TASK>
[  270.476410][T11301]  dump_stack_lvl+0x16c/0x230
[  270.481088][T11301]  ? sctp_sendmsg+0x155c/0x27e0
[  270.485977][T11301]  ? ___sys_sendmsg+0x220/0x290
[  270.490829][T11301]  ? show_regs_print_info+0x20/0x20
[  270.496017][T11301]  ? load_image+0x3b0/0x3b0
[  270.500516][T11301]  should_fail_ex+0x39d/0x4d0
[  270.505194][T11301]  should_failslab+0x9/0x20
[  270.509694][T11301]  slab_pre_alloc_hook+0x59/0x310
[  270.514715][T11301]  ? sctp_add_bind_addr+0x8c/0x360
[  270.519823][T11301]  __kmem_cache_alloc_node+0x53/0x260
[  270.525191][T11301]  ? sctp_add_bind_addr+0x8c/0x360
[  270.530294][T11301]  kmalloc_trace+0x2a/0xe0
[  270.534705][T11301]  sctp_add_bind_addr+0x8c/0x360
[  270.539640][T11301]  sctp_copy_local_addr_list+0x30c/0x4e0
[  270.545269][T11301]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  270.550978][T11301]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  270.557036][T11301]  ? sctp_v4_is_any+0x35/0x60
[  270.561704][T11301]  ? sctp_copy_one_addr+0x8c/0x350
[  270.566812][T11301]  sctp_bind_addr_copy+0xb3/0x3c0
[  270.571827][T11301]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  270.578151][T11301]  sctp_connect_new_asoc+0x2da/0x690
[  270.583431][T11301]  ? __sctp_connect+0xd20/0xd20
[  270.588274][T11301]  ? __local_bh_enable_ip+0x12e/0x1c0
[  270.593633][T11301]  ? _local_bh_enable+0xa0/0xa0
[  270.598469][T11301]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  270.604267][T11301]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  270.610066][T11301]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  270.615603][T11301]  ? security_sctp_bind_connect+0x89/0xb0
[  270.621312][T11301]  sctp_sendmsg+0x155c/0x27e0
[  270.625988][T11301]  ? sctp_getsockopt+0xb60/0xb60
[  270.630916][T11301]  ? aa_sk_perm+0x7fc/0x930
[  270.635416][T11301]  ? aa_af_perm+0x2b0/0x2b0
[  270.639905][T11301]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  270.646317][T11301]  ? sock_rps_record_flow+0x19/0x400
[  270.651591][T11301]  ? inet_send_prepare+0x260/0x260
[  270.656686][T11301]  ? inet_sendmsg+0x7c/0x2f0
[  270.661261][T11301]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  270.666534][T11301]  ? security_socket_sendmsg+0x80/0xa0
[  270.671986][T11301]  ? inet_send_prepare+0x260/0x260
[  270.677083][T11301]  ____sys_sendmsg+0x5bf/0x950
[  270.681846][T11301]  ? __asan_memset+0x22/0x40
[  270.686426][T11301]  ? __sys_sendmsg_sock+0x30/0x30
[  270.691442][T11301]  ? __import_iovec+0x5f2/0x860
[  270.696289][T11301]  ? import_iovec+0x73/0xa0
[  270.700786][T11301]  ___sys_sendmsg+0x220/0x290
[  270.705459][T11301]  ? __sys_sendmsg+0x270/0x270
[  270.710233][T11301]  ? __lock_acquire+0x7c80/0x7c80
[  270.715267][T11301]  __se_sys_sendmsg+0x1a5/0x270
[  270.720113][T11301]  ? __x64_sys_sendmsg+0x80/0x80
[  270.725055][T11301]  ? lockdep_hardirqs_on+0x98/0x150
[  270.730249][T11301]  do_syscall_64+0x55/0xb0
[  270.734654][T11301]  ? clear_bhb_loop+0x40/0x90
[  270.739317][T11301]  ? clear_bhb_loop+0x40/0x90
[  270.743984][T11301]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  270.749871][T11301] RIP: 0033:0x7f276c58ebe9
[  270.754276][T11301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.773874][T11301] RSP: 002b:00007f276d3db038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  270.782280][T11301] RAX: ffffffffffffffda RBX: 00007f276c7c6090 RCX: 00007f276c58ebe9
[  270.790242][T11301] RDX: 0000000000000000 RSI: 0000200000000f80 RDI: 0000000000000003
[  270.798201][T11301] RBP: 00007f276d3db090 R08: 0000000000000000 R09: 0000000000000000
[  270.806160][T11301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  270.814118][T11301] R13: 00007f276c7c6128 R14: 00007f276c7c6090 R15: 00007fff6c601318
[  270.822089][T11301]  </TASK>
[  271.388735][T11312] __nla_validate_parse: 1 callbacks suppressed
[  271.388751][T11312] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.2046'.
[  272.234606][T11326] netlink: 'syz.1.2050': attribute type 1 has an invalid length.
[  272.243052][T11326] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.2050'.
[  272.645349][T11341] netlink: 'syz.1.2053': attribute type 29 has an invalid length.
[  272.664794][T11341] netlink: 'syz.1.2053': attribute type 29 has an invalid length.
[  272.704109][T11335] netlink: 'syz.1.2053': attribute type 29 has an invalid length.
[  272.732071][T11335] netlink: 'syz.1.2053': attribute type 29 has an invalid length.
[  272.740477][T11343] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.2056'.
[  272.769621][T11345] netlink: 'syz.0.2057': attribute type 3 has an invalid length.
[  272.778827][T11345] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2057'.
[  272.789038][T11335] netlink: 'syz.1.2053': attribute type 29 has an invalid length.
[  272.851956][T11345] netlink: 'syz.0.2057': attribute type 39 has an invalid length.
[  272.984834][T11355] netlink: 'syz.0.2061': attribute type 153 has an invalid length.
[  273.012520][T11355] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.2061'.
[  273.138600][T11362] FAULT_INJECTION: forcing a failure.
[  273.138600][T11362] name failslab, interval 1, probability 0, space 0, times 0
[  273.161637][T11362] CPU: 1 PID: 11362 Comm: syz.1.2062 Not tainted syzkaller #0
[  273.169141][T11362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  273.179215][T11362] Call Trace:
[  273.182512][T11362]  <TASK>
[  273.185454][T11362]  dump_stack_lvl+0x16c/0x230
[  273.190155][T11362]  ? show_regs_print_info+0x20/0x20
[  273.195375][T11362]  ? load_image+0x3b0/0x3b0
[  273.199900][T11362]  ? __might_sleep+0xe0/0xe0
[  273.204506][T11362]  ? __lock_acquire+0x7c80/0x7c80
[  273.209552][T11362]  should_fail_ex+0x39d/0x4d0
[  273.214252][T11362]  should_failslab+0x9/0x20
[  273.218773][T11362]  slab_pre_alloc_hook+0x59/0x310
[  273.223823][T11362]  kmem_cache_alloc_node+0x60/0x330
[  273.229039][T11362]  ? kasan_set_track+0x5f/0x70
[  273.233815][T11362]  ? __alloc_skb+0x108/0x2c0
[  273.238585][T11362]  __alloc_skb+0x108/0x2c0
[  273.243197][T11362]  netlink_dump+0x1cf/0xde0
[  273.247733][T11362]  ? netlink_lookup+0x200/0x200
[  273.252622][T11362]  ? do_raw_spin_unlock+0x121/0x230
[  273.257844][T11362]  ? _raw_spin_unlock+0x28/0x40
[  273.262727][T11362]  __netlink_dump_start+0x5f1/0x810
[  273.267955][T11362]  tipc_sock_diag_handler_dump+0x182/0x220
[  273.273783][T11362]  ? __lock_acquire+0x7c80/0x7c80
[  273.278813][T11362]  ? tipc_crypto_key_dump+0x670/0x670
[  273.284180][T11362]  ? tipc_nl_sk_walk+0x2b0/0x2b0
[  273.289112][T11362]  ? tipc_sock_diag_handler_dump+0x220/0x220
[  273.295089][T11362]  ? __tipc_dump_start+0x130/0x130
[  273.300194][T11362]  ? sock_diag_lock_handler+0x19/0x280
[  273.305644][T11362]  ? sock_diag_lock_handler+0x19/0x280
[  273.311090][T11362]  ? tipc_crypto_key_dump+0x670/0x670
[  273.316458][T11362]  sock_diag_rcv_msg+0x3d8/0x600
[  273.321393][T11362]  netlink_rcv_skb+0x216/0x480
[  273.326148][T11362]  ? sock_diag_bind+0xb0/0xb0
[  273.330825][T11362]  ? netlink_ack+0x1110/0x1110
[  273.335587][T11362]  ? __lock_acquire+0x7c80/0x7c80
[  273.340609][T11362]  ? netlink_deliver_tap+0x2e/0x1b0
[  273.345808][T11362]  sock_diag_rcv+0x2a/0x40
[  273.350213][T11362]  netlink_unicast+0x751/0x8d0
[  273.354975][T11362]  netlink_sendmsg+0x8c1/0xbe0
[  273.359733][T11362]  ? netlink_getsockopt+0x580/0x580
[  273.364922][T11362]  ? aa_sock_msg_perm+0x94/0x150
[  273.369869][T11362]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  273.375156][T11362]  ? security_socket_sendmsg+0x80/0xa0
[  273.380608][T11362]  ? netlink_getsockopt+0x580/0x580
[  273.385805][T11362]  ____sys_sendmsg+0x5bf/0x950
[  273.390575][T11362]  ? __asan_memset+0x22/0x40
[  273.395168][T11362]  ? __sys_sendmsg_sock+0x30/0x30
[  273.400186][T11362]  ? __import_iovec+0x5f2/0x860
[  273.405041][T11362]  ? import_iovec+0x73/0xa0
[  273.409541][T11362]  ___sys_sendmsg+0x220/0x290
[  273.414220][T11362]  ? __sys_sendmsg+0x270/0x270
[  273.418991][T11362]  ? __lock_acquire+0x7c80/0x7c80
[  273.424024][T11362]  __se_sys_sendmsg+0x1a5/0x270
[  273.428873][T11362]  ? __x64_sys_sendmsg+0x80/0x80
[  273.433815][T11362]  ? lockdep_hardirqs_on+0x98/0x150
[  273.439009][T11362]  do_syscall_64+0x55/0xb0
[  273.443418][T11362]  ? clear_bhb_loop+0x40/0x90
[  273.448080][T11362]  ? clear_bhb_loop+0x40/0x90
[  273.452743][T11362]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  273.458627][T11362] RIP: 0033:0x7fa3eb58ebe9
[  273.463036][T11362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.482632][T11362] RSP: 002b:00007fa3ec3d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  273.491034][T11362] RAX: ffffffffffffffda RBX: 00007fa3eb7c5fa0 RCX: 00007fa3eb58ebe9
[  273.498992][T11362] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  273.506951][T11362] RBP: 00007fa3ec3d0090 R08: 0000000000000000 R09: 0000000000000000
[  273.514908][T11362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.522869][T11362] R13: 00007fa3eb7c6038 R14: 00007fa3eb7c5fa0 R15: 00007ffc44ae7418
[  273.530849][T11362]  </TASK>
[  274.034586][T11374] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.2067'.
[  274.110188][T11381] netlink: 209840 bytes leftover after parsing attributes in process `syz.1.2070'.
[  274.112479][T11378] netlink: 'syz.3.2069': attribute type 3 has an invalid length.
[  274.152346][T11378] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.2069'.
[  274.413946][T11400] netlink: 16410 bytes leftover after parsing attributes in process `syz.2.2076'.
[  274.790421][T11414] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.2083'.
