last executing test programs:

2.135581614s ago: executing program 2 (id=23080):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00e1ff00000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0xf, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
r2 = socket$kcm(0x2c, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffc54}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0x8}, 0x0, 0x360, 0x0, 0x6, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
close(r2)
r3 = socket$kcm(0x2, 0x6, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x3e, &(0x7f00000002c0)=r1, 0x4)
sendmsg$inet(r3, &(0x7f0000001a40)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000900)=r0, 0x4)
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

1.967123949s ago: executing program 2 (id=23084):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000008085000000700000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000800000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0xfffffef3, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x5562, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_clone(0x100, &(0x7f0000000780), 0x0, &(0x7f00000007c0), &(0x7f0000000800), &(0x7f0000000840)="89ced28dc55d4c52bf31e7d1918a51ae2b1d551a2f31e561fbe460e2d77ab8d5e19840ef96b9ffbd9018a35660e5fdcfb6b3946d0ced0ca5e6aca5cd1b8a8a179d3afa0439e592efbaf4482ca2fac82321b8b1c310a7fce000f76430f5f9663cf76fbaa06a68fd9fed1e8dda5d5f050f71663a4cf96f4c6be5169253011cef111c15eed65fbfec9cec0c294d11f6feae7bceba9825b39726cdc56f769490bebf4807ca23037ad9c939a7f086e436547dd0559a3be8f6b9c3d549b45e36c65e13bbd17962cbc8eac4332e881855bb3c1c2b869bbb8e2fa72663289c4f34e33aa70ef67c2f922435064240ad87")
r5 = getpid()
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x1}}, r5, 0x0, 0xffffffffffffffff, 0x9)
r6 = getpid()
sendmsg$unix(r3, &(0x7f00000009c0)={&(0x7f0000000340)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000700)=[{&(0x7f00000003c0)="2cd75310326cffa3f169026bffed08269a73be805366d63bb744d27af1982fe7c1eb9997a675bed13ca6752e83926cf4294885b96430100df35cdec6610cd691d1a1146f16f60ac8200022990655957cc6d04a2d5161cc85d58e9662f1ae6bddc09f79d25f71e20ecd3752de05aa98c530a8f9ee107785fd5a7206df1749f01ed44284e27cfebcc2c7ee16c1df998badf1091e6f0e4d7184dab3b68008dd622927a77c8c4531e7b68f9023e4d8b173c2eac95710c23a5645687ccf608deba88a4b79d26cb0f5c67f52dd3e6de41a2d3682d3b30d8a4ba2c9ff2f0bda4ba6c1ce6f3ddc22057d98ea", 0xe8}, {&(0x7f00000004c0)="40cd7fd00db01aad46591a34067a8cf5211b23904d99c8b810d560ba4069d496cf091414b75ee9d1eb701f3a70f22ea07d1d2a792984bfaa2e99178b643dcb7de191115f5afaf787596c76a110dbcf", 0x4f}, {&(0x7f0000000540)='7', 0x1}, {&(0x7f0000000580)="1abc4214646b735a3a2ef2c4a7ebcb034fb390d012c22a6ba1ee1f9cc011310f9a3624416283b531bff3f9c0d3335d930a5453654f7c0b4de12369740ccd1caa3b95362cea7b5ec2a407f1c95b4cecc5ed490f04a9453a295f69f7d66950c108d4ca8d4497405f3ffcce3e310e4b89d43f978dcc6c0082", 0x77}, {&(0x7f0000000600)}, {&(0x7f0000000640)="94c77ca57f463a", 0x7}, {&(0x7f0000000680)="1d24638fd91bd2ad0102b955c00d8dab2526171f372857aa3fc7b710a236f6c6ac4abf0d620906e19cc9750b3475f70b97a957f6b2a03ed3f82320ff51c98eff5f3196495db8f434b598c1f1e73136dd9ab926004fb078fd", 0x58}], 0x7, &(0x7f0000000940)=[@cred={{0x1c, 0x1, 0x2, {r4}}}, @cred={{0x1c, 0x1, 0x2, {r5, 0xee00, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r6, 0xee01, 0xee00}}}], 0x60, 0x2000c814}, 0x4001)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000300)={0x5, &(0x7f0000000000)=[{0x4d, 0x1, 0x3, 0xffff}, {0x64}, {0x0, 0x0, 0x2}, {}, {0x6}]})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e000000040000000800000007"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000780)={0x0, r7}, 0x8)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xd, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r2, @ANYRES8=r5], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000000c0)={r8}, 0xc)
close(r3)

1.907089591s ago: executing program 0 (id=23085):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="660a00000000000018ff7bdc38e5af608161114c000000000085000000630000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x80)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
r0 = perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x80000001}, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5d31, 0x20, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x2, @perf_bp={0x0}, 0xa010, 0x0, 0x0, 0x5, 0x8, 0x40000000, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0xa, 0x3, 0x3a)
r2 = socket$kcm(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x12100, 0xc8, 0x2, 0x8, 0x0, 0x10001, 0xa, 0x0, 0x800}, 0x0, 0x5, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
close(0xffffffffffffffff)
sendmsg$inet(r1, &(0x7f0000000740)={&(0x7f0000000140)={0x2, 0x4e22, @remote}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000400)="0177e575950ee16b3a5bb5046c09e862657de2826dd82fa54efa2aa1cea751d61273335d019a1c16b52fe0e3d0fa0dc250085c587328bbfbdb7ce091e42df3425a47bed1247d0c836c82d1c7a6e2915629ff8c39378f9cf88b317d861654", 0x5e}, {&(0x7f0000000640)="f16c2d41bf6b8cff0c0d4e51f09880c8b51de8602f84f087c301e5708779796c1b50d3aa6051e1c29505d3e75f34bd49fa80121bb506e25ca8730e123de4c3acb40bf5c718c2a38c8ea68f27e4b719c403ac0ea3dda97c5bf797c9eb6696", 0x5e}], 0x2, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @broadcast}}}], 0x20}, 0xc1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0xfdef)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x24, 0xa, 0x0, &(0x7f0000000600))
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(0x3)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffa3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6c2}, 0x94)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000000c0)=r3, 0x4)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)=ANY=[@ANYRES32=0x0, @ANYBLOB="000000000020df070000000000000000000000005f11f7a4cee495ce", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080), 0xc)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x7fffffffffffffff}, 0x4000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f00000001c0)=0x5)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000004c0)="d8000000190081154e81f782db4cb904021d0800fd02fe02e8fe50a10a000548258848000c600e41b0000900ac00080325000000040015000a00ff150048035c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x0)

