last executing test programs:

2.750426298s ago: executing program 2 (id=5356):
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000780)={r1, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000004c0)=[0x0, 0x0, 0x0], ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f0000000500)=[0x0], &(0x7f0000000540)=[0x0], 0x0, 0xb6, &(0x7f0000000580)=[{}], 0x8, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x57, 0x8, 0x8, &(0x7f0000000640)}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="06000000040000000800000007"], 0x50)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x48510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r4)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r7 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r7, &(0x7f0000000680)={&(0x7f0000000140)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000180)='W', 0xfe8a}], 0x1}, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d0002847ea622fb564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
sendmsg$inet(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000300)="6000000022007f029e607dd75fcb520002a124b244de91f7f414adcf41bfafdd1b1e93c6292aefa3ca89563a63fb94b2584ca2faa20f2c308b0fe298acec10e3019e1e26e6efd0166e6c1b01132e5423294ac2f4d53c3870c3068461957e5357", 0x60}], 0x1, 0x0, 0x0, 0x6}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1d, 0x14, &(0x7f0000000e00)=ANY=[@ANYRES64=r8, @ANYRES64=r0, @ANYBLOB="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"], &(0x7f0000000a00)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x5f, '\x00', r2, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r9}, 0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000840)={0xffffffffffffffff, 0x58, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0}}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000c80)={@fallback=r1, r5, 0x15, 0x0, 0x0, @void, @value=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000900)={&(0x7f0000000100)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000240)="29971fffe27f57b353608c4f7c43ad5cd6eaef15d7d247eefb2fb290a62d104b70ac82b82ab5b65fb29b6ffe2964fcffee78999713efb8c8afab9fc2bba373f8a4ccc91bd4589bda037b95f722367d92d8aa98e5c2f45bcaa7d04adbd5159c0ecb691fe2e7b6dfeec012e11ccf", 0x6d}, {&(0x7f00000002c0)="9a96ec2773a101aa665b1022b43f1a6439344e9ca6a1de33b111724c4d535d084f2a24b440059da36305561002dece9bcc1d97a36f5e359f7c740c366ce484200e1100e38b932de17845d1e372123ea8d75638ea06cad806e2c61ae3ff70ced9a83980e21ba911d02647c17e88058d4781b2fe2c971b819bcbb75b2642af289b6232c1bbe1e0a03616808a9d34104eea725e99bd67054430bb2ebc312062f890d983d04d4e2774978731aec1e109b57c23be69cdd2ed52046690d9dcd318a8fb7053376ace5a23c3ef33d2c0f186c13f870edf5fc25cf194bfe4131b55b5859b", 0xe0}, {&(0x7f00000003c0)="db8647924a5fd52c675ab4ae53f921f60a240e86a76977315f5209c46f97a46263e73916ee8296bc28ed9823f038e63de44bcc8d2c816ea5faacb3ab0262a588763f7670e8e8c394e87d0d6994af69a1c477ab18d4ecdfa61f8a23713615c9bf8d07fe176ba6e4c62802f5060794f43962ee5d5ff49caef4aa7c50d2e424e6dd081f1d94004cd1dd04b2bf8594f2a13d78d75f5ecc4caf5fce072700e85bd0", 0x9f}], 0x3, &(0x7f0000000880)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @remote, @private=0xa010100}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}], 0x58}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x1f, 0xc, &(0x7f00000001c0)=@framed={{}, [@printk={@lu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r13 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r13, 0x1, 0x3e, &(0x7f00000002c0)=r12, 0x161)

2.51641605s ago: executing program 1 (id=5357):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r0, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x6, 0x5, &(0x7f0000000840)=ANY=[@ANYBLOB="180000000effd001000000000400070007010000080700007500fcff0000000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0xfa, &(0x7f0000000a00)=""/250, 0x0, 0x0, '\x00', r1}, 0x94) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x8000, <r2=>0x0}, 0x8) (async)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000540)=@bpf_ext={0x1c, 0x25, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, {}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ringbuf_query, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @ringbuf_query], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000380)='GPL\x00', 0x2, 0x7d, &(0x7f00000003c0)=""/125, 0x41000, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0x5, 0x5}, 0x8, 0x10, &(0x7f0000000480)={0x5, 0x1, 0x800, 0x20}, 0x10, 0x1c473, 0xffffffffffffffff, 0x1, &(0x7f00000004c0)=[0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000500)=[{0x3, 0x3, 0x6, 0x6}], 0x10, 0x7}, 0x94) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3}, 0x50) (async)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0x1c, &(0x7f00000011c0)=ANY=[@ANYBLOB="1808000000000000000000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014e0ffffb6030000000000008500000005000000bf0900000000000035090100070000000000000000074300b7020000000000007b9a00fe000000006609000005000000c6aaf0fff1000000bf8600000000000007080000f8ffffffbfa40000000000000704000025a33b8f8869a81ccd004b0d1cf0ffffff6700000008000000182900007ea1aa0ecb4fdc4e1e6366715e40a4be248c2aea", @ANYRES32=r5, @ANYBLOB="0000000000000000b7050000080000004608f0ff760000005e9200000000000056080000010000008500000007000000b7000000000000009500000001030000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
close(r4) (async)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000600)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x4) (async)
r7 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000640)={0x0, 0x9}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0x4, &(0x7f0000000040)=@raw=[@generic={0xf, 0x7, 0x4, 0x4, 0x66a}, @call={0x85, 0x0, 0x0, 0x51}, @btf_id={0x18, 0x1, 0x3, 0x0, 0x2}], &(0x7f0000000080)='syzkaller\x00', 0x2, 0xb5, &(0x7f00000000c0)=""/181, 0x100, 0x4, '\x00', r1, @fallback=0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0xa, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x5, 0x3, 0x6, 0x4}, 0x10, r2, r3, 0x0, &(0x7f0000000680)=[0x1, r4, r6, r7], 0x0, 0x10, 0x400}, 0x94) (async)
r8 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001900599c6d0e000091d028ef8020ab0700040005"], 0xfe33)

2.243897804s ago: executing program 1 (id=5358):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x0, &(0x7f0000000000)="378303076844268cb89e14f008004ee0ffff00febabec41177fb86dd1402e000030c", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200007bfd000000850000004100000085000000a00000009500"/40], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
socket$kcm(0x2, 0x5, 0x84)
socket$kcm(0x11, 0x200000000000002, 0x300)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0f000000040000000400002012000000000000002d2acd522599e9843c7d3b042062cedff9ce6aade418374bb65d241007d0f2b721d5f87c37ca238f52247d7cad93f8451dc0fcdd42", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r7}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20)
close(r7)
recvmsg$unix(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r6, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r9 = socket$kcm(0xa, 0x3, 0x3a)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000008c0)={r3, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r10=>0x0, 0x0, 0x0, 0x0, 0x1, 0x7, &(0x7f00000003c0)=[0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xd8, &(0x7f00000005c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000680), &(0x7f0000000740), 0x8, 0x7d, 0x8, 0x8, &(0x7f0000000780)}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x6, 0xa, &(0x7f00000002c0)=@raw=[@btf_id={0x18, 0x9, 0x3, 0x0, 0x2}, @printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}], &(0x7f0000000340)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x2, '\x00', r10, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000900)={0x2, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000940)=[{0x4, 0x2, 0x1, 0xb}], 0x10, 0x8}, 0x94)
unlink(&(0x7f0000000200)='./file0\x00')
sendmsg$kcm(r9, &(0x7f00000031c0)={&(0x7f00000006c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000b40)="b5640a", 0x3}], 0x1, &(0x7f0000000580)=ANY=[@ANYRES8=r8], 0x18}, 0x0)

2.227163815s ago: executing program 3 (id=5359):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x6, 0xf, 0x8, 0x41}, 0x50)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)
r1 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}, 0x4044}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0002}}}, 0x80, 0x0}, 0x24000008)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r5 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x3e, &(0x7f00000002c0)=r4, 0x161)
sendmsg$inet(r5, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x20}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000380), 0xff7a}], 0x1, &(0x7f0000007880)=ANY=[@ANYBLOB="1100000000000000004003000100000000000000000000001c00000000000000000f00fd08000000", @ANYRES32=0x0, @ANYBLOB="ac1414bbe0000001000000001c0000000000000000078f0208000000", @ANYRES32=0x0, @ANYBLOB="a005000000000000000000002400000000000000000000000700000094040000441088000000000000000000000000000000000011000000000000000000f0c2d63c67000000000000000000"], 0x98}, 0x0)

1.969121718s ago: executing program 0 (id=5360):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0, 0x1a, 0x0, 0x1}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x76, &(0x7f0000000000)=r3, 0x8)
gettid()
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001540))
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x5760, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f00000006c0)=ANY=[@ANYBLOB="8f03000000001260007538e486dd630ace2211042f00fe80000000000000875a65059ff57b00fec0"], 0xcfa4)

1.832942025s ago: executing program 0 (id=5361):
r0 = perf_event_open(&(0x7f0000000a00)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x4}, 0x100e64, 0xc78, 0x0, 0x6}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8946, 0x0)
r1 = socket$kcm(0xa, 0x3, 0x3a)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="12000000040000000400000012000000000000000a5a4c6bbca34307aa2939fec22d8c6e48d331cc25f179b00f51a653ad28b2bdcc58c7b4003da7af7fd19148195d26481c68c98afed15081989d5a979c253128338615fe0c9e0592bad62001e68dcd46ee7b4e3916a915a0c3c676e0e63bd8eaab9bfe2883b2e0000000000000004ef55b9bad313de49dba114be85095e99d2a45ace6342a86552561a05f6ebfb4d553ba35732044713b35e0fbf5d00cf213fa53044fb0ce312a9f", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r3, &(0x7f0000000040)}, 0x20)
r4 = socket$kcm(0x1e, 0x2, 0x0)
write$cgroup_subtree(r4, 0x0, 0xfdef)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xfe80000000000000, 0xac14140c}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)='\x00\x00', 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x48283, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000100)={'\x00', 0x52d35ce30131f272})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000800000000000000002a000000180100002020732500000000002020207b1af8ff000000ffffb702000008000000b7030000100000008500000071000000950000000000000024e5d8413713a5b81495569b613ec4250ce7bee5406b01a180a43fc07c52fd05a16c140d3521bb62b63f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r6, 0x609, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1f, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000feffffff8500000023000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8efffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x11}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$kcm(r2, 0x0, 0x4804)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0xb, 0x6, 0x2, 0x0, 0x0, 0xffff, 0x10010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x2, 0x1}, 0x40, 0x0, 0x0, 0x5, 0x7, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xfb90}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x8)
ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f0000000980))
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f00000003c0)={0x1, 0x80, 0xff, 0x5, 0x5, 0x2, 0x0, 0xffffffffffffffff, 0x2000, 0x9, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f00000001c0), 0x5}, 0x1002, 0xfffffffffffffffa, 0x5, 0x1, 0x5, 0x100, 0x3, 0x0, 0x5})
sendmsg$inet(r7, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r7, 0x1, 0x41, &(0x7f0000000040), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="b9ff05000000008c9c18ed0f6fd2", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc}, 0x50)

1.624083346s ago: executing program 2 (id=5362):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000002000000000000000000000d03000000000000000000000110000000800000000000000000000003000000000200000002"], 0x0, 0x4e}, 0x20)
r0 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="0209ff0802000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES16], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x3a, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0xc000000, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240))
ioctl$TUNGETVNETLE(r1, 0x40047459, &(0x7f0000000180))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="0400000069c1a27b9d8010000000000000009500920010000000912300552304fcacd621dd5a72f52c24eba192"], &(0x7f0000000080)='syzkaller\x00', 0x8, 0x92, &(0x7f0000000540)=""/146, 0x41000}, 0x94)

1.596354317s ago: executing program 3 (id=5363):
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='net_prio.prioidx\x00', 0x0, 0x0)
ioctl$TUNGETVNETLE(r0, 0x800454dd, &(0x7f0000000040))
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000080)={'ipvlan0\x00'})
ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f00000000c0)=r0)
r1 = socket$kcm(0x29, 0x5, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0x400454d0, 0x20)
r3 = perf_event_open$cgroup(&(0x7f0000000140)={0x3, 0x80, 0x8, 0x0, 0xa8, 0xde, 0x0, 0x4, 0x4, 0x14, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x0, 0x8000}, 0x140, 0x7, 0x1, 0x6, 0xda8, 0x8, 0x7fff}, r0, 0x8, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xc0000, 0x0)
ioctl$TUNSETVNETLE(r4, 0x400454dc, &(0x7f0000000200)=0x1)
openat$cgroup_devices(r0, &(0x7f0000000240)='devices.deny\x00', 0x2, 0x0)
ioctl$TUNSETVNETBE(r2, 0x400454de, &(0x7f0000000280)=0x1)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x24000, 0x0)
ioctl$TUNSETLINK(r5, 0x400454cd, 0x200)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001300)={r0, &(0x7f0000000300)="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"}, 0x20)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000001340), 0x101000, 0x0)
ioctl$TUNSETVNETBE(r6, 0x400454de, &(0x7f0000001380)=0x1)
r7 = syz_clone(0x0, &(0x7f0000001480)="30b76128f0ad879b2598217203e6056128311e14b90950d1660708a7feb9055b708ca4408c4875caf4fa8e49406b4945a2208060f306be7a5f54d20273696678a48a822c7e7f929e1e9ff76c27c1daba4ab5d0c7803a3089aee7a0eefe11b00257933440e37a28df65bad07e555c73d4a4abccf7590da8da0d5a363c0bef5f2772e3e82c766499b6315d99edc5fe72ed5db1aa7ebf332676817d6002a3738fae35de6af66b34fc79828bd1a291a688a0097b42b871c6e040a1ce4ee09ff4ff487706001e3158bc4425a682ad0f3cfbd8de2517c7e72612bcd6c02b3fd17855631763ae22cd2c223fa2dcf2cfaeec18e49d47b8ec", 0xf4, &(0x7f0000001580), &(0x7f00000015c0), &(0x7f0000001600)="769c")
r8 = perf_event_open(&(0x7f0000001640)={0x3, 0x80, 0x6, 0x0, 0x5, 0xce, 0x0, 0xfffffffffffffffb, 0x1, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0xfbf, 0x8}, 0x40, 0x0, 0xd, 0x4, 0x709bd506, 0x100, 0x80, 0x0, 0x1}, 0x0, 0x3, r0, 0x2)
perf_event_open(&(0x7f0000001400)={0x3, 0x80, 0x6, 0x0, 0xf8, 0x1, 0x0, 0xe5d, 0x8000, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000013c0), 0xd}, 0x800, 0x6, 0x3ff0000, 0x1, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8}, r7, 0x5, r8, 0x1)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f00000016c0), 0x2301, 0x0)
ioctl$TUNSETSTEERINGEBPF(r9, 0x800454e0, &(0x7f0000001700)=r0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000001740)={'pim6reg0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
sendmsg$kcm(r1, &(0x7f0000001c80)={&(0x7f0000001780)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast]}, 0x80, &(0x7f00000018c0)=[{&(0x7f0000001800)="bc0acd28131a5f1397e2a2a6291a76affb3f1f2567059e3ce6da7fc427dbe476e356f9566d555352d971dc52e6e87e01aa9a5706a4a26fc6a8fa9dfed1a83b3796f1df232ca2543776eb1d555f5f8daa62e0892b45fbf42043e91c7119e1215124903f40087fe1fec6c59f43e7c5276ae2ab1d97b08083b06089e69ef7886413b6cf4988614bd0a06175ec75b19a3782a371718f54e291912a27", 0x9a}], 0x1, &(0x7f0000001900)=[{0xc8, 0x84, 0x7ff, "f142e8e236952ea3866793e61e8b76c85c16cbc5846f6b9c2a2f3189cd7d259c962cceabfb0994d5dd5e7c9c3d1157d5b2f034c76d758ea0dcc872b3d943beaee878f7422b6b2c1da1454a2af44783723515dae8d53a2576edc795561615e03bd6f609b65a78662e379280ce314d52372fece79cc2fb64eb05c1645007b505ee50b85bcc2668d5af257b40a28e7b78349578a81b954dc2f74f123ad118d165c25a8619ff5ab543ad2bcfb9a0c511587462"}, {0x108, 0x10b, 0xa9f, "92addabb4aa06550d89715681df6bf9da9bc119bfdeafdd46336a54147440107cce0f98d37bb8fa7bdfb92f57163c5423b2a03a970b57477025374b412af453b0cccf2290e906a95bf0b90aa6fffdf9b954e555a00111d686d1520202f716c5886a6285f5e60e4db9ec2dd5833fe0cb3703455f757418696681d7a53cd2cf19cc906bee12f884f7f15c4b7d1cfaf2fff720b38a5044044dad0020883de79efa3d7694b8827789341bba5ccaefe0ceecf452e547410d3418b28333ebf730197f41050c28577d3c62598ca2fc40a6fae23e6000f683a48905a3d8ef123b36b2e333b35f277e10c078dc138a95ae61ec730e66cf3b3"}, {0x110, 0x115, 0x4, "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"}, {0x68, 0x19, 0xc5, "11d927fea530cf504ee8f9a853e954139f70876d3e29ff04c66f22118f1038e97d2e862f2a8dd13fe3f780f60f63b61ccd048883de25ebb6a1516756bf85aa1e0f9e7211f516f0f685b4d224ef2ee8fb6236"}], 0x348}, 0x4040800)
ioctl$TUNGETVNETBE(r5, 0x800454df, &(0x7f0000001cc0)=0x1)
ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000001d00), 0x400000, 0x0)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000001d80)={0x1, 0x4, [@empty, @local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @broadcast]})

1.507895112s ago: executing program 1 (id=5364):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18020c000000000000000000004000008500000017"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x28602, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, 0x0)
write$cgroup_int(r0, &(0x7f0000000240)=0x2, 0x12)

1.288005764s ago: executing program 3 (id=5365):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xf, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000090010000000000003"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x1, 0xf, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000900)=r1, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
r5 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x64099, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b81, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x9, 0x9, 0x2, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x6, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x1, 0x3a0, 0x5}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1800, r8}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000640)={r8, &(0x7f0000000080), &(0x7f0000000540)=""/240}, 0x20)
ioctl$SIOCSIFHWADDR(r4, 0xc0189436, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000000000000000000000000000000105000000100000000000000000000003000000000100000002"], 0x0, 0x53}, 0x28)
r9 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r9, 0x890b, &(0x7f0000000000))
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xc, 0x1b, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000055a60701000000000000000018110000", @ANYRES16=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000100000550901000000000095002500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000009000000850000000600000018110000", @ANYRES32=r10, @ANYRES64], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.255772915s ago: executing program 2 (id=5366):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000040000000800000014100000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000040000000000003cab990cd3f0883d583bbc000050dde156000000000000000000780322ac1bdf363ade73d4f4370af8cc7f787b000e26a0595c005fd3ea2880aa57239c7dba69e90cd6ff052dd92ab11dc06c767ee0b711212bea63bd900a5de7b8f3585c5462fedb254640f9be75bd617a3864e6a1c4589042b1b6d9a576ed4feffeac8c336f637658f4c3f2aa1885c7d3240b2b0ea639af5a3e1e2a153689be3a6f5dce00"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000040007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000005c0)={r1}, 0xc)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40a08, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0xc}, 0x8c01, 0x0, 0x0, 0x0, 0x800}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
r2 = socket$kcm(0x15, 0x5, 0x0)
sendmsg$inet(r2, &(0x7f0000001900)={&(0x7f0000000440)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0x40)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x2, 0x0, 0xe, 0x6, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x4, 0x5, 0x2, 0xfffffffffffffffd, 0x0, 0x3, 0x0, 0x0, 0x0, 0xe13}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x23, &(0x7f0000000040), 0xf7)

1.235439016s ago: executing program 1 (id=5367):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0xc, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10003}, 0x94)
socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x8, 0x1, 0x9, 0xfc, 0x0, 0x5, 0x10000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3, 0x6}, 0x0, 0x2, 0xffffffff, 0x0, 0x4000000000000000, 0x63, 0xfffd}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107383, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = socket$kcm(0x2, 0x3, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8923, &(0x7f00000000c0)={'bond_slave_0\x00', @random="0137013310ff"})
sendmsg$inet(r1, &(0x7f0000001000)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000700)=[{&(0x7f0000001040)="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", 0x42d}, {&(0x7f0000001b80)="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", 0x614}], 0x2, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x26}, @loopback}}}], 0x20}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0700000004000000180000000100000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x12, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000100000000000000001812", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r4)
recvmsg$kcm(r6, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x2000)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="1400000037000b63d2", 0x9}, {&(0x7f00000000c0)="06081833d0062d04944103", 0xb}], 0x2}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r7)
syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000780)={0x2, 0x80, 0xed, 0x40, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380), 0x7}, 0x10000, 0x0, 0x3, 0x1, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff407", 0x2c}], 0x1, 0x0, 0x0, 0x35}, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r9)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000300)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB="c9f265df51dfd3af4e5d5ee772442da70000000000000000a84d56fbcabfabd64d97b8e60b7bb112829cfe786723df16068740cc8817ecebf49af0669ebbe7dc00000000", @ANYRES64=0x0], 0x20)
r10 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r10, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000001)