[  275.658174][T11442] macvlan1: entered allmulticast mode
[  275.685916][T11442] veth1_vlan: entered allmulticast mode
[  275.692221][T11442] team0: Port device macvlan1 added
[  276.490196][T11472] __nla_validate_parse: 1 callbacks suppressed
[  276.490213][T11472] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.2103'.
[  277.308352][T11501] validate_nla: 28 callbacks suppressed
[  277.308367][T11501] netlink: 'syz.1.2110': attribute type 21 has an invalid length.
[  277.329532][T11501] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2110'.
[  277.359411][T11501] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2110'.
[  277.389032][T11503] netlink: 'syz.2.2111': attribute type 19 has an invalid length.
[  277.589881][T11513] netlink: 'syz.2.2113': attribute type 3 has an invalid length.
[  277.598024][T11513] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.2113'.
[  277.654137][T11513] netlink: 'syz.2.2113': attribute type 39 has an invalid length.
[  277.748271][T11516] netlink: 'syz.0.2114': attribute type 29 has an invalid length.
[  277.769766][T11516] netlink: 'syz.0.2114': attribute type 29 has an invalid length.
[  277.805974][T11519] netlink: 'syz.0.2114': attribute type 29 has an invalid length.
[  277.862643][T11516] netlink: 'syz.0.2114': attribute type 29 has an invalid length.
[  278.027002][T11523] tap0: tun_chr_ioctl cmd 2148553947
[  278.039877][T11525] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2118'.
[  278.076311][T11527] netlink: 'syz.0.2119': attribute type 29 has an invalid length.
[  278.097217][T11527] netlink: 'syz.0.2119': attribute type 29 has an invalid length.
[  278.514700][T11537] FAULT_INJECTION: forcing a failure.
[  278.514700][T11537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  278.581227][T11537] CPU: 1 PID: 11537 Comm: syz.2.2123 Not tainted syzkaller #0
[  278.588742][T11537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  278.598814][T11537] Call Trace:
[  278.602121][T11537]  <TASK>
[  278.605065][T11537]  dump_stack_lvl+0x16c/0x230
[  278.609768][T11537]  ? show_regs_print_info+0x20/0x20
[  278.614995][T11537]  ? load_image+0x3b0/0x3b0
[  278.619516][T11537]  ? __might_fault+0xaa/0x120
[  278.624212][T11537]  ? __lock_acquire+0x7c80/0x7c80
[  278.629256][T11537]  should_fail_ex+0x39d/0x4d0
[  278.633960][T11537]  _copy_from_user+0x2f/0xe0
[  278.638572][T11537]  generic_map_update_batch+0x53f/0x810
[  278.644142][T11537]  ? rcu_read_unlock+0xa0/0xa0
[  278.648909][T11537]  ? __fdget+0x180/0x210
[  278.653155][T11537]  ? rcu_read_unlock+0xa0/0xa0
[  278.657939][T11537]  bpf_map_do_batch+0x3d7/0x610
[  278.662784][T11537]  __sys_bpf+0x31b/0x800
[  278.667022][T11537]  ? bpf_link_show_fdinfo+0x350/0x350
[  278.672394][T11537]  ? lock_chain_count+0x20/0x20
[  278.677239][T11537]  __x64_sys_bpf+0x7c/0x90
[  278.681643][T11537]  do_syscall_64+0x55/0xb0
[  278.686048][T11537]  ? clear_bhb_loop+0x40/0x90
[  278.690713][T11537]  ? clear_bhb_loop+0x40/0x90
[  278.695378][T11537]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  278.701266][T11537] RIP: 0033:0x7f7f2f38ebe9
[  278.705670][T11537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.725274][T11537] RSP: 002b:00007f7f30188038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  278.733682][T11537] RAX: ffffffffffffffda RBX: 00007f7f2f5c5fa0 RCX: 00007f7f2f38ebe9
[  278.741644][T11537] RDX: 0000000000000038 RSI: 0000200000000300 RDI: 000000000000001a
[  278.749602][T11537] RBP: 00007f7f30188090 R08: 0000000000000000 R09: 0000000000000000
[  278.757567][T11537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  278.765523][T11537] R13: 00007f7f2f5c6038 R14: 00007f7f2f5c5fa0 R15: 00007ffea68ba3b8
[  278.773493][T11537]  </TASK>
[  278.822069][T11540] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2124'.
[  278.853464][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  279.156574][T11546] netlink: 123072 bytes leftover after parsing attributes in process `syz.1.2125'.
[  279.755587][T11576] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.2135'.
[  280.864899][ T5782] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  281.332731][T11610] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.2146'.
[  282.426670][T11637] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2155'.
[  282.779008][T11646] FAULT_INJECTION: forcing a failure.
[  282.779008][T11646] name failslab, interval 1, probability 0, space 0, times 0
[  282.821776][T11646] CPU: 0 PID: 11646 Comm: syz.3.2158 Not tainted syzkaller #0
[  282.829320][T11646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  282.839412][T11646] Call Trace:
[  282.842730][T11646]  <TASK>
[  282.845706][T11646]  dump_stack_lvl+0x16c/0x230
[  282.850420][T11646]  ? sctp_sendmsg+0x155c/0x27e0
[  282.855308][T11646]  ? ___sys_sendmsg+0x220/0x290
[  282.860203][T11646]  ? show_regs_print_info+0x20/0x20
[  282.865443][T11646]  ? load_image+0x3b0/0x3b0
[  282.870033][T11646]  should_fail_ex+0x39d/0x4d0
[  282.874773][T11646]  should_failslab+0x9/0x20
[  282.879314][T11646]  slab_pre_alloc_hook+0x59/0x310
[  282.884387][T11646]  ? sctp_add_bind_addr+0x8c/0x360
[  282.889547][T11646]  __kmem_cache_alloc_node+0x53/0x260
[  282.894974][T11646]  ? sctp_add_bind_addr+0x8c/0x360
[  282.900129][T11646]  kmalloc_trace+0x2a/0xe0
[  282.904597][T11646]  sctp_add_bind_addr+0x8c/0x360
[  282.909593][T11646]  sctp_copy_local_addr_list+0x30c/0x4e0
[  282.915277][T11646]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  282.921023][T11646]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  282.927113][T11646]  ? sctp_v4_is_any+0x35/0x60
[  282.931803][T11646]  ? sctp_copy_one_addr+0x8c/0x350
[  282.936937][T11646]  sctp_bind_addr_copy+0xb3/0x3c0
[  282.941991][T11646]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  282.948355][T11646]  sctp_connect_new_asoc+0x2da/0x690
[  282.953670][T11646]  ? __sctp_connect+0xd20/0xd20
[  282.958553][T11646]  ? __local_bh_enable_ip+0x12e/0x1c0
[  282.963964][T11646]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  282.969535][T11646]  ? security_sctp_bind_connect+0x89/0xb0
[  282.975284][T11646]  sctp_sendmsg+0x155c/0x27e0
[  282.980007][T11646]  ? sctp_getsockopt+0xb60/0xb60
[  282.984973][T11646]  ? aa_sk_perm+0x7fc/0x930
[  282.989505][T11646]  ? aa_af_perm+0x2b0/0x2b0
[  282.994017][T11646]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  283.000455][T11646]  ? sock_rps_record_flow+0x19/0x400
[  283.005753][T11646]  ? inet_send_prepare+0x260/0x260
[  283.010871][T11646]  ? inet_sendmsg+0xe9/0x2f0
[  283.015474][T11646]  ? inet_send_prepare+0x260/0x260
[  283.020589][T11646]  ____sys_sendmsg+0x5bf/0x950
[  283.025380][T11646]  ? __asan_memset+0x22/0x40
[  283.029981][T11646]  ? __sys_sendmsg_sock+0x30/0x30
[  283.035013][T11646]  ? __import_iovec+0x5f2/0x860
[  283.039893][T11646]  ? import_iovec+0x73/0xa0
[  283.044417][T11646]  ___sys_sendmsg+0x220/0x290
[  283.049109][T11646]  ? __sys_sendmsg+0x270/0x270
[  283.053991][T11646]  __se_sys_sendmsg+0x1a5/0x270
[  283.058859][T11646]  ? __x64_sys_sendmsg+0x80/0x80
[  283.063842][T11646]  ? trace_sys_enter+0x1f/0x80
[  283.068619][T11646]  do_syscall_64+0x55/0xb0
[  283.073042][T11646]  ? clear_bhb_loop+0x40/0x90
[  283.077724][T11646]  ? clear_bhb_loop+0x40/0x90
[  283.082408][T11646]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  283.088310][T11646] RIP: 0033:0x7f276c58ebe9
[  283.092733][T11646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.112342][T11646] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  283.120765][T11646] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  283.128743][T11646] RDX: 0000000000000001 RSI: 0000200000000440 RDI: 0000000000000003
[  283.136716][T11646] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  283.144692][T11646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  283.152680][T11646] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  283.160697][T11646]  </TASK>
[  283.423286][ T5782] Bluetooth: hci1: ISO packet for unknown connection handle 62
[  283.671801][T11653] validate_nla: 9 callbacks suppressed
[  283.671834][T11653] netlink: 'syz.3.2161': attribute type 29 has an invalid length.
[  283.703542][T11653] netlink: 'syz.3.2161': attribute type 29 has an invalid length.
[  283.724262][T11657] netlink: 'syz.3.2161': attribute type 29 has an invalid length.
[  284.475953][ T5782] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  285.758574][T11691] netlink: 'syz.1.2173': attribute type 29 has an invalid length.
[  286.215160][T11691] netlink: 'syz.1.2173': attribute type 29 has an invalid length.
[  286.319754][T11702] netlink: 'syz.3.2174': attribute type 17 has an invalid length.
[  286.363530][T11702] netlink: 'syz.3.2174': attribute type 16 has an invalid length.
[  286.408052][T11702] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2174'.
[  286.592888][T11694] netlink: 'syz.1.2173': attribute type 29 has an invalid length.
[  287.321682][T11713] netlink: 'syz.3.2178': attribute type 10 has an invalid length.
[  287.551400][T11713] team0: Port device netdevsim0 added
[  287.663816][T11715] netlink: 'syz.3.2178': attribute type 10 has an invalid length.
[  287.763657][T11715] team0: Port device netdevsim0 removed
[  287.813407][T11715] .`: (slave netdevsim0): Enslaving as an active interface with an up link
[  287.986174][T11732] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.2185'.
[  288.373392][ T5782] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  288.609940][T11741] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.2189'.
[  288.770959][T11741] validate_nla: 1 callbacks suppressed
[  288.770979][T11741] netlink: 'syz.3.2189': attribute type 39 has an invalid length.
[  289.923094][T11767] netlink: 'syz.2.2196': attribute type 13 has an invalid length.
[  289.965656][T11767] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2196'.
[  290.013624][T11767] bond0: entered promiscuous mode
[  290.018898][T11767] bond_slave_1: entered promiscuous mode
[  290.214374][T11772] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2197'.
[  290.359964][T11779] netlink: 'syz.1.2200': attribute type 3 has an invalid length.
[  290.381249][T11779] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.2200'.
[  290.481049][T11779] netlink: 'syz.1.2200': attribute type 39 has an invalid length.
[  290.550985][T11785] netlink: 'syz.3.2202': attribute type 10 has an invalid length.
[  290.560871][T11785] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2202'.
[  290.579345][T11785] .`: entered promiscuous mode
[  290.586132][T11785] bond_slave_0: entered promiscuous mode
[  290.594590][T11785] bond_slave_1: entered promiscuous mode
[  290.607663][T11785] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  290.620863][T11785] 8021q: adding VLAN 0 to HW filter on device .`
[  290.898786][T11795] netlink: 203516 bytes leftover after parsing attributes in process `syz.0.2205'.
[  290.940600][T11795] netlink: zone id is out of range
[  290.960557][T11795] netlink: del zone limit has 8 unknown bytes
[  291.117211][T11805] netlink: 'syz.3.2208': attribute type 13 has an invalid length.