1.768661135s ago: executing program 4 (id=23090):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000040), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x1ff)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair(0x5, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000200))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x12, 0x7, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xfb1585202ff31891}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x10000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000600)="c9f7b98600"/14, 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$inet(r0, &(0x7f0000000ac0)={&(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000940)=[{&(0x7f0000001880)="04", 0x1}], 0x1}, 0x88c4)

1.718283547s ago: executing program 0 (id=23091):
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xb)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x5, 0xfffffffe, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x10, 0x78}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000d40)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001b000605142603600e12080005007a010401a800160020e0034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f08000000277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb00dbb57a5027ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b", 0xd5}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="934300004300338b4ab502000000000002", @ANYRES32, @ANYRES8=r0], 0xfe33)

1.718004107s ago: executing program 2 (id=23092):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x4, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x8ed9e90c1d4f2726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0xe, 0x66c}, 0x104101, 0x3, 0x6, 0x6, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x33, 0x1, 0x0, 0x0, 0x0, 0x0, 0x14110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x429, 0x1}, 0x100040, 0x0, 0x10000, 0x1, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'netdevsim0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8946, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x7, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa500000000000007010000f8ffffffb70200000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000180)={0x4, &(0x7f0000000040)=[{0x15, 0x0, 0x2, 0xfffffffd}, {0x3, 0x4, 0x9}, {0x2c, 0x2, 0x0, 0x9}, {0x6, 0x4, 0x0, 0x2}]})
socket$kcm(0x10, 0x2, 0x10)
socketpair(0x25, 0x1, 0x401, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00', 0x10})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f0, &(0x7f0000000080))
sendmsg(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)="ef", 0x1}], 0x1}, 0x40000)
socket$kcm(0xa, 0x3, 0x3a)

1.64189167s ago: executing program 0 (id=23093):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000d40)=@base={0x5, 0x2, 0x5, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, r0}, 0x38)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x2, 0x2, 0x2, 0x3, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f0, &(0x7f0000000080))
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB='b *:4\twrr'], 0xa)