1.223362967s ago: executing program 0 (id=5368):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x45, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x605, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x4a5ba, 0x0, @perf_bp={0x0}, 0x100410, 0x200, 0x6, 0x7, 0x9, 0x4009, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_config_ext={0x3, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="650a0009000000030018000000000000000000000000000000950000000000002a25350000000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x80)
close(0xffffffffffffffff) (async)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xb, 0xff, 0x24932, 0x7f, 0x1, 0x1}, 0x50) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xb, 0xff, 0x24932, 0x7f, 0x1, 0x1}, 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r0}, &(0x7f0000000000)=0x7d8, &(0x7f0000000180)='%ps    \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000100)=0x7d8, &(0x7f0000000140)='%pi6   \x00'}, 0x20) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000100)=0x7d8, &(0x7f0000000140)='%pi6   \x00'}, 0x20)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000480)={0x0, &(0x7f0000000200)=""/197, &(0x7f0000000380), &(0x7f0000000300), 0x2, r1}, 0x38) (async)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000480)={0x0, &(0x7f0000000200)=""/197, &(0x7f0000000380), &(0x7f0000000300), 0x2, r1}, 0x38)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x8901, 0x0) (async)
openat$ppp(0xffffffffffffff9c, 0x0, 0x8901, 0x0)
socketpair(0x2, 0x6, 0x1, &(0x7f0000000000))
socketpair(0x1, 0x1, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x100, 0x2000000, 0xd384ed8852b2f03d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
socketpair$unix(0x1, 0x1, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) (async)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
r2 = gettid()
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000380)=r2, 0x12)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f3, &(0x7f0000000300)='\xf4\x82Do\xa6\xdb\xcc~\x04V\xef\x83d9\xc9\r\xe843\xdd\x99\xf4\x1fP\xf1\xdc\xe3\"\xdf.b\xafh\xa3C\x00\x00?3\xe1\x055\xd8\xfb\'\xc4\xe7\x00\x00\x00\x00\x00\x00\x00\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x5452, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8922, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000580)={0x0, 0x2dd5145f, &(0x7f0000000080)=[{&(0x7f00000005c0)="c018030031000b12d25a80648c2594f9020800000000000000200600052a82c1f337153e370248078000f41700d1bd", 0x33fe0}], 0x100000000000011d, 0x0, 0x0, 0x3000000}, 0x240040d4) (async)
sendmsg$kcm(r4, &(0x7f0000000580)={0x0, 0x2dd5145f, &(0x7f0000000080)=[{&(0x7f00000005c0)="c018030031000b12d25a80648c2594f9020800000000000000200600052a82c1f337153e370248078000f41700d1bd", 0x33fe0}], 0x100000000000011d, 0x0, 0x0, 0x3000000}, 0x240040d4)

995.462299ms ago: executing program 2 (id=5369):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0, 0x1a, 0x0, 0x1}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x76, &(0x7f0000000000)=r3, 0x8)
gettid()
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001540))
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x5760, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f00000006c0)=ANY=[@ANYBLOB="8f03000000001260007538e486dd630ace2211042f00fe80000000000000875a65059ff57b00fec0"], 0xcfa4)

816.310358ms ago: executing program 0 (id=5370):
r0 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x7}, 0x0, 0x8, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
r1 = socket$kcm(0xa, 0x6, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000400)={r2, &(0x7f0000000340)}, 0x20)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x6, 0x43a1bd76, 0x7, 0x9, 0x6, 0x6, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/31], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10d, 0xe, 0x0, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)}, 0x0)
r5 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r5, 0x0, 0x24000059)
perf_event_open(0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x2a801400, 0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
r7 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r7, 0x84, 0x9, &(0x7f0000000380), 0x98)
write$cgroup_subtree(r6, &(0x7f00000001c0)=ANY=[], 0x4)
sendmsg$inet(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000200)="5c00000052006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038021d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d49380e78ff6a12fd4ab9d54a2b6a97a577ae18c8199", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x10)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000070000008908630b4d7d11"], 0x18, 0x5}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, &(0x7f0000000040)=0x700, 0x0}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)

754.504701ms ago: executing program 2 (id=5371):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x6, 0xf, 0x8, 0x41}, 0x50)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)
r1 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}, 0x4044}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0002}}}, 0x80, 0x0}, 0x24000008)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r5 = socket$kcm(0x2, 0x1000000000000002, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x3e, &(0x7f00000002c0)=r4, 0x161)
sendmsg$inet(r5, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x20}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000380), 0xff7a}], 0x1, &(0x7f0000007880)=ANY=[@ANYBLOB="1100000000000000004003000100000000000000000000001c00000000000000000f00fd08000000", @ANYRES32=0x0, @ANYBLOB="ac1414bbe0000001000000001c0000000000000000078f0208000000", @ANYRES32=0x0, @ANYBLOB="a00500000000000000000000240000000000000000000000070000009404000044108800000000000000000000000000000000001100000000000000000060c2d63c67000000000000000000"], 0x98}, 0x0)

743.250712ms ago: executing program 3 (id=5372):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f0000000040)=@raw=[@map_fd={0x18, 0x8}, @alu={0x4, 0x1, 0xf, 0x3d0b37618c15e2cf, 0x7, 0x18, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @exit, @jmp={0x5, 0x0, 0xb, 0x1, 0x6, 0x1, 0xfffffffffffffffc}, @generic={0x7, 0x1, 0xb, 0xb, 0x5}, @map_fd={0x18, 0x5, 0x1, 0x0, 0x1}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x2}], &(0x7f00000000c0)='GPL\x00', 0x4, 0x3a, &(0x7f0000000100)=""/58, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000180)={0x3, 0xa, 0x401, 0x7}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000280)={r0}, 0xc)
r1 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x5, 0xb, 0xff, 0x2, 0x0, 0x80000000, 0xd, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2f6a, 0x1, @perf_bp={&(0x7f00000002c0), 0x3}, 0x2, 0x2, 0x6, 0x2, 0x4, 0xa5, 0x8, 0x0, 0x2}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0xb)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0x0, r1, 0x0, 0x3b, &(0x7f0000000000)='/proc\x04\x00ys/net/ipv4\x00\x00s/\xef\n\\\x9e\xd2\xd6\x8e \xf44.\xab%\xf8\xff\xff\xff\xff\xff\xff\xff=\x11\xc8\xdd\x05\xcc\xd2\xf1d\'%\x11c\x91\'o'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

609.990969ms ago: executing program 3 (id=5373):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x88202, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f0000000180)='%ps    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000400008500000061000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000040000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r2, 0x18000000000002a0, 0xe80, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

604.239469ms ago: executing program 1 (id=5374):
write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000)='FROZEN\x00', 0x7)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
r1 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000480)="00d0954942b108d5185389ebdd8a5036c2fa43f51c5afb9821984d", 0x0, 0x0, 0x0, 0x8}, 0x31)

232.110808ms ago: executing program 0 (id=5375):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18020c000000000000000000004000008500000017"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x28602, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000780)={'pim6reg0\x00', 0x400})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, 0x0)
write$cgroup_int(r0, &(0x7f0000000240)=0x2, 0x12)

214.094579ms ago: executing program 3 (id=5376):
r0 = perf_event_open(&(0x7f0000000a00)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x4}, 0x100e64, 0xc78, 0x0, 0x6}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8946, 0x0)
r1 = socket$kcm(0xa, 0x3, 0x3a)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="12000000040000000400000012000000000000000a5a4c6bbca34307aa2939fec22d8c6e48d331cc25f179b00f51a653ad28b2bdcc58c7b4003da7af7fd19148195d26481c68c98afed15081989d5a979c253128338615fe0c9e0592bad62001e68dcd46ee7b4e3916a915a0c3c676e0e63bd8eaab9bfe2883b2e0000000000000004ef55b9bad313de49dba114be85095e99d2a45ace6342a86552561a05f6ebfb4d553ba35732044713b35e0fbf5d00cf213fa53044fb0ce312a9f", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r3, &(0x7f0000000040)}, 0x20)
r4 = socket$kcm(0x1e, 0x2, 0x0)
write$cgroup_subtree(r4, 0x0, 0xfdef)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xfe80000000000000, 0xac14140c}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)='\x00\x00', 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x48283, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000100)={'\x00', 0x52d35ce30131f272})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000800000000000000002a000000180100002020732500000000002020207b1af8ff000000ffffb702000008000000b7030000100000008500000071000000950000000000000024e5d8413713a5b81495569b613ec4250ce7bee5406b01a180a43fc07c52fd05a16c140d3521bb62b63f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r6, 0x609, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1f, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000feffffff8500000023000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8efffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x11}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$kcm(r2, 0x0, 0x4804)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0xb, 0x6, 0x2, 0x0, 0x0, 0xffff, 0x10010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x2, 0x1}, 0x40, 0x0, 0x0, 0x5, 0x7, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xfb90}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x8)
ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f0000000980))
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f00000003c0)={0x1, 0x80, 0xff, 0x5, 0x5, 0x2, 0x0, 0xffffffffffffffff, 0x2000, 0x9, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f00000001c0), 0x5}, 0x1002, 0xfffffffffffffffa, 0x5, 0x1, 0x5, 0x100, 0x3, 0x0, 0x5})
sendmsg$inet(r7, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r7, 0x1, 0x41, &(0x7f0000000040), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="b9ff05000000008c9c18ed0f6fd2", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc}, 0x50)

205.446319ms ago: executing program 1 (id=5377):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f, 0x2, @perf_config_ext={0x40000000000000, 0x4}, 0x0, 0x701, 0x43a1bd76, 0x0, 0x5, 0x6, 0xa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0xf, &(0x7f00000002c0), 0x4)
sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x44, &(0x7f0000000640), 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x24}, 0x94)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000006c0)={&(0x7f0000000040)={0x2, 0x4e23, @private=0xa010101}, 0x10, &(0x7f0000000140)=[{&(0x7f00000000c0)="e0", 0x1}], 0x1}, 0xc000)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xfe123, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_config_ext={0xd, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3, 0x1}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x18, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000001000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_bp={0x0, 0x8}, 0x40, 0x0, 0x0, 0x0, 0x7, 0x0, 0xffff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r5)
perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x66137, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24001000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffc)
openat$tun(0xffffffffffffff9c, 0x0, 0x123001, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d0002847ea622fb564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r6, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001ec0)=""/4096, 0x1000}], 0x1}, 0x10000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40))

70.830977ms ago: executing program 0 (id=5378):
r0 = socket$kcm(0xa, 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x9, [@enum64={0x7, 0x1, 0x0, 0x13, 0x0, 0x2, [{0x3, 0x1, 0x6}]}]}, {0x0, [0x0, 0x61, 0x0, 0x61, 0x5f, 0x61, 0x5f]}}, 0x0, 0x39, 0x0, 0x1, 0x7}, 0x28)
sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000001)
sendmsg$inet(r0, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x20040008)
r1 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cpu.max\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f00000000c0)=0x2, 0x12)

0s ago: executing program 2 (id=5379):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0, 0x1a, 0x0, 0x1}, 0x28)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x76, &(0x7f0000000000)=r3, 0x8)
gettid()
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001540))
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x5760, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f00000006c0)=ANY=[@ANYBLOB="8f03000000001260007538e486dd630ace2211042f00fe80000000000000875a65059ff57b00fec0"], 0xcfa4)

kernel console output (not intermixed with test programs):