[  291.133625][T11805] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2208'.
[  291.161656][T11805] .`: entered allmulticast mode
[  291.166811][T11805] bond_slave_0: entered allmulticast mode
[  291.191326][T11805] bond_slave_1: entered allmulticast mode
[  291.197442][T11805] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  291.222892][T11811] netlink: 'syz.0.2211': attribute type 3 has an invalid length.
[  291.231720][T11811] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2211'.
[  291.261482][T11811] netlink: 'syz.0.2211': attribute type 39 has an invalid length.
[  291.286126][T11812] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2210'.
[  291.635710][T11826] netlink: 'syz.1.2215': attribute type 1 has an invalid length.
[  291.900138][T11832] netlink: 'syz.2.2218': attribute type 10 has an invalid length.
[  292.005382][T11832] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  292.017646][T11832] team0: Port device netdevsim0 added
[  292.036836][T11837] netdevsim netdevsim2 netdevsim0: left allmulticast mode
[  292.128706][T11837] team0: Port device netdevsim0 removed
[  292.155587][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  292.158771][T11837] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  292.212632][T11837] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  292.285196][T11837] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  293.097228][T11867] __nla_validate_parse: 3 callbacks suppressed
[  293.097260][T11867] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2227'.
[  297.997009][T11889] validate_nla: 5 callbacks suppressed
[  297.997029][T11889] netlink: 'syz.3.2233': attribute type 3 has an invalid length.
[  298.016174][T11889] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.2233'.
[  298.073641][T11889] netlink: 'syz.3.2233': attribute type 39 has an invalid length.
[  298.208057][T11899] netlink: 'syz.2.2236': attribute type 29 has an invalid length.
[  298.220011][T11897] netlink: 203516 bytes leftover after parsing attributes in process `syz.1.2235'.
[  298.244562][T11897] netlink: zone id is out of range
[  298.247973][T11901] netlink: 'syz.3.2237': attribute type 29 has an invalid length.
[  298.250221][T11899] netlink: 'syz.2.2236': attribute type 29 has an invalid length.
[  298.268463][T11897] netlink: del zone limit has 8 unknown bytes
[  298.277547][T11901] netlink: 'syz.3.2237': attribute type 29 has an invalid length.
[  298.292300][T11899] netlink: 'syz.2.2236': attribute type 29 has an invalid length.
[  298.311909][T11901] FAULT_INJECTION: forcing a failure.
[  298.311909][T11901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  298.352443][T11901] CPU: 0 PID: 11901 Comm: syz.3.2237 Not tainted syzkaller #0
[  298.359962][T11901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  298.370029][T11901] Call Trace:
[  298.373320][T11901]  <TASK>
[  298.376259][T11901]  dump_stack_lvl+0x16c/0x230
[  298.380960][T11901]  ? show_regs_print_info+0x20/0x20
[  298.386172][T11901]  ? load_image+0x3b0/0x3b0
[  298.390682][T11901]  ? __might_fault+0xaa/0x120
[  298.395358][T11901]  ? __lock_acquire+0x7c80/0x7c80
[  298.400383][T11901]  should_fail_ex+0x39d/0x4d0
[  298.405061][T11901]  _copy_from_user+0x2f/0xe0
[  298.409648][T11901]  ___sys_recvmsg+0x12f/0x510
[  298.414328][T11901]  ? __sys_recvmsg+0x270/0x270
[  298.419093][T11901]  ? ksys_write+0x1c1/0x250
[  298.423599][T11901]  ? __fget_files+0x44a/0x4d0
[  298.428284][T11901]  __x64_sys_recvmsg+0x1f2/0x2c0
[  298.433217][T11901]  ? ___sys_recvmsg+0x510/0x510
[  298.438069][T11901]  ? lockdep_hardirqs_on+0x98/0x150
[  298.443264][T11901]  do_syscall_64+0x55/0xb0
[  298.447670][T11901]  ? clear_bhb_loop+0x40/0x90
[  298.452332][T11901]  ? clear_bhb_loop+0x40/0x90
[  298.457005][T11901]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  298.462891][T11901] RIP: 0033:0x7f276c58ebe9
[  298.467294][T11901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  298.486893][T11901] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  298.495312][T11901] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  298.503280][T11901] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  298.511242][T11901] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  298.519198][T11901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  298.527159][T11901] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  298.535130][T11901]  </TASK>
[  298.557527][T11905] FAULT_INJECTION: forcing a failure.
[  298.557527][T11905] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  298.572255][T11905] CPU: 0 PID: 11905 Comm: syz.0.2238 Not tainted syzkaller #0
[  298.579745][T11905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  298.589817][T11905] Call Trace:
[  298.593115][T11905]  <TASK>
[  298.596062][T11905]  dump_stack_lvl+0x16c/0x230
[  298.600761][T11905]  ? show_regs_print_info+0x20/0x20
[  298.605981][T11905]  ? load_image+0x3b0/0x3b0
[  298.610504][T11905]  ? __lock_acquire+0x7c80/0x7c80
[  298.615560][T11905]  should_fail_ex+0x39d/0x4d0
[  298.620261][T11905]  prepare_alloc_pages+0x1e2/0x5f0
[  298.625397][T11905]  __alloc_pages+0x127/0x460
[  298.629993][T11905]  ? zone_statistics+0x170/0x170
[  298.634943][T11905]  pte_alloc_one+0x89/0x540
[  298.639449][T11905]  ? pfn_modify_allowed+0x560/0x560
[  298.644644][T11905]  ? __lock_acquire+0x7c80/0x7c80
[  298.649666][T11905]  __pte_alloc+0x22/0x2a0
[  298.653991][T11905]  handle_mm_fault+0x3cc3/0x4920
[  298.658922][T11905]  ? handle_mm_fault+0xd1/0x4920
[  298.663860][T11905]  ? numa_migrate_prep+0x350/0x350
[  298.668977][T11905]  ? up_read+0x20/0x20
[  298.673040][T11905]  ? lock_mm_and_find_vma+0x9c/0x300
[  298.678319][T11905]  do_user_addr_fault+0x738/0x12e0
[  298.683430][T11905]  exc_page_fault+0x67/0x110
[  298.688014][T11905]  asm_exc_page_fault+0x26/0x30
[  298.692857][T11905] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  298.698654][T11905] Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 29 f8 48 01
[  298.718250][T11905] RSP: 0018:ffffc90004e9fbd0 EFLAGS: 00050202
[  298.724306][T11905] RAX: ffffffff841ec401 RBX: 0000000000100007 RCX: 000000000000024e
[  298.732265][T11905] RDX: 0000000000000001 RSI: 0000200000200000 RDI: ffff888048affdb9
[  298.740224][T11905] RBP: ffffc90004e9fd20 R08: 0000000000000006 R09: 0000000000000007
[  298.748183][T11905] R10: dffffc0000000000 R11: ffffed1009160000 R12: 000020000020024e
[  298.756141][T11905] R13: 1ffff920009d3fbd R14: ffff888048a00000 R15: 0000200000100247
[  298.764109][T11905]  ? rcuref_put_slowpath+0x121/0x150
[  298.769389][T11905]  _copy_from_user+0x8b/0xe0
[  298.773968][T11905]  generic_map_update_batch+0x53f/0x810
[  298.779519][T11905]  ? rcu_read_unlock+0xa0/0xa0
[  298.784283][T11905]  ? __fdget+0x180/0x210
[  298.788517][T11905]  ? rcu_read_unlock+0xa0/0xa0
[  298.793276][T11905]  bpf_map_do_batch+0x3d7/0x610
[  298.798119][T11905]  __sys_bpf+0x31b/0x800
[  298.802353][T11905]  ? bpf_link_show_fdinfo+0x350/0x350
[  298.807723][T11905]  ? lock_chain_count+0x20/0x20
[  298.812570][T11905]  __x64_sys_bpf+0x7c/0x90
[  298.816974][T11905]  do_syscall_64+0x55/0xb0
[  298.821378][T11905]  ? clear_bhb_loop+0x40/0x90
[  298.826041][T11905]  ? clear_bhb_loop+0x40/0x90
[  298.830706][T11905]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  298.836591][T11905] RIP: 0033:0x7f9ff518ebe9
[  298.840997][T11905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  298.860589][T11905] RSP: 002b:00007f9ff5fe4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  298.868991][T11905] RAX: ffffffffffffffda RBX: 00007f9ff53c5fa0 RCX: 00007f9ff518ebe9
[  298.876950][T11905] RDX: 0000000000000038 RSI: 0000200000000200 RDI: 000000000000001a
[  298.884910][T11905] RBP: 00007f9ff5fe4090 R08: 0000000000000000 R09: 0000000000000000
[  298.892869][T11905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  298.900830][T11905] R13: 00007f9ff53c6038 R14: 00007f9ff53c5fa0 R15: 00007ffce1eadd88
[  298.908806][T11905]  </TASK>
[  299.088654][T11917] netlink: 'syz.0.2244': attribute type 21 has an invalid length.
[  299.098873][T11917] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2244'.
[  299.108335][T11917] netlink: 'syz.0.2244': attribute type 1 has an invalid length.
[  299.235920][T11921] netlink: 'syz.0.2246': attribute type 3 has an invalid length.
[  299.245615][T11921] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2246'.
[  300.131104][T11933] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.2249'.
[  300.171321][T11933] netlink: zone id is out of range
[  300.180157][T11933] netlink: del zone limit has 8 unknown bytes
[  300.385826][T11950] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.2255'.
[  300.475636][T11953] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  300.484737][T11953] FAULT_INJECTION: forcing a failure.
[  300.484737][T11953] name failslab, interval 1, probability 0, space 0, times 0
[  300.511561][T11953] CPU: 1 PID: 11953 Comm: syz.0.2259 Not tainted syzkaller #0
[  300.519048][T11953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  300.529098][T11953] Call Trace:
[  300.532372][T11953]  <TASK>
[  300.535291][T11953]  dump_stack_lvl+0x16c/0x230
[  300.539962][T11953]  ? show_regs_print_info+0x20/0x20
[  300.545154][T11953]  ? load_image+0x3b0/0x3b0
[  300.549652][T11953]  ? __lock_acquire+0x7c80/0x7c80
[  300.554682][T11953]  should_fail_ex+0x39d/0x4d0
[  300.559354][T11953]  should_failslab+0x9/0x20
[  300.563850][T11953]  slab_pre_alloc_hook+0x59/0x310
[  300.568868][T11953]  ? qdisc_alloc+0x94/0xa50
[  300.573376][T11953]  ? qdisc_alloc+0x94/0xa50
[  300.577876][T11953]  __kmem_cache_alloc_node+0x53/0x260
[  300.583244][T11953]  ? qdisc_alloc+0x94/0xa50
[  300.587740][T11953]  __kmalloc_node+0xa4/0x230
[  300.592326][T11953]  qdisc_alloc+0x94/0xa50
[  300.596656][T11953]  qdisc_create_dflt+0x63/0x430
[  300.601501][T11953]  ? dev_activate+0xce6/0x11a0
[  300.606257][T11953]  dev_activate+0xd01/0x11a0
[  300.610845][T11953]  __dev_open+0x338/0x430
[  300.615171][T11953]  ? dev_open+0x170/0x170
[  300.619500][T11953]  __dev_change_flags+0x20e/0x6a0
[  300.624520][T11953]  ? dev_get_flags+0x1c0/0x1c0
[  300.629271][T11953]  ? rcu_is_watching+0x15/0xb0
[  300.634060][T11953]  ? trace_contention_end+0x39/0xe0
[  300.639251][T11953]  ? __mutex_lock+0x304/0xcc0
[  300.643921][T11953]  dev_change_flags+0x88/0x1a0
[  300.648683][T11953]  dev_ifsioc+0x6a7/0xe20
[  300.653003][T11953]  ? dev_ioctl+0x1170/0x1170
[  300.657581][T11953]  ? dev_load+0x21/0x1f0
[  300.661811][T11953]  ? dev_load+0x21/0x1f0
[  300.666043][T11953]  dev_ioctl+0x7e2/0x1170
[  300.670363][T11953]  sock_do_ioctl+0x226/0x2f0
[  300.674949][T11953]  ? sock_show_fdinfo+0xb0/0xb0
[  300.679802][T11953]  sock_ioctl+0x623/0x7a0
[  300.684127][T11953]  ? sock_poll+0x3d0/0x3d0
[  300.688542][T11953]  ? bpf_lsm_file_ioctl+0x9/0x10
[  300.693468][T11953]  ? security_file_ioctl+0x80/0xa0
[  300.698569][T11953]  ? sock_poll+0x3d0/0x3d0
[  300.702978][T11953]  __se_sys_ioctl+0xfd/0x170
[  300.707561][T11953]  do_syscall_64+0x55/0xb0
[  300.711967][T11953]  ? clear_bhb_loop+0x40/0x90
[  300.716629][T11953]  ? clear_bhb_loop+0x40/0x90
[  300.721296][T11953]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  300.727182][T11953] RIP: 0033:0x7f9ff518ebe9
[  300.731585][T11953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.751179][T11953] RSP: 002b:00007f9ff5fe4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  300.759585][T11953] RAX: ffffffffffffffda RBX: 00007f9ff53c5fa0 RCX: 00007f9ff518ebe9
[  300.767804][T11953] RDX: 0000200000002280 RSI: 0000000000008914 RDI: 0000000000000007
[  300.775763][T11953] RBP: 00007f9ff5fe4090 R08: 0000000000000000 R09: 0000000000000000
[  300.783726][T11953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.791686][T11953] R13: 00007f9ff53c6038 R14: 00007f9ff53c5fa0 R15: 00007ffce1eadd88
[  300.799661][T11953]  </TASK>
[  301.320086][T11963] sctp: [Deprecated]: syz.2.2263 (pid 11963) Use of struct sctp_assoc_value in delayed_ack socket option.