1.482093584s ago: executing program 0 (id=23096):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="09000000010000006d0500000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000ea000000000000300000008aa65e3cb2a8fcb22a0e53aa801b6ef7ffdfae6c14b5e13e2c2b225e09615374211f5939a847ab9133dc1b6ff6d3db72b31b884c5ecb360fb3ecd1eda068a575f81bf2e6d54256967b8c15be60c76033ea9d0a50e649a1097f0aff6b10bff64adcf1e3594df378980d9f7aa3224166f992eced1cb164d87d224d091f779b0a35f4b1654b410a242aec25d4d2eacdfedb"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000700)="670bd69c60e82b1f1e0264dc683874cc478eaba061c392a7cff9906bbef1cd3ea2e2fac3e16d0974eed131392c9bff798e4b0f1f3313daa08539b14bc4d31a7493fd3ee2cb730100000000000000a6ecc17a19109b3816e5c299cd54a4c61ea39331b246f9b7f31cb1db818e36fa6c52eb6019137ec32cf4f63d6e0b6e9a630c3898d5", 0x83}], 0x1}, 0x4006c)
close(r2)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x4, 0xfc, 0x0, 0x0, 0x0, 0xffff, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x8000000000}, 0x8002, 0x100003, 0x3, 0xfe8d42e69ac4daf8, 0xfff, 0x7, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x10}}], 0x10}, 0x8000)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, 0xffffffffffffffff, 0x4}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f0000000680)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a1c, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000100)={'dvmrp0\x00', 0x2})
ioctl$TUNATTACHFILTER(r5, 0x401054d5, &(0x7f0000000180)={0x2, &(0x7f00000002c0)=[{0x30, 0x1, 0x0, 0xfffff024}, {0x6, 0x0, 0x0, 0x7}]})
r6 = socket$kcm(0x29, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5070000000000000300000000000c00095000000000000002ba728041598d6fbd30cb599e83d24bd8137a3aa81e0ed139a85d36bb3019d13bd2321af3c2bd67ce68f15c0ec71d0e6adfefcf1d8f7faf75e0f226bd917060000007142fa9ea4318123751c0a0e168c1886d0d4d35379bd223ec839bc16ee988e6e0dc8cedf3ceb9fbfbf9b0a49ef42d430f6296b72a83438810720a159cda90363db3d221e152dfca64057ff3c4744aeaccd3641110bec4e9027a0c8055bbfc3a96d2e8910c2c39e4babe802f5ab3e89cf6c662ed40000000022278d00031e5388ee5c867ddd58211d6ece3ccb0cd2b6d3cffd962867a3a2f624f992daa94a6a556f3218ce740068725c37074e468ee207d2f73902ebcfcf49822775985bf31b715f5888b24efa190000000000000000000000000000ddffffff020000000000000000ddffffff0000b27cf3d1848a54d7132be1bfb0adf9deab3323aa9fdfb52faf9cb09c3bfd09000000b91ab219ef00bb7b3de8f67ffcad3f6c3c2b1f03550000000000001cf41ab11f12fb1e0a494034007de7c6592df1a6c64d8f20a67745409e011f1264d43f153b3d34889f40159e800ea2474b540500a30b23bcee46762e2093bcc9eae5ee3e980026c96f80ee1a00000000740750fa4d9aaa705989b8e673e3296e52d337c56abf112874ec51d6fe048ba6866adebab53168770a71ad901ace383e41d277b103923a9d961f7a2591dbe4a912ffaf6f658f3f9cd16286744f83a83f138f8f92efd92239eafcc5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353409e34d3e82279637599f35ad3f7ffffff3cac394c7bbdcd0e0eb52162e0c410ade7000026a4e739c60f03cc4146a77af02c1d4cefd4a2b94c0aed8477dfa8ceefb467f05c6977c78cdbf3f704ec73754910fe050038ec9e47de89298b7bf4d769ccc18eedd9068ca1457870eb30d219e23ccc8e06dddeb61799257ab5000013c86ba99523d61a00000000c270246c878d01160e6c07bf6cf8809c3a0d062357ba2515567230a6f8b2ad1e1f4933545fc3c741374211663f6b63b1dd044dd0a2768e825972fc4300001467c89fa0f82e8440105051e5510a33dcda5e4e202bd622549c4cffffff501d3a5dd7143fbf221fff161c12ca389cbe0000000000000fff2ecf631c6c5fd9c26a54d43fa050b88d1d43a8645bd9109b7e07869bba7131421c0f397073943330baafd243c0c6ffe673bab4113be7664e08bdd7115c61afcb718cf3c4680b2f6c7a8400e378a9b15bc20f49e298727340e87cdefb40e56e9cfad9931b8c552b2c7c503f3d0e7ab0e958adb8629aeec90e6d1857da822e40009995ae166deb9856291a43a6f7eb2e32cefbf463789eaf79b8d4c22be89f44b032dad13007b82e6044f643fc8cd07ae636a5dbe9864a117d27326850a7c3b570863f532c218b10af13d7be94987005088a83880ccab9c9920c2d2af8c5e13d52c83ac3fa7c3ae6c08384865b66d2204c2e4f3ae200f279b512b4dcb5dd9cba16b62040bf8702ae12c77e6e34991af603e3856a346cf708feeb708ab22b560cf8a4a6f31ba6d9b8cb0908000000000000001a342c010000000000e667a7592b33406f1f71c739b55db91d2309dc7ae401005f52053a39e7307c09ff3ac3e820b01c57dd74d4aafc4c383a17bc1de5347bb71ca16dcbbbaa2935ae662082b56cf666e63a759e0ef3ea7af6881513be94b362e15ffca8ec453b3a2a67be70c17b0f9c2eac765816c30c2e7133dca1c7669522e8dff8bc570a93fbdb688c3aef810000007a6ea6b11163392a19d87995b51cb6febd5f34a34998d2010fd5facf68c4f84e2f66e27c81a149d7b331983d3b74444953fc1216dfec10b724be3733c26f12538376e177ffef6fd2020000000000000008e4919a463d5332a2546032a3c06b94f168e8fc4bda0c294723fe306f26c477af4b926644672985fab7cc67bc5b5f5d38cdd8df95147ebe1cd88b0a4c6cde9951be10ba7dfddfefb238fac2303cc8982f1e55b005afcfea5eb037248fefad6bb02c162ce92ab17744c8ec3d2e80cf3205d36699fd381bc81231fb5e12e45f3059f361d08d6a6d019ebf105eaf43083c29512bcedd79ca9bf24e063d0c273ed70a2b70be521ea27dc8cf3c9bdf83b93405db07e82e2db484f8673e0e97dd7e8a872148613c3a04f3d67f4375ba5c7f1b00ffffff7f000000000801f71d79d812ced782646b5f79c8fc08bb5c11020108d702edd2ea9c96cf0d2d48aa5fc0a7bf1b51afd85350ad00b78c598fa8701b000884de790b54e5ab2e8ff0c7ae23e0b6eeac95c4c2eef2e5eb1d019d52099fbd404e8ece970f67856ba7e960bd8b1e4105ce7e31f7c9c3e3fa61aaa967b90087e91d703e98535b107b8f4653be4c46a3a1adb07d226952b8573b417018316fa96e2b8e7370baa16d4122c863709b08d4639a19a46ac90ac48a13ee9bcaa875fc700000000000003b40dc5c745fe2491e8425e600000000000000000000000000000000000000000000000000000000000000250318a44ad31baac0520a913301e630ae540f3289aebde8633f6f450c0738e16df6c7f1e0832a2a16fe6e39959735758248032cdf7320c6dc87b01e3f9a7811b200000000ae189de4b9b25f7c7a9c070000002af1c06315270de4a6605e4b4b58bef76fac54f11b84bd7bcd6b6a485edfb7684c770a39b38b08e18a51a4d4e66ca21c06a4b4198e1bc2ef990c9ba911efed626e5ee341a17bf8132b09000000d31df213c802d74797056fd3bca8b2d6cb134437cba0193ba4360bdcc98aad2560aa48291c4eb9d4e08ad7a9c5f04be1ab597124d84dfc7bd8cca8f68154a0ed356e773a797ca6d66748857b4abbf8830abeea2a46342e6a7378173cb29d5cdcd698a0203f78116b710008000000000000007c2d86b94472807c10eb9a8e2fb8bd79fe3a8316deff3ee641c9a080a2173642e673a672279bae4e7e28055da9497d7edb53be6e80482bd4d9a74b8dd4221fff0f0000705d7257ff7f76c78ba0b44ec0bdfa0d32d7042059b13a079639f14f9032b856d892ad6af5124c9c3130485e9682ff1f3c54e475d5bb496aef4bb537d7e191dfdeba109fdcf7864763f87a6d711cf52e520a6ce30e134c55e0caac037209d2f14fcddd00000000000000000000000000000000e609893bdce015e8ccfb36399844db61f6171b0b0e845e48728450c6ba4f7098f8e000676b59ab9f851f3ab77847ce05c89411277ec69c409b7ec50a3337a78675f38a568612c235ab5f2cd6d035d5f5f6a693c381adbbf7b37e37292783b2c7efe7d3a067906552f76d419e0300000000000000000000008f3a20b49fe7636806867283e35cff8d00e7b251bab3cf6377a24f8e8d4bda7503674bc94bf7f4d2fa6f25944bf0a186436d9f6831995976328a1fdc78492c65c1434855dc35c3cf7cf9610c5387794443c99b304799114132362849c3fa85d6379729ff9094933db0cfbe8887c50b87e1469fdf454cef4cbc5f7bf384000000000000a4e8c1a25f47c440144a9776be6cb40aafdb9d3cc8f6a6050974e1c4000000000000008b753f4e1bef9556efcc087a99dbf231167013a4b2eaf6338a0b100c98a331dffc09"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x30}, 0x48)
r8 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r8, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r6, 0x89e0, &(0x7f0000000040)={r8, r7})
sendmsg$kcm(r6, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)
close(r6)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
r9 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0x700, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000030000b0fd25a806c8c6f94f90324fc60", 0x33fe0}], 0x1}, 0x0)

1.259696291s ago: executing program 4 (id=23098):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r1, r0}, 0xc)

1.231134892s ago: executing program 3 (id=23100):
socket$kcm(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = gettid()
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f00000000c0), 0x1}, 0x101000, 0x9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000000)='/proc/net/\x00\x00t4/c+\x0fG\xf9aK\fX\a0\x04\x00\x00\x82q\xee'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000240)='cpuacct.usage_sys\x00', 0x275a, 0x408)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRES32, @ANYBLOB, @ANYBLOB="012113fa2cd8"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x8, 0x4}, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x4, 0x4, 0x0, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x5}, 0x8002, 0x100003, 0x3, 0xfe8d42e69ac4daf8, 0xfff, 0xffffffff, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, r4, 0x4}, 0x38)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000080), 0x12)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r5, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00\x00\x00\x00 '})
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_freezer_state(r6, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r7, &(0x7f0000000080)='FROZEN\x00', 0x7)
socketpair(0x1, 0x1, 0x0, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x18, 0x0, 0x2)

1.121016275s ago: executing program 4 (id=23103):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000580)="d8000000100081044e81f782db4cb904021d08007b490d4f1e81f8d815001000142603600e12080005007a010401a80004000000035c7f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e0000a67af28a615f189b16cc", 0xd8}], 0x1}, 0xc000004)