ve hsr0): Error -22 calling dev_set_mtu
[  972.233293][T22292] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  972.271039][T22292] CPU: 0 PID: 22292 Comm: syz.2.4647 Not tainted syzkaller #0
[  972.278567][T22292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  972.288650][T22292] Call Trace:
[  972.291953][T22292]  <TASK>
[  972.294914][T22292]  dump_stack_lvl+0x18c/0x250
[  972.299636][T22292]  ? show_regs_print_info+0x20/0x20
[  972.304877][T22292]  ? load_image+0x400/0x400
[  972.309437][T22292]  sysfs_warn_dup+0x8e/0xa0
[  972.314064][T22292]  sysfs_do_create_link_sd+0xc0/0x110
[  972.319564][T22292]  device_add_class_symlinks+0x1cf/0x240
[  972.325249][T22292]  device_add+0x507/0xc20
[  972.329634][T22292]  wiphy_register+0x1dad/0x2ae0
[  972.334551][T22292]  ? cfg80211_event_work+0x40/0x40
[  972.339696][T22292]  ? minstrel_ht_alloc+0x88a/0x990
[  972.344868][T22292]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  972.350974][T22292]  ieee80211_register_hw+0x3464/0x4250
[  972.356589][T22292]  ? ieee80211_tasklet_handler+0x20/0x20
[  972.362269][T22292]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  972.368219][T22292]  ? __debug_object_init+0xec/0x450
[  972.373481][T22292]  ? __asan_memset+0x22/0x40
[  972.378131][T22292]  ? __hrtimer_init+0x186/0x270
[  972.383036][T22292]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  972.388860][T22292]  ? mac80211_hwsim_free+0x220/0x220
[  972.394187][T22292]  ? rcu_is_watching+0x15/0xb0
[  972.399001][T22292]  ? kstrndup+0xbd/0x140
[  972.403478][T22292]  hwsim_new_radio_nl+0xdc9/0x1a90
[  972.408636][T22292]  ? __nla_validate+0x50/0x50
[  972.413378][T22292]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  972.419762][T22292]  ? __nla_parse+0x40/0x50
[  972.424227][T22292]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  972.430597][T22292]  genl_family_rcv_msg_doit+0x211/0x310
[  972.436186][T22292]  ? end_current_label_crit_section+0x170/0x170
[  972.442468][T22292]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  972.448408][T22292]  ? bpf_lsm_capable+0x9/0x10
[  972.453130][T22292]  ? security_capable+0x89/0xb0
[  972.458037][T22292]  genl_rcv_msg+0x619/0x7a0
[  972.462584][T22292]  ? genl_bind+0x360/0x360
[  972.467037][T22292]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  972.473412][T22292]  ? ref_tracker_free+0x690/0x840
[  972.478482][T22292]  netlink_rcv_skb+0x241/0x4d0
[  972.483295][T22292]  ? genl_bind+0x360/0x360
[  972.487748][T22292]  ? netlink_ack+0x1180/0x1180
[  972.492566][T22292]  ? __lock_acquire+0x7d40/0x7d40
[  972.497637][T22292]  ? down_read+0x1ac/0x2e0
[  972.502091][T22292]  genl_rcv+0x28/0x40
[  972.506107][T22292]  netlink_unicast+0x751/0x8d0
[  972.510926][T22292]  netlink_sendmsg+0x8d0/0xbf0
[  972.515890][T22292]  ? netlink_getsockopt+0x590/0x590
[  972.521577][T22292]  ? aa_sock_msg_perm+0x94/0x150
[  972.526552][T22292]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  972.531965][T22292]  ? security_socket_sendmsg+0x80/0xa0
[  972.537436][T22292]  ? netlink_getsockopt+0x590/0x590
[  972.542644][T22292]  ____sys_sendmsg+0x5ba/0x960
[  972.547413][T22292]  ? __asan_memset+0x22/0x40
[  972.552014][T22292]  ? __sys_sendmsg_sock+0x30/0x30
[  972.557029][T22292]  ? __import_iovec+0x5f2/0x850
[  972.561896][T22292]  ? import_iovec+0x73/0xa0
[  972.566395][T22292]  ___sys_sendmsg+0x2a6/0x360
[  972.571158][T22292]  ? __sys_sendmsg+0x2a0/0x2a0
[  972.575965][T22292]  __se_sys_sendmsg+0x1c2/0x2b0
[  972.580810][T22292]  ? __x64_sys_sendmsg+0x80/0x80
[  972.585765][T22292]  ? lockdep_hardirqs_on+0x98/0x150
[  972.590964][T22292]  do_syscall_64+0x55/0xa0
[  972.595472][T22292]  ? clear_bhb_loop+0x40/0x90
[  972.600241][T22292]  ? clear_bhb_loop+0x40/0x90
[  972.604916][T22292]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  972.610841][T22292] RIP: 0033:0x7fde1af9c799
[  972.615256][T22292] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  972.635206][T22292] RSP: 002b:00007fde1bd73028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  972.643618][T22292] RAX: ffffffffffffffda RBX: 00007fde1b216180 RCX: 00007fde1af9c799
[  972.651582][T22292] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[  972.659546][T22292] RBP: 00007fde1b032c99 R08: 0000000000000000 R09: 0000000000000000
[  972.667602][T22292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  972.675566][T22292] R13: 00007fde1b216218 R14: 00007fde1b216180 R15: 00007fffa17ec478
[  972.683559][T22292]  </TASK>
[  972.757033][T22012] 8021q: adding VLAN 0 to HW filter on device batadv0
[  972.886463][T22012] veth0_vlan: entered promiscuous mode
[  972.991692][T22012] veth1_vlan: entered promiscuous mode
[  973.085875][T22326] FAULT_INJECTION: forcing a failure.
[  973.085875][T22326] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  973.132253][T22326] CPU: 0 PID: 22326 Comm: syz.2.4655 Not tainted syzkaller #0
[  973.133426][T22012] veth0_macvtap: entered promiscuous mode
[  973.139752][T22326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  973.151498][T22012] veth1_macvtap: entered promiscuous mode
[  973.155639][T22326] Call Trace:
[  973.164677][T22326]  <TASK>
[  973.167629][T22326]  dump_stack_lvl+0x18c/0x250
[  973.172341][T22326]  ? show_regs_print_info+0x20/0x20
[  973.175250][T22012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  973.177552][T22326]  ? load_image+0x400/0x400
[  973.188077][T22012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.192436][T22326]  ? __lock_acquire+0x7d40/0x7d40
[  973.192469][T22326]  should_fail_ex+0x39d/0x4d0
[  973.192497][T22326]  prepare_alloc_pages+0x1e2/0x5f0
[  973.192527][T22326]  __alloc_pages+0x134/0x460
[  973.192547][T22326]  ? zone_statistics+0x170/0x170
[  973.192561][T22326]  ? do_raw_spin_lock+0x11f/0x2c0
[  973.192592][T22326]  ? __rwlock_init+0x150/0x150
[  973.192610][T22326]  ? __mod_lruvec_page_state+0xa5/0x410
[  973.192640][T22326]  pte_alloc_one+0x84/0x530
[  973.192660][T22326]  ? pfn_modify_allowed+0x560/0x560
[  973.192682][T22326]  ? __pud_alloc+0x1f0/0x1f0
[  973.192708][T22326]  __pte_alloc+0x22/0x2a0
[  973.192736][T22326]  handle_mm_fault+0x3ff8/0x4c00
[  973.192757][T22326]  ? handle_mm_fault+0xe7/0x4c00
[  973.192789][T22326]  ? numa_migrate_prep+0x350/0x350
[  973.192817][T22326]  ? lock_chain_count+0x20/0x20
[  973.192841][T22326]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  973.192861][T22326]  do_user_addr_fault+0x730/0x12c0
[  973.192906][T22326]  exc_page_fault+0x64/0x100
[  973.192931][T22326]  asm_exc_page_fault+0x26/0x30
[  973.192950][T22326] RIP: 0010:__put_user_4+0x11/0x20
[  973.192970][T22326] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb
[  973.192985][T22326] RSP: 0018:ffffc90003587e80 EFLAGS: 00050206
[  973.193003][T22326] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000000
[  973.193016][T22326] RDX: 0000000000000000 RSI: ffffffff8acadae0 RDI: ffffffff8b1c85a0
[  973.193029][T22326] RBP: 0000000000000004 R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd
[  973.193039][T22326] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000000
[  973.193050][T22326] R13: 0000200000000000 R14: 0000000000000026 R15: 0000000000000005
[  973.193078][T22326]  __sys_socketpair+0xb8/0x550
[  973.376223][T22326]  __x64_sys_socketpair+0x9b/0xb0
[  973.381258][T22326]  do_syscall_64+0x55/0xa0
[  973.385679][T22326]  ? clear_bhb_loop+0x40/0x90
[  973.390354][T22326]  ? clear_bhb_loop+0x40/0x90
[  973.395028][T22326]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  973.400962][T22326] RIP: 0033:0x7fde1af9c799
[  973.405380][T22326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  973.425154][T22326] RSP: 002b:00007fde1bdb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  973.433569][T22326] RAX: ffffffffffffffda RBX: 00007fde1b215fa0 RCX: 00007fde1af9c799
[  973.441708][T22326] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  973.449694][T22326] RBP: 00007fde1bdb5090 R08: 0000000000000000 R09: 0000000000000000
[  973.457745][T22326] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  973.465706][T22326] R13: 00007fde1b216038 R14: 00007fde1b215fa0 R15: 00007fffa17ec478
[  973.473687][T22326]  </TASK>
[  973.511594][T22012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  973.541860][T22012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.563355][T22012] batman_adv: batadv0: Interface activated: batadv_slave_0
[  973.584409][T22012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  973.610914][T22012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.627273][T22012] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  973.638202][T22012] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.650472][T22012] batman_adv: batadv0: Interface activated: batadv_slave_1
[  973.669972][T22329] netlink: 'syz.0.4656': attribute type 4 has an invalid length.
[  973.698258][T22012] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  973.730991][T22012] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  973.739857][T22012] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  973.810239][T22012] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  973.850637][T22341] netlink: 176 bytes leftover after parsing attributes in process `syz.0.4661'.
[  973.861330][T22339] C: renamed from team_slave_0 (while UP)
[  973.883794][T22339] netlink: 'syz.2.4660': attribute type 3 has an invalid length.
[  973.901621][T22339] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4660'.
[  973.936965][T22339] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  974.345733][ T1131] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  974.357859][ T1131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  974.402979][T22352] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.4663'.
[  974.436262][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  974.456864][T22352] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  974.476703][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  974.517692][T22352] CPU: 1 PID: 22352 Comm: syz.0.4663 Not tainted syzkaller #0
[  974.525208][T22352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  974.535286][T22352] Call Trace:
[  974.538578][T22352]  <TASK>
[  974.541525][T22352]  dump_stack_lvl+0x18c/0x250
[  974.546411][T22352]  ? show_regs_print_info+0x20/0x20
[  974.551649][T22352]  ? load_image+0x400/0x400
[  974.556191][T22352]  sysfs_warn_dup+0x8e/0xa0
[  974.560715][T22352]  sysfs_do_create_link_sd+0xc0/0x110
[  974.566108][T22352]  device_add_class_symlinks+0x1cf/0x240
[  974.571777][T22352]  device_add+0x507/0xc20
[  974.576140][T22352]  wiphy_register+0x1dad/0x2ae0
[  974.581038][T22352]  ? cfg80211_event_work+0x40/0x40
[  974.586216][T22352]  ? minstrel_ht_alloc+0x88a/0x990
[  974.591364][T22352]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  974.597467][T22352]  ieee80211_register_hw+0x3464/0x4250
[  974.602980][T22352]  ? ieee80211_tasklet_handler+0x20/0x20
[  974.608663][T22352]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  974.614583][T22352]  ? __debug_object_init+0xec/0x450
[  974.619816][T22352]  ? __asan_memset+0x22/0x40
[  974.624438][T22352]  ? __hrtimer_init+0x186/0x270
[  974.629310][T22352]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  974.635080][T22352]  ? mac80211_hwsim_free+0x220/0x220
[  974.640646][T22352]  ? rcu_is_watching+0x15/0xb0
[  974.645437][T22352]  ? kstrndup+0xbd/0x140
[  974.649693][T22352]  hwsim_new_radio_nl+0xdc9/0x1a90
[  974.654830][T22352]  ? __nla_validate+0x50/0x50
[  974.659652][T22352]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  974.666168][T22352]  ? __nla_parse+0x40/0x50
[  974.670582][T22352]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  974.676912][T22352]  genl_family_rcv_msg_doit+0x211/0x310
[  974.682456][T22352]  ? end_current_label_crit_section+0x170/0x170
[  974.688869][T22352]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  974.694767][T22352]  ? bpf_lsm_capable+0x9/0x10
[  974.699445][T22352]  ? security_capable+0x89/0xb0
[  974.704302][T22352]  genl_rcv_msg+0x619/0x7a0
[  974.708806][T22352]  ? genl_bind+0x360/0x360
[  974.713218][T22352]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  974.719557][T22352]  netlink_rcv_skb+0x241/0x4d0
[  974.724417][T22352]  ? genl_bind+0x360/0x360
[  974.729273][T22352]  ? netlink_ack+0x1180/0x1180
[  974.734050][T22352]  ? __lock_acquire+0x7d40/0x7d40
[  974.739245][T22352]  ? net_generic+0x1e/0x240
[  974.743872][T22352]  ? down_read+0x1ac/0x2e0
[  974.748284][T22352]  genl_rcv+0x28/0x40
[  974.752265][T22352]  netlink_unicast+0x751/0x8d0
[  974.757037][T22352]  netlink_sendmsg+0x8d0/0xbf0
[  974.761803][T22352]  ? netlink_getsockopt+0x590/0x590
[  974.767006][T22352]  ? aa_sock_msg_perm+0x94/0x150
[  974.771955][T22352]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  974.777246][T22352]  ? security_socket_sendmsg+0x80/0xa0
[  974.782698][T22352]  ? netlink_getsockopt+0x590/0x590
[  974.787894][T22352]  ____sys_sendmsg+0x5ba/0x960
[  974.792666][T22352]  ? __asan_memset+0x22/0x40
[  974.797343][T22352]  ? __sys_sendmsg_sock+0x30/0x30
[  974.802399][T22352]  ? __import_iovec+0x5f2/0x850
[  974.807257][T22352]  ? import_iovec+0x73/0xa0
[  974.811768][T22352]  ___sys_sendmsg+0x2a6/0x360
[  974.816447][T22352]  ? __sys_sendmsg+0x2a0/0x2a0
[  974.821245][T22352]  __se_sys_sendmsg+0x1c2/0x2b0
[  974.826200][T22352]  ? __x64_sys_sendmsg+0x80/0x80
[  974.831158][T22352]  ? lockdep_hardirqs_on+0x98/0x150
[  974.836352][T22352]  do_syscall_64+0x55/0xa0
[  974.840767][T22352]  ? clear_bhb_loop+0x40/0x90
[  974.845450][T22352]  ? clear_bhb_loop+0x40/0x90
[  974.850138][T22352]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  974.856031][T22352] RIP: 0033:0x7fd421d9c799
[  974.860444][T22352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  974.880309][T22352] RSP: 002b:00007fd422c1f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  974.888721][T22352] RAX: ffffffffffffffda RBX: 00007fd422016180 RCX: 00007fd421d9c799
[  974.896773][T22352] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[  974.904996][T22352] RBP: 00007fd421e32c99 R08: 0000000000000000 R09: 0000000000000000
[  974.912985][T22352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  974.920953][T22352] R13: 00007fd422016218 R14: 00007fd422016180 R15: 00007ffd2e8fe158
[  974.928950][T22352]  </TASK>
[  975.057903][T22362] FAULT_INJECTION: forcing a failure.
[  975.057903][T22362] name failslab, interval 1, probability 0, space 0, times 0
[  975.078956][T22362] CPU: 0 PID: 22362 Comm: syz.1.4664 Not tainted syzkaller #0
[  975.086492][T22362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  975.096586][T22362] Call Trace:
[  975.099900][T22362]  <TASK>
[  975.102900][T22362]  dump_stack_lvl+0x18c/0x250
[  975.107639][T22362]  ? show_regs_print_info+0x20/0x20
[  975.112870][T22362]  ? load_image+0x400/0x400
[  975.117411][T22362]  ? __might_sleep+0xe0/0xe0
[  975.122028][T22362]  ? __lock_acquire+0x7d40/0x7d40
[  975.127080][T22362]  should_fail_ex+0x39d/0x4d0
[  975.131803][T22362]  should_failslab+0x9/0x20
[  975.136337][T22362]  slab_pre_alloc_hook+0x59/0x310
[  975.141395][T22362]  kmem_cache_alloc+0x5a/0x2d0
[  975.146167][T22362]  ? ptlock_alloc+0x20/0x70
[  975.150695][T22362]  ptlock_alloc+0x20/0x70
[  975.155034][T22362]  pte_alloc_one+0xcc/0x530
[  975.159549][T22362]  ? pfn_modify_allowed+0x560/0x560
[  975.164761][T22362]  ? __pud_alloc+0x1f0/0x1f0
[  975.169348][T22362]  __pte_alloc+0x22/0x2a0
[  975.173685][T22362]  handle_mm_fault+0x3ff8/0x4c00
[  975.178617][T22362]  ? handle_mm_fault+0xe7/0x4c00
[  975.183556][T22362]  ? numa_migrate_prep+0x350/0x350
[  975.188665][T22362]  ? lock_chain_count+0x20/0x20
[  975.193513][T22362]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  975.198789][T22362]  do_user_addr_fault+0x730/0x12c0
[  975.203909][T22362]  exc_page_fault+0x64/0x100
[  975.208505][T22362]  asm_exc_page_fault+0x26/0x30
[  975.213379][T22362] RIP: 0010:__put_user_4+0x11/0x20
[  975.218486][T22362] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb
[  975.238120][T22362] RSP: 0018:ffffc9000378fe80 EFLAGS: 00050206
[  975.244483][T22362] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000000
[  975.252550][T22362] RDX: 0000000000000000 RSI: ffffffff8acadae0 RDI: ffffffff8b1c85a0
[  975.260613][T22362] RBP: 0000000000000004 R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd
[  975.268584][T22362] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000000
[  975.276560][T22362] R13: 0000200000000000 R14: 0000000000000026 R15: 0000000000000005
[  975.284549][T22362]  __sys_socketpair+0xb8/0x550
[  975.289322][T22362]  __x64_sys_socketpair+0x9b/0xb0
[  975.294345][T22362]  do_syscall_64+0x55/0xa0
[  975.298844][T22362]  ? clear_bhb_loop+0x40/0x90
[  975.303516][T22362]  ? clear_bhb_loop+0x40/0x90
[  975.308191][T22362]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  975.314085][T22362] RIP: 0033:0x7f587939c799
[  975.318493][T22362] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  975.338196][T22362] RSP: 002b:00007f587a337028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  975.346633][T22362] RAX: ffffffffffffffda RBX: 00007f5879615fa0 RCX: 00007f587939c799
[  975.354602][T22362] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  975.362564][T22362] RBP: 00007f587a337090 R08: 0000000000000000 R09: 0000000000000000
[  975.370526][T22362] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  975.378502][T22362] R13: 00007f5879616038 R14: 00007f5879615fa0 R15: 00007ffdc3912298
[  975.386492][T22362]  </TASK>
[  976.269720][T22403] FAULT_INJECTION: forcing a failure.
[  976.269720][T22403] name failslab, interval 1, probability 0, space 0, times 0
[  976.309544][T22403] CPU: 1 PID: 22403 Comm: syz.1.4675 Not tainted syzkaller #0
[  976.317062][T22403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  976.327155][T22403] Call Trace:
[  976.330461][T22403]  <TASK>
[  976.333416][T22403]  dump_stack_lvl+0x18c/0x250
[  976.338135][T22403]  ? show_regs_print_info+0x20/0x20
[  976.343362][T22403]  ? load_image+0x400/0x400
[  976.347899][T22403]  ? __might_sleep+0xe0/0xe0
[  976.352532][T22403]  ? __lock_acquire+0x7d40/0x7d40
[  976.357600][T22403]  should_fail_ex+0x39d/0x4d0
[  976.362316][T22403]  should_failslab+0x9/0x20
[  976.366853][T22403]  slab_pre_alloc_hook+0x59/0x310
[  976.371930][T22403]  kmem_cache_alloc+0x5a/0x2d0
[  976.376726][T22403]  ? __anon_vma_prepare+0x68/0x430
[  976.381876][T22403]  __anon_vma_prepare+0x68/0x430
[  976.386854][T22403]  ? _raw_spin_unlock+0x28/0x40
[  976.391747][T22403]  ? __pte_alloc+0x113/0x2a0
[  976.396377][T22403]  handle_mm_fault+0x401d/0x4c00
[  976.401343][T22403]  ? handle_mm_fault+0xe7/0x4c00
[  976.406322][T22403]  ? numa_migrate_prep+0x350/0x350
[  976.411504][T22403]  ? lock_chain_count+0x20/0x20
[  976.416411][T22403]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  976.421754][T22403]  do_user_addr_fault+0x730/0x12c0
[  976.426919][T22403]  exc_page_fault+0x64/0x100
[  976.431542][T22403]  asm_exc_page_fault+0x26/0x30
[  976.436422][T22403] RIP: 0010:__put_user_4+0x11/0x20
[  976.441562][T22403] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb
[  976.461208][T22403] RSP: 0018:ffffc90003ae7e80 EFLAGS: 00050206
[  976.467310][T22403] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000000
[  976.475307][T22403] RDX: 0000000000000000 RSI: ffffffff8acadae0 RDI: ffffffff8b1c85a0
[  976.483316][T22403] RBP: 0000000000000004 R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd
[  976.491318][T22403] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000000
[  976.499327][T22403] R13: 0000200000000000 R14: 0000000000000026 R15: 0000000000000005
[  976.507345][T22403]  __sys_socketpair+0xb8/0x550
[  976.512162][T22403]  __x64_sys_socketpair+0x9b/0xb0
[  976.517225][T22403]  do_syscall_64+0x55/0xa0
[  976.521681][T22403]  ? clear_bhb_loop+0x40/0x90
[  976.526398][T22403]  ? clear_bhb_loop+0x40/0x90
[  976.531380][T22403]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  976.537308][T22403] RIP: 0033:0x7f587939c799
[  976.541763][T22403] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  976.561531][T22403] RSP: 002b:00007f587a337028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  976.569992][T22403] RAX: ffffffffffffffda RBX: 00007f5879615fa0 RCX: 00007f587939c799
[  976.578077][T22403] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  976.586078][T22403] RBP: 00007f587a337090 R08: 0000000000000000 R09: 0000000000000000
[  976.594073][T22403] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  976.602207][T22403] R13: 00007f5879616038 R14: 00007f5879615fa0 R15: 00007ffdc3912298
[  976.610310][T22403]  </TASK>
[  976.904120][T22412] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4674'.
[  976.929381][T22412] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  976.944858][T22412] CPU: 1 PID: 22412 Comm: syz.2.4674 Not tainted syzkaller #0
[  976.952388][T22412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  976.962472][T22412] Call Trace:
[  976.965772][T22412]  <TASK>
[  976.968730][T22412]  dump_stack_lvl+0x18c/0x250
[  976.973454][T22412]  ? show_regs_print_info+0x20/0x20
[  976.978698][T22412]  ? load_image+0x400/0x400
[  976.983263][T22412]  sysfs_warn_dup+0x8e/0xa0
[  976.987886][T22412]  sysfs_do_create_link_sd+0xc0/0x110
[  976.993293][T22412]  device_add_class_symlinks+0x1cf/0x240
[  976.998991][T22412]  device_add+0x507/0xc20
[  977.003371][T22412]  wiphy_register+0x1dad/0x2ae0
[  977.008378][T22412]  ? cfg80211_event_work+0x40/0x40
[  977.013541][T22412]  ? minstrel_ht_alloc+0x88a/0x990
[  977.018714][T22412]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  977.024909][T22412]  ieee80211_register_hw+0x3464/0x4250
[  977.030434][T22412]  ? ieee80211_tasklet_handler+0x20/0x20
[  977.036192][T22412]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  977.042127][T22412]  ? __debug_object_init+0xec/0x450
[  977.047453][T22412]  ? __asan_memset+0x22/0x40
[  977.052169][T22412]  ? __hrtimer_init+0x186/0x270
[  977.057206][T22412]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  977.063005][T22412]  ? mac80211_hwsim_free+0x220/0x220
[  977.068384][T22412]  ? rcu_is_watching+0x15/0xb0
[  977.073200][T22412]  ? kstrndup+0xbd/0x140
[  977.077629][T22412]  hwsim_new_radio_nl+0xdc9/0x1a90