[  301.320086][T11963] Use struct sctp_sack_info instead
[  302.634252][T11974] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.2267'.
[  302.683871][T11977] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2268'.
[  303.124386][T11991] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  303.659110][T12002] netlink: 35347 bytes leftover after parsing attributes in process `syz.3.2279'.
[  303.880564][T12009] validate_nla: 11 callbacks suppressed
[  303.880586][T12009] netlink: 'syz.2.2281': attribute type 3 has an invalid length.
[  303.894969][T12009] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.2281'.
[  304.011573][T12009] netlink: 'syz.2.2281': attribute type 39 has an invalid length.
[  304.378078][T12018] FAULT_INJECTION: forcing a failure.
[  304.378078][T12018] name failslab, interval 1, probability 0, space 0, times 0
[  304.395765][T12018] CPU: 0 PID: 12018 Comm: syz.3.2285 Not tainted syzkaller #0
[  304.403276][T12018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  304.413350][T12018] Call Trace:
[  304.416631][T12018]  <TASK>
[  304.419555][T12018]  dump_stack_lvl+0x16c/0x230
[  304.424235][T12018]  ? show_regs_print_info+0x20/0x20
[  304.429431][T12018]  ? load_image+0x3b0/0x3b0
[  304.433927][T12018]  ? __might_sleep+0xe0/0xe0
[  304.438540][T12018]  ? __lock_acquire+0x7c80/0x7c80
[  304.443558][T12018]  should_fail_ex+0x39d/0x4d0
[  304.448237][T12018]  should_failslab+0x9/0x20
[  304.452734][T12018]  slab_pre_alloc_hook+0x59/0x310
[  304.457754][T12018]  ? __request_module+0x2c2/0x5b0
[  304.462772][T12018]  ? __request_module+0x2c2/0x5b0
[  304.467786][T12018]  __kmem_cache_alloc_node+0x53/0x260
[  304.473161][T12018]  ? __request_module+0x2c2/0x5b0
[  304.478174][T12018]  __kmalloc_node_track_caller+0xa2/0x230
[  304.483892][T12018]  kstrdup+0x3b/0x80
[  304.487778][T12018]  __request_module+0x2c2/0x5b0
[  304.492627][T12018]  ? module_enforce_rwx_sections+0x150/0x150
[  304.498602][T12018]  ? module_enforce_rwx_sections+0x150/0x150
[  304.504573][T12018]  ? apparmor_capable+0x137/0x1a0
[  304.509594][T12018]  ? dev_load+0x21/0x1f0
[  304.513830][T12018]  dev_ioctl+0x865/0x1170
[  304.518153][T12018]  sock_ioctl+0x726/0x7a0
[  304.522485][T12018]  ? sock_poll+0x3d0/0x3d0
[  304.526903][T12018]  ? bpf_lsm_file_ioctl+0x9/0x10
[  304.531838][T12018]  ? security_file_ioctl+0x80/0xa0
[  304.536957][T12018]  ? sock_poll+0x3d0/0x3d0
[  304.541369][T12018]  __se_sys_ioctl+0xfd/0x170
[  304.545957][T12018]  do_syscall_64+0x55/0xb0
[  304.550361][T12018]  ? clear_bhb_loop+0x40/0x90
[  304.555029][T12018]  ? clear_bhb_loop+0x40/0x90
[  304.559696][T12018]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  304.565586][T12018] RIP: 0033:0x7f276c58ebe9
[  304.569991][T12018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.589610][T12018] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  304.598032][T12018] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  304.606005][T12018] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000005
[  304.613968][T12018] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  304.621929][T12018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.629887][T12018] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  304.637864][T12018]  </TASK>
[  305.748202][T12039] netlink: 'syz.3.2291': attribute type 3 has an invalid length.
[  305.763944][T12039] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.2291'.
[  305.838740][T12039] netlink: 'syz.3.2291': attribute type 39 has an invalid length.
[  307.068740][T12066] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.2303'.
[  307.419713][T12092] netlink: 'syz.1.2310': attribute type 39 has an invalid length.
[  307.443377][T12092] netlink: 63503 bytes leftover after parsing attributes in process `syz.1.2310'.
[  307.569378][T12096] FAULT_INJECTION: forcing a failure.
[  307.569378][T12096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  307.586852][T12096] CPU: 1 PID: 12096 Comm: syz.3.2312 Not tainted syzkaller #0
[  307.594413][T12096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  307.604504][T12096] Call Trace:
[  307.607801][T12096]  <TASK>
[  307.610753][T12096]  dump_stack_lvl+0x16c/0x230
[  307.615452][T12096]  ? show_regs_print_info+0x20/0x20
[  307.620682][T12096]  ? load_image+0x3b0/0x3b0
[  307.625203][T12096]  ? __might_fault+0xaa/0x120
[  307.629906][T12096]  should_fail_ex+0x39d/0x4d0
[  307.634611][T12096]  copyin+0x1a/0x90
[  307.638438][T12096]  _copy_from_iter+0x404/0x1290
[  307.643324][T12096]  ? copyout_mc+0x70/0x70
[  307.647734][T12096]  ? dev_get_by_index+0x22/0x2d0
[  307.652690][T12096]  ? dev_get_by_index+0x22/0x2d0
[  307.657654][T12096]  packet_sendmsg+0x2df4/0x4d30
[  307.662527][T12096]  ? aa_sk_perm+0x930/0x930
[  307.667089][T12096]  ? __might_sleep+0xe0/0xe0
[  307.671719][T12096]  ? __lock_acquire+0x1260/0x7c80
[  307.676769][T12096]  ? verify_lock_unused+0x140/0x140
[  307.681993][T12096]  ? aa_sk_perm+0x7fc/0x930
[  307.686516][T12096]  ? packet_getsockopt+0xa20/0xa20
[  307.691642][T12096]  ? aa_sock_msg_perm+0x94/0x150
[  307.696573][T12096]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  307.701848][T12096]  ? security_socket_sendmsg+0x80/0xa0
[  307.707294][T12096]  ? packet_getsockopt+0xa20/0xa20
[  307.712395][T12096]  ____sys_sendmsg+0x5bf/0x950
[  307.717160][T12096]  ? __asan_memset+0x22/0x40
[  307.721738][T12096]  ? __sys_sendmsg_sock+0x30/0x30
[  307.726750][T12096]  ? __import_iovec+0x3fa/0x860
[  307.731595][T12096]  ? import_iovec+0x73/0xa0
[  307.736088][T12096]  ___sys_sendmsg+0x220/0x290
[  307.740758][T12096]  ? __sys_sendmsg+0x270/0x270
[  307.745525][T12096]  ? __lock_acquire+0x7c80/0x7c80
[  307.750558][T12096]  __se_sys_sendmsg+0x1a5/0x270
[  307.755403][T12096]  ? __x64_sys_sendmsg+0x80/0x80
[  307.760344][T12096]  ? lockdep_hardirqs_on+0x98/0x150
[  307.765535][T12096]  do_syscall_64+0x55/0xb0
[  307.769941][T12096]  ? clear_bhb_loop+0x40/0x90
[  307.774602][T12096]  ? clear_bhb_loop+0x40/0x90
[  307.779266][T12096]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  307.785159][T12096] RIP: 0033:0x7f276c58ebe9
[  307.789564][T12096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.809166][T12096] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  307.817567][T12096] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  307.825526][T12096] RDX: 0000000004008001 RSI: 0000200000000040 RDI: 0000000000000003
[  307.833482][T12096] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  307.841440][T12096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.849418][T12096] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  307.857395][T12096]  </TASK>
[  308.406396][T12111] FAULT_INJECTION: forcing a failure.
[  308.406396][T12111] name failslab, interval 1, probability 0, space 0, times 0
[  308.455621][T12111] CPU: 0 PID: 12111 Comm: syz.3.2317 Not tainted syzkaller #0
[  308.463202][T12111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  308.473339][T12111] Call Trace:
[  308.476695][T12111]  <TASK>
[  308.479697][T12111]  dump_stack_lvl+0x16c/0x230
[  308.484485][T12111]  ? show_regs_print_info+0x20/0x20
[  308.489774][T12111]  ? load_image+0x3b0/0x3b0
[  308.494382][T12111]  ? __might_sleep+0xe0/0xe0
[  308.499056][T12111]  ? __lock_acquire+0x7c80/0x7c80
[  308.504210][T12111]  should_fail_ex+0x39d/0x4d0
[  308.509000][T12111]  should_failslab+0x9/0x20
[  308.513579][T12111]  slab_pre_alloc_hook+0x59/0x310
[  308.518681][T12111]  ? __lock_acquire+0x7c80/0x7c80
[  308.523809][T12111]  kmem_cache_alloc_node+0x60/0x330
[  308.529085][T12111]  ? __alloc_skb+0x108/0x2c0
[  308.533789][T12111]  __alloc_skb+0x108/0x2c0
[  308.538312][T12111]  netlink_sendmsg+0x65b/0xbe0
[  308.543180][T12111]  ? netlink_getsockopt+0x580/0x580
[  308.548426][T12111]  ? aa_sock_msg_perm+0x94/0x150
[  308.553408][T12111]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  308.558720][T12111]  ? security_socket_sendmsg+0x80/0xa0
[  308.564215][T12111]  ? netlink_getsockopt+0x580/0x580
[  308.569452][T12111]  ____sys_sendmsg+0x5bf/0x950
[  308.574281][T12111]  ? __asan_memset+0x22/0x40
[  308.578910][T12111]  ? __sys_sendmsg_sock+0x30/0x30
[  308.583960][T12111]  ? __import_iovec+0x5f2/0x860
[  308.588882][T12111]  ? import_iovec+0x73/0xa0
[  308.593437][T12111]  ___sys_sendmsg+0x220/0x290
[  308.598163][T12111]  ? __sys_sendmsg+0x270/0x270
[  308.603049][T12111]  ? __lock_acquire+0x7c80/0x7c80
[  308.608221][T12111]  __se_sys_sendmsg+0x1a5/0x270
[  308.613127][T12111]  ? __x64_sys_sendmsg+0x80/0x80
[  308.618169][T12111]  ? lockdep_hardirqs_on+0x98/0x150
[  308.623419][T12111]  do_syscall_64+0x55/0xb0
[  308.627875][T12111]  ? clear_bhb_loop+0x40/0x90
[  308.632575][T12111]  ? clear_bhb_loop+0x40/0x90
[  308.637283][T12111]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  308.643206][T12111] RIP: 0033:0x7f276c58ebe9
[  308.647653][T12111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.667286][T12111] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  308.675774][T12111] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  308.683773][T12111] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  308.691771][T12111] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  308.699770][T12111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.707773][T12111] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  308.715836][T12111]  </TASK>
[  308.920090][T12110] netlink: 199824 bytes leftover after parsing attributes in process `syz.2.2316'.