1.090269986s ago: executing program 2 (id=23104):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00e1ff00000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0xf, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
r3 = socket$kcm(0x2c, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffc54}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0x8}, 0x0, 0x360, 0x0, 0x6, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000080), 0x0}, 0x20)
close(r3)
r4 = socket$kcm(0x2, 0x6, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f00000002c0)=r1, 0x4)
sendmsg$inet(r4, &(0x7f0000001a40)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000900)=r0, 0x4)
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

1.015163198s ago: executing program 0 (id=23105):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xe, @perf_config_ext={0x7fffffff, 0x7f}, 0x1148c6, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x2, 0x1, 0x7}, {0x0, 0x3, 0xfffffffd, 0x1}, {0x1, 0x1, 0x10, 0x8}]}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f0000017f00000a0000000800"/28, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030029000b12d25a80648c2594f90124fc60100c02210c0c0400053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

983.80509ms ago: executing program 1 (id=23106):
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xb)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x5, 0xfffffffe, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x10, 0x78}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000d40)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001b000605142603600e12080005007a010401a800160020e0034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f08000000277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb00dbb57a5027ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b", 0xd5}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001980)}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="934300004300338b4ab502000000000002", @ANYRES32, @ANYRES8=r0], 0xfe33)

879.831162ms ago: executing program 3 (id=23107):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000001200)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x4, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5a}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x7}}, [], {{0x6, 0x1, 0x3, 0x8}, {0x6, 0x0, 0x2, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x5, 0x84)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x0, 0x5b}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="620ac4ff0000000071102a00000000009500000000000000"], &(0x7f0000000480)='GPL\x00'}, 0x80)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x95}}}, &(0x7f0000000200)='syzkaller\x00', 0x2, 0xf7, &(0x7f0000000880)=""/4092}, 0x3d)
socket$kcm(0x29, 0x7, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xf1, 0x6, 0x6, 0x0, 0x0, 0x0, 0xd0688, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xffffffffffffffc0}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0xa, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34}, 0x94)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r0, 0x58, &(0x7f0000000100)}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan1\x00', 0x800})
socketpair(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8946, &(0x7f0000000080))
close(r0)

795.520445ms ago: executing program 1 (id=23108):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000680)=""/140, 0x8c}], 0x1, &(0x7f0000002f40)=""/229, 0xe5}, 0x0)
sendmsg$tipc(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000440)="b8d3d8e48974aae5039847936746be1d81a34f9b68100dbf05177b2436f9d642df271fd6b9aa6701365ffc723899ad120c5a54b1f6fcf2fbb053e277a04d3f44e3f9bafec64080f64f103ee1de769e5e9dd8cbb68869a662eaad499c52a16f40cb3a1f6f3d5f8df14c53b2e6b5397f7806b6ff846de37a34c8342b9ac5a51eacf8a09cede8676044eafd3d", 0x8b}, {&(0x7f0000000040)="8d03cab9cbef61e0a186", 0xa}], 0x2, 0x0, 0x0, 0x400c800}, 0x4000084)
perf_event_open(0x0, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
recvmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)
r3 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x900, 0x2, 0x1c, {0xa, 0xa, 0x0, @empty}}, 0x80, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000100100000100"], 0x18}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000006c0)={r5, <r6=>0xffffffffffffffff}, 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x1d, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0xfffffffd}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1315}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x7, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000003f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x15)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x10, &(0x7f00000003c0)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmsg$unix(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/138, 0x8a}, {&(0x7f0000000580)=""/140, 0x8c}], 0x2}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
close(r1)

773.362176ms ago: executing program 4 (id=23109):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xe, 0x4, 0x8, 0x7}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xd, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xaa9a}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa0000000}, {0x3, 0x3, 0x3, 0xa, 0x5}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x15}}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0xffffffffffffff20}, 0x48)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x7, '\x00', 0x0, r2, 0x2, 0x5, 0x1}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x14, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xb)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x2)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f00000000c0), 0x12)
write$cgroup_int(r6, &(0x7f0000000100)=0x1, 0x12)
write$cgroup_int(r4, &(0x7f00000000c0), 0x12)
write$cgroup_int(r4, &(0x7f0000000100)=0x1, 0x12)
bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x3, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000007201330000000000950000f900000000"], &(0x7f0000000000)='GPL\x00', 0x5, 0xfb, &(0x7f00001a7f05)=""/251, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x55)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d80)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="76ea090000000000009ba56a88ca", 0x0, 0x6400, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

772.798366ms ago: executing program 2 (id=23110):
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001b80)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
socketpair(0x23, 0x2, 0x1, &(0x7f00000009c0))

729.720337ms ago: executing program 0 (id=23111):
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r0, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x8, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x6, 0x3, &(0x7f00000007c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1fd041e25bd4259a40ccb1b8eb010018000000000000007002000018000000050000007d3732030059e63ba700ae0002000000302e"], &(0x7f0000000600)=""/184, 0x35, 0xb8, 0x1, 0x2, 0x10000}, 0x28)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000780)={0xf, <r4=>0x0}, 0x8)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000940)=@bpf_tracing={0x1a, 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB="18200000", @ANYRES32=0x1, @ANYBLOB="000000b4952628108f4fcddcde0ba91d9417320050000000"], &(0x7f0000000800)='syzkaller\x00', 0x4, 0x14, &(0x7f0000000840)=""/20, 0x41000, 0x4, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x6, 0x5}, 0x8, 0x10, &(0x7f00000008c0)={0x2, 0x4, 0x1ff, 0x101}, 0x10, 0x21780, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000900)=[{0x5, 0xffffffff, 0x7, 0x9}, {0x4, 0x5, 0xf, 0x9}], 0x10, 0x3}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{}, &(0x7f0000000a00), &(0x7f0000000a40)}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="1e00000006000000080000000004000058e30000", @ANYRES32, @ANYBLOB="ff7f0000000000955f687ddd2ece673a30b2b200000000000000002a0e714417", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0200000005000000050000000c00000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r8, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r9 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r9, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r10 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r10, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r10, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000040)=ANY=[], 0xfdef)
recvmsg(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001bc0)=""/4096, 0x1000}], 0x1}, 0x10020)
r11 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000040000000400"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r11}, &(0x7f0000000280), &(0x7f0000000240)=r7}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYRES8=0x0, @ANYRES32=r11, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000b40)={0x0, 0x100, 0x10}, 0xc)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0e00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fcffffff000000000000000000000000000600"/28], 0x50)
close(r6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000008000000000000000000000018110000", @ANYRES32=r13, @ANYBLOB="0000000000000000b7080000000000eb7b8af8ff00000000bca2000000000000a602ffddf8ffffffb703000008000000b704000000000000850000003300000085000000a00000009500000000000800"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r14 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000c40)={0xffffffffffffffff, 0x8, 0x4}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x5, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, 0x0, 0x0, 0x2c000000}}, &(0x7f0000000040)='GPL\x00', 0x1000, 0xb0, &(0x7f0000000500)=""/176, 0x40f00, 0x22, '\x00', r1, @fallback=0x10, r3, 0x8, &(0x7f0000000700)={0x9, 0x3}, 0x8, 0x10, &(0x7f0000000740)={0x5, 0x2, 0x1, 0x2}, 0x10, r4, r5, 0x4, &(0x7f0000000c80)=[0xffffffffffffffff, r14, r6, r11, r12, r13, 0x1, 0xffffffffffffffff, r14], &(0x7f0000000cc0)=[{0x3, 0x3, 0x2, 0x1}, {0x1, 0x5, 0x5, 0xa}, {0x2, 0x4, 0x4, 0x7}, {0x5, 0x2, 0xd, 0x2}], 0x10, 0xebb}, 0x94)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x5, 0x20100, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x7, 0x100000001}, 0x0, 0x3, 0x80000, 0x7, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x102802}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)