[  977.082797][T22412]  ? __nla_validate+0x50/0x50
[  977.087531][T22412]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  977.094007][T22412]  ? __nla_parse+0x40/0x50
[  977.098462][T22412]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  977.104943][T22412]  genl_family_rcv_msg_doit+0x211/0x310
[  977.110620][T22412]  ? end_current_label_crit_section+0x170/0x170
[  977.116912][T22412]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  977.122853][T22412]  ? bpf_lsm_capable+0x9/0x10
[  977.127576][T22412]  ? security_capable+0x89/0xb0
[  977.132474][T22412]  genl_rcv_msg+0x619/0x7a0
[  977.137024][T22412]  ? genl_bind+0x360/0x360
[  977.141495][T22412]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  977.147867][T22412]  ? ref_tracker_free+0x690/0x840
[  977.152951][T22412]  netlink_rcv_skb+0x241/0x4d0
[  977.157760][T22412]  ? genl_bind+0x360/0x360
[  977.162302][T22412]  ? netlink_ack+0x1180/0x1180
[  977.167205][T22412]  ? __lock_acquire+0x7d40/0x7d40
[  977.172370][T22412]  ? down_read+0x1ac/0x2e0
[  977.176824][T22412]  genl_rcv+0x28/0x40
[  977.180846][T22412]  netlink_unicast+0x751/0x8d0
[  977.185689][T22412]  netlink_sendmsg+0x8d0/0xbf0
[  977.190593][T22412]  ? netlink_getsockopt+0x590/0x590
[  977.195844][T22412]  ? aa_sock_msg_perm+0x94/0x150
[  977.200827][T22412]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  977.206152][T22412]  ? security_socket_sendmsg+0x80/0xa0
[  977.211643][T22412]  ? netlink_getsockopt+0x590/0x590
[  977.216892][T22412]  ____sys_sendmsg+0x5ba/0x960
[  977.221703][T22412]  ? __asan_memset+0x22/0x40
[  977.226419][T22412]  ? __sys_sendmsg_sock+0x30/0x30
[  977.231469][T22412]  ? __import_iovec+0x5f2/0x850
[  977.236452][T22412]  ? import_iovec+0x73/0xa0
[  977.241004][T22412]  ___sys_sendmsg+0x2a6/0x360
[  977.245858][T22412]  ? __sys_sendmsg+0x2a0/0x2a0
[  977.250796][T22412]  __se_sys_sendmsg+0x1c2/0x2b0
[  977.255678][T22412]  ? __x64_sys_sendmsg+0x80/0x80
[  977.260664][T22412]  ? lockdep_hardirqs_on+0x98/0x150
[  977.265901][T22412]  do_syscall_64+0x55/0xa0
[  977.270354][T22412]  ? clear_bhb_loop+0x40/0x90
[  977.275063][T22412]  ? clear_bhb_loop+0x40/0x90
[  977.279832][T22412]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  977.285759][T22412] RIP: 0033:0x7fde1af9c799
[  977.290209][T22412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  977.309848][T22412] RSP: 002b:00007fde18df4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  977.318563][T22412] RAX: ffffffffffffffda RBX: 00007fde1b216270 RCX: 00007fde1af9c799
[  977.326705][T22412] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000f
[  977.334893][T22412] RBP: 00007fde1b032c99 R08: 0000000000000000 R09: 0000000000000000
[  977.342984][T22412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  977.350992][T22412] R13: 00007fde1b216308 R14: 00007fde1b216270 R15: 00007fffa17ec478
[  977.359012][T22412]  </TASK>
[  977.409282][T22423] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4676'.
[  977.433175][T22423] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4676'.
[  977.451842][T22423] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4676'.
[  977.494474][T22423] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4676'.
[  977.613972][T22426] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.4677'.
[  977.785374][T22433] netlink: 208064 bytes leftover after parsing attributes in process `syz.1.4679'.
[  977.816218][T22433] netlink: 'syz.1.4679': attribute type 1 has an invalid length.
[  977.898444][T22441] netlink: 'syz.2.4683': attribute type 4 has an invalid length.
[  978.090357][T22447] netlink: 'syz.2.4687': attribute type 13 has an invalid length.
[  979.067347][T22447] erspan0: refused to change device tx_queue_len
[  979.083712][T22447] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  979.251581][T22458] ÿ: renamed from bond_slave_0 (while UP)
[  979.410621][T22464] __nla_validate_parse: 2 callbacks suppressed
[  979.410666][T22464] netlink: 830 bytes leftover after parsing attributes in process `syz.2.4691'.
[  979.461347][T22465] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4690'.
[  979.488472][T22465] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  980.207066][T22479] netlink: 'syz.2.4695': attribute type 1 has an invalid length.
[  980.238599][T22479] netlink: 116 bytes leftover after parsing attributes in process `syz.2.4695'.
[  981.121527][T22512] netlink: 'syz.1.4707': attribute type 1 has an invalid length.
[  981.144361][T22512] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.4707'.
[  981.170481][T22508] syzkaller0: entered promiscuous mode
[  981.184235][T22508] syzkaller0: entered allmulticast mode
[  981.186884][T22513] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4705'.
[  981.203903][T22513] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  981.212706][T22513] CPU: 1 PID: 22513 Comm: syz.2.4705 Not tainted syzkaller #0
[  981.220210][T22513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  981.230404][T22513] Call Trace:
[  981.233693][T22513]  <TASK>
[  981.236622][T22513]  dump_stack_lvl+0x18c/0x250
[  981.241321][T22513]  ? show_regs_print_info+0x20/0x20
[  981.246700][T22513]  ? load_image+0x400/0x400
[  981.251224][T22513]  sysfs_warn_dup+0x8e/0xa0
[  981.255728][T22513]  sysfs_do_create_link_sd+0xc0/0x110
[  981.261125][T22513]  device_add_class_symlinks+0x1cf/0x240
[  981.266825][T22513]  device_add+0x507/0xc20
[  981.271183][T22513]  wiphy_register+0x1dad/0x2ae0
[  981.276242][T22513]  ? cfg80211_event_work+0x40/0x40
[  981.281520][T22513]  ? minstrel_ht_alloc+0x88a/0x990
[  981.286717][T22513]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  981.292834][T22513]  ieee80211_register_hw+0x3464/0x4250
[  981.298371][T22513]  ? ieee80211_tasklet_handler+0x20/0x20
[  981.304046][T22513]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  981.309981][T22513]  ? __debug_object_init+0xec/0x450
[  981.315201][T22513]  ? __asan_memset+0x22/0x40
[  981.319850][T22513]  ? __hrtimer_init+0x186/0x270
[  981.324733][T22513]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  981.330502][T22513]  ? mac80211_hwsim_free+0x220/0x220
[  981.335791][T22513]  ? rcu_is_watching+0x15/0xb0
[  981.340571][T22513]  ? kstrndup+0xbd/0x140
[  981.344825][T22513]  hwsim_new_radio_nl+0xdc9/0x1a90
[  981.349974][T22513]  ? __nla_validate+0x50/0x50
[  981.354683][T22513]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  981.361030][T22513]  ? __nla_parse+0x40/0x50
[  981.365453][T22513]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  981.371806][T22513]  genl_family_rcv_msg_doit+0x211/0x310
[  981.377363][T22513]  ? end_current_label_crit_section+0x170/0x170
[  981.383614][T22513]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  981.389517][T22513]  ? bpf_lsm_capable+0x9/0x10
[  981.394198][T22513]  ? security_capable+0x89/0xb0
[  981.399101][T22513]  genl_rcv_msg+0x619/0x7a0
[  981.403637][T22513]  ? genl_bind+0x360/0x360
[  981.408061][T22513]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  981.414416][T22513]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  981.421007][T22513]  ? ref_tracker_free+0x690/0x840
[  981.426252][T22513]  netlink_rcv_skb+0x241/0x4d0
[  981.431031][T22513]  ? genl_bind+0x360/0x360
[  981.435450][T22513]  ? netlink_ack+0x1180/0x1180
[  981.440221][T22513]  ? __lock_acquire+0x7d40/0x7d40
[  981.445252][T22513]  ? down_read+0x1ac/0x2e0
[  981.449665][T22513]  genl_rcv+0x28/0x40
[  981.453743][T22513]  netlink_unicast+0x751/0x8d0
[  981.458620][T22513]  netlink_sendmsg+0x8d0/0xbf0
[  981.463404][T22513]  ? netlink_getsockopt+0x590/0x590
[  981.468603][T22513]  ? aa_sock_msg_perm+0x94/0x150
[  981.473556][T22513]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  981.478862][T22513]  ? security_socket_sendmsg+0x80/0xa0
[  981.484358][T22513]  ? netlink_getsockopt+0x590/0x590
[  981.489588][T22513]  ____sys_sendmsg+0x5ba/0x960
[  981.494481][T22513]  ? __asan_memset+0x22/0x40
[  981.499074][T22513]  ? __sys_sendmsg_sock+0x30/0x30
[  981.504353][T22513]  ? __import_iovec+0x5f2/0x850
[  981.509343][T22513]  ? import_iovec+0x73/0xa0
[  981.513871][T22513]  ___sys_sendmsg+0x2a6/0x360
[  981.518553][T22513]  ? __sys_sendmsg+0x2a0/0x2a0
[  981.523365][T22513]  __se_sys_sendmsg+0x1c2/0x2b0
[  981.528215][T22513]  ? __x64_sys_sendmsg+0x80/0x80
[  981.533162][T22513]  ? lockdep_hardirqs_on+0x98/0x150
[  981.538367][T22513]  do_syscall_64+0x55/0xa0
[  981.542794][T22513]  ? clear_bhb_loop+0x40/0x90
[  981.547464][T22513]  ? clear_bhb_loop+0x40/0x90
[  981.552141][T22513]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  981.558036][T22513] RIP: 0033:0x7fde1af9c799
[  981.562451][T22513] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  981.582340][T22513] RSP: 002b:00007fde1bd73028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  981.590751][T22513] RAX: ffffffffffffffda RBX: 00007fde1b216180 RCX: 00007fde1af9c799
[  981.598721][T22513] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[  981.606698][T22513] RBP: 00007fde1b032c99 R08: 0000000000000000 R09: 0000000000000000
[  981.614689][T22513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  981.622698][T22513] R13: 00007fde1b216218 R14: 00007fde1b216180 R15: 00007fffa17ec478
[  981.630693][T22513]  </TASK>
[  982.151357][T22532] FAULT_INJECTION: forcing a failure.
[  982.151357][T22532] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  982.175285][T22532] CPU: 1 PID: 22532 Comm: syz.2.4712 Not tainted syzkaller #0
[  982.182897][T22532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  982.192963][T22532] Call Trace:
[  982.196270][T22532]  <TASK>
[  982.199196][T22532]  dump_stack_lvl+0x18c/0x250
[  982.203914][T22532]  ? show_regs_print_info+0x20/0x20
[  982.209232][T22532]  ? load_image+0x400/0x400
[  982.214195][T22532]  ? __lock_acquire+0x7d40/0x7d40
[  982.219263][T22532]  should_fail_ex+0x39d/0x4d0
[  982.224151][T22532]  prepare_alloc_pages+0x1e2/0x5f0
[  982.229288][T22532]  __alloc_pages+0x134/0x460
[  982.233879][T22532]  ? zone_statistics+0x170/0x170
[  982.238819][T22532]  ? __lock_acquire+0x7d40/0x7d40
[  982.243854][T22532]  __folio_alloc+0x10/0x20
[  982.248262][T22532]  vma_alloc_folio+0x47a/0x8f0
[  982.253023][T22532]  handle_mm_fault+0x1b3b/0x4c00
[  982.257955][T22532]  ? handle_mm_fault+0xe7/0x4c00
[  982.262889][T22532]  ? numa_migrate_prep+0x350/0x350
[  982.268000][T22532]  ? lock_chain_count+0x20/0x20
[  982.272862][T22532]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  982.278213][T22532]  do_user_addr_fault+0x730/0x12c0
[  982.283516][T22532]  exc_page_fault+0x64/0x100
[  982.288133][T22532]  asm_exc_page_fault+0x26/0x30
[  982.293000][T22532] RIP: 0010:__put_user_4+0x11/0x20
[  982.298128][T22532] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb
[  982.317749][T22532] RSP: 0018:ffffc900038e7e80 EFLAGS: 00050206
[  982.323827][T22532] RAX: 0000000000000004 RBX: 0000000000000000 RCX: 0000200000000000
[  982.331800][T22532] RDX: 0000000000000000 RSI: ffffffff8acadae0 RDI: ffffffff8b1c85a0
[  982.339849][T22532] RBP: 0000000000000004 R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd
[  982.347819][T22532] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000000
[  982.355782][T22532] R13: 0000200000000000 R14: 0000000000000026 R15: 0000000000000005
[  982.363758][T22532]  __sys_socketpair+0xb8/0x550
[  982.368704][T22532]  __x64_sys_socketpair+0x9b/0xb0
[  982.373727][T22532]  do_syscall_64+0x55/0xa0
[  982.378233][T22532]  ? clear_bhb_loop+0x40/0x90
[  982.382902][T22532]  ? clear_bhb_loop+0x40/0x90
[  982.387575][T22532]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  982.393461][T22532] RIP: 0033:0x7fde1af9c799
[  982.397870][T22532] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  982.417570][T22532] RSP: 002b:00007fde1bdb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  982.425982][T22532] RAX: ffffffffffffffda RBX: 00007fde1b215fa0 RCX: 00007fde1af9c799
[  982.433949][T22532] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  982.441922][T22532] RBP: 00007fde1bdb5090 R08: 0000000000000000 R09: 0000000000000000
[  982.450161][T22532] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  982.458122][T22532] R13: 00007fde1b216038 R14: 00007fde1b215fa0 R15: 00007fffa17ec478
[  982.466105][T22532]  </TASK>
[  982.843004][T22549] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4717'.
[  984.494199][T22550] netlink: 'syz.1.4717': attribute type 21 has an invalid length.
[  984.511426][T22550] netlink: 156 bytes leftover after parsing attributes in process `syz.1.4717'.
[  985.528922][T22566] FAULT_INJECTION: forcing a failure.
[  985.528922][T22566] name failslab, interval 1, probability 0, space 0, times 0
[  985.556284][T22566] CPU: 0 PID: 22566 Comm: syz.0.4723 Not tainted syzkaller #0
[  985.563888][T22566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  985.573980][T22566] Call Trace:
[  985.577358][T22566]  <TASK>
[  985.580281][T22566]  dump_stack_lvl+0x18c/0x250
[  985.584970][T22566]  ? show_regs_print_info+0x20/0x20
[  985.590182][T22566]  ? load_image+0x400/0x400
[  985.594739][T22566]  ? __might_sleep+0xe0/0xe0
[  985.599339][T22566]  ? __lock_acquire+0x7d40/0x7d40
[  985.604375][T22566]  ? __might_sleep+0xe0/0xe0
[  985.608963][T22566]  should_fail_ex+0x39d/0x4d0
[  985.613660][T22566]  should_failslab+0x9/0x20
[  985.618191][T22566]  slab_pre_alloc_hook+0x59/0x310
[  985.623269][T22566]  kmem_cache_alloc_lru+0x4d/0x2d0
[  985.628402][T22566]  ? sock_alloc_inode+0x28/0xc0
[  985.633251][T22566]  sock_alloc_inode+0x28/0xc0
[  985.637934][T22566]  ? sockfs_init_fs_context+0xb0/0xb0
[  985.643298][T22566]  new_inode_pseudo+0x63/0x1d0
[  985.648057][T22566]  __sock_create+0x12d/0x940
[  985.652649][T22566]  ? __might_fault+0xaa/0x120
[  985.657319][T22566]  ? __might_fault+0xc6/0x120
[  985.661990][T22566]  __sys_socketpair+0x1c1/0x550
[  985.666847][T22566]  __x64_sys_socketpair+0x9b/0xb0
[  985.671869][T22566]  do_syscall_64+0x55/0xa0
[  985.676281][T22566]  ? clear_bhb_loop+0x40/0x90
[  985.680961][T22566]  ? clear_bhb_loop+0x40/0x90
[  985.685631][T22566]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  985.691521][T22566] RIP: 0033:0x7fd421d9c799
[  985.696018][T22566] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  985.715636][T22566] RSP: 002b:00007fd422c61028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  985.724045][T22566] RAX: ffffffffffffffda RBX: 00007fd422015fa0 RCX: 00007fd421d9c799
[  985.732029][T22566] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  985.740017][T22566] RBP: 00007fd422c61090 R08: 0000000000000000 R09: 0000000000000000
[  985.748023][T22566] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  985.755995][T22566] R13: 00007fd422016038 R14: 00007fd422015fa0 R15: 00007ffd2e8fe158
[  985.763993][T22566]  </TASK>
[  985.773463][T22568] delete_channel: no stack
[  985.796990][T22566] socket: no more sockets
[  985.999268][T22577] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4726'.
[  986.022279][T22577] tc_dump_action: action bad kind
[  986.760278][T22590] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.4731'.
[  986.895056][T22590] netlink: 65051 bytes leftover after parsing attributes in process `syz.3.4731'.
[  986.969606][T22596] netlink: 'syz.0.4732': attribute type 2 has an invalid length.
[  987.031337][T22596] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.4732'.
[  987.644192][T22601] netlink: 'syz.2.4733': attribute type 1 has an invalid length.
[  987.690370][T22601] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.4733'.
[  987.876687][T22609] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  987.971220][T22609] batman_adv: batadv0: Removing interface: batadv_slave_0
[  988.036958][T22609] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  988.071175][T22609] batman_adv: batadv0: Removing interface: batadv_slave_1
[  988.701273][T22613] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4738'.
[  988.731296][T22613] tc_dump_action: action bad kind
[  988.943015][T22623] tap0: tun_chr_ioctl cmd 1074025680
[  989.648024][T22640] FAULT_INJECTION: forcing a failure.
[  989.648024][T22640] name failslab, interval 1, probability 0, space 0, times 0
[  989.692277][T22640] CPU: 0 PID: 22640 Comm: syz.2.4744 Not tainted syzkaller #0
[  989.699912][T22640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  989.710027][T22640] Call Trace:
[  989.713360][T22640]  <TASK>
[  989.716334][T22640]  dump_stack_lvl+0x18c/0x250
[  989.721092][T22640]  ? show_regs_print_info+0x20/0x20
[  989.726353][T22640]  ? load_image+0x400/0x400
[  989.730919][T22640]  ? __might_sleep+0xe0/0xe0
[  989.735565][T22640]  ? __lock_acquire+0x7d40/0x7d40
[  989.740646][T22640]  ? perf_trace_lock+0x304/0x3b0
[  989.745664][T22640]  should_fail_ex+0x39d/0x4d0
[  989.750424][T22640]  should_failslab+0x9/0x20
[  989.754992][T22640]  slab_pre_alloc_hook+0x59/0x310
[  989.760077][T22640]  ? sk_prot_alloc+0xe7/0x210
[  989.764805][T22640]  ? sk_prot_alloc+0xe7/0x210
[  989.769538][T22640]  __kmem_cache_alloc_node+0x53/0x250
[  989.774996][T22640]  ? sk_prot_alloc+0xe7/0x210
[  989.779731][T22640]  __kmalloc+0xa4/0x230
[  989.783956][T22640]  sk_prot_alloc+0xe7/0x210
[  989.788507][T22640]  ? sk_alloc+0x24/0x360
[  989.792896][T22640]  sk_alloc+0x3a/0x360
[  989.797037][T22640]  alg_create+0xa4/0x140
[  989.801359][T22640]  __sock_create+0x4a6/0x940
[  989.806044][T22640]  __sys_socketpair+0x1c1/0x550
[  989.811070][T22640]  __x64_sys_socketpair+0x9b/0xb0
[  989.816160][T22640]  do_syscall_64+0x55/0xa0
[  989.820627][T22640]  ? clear_bhb_loop+0x40/0x90
[  989.825351][T22640]  ? clear_bhb_loop+0x40/0x90
[  989.830109][T22640]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  989.836117][T22640] RIP: 0033:0x7fde1af9c799
[  989.840599][T22640] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  989.860521][T22640] RSP: 002b:00007fde1bdb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  989.868997][T22640] RAX: ffffffffffffffda RBX: 00007fde1b215fa0 RCX: 00007fde1af9c799
[  989.877019][T22640] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  989.885127][T22640] RBP: 00007fde1bdb5090 R08: 0000000000000000 R09: 0000000000000000
[  989.893231][T22640] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[  989.901257][T22640] R13: 00007fde1b216038 R14: 00007fde1b215fa0 R15: 00007fffa17ec478
[  989.909332][T22640]  </TASK>
[  990.260449][T22647] netlink: 55631 bytes leftover after parsing attributes in process `syz.2.4746'.
[  990.296595][T22647] netlink: 6320 bytes leftover after parsing attributes in process `syz.2.4746'.
[  990.340365][T22647] tc_dump_action: action bad kind
[  990.452596][T22652] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  990.460092][T22652] batman_adv: batadv0: Removing interface: batadv_slave_0
[  990.482336][T22652] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  990.490284][T22652] batman_adv: batadv0: Removing interface: batadv_slave_1
[  990.532473][T22652] batman_adv: batadv0: Interface deactivated: veth1_virt_wifi
[  990.545419][T22652] batman_adv: batadv0: Removing interface: veth1_virt_wifi
[  990.750718][T22655] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4749'.
[  990.781229][T22655] tc_dump_action: action bad kind
[  991.543309][T22672] syzkaller0: entered promiscuous mode
[  991.548959][T22672] syzkaller0: entered allmulticast mode
[  991.912617][T22680] FAULT_INJECTION: forcing a failure.
[  991.912617][T22680] name failslab, interval 1, probability 0, space 0, times 0
[  991.941398][T22680] CPU: 1 PID: 22680 Comm: syz.2.4755 Not tainted syzkaller #0
[  991.948944][T22680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  991.959148][T22680] Call Trace:
[  991.962471][T22680]  <TASK>
[  991.965442][T22680]  dump_stack_lvl+0x18c/0x250
[  991.970219][T22680]  ? show_regs_print_info+0x20/0x20
[  991.975536][T22680]  ? load_image+0x400/0x400
[  991.980111][T22680]  ? __lock_acquire+0x7d40/0x7d40
[  991.985217][T22680]  should_fail_ex+0x39d/0x4d0
[  991.990063][T22680]  should_failslab+0x9/0x20
[  991.994619][T22680]  slab_pre_alloc_hook+0x59/0x310
[  991.999689][T22680]  ? apparmor_sk_alloc_security+0x77/0x100
[  992.005695][T22680]  __kmem_cache_alloc_node+0x53/0x250
[  992.011108][T22680]  ? apparmor_sk_alloc_security+0x77/0x100
[  992.017013][T22680]  kmalloc_trace+0x2a/0xe0
[  992.021455][T22680]  apparmor_sk_alloc_security+0x77/0x100
[  992.027114][T22680]  security_sk_alloc+0x6e/0xa0
[  992.031984][T22680]  sk_prot_alloc+0x101/0x210
[  992.036588][T22680]  ? sk_alloc+0x24/0x360
[  992.040860][T22680]  sk_alloc+0x3a/0x360
[  992.044964][T22680]  alg_create+0xa4/0x140
[  992.049232][T22680]  __sock_create+0x4a6/0x940
[  992.053876][T22680]  __sys_socketpair+0x1c1/0x550
[  992.058759][T22680]  __x64_sys_socketpair+0x9b/0xb0
[  992.063979][T22680]  do_syscall_64+0x55/0xa0
[  992.068407][T22680]  ? clear_bhb_loop+0x40/0x90
[  992.073225][T22680]  ? clear_bhb_loop+0x40/0x90
[  992.077955][T22680]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  992.083862][T22680] RIP: 0033:0x7fde1af9c799
[  992.088293][T22680] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  992.107922][T22680] RSP: 002b:00007fde1bdb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  992.116366][T22680] RAX: ffffffffffffffda RBX: 00007fde1b215fa0 RCX: 00007fde1af9c799
[  992.124362][T22680] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  992.132348][T22680] RBP: 00007fde1bdb5090 R08: 0000000000000000 R09: 0000000000000000
[  992.140407][T22680] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[  992.148453][T22680] R13: 00007fde1b216038 R14: 00007fde1b215fa0 R15: 00007fffa17ec478
[  992.156665][T22680]  </TASK>
[  992.356486][T22684] netlink: 'syz.0.4756': attribute type 9 has an invalid length.
[  992.374788][T22684] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.4756'.
[  993.293753][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  993.300285][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  995.276855][T22704] netlink: 'syz.0.4764': attribute type 21 has an invalid length.
[  995.285477][T22704] netlink: 128 bytes leftover after parsing attributes in process `syz.0.4764'.
[  995.297540][T22704] netlink: 'syz.0.4764': attribute type 4 has an invalid length.
[  995.394679][T22711] FAULT_INJECTION: forcing a failure.