[  309.146232][T12119] netlink: 'syz.3.2320': attribute type 21 has an invalid length.
[  309.171073][T12119] netlink: 'syz.3.2320': attribute type 6 has an invalid length.
[  309.181070][T12119] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2320'.
[  309.198879][T12121] FAULT_INJECTION: forcing a failure.
[  309.198879][T12121] name failslab, interval 1, probability 0, space 0, times 0
[  309.213667][T12121] CPU: 1 PID: 12121 Comm: syz.1.2322 Not tainted syzkaller #0
[  309.221159][T12121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  309.231220][T12121] Call Trace:
[  309.234495][T12121]  <TASK>
[  309.237419][T12121]  dump_stack_lvl+0x16c/0x230
[  309.242100][T12121]  ? show_regs_print_info+0x20/0x20
[  309.247290][T12121]  ? load_image+0x3b0/0x3b0
[  309.251782][T12121]  ? __might_sleep+0xe0/0xe0
[  309.256364][T12121]  ? __lock_acquire+0x7c80/0x7c80
[  309.261382][T12121]  should_fail_ex+0x39d/0x4d0
[  309.266053][T12121]  should_failslab+0x9/0x20
[  309.270550][T12121]  slab_pre_alloc_hook+0x59/0x310
[  309.275565][T12121]  ? __lock_acquire+0x7c80/0x7c80
[  309.280579][T12121]  kmem_cache_alloc_node+0x60/0x330
[  309.285773][T12121]  ? __alloc_skb+0x108/0x2c0
[  309.290356][T12121]  __alloc_skb+0x108/0x2c0
[  309.294764][T12121]  netlink_sendmsg+0x65b/0xbe0
[  309.299525][T12121]  ? netlink_getsockopt+0x580/0x580
[  309.304713][T12121]  ? aa_sock_msg_perm+0x94/0x150
[  309.309641][T12121]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  309.314932][T12121]  ? security_socket_sendmsg+0x80/0xa0
[  309.320378][T12121]  ? netlink_getsockopt+0x580/0x580
[  309.325565][T12121]  ____sys_sendmsg+0x5bf/0x950
[  309.330326][T12121]  ? __asan_memset+0x22/0x40
[  309.334927][T12121]  ? __sys_sendmsg_sock+0x30/0x30
[  309.339967][T12121]  ? __import_iovec+0x5f2/0x860
[  309.344832][T12121]  ? import_iovec+0x73/0xa0
[  309.349336][T12121]  ___sys_sendmsg+0x220/0x290
[  309.354010][T12121]  ? __sys_sendmsg+0x270/0x270
[  309.358778][T12121]  ? __lock_acquire+0x7c80/0x7c80
[  309.363810][T12121]  __se_sys_sendmsg+0x1a5/0x270
[  309.368655][T12121]  ? __x64_sys_sendmsg+0x80/0x80
[  309.373595][T12121]  ? lockdep_hardirqs_on+0x98/0x150
[  309.378795][T12121]  do_syscall_64+0x55/0xb0
[  309.383212][T12121]  ? clear_bhb_loop+0x40/0x90
[  309.387878][T12121]  ? clear_bhb_loop+0x40/0x90
[  309.392542][T12121]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  309.398449][T12121] RIP: 0033:0x7fa3eb58ebe9
[  309.402878][T12121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.422486][T12121] RSP: 002b:00007fa3ec3d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  309.430892][T12121] RAX: ffffffffffffffda RBX: 00007fa3eb7c5fa0 RCX: 00007fa3eb58ebe9
[  309.438850][T12121] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000009
[  309.446811][T12121] RBP: 00007fa3ec3d0090 R08: 0000000000000000 R09: 0000000000000000
[  309.454767][T12121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  309.462726][T12121] R13: 00007fa3eb7c6038 R14: 00007fa3eb7c5fa0 R15: 00007ffc44ae7418
[  309.470701][T12121]  </TASK>
[  309.684756][T12132] netlink: 'syz.3.2325': attribute type 21 has an invalid length.
[  309.719258][T12132] netlink: 'syz.3.2325': attribute type 6 has an invalid length.
[  309.736425][T12132] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2325'.
[  309.928855][T12140] netlink: 'syz.2.2327': attribute type 10 has an invalid length.
[  310.289642][ T5782] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  310.314590][T12150] netlink: 199824 bytes leftover after parsing attributes in process `syz.0.2331'.
[  310.680645][T12158] netlink: 'syz.0.2333': attribute type 29 has an invalid length.
[  310.707256][T12158] netlink: 'syz.0.2333': attribute type 29 has an invalid length.
[  310.741833][T12159] netlink: 'syz.0.2333': attribute type 29 has an invalid length.
[  310.757436][T12158] netlink: 'syz.0.2333': attribute type 29 has an invalid length.
[  310.841250][T12161] Dead loop on virtual device ip6_vti0, fix it urgently!
[  311.296139][T12166] netlink: 199824 bytes leftover after parsing attributes in process `syz.2.2336'.
[  311.495418][T12183] netlink: 'syz.0.2343': attribute type 21 has an invalid length.
[  311.504648][T12183] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2343'.
[  311.973195][T12196] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2348'.
[  312.323610][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  312.682443][   T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  312.699487][   T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  312.708607][   T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  312.718886][   T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  312.745239][   T50] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  312.767459][   T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  314.465501][T12217] netlink: 199824 bytes leftover after parsing attributes in process `syz.0.2353'.
[  314.575954][T12203] chnl_net:caif_netlink_parms(): no params data found
[  314.593732][T12224] validate_nla: 3 callbacks suppressed
[  314.593749][T12224] netlink: 'syz.3.2354': attribute type 29 has an invalid length.
[  314.655584][T12224] netlink: 'syz.3.2354': attribute type 29 has an invalid length.
[  314.720585][T12224] netlink: 'syz.3.2354': attribute type 29 has an invalid length.
[  314.724513][T12235] netlink: 'syz.0.2356': attribute type 3 has an invalid length.
[  314.736654][T12235] netlink: 201336 bytes leftover after parsing attributes in process `syz.0.2356'.
[  314.778015][T12203] bridge0: port 1(bridge_slave_0) entered blocking state
[  314.805276][T12203] bridge0: port 1(bridge_slave_0) entered disabled state
[  314.812640][T12203] bridge_slave_0: entered allmulticast mode
[  314.820398][T12203] bridge_slave_0: entered promiscuous mode
[  314.830430][T12203] bridge0: port 2(bridge_slave_1) entered blocking state
[  314.837744][T12203] bridge0: port 2(bridge_slave_1) entered disabled state
[  314.845144][T12203] bridge_slave_1: entered allmulticast mode
[  314.851368][ T5782] Bluetooth: hci1: command tx timeout
[  314.853772][T12203] bridge_slave_1: entered promiscuous mode
[  314.864423][T12235] netlink: 'syz.0.2356': attribute type 39 has an invalid length.
[  314.933357][T12203] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  314.966770][T12203] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  315.040494][T12203] team0: Port device team_slave_0 added
[  315.053175][T12203] team0: Port device team_slave_1 added
[  315.076047][T12240] netlink: 14568 bytes leftover after parsing attributes in process `syz.0.2358'.
[  315.099406][T12240] FAULT_INJECTION: forcing a failure.
[  315.099406][T12240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  315.117446][T12240] CPU: 0 PID: 12240 Comm: syz.0.2358 Not tainted syzkaller #0
[  315.117636][T12203] batman_adv: batadv0: Adding interface: batadv_slave_0
[  315.124930][T12240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  315.124961][T12240] Call Trace:
[  315.124970][T12240]  <TASK>
[  315.124977][T12240]  dump_stack_lvl+0x16c/0x230
[  315.125005][T12240]  ? show_regs_print_info+0x20/0x20
[  315.125023][T12240]  ? load_image+0x3b0/0x3b0
[  315.125042][T12240]  ? __lock_acquire+0x7c80/0x7c80
[  315.125062][T12240]  ? snprintf+0xdb/0x120
[  315.125088][T12240]  should_fail_ex+0x39d/0x4d0
[  315.125115][T12240]  _copy_to_user+0x2f/0xa0
[  315.125134][T12240]  simple_read_from_buffer+0xe7/0x150
[  315.125163][T12240]  proc_fail_nth_read+0x1e3/0x250
[  315.125187][T12240]  ? proc_fault_inject_write+0x340/0x340
[  315.125211][T12240]  ? fsnotify_perm+0x271/0x5e0
[  315.125235][T12240]  ? proc_fault_inject_write+0x340/0x340
[  315.125254][T12240]  vfs_read+0x27e/0x920
[  315.125281][T12240]  ? kernel_read+0x1e0/0x1e0
[  315.125302][T12240]  ? __fget_files+0x28/0x4d0
[  315.125323][T12240]  ? __fget_files+0x44a/0x4d0
[  315.125353][T12240]  ? __fdget_pos+0x2a3/0x330
[  315.125370][T12240]  ? ksys_read+0x75/0x250
[  315.125392][T12240]  ksys_read+0x147/0x250
[  315.125416][T12240]  ? vfs_write+0x940/0x940
[  315.125439][T12240]  ? lockdep_hardirqs_on+0x98/0x150
[  315.125463][T12240]  do_syscall_64+0x55/0xb0
[  315.125480][T12240]  ? clear_bhb_loop+0x40/0x90
[  315.125495][T12240]  ? clear_bhb_loop+0x40/0x90
[  315.139712][T12203] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  315.142460][T12240]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  315.142491][T12240] RIP: 0033:0x7f9ff518d5fc
[  315.142508][T12240] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  315.150240][T12203] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  315.153371][T12240] RSP: 002b:00007f9ff5fe4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  315.153392][T12240] RAX: ffffffffffffffda RBX: 00007f9ff53c5fa0 RCX: 00007f9ff518d5fc
[  315.153403][T12240] RDX: 000000000000000f RSI: 00007f9ff5fe40a0 RDI: 0000000000000013
[  315.153414][T12240] RBP: 00007f9ff5fe4090 R08: 0000000000000000 R09: 0000000000000000
[  315.153423][T12240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.153433][T12240] R13: 00007f9ff53c6038 R14: 00007f9ff53c5fa0 R15: 00007ffce1eadd88
[  315.153462][T12240]  </TASK>
[  315.384302][T12203] batman_adv: batadv0: Adding interface: batadv_slave_1
[  315.391355][T12203] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  315.427807][T12203] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  315.531781][T12203] hsr_slave_0: entered promiscuous mode
[  315.549160][T12203] hsr_slave_1: entered promiscuous mode
[  315.561669][T12203] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  315.574228][T12203] Cannot create hsr debugfs directory
[  315.604495][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  315.857011][T12203] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.892774][T12253] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.2362'.