576.498072ms ago: executing program 1 (id=23112):
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f0000000040)=@l2tp6={0xa, 0x80fe, 0x7, @dev={0xfe, 0x80, '\x00', 0x3e}, 0x12, 0x2}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000004c0)="7f", 0xffe0}], 0x1, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000084000000070000007fffffff8d000000b8"], 0xd0}, 0x480c4)

575.739292ms ago: executing program 3 (id=23113):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r1, r0}, 0xc)

519.905444ms ago: executing program 1 (id=23114):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x4, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x8ed9e90c1d4f2726, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0xe, 0x66c}, 0x104101, 0x3, 0x6, 0x6, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x33, 0x1, 0x0, 0x0, 0x0, 0x0, 0x14110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x429, 0x1}, 0x100040, 0x0, 0x10000, 0x1, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18}, 0x94)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'netdevsim0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8946, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x7, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa500000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000180)={0x4, &(0x7f0000000040)=[{0x15, 0x0, 0x2, 0xfffffffd}, {0x3, 0x4, 0x9}, {0x2c, 0x2, 0x0, 0x9}, {0x6, 0x4, 0x0, 0x2}]})
socket$kcm(0x10, 0x2, 0x10)
socketpair(0x25, 0x1, 0x401, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00', 0x10})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f0, &(0x7f0000000080))
sendmsg(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)="ef", 0x1}], 0x1}, 0x40000)
socket$kcm(0xa, 0x3, 0x3a)

519.453174ms ago: executing program 2 (id=23115):
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd055, 0x200}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0xf}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x220, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x80, &(0x7f0000000140)=[{0x0, 0x2}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff00)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"/2767], &(0x7f00000001c0)='GPL\x00'}, 0x48)

463.064456ms ago: executing program 3 (id=23116):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xffff0000, 0xf0, 0x0, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x48)

348.014999ms ago: executing program 4 (id=23117):
r0 = perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x100b0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = gettid()
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x0, 0x4}]}]}}, &(0x7f0000000340)=""/142, 0x2e, 0x8e, 0x1}, 0x28)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x5d, 0x40, 0x3, 0x5f, 0x0, 0x3, 0xc00, 0x7, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_bp={&(0x7f00000001c0), 0x2}, 0x1200, 0x2, 0x5, 0x3, 0x0, 0x0, 0x45, 0x0, 0x800, 0x0, 0x5}, r1, 0x8, r0, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r3, 0x1, 0x10, &(0x7f0000000040), 0x4)
sendmsg(r3, &(0x7f0000002d00)={0x0, 0x0, 0x0}, 0x40844)

233.325933ms ago: executing program 3 (id=23118):
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xb)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x5, 0xfffffffe, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x10, 0x78}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000d40)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001b000605142603600e12080005007a010401a800160020e0034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f08000000277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb00dbb57a5027ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b", 0xd5}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001980)}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="934300004300338b4ab502000000000002", @ANYRES32, @ANYRES8=r0], 0xfe33)

145.260256ms ago: executing program 1 (id=23119):
socket$kcm(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = gettid()
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f00000000c0), 0x1}, 0x101000, 0x9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000000)='/proc/net/\x00\x00t4/c+\x0fG\xf9aK\fX\a0\x04\x00\x00\x82q\xee'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000240)='cpuacct.usage_sys\x00', 0x275a, 0x408)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRES32, @ANYBLOB, @ANYBLOB="012113fa2cd8"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x8, 0x4}, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x4, 0x4, 0x0, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x5}, 0x8002, 0x100003, 0x3, 0xfe8d42e69ac4daf8, 0xfff, 0xffffffff, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, r4, 0x4}, 0x38)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000080), 0x12)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r5, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00\x00\x00\x00 '})
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_freezer_state(r6, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r7, &(0x7f0000000080)='FROZEN\x00', 0x7)
socketpair(0x1, 0x1, 0x0, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x18, 0x0, 0x2)

144.917266ms ago: executing program 4 (id=23120):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x6d, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x15, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x80}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)

95.213477ms ago: executing program 3 (id=23121):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00e1ff00000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0xf, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48)
r3 = socket$kcm(0x2c, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffc54}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0x8}, 0x0, 0x360, 0x0, 0x6, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000080), 0x0}, 0x20)
close(r3)
r4 = socket$kcm(0x2, 0x6, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, &(0x7f00000002c0)=r1, 0x4)
sendmsg$inet(r4, &(0x7f0000001a40)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000900)=r0, 0x4)
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

0s ago: executing program 1 (id=23122):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xe, @perf_config_ext={0x7fffffff, 0x7f}, 0x1148c6, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x2, 0x1, 0x7}, {0x0, 0x3, 0xfffffffd, 0x1}, {0x1, 0x1, 0x10, 0x8}]}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="7c00000000000000000000000700000044140001ac1414aa00000000ac1414000000000000441c0003e0000001000000007f000001000000000000000000000000442c00000000000000000f883816814100000000000000000000000000000000000000000000000000000000000000000000440c0001000000000000000000000000000000a400000000000000000000000700000044280000000000000000000000000000000000000000000000000000000000000000000000000000071700e0000002ac1414bb00000000e0000002ac1414bb018616000000000010c986d78e6c4b9394b247217b87cb00830b00000000007f000001861f0000000000020010421487f84baabcbcfb42a4d90bab000748c68c4c31001089ca45d9612e5b5c11f12bc78a41000000000000006c000000000000000000000007000000441c0003ffffffff000000000000000000000000e00000010000000044340001ac1414bb0000000000000000000000000000000000000000ac1414aa00000000ac1414aa00000000ac1e000100000000830b0000000000e000000200000000001c000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f0000017f00000a0000000800"/28, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030029000b12d25a80648c2594f90124fc60100c02210c0c0400053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

kernel console output (not intermixed with test programs):