[  995.394679][T22711] name failslab, interval 1, probability 0, space 0, times 0
[  995.420962][T22711] CPU: 1 PID: 22711 Comm: syz.2.4766 Not tainted syzkaller #0
[  995.428476][T22711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  995.438548][T22711] Call Trace:
[  995.441875][T22711]  <TASK>
[  995.444802][T22711]  dump_stack_lvl+0x18c/0x250
[  995.449491][T22711]  ? show_regs_print_info+0x20/0x20
[  995.454689][T22711]  ? load_image+0x400/0x400
[  995.459193][T22711]  ? __might_sleep+0xe0/0xe0
[  995.463777][T22711]  ? __lock_acquire+0x7d40/0x7d40
[  995.468791][T22711]  ? lockdep_init_map_type+0x9c/0x8e0
[  995.474156][T22711]  ? __might_sleep+0xe0/0xe0
[  995.478748][T22711]  should_fail_ex+0x39d/0x4d0
[  995.483440][T22711]  should_failslab+0x9/0x20
[  995.487943][T22711]  slab_pre_alloc_hook+0x59/0x310
[  995.492967][T22711]  kmem_cache_alloc_lru+0x4d/0x2d0
[  995.498105][T22711]  ? sock_alloc_inode+0x28/0xc0
[  995.502952][T22711]  sock_alloc_inode+0x28/0xc0
[  995.507620][T22711]  ? sockfs_init_fs_context+0xb0/0xb0
[  995.513080][T22711]  new_inode_pseudo+0x63/0x1d0
[  995.517840][T22711]  __sock_create+0x12d/0x940
[  995.522433][T22711]  __sys_socketpair+0x236/0x550
[  995.527286][T22711]  __x64_sys_socketpair+0x9b/0xb0
[  995.532307][T22711]  do_syscall_64+0x55/0xa0
[  995.536718][T22711]  ? clear_bhb_loop+0x40/0x90
[  995.541408][T22711]  ? clear_bhb_loop+0x40/0x90
[  995.546079][T22711]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  995.551964][T22711] RIP: 0033:0x7fde1af9c799
[  995.556378][T22711] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  995.576062][T22711] RSP: 002b:00007fde1bdb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  995.584475][T22711] RAX: ffffffffffffffda RBX: 00007fde1b215fa0 RCX: 00007fde1af9c799
[  995.592531][T22711] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  995.600589][T22711] RBP: 00007fde1bdb5090 R08: 0000000000000000 R09: 0000000000000000
[  995.608548][T22711] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[  995.616514][T22711] R13: 00007fde1b216038 R14: 00007fde1b215fa0 R15: 00007fffa17ec478
[  995.624487][T22711]  </TASK>
[  995.639598][T22711] socket: no more sockets
[  995.804522][T22721] syzkaller0: entered promiscuous mode
[  995.810147][T22721] syzkaller0: entered allmulticast mode
[  996.486821][T22742] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4774'.
[  998.023688][T22742] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  998.045192][T22742] CPU: 1 PID: 22742 Comm: syz.1.4774 Not tainted syzkaller #0
[  998.052725][T22742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  998.062812][T22742] Call Trace:
[  998.066263][T22742]  <TASK>
[  998.069190][T22742]  dump_stack_lvl+0x18c/0x250
[  998.073880][T22742]  ? show_regs_print_info+0x20/0x20
[  998.079082][T22742]  ? load_image+0x400/0x400
[  998.083605][T22742]  sysfs_warn_dup+0x8e/0xa0
[  998.088104][T22742]  sysfs_do_create_link_sd+0xc0/0x110
[  998.093473][T22742]  device_add_class_symlinks+0x1cf/0x240
[  998.099109][T22742]  device_add+0x507/0xc20
[  998.103442][T22742]  wiphy_register+0x1dad/0x2ae0
[  998.108306][T22742]  ? cfg80211_event_work+0x40/0x40
[  998.113414][T22742]  ? minstrel_ht_alloc+0x88a/0x990
[  998.118526][T22742]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  998.124604][T22742]  ieee80211_register_hw+0x3464/0x4250
[  998.130079][T22742]  ? ieee80211_tasklet_handler+0x20/0x20
[  998.135715][T22742]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  998.141609][T22742]  ? __debug_object_init+0xec/0x450
[  998.146911][T22742]  ? __asan_memset+0x22/0x40
[  998.151509][T22742]  ? __hrtimer_init+0x186/0x270
[  998.156384][T22742]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  998.162149][T22742]  ? mac80211_hwsim_free+0x220/0x220
[  998.167446][T22742]  ? rcu_is_watching+0x15/0xb0
[  998.172225][T22742]  ? kstrndup+0xbd/0x140
[  998.176475][T22742]  hwsim_new_radio_nl+0xdc9/0x1a90
[  998.181620][T22742]  ? __nla_validate+0x50/0x50
[  998.186312][T22742]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  998.192655][T22742]  ? __nla_parse+0x40/0x50
[  998.197071][T22742]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  998.203400][T22742]  genl_family_rcv_msg_doit+0x211/0x310
[  998.208943][T22742]  ? end_current_label_crit_section+0x170/0x170
[  998.215189][T22742]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  998.221127][T22742]  ? bpf_lsm_capable+0x9/0x10
[  998.225803][T22742]  ? security_capable+0x89/0xb0
[  998.230654][T22742]  genl_rcv_msg+0x619/0x7a0
[  998.235168][T22742]  ? genl_bind+0x360/0x360
[  998.239663][T22742]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  998.246009][T22742]  ? perf_trace_lock+0xfc/0x3b0
[  998.250874][T22742]  netlink_rcv_skb+0x241/0x4d0
[  998.255644][T22742]  ? genl_bind+0x360/0x360
[  998.260058][T22742]  ? netlink_ack+0x1180/0x1180
[  998.264832][T22742]  ? __lock_acquire+0x7d40/0x7d40
[  998.269861][T22742]  ? down_read+0x1ac/0x2e0
[  998.274376][T22742]  genl_rcv+0x28/0x40
[  998.278355][T22742]  netlink_unicast+0x751/0x8d0
[  998.283130][T22742]  netlink_sendmsg+0x8d0/0xbf0
[  998.287910][T22742]  ? netlink_getsockopt+0x590/0x590
[  998.293110][T22742]  ? aa_sock_msg_perm+0x94/0x150
[  998.298054][T22742]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  998.303347][T22742]  ? security_socket_sendmsg+0x80/0xa0
[  998.308803][T22742]  ? netlink_getsockopt+0x590/0x590
[  998.314103][T22742]  ____sys_sendmsg+0x5ba/0x960
[  998.318974][T22742]  ? __asan_memset+0x22/0x40
[  998.323650][T22742]  ? __sys_sendmsg_sock+0x30/0x30
[  998.328678][T22742]  ? __import_iovec+0x5f2/0x850
[  998.333537][T22742]  ? import_iovec+0x73/0xa0
[  998.338039][T22742]  ___sys_sendmsg+0x2a6/0x360
[  998.342808][T22742]  ? __sys_sendmsg+0x2a0/0x2a0
[  998.347592][T22742]  ? debug_mutex_init+0x38/0x70
[  998.352461][T22742]  __se_sys_sendmsg+0x1c2/0x2b0
[  998.357315][T22742]  ? __x64_sys_sendmsg+0x80/0x80
[  998.362262][T22742]  ? lockdep_hardirqs_on+0x98/0x150
[  998.367458][T22742]  do_syscall_64+0x55/0xa0
[  998.371884][T22742]  ? clear_bhb_loop+0x40/0x90
[  998.376641][T22742]  ? clear_bhb_loop+0x40/0x90
[  998.381317][T22742]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  998.387202][T22742] RIP: 0033:0x7f587939c799
[  998.391613][T22742] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  998.411248][T22742] RSP: 002b:00007f587a2f5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  998.419677][T22742] RAX: ffffffffffffffda RBX: 00007f5879616180 RCX: 00007f587939c799
[  998.427640][T22742] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[  998.435611][T22742] RBP: 00007f5879432c99 R08: 0000000000000000 R09: 0000000000000000
[  998.443576][T22742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  998.451555][T22742] R13: 00007f5879616218 R14: 00007f5879616180 R15: 00007ffdc3912298
[  998.459535][T22742]  </TASK>
[  998.543196][T22746] netlink: 668 bytes leftover after parsing attributes in process `syz.2.4775'.
[  998.559238][T22746] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  998.622567][T22746] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  998.870091][T22762] FAULT_INJECTION: forcing a failure.
[  998.870091][T22762] name failslab, interval 1, probability 0, space 0, times 0
[  998.913756][T22762] CPU: 0 PID: 22762 Comm: syz.2.4779 Not tainted syzkaller #0
[  998.921535][T22762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  998.931609][T22762] Call Trace:
[  998.934938][T22762]  <TASK>
[  998.937890][T22762]  dump_stack_lvl+0x18c/0x250
[  998.942617][T22762]  ? show_regs_print_info+0x20/0x20
[  998.947859][T22762]  ? load_image+0x400/0x400
[  998.952415][T22762]  ? __lock_acquire+0x7d40/0x7d40
[  998.957471][T22762]  ? __asan_memset+0x22/0x40
[  998.962093][T22762]  should_fail_ex+0x39d/0x4d0
[  998.966807][T22762]  should_failslab+0x9/0x20
[  998.971340][T22762]  slab_pre_alloc_hook+0x59/0x310
[  998.976402][T22762]  kmem_cache_alloc+0x5a/0x2d0
[  998.981286][T22762]  ? security_inode_alloc+0x34/0x110
[  998.986609][T22762]  security_inode_alloc+0x34/0x110
[  998.991785][T22762]  inode_init_always+0x8fc/0xc90
[  998.996754][T22762]  new_inode_pseudo+0x95/0x1d0
[  999.001522][T22762]  __sock_create+0x12d/0x940
[  999.006145][T22762]  __sys_socketpair+0x236/0x550
[  999.011011][T22762]  __x64_sys_socketpair+0x9b/0xb0
[  999.016056][T22762]  do_syscall_64+0x55/0xa0
[  999.020482][T22762]  ? clear_bhb_loop+0x40/0x90
[  999.025257][T22762]  ? clear_bhb_loop+0x40/0x90
[  999.029942][T22762]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  999.035837][T22762] RIP: 0033:0x7fde1af9c799
[  999.040380][T22762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  999.060003][T22762] RSP: 002b:00007fde1bdb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  999.068425][T22762] RAX: ffffffffffffffda RBX: 00007fde1b215fa0 RCX: 00007fde1af9c799
[  999.076401][T22762] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  999.084367][T22762] RBP: 00007fde1bdb5090 R08: 0000000000000000 R09: 0000000000000000
[  999.092335][T22762] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[  999.100315][T22762] R13: 00007fde1b216038 R14: 00007fde1b215fa0 R15: 00007fffa17ec478
[  999.108333][T22762]  </TASK>
[  999.118399][T22766] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  999.149273][T22766] syzkaller0: entered promiscuous mode
[  999.190910][T22766] syzkaller0: entered allmulticast mode
[  999.260949][T22762] socket: no more sockets
[  999.376650][T22772] mac80211_hwsim hwsim250 .3ãc¤±: renamed from wlan1 (while UP)
[  999.432494][T22775] netlink: 'syz.2.4784': attribute type 3 has an invalid length.
[  999.440249][T22775] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.4784'.
[  999.724354][T22787] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4785'.
[ 1001.510072][T22787] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[ 1001.525867][T22787] CPU: 1 PID: 22787 Comm: syz.1.4785 Not tainted syzkaller #0
[ 1001.533481][T22787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1001.543571][T22787] Call Trace:
[ 1001.546865][T22787]  <TASK>
[ 1001.549799][T22787]  dump_stack_lvl+0x18c/0x250
[ 1001.554646][T22787]  ? show_regs_print_info+0x20/0x20
[ 1001.559877][T22787]  ? load_image+0x400/0x400
[ 1001.564457][T22787]  sysfs_warn_dup+0x8e/0xa0
[ 1001.568994][T22787]  sysfs_do_create_link_sd+0xc0/0x110
[ 1001.574484][T22787]  device_add_class_symlinks+0x1cf/0x240
[ 1001.580137][T22787]  device_add+0x507/0xc20
[ 1001.584575][T22787]  wiphy_register+0x1dad/0x2ae0
[ 1001.589543][T22787]  ? cfg80211_event_work+0x40/0x40
[ 1001.594652][T22787]  ? minstrel_ht_alloc+0x88a/0x990
[ 1001.599772][T22787]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1001.605949][T22787]  ieee80211_register_hw+0x3464/0x4250
[ 1001.611536][T22787]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1001.617176][T22787]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1001.623072][T22787]  ? __debug_object_init+0xec/0x450
[ 1001.628285][T22787]  ? __asan_memset+0x22/0x40
[ 1001.632919][T22787]  ? __hrtimer_init+0x186/0x270
[ 1001.637772][T22787]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1001.643614][T22787]  ? mac80211_hwsim_free+0x220/0x220
[ 1001.648936][T22787]  ? rcu_is_watching+0x15/0xb0
[ 1001.653731][T22787]  ? kstrndup+0xbd/0x140
[ 1001.657992][T22787]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1001.663115][T22787]  ? __nla_validate+0x50/0x50
[ 1001.667809][T22787]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1001.674166][T22787]  ? __nla_parse+0x40/0x50
[ 1001.678585][T22787]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1001.684917][T22787]  genl_family_rcv_msg_doit+0x211/0x310
[ 1001.690467][T22787]  ? end_current_label_crit_section+0x170/0x170
[ 1001.696798][T22787]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1001.702709][T22787]  ? bpf_lsm_capable+0x9/0x10
[ 1001.707391][T22787]  ? security_capable+0x89/0xb0
[ 1001.712253][T22787]  genl_rcv_msg+0x619/0x7a0
[ 1001.716936][T22787]  ? genl_bind+0x360/0x360
[ 1001.721345][T22787]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1001.727678][T22787]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[ 1001.734283][T22787]  ? ref_tracker_free+0x690/0x840
[ 1001.739323][T22787]  netlink_rcv_skb+0x241/0x4d0
[ 1001.744097][T22787]  ? genl_bind+0x360/0x360
[ 1001.748600][T22787]  ? netlink_ack+0x1180/0x1180
[ 1001.753375][T22787]  ? __lock_acquire+0x7d40/0x7d40
[ 1001.758461][T22787]  ? down_read+0x1ac/0x2e0
[ 1001.762960][T22787]  genl_rcv+0x28/0x40
[ 1001.766938][T22787]  netlink_unicast+0x751/0x8d0
[ 1001.771716][T22787]  netlink_sendmsg+0x8d0/0xbf0
[ 1001.776491][T22787]  ? netlink_getsockopt+0x590/0x590
[ 1001.781696][T22787]  ? aa_sock_msg_perm+0x94/0x150
[ 1001.786633][T22787]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1001.791919][T22787]  ? security_socket_sendmsg+0x80/0xa0
[ 1001.797372][T22787]  ? netlink_getsockopt+0x590/0x590
[ 1001.802599][T22787]  ____sys_sendmsg+0x5ba/0x960
[ 1001.807384][T22787]  ? __asan_memset+0x22/0x40
[ 1001.811991][T22787]  ? __sys_sendmsg_sock+0x30/0x30
[ 1001.817011][T22787]  ? __import_iovec+0x5f2/0x850
[ 1001.821872][T22787]  ? import_iovec+0x73/0xa0
[ 1001.826461][T22787]  ___sys_sendmsg+0x2a6/0x360
[ 1001.831152][T22787]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1001.836017][T22787]  ? debug_mutex_init+0x38/0x70
[ 1001.840988][T22787]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1001.845844][T22787]  ? __x64_sys_sendmsg+0x80/0x80
[ 1001.850791][T22787]  ? lockdep_hardirqs_on+0x98/0x150
[ 1001.855995][T22787]  do_syscall_64+0x55/0xa0
[ 1001.860434][T22787]  ? clear_bhb_loop+0x40/0x90
[ 1001.865115][T22787]  ? clear_bhb_loop+0x40/0x90
[ 1001.869803][T22787]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1001.875706][T22787] RIP: 0033:0x7f587939c799
[ 1001.880125][T22787] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1001.900166][T22787] RSP: 002b:00007f587a2f5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1001.908579][T22787] RAX: ffffffffffffffda RBX: 00007f5879616180 RCX: 00007f587939c799
[ 1001.916572][T22787] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[ 1001.924637][T22787] RBP: 00007f5879432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1001.932611][T22787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1001.940756][T22787] R13: 00007f5879616218 R14: 00007f5879616180 R15: 00007ffdc3912298
[ 1001.948750][T22787]  </TASK>
[ 1002.149346][T22797] netlink: 14 bytes leftover after parsing attributes in process `syz.1.4789'.
[ 1002.219676][T22802] netlink: 'syz.1.4789': attribute type 29 has an invalid length.
[ 1002.359220][T22797] bond0 (unregistering): (slave 
7
3ÿ): Releasing backup interface
[ 1002.384256][T22811] FAULT_INJECTION: forcing a failure.
[ 1002.384256][T22811] name failslab, interval 1, probability 0, space 0, times 0
[ 1002.398340][T22811] CPU: 1 PID: 22811 Comm: syz.3.4793 Not tainted syzkaller #0
[ 1002.405377][T22797] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1002.405906][T22811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1002.405921][T22811] Call Trace:
[ 1002.405928][T22811]  <TASK>
[ 1002.405937][T22811]  dump_stack_lvl+0x18c/0x250
[ 1002.405968][T22811]  ? show_regs_print_info+0x20/0x20
[ 1002.440672][T22811]  ? load_image+0x400/0x400
[ 1002.445179][T22811]  ? __might_sleep+0xe0/0xe0
[ 1002.449851][T22811]  ? __lock_acquire+0x7d40/0x7d40
[ 1002.454882][T22811]  should_fail_ex+0x39d/0x4d0
[ 1002.459558][T22811]  should_failslab+0x9/0x20
[ 1002.464058][T22811]  slab_pre_alloc_hook+0x59/0x310
[ 1002.469082][T22811]  ? sk_prot_alloc+0xe7/0x210
[ 1002.473753][T22811]  ? sk_prot_alloc+0xe7/0x210
[ 1002.478441][T22811]  __kmem_cache_alloc_node+0x53/0x250
[ 1002.483812][T22811]  ? sk_prot_alloc+0xe7/0x210
[ 1002.488494][T22811]  __kmalloc+0xa4/0x230
[ 1002.492646][T22811]  sk_prot_alloc+0xe7/0x210
[ 1002.497142][T22811]  ? sk_alloc+0x24/0x360
[ 1002.501383][T22811]  sk_alloc+0x3a/0x360
[ 1002.505445][T22811]  alg_create+0xa4/0x140
[ 1002.509684][T22811]  __sock_create+0x4a6/0x940
[ 1002.514284][T22811]  __sys_socketpair+0x236/0x550
[ 1002.519225][T22811]  __x64_sys_socketpair+0x9b/0xb0
[ 1002.524261][T22811]  do_syscall_64+0x55/0xa0
[ 1002.528679][T22811]  ? clear_bhb_loop+0x40/0x90
[ 1002.533351][T22811]  ? clear_bhb_loop+0x40/0x90
[ 1002.538024][T22811]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1002.543946][T22811] RIP: 0033:0x7ff10179c799
[ 1002.548361][T22811] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1002.568218][T22811] RSP: 002b:00007ff1026b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 1002.576720][T22811] RAX: ffffffffffffffda RBX: 00007ff101a15fa0 RCX: 00007ff10179c799
[ 1002.584684][T22811] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[ 1002.592674][T22811] RBP: 00007ff1026b6090 R08: 0000000000000000 R09: 0000000000000000
[ 1002.600835][T22811] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1002.608807][T22811] R13: 00007ff101a16038 R14: 00007ff101a15fa0 R15: 00007ffd8637e078
[ 1002.616787][T22811]  </TASK>
[ 1002.643526][T22797] bond0 (unregistering): Released all slaves
[ 1002.675388][T22802] netlink: 'syz.1.4789': attribute type 29 has an invalid length.
[ 1002.690053][T22805] netlink: 'syz.1.4789': attribute type 29 has an invalid length.
[ 1002.699314][T22808] netlink: 'syz.1.4789': attribute type 29 has an invalid length.
[ 1003.140400][T22820] syzkaller0: entered promiscuous mode
[ 1003.140735][T22831] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4797'.
[ 1003.172167][T22820] syzkaller0: entered allmulticast mode
[ 1003.202928][T22831] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[ 1003.241429][T22831] CPU: 0 PID: 22831 Comm: syz.2.4797 Not tainted syzkaller #0
[ 1003.248954][T22831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1003.259036][T22831] Call Trace:
[ 1003.262349][T22831]  <TASK>
[ 1003.265308][T22831]  dump_stack_lvl+0x18c/0x250
[ 1003.270046][T22831]  ? show_regs_print_info+0x20/0x20
[ 1003.275308][T22831]  ? load_image+0x400/0x400
[ 1003.279893][T22831]  sysfs_warn_dup+0x8e/0xa0
[ 1003.284430][T22831]  sysfs_do_create_link_sd+0xc0/0x110
[ 1003.289849][T22831]  device_add_class_symlinks+0x1cf/0x240
[ 1003.295524][T22831]  device_add+0x507/0xc20
[ 1003.299916][T22831]  wiphy_register+0x1dad/0x2ae0
[ 1003.304814][T22831]  ? cfg80211_event_work+0x40/0x40
[ 1003.310047][T22831]  ? minstrel_ht_alloc+0x88a/0x990
[ 1003.315203][T22831]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1003.321358][T22831]  ieee80211_register_hw+0x3464/0x4250
[ 1003.326884][T22831]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1003.332561][T22831]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1003.338497][T22831]  ? __debug_object_init+0xec/0x450
[ 1003.343730][T22831]  ? __asan_memset+0x22/0x40
[ 1003.348317][T22831]  ? __hrtimer_init+0x186/0x270
[ 1003.353190][T22831]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1003.358975][T22831]  ? mac80211_hwsim_free+0x220/0x220
[ 1003.364346][T22831]  ? rcu_is_watching+0x15/0xb0
[ 1003.369129][T22831]  ? kstrndup+0xbd/0x140
[ 1003.373388][T22831]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1003.378549][T22831]  ? __nla_validate+0x50/0x50
[ 1003.383242][T22831]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1003.389622][T22831]  ? __nla_parse+0x40/0x50
[ 1003.394247][T22831]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1003.400657][T22831]  genl_family_rcv_msg_doit+0x211/0x310
[ 1003.406216][T22831]  ? end_current_label_crit_section+0x170/0x170
[ 1003.412470][T22831]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1003.418383][T22831]  ? bpf_lsm_capable+0x9/0x10
[ 1003.423073][T22831]  ? security_capable+0x89/0xb0
[ 1003.427960][T22831]  genl_rcv_msg+0x619/0x7a0
[ 1003.432482][T22831]  ? genl_bind+0x360/0x360
[ 1003.436889][T22831]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1003.443214][T22831]  ? perf_trace_lock+0xfc/0x3b0
[ 1003.448075][T22831]  netlink_rcv_skb+0x241/0x4d0
[ 1003.452854][T22831]  ? genl_bind+0x360/0x360
[ 1003.457431][T22831]  ? netlink_ack+0x1180/0x1180
[ 1003.462226][T22831]  ? __lock_acquire+0x7d40/0x7d40
[ 1003.467253][T22831]  ? down_read+0x1ac/0x2e0
[ 1003.471667][T22831]  genl_rcv+0x28/0x40
[ 1003.475818][T22831]  netlink_unicast+0x751/0x8d0
[ 1003.480684][T22831]  netlink_sendmsg+0x8d0/0xbf0
[ 1003.485454][T22831]  ? netlink_getsockopt+0x590/0x590
[ 1003.490714][T22831]  ? aa_sock_msg_perm+0x94/0x150
[ 1003.495705][T22831]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1003.501111][T22831]  ? security_socket_sendmsg+0x80/0xa0
[ 1003.506607][T22831]  ? netlink_getsockopt+0x590/0x590
[ 1003.511828][T22831]  ____sys_sendmsg+0x5ba/0x960
[ 1003.516617][T22831]  ? __asan_memset+0x22/0x40
[ 1003.521229][T22831]  ? __sys_sendmsg_sock+0x30/0x30
[ 1003.526289][T22831]  ? __import_iovec+0x5f2/0x850
[ 1003.531151][T22831]  ? import_iovec+0x73/0xa0
[ 1003.535656][T22831]  ___sys_sendmsg+0x2a6/0x360
[ 1003.540340][T22831]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1003.545128][T22831]  ? debug_mutex_init+0x38/0x70
[ 1003.550013][T22831]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1003.554968][T22831]  ? __x64_sys_sendmsg+0x80/0x80
[ 1003.559919][T22831]  ? lockdep_hardirqs_on+0x98/0x150
[ 1003.565119][T22831]  do_syscall_64+0x55/0xa0
[ 1003.569713][T22831]  ? clear_bhb_loop+0x40/0x90
[ 1003.574385][T22831]  ? clear_bhb_loop+0x40/0x90
[ 1003.579074][T22831]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1003.584961][T22831] RIP: 0033:0x7fde1af9c799
[ 1003.589384][T22831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1003.608988][T22831] RSP: 002b:00007fde1bd73028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1003.617497][T22831] RAX: ffffffffffffffda RBX: 00007fde1b216180 RCX: 00007fde1af9c799
[ 1003.625467][T22831] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[ 1003.633517][T22831] RBP: 00007fde1b032c99 R08: 0000000000000000 R09: 0000000000000000
[ 1003.641488][T22831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1003.649458][T22831] R13: 00007fde1b216218 R14: 00007fde1b216180 R15: 00007fffa17ec478
[ 1003.657489][T22831]  </TASK>