[  315.979167][T12203] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.048422][T12255] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.2363'.
[  316.096768][T12203] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.212178][T12260] netlink: 'syz.3.2365': attribute type 3 has an invalid length.
[  316.219981][T12260] netlink: 201336 bytes leftover after parsing attributes in process `syz.3.2365'.
[  316.236642][T12203] bond0: (slave netdevsim0): Releasing backup interface
[  316.252846][T12203] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode
[  316.264145][T12203] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode
[  316.275738][T12203] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.289837][T12260] netlink: 'syz.3.2365': attribute type 39 has an invalid length.
[  316.453005][T12267] netlink: 'syz.3.2367': attribute type 4 has an invalid length.
[  316.471848][T12267] netlink: 62868 bytes leftover after parsing attributes in process `syz.3.2367'.
[  316.517294][T12203] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  316.527785][T12203] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  316.537895][T12203] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  316.555863][T12203] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  316.709970][T12203] 8021q: adding VLAN 0 to HW filter on device bond0
[  316.730247][T12280] netlink: 'syz.0.2370': attribute type 10 has an invalid length.
[  316.756616][T12280] bridge_slave_1: entered promiscuous mode
[  316.765610][T12280] bridge_slave_1: entered allmulticast mode
[  316.774565][T12280] .`: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  316.817823][T12203] 8021q: adding VLAN 0 to HW filter on device team0
[  316.832602][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.839883][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.856214][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.863353][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.925377][T12203] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  316.943256][ T5782] Bluetooth: hci1: command tx timeout
[  317.159560][T12288] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2372'.
[  317.262012][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  317.268353][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  317.350202][T12203] 8021q: adding VLAN 0 to HW filter on device batadv0
[  317.461894][T12300] netlink: 'syz.1.2374': attribute type 3 has an invalid length.
[  317.476184][T12203] veth0_vlan: entered promiscuous mode
[  317.484649][T12300] netlink: 201336 bytes leftover after parsing attributes in process `syz.1.2374'.
[  317.510254][T12203] veth1_vlan: entered promiscuous mode
[  317.566538][T12203] veth0_macvtap: entered promiscuous mode
[  317.580897][T12203] veth1_macvtap: entered promiscuous mode
[  317.645404][ T5782] Bluetooth: hci3: ISO packet for unknown connection handle 62
[  317.673803][T12203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.689235][T12203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.722112][T12203] batman_adv: batadv0: Interface activated: batadv_slave_0
[  317.735049][T12203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  317.747382][T12203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.759088][T12203] batman_adv: batadv0: Interface activated: batadv_slave_1
[  317.767279][T12302] netlink: 65027 bytes leftover after parsing attributes in process `syz.0.2375'.
[  317.856455][T12203] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.888594][T12203] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.932442][T12203] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.956009][T12203] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  318.133762][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.168858][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.238467][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.248893][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.441005][T12316] veth0_macvtap: left promiscuous mode
[  318.654138][T12328] sctp: [Deprecated]: syz.3.2384 (pid 12328) Use of struct sctp_assoc_value in delayed_ack socket option.
[  318.654138][T12328] Use struct sctp_sack_info instead
[  319.011824][ T5782] Bluetooth: hci1: command tx timeout
[  319.416562][ T5782] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  319.685016][   T50] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  319.695021][   T50] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  319.705767][   T50] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  319.714975][   T50] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  319.722943][   T50] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  319.731028][   T50] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  320.084338][T12350] validate_nla: 5 callbacks suppressed
[  320.084353][T12350] netlink: 'syz.1.2390': attribute type 9 has an invalid length.
[  320.114329][T12353] FAULT_INJECTION: forcing a failure.
[  320.114329][T12353] name failslab, interval 1, probability 0, space 0, times 0
[  320.135928][T12350] __nla_validate_parse: 3 callbacks suppressed
[  320.135942][T12350] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.2390'.
[  320.161000][T12353] CPU: 0 PID: 12353 Comm: syz.3.2391 Not tainted syzkaller #0
[  320.168512][T12353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  320.178586][T12353] Call Trace:
[  320.181891][T12353]  <TASK>
[  320.184831][T12353]  dump_stack_lvl+0x16c/0x230
[  320.189529][T12353]  ? show_regs_print_info+0x20/0x20
[  320.194747][T12353]  ? load_image+0x3b0/0x3b0
[  320.199268][T12353]  ? __might_sleep+0xe0/0xe0
[  320.203883][T12353]  ? __lock_acquire+0x7c80/0x7c80
[  320.208927][T12353]  ? mark_lock+0x94/0x320
[  320.213296][T12353]  should_fail_ex+0x39d/0x4d0
[  320.218036][T12353]  should_failslab+0x9/0x20
[  320.222557][T12353]  slab_pre_alloc_hook+0x59/0x310
[  320.227601][T12353]  ? __local_bh_enable_ip+0x12e/0x1c0
[  320.232999][T12353]  kmem_cache_alloc_node+0x60/0x330
[  320.238218][T12353]  ? __local_bh_enable_ip+0x12e/0x1c0
[  320.243599][T12353]  ? __alloc_skb+0x108/0x2c0
[  320.248214][T12353]  __alloc_skb+0x108/0x2c0
[  320.252647][T12353]  kcm_sendmsg+0x240c/0x2880
[  320.257252][T12353]  ? ___sys_sendmsg+0x1e8/0x290
[  320.262122][T12353]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  320.268229][T12353]  ? aa_sk_perm+0x7fc/0x930
[  320.272758][T12353]  ? aa_af_perm+0x2b0/0x2b0
[  320.277268][T12353]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  320.283700][T12353]  ? kcm_getsockopt+0x280/0x280
[  320.288562][T12353]  ? aa_sock_msg_perm+0x94/0x150
[  320.293509][T12353]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  320.298802][T12353]  ? security_socket_sendmsg+0x80/0xa0
[  320.304274][T12353]  ? kcm_getsockopt+0x280/0x280
[  320.309132][T12353]  ____sys_sendmsg+0x5bf/0x950
[  320.313916][T12353]  ? __asan_memset+0x22/0x40
[  320.318519][T12353]  ? __sys_sendmsg_sock+0x30/0x30
[  320.323549][T12353]  ? __import_iovec+0x3fa/0x860
[  320.328422][T12353]  ? import_iovec+0x73/0xa0
[  320.332943][T12353]  ___sys_sendmsg+0x220/0x290
[  320.337637][T12353]  ? __sys_sendmsg+0x270/0x270
[  320.342452][T12353]  ? __lock_acquire+0x7c80/0x7c80
[  320.347527][T12353]  __se_sys_sendmsg+0x1a5/0x270
[  320.352401][T12353]  ? __x64_sys_sendmsg+0x80/0x80
[  320.357376][T12353]  ? lockdep_hardirqs_on+0x98/0x150
[  320.362597][T12353]  do_syscall_64+0x55/0xb0
[  320.367024][T12353]  ? clear_bhb_loop+0x40/0x90
[  320.371710][T12353]  ? clear_bhb_loop+0x40/0x90
[  320.376396][T12353]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  320.382306][T12353] RIP: 0033:0x7f276c58ebe9
[  320.386725][T12353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.406352][T12353] RSP: 002b:00007f276d3db038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.414785][T12353] RAX: ffffffffffffffda RBX: 00007f276c7c6090 RCX: 00007f276c58ebe9
[  320.422771][T12353] RDX: 0000000000000000 RSI: 0000200000002080 RDI: 0000000000000003
[  320.430752][T12353] RBP: 00007f276d3db090 R08: 0000000000000000 R09: 0000000000000000
[  320.438737][T12353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.446714][T12353] R13: 00007f276c7c6128 R14: 00007f276c7c6090 R15: 00007fff6c601318
[  320.454717][T12353]  </TASK>
[  320.515550][T12343] chnl_net:caif_netlink_parms(): no params data found
[  320.604310][T12343] bridge0: port 1(bridge_slave_0) entered blocking state
[  320.612579][T12343] bridge0: port 1(bridge_slave_0) entered disabled state
[  320.620162][T12343] bridge_slave_0: entered allmulticast mode
[  320.628737][T12343] bridge_slave_0: entered promiscuous mode
[  320.637843][T12343] bridge0: port 2(bridge_slave_1) entered blocking state
[  320.645014][T12343] bridge0: port 2(bridge_slave_1) entered disabled state
[  320.652953][T12343] bridge_slave_1: entered allmulticast mode
[  320.659756][T12343] bridge_slave_1: entered promiscuous mode
[  320.705354][T12343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  320.717766][T12343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  320.756068][T12343] team0: Port device team_slave_0 added
[  320.764241][T12343] team0: Port device team_slave_1 added
[  320.790329][T12343] batman_adv: batadv0: Adding interface: batadv_slave_0
[  320.797640][T12343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  320.825105][T12343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  320.840120][T12343] batman_adv: batadv0: Adding interface: batadv_slave_1
[  320.847128][T12343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  320.874046][T12343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  320.966477][T12343] hsr_slave_0: entered promiscuous mode
[  320.973956][T12343] hsr_slave_1: entered promiscuous mode
[  320.981835][T12343] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  320.993344][T12343] Cannot create hsr debugfs directory
[  321.022351][T12366] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.2394'.
[  321.091317][   T50] Bluetooth: hci1: command tx timeout
[  321.172668][T12369] FAULT_INJECTION: forcing a failure.