? proc_fault_inject_write+0x310/0x310
[ 2007.548619][ T4118]  vfs_read+0x301/0xd60
[ 2007.552773][ T4118]  ? kernel_read+0x1e0/0x1e0
[ 2007.557355][ T4118]  ? __fget_files+0x40f/0x480
[ 2007.562025][ T4118]  ? mutex_lock_nested+0x17/0x20
[ 2007.566953][ T4118]  ? __fdget_pos+0x2bf/0x370
[ 2007.571534][ T4118]  ? ksys_read+0x71/0x260
[ 2007.575861][ T4118]  ksys_read+0x152/0x260
[ 2007.580108][ T4118]  ? vfs_write+0xd60/0xd60
[ 2007.584515][ T4118]  ? lockdep_hardirqs_on+0x94/0x140
[ 2007.589705][ T4118]  do_syscall_64+0x4c/0xa0
[ 2007.594107][ T4118]  ? clear_bhb_loop+0x30/0x80
[ 2007.598772][ T4118]  ? clear_bhb_loop+0x30/0x80
[ 2007.603437][ T4118]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2007.609321][ T4118] RIP: 0033:0x7fb34998a68e
[ 2007.613724][ T4118] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2007.633320][ T4118] RSP: 002b:00007fb347c01fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2007.641724][ T4118] RAX: ffffffffffffffda RBX: 00007fb347c026c0 RCX: 00007fb34998a68e
[ 2007.649682][ T4118] RDX: 000000000000000f RSI: 00007fb347c020a0 RDI: 000000000000000e
[ 2007.657636][ T4118] RBP: 00007fb347c02090 R08: 0000000000000000 R09: 0000000000000000
[ 2007.665593][ T4118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2007.673551][ T4118] R13: 00007fb349c43128 R14: 00007fb349c43090 R15: 00007ffda0f98d78
[ 2007.681523][ T4118]  </TASK>
[ 2007.843895][ T4122] netlink: 'syz.0.22333': attribute type 10 has an invalid length.
[ 2008.191661][ T4142] netlink: 'syz.4.22341': attribute type 10 has an invalid length.
[ 2008.206396][ T4142] device bond0 entered promiscuous mode
[ 2008.212894][ T4142] device bond_slave_0 entered promiscuous mode
[ 2008.219999][ T4142] device bond_slave_1 entered promiscuous mode
[ 2008.227854][ T4142] device batadv_slave_0 entered promiscuous mode
[ 2008.238331][ T4142] bridge0: port 3(bond0) entered blocking state
[ 2008.246121][ T4142] bridge0: port 3(bond0) entered disabled state
[ 2008.279530][ T4142] bridge0: port 3(bond0) entered blocking state
[ 2008.286210][ T4142] bridge0: port 3(bond0) entered forwarding state
[ 2008.323135][ T4143] netlink: 'syz.0.22351': attribute type 10 has an invalid length.
[ 2008.510211][ T4159] __nla_validate_parse: 28 callbacks suppressed
[ 2008.510256][ T4159] netlink: 184 bytes leftover after parsing attributes in process `syz.3.22347'.
[ 2008.623005][ T4166] netlink: 'syz.1.22349': attribute type 1 has an invalid length.
[ 2008.745994][ T4183] netlink: 'syz.2.22353': attribute type 39 has an invalid length.
[ 2008.812497][ T4186] FAULT_INJECTION: forcing a failure.
[ 2008.812497][ T4186] name failslab, interval 1, probability 0, space 0, times 0
[ 2008.828018][ T4186] CPU: 0 PID: 4186 Comm: syz.3.22358 Not tainted syzkaller #0
[ 2008.835506][ T4186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2008.845554][ T4186] Call Trace:
[ 2008.848849][ T4186]  <TASK>
[ 2008.851772][ T4186]  dump_stack_lvl+0x188/0x250
[ 2008.856449][ T4186]  ? show_regs_print_info+0x20/0x20
[ 2008.861639][ T4186]  ? load_image+0x400/0x400
[ 2008.866135][ T4186]  ? __might_sleep+0xf0/0xf0
[ 2008.870714][ T4186]  ? __lock_acquire+0x7d10/0x7d10
[ 2008.875739][ T4186]  should_fail+0x38c/0x4c0
[ 2008.880159][ T4186]  should_failslab+0x5/0x20
[ 2008.884649][ T4186]  slab_pre_alloc_hook+0x51/0xc0
[ 2008.889581][ T4186]  kmem_cache_alloc_node+0x47/0x2d0
[ 2008.894764][ T4186]  ? __alloc_skb+0xf4/0x750
[ 2008.899268][ T4186]  __alloc_skb+0xf4/0x750
[ 2008.903596][ T4186]  rtmsg_ifinfo_build_skb+0x80/0x180
[ 2008.908879][ T4186]  rtnetlink_event+0xcd/0x1a0
[ 2008.913550][ T4186]  raw_notifier_call_chain+0xcb/0x160
[ 2008.918921][ T4186]  netdev_update_features+0xb3/0x100
[ 2008.924194][ T4186]  ? dev_disable_lro+0x290/0x290
[ 2008.929122][ T4186]  ? veth_disable_xdp+0x3bf/0x430
[ 2008.934144][ T4186]  veth_xdp+0x4ba/0x640
[ 2008.938295][ T4186]  ? veth_set_rx_headroom+0x300/0x300
[ 2008.943661][ T4186]  bpf_xdp_link_release+0x318/0x4c0
[ 2008.948854][ T4186]  ? __netdev_adjacent_dev_remove+0x5c0/0x5c0
[ 2008.954930][ T4186]  ? bpf_xdp_link_dealloc+0x20/0x20
[ 2008.960118][ T4186]  bpf_xdp_link_detach+0x11/0x20
[ 2008.965042][ T4186]  link_detach+0x171/0x1e0
[ 2008.969452][ T4186]  __sys_bpf+0x369/0x6f0
[ 2008.973687][ T4186]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2008.979064][ T4186]  ? vtime_user_exit+0x2c8/0x3e0
[ 2008.984008][ T4186]  __x64_sys_bpf+0x78/0x90
[ 2008.988415][ T4186]  do_syscall_64+0x4c/0xa0
[ 2008.992822][ T4186]  ? clear_bhb_loop+0x30/0x80
[ 2008.997489][ T4186]  ? clear_bhb_loop+0x30/0x80
[ 2009.002156][ T4186]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2009.008036][ T4186] RIP: 0033:0x7fb3499c9e59
[ 2009.012445][ T4186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2009.032039][ T4186] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2009.040442][ T4186] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2009.048402][ T4186] RDX: 0000000000000004 RSI: 0000200000000340 RDI: 0000000000000022
[ 2009.056362][ T4186] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2009.064326][ T4186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2009.072287][ T4186] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2009.080274][ T4186]  </TASK>
[ 2009.118102][ T4184] netlink: 830 bytes leftover after parsing attributes in process `syz.0.22356'.
[ 2009.163763][ T4191] netlink: 65055 bytes leftover after parsing attributes in process `syz.2.22359'.
[ 2009.194751][ T4184] netlink: 'syz.0.22356': attribute type 10 has an invalid length.