[ 1004.456376][T20805] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1004.468875][T20805] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1004.496196][T20805] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1004.504735][T20805] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1004.532547][T20805] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1004.539944][T20805] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1006.417209][ T7500] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.497601][T22854] chnl_net:caif_netlink_parms(): no params data found
[ 1006.576164][ T7500] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.656352][T22876] netlink: 'syz.1.4809': attribute type 3 has an invalid length.
[ 1006.667441][T22876] netlink: 16066 bytes leftover after parsing attributes in process `syz.1.4809'.
[ 1006.697065][ T7500] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.726932][T14247] Bluetooth: hci3: command tx timeout
[ 1006.733746][T22874] netlink: 'syz.1.4809': attribute type 12 has an invalid length.
[ 1006.753742][T22874] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4809'.
[ 1006.764062][T22880] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4810'.
[ 1006.800554][ T7500] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.821734][T22854] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1006.828835][T22854] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1006.845732][T22854] bridge_slave_0: entered allmulticast mode
[ 1006.858016][T22854] bridge_slave_0: entered promiscuous mode
[ 1006.872359][T22854] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1006.879685][T22854] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1006.887871][T22880] netlink: 199832 bytes leftover after parsing attributes in process `syz.0.4810'.
[ 1006.894741][T22854] bridge_slave_1: entered allmulticast mode
[ 1006.910212][T22854] bridge_slave_1: entered promiscuous mode
[ 1007.024220][T22854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1007.092614][T22854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1007.355195][T22854] team0: Port device team_slave_0 added
[ 1007.413066][T22854] team0: Port device team_slave_1 added
[ 1007.535902][T22854] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1007.553030][T22854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1007.600872][T22854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1007.668719][T22854] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1007.706010][T22854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1007.774860][T22854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1007.926374][T22892] syzkaller0: entered promiscuous mode
[ 1007.961870][T22892] syzkaller0: entered allmulticast mode
[ 1008.464937][T22909] netlink: 'syz.1.4815': attribute type 1 has an invalid length.
[ 1008.483080][T22909] netlink: 157116 bytes leftover after parsing attributes in process `syz.1.4815'.
[ 1008.509663][T22910] netlink: 'syz.1.4815': attribute type 1 has an invalid length.
[ 1008.521001][T22910] netlink: 157116 bytes leftover after parsing attributes in process `syz.1.4815'.
[ 1008.809030][T22921] netlink: 'syz.1.4818': attribute type 28 has an invalid length.
[ 1008.820704][T14247] Bluetooth: hci3: command tx timeout
[ 1008.822547][T22921] netlink: 'syz.1.4818': attribute type 29 has an invalid length.
[ 1008.841354][T22921] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4818'.
[ 1010.752381][T22854] hsr_slave_0: entered promiscuous mode
[ 1010.765615][T22854] hsr_slave_1: entered promiscuous mode
[ 1010.783133][T22854] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1010.803741][T22854] Cannot create hsr debugfs directory
[ 1010.881018][T14247] Bluetooth: hci3: command tx timeout
[ 1011.293188][T22935] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4822'.
[ 1011.523539][T22941] netlink: 199832 bytes leftover after parsing attributes in process `syz.1.4822'.
[ 1012.285724][T22957] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.4826'.
[ 1012.331014][T22957] netlink: 6324 bytes leftover after parsing attributes in process `syz.3.4826'.
[ 1012.964871][T14247] Bluetooth: hci3: command tx timeout
[ 1012.994014][T22854] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1013.041476][T22854] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1013.069771][T22854] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1013.100663][ T7500] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1013.126538][ T7500] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1013.144149][ T7500] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1013.158612][ T7500] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1013.289032][ T7500] veth1_macvtap: left promiscuous mode
[ 1013.293026][T22986] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4832'.
[ 1013.297740][ T7500] veth0_macvtap: left promiscuous mode
[ 1013.323194][ T7500] veth1_vlan: left promiscuous mode
[ 1013.328611][ T7500] veth0_vlan: left promiscuous mode
[ 1014.553362][T23029] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4838'.
[ 1016.207375][ T7500] team0 (unregistering): Port device geneve1 removed
[ 1016.649909][ T7500] team0 (unregistering): Port device team_slave_1 removed
[ 1016.695276][ T7500] team0 (unregistering): Port device C removed
[ 1016.740272][ T7500] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1017.119138][ T7500] bond0 (unregistering): Released all slaves
[ 1017.159721][T22854] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1017.172717][T22986] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[ 1017.194741][T22986] CPU: 0 PID: 22986 Comm: syz.1.4832 Not tainted syzkaller #0
[ 1017.202688][T22986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1017.212763][T22986] Call Trace:
[ 1017.216033][T22986]  <TASK>
[ 1017.218958][T22986]  dump_stack_lvl+0x18c/0x250
[ 1017.223638][T22986]  ? show_regs_print_info+0x20/0x20
[ 1017.228831][T22986]  ? load_image+0x400/0x400
[ 1017.233332][T22986]  sysfs_warn_dup+0x8e/0xa0
[ 1017.237825][T22986]  sysfs_do_create_link_sd+0xc0/0x110
[ 1017.243190][T22986]  device_add_class_symlinks+0x1cf/0x240
[ 1017.248903][T22986]  device_add+0x507/0xc20
[ 1017.253251][T22986]  wiphy_register+0x1dad/0x2ae0
[ 1017.258205][T22986]  ? cfg80211_event_work+0x40/0x40
[ 1017.263315][T22986]  ? minstrel_ht_alloc+0x88a/0x990
[ 1017.268454][T22986]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1017.274548][T22986]  ieee80211_register_hw+0x3464/0x4250
[ 1017.280048][T22986]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1017.285707][T22986]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1017.291633][T22986]  ? __debug_object_init+0xec/0x450
[ 1017.296844][T22986]  ? __asan_memset+0x22/0x40
[ 1017.301438][T22986]  ? __hrtimer_init+0x186/0x270
[ 1017.306309][T22986]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1017.312058][T22986]  ? mac80211_hwsim_free+0x220/0x220
[ 1017.317358][T22986]  ? rcu_is_watching+0x15/0xb0
[ 1017.322130][T22986]  ? kstrndup+0xbd/0x140
[ 1017.326399][T22986]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1017.331693][T22986]  ? __nla_validate+0x50/0x50
[ 1017.336381][T22986]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1017.342718][T22986]  ? __nla_parse+0x40/0x50
[ 1017.347128][T22986]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1017.353546][T22986]  genl_family_rcv_msg_doit+0x211/0x310
[ 1017.359122][T22986]  ? end_current_label_crit_section+0x170/0x170
[ 1017.365391][T22986]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1017.371378][T22986]  ? bpf_lsm_capable+0x9/0x10
[ 1017.376060][T22986]  ? security_capable+0x89/0xb0
[ 1017.381006][T22986]  genl_rcv_msg+0x619/0x7a0
[ 1017.385511][T22986]  ? genl_bind+0x360/0x360
[ 1017.389921][T22986]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1017.396263][T22986]  netlink_rcv_skb+0x241/0x4d0
[ 1017.401061][T22986]  ? genl_bind+0x360/0x360
[ 1017.405501][T22986]  ? netlink_ack+0x1180/0x1180
[ 1017.410294][T22986]  ? __lock_acquire+0x7d40/0x7d40
[ 1017.415329][T22986]  ? down_read+0x1ac/0x2e0
[ 1017.419737][T22986]  genl_rcv+0x28/0x40
[ 1017.423712][T22986]  netlink_unicast+0x751/0x8d0
[ 1017.428569][T22986]  netlink_sendmsg+0x8d0/0xbf0
[ 1017.433339][T22986]  ? netlink_getsockopt+0x590/0x590
[ 1017.438535][T22986]  ? aa_sock_msg_perm+0x94/0x150
[ 1017.443470][T22986]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1017.448833][T22986]  ? security_socket_sendmsg+0x80/0xa0
[ 1017.454293][T22986]  ? netlink_getsockopt+0x590/0x590
[ 1017.459502][T22986]  ____sys_sendmsg+0x5ba/0x960
[ 1017.464284][T22986]  ? __asan_memset+0x22/0x40
[ 1017.468898][T22986]  ? __sys_sendmsg_sock+0x30/0x30
[ 1017.473935][T22986]  ? __import_iovec+0x5f2/0x850
[ 1017.478889][T22986]  ? import_iovec+0x73/0xa0
[ 1017.483563][T22986]  ___sys_sendmsg+0x2a6/0x360
[ 1017.488351][T22986]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1017.493165][T22986]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1017.498023][T22986]  ? __x64_sys_sendmsg+0x80/0x80
[ 1017.503064][T22986]  ? lockdep_hardirqs_on+0x98/0x150
[ 1017.508283][T22986]  do_syscall_64+0x55/0xa0
[ 1017.512794][T22986]  ? clear_bhb_loop+0x40/0x90
[ 1017.517469][T22986]  ? clear_bhb_loop+0x40/0x90
[ 1017.522147][T22986]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1017.528077][T22986] RIP: 0033:0x7f587939c799
[ 1017.532525][T22986] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1017.552134][T22986] RSP: 002b:00007f587a2f5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1017.560575][T22986] RAX: ffffffffffffffda RBX: 00007f5879616180 RCX: 00007f587939c799
[ 1017.568566][T22986] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[ 1017.576541][T22986] RBP: 00007f5879432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1017.584509][T22986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1017.592586][T22986] R13: 00007f5879616218 R14: 00007f5879616180 R15: 00007ffdc3912298
[ 1017.600657][T22986]  </TASK>
[ 1017.947105][T22854] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1017.999805][T22854] 8021q: adding VLAN 0 to HW filter on device team0
[ 1018.062322][ T1131] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1018.069458][ T1131] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1018.113677][ T1131] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1018.120920][ T1131] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1018.247828][T22854] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1018.724130][T22854] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1018.788205][T23076] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.4846'.
[ 1018.857354][T23076] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[ 1018.876831][T23076] CPU: 1 PID: 23076 Comm: syz.3.4846 Not tainted syzkaller #0
[ 1018.884363][T23076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1018.894551][T23076] Call Trace:
[ 1018.897824][T23076]  <TASK>
[ 1018.900763][T23076]  dump_stack_lvl+0x18c/0x250
[ 1018.905451][T23076]  ? show_regs_print_info+0x20/0x20
[ 1018.910663][T23076]  ? load_image+0x400/0x400
[ 1018.915179][T23076]  sysfs_warn_dup+0x8e/0xa0
[ 1018.919684][T23076]  sysfs_do_create_link_sd+0xc0/0x110
[ 1018.925171][T23076]  device_add_class_symlinks+0x1cf/0x240
[ 1018.930836][T23076]  device_add+0x507/0xc20
[ 1018.935202][T23076]  wiphy_register+0x1dad/0x2ae0
[ 1018.940085][T23076]  ? cfg80211_event_work+0x40/0x40
[ 1018.945211][T23076]  ? minstrel_ht_alloc+0x88a/0x990
[ 1018.950333][T23076]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[ 1018.956405][T23076]  ieee80211_register_hw+0x3464/0x4250
[ 1018.961883][T23076]  ? ieee80211_tasklet_handler+0x20/0x20
[ 1018.967529][T23076]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1018.973430][T23076]  ? __debug_object_init+0xec/0x450
[ 1018.978628][T23076]  ? __asan_memset+0x22/0x40
[ 1018.983219][T23076]  ? __hrtimer_init+0x186/0x270
[ 1018.988068][T23076]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[ 1018.993987][T23076]  ? mac80211_hwsim_free+0x220/0x220
[ 1018.999277][T23076]  ? rcu_is_watching+0x15/0xb0
[ 1019.004039][T23076]  ? kstrndup+0xbd/0x140
[ 1019.008293][T23076]  hwsim_new_radio_nl+0xdc9/0x1a90
[ 1019.013414][T23076]  ? __nla_validate+0x50/0x50
[ 1019.018133][T23076]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1019.024496][T23076]  ? __nla_parse+0x40/0x50
[ 1019.028925][T23076]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[ 1019.035262][T23076]  genl_family_rcv_msg_doit+0x211/0x310
[ 1019.040816][T23076]  ? end_current_label_crit_section+0x170/0x170
[ 1019.047159][T23076]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[ 1019.053059][T23076]  ? bpf_lsm_capable+0x9/0x10
[ 1019.057824][T23076]  ? security_capable+0x89/0xb0
[ 1019.062684][T23076]  genl_rcv_msg+0x619/0x7a0
[ 1019.067189][T23076]  ? genl_bind+0x360/0x360
[ 1019.071599][T23076]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[ 1019.077933][T23076]  ? ref_tracker_free+0x690/0x840
[ 1019.082967][T23076]  netlink_rcv_skb+0x241/0x4d0
[ 1019.087738][T23076]  ? genl_bind+0x360/0x360
[ 1019.092153][T23076]  ? netlink_ack+0x1180/0x1180
[ 1019.096930][T23076]  ? __lock_acquire+0x7d40/0x7d40
[ 1019.101966][T23076]  ? down_read+0x1ac/0x2e0
[ 1019.106474][T23076]  genl_rcv+0x28/0x40
[ 1019.110456][T23076]  netlink_unicast+0x751/0x8d0
[ 1019.115239][T23076]  netlink_sendmsg+0x8d0/0xbf0
[ 1019.120025][T23076]  ? netlink_getsockopt+0x590/0x590
[ 1019.125245][T23076]  ? aa_sock_msg_perm+0x94/0x150
[ 1019.130180][T23076]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1019.135461][T23076]  ? security_socket_sendmsg+0x80/0xa0
[ 1019.140918][T23076]  ? netlink_getsockopt+0x590/0x590
[ 1019.146143][T23076]  ____sys_sendmsg+0x5ba/0x960
[ 1019.150926][T23076]  ? __asan_memset+0x22/0x40
[ 1019.155522][T23076]  ? __sys_sendmsg_sock+0x30/0x30
[ 1019.160539][T23076]  ? __import_iovec+0x5f2/0x850
[ 1019.165396][T23076]  ? import_iovec+0x73/0xa0
[ 1019.169897][T23076]  ___sys_sendmsg+0x2a6/0x360
[ 1019.174577][T23076]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1019.179380][T23076]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1019.184234][T23076]  ? __x64_sys_sendmsg+0x80/0x80
[ 1019.189177][T23076]  ? lockdep_hardirqs_on+0x98/0x150
[ 1019.194383][T23076]  do_syscall_64+0x55/0xa0
[ 1019.198982][T23076]  ? clear_bhb_loop+0x40/0x90
[ 1019.203655][T23076]  ? clear_bhb_loop+0x40/0x90
[ 1019.208330][T23076]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1019.214230][T23076] RIP: 0033:0x7ff10179c799
[ 1019.218743][T23076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1019.238361][T23076] RSP: 002b:00007ff102674028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1019.247035][T23076] RAX: ffffffffffffffda RBX: 00007ff101a16180 RCX: 00007ff10179c799
[ 1019.255007][T23076] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000e
[ 1019.263008][T23076] RBP: 00007ff101832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1019.271005][T23076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1019.278989][T23076] R13: 00007ff101a16218 R14: 00007ff101a16180 R15: 00007ffd8637e078
[ 1019.287017][T23076]  </TASK>
[ 1019.455219][T23088] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4848'.
[ 1019.488570][T23084] netlink: 'syz.1.4847': attribute type 27 has an invalid length.
[ 1019.505763][T23084] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4847'.
[ 1019.522653][T23084] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1019.550350][T22854] veth0_vlan: entered promiscuous mode
[ 1019.576808][T22854] veth1_vlan: entered promiscuous mode
[ 1019.627099][T22854] veth0_macvtap: entered promiscuous mode
[ 1019.645067][T22854] veth1_macvtap: entered promiscuous mode
[ 1019.680935][T22854] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1019.696512][T22854] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1019.714336][T22854] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.724226][T22854] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.733229][T22854] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.743891][T22854] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1019.901321][ T1885] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1019.909180][ T1885] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1019.968441][T23104] netlink: 'syz.0.4853': attribute type 3 has an invalid length.
[ 1019.978002][ T1885] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1019.980522][T23104] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4853'.
[ 1019.990304][ T1885] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1020.640102][T23134] netlink: 65055 bytes leftover after parsing attributes in process `syz.3.4860'.
[ 1020.732907][T23130] delete_channel: no stack
[ 1021.490446][T23161] IPv6: Can't replace route, no match found
[ 1022.160706][T23199] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.4880'.
[ 1022.227892][T14247] Bluetooth: hci2: ISO packet for unknown connection handle 5
[ 1022.231351][T23199] netlink: 'syz.0.4880': attribute type 21 has an invalid length.
[ 1022.254409][T23199] netlink: 'syz.0.4880': attribute type 6 has an invalid length.
[ 1022.271653][T23199] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4880'.
[ 1022.432776][T23212] netlink: 144316 bytes leftover after parsing attributes in process `syz.0.4885'.
[ 1022.443560][T23212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4885'.
[ 1023.431650][T23241] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4897'.
[ 1023.443907][T23241] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4897'.
[ 1023.456109][T23241] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4897'.
[ 1023.623336][T23245] syzkaller0: entered promiscuous mode
[ 1023.628892][T23245] syzkaller0: entered allmulticast mode
[ 1025.561107][T23248] netlink: 2 bytes leftover after parsing attributes in process `syz.1.4900'.
[ 1025.570398][T23248] batadv_slave_1: entered promiscuous mode
[ 1025.711583][T23258] netlink: 'syz.1.4902': attribute type 6 has an invalid length.
[ 1026.527006][T22176] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1026.611972][T20805] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1026.633688][T20805] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1026.642271][T20805] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1026.651119][T20805] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1026.661522][T20805] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1026.670027][T20805] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1026.701596][T23279] syzkaller0: entered promiscuous mode
[ 1026.707213][T23279] syzkaller0: entered allmulticast mode
[ 1028.728200][T14247] Bluetooth: hci0: command tx timeout
[ 1029.084777][T22176] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1029.177396][T22176] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1029.331562][T22176] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1029.623030][T23280] chnl_net:caif_netlink_parms(): no params data found
[ 1029.659035][T23316] IPv6: Can't replace route, no match found
[ 1029.987077][T23325] syzkaller0: entered promiscuous mode
[ 1029.996220][T23325] syzkaller0: entered allmulticast mode
[ 1030.809976][T14247] Bluetooth: hci0: command tx timeout
[ 1031.127585][T23352] netlink: 'syz.0.4927': attribute type 16 has an invalid length.
[ 1031.137428][T23352] netlink: 'syz.0.4927': attribute type 3 has an invalid length.
[ 1031.151264][T23352] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4927'.
[ 1032.884161][T14247] Bluetooth: hci0: command tx timeout
[ 1032.913473][T23280] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1032.934150][T23280] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1032.947689][T23280] bridge_slave_0: entered allmulticast mode
[ 1032.982651][T23280] bridge_slave_0: entered promiscuous mode
[ 1033.080200][T23280] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1033.091471][T23280] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1033.099108][T23280] bridge_slave_1: entered allmulticast mode
[ 1033.107948][T23280] bridge_slave_1: entered promiscuous mode
[ 1033.255829][T23280] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1033.332489][T23280] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1033.410231][T23372] IPv6: Can't replace route, no match found
[ 1033.498877][T23375] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1033.637928][T23280] team0: Port device team_slave_0 added
[ 1033.650526][T23280] team0: Port device team_slave_1 added
[ 1034.506055][T23280] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1034.521102][T23280] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1034.547603][T23280] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1034.564839][T23280] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1034.571907][T23280] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1034.599322][T23280] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1034.646307][T23405] syzkaller0: entered promiscuous mode
[ 1034.652714][T23405] syzkaller0: entered allmulticast mode
[ 1034.972169][T14247] Bluetooth: hci0: command tx timeout
[ 1036.635529][T23280] hsr_slave_0: entered promiscuous mode
[ 1036.655080][T23280] hsr_slave_1: entered promiscuous mode
[ 1036.671094][T23280] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1036.687444][T23280] Cannot create hsr debugfs directory
[ 1036.944677][T22176] vlan0: left allmulticast mode
[ 1036.949627][T22176] veth0_vlan: left allmulticast mode
[ 1036.980995][T22176] vlan0: left promiscuous mode
[ 1036.993017][T22176] À: port 1(vlan0) entered disabled state
[ 1037.093704][T22176] hsr_slave_0: left promiscuous mode
[ 1037.109669][T22176] hsr_slave_1: left promiscuous mode
[ 1037.206427][T22176] veth1_macvtap: left promiscuous mode
[ 1037.228767][T22176] veth0_macvtap: left promiscuous mode
[ 1037.234800][T22176] veth1_vlan: left promiscuous mode
[ 1037.240266][T22176] veth0_vlan: left promiscuous mode
[ 1041.736067][T23469] syzkaller0: entered promiscuous mode
[ 1041.744404][T23469] syzkaller0: entered allmulticast mode
[ 1042.365134][T23484] netlink: 209820 bytes leftover after parsing attributes in process `syz.0.4950'.
[ 1044.409140][T23495] netlink: 126588 bytes leftover after parsing attributes in process `syz.2.4953'.
[ 1044.443077][T23497] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.4954'.