[  321.172668][T12369] name failslab, interval 1, probability 0, space 0, times 0
[  321.186095][T12369] CPU: 0 PID: 12369 Comm: syz.3.2395 Not tainted syzkaller #0
[  321.193578][T12369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  321.203657][T12369] Call Trace:
[  321.206948][T12369]  <TASK>
[  321.209896][T12369]  dump_stack_lvl+0x16c/0x230
[  321.214589][T12369]  ? show_regs_print_info+0x20/0x20
[  321.219780][T12369]  ? load_image+0x3b0/0x3b0
[  321.224285][T12369]  ? __lock_acquire+0x7c80/0x7c80
[  321.229316][T12369]  should_fail_ex+0x39d/0x4d0
[  321.233990][T12369]  should_failslab+0x9/0x20
[  321.238597][T12369]  slab_pre_alloc_hook+0x59/0x310
[  321.243628][T12369]  ? ____sys_sendmsg+0x5bf/0x950
[  321.248572][T12369]  ? ___sys_sendmsg+0x220/0x290
[  321.253429][T12369]  ? __se_sys_sendmsg+0x1a5/0x270
[  321.258481][T12369]  kmem_cache_alloc_node+0x60/0x330
[  321.263703][T12369]  ? alloc_vmap_area+0x1c4/0x1c70
[  321.268732][T12369]  alloc_vmap_area+0x1c4/0x1c70
[  321.273599][T12369]  ? vm_map_ram+0xcb0/0xcb0
[  321.278103][T12369]  ? rcu_is_watching+0x15/0xb0
[  321.282870][T12369]  __get_vm_area_node+0x162/0x370
[  321.287895][T12369]  __vmalloc_node_range+0x36e/0x1320
[  321.293179][T12369]  ? netlink_sendmsg+0x5f3/0xbe0
[  321.298110][T12369]  ? netlink_insert+0x106a/0x1370
[  321.303137][T12369]  ? netlink_insert+0x2b3/0x1370
[  321.308067][T12369]  ? netlink_data_ready+0x10/0x10
[  321.313085][T12369]  ? free_vm_area+0x50/0x50
[  321.317586][T12369]  ? netlink_sendmsg+0x5f3/0xbe0
[  321.322513][T12369]  vmalloc+0x79/0x90
[  321.326402][T12369]  ? netlink_sendmsg+0x5f3/0xbe0
[  321.331328][T12369]  netlink_sendmsg+0x5f3/0xbe0
[  321.336085][T12369]  ? lockdep_hardirqs_on+0x98/0x150
[  321.341281][T12369]  ? netlink_getsockopt+0x580/0x580
[  321.346478][T12369]  ? netlink_getsockopt+0x580/0x580
[  321.351669][T12369]  ____sys_sendmsg+0x5bf/0x950
[  321.356433][T12369]  ? __asan_memset+0x22/0x40
[  321.361015][T12369]  ? __sys_sendmsg_sock+0x30/0x30
[  321.366046][T12369]  ? __import_iovec+0x5f2/0x860
[  321.370902][T12369]  ? import_iovec+0x73/0xa0
[  321.375409][T12369]  ___sys_sendmsg+0x220/0x290
[  321.380085][T12369]  ? __sys_sendmsg+0x270/0x270
[  321.384876][T12369]  __se_sys_sendmsg+0x1a5/0x270
[  321.389724][T12369]  ? __x64_sys_sendmsg+0x80/0x80
[  321.394667][T12369]  ? syscall_enter_from_user_mode+0x2e/0x80
[  321.400554][T12369]  do_syscall_64+0x55/0xb0
[  321.404962][T12369]  ? clear_bhb_loop+0x40/0x90
[  321.409626][T12369]  ? clear_bhb_loop+0x40/0x90
[  321.414298][T12369]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  321.420186][T12369] RIP: 0033:0x7f276c58ebe9
[  321.424591][T12369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.444189][T12369] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  321.452592][T12369] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  321.460552][T12369] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  321.468512][T12369] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  321.476492][T12369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.484473][T12369] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  321.492456][T12369]  </TASK>
[  321.507730][T12369] warn_alloc: 1 callbacks suppressed
[  321.507776][T12369] syz.3.2395: vmalloc error: size 213312, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  321.532714][T12369] CPU: 1 PID: 12369 Comm: syz.3.2395 Not tainted syzkaller #0
[  321.536370][T12343] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.540205][T12369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  321.540216][T12369] Call Trace:
[  321.540224][T12369]  <TASK>
[  321.540231][T12369]  dump_stack_lvl+0x16c/0x230
[  321.540259][T12369]  ? show_regs_print_info+0x20/0x20
[  321.540279][T12369]  ? load_image+0x3b0/0x3b0
[  321.540300][T12369]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  321.587650][T12369]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  321.594175][T12369]  warn_alloc+0x210/0x300
[  321.598506][T12369]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  321.604654][T12369]  ? zone_watermark_ok_safe+0x230/0x230
[  321.610207][T12369]  ? __get_vm_area_node+0x17b/0x370
[  321.615409][T12369]  __vmalloc_node_range+0x393/0x1320
[  321.620690][T12369]  ? netlink_insert+0x106a/0x1370
[  321.625721][T12369]  ? netlink_insert+0x2b3/0x1370
[  321.630656][T12369]  ? netlink_data_ready+0x10/0x10
[  321.635678][T12369]  ? free_vm_area+0x50/0x50
[  321.640187][T12369]  ? netlink_sendmsg+0x5f3/0xbe0
[  321.645117][T12369]  vmalloc+0x79/0x90
[  321.649012][T12369]  ? netlink_sendmsg+0x5f3/0xbe0
[  321.653953][T12369]  netlink_sendmsg+0x5f3/0xbe0
[  321.658717][T12369]  ? lockdep_hardirqs_on+0x98/0x150
[  321.663916][T12369]  ? netlink_getsockopt+0x580/0x580
[  321.669118][T12369]  ? netlink_getsockopt+0x580/0x580
[  321.674315][T12369]  ____sys_sendmsg+0x5bf/0x950
[  321.679084][T12369]  ? __asan_memset+0x22/0x40
[  321.683672][T12369]  ? __sys_sendmsg_sock+0x30/0x30
[  321.688699][T12369]  ? __import_iovec+0x5f2/0x860
[  321.693556][T12369]  ? import_iovec+0x73/0xa0
[  321.698061][T12369]  ___sys_sendmsg+0x220/0x290
[  321.702737][T12369]  ? __sys_sendmsg+0x270/0x270
[  321.707546][T12369]  __se_sys_sendmsg+0x1a5/0x270
[  321.712393][T12369]  ? __x64_sys_sendmsg+0x80/0x80
[  321.717343][T12369]  ? syscall_enter_from_user_mode+0x2e/0x80
[  321.723239][T12369]  do_syscall_64+0x55/0xb0
[  321.727650][T12369]  ? clear_bhb_loop+0x40/0x90
[  321.732317][T12369]  ? clear_bhb_loop+0x40/0x90
[  321.736986][T12369]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  321.742880][T12369] RIP: 0033:0x7f276c58ebe9
[  321.747315][T12369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.766933][T12369] RSP: 002b:00007f276d3fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  321.775354][T12369] RAX: ffffffffffffffda RBX: 00007f276c7c5fa0 RCX: 00007f276c58ebe9
[  321.783327][T12369] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  321.791296][T12369] RBP: 00007f276d3fc090 R08: 0000000000000000 R09: 0000000000000000
[  321.799259][T12369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.807222][T12369] R13: 00007f276c7c6038 R14: 00007f276c7c5fa0 R15: 00007fff6c601318
[  321.815243][T12369]  </TASK>
[  321.836302][T12369] Mem-Info:
[  321.839963][T12369] active_anon:9486 inactive_anon:0 isolated_anon:0
[  321.839963][T12369]  active_file:18322 inactive_file:39941 isolated_file:0
[  321.839963][T12369]  unevictable:768 dirty:343 writeback:0
[  321.839963][T12369]  slab_reclaimable:10444 slab_unreclaimable:96690
[  321.839963][T12369]  mapped:24776 shmem:1361 pagetables:513
[  321.839963][T12369]  sec_pagetables:0 bounce:0
[  321.839963][T12369]  kernel_misc_reclaimable:0
[  321.839963][T12369]  free:1342946 free_pcp:7767 free_cma:0
[  321.846350][   T50] Bluetooth: hci4: command tx timeout
[  321.896018][T12369] Node 0 active_anon:37944kB inactive_anon:0kB active_file:73288kB inactive_file:159560kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:99104kB dirty:1372kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11252kB pagetables:2052kB sec_pagetables:0kB all_unreclaimable? no
[  321.929112][T12369] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  321.964307][T12369] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  321.992474][T12369] lowmem_reserve[]: 0 2525 2526 2526 2526
[  321.998282][T12369] Node 0 DMA32 free:1463392kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:37888kB inactive_anon:0kB active_file:73288kB inactive_file:158228kB unevictable:1536kB writepending:1368kB present:3129332kB managed:2589592kB mlocked:0kB bounce:0kB free_pcp:7860kB local_pcp:1532kB free_cma:0kB
[  322.029005][T12369] lowmem_reserve[]: 0 0 1 1 1
[  322.033822][T12369] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1332kB unevictable:0kB writepending:4kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  322.063119][T12369] lowmem_reserve[]: 0 0 0 0 0
[  322.067984][T12369] Node 1 Normal free:3893028kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:23268kB local_pcp:13312kB free_cma:0kB
[  322.101286][T12369] lowmem_reserve[]: 0 0 0 0 0
[  322.106148][T12369] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  322.119443][T12369] Node 0 DMA32: 2*4kB (ME) 11*8kB (ME) 522*16kB (ME) 691*32kB (UME) 390*64kB (UME) 341*128kB (UME) 183*256kB (UME) 87*512kB (UME) 43*1024kB (UM) 12*2048kB (UM) 294*4096kB (UM) = 1463392kB
[  322.139126][T12369] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  322.149578][T12343] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.151628][T12369] Node 1 Normal: 245*4kB (UME) 70*8kB (UME) 38*16kB (UME) 50*32kB (UME) 18*64kB (UME) 6*128kB (U) 1*256kB (E) 2*512kB (ME) 1*1024kB (E) 1*2048kB (E) 948*4096kB (M) = 3893028kB
[  322.186506][T12369] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  322.197997][T12369] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  322.208428][T12369] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  322.218722][T12369] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  322.229393][T12369] 59624 total pagecache pages
[  322.235322][T12369] 0 pages in swap cache
[  322.239637][T12369] Free swap  = 124996kB
[  322.244099][T12369] Total swap = 124996kB
[  322.250387][T12369] 2097051 pages RAM
[  322.254352][T12369] 0 pages HighMem/MovableOnly
[  322.259183][T12369] 416139 pages reserved
[  322.269844][T12369] 0 pages cma reserved
[  322.338337][T12343] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.565023][T12343] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.830847][T12380] netlink: 'syz.3.2400': attribute type 9 has an invalid length.
[  322.871510][T12380] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.2400'.
[  322.940989][   T50] Bluetooth: hci2: ISO packet for unknown connection handle 62
[  323.690567][T12343] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  323.715223][T12343] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  323.771873][T12343] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  323.892061][T12343] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  323.972562][   T50] Bluetooth: hci4: command tx timeout
[  323.973160][T12398] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.2405'.
[  324.021079][T12403] netlink: 'syz.2.2406': attribute type 3 has an invalid length.
[  324.051843][T12403] netlink: 201336 bytes leftover after parsing attributes in process `syz.2.2406'.
[  324.205825][T12403] netlink: 'syz.2.2406': attribute type 39 has an invalid length.
[  324.239154][T12409] netlink: 'syz.1.2407': attribute type 9 has an invalid length.
[  324.247544][T12409] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.2407'.
[  324.358084][T12411] Dead loop on virtual device ip6_vti0, fix it urgently!
[  324.609961][T12343] 8021q: adding VLAN 0 to HW filter on device bond0
[  324.647084][T12343] 8021q: adding VLAN 0 to HW filter on device team0
[  324.716163][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  324.723375][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  324.789744][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.796962][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.959051][   T50] Bluetooth: hci1: ISO packet for unknown connection handle 62
[  325.093375][T12423] netlink: 'syz.3.2412': attribute type 7 has an invalid length.
[  325.222514][ T8270] 
[  325.224902][ T8270] ======================================================
[  325.231954][ T8270] WARNING: possible circular locking dependency detected
[  325.239008][ T8270] syzkaller #0 Not tainted
[  325.243439][ T8270] ------------------------------------------------------
[  325.250471][ T8270] kworker/u4:11/8270 is trying to acquire lock:
[  325.256731][ T8270] ffff88807eff8d00 (team->team_lock_key){+.+.}-{3:3}, at: team_del_slave+0x32/0x1c0
[  325.266179][ T8270] 
[  325.266179][ T8270] but task is already holding lock:
[  325.273563][ T8270] ffff88805d768768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: ieee80211_remove_interfaces+0x292/0x680
[  325.283963][ T8270] 
[  325.283963][ T8270] which lock already depends on the new lock.