[ 2009.717333][ T4220] netlink: 132 bytes leftover after parsing attributes in process `syz.0.22368'.
[ 2010.077271][ T4241] netlink: 830 bytes leftover after parsing attributes in process `syz.3.22375'.
[ 2010.187652][ T4241] netlink: 'syz.3.22375': attribute type 10 has an invalid length.
[ 2010.267773][ T4245] netlink: 'syz.4.22378': attribute type 2 has an invalid length.
[ 2010.282724][ T4245] netlink: 'syz.4.22378': attribute type 8 has an invalid length.
[ 2010.305798][ T4245] netlink: 132 bytes leftover after parsing attributes in process `syz.4.22378'.
[ 2010.435377][ T4263] netlink: 65055 bytes leftover after parsing attributes in process `syz.1.22382'.
[ 2010.482260][ T4261] netlink: 152 bytes leftover after parsing attributes in process `syz.2.22384'.
[ 2010.744751][ T4261] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 2010.807973][ T4270] netlink: 132 bytes leftover after parsing attributes in process `syz.0.22386'.
[ 2011.089364][ T4285] bridge0: port 3(bond0) entered disabled state
[ 2011.145328][ T4285] device bridge_slave_1 left promiscuous mode
[ 2011.165064][ T4285] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2011.231920][ T4285] device bridge_slave_0 left promiscuous mode
[ 2011.238648][ T4285] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2011.433413][ T4300] netlink: 830 bytes leftover after parsing attributes in process `syz.3.22394'.
[ 2011.477680][ T4305] device hsr_slave_0 left promiscuous mode
[ 2011.500302][ T4305] device hsr_slave_1 left promiscuous mode
[ 2011.761617][ T4325] FAULT_INJECTION: forcing a failure.
[ 2011.761617][ T4325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2011.791468][ T4325] CPU: 0 PID: 4325 Comm: syz.4.22402 Not tainted syzkaller #0
[ 2011.798968][ T4325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2011.809033][ T4325] Call Trace:
[ 2011.812316][ T4325]  <TASK>
[ 2011.815248][ T4325]  dump_stack_lvl+0x188/0x250
[ 2011.819938][ T4325]  ? show_regs_print_info+0x20/0x20
[ 2011.825144][ T4325]  ? load_image+0x400/0x400
[ 2011.829658][ T4325]  ? __lock_acquire+0x7d10/0x7d10
[ 2011.834704][ T4325]  should_fail+0x38c/0x4c0
[ 2011.839137][ T4325]  _copy_from_user+0x2e/0x170
[ 2011.843826][ T4325]  __copy_msghdr_from_user+0xc9/0x630
[ 2011.849211][ T4325]  ? verify_lock_unused+0x140/0x140
[ 2011.854426][ T4325]  ? __ia32_sys_shutdown+0x1d0/0x1d0
[ 2011.859746][ T4325]  ___sys_sendmsg+0x19a/0x2e0
[ 2011.864437][ T4325]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2011.869214][ T4325]  ? vfs_write+0x8b2/0xd60
[ 2011.873658][ T4325]  __se_sys_sendmsg+0x1af/0x290
[ 2011.878519][ T4325]  ? __x64_sys_sendmsg+0x80/0x80
[ 2011.883458][ T4325]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2011.889462][ T4325]  ? lockdep_hardirqs_on+0x94/0x140
[ 2011.894668][ T4325]  do_syscall_64+0x4c/0xa0
[ 2011.899084][ T4325]  ? clear_bhb_loop+0x30/0x80
[ 2011.903758][ T4325]  ? clear_bhb_loop+0x30/0x80
[ 2011.908437][ T4325]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2011.914332][ T4325] RIP: 0033:0x7f465f6bce59
[ 2011.918746][ T4325] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2011.938354][ T4325] RSP: 002b:00007f465d916028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2011.946773][ T4325] RAX: ffffffffffffffda RBX: 00007f465f935fa0 RCX: 00007f465f6bce59
[ 2011.954747][ T4325] RDX: 0000000020000000 RSI: 0000200000002ec0 RDI: 0000000000000003
[ 2011.962718][ T4325] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2011.970688][ T4325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2011.978656][ T4325] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2011.986641][ T4325]  </TASK>
[ 2012.293246][ T4335] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 2012.543128][ T4350] validate_nla: 5 callbacks suppressed
[ 2012.543146][ T4350] netlink: 'syz.1.22413': attribute type 10 has an invalid length.
[ 2012.728078][ T4367] FAULT_INJECTION: forcing a failure.
[ 2012.728078][ T4367] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2012.771451][ T4367] CPU: 1 PID: 4367 Comm: syz.3.22420 Not tainted syzkaller #0
[ 2012.778960][ T4367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2012.789024][ T4367] Call Trace:
[ 2012.792305][ T4367]  <TASK>
[ 2012.795234][ T4367]  dump_stack_lvl+0x188/0x250
[ 2012.799928][ T4367]  ? show_regs_print_info+0x20/0x20
[ 2012.805136][ T4367]  ? load_image+0x400/0x400
[ 2012.809644][ T4367]  ? __lock_acquire+0x7d10/0x7d10
[ 2012.814676][ T4367]  ? bpf_test_run+0x78e/0x800
[ 2012.819359][ T4367]  should_fail+0x38c/0x4c0
[ 2012.823784][ T4367]  _copy_to_user+0x2e/0x130
[ 2012.828288][ T4367]  bpf_ctx_finish+0x186/0x200
[ 2012.832976][ T4367]  ? bpf_test_finish+0x2f0/0x2f0
[ 2012.837913][ T4367]  ? _copy_from_user+0x111/0x170
[ 2012.842868][ T4367]  ? bpf_test_init+0x171/0x1b0
[ 2012.847627][ T4367]  ? xdp_convert_buff_to_md+0x15b/0x1e0
[ 2012.853174][ T4367]  bpf_prog_test_run_xdp+0x668/0x920
[ 2012.858469][ T4367]  ? dev_put+0x70/0x70
[ 2012.862548][ T4367]  ? dev_put+0x70/0x70
[ 2012.866615][ T4367]  bpf_prog_test_run+0x31e/0x390
[ 2012.871556][ T4367]  __sys_bpf+0x5a5/0x6f0
[ 2012.875801][ T4367]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2012.881168][ T4367]  ? rcu_nmi_exit+0x6f/0xf0
[ 2012.885690][ T4367]  ? vtime_user_exit+0x2c8/0x3e0
[ 2012.890636][ T4367]  __x64_sys_bpf+0x78/0x90
[ 2012.895059][ T4367]  do_syscall_64+0x4c/0xa0
[ 2012.899473][ T4367]  ? clear_bhb_loop+0x30/0x80
[ 2012.904146][ T4367]  ? clear_bhb_loop+0x30/0x80