[ 1044.701128][T23280] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1044.714363][T23280] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1044.725801][T23280] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1044.754143][T23280] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1044.978479][T23280] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1045.014532][T23280] 8021q: adding VLAN 0 to HW filter on device team0
[ 1045.056838][ T7845] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1045.064069][ T7845] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1045.099626][ T7845] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1045.106883][ T7845] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1045.166797][T23523] syzkaller0: entered promiscuous mode
[ 1045.179839][T23523] syzkaller0: entered allmulticast mode
[ 1047.786973][T23549] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.4964'.
[ 1048.024285][T23280] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1048.098284][T23564] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[ 1048.128703][T23571] bridge0: port 3(team0) entered blocking state
[ 1048.145285][T23571] bridge0: port 3(team0) entered disabled state
[ 1048.162899][T23571] team0: entered allmulticast mode
[ 1048.178355][T23571] team_slave_0: entered allmulticast mode
[ 1048.190983][T23571] team_slave_1: entered allmulticast mode
[ 1048.214195][T23571] team0: entered promiscuous mode
[ 1048.229749][T23571] team_slave_0: entered promiscuous mode
[ 1048.250342][T23571] team_slave_1: entered promiscuous mode
[ 1048.259103][T23571] bridge0: port 3(team0) entered blocking state
[ 1048.265654][T23571] bridge0: port 3(team0) entered forwarding state
[ 1048.348241][T23280] veth0_vlan: entered promiscuous mode
[ 1048.396076][T23280] veth1_vlan: entered promiscuous mode
[ 1048.468166][T23586] syzkaller0: entered promiscuous mode
[ 1048.474532][T23586] syzkaller0: entered allmulticast mode
[ 1052.218764][T23280] veth0_macvtap: entered promiscuous mode
[ 1052.230419][T23280] veth1_macvtap: entered promiscuous mode
[ 1052.239368][T23624] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.4975'.
[ 1052.309786][T23280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1052.341029][T23280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.370541][T23280] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1052.414889][T23280] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1052.439791][T23280] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.464294][T23280] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1052.560361][T23634] IPv6: …: Disabled Multicast RS
[ 1052.612234][T23638] netlink: 'syz.2.4979': attribute type 10 has an invalid length.
[ 1052.623378][T23280] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.658705][T23280] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.690985][T23280] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.724982][T23280] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.943386][ T7858] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1052.967809][ T7858] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1053.013978][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1053.025865][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1053.887448][T23688] netlink: 14 bytes leftover after parsing attributes in process `syz.2.4988'.
[ 1053.942958][T23690] netlink: 'syz.2.4988': attribute type 29 has an invalid length.
[ 1053.971451][T23689] netlink: 'syz.2.4988': attribute type 29 has an invalid length.
[ 1054.062238][T20805] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1054.084301][T20805] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1054.095024][T20805] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1054.103561][T23688] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1054.114060][T20805] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1054.123175][T20805] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1054.133658][T20805] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1054.148696][T23688] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1054.172269][T23688] bond0 (unregistering): Released all slaves
[ 1054.199648][T23689] netlink: 'syz.2.4988': attribute type 29 has an invalid length.
[ 1054.327868][T22176] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1054.472108][T22176] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1054.604872][T22176] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1054.829370][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.837244][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.883387][T22176] netdevsim netdevsim0 ÿÿÿÿÿÿ (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1055.046955][T23692] chnl_net:caif_netlink_parms(): no params data found
[ 1055.571729][T23735] netlink: 'syz.1.4999': attribute type 1 has an invalid length.
[ 1055.579538][T23735] netlink: 161700 bytes leftover after parsing attributes in process `syz.1.4999'.
[ 1055.603264][T22176] ip6gretap0 (unregistering): left allmulticast mode
[ 1055.610003][T22176] ip6gretap0 (unregistering): left promiscuous mode
[ 1055.627067][T22176] : port 1(ip6gretap0) entered disabled state
[ 1055.686161][T23692] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1055.717558][T23692] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1055.750232][T23692] bridge_slave_0: entered allmulticast mode
[ 1055.782430][T23692] bridge_slave_0: entered promiscuous mode
[ 1055.918177][T23692] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1055.945797][T23692] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1055.976893][T23692] bridge_slave_1: entered allmulticast mode
[ 1055.984610][T23692] bridge_slave_1: entered promiscuous mode
[ 1056.157747][T23692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1056.163321][T20805] Bluetooth: hci4: command tx timeout
[ 1056.320740][T23692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1056.609813][T23692] team0: Port device team_slave_0 added
[ 1056.650595][T23692] team0: Port device team_slave_1 added
[ 1056.703238][T23692] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1056.710325][T23692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1056.739837][T23692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1056.767167][T23692] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1056.774323][T23692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1056.800349][T23692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1056.839847][T23692] hsr_slave_0: entered promiscuous mode
[ 1056.846182][T23692] hsr_slave_1: entered promiscuous mode
[ 1056.853983][T23692] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1056.861715][T23692] Cannot create hsr debugfs directory
[ 1057.689269][T23692] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1058.212248][T22176] hsr_slave_0: left promiscuous mode
[ 1058.244938][T20805] Bluetooth: hci4: command tx timeout
[ 1058.504711][T22176] hsr_slave_1: left promiscuous mode
[ 1058.543421][T22176] bridge_slave_1: left allmulticast mode
[ 1058.558688][T22176] bridge_slave_1: left promiscuous mode
[ 1058.580067][T22176] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1058.593214][T22176] bridge_slave_0: left allmulticast mode
[ 1058.598889][T22176] bridge_slave_0: left promiscuous mode
[ 1058.606304][T22176] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1058.647522][T22176] veth1_macvtap: left promiscuous mode
[ 1058.654389][T22176] veth0_macvtap: left promiscuous mode
[ 1058.660209][T22176] veth1_vlan: left promiscuous mode
[ 1058.668661][T22176] veth0_vlan: left promiscuous mode
[ 1059.806214][T23692] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1059.816907][T23692] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1059.916525][T23692] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1060.321276][T20805] Bluetooth: hci4: command tx timeout
[ 1060.404370][T23692] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1060.466241][T23692] 8021q: adding VLAN 0 to HW filter on device team0
[ 1060.535275][ T7859] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1060.542493][ T7859] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1060.608198][ T1885] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1060.615428][ T1885] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1061.853925][T23692] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1062.401448][T20805] Bluetooth: hci4: command tx timeout
[ 1064.833906][T23692] veth0_vlan: entered promiscuous mode
[ 1064.868150][T23692] veth1_vlan: entered promiscuous mode
[ 1064.980815][T23692] veth0_macvtap: entered promiscuous mode
[ 1065.011066][T23692] veth1_macvtap: entered promiscuous mode
[ 1065.018291][T23898] netlink: 763 bytes leftover after parsing attributes in process `syz.2.5030'.
[ 1065.054502][T23692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1065.066844][T23692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.077868][T23692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1065.090110][T23692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.104044][T23692] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1065.127620][T23898] syz.2.5030: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 1065.150565][T23692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1065.164024][T23898] CPU: 0 PID: 23898 Comm: syz.2.5030 Not tainted syzkaller #0
[ 1065.171516][T23898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1065.181577][T23898] Call Trace:
[ 1065.184955][T23898]  <TASK>
[ 1065.187881][T23898]  dump_stack_lvl+0x18c/0x250
[ 1065.192565][T23898]  ? show_regs_print_info+0x20/0x20
[ 1065.197763][T23898]  ? load_image+0x400/0x400
[ 1065.202267][T23898]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1065.208770][T23898]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[ 1065.215277][T23898]  warn_alloc+0x246/0x340
[ 1065.219616][T23898]  ? stack_trace_save+0xaa/0x100
[ 1065.224560][T23898]  ? zone_watermark_ok_safe+0x230/0x230
[ 1065.230123][T23898]  ? kasan_set_track+0x5f/0x70
[ 1065.234879][T23898]  ? kasan_set_track+0x4e/0x70
[ 1065.239634][T23898]  ? __kasan_kmalloc+0x8f/0xa0
[ 1065.244407][T23898]  ? xsk_init_queue+0xad/0x100
[ 1065.249265][T23898]  ? xsk_setsockopt+0x4e5/0x760
[ 1065.254114][T23898]  ? do_sock_setsockopt+0x175/0x1a0
[ 1065.259308][T23898]  ? __x64_sys_setsockopt+0x182/0x200
[ 1065.264675][T23898]  __vmalloc_node_range+0x126/0x1330
[ 1065.269985][T23898]  ? free_vm_area+0x50/0x50
[ 1065.274495][T23898]  vmalloc_user+0x74/0x80
[ 1065.278823][T23898]  ? xskq_create+0xbf/0x170
[ 1065.283415][T23898]  xskq_create+0xbf/0x170
[ 1065.287747][T23898]  xsk_init_queue+0xad/0x100
[ 1065.292507][T23898]  xsk_setsockopt+0x4e5/0x760
[ 1065.297191][T23898]  ? xsk_poll+0x680/0x680
[ 1065.301522][T23898]  ? __fget_files+0x28/0x4b0
[ 1065.306161][T23898]  ? __fget_files+0x28/0x4b0
[ 1065.310777][T23898]  ? aa_sock_opt_perm+0x74/0x100
[ 1065.315811][T23898]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 1065.321360][T23898]  ? security_socket_setsockopt+0x7e/0xa0
[ 1065.327077][T23898]  ? xsk_poll+0x680/0x680
[ 1065.331425][T23898]  do_sock_setsockopt+0x175/0x1a0
[ 1065.336467][T23898]  ? __fdget+0x180/0x210
[ 1065.340723][T23898]  __x64_sys_setsockopt+0x182/0x200
[ 1065.345926][T23898]  do_syscall_64+0x55/0xa0
[ 1065.350345][T23898]  ? clear_bhb_loop+0x40/0x90
[ 1065.355023][T23898]  ? clear_bhb_loop+0x40/0x90
[ 1065.359723][T23898]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1065.365632][T23898] RIP: 0033:0x7eff9cb9c799
[ 1065.370049][T23898] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1065.389674][T23898] RSP: 002b:00007eff9da1d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1065.398100][T23898] RAX: ffffffffffffffda RBX: 00007eff9ce15fa0 RCX: 00007eff9cb9c799
[ 1065.406072][T23898] RDX: 0000000000000002 RSI: 000000000000011b RDI: 000000000000000e
[ 1065.414059][T23898] RBP: 00007eff9cc32c99 R08: 0000000000000004 R09: 0000000000000000
[ 1065.422044][T23898] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[ 1065.430023][T23898] R13: 00007eff9ce16038 R14: 00007eff9ce15fa0 R15: 00007ffe46c40538
[ 1065.438032][T23898]  </TASK>
[ 1065.452149][T23692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.461001][T23898] Mem-Info:
[ 1065.462157][T23692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1065.468403][T23898] active_anon:10100 inactive_anon:0 isolated_anon:0
[ 1065.468403][T23898]  active_file:18806 inactive_file:40327 isolated_file:0
[ 1065.468403][T23898]  unevictable:768 dirty:109 writeback:0
[ 1065.468403][T23898]  slab_reclaimable:10646 slab_unreclaimable:94924
[ 1065.468403][T23898]  mapped:24766 shmem:1361 pagetables:506
[ 1065.468403][T23898]  sec_pagetables:0 bounce:0
[ 1065.468403][T23898]  kernel_misc_reclaimable:0
[ 1065.468403][T23898]  free:1338498 free_pcp:9824 free_cma:0
[ 1065.475714][T23692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1065.477259][T23692] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1065.556829][T23898] Node 0 active_anon:40440kB inactive_anon:0kB active_file:75224kB inactive_file:161112kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:99112kB dirty:444kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10152kB pagetables:2056kB sec_pagetables:0kB all_unreclaimable? no
[ 1065.574084][T23692] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.598710][T23898] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1065.600734][T23692] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.642890][T23898] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1065.647489][T23692] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.671112][T23898] lowmem_reserve[]: 0 2521 2522 2522 2522
[ 1065.687657][T23898] Node 0 DMA32 free:1443608kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:40404kB inactive_anon:0kB active_file:75224kB inactive_file:160288kB unevictable:1536kB writepending:444kB present:3129332kB managed:2586964kB mlocked:0kB bounce:0kB free_pcp:21168kB local_pcp:18652kB free_cma:0kB
[ 1065.721023][T23898] lowmem_reserve[]: 0 0 0 0 0
[ 1065.726679][T23692] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.740551][T23898] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:824kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB
[ 1065.768412][T23898] lowmem_reserve[]: 0 0 0 0 0
[ 1065.780246][T23898] Node 1 Normal free:3895024kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:17892kB local_pcp:7492kB free_cma:0kB
[ 1065.812517][T23898] lowmem_reserve[]: 0 0 0 0 0
[ 1065.817914][T23898] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1065.885511][T23898] Node 0 DMA32: 650*4kB (UM) 900*8kB (UME) 1023*16kB (UME) 1119*32kB (UME) 540*64kB (UME) 455*128kB (UME) 226*256kB (UM) 143*512kB (UM) 92*1024kB (UM) 25*2048kB (UM) 247*4096kB (UME) = 1442968kB
[ 1065.895383][ T7859] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1065.907749][T23898] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1065.951711][ T7859] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1065.959943][T23898] Node 1 Normal: 244*4kB (UE) 54*8kB (UME) 45*16kB (UME) 45*32kB (UME) 22*64kB (UE) 7*128kB (UME) 2*256kB (UE) 1*512kB (M) 1*1024kB (E) 2*2048kB (UE) 948*4096kB (M) = 3895024kB
[ 1065.996237][T22176] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1066.007487][T22176] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1066.021490][T23898] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1066.059266][T23898] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1066.078755][T23898] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1066.088601][T23898] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1066.104214][T23898] 60496 total pagecache pages
[ 1066.109053][T23898] 0 pages in swap cache
[ 1066.113540][T23898] Free swap  = 124728kB
[ 1066.117826][T23898] Total swap = 124996kB
[ 1066.170290][T23898] 2097051 pages RAM
[ 1066.185168][T23898] 0 pages HighMem/MovableOnly
[ 1066.189892][T23898] 416924 pages reserved
[ 1066.202164][T23898] 0 pages cma reserved
[ 1066.352357][T23916] sit0: entered allmulticast mode
[ 1066.427280][T23919] sit0: entered promiscuous mode
[ 1066.994421][T20805] Bluetooth: hci0: unexpected event 0x30 length: 15 > 3
[ 1067.904334][T23958] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5043'.
[ 1067.951220][T23958] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5043'.
[ 1068.291892][T23965] netlink: 65027 bytes leftover after parsing attributes in process `syz.3.5047'.
[ 1070.072136][T23997] syzkaller0: entered promiscuous mode
[ 1070.129834][T23997] syzkaller0: entered allmulticast mode
[ 1075.995450][T24025] netlink: 3 bytes leftover after parsing attributes in process `syz.2.5063'.
[ 1076.163759][T24030] sctp: [Deprecated]: syz.0.5065 (pid 24030) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1076.163759][T24030] Use struct sctp_sack_info instead
[ 1078.952726][T24070] syzkaller0: entered promiscuous mode
[ 1078.958362][T24070] syzkaller0: entered allmulticast mode
[ 1078.960078][T24058] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1084.084532][T14247] Bluetooth: hci1: command 0x0406 tx timeout
[ 1084.405192][T20805] Bluetooth: hci3: unexpected event 0x04 length: 15 > 10
[ 1084.663882][T24123] sctp: [Deprecated]: syz.3.5088 (pid 24123) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1084.663882][T24123] Use struct sctp_sack_info instead
[ 1084.665958][T24122] sctp: [Deprecated]: syz.1.5089 (pid 24122) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1084.665958][T24122] Use struct sctp_sack_info instead
[ 1084.758839][T24129] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.5090'.
[ 1084.854547][T24131] syzkaller0: entered promiscuous mode
[ 1084.860079][T24131] syzkaller0: entered allmulticast mode
[ 1085.723758][T24149] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1086.484355][T20805] Bluetooth: hci3: command tx timeout
[ 1087.817553][T24161] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.5100'.
[ 1088.207901][T24185] syzkaller0: entered promiscuous mode
[ 1088.226365][T24185] syzkaller0: entered allmulticast mode
[ 1088.384236][T24191] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1090.788410][T24199] netlink: 'syz.2.5112': attribute type 10 has an invalid length.
[ 1090.806574][T24199] team0: Device hsr_slave_0 failed to register rx_handler
[ 1090.946763][T24203] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.5113'.
[ 1091.093740][T24214] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5119'.
[ 1091.277594][T24223] syzkaller0: entered promiscuous mode
[ 1091.284187][T24223] syzkaller0: entered allmulticast mode
[ 1093.728658][T24226] netlink: 'syz.2.5124': attribute type 4 has an invalid length.
[ 1093.832916][T24235] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5127'.
[ 1093.853428][T24234] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5127'.
[ 1093.884940][T24234] netlink: 'syz.0.5127': attribute type 17 has an invalid length.
[ 1093.919022][T24234] netlink: 152 bytes leftover after parsing attributes in process `syz.0.5127'.
[ 1093.946417][T24234] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1093.972542][T24235] netlink: 'syz.0.5127': attribute type 17 has an invalid length.
[ 1093.986518][T24235] netlink: 152 bytes leftover after parsing attributes in process `syz.0.5127'.
[ 1094.052120][T24237] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1094.530428][T24268] syzkaller0: entered promiscuous mode
[ 1094.536321][T24268] syzkaller0: entered allmulticast mode
[ 1097.367289][T24295] netlink: 'syz.2.5142': attribute type 9 has an invalid length.
[ 1097.386495][T24295] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.5142'.
[ 1097.827085][T24294] delete_channel: no stack
[ 1098.059948][T24317] syzkaller0: entered promiscuous mode
[ 1098.111004][T24317] syzkaller0: entered allmulticast mode
[ 1098.716213][T24331] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.5150'.
[ 1101.390532][T24339] netlink: 'syz.3.5153': attribute type 3 has an invalid length.
[ 1101.419207][T24339] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.5153'.
[ 1101.750888][T24354] netlink: 188 bytes leftover after parsing attributes in process `syz.3.5158'.
[ 1101.890749][T24358] ÿ: renamed from bond_slave_0 (while UP)
[ 1102.248690][T24365] syzkaller0: entered promiscuous mode
[ 1102.255051][T24365] syzkaller0: entered allmulticast mode
[ 1104.509318][T24375] netlink: 'syz.0.5164': attribute type 10 has an invalid length.
[ 1104.519950][T24375] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1104.527441][T24375] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1104.550167][T24375] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1104.557399][T24375] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1104.564977][T24375] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1104.572487][T24375] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1104.600239][T24375] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1104.609184][T24379] C: renamed from team_slave_0 (while UP)
[ 1104.645968][T24379] netlink: 'syz.1.5166': attribute type 1 has an invalid length.
[ 1104.660932][T24379] netlink: 116 bytes leftover after parsing attributes in process `syz.1.5166'.
[ 1105.260353][T24400] netlink: 'syz.1.5172': attribute type 10 has an invalid length.
[ 1105.705533][T24410] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.5176'.
[ 1105.716598][T24410] openvswitch: netlink: Message has 20476 unknown bytes.
[ 1105.804749][T24417] syzkaller0: entered promiscuous mode
[ 1105.810332][T24417] syzkaller0: entered allmulticast mode
[ 1108.974802][T24475] syzkaller0: entered promiscuous mode
[ 1109.032790][T24475] syzkaller0: entered allmulticast mode
[ 1109.069637][T24478] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5194'.
[ 1109.094090][T24484] netlink: 164 bytes leftover after parsing attributes in process `syz.3.5194'.
[ 1111.655097][T24497] IPv6: …: Disabled Multicast RS
[ 1111.663463][T24503] netlink: 'syz.3.5203': attribute type 21 has an invalid length.
[ 1111.675805][T24503] netlink: 128 bytes leftover after parsing attributes in process `syz.3.5203'.
[ 1111.701355][T24503] netlink: 'syz.3.5203': attribute type 4 has an invalid length.
[ 1111.709764][T24503] netlink: 'syz.3.5203': attribute type 5 has an invalid length.
[ 1111.743126][T24503] netlink: 3 bytes leftover after parsing attributes in process `syz.3.5203'.
[ 1111.885236][T24516] vcan0: entered allmulticast mode