[  325.283963][ T8270] 
[  325.294360][ T8270] 
[  325.294360][ T8270] the existing dependency chain (in reverse order) is:
[  325.303368][ T8270] 
[  325.303368][ T8270] -> #1 (&rdev->wiphy.mtx){+.+.}-{3:3}:
[  325.311124][ T8270]        __mutex_lock+0x129/0xcc0
[  325.316170][ T8270]        ieee80211_open+0x144/0x200
[  325.321375][ T8270]        __dev_open+0x2bc/0x430
[  325.326227][ T8270]        dev_open+0xab/0x170
[  325.330815][ T8270]        team_add_slave+0xae7/0x2660
[  325.336094][ T8270]        do_setlink+0xe14/0x3fb0
[  325.341037][ T8270]        rtnl_newlink+0x175b/0x2020
[  325.346229][ T8270]        rtnetlink_rcv_msg+0x7c7/0xf10
[  325.351684][ T8270]        netlink_rcv_skb+0x216/0x480
[  325.356960][ T8270]        netlink_unicast+0x751/0x8d0
[  325.362239][ T8270]        netlink_sendmsg+0x8c1/0xbe0
[  325.367521][ T8270]        ____sys_sendmsg+0x5bf/0x950
[  325.372802][ T8270]        ___sys_sendmsg+0x220/0x290
[  325.377993][ T8270]        __se_sys_sendmsg+0x1a5/0x270
[  325.383361][ T8270]        do_syscall_64+0x55/0xb0
[  325.388290][ T8270]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  325.394700][ T8270] 
[  325.394700][ T8270] -> #0 (team->team_lock_key){+.+.}-{3:3}:
[  325.402711][ T8270]        __lock_acquire+0x2ddb/0x7c80
[  325.408083][ T8270]        lock_acquire+0x197/0x410
[  325.413101][ T8270]        __mutex_lock+0x129/0xcc0
[  325.418126][ T8270]        team_del_slave+0x32/0x1c0
[  325.423236][ T8270]        team_device_event+0x28d/0xa20
[  325.428690][ T8270]        notifier_call_chain+0x197/0x390
[  325.434323][ T8270]        unregister_netdevice_many_notify+0xf36/0x1810
[  325.441171][ T8270]        unregister_netdevice_queue+0x324/0x360
[  325.447404][ T8270]        _cfg80211_unregister_wdev+0x16b/0x580
[  325.453553][ T8270]        ieee80211_remove_interfaces+0x496/0x680
[  325.459875][ T8270]        ieee80211_unregister_hw+0x5d/0x2a0
[  325.465762][ T8270]        mac80211_hwsim_del_radio+0x274/0x450
[  325.471830][ T8270]        hwsim_exit_net+0x585/0x640
[  325.477027][ T8270]        cleanup_net+0x6f4/0xb90
[  325.481965][ T8270]        process_scheduled_works+0xa45/0x15b0
[  325.488027][ T8270]        worker_thread+0xa55/0xfc0
[  325.493131][ T8270]        kthread+0x2fa/0x390
[  325.497708][ T8270]        ret_from_fork+0x48/0x80
[  325.502643][ T8270]        ret_from_fork_asm+0x11/0x20
[  325.507930][ T8270] 
[  325.507930][ T8270] other info that might help us debug this:
[  325.507930][ T8270] 
[  325.518146][ T8270]  Possible unsafe locking scenario:
[  325.518146][ T8270] 
[  325.525585][ T8270]        CPU0                    CPU1
[  325.530975][ T8270]        ----                    ----
[  325.536328][ T8270]   lock(&rdev->wiphy.mtx);
[  325.540833][ T8270]                                lock(team->team_lock_key);
[  325.548112][ T8270]                                lock(&rdev->wiphy.mtx);
[  325.555132][ T8270]   lock(team->team_lock_key);
[  325.559894][ T8270] 
[  325.559894][ T8270]  *** DEADLOCK ***
[  325.559894][ T8270] 
[  325.568029][ T8270] 5 locks held by kworker/u4:11/8270:
[  325.573390][ T8270]  #0: ffff888017873938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  325.584273][ T8270]  #1: ffffc90018d7fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  325.594822][ T8270]  #2: ffffffff8dfaf510 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x136/0xb90
[  325.604242][ T8270]  #3: ffffffff8dfbc348 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_unregister_hw+0x55/0x2a0
[  325.614088][ T8270]  #4: ffff88805d768768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: ieee80211_remove_interfaces+0x292/0x680
[  325.624907][ T8270] 
[  325.624907][ T8270] stack backtrace:
[  325.630800][ T8270] CPU: 1 PID: 8270 Comm: kworker/u4:11 Not tainted syzkaller #0
[  325.638442][ T8270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  325.648517][ T8270] Workqueue: netns cleanup_net
[  325.653292][ T8270] Call Trace:
[  325.656568][ T8270]  <TASK>
[  325.659497][ T8270]  dump_stack_lvl+0x16c/0x230
[  325.664178][ T8270]  ? load_image+0x3b0/0x3b0
[  325.668681][ T8270]  ? show_regs_print_info+0x20/0x20
[  325.673891][ T8270]  ? print_circular_bug+0x12b/0x1a0
[  325.679091][ T8270]  check_noncircular+0x2bd/0x3c0
[  325.684032][ T8270]  ? print_deadlock_bug+0x5d0/0x5d0
[  325.689222][ T8270]  ? lockdep_lock+0xe0/0x220
[  325.693818][ T8270]  ? _find_first_zero_bit+0xd3/0x100
[  325.699105][ T8270]  __lock_acquire+0x2ddb/0x7c80
[  325.703951][ T8270]  ? trace_call_bpf+0xc3/0x690
[  325.708738][ T8270]  ? trace_call_bpf+0xc3/0x690
[  325.713499][ T8270]  ? verify_lock_unused+0x140/0x140
[  325.718693][ T8270]  ? __bpf_trace_bpf_trace_printk+0x100/0x100
[  325.724767][ T8270]  ? verify_lock_unused+0x140/0x140
[  325.729967][ T8270]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  325.735784][ T8270]  lock_acquire+0x197/0x410
[  325.740304][ T8270]  ? team_del_slave+0x32/0x1c0
[  325.745089][ T8270]  ? __might_sleep+0xe0/0xe0
[  325.749699][ T8270]  ? read_lock_is_recursive+0x20/0x20
[  325.755093][ T8270]  __mutex_lock+0x129/0xcc0
[  325.759608][ T8270]  ? team_del_slave+0x32/0x1c0
[  325.764369][ T8270]  ? __lock_acquire+0x7c80/0x7c80
[  325.769388][ T8270]  ? rcu_is_watching+0x15/0xb0
[  325.774165][ T8270]  ? trace_contention_end+0x39/0xe0
[  325.779368][ T8270]  ? __mutex_lock+0x304/0xcc0
[  325.784042][ T8270]  ? team_del_slave+0x32/0x1c0
[  325.788799][ T8270]  ? mutex_lock_nested+0x20/0x20
[  325.793733][ T8270]  ? bond_netdev_event+0xe1/0xef0
[  325.798758][ T8270]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  325.804390][ T8270]  ? bond_ipsec_offload_ok+0x410/0x410
[  325.809859][ T8270]  team_del_slave+0x32/0x1c0
[  325.814448][ T8270]  team_device_event+0x28d/0xa20
[  325.819383][ T8270]  notifier_call_chain+0x197/0x390
[  325.824498][ T8270]  unregister_netdevice_many_notify+0xf36/0x1810
[  325.830853][ T8270]  ? trace_event_raw_event_lock+0x230/0x230
[  325.836786][ T8270]  ? unregister_netdevice_many+0x20/0x20
[  325.842433][ T8270]  ? kernfs_remove_by_name_ns+0x117/0x150
[  325.848155][ T8270]  ? __lock_acquire+0x7c80/0x7c80
[  325.853194][ T8270]  unregister_netdevice_queue+0x324/0x360
[  325.858926][ T8270]  ? list_netdevice+0x730/0x730
[  325.863784][ T8270]  ? kernfs_remove_by_name_ns+0x117/0x150
[  325.869507][ T8270]  _cfg80211_unregister_wdev+0x16b/0x580
[  325.875149][ T8270]  ieee80211_remove_interfaces+0x496/0x680
[  325.880965][ T8270]  ? ieee80211_do_stop+0x1db0/0x1db0
[  325.886249][ T8270]  ? rcu_is_watching+0x15/0xb0
[  325.891045][ T8270]  ieee80211_unregister_hw+0x5d/0x2a0
[  325.896418][ T8270]  mac80211_hwsim_del_radio+0x274/0x450
[  325.901963][ T8270]  ? rhashtable_remove_fast+0xbf0/0xbf0
[  325.907514][ T8270]  hwsim_exit_net+0x585/0x640
[  325.912191][ T8270]  ? hwsim_init_net+0x90/0x90
[  325.916868][ T8270]  ? __ip_vs_dev_cleanup_batch+0x238/0x250
[  325.922676][ T8270]  cleanup_net+0x6f4/0xb90
[  325.927094][ T8270]  ? ops_free_list+0x3b0/0x3b0
[  325.931864][ T8270]  ? _raw_spin_unlock_irq+0x23/0x50
[  325.937063][ T8270]  ? process_scheduled_works+0x957/0x15b0
[  325.942778][ T8270]  ? process_scheduled_works+0x957/0x15b0
[  325.948493][ T8270]  process_scheduled_works+0xa45/0x15b0
[  325.954067][ T8270]  ? assign_work+0x400/0x400
[  325.958660][ T8270]  ? assign_work+0x39e/0x400
[  325.963256][ T8270]  worker_thread+0xa55/0xfc0
[  325.967845][ T8270]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  325.973738][ T8270]  ? _raw_spin_unlock+0x40/0x40
[  325.978601][ T8270]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  325.984520][ T8270]  kthread+0x2fa/0x390
[  325.988601][ T8270]  ? pr_cont_work+0x560/0x560
[  325.993289][ T8270]  ? kthread_blkcg+0xd0/0xd0
[  325.997886][ T8270]  ret_from_fork+0x48/0x80
[  326.002300][ T8270]  ? kthread_blkcg+0xd0/0xd0
[  326.006890][ T8270]  ret_from_fork_asm+0x11/0x20
[  326.011673][ T8270]  </TASK>
[  326.053488][   T50] Bluetooth: hci4: command tx timeout
[  326.063290][ T8270] team0: Port device wlan1 removed
[  326.164633][T12343] 8021q: adding VLAN 0 to HW filter on device batadv0
[  326.194530][T12343] veth0_vlan: entered promiscuous mode
[  326.204171][T12343] veth1_vlan: entered promiscuous mode
[  326.226025][T12343] veth0_macvtap: entered promiscuous mode
[  326.233988][T12343] veth1_macvtap: entered promiscuous mode
[  326.247041][T12343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  326.258007][T12343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.267903][T12343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  326.278340][T12343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.289536][T12343] batman_adv: batadv0: Interface activated: batadv_slave_0
[  326.299184][T12343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  326.310127][T12343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.320027][T12343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  326.330487][T12343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.341618][T12343] batman_adv: batadv0: Interface activated: batadv_slave_1
[  326.354301][T12343] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  326.363100][T12343] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  326.371987][T12343] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  326.380682][T12343] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  326.407732][T12343] ieee80211 phy23: Selected rate control algorithm 'minstrel_ht'
[  326.426080][ T3423] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.427626][T12343] ieee80211 phy24: Selected rate control algorithm 'minstrel_ht'
[  326.438909][ T3423] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.459585][ T3423] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.467780][ T3423] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  327.605541][ T8270] hsr_slave_0: left promiscuous mode
[  327.611414][ T8270] hsr_slave_1: left promiscuous mode
[  327.618569][ T8270] veth1_macvtap: left promiscuous mode
[  327.624176][ T8270] veth0_macvtap: left promiscuous mode
[  327.672192][ T8270] team0 (unregistering): Port device geneve0 removed
[  327.765719][ T8270] team0 (unregistering): Port device team_slave_1 removed
[  327.790988][ T8270] team0 (unregistering): Port device team_slave_0 removed
[  327.825738][ T8270] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  327.834229][ T8270] bond_slave_1 (unregistering): left promiscuous mode
[  327.841021][ T8270] bond_slave_1 (unregistering): left allmulticast mode
[  327.863935][ T8270] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  327.872778][ T8270] bond_slave_0 (unregistering): left promiscuous mode
[  327.879575][ T8270] bond_slave_0 (unregistering): left allmulticast mode
[  327.902359][ T8270] .` (unregistering): (slave bridge_slave_1): Releasing backup interface
[  327.911573][ T8270] bridge_slave_1 (unregistering): left promiscuous mode
[  327.918543][ T8270] bridge_slave_1 (unregistering): left allmulticast mode
[  328.055879][ T8270] .` (unregistering): Released all slaves
[  328.132811][   T50] Bluetooth: hci4: command tx timeout