[ 1111.898246][T24516] netlink: 'syz.2.5206': attribute type 10 has an invalid length.
[ 1111.926327][T24516] veth0_macvtap: left promiscuous mode
[ 1112.559255][T24518] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1112.645505][T24540] netlink: 'syz.0.5212': attribute type 29 has an invalid length.
[ 1112.680589][T24540] netlink: 'syz.0.5212': attribute type 29 has an invalid length.
[ 1112.727212][T24540] netlink: 'syz.0.5212': attribute type 29 has an invalid length.
[ 1112.784087][T24541] netlink: 'syz.0.5212': attribute type 29 has an invalid length.
[ 1112.825307][T24540] netlink: 'syz.0.5212': attribute type 29 has an invalid length.
[ 1113.232941][T24554] bridge_slave_1: left allmulticast mode
[ 1113.263549][T24554] bridge_slave_1: left promiscuous mode
[ 1113.295598][T24554] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1113.394982][T24541] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.5212'.
[ 1113.441767][T24554] bridge_slave_0: left allmulticast mode
[ 1113.465679][T24554] bridge_slave_0: left promiscuous mode
[ 1113.486750][T24554] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1114.261835][T24565] netlink: 'syz.0.5219': attribute type 10 has an invalid length.
[ 1114.291132][T24565] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5219'.
[ 1114.625626][T24556] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5215'.
[ 1114.644039][T24565] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5219'.
[ 1115.121983][T24584] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1115.601041][T24601] netlink: 156 bytes leftover after parsing attributes in process `syz.1.5230'.
[ 1115.947853][T24609] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5231'.
[ 1115.962463][T24609] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5231'.
[ 1116.165812][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.173859][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.238196][T24621] netlink: 56843 bytes leftover after parsing attributes in process `syz.3.5235'.
[ 1116.730464][T24636] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1116.856333][T24653] validate_nla: 5 callbacks suppressed
[ 1116.856350][T24653] netlink: 'syz.2.5245': attribute type 21 has an invalid length.
[ 1116.911502][T24653] __nla_validate_parse: 1 callbacks suppressed
[ 1116.911520][T24653] netlink: 156 bytes leftover after parsing attributes in process `syz.2.5245'.
[ 1117.191906][T24660] netlink: 'syz.3.5246': attribute type 10 has an invalid length.
[ 1117.200304][T24660] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5246'.
[ 1117.214179][T24660] netlink: 'syz.3.5246': attribute type 10 has an invalid length.
[ 1117.251179][T24660] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5246'.
[ 1118.345092][T24690] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1118.683112][T24707] netlink: 'syz.1.5260': attribute type 10 has an invalid length.
[ 1118.710957][T24707] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5260'.
[ 1118.746348][T24707] netlink: 'syz.1.5260': attribute type 10 has an invalid length.
[ 1118.762199][T24707] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5260'.
[ 1118.954288][T24718] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5263'.
[ 1118.987672][T24724] netlink: 'syz.2.5264': attribute type 10 has an invalid length.
[ 1119.002119][T24724] netlink: 210880 bytes leftover after parsing attributes in process `syz.2.5264'.
[ 1119.079808][T24718] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1119.266777][T24718] bridge_slave_0 (unregistering): left allmulticast mode
[ 1119.275592][T24718] bridge_slave_0 (unregistering): left promiscuous mode
[ 1119.284920][T24718] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1119.832267][T24741] netlink: 'syz.1.5267': attribute type 10 has an invalid length.
[ 1119.841017][T24741] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5267'.
[ 1119.853667][T24741] batman_adv: batadv0: Adding interface: veth0_vlan
[ 1119.878084][T24741] batman_adv: batadv0: The MTU of interface veth0_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1119.962545][T24741] batman_adv: batadv0: Interface activated: veth0_vlan
[ 1121.119681][T24743] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1121.337009][T24754] syzkaller0: entered promiscuous mode
[ 1121.356676][T24754] syzkaller0: entered allmulticast mode
[ 1121.387206][T24760] netlink: 763 bytes leftover after parsing attributes in process `syz.2.5274'.
[ 1121.838679][T24766] netlink: 'syz.1.5276': attribute type 29 has an invalid length.
[ 1122.195277][T24765] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5276'.
[ 1122.315724][T24765] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1122.339750][T24765] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1122.364372][T24765] bond0 (unregistering): Released all slaves
[ 1122.376727][T24766] netlink: 'syz.1.5276': attribute type 29 has an invalid length.
[ 1122.453118][T24768] syzkaller0: entered promiscuous mode
[ 1122.459232][T24768] syzkaller0: entered allmulticast mode
[ 1127.217818][T24774] team0: left allmulticast mode
[ 1127.222822][T24774] team_slave_0: left allmulticast mode
[ 1127.228290][T24774] team_slave_1: left allmulticast mode
[ 1127.234493][T24774] team0: left promiscuous mode
[ 1127.239285][T24774] team_slave_0: left promiscuous mode
[ 1127.244897][T24774] team_slave_1: left promiscuous mode
[ 1127.250507][T24774] bridge0: port 3(team0) entered disabled state
[ 1127.258506][T24774] bridge_slave_1: left allmulticast mode
[ 1127.264238][T24774] bridge_slave_1: left promiscuous mode
[ 1127.270307][T24774] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1127.365219][T24777] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5277'.
[ 1127.375332][T24798] netlink: 'syz.1.5286': attribute type 4 has an invalid length.
[ 1127.386493][T24798] netlink: 152 bytes leftover after parsing attributes in process `syz.1.5286'.
[ 1127.397809][T24798] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1128.482233][T20805] Bluetooth: hci3: command 0x0406 tx timeout
[ 1130.727212][T24858] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5308'.
[ 1131.441748][T24882] syzkaller0: entered promiscuous mode
[ 1131.452752][T24882] syzkaller0: entered allmulticast mode
[ 1133.576008][T24896] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5321'.
[ 1133.793141][T24907] netlink: 'syz.2.5323': attribute type 10 has an invalid length.
[ 1133.908276][T24907] team0: Port device wlan1 added
[ 1134.771443][T24939] netlink: 'syz.0.5335': attribute type 21 has an invalid length.
[ 1134.801711][T24939] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5335'.
[ 1134.963229][T24943] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1134.970054][T24943] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1137.236927][T25000] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.5353'.
[ 1138.804156][T25043] ÿ: renamed from bond_slave_0
[ 1139.928620][T25077] ==================================================================
[ 1139.936741][T25077] BUG: KASAN: slab-out-of-bounds in __bpf_get_stackid+0x6bf/0x900
[ 1139.944582][T25077] Write of size 56 at addr ffff88805cfc5610 by task syz.1.5377/25077
[ 1139.952931][T25077] 
[ 1139.955273][T25077] CPU: 1 PID: 25077 Comm: syz.1.5377 Not tainted syzkaller #0
[ 1139.962745][T25077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1139.972820][T25077] Call Trace:
[ 1139.976133][T25077]  <TASK>
[ 1139.979081][T25077]  dump_stack_lvl+0x18c/0x250
[ 1139.983878][T25077]  ? __lock_acquire+0x7d40/0x7d40
[ 1139.988934][T25077]  ? show_regs_print_info+0x20/0x20
[ 1139.994261][T25077]  ? load_image+0x400/0x400
[ 1139.998781][T25077]  ? _raw_spin_lock_irqsave+0xc0/0x100
[ 1140.004462][T25077]  ? __virt_addr_valid+0x18c/0x540
[ 1140.009570][T25077]  ? __virt_addr_valid+0x469/0x540
[ 1140.014686][T25077]  print_report+0xa8/0x210
[ 1140.019096][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1140.024196][T25077]  kasan_report+0x117/0x150
[ 1140.028698][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1140.033819][T25077]  kasan_check_range+0x241/0x290
[ 1140.038795][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1140.043929][T25077]  __asan_memcpy+0x40/0x70
[ 1140.048370][T25077]  __bpf_get_stackid+0x6bf/0x900
[ 1140.053434][T25077]  bpf_get_stackid_pe+0x343/0x410
[ 1140.058496][T25077]  bpf_prog_a448e89f4c9ad9d1+0x30/0x4a
[ 1140.063989][T25077]  bpf_overflow_handler+0x1fc/0x510
[ 1140.069216][T25077]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1140.075410][T25077]  ? bpf_overflow_handler+0xde/0x510
[ 1140.080721][T25077]  ? tp_perf_event_destroy+0x20/0x20
[ 1140.086040][T25077]  ? __perf_event_account_interrupt+0x187/0x280
[ 1140.092315][T25077]  __perf_event_overflow+0x447/0x630
[ 1140.097640][T25077]  perf_swevent_event+0x324/0x630
[ 1140.102697][T25077]  ? perf_tp_event+0x1450/0x1450
[ 1140.107655][T25077]  ? perf_tp_event+0x132d/0x1450
[ 1140.112620][T25077]  ___perf_sw_event+0x4a7/0x730
[ 1140.117503][T25077]  ? ___perf_sw_event+0x199/0x730
[ 1140.122565][T25077]  ? perf_swevent_put_recursion_context+0xb0/0xb0
[ 1140.129015][T25077]  ? strncpy_from_user+0xff/0x2d0
[ 1140.134071][T25077]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1140.140075][T25077]  ? lock_chain_count+0x20/0x20
[ 1140.145026][T25077]  __perf_sw_event+0x139/0x270
[ 1140.149787][T25077]  do_user_addr_fault+0x123e/0x12c0
[ 1140.154981][T25077]  ? rcu_is_watching+0x15/0xb0
[ 1140.159851][T25077]  exc_page_fault+0x64/0x100
[ 1140.164462][T25077]  asm_exc_page_fault+0x26/0x30
[ 1140.169323][T25077] RIP: 0010:strncpy_from_user+0xff/0x2d0
[ 1140.174952][T25077] Code: 4c 89 ee e8 73 dc 2a fd 49 83 fd 07 0f 86 a1 00 00 00 4c 89 74 24 08 48 c7 44 24 10 f8 ff ff ff 45 31 e4 4c 89 3c 24 49 89 de <4f> 8b 3c 27 48 b8 ff fe fe fe fe fe fe fe 49 8d 1c 07 4c 89 fd 48
[ 1140.194648][T25077] RSP: 0018:ffffc9000443fd40 EFLAGS: 00050246
[ 1140.200796][T25077] RAX: ffffffff845c442d RBX: ffff888075e33320 RCX: ffff888064473c00
[ 1140.208758][T25077] RDX: 0000000000000002 RSI: 0000000000000fe0 RDI: 0000000000000007
[ 1140.216719][T25077] RBP: 0000000000000000 R08: ffffea0001d78c07 R09: 1ffffd40003af180
[ 1140.224715][T25077] R10: dffffc0000000000 R11: fffff940003af181 R12: 0000000000000000
[ 1140.232702][T25077] R13: 0000000000000fe0 R14: ffff888075e33320 R15: 0000000000000000
[ 1140.240684][T25077]  ? strncpy_from_user+0xdd/0x2d0
[ 1140.245723][T25077]  getname_flags+0xf6/0x500
[ 1140.250354][T25077]  do_sys_openat2+0xda/0x1d0
[ 1140.254959][T25077]  ? perf_trace_preemptirq_template+0x269/0x330
[ 1140.261300][T25077]  ? do_sys_open+0xe0/0xe0
[ 1140.265711][T25077]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1140.271683][T25077]  ? lock_chain_count+0x20/0x20
[ 1140.276537][T25077]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1140.282519][T25077]  __x64_sys_openat+0x139/0x160
[ 1140.287380][T25077]  do_syscall_64+0x55/0xa0
[ 1140.291799][T25077]  ? clear_bhb_loop+0x40/0x90
[ 1140.296478][T25077]  ? clear_bhb_loop+0x40/0x90
[ 1140.301151][T25077]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1140.307031][T25077] RIP: 0033:0x7fed2b39c799
[ 1140.311439][T25077] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1140.331041][T25077] RSP: 002b:00007fed2c217028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1140.339445][T25077] RAX: ffffffffffffffda RBX: 00007fed2b616090 RCX: 00007fed2b39c799
[ 1140.347419][T25077] RDX: 0000000000123001 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1140.355382][T25077] RBP: 00007fed2b432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1140.363345][T25077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1140.371312][T25077] R13: 00007fed2b616128 R14: 00007fed2b616090 R15: 00007fff3941d0a8
[ 1140.379284][T25077]  </TASK>
[ 1140.382294][T25077] 
[ 1140.384617][T25077] Allocated by task 25077:
[ 1140.389027][T25077]  kasan_set_track+0x4e/0x70
[ 1140.393619][T25077]  __kasan_kmalloc+0x8f/0xa0
[ 1140.398202][T25077]  __kmalloc_node+0xb4/0x230
[ 1140.402796][T25077]  bpf_map_area_alloc+0x5e/0x110
[ 1140.407814][T25077]  prealloc_elems_and_freelist+0x86/0x1c0
[ 1140.413527][T25077]  stack_map_alloc+0x33a/0x4c0
[ 1140.418295][T25077]  map_create+0x877/0x12f0
[ 1140.422711][T25077]  __sys_bpf+0x651/0x890
[ 1140.426939][T25077]  __x64_sys_bpf+0x7c/0x90
[ 1140.431341][T25077]  do_syscall_64+0x55/0xa0
[ 1140.435763][T25077]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1140.441640][T25077] 
[ 1140.443952][T25077] Last potentially related work creation:
[ 1140.449646][T25077]  kasan_save_stack+0x3e/0x60
[ 1140.454312][T25077]  __kasan_record_aux_stack+0xaf/0xc0
[ 1140.459673][T25077]  call_rcu+0x153/0x950
[ 1140.463818][T25077]  nf_unregister_net_hooks+0xcb/0x130
[ 1140.469188][T25077]  nf_defrag_ipv6_disable+0x95/0xe0
[ 1140.474423][T25077]  nf_ct_netns_put+0x375/0x520
[ 1140.479177][T25077]  nf_conncount_destroy+0x41/0x150
[ 1140.484297][T25077]  ovs_ct_exit+0x9c/0x200
[ 1140.488613][T25077]  ovs_exit_net+0xed/0x7a0
[ 1140.493023][T25077]  cleanup_net+0x70a/0xbb0
[ 1140.497428][T25077]  process_scheduled_works+0xa5d/0x15d0
[ 1140.502967][T25077]  worker_thread+0xa55/0xfc0
[ 1140.507546][T25077]  kthread+0x2fa/0x390
[ 1140.511600][T25077]  ret_from_fork+0x48/0x80
[ 1140.516028][T25077]  ret_from_fork_asm+0x11/0x20
[ 1140.520785][T25077] 
[ 1140.523094][T25077] Second to last potentially related work creation:
[ 1140.529751][T25077]  kasan_save_stack+0x3e/0x60
[ 1140.534417][T25077]  __kasan_record_aux_stack+0xaf/0xc0
[ 1140.539781][T25077]  call_rcu+0x153/0x950
[ 1140.543935][T25077]  nf_nat_unregister_fn+0x1f4/0x380
[ 1140.549123][T25077]  iptable_nat_net_pre_exit+0x78/0x90
[ 1140.554503][T25077]  cleanup_net+0x595/0xbb0
[ 1140.558999][T25077]  process_scheduled_works+0xa5d/0x15d0
[ 1140.564536][T25077]  worker_thread+0xa55/0xfc0
[ 1140.569135][T25077]  kthread+0x2fa/0x390
[ 1140.573211][T25077]  ret_from_fork+0x48/0x80
[ 1140.577638][T25077]  ret_from_fork_asm+0x11/0x20
[ 1140.582402][T25077] 
[ 1140.584714][T25077] The buggy address belongs to the object at ffff88805cfc5600
[ 1140.584714][T25077]  which belongs to the cache kmalloc-cg-64 of size 64
[ 1140.598842][T25077] The buggy address is located 16 bytes inside of
[ 1140.598842][T25077]  allocated 40-byte region [ffff88805cfc5600, ffff88805cfc5628)
[ 1140.612807][T25077] 
[ 1140.615127][T25077] The buggy address belongs to the physical page:
[ 1140.621529][T25077] page:ffffea000173f140 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88805cfc5100 pfn:0x5cfc5
[ 1140.632972][T25077] memcg:ffff8880259c2401
[ 1140.637199][T25077] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 1140.644727][T25077] page_type: 0xffffffff()
[ 1140.649050][T25077] raw: 00fff00000000800 ffff888017c4da00 ffffea000073f800 dead000000000004
[ 1140.657623][T25077] raw: ffff88805cfc5100 000000008020001f 00000001ffffffff ffff8880259c2401
[ 1140.666187][T25077] page dumped because: kasan: bad access detected
[ 1140.672597][T25077] page_owner tracks the page as allocated
[ 1140.678297][T25077] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 5766, tgid 5766 (syz-executor), ts 72187140948, free_ts 17343165990
[ 1140.696618][T25077]  post_alloc_hook+0x1c1/0x200
[ 1140.701383][T25077]  get_page_from_freelist+0x1951/0x19e0
[ 1140.706929][T25077]  __alloc_pages+0x1f0/0x460
[ 1140.711510][T25077]  alloc_slab_page+0x5d/0x160
[ 1140.716198][T25077]  new_slab+0x87/0x2d0
[ 1140.720259][T25077]  ___slab_alloc+0xc5d/0x12f0
[ 1140.724925][T25077]  __kmem_cache_alloc_node+0x19e/0x250
[ 1140.730373][T25077]  __kmalloc_node+0xa4/0x230
[ 1140.735128][T25077]  kvmalloc_node+0x70/0x180
[ 1140.739618][T25077]  nf_hook_entries_grow+0x27d/0x6d0
[ 1140.744804][T25077]  nf_hook_entries_insert_raw+0x4b/0x300
[ 1140.750423][T25077]  nf_nat_register_fn+0x1d0/0x580
[ 1140.755439][T25077]  ip6table_nat_table_init+0x14f/0x2d0
[ 1140.760887][T25077]  xt_find_table_lock+0x306/0x3e0
[ 1140.765984][T25077]  xt_request_find_table_lock+0x26/0x100
[ 1140.771602][T25077]  do_ip6t_get_ctl+0x717/0x1210
[ 1140.776444][T25077] page last free stack trace:
[ 1140.781101][T25077]  free_unref_page_prepare+0x7b2/0x8c0
[ 1140.786556][T25077]  free_unref_page+0x32/0x2e0
[ 1140.791223][T25077]  free_contig_range+0xa1/0x150
[ 1140.796061][T25077]  destroy_args+0x80/0x850
[ 1140.800467][T25077]  debug_vm_pgtable+0x411/0x440
[ 1140.805308][T25077]  do_one_initcall+0x242/0x790
[ 1140.810065][T25077]  do_initcall_level+0x137/0x1f0
[ 1140.815002][T25077]  do_initcalls+0x69/0xd0
[ 1140.819329][T25077]  kernel_init_freeable+0x3ed/0x580
[ 1140.824516][T25077]  kernel_init+0x1d/0x1c0
[ 1140.828833][T25077]  ret_from_fork+0x48/0x80
[ 1140.833247][T25077]  ret_from_fork_asm+0x11/0x20
[ 1140.838011][T25077] 
[ 1140.840345][T25077] Memory state around the buggy address:
[ 1140.845965][T25077]  ffff88805cfc5500: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1140.854009][T25077]  ffff88805cfc5580: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1140.862071][T25077] >ffff88805cfc5600: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc
[ 1140.870138][T25077]                                   ^
[ 1140.875503][T25077]  ffff88805cfc5680: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1140.883642][T25077]  ffff88805cfc5700: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1140.891687][T25077] ==================================================================
[ 1140.905443][T25077] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1140.912669][T25077] CPU: 1 PID: 25077 Comm: syz.1.5377 Not tainted syzkaller #0
[ 1140.920144][T25077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1140.930220][T25077] Call Trace:
[ 1140.933780][T25077]  <TASK>
[ 1140.936720][T25077]  dump_stack_lvl+0x18c/0x250
[ 1140.941428][T25077]  ? show_regs_print_info+0x20/0x20
[ 1140.946736][T25077]  ? load_image+0x400/0x400
[ 1140.951262][T25077]  panic+0x2dc/0x730
[ 1140.955284][T25077]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1140.961468][T25077]  ? bpf_jit_dump+0xd0/0xd0
[ 1140.965998][T25077]  ? _raw_spin_unlock_irqrestore+0xc0/0x120
[ 1140.971916][T25077]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1140.977824][T25077]  ? _raw_spin_unlock+0x40/0x40
[ 1140.982667][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1140.987856][T25077]  check_panic_on_warn+0x84/0xa0
[ 1140.992794][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1140.997990][T25077]  end_report+0x6f/0x130
[ 1141.002250][T25077]  kasan_report+0x128/0x150
[ 1141.006750][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1141.011866][T25077]  kasan_check_range+0x241/0x290
[ 1141.016827][T25077]  ? __bpf_get_stackid+0x6bf/0x900
[ 1141.021956][T25077]  __asan_memcpy+0x40/0x70
[ 1141.026365][T25077]  __bpf_get_stackid+0x6bf/0x900
[ 1141.031391][T25077]  bpf_get_stackid_pe+0x343/0x410
[ 1141.036516][T25077]  bpf_prog_a448e89f4c9ad9d1+0x30/0x4a
[ 1141.041974][T25077]  bpf_overflow_handler+0x1fc/0x510
[ 1141.047177][T25077]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1141.053369][T25077]  ? bpf_overflow_handler+0xde/0x510
[ 1141.058671][T25077]  ? tp_perf_event_destroy+0x20/0x20
[ 1141.063969][T25077]  ? __perf_event_account_interrupt+0x187/0x280
[ 1141.070310][T25077]  __perf_event_overflow+0x447/0x630
[ 1141.075591][T25077]  perf_swevent_event+0x324/0x630
[ 1141.080609][T25077]  ? perf_tp_event+0x1450/0x1450
[ 1141.085553][T25077]  ? perf_tp_event+0x132d/0x1450
[ 1141.090482][T25077]  ___perf_sw_event+0x4a7/0x730
[ 1141.095325][T25077]  ? ___perf_sw_event+0x199/0x730
[ 1141.100339][T25077]  ? perf_swevent_put_recursion_context+0xb0/0xb0
[ 1141.106751][T25077]  ? strncpy_from_user+0xff/0x2d0
[ 1141.111777][T25077]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1141.117764][T25077]  ? lock_chain_count+0x20/0x20
[ 1141.122629][T25077]  __perf_sw_event+0x139/0x270
[ 1141.127402][T25077]  do_user_addr_fault+0x123e/0x12c0
[ 1141.132603][T25077]  ? rcu_is_watching+0x15/0xb0
[ 1141.137367][T25077]  exc_page_fault+0x64/0x100
[ 1141.141961][T25077]  asm_exc_page_fault+0x26/0x30
[ 1141.146976][T25077] RIP: 0010:strncpy_from_user+0xff/0x2d0
[ 1141.152602][T25077] Code: 4c 89 ee e8 73 dc 2a fd 49 83 fd 07 0f 86 a1 00 00 00 4c 89 74 24 08 48 c7 44 24 10 f8 ff ff ff 45 31 e4 4c 89 3c 24 49 89 de <4f> 8b 3c 27 48 b8 ff fe fe fe fe fe fe fe 49 8d 1c 07 4c 89 fd 48
[ 1141.172254][T25077] RSP: 0018:ffffc9000443fd40 EFLAGS: 00050246
[ 1141.178342][T25077] RAX: ffffffff845c442d RBX: ffff888075e33320 RCX: ffff888064473c00
[ 1141.186320][T25077] RDX: 0000000000000002 RSI: 0000000000000fe0 RDI: 0000000000000007
[ 1141.194294][T25077] RBP: 0000000000000000 R08: ffffea0001d78c07 R09: 1ffffd40003af180
[ 1141.202258][T25077] R10: dffffc0000000000 R11: fffff940003af181 R12: 0000000000000000
[ 1141.210224][T25077] R13: 0000000000000fe0 R14: ffff888075e33320 R15: 0000000000000000
[ 1141.218281][T25077]  ? strncpy_from_user+0xdd/0x2d0
[ 1141.223310][T25077]  getname_flags+0xf6/0x500
[ 1141.227807][T25077]  do_sys_openat2+0xda/0x1d0
[ 1141.232387][T25077]  ? perf_trace_preemptirq_template+0x269/0x330
[ 1141.238623][T25077]  ? do_sys_open+0xe0/0xe0
[ 1141.243026][T25077]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1141.249015][T25077]  ? lock_chain_count+0x20/0x20
[ 1141.253867][T25077]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1141.259842][T25077]  __x64_sys_openat+0x139/0x160
[ 1141.264691][T25077]  do_syscall_64+0x55/0xa0
[ 1141.269102][T25077]  ? clear_bhb_loop+0x40/0x90
[ 1141.273766][T25077]  ? clear_bhb_loop+0x40/0x90
[ 1141.278454][T25077]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1141.284356][T25077] RIP: 0033:0x7fed2b39c799
[ 1141.288869][T25077] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1141.308484][T25077] RSP: 002b:00007fed2c217028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1141.316900][T25077] RAX: ffffffffffffffda RBX: 00007fed2b616090 RCX: 00007fed2b39c799
[ 1141.324863][T25077] RDX: 0000000000123001 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1141.332822][T25077] RBP: 00007fed2b432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1141.340787][T25077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1141.348747][T25077] R13: 00007fed2b616128 R14: 00007fed2b616090 R15: 00007fff3941d0a8
[ 1141.356812][T25077]  </TASK>
[ 1141.360289][T25077] Kernel Offset: disabled
[ 1141.364695][T25077] Rebooting in 86400 seconds..