[ 2012.908824][ T4367]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2012.914712][ T4367] RIP: 0033:0x7fb3499c9e59
[ 2012.919124][ T4367] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2012.938729][ T4367] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2012.947141][ T4367] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2012.955115][ T4367] RDX: 0000000000000050 RSI: 0000200000000b80 RDI: 000000000000000a
[ 2012.963081][ T4367] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2012.971051][ T4367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2012.979022][ T4367] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2012.987006][ T4367]  </TASK>
[ 2013.102502][ T4362] delete_channel: no stack
[ 2013.449147][ T4388] netlink: 'syz.1.22427': attribute type 4 has an invalid length.
[ 2013.557629][ T4388] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 2013.590360][ T4391] __nla_validate_parse: 13 callbacks suppressed
[ 2013.590379][ T4391] netlink: 830 bytes leftover after parsing attributes in process `syz.3.22429'.
[ 2013.610723][ T4391] netlink: 'syz.3.22429': attribute type 10 has an invalid length.
[ 2013.701631][T23976] Bluetooth: hci1: command 0x0406 tx timeout
[ 2013.859010][ T4403] netlink: 'syz.3.22432': attribute type 2 has an invalid length.
[ 2013.952133][ T4403] netlink: 'syz.3.22432': attribute type 8 has an invalid length.
[ 2013.992556][ T4403] netlink: 132 bytes leftover after parsing attributes in process `syz.3.22432'.
[ 2014.003169][ T4405] netlink: 'syz.4.22433': attribute type 2 has an invalid length.
[ 2014.011129][ T4405] netlink: 'syz.4.22433': attribute type 8 has an invalid length.
[ 2014.020266][ T4405] netlink: 132 bytes leftover after parsing attributes in process `syz.4.22433'.
[ 2014.244600][ T4414] netlink: 15743 bytes leftover after parsing attributes in process `syz.2.22437'.
[ 2014.313292][ T4416] netlink: 65055 bytes leftover after parsing attributes in process `syz.2.22438'.
[ 2014.331574][ T4417] netlink: 132 bytes leftover after parsing attributes in process `syz.4.22436'.
[ 2014.884201][ T4435] netlink: 'syz.2.22445': attribute type 2 has an invalid length.
[ 2014.901644][ T4435] netlink: 'syz.2.22445': attribute type 8 has an invalid length.
[ 2014.909573][ T4435] netlink: 132 bytes leftover after parsing attributes in process `syz.2.22445'.
[ 2015.007924][ T4441] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.22448'.
[ 2015.052870][ T4444] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2015.069330][ T4444] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2015.290868][ T4453] netlink: 'syz.1.22450': attribute type 2 has an invalid length.
[ 2015.339025][ T4453] netlink: 132 bytes leftover after parsing attributes in process `syz.1.22450'.
[ 2015.382625][ T4455] netlink: 65055 bytes leftover after parsing attributes in process `syz.4.22452'.
[ 2015.559182][ T4461] delete_channel: no stack
[ 2016.001198][ T4483] ref_ctr_offset mismatch. inode: 0x6bb offset: 0xe ref_ctr_offset(old): 0x7602 ref_ctr_offset(new): 0x0
[ 2016.315617][ T4495] FAULT_INJECTION: forcing a failure.
[ 2016.315617][ T4495] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2016.398854][ T4495] CPU: 0 PID: 4495 Comm: syz.4.22469 Not tainted syzkaller #0
[ 2016.406359][ T4495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2016.416427][ T4495] Call Trace:
[ 2016.419711][ T4495]  <TASK>
[ 2016.422646][ T4495]  dump_stack_lvl+0x188/0x250
[ 2016.427343][ T4495]  ? show_regs_print_info+0x20/0x20
[ 2016.432547][ T4495]  ? load_image+0x400/0x400
[ 2016.437064][ T4495]  ? __lock_acquire+0x7d10/0x7d10
[ 2016.442105][ T4495]  should_fail+0x38c/0x4c0
[ 2016.446539][ T4495]  _copy_to_user+0x2e/0x130
[ 2016.451060][ T4495]  simple_read_from_buffer+0xe3/0x150
[ 2016.456449][ T4495]  proc_fail_nth_read+0x1a6/0x220
[ 2016.461481][ T4495]  ? proc_fault_inject_write+0x310/0x310
[ 2016.467129][ T4495]  ? fsnotify_perm+0x254/0x560
[ 2016.471904][ T4495]  ? proc_fault_inject_write+0x310/0x310
[ 2016.477548][ T4495]  vfs_read+0x301/0xd60
[ 2016.481730][ T4495]  ? kernel_read+0x1e0/0x1e0
[ 2016.486336][ T4495]  ? __fget_files+0x40f/0x480
[ 2016.491023][ T4495]  ? mutex_lock_nested+0x17/0x20
[ 2016.495966][ T4495]  ? __fdget_pos+0x2bf/0x370
[ 2016.500556][ T4495]  ? ksys_read+0x71/0x260
[ 2016.504899][ T4495]  ksys_read+0x152/0x260
[ 2016.509148][ T4495]  ? vfs_write+0xd60/0xd60
[ 2016.513579][ T4495]  ? lockdep_hardirqs_on+0x94/0x140
[ 2016.518786][ T4495]  do_syscall_64+0x4c/0xa0
[ 2016.523204][ T4495]  ? clear_bhb_loop+0x30/0x80
[ 2016.527885][ T4495]  ? clear_bhb_loop+0x30/0x80
[ 2016.532569][ T4495]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2016.538470][ T4495] RIP: 0033:0x7f465f67d68e
[ 2016.542890][ T4495] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2016.562501][ T4495] RSP: 002b:00007f465d915fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2016.570927][ T4495] RAX: ffffffffffffffda RBX: 00007f465d9166c0 RCX: 00007f465f67d68e
[ 2016.578902][ T4495] RDX: 000000000000000f RSI: 00007f465d9160a0 RDI: 0000000000000006
[ 2016.586877][ T4495] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2016.594855][ T4495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2016.602831][ T4495] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2016.610825][ T4495]  </TASK>
[ 2016.848254][ T4488] bond0: (slave bond_slave_0): Releasing backup interface
[ 2016.857996][ T4488] device bond_slave_0 left promiscuous mode
[ 2018.536647][ T4576] validate_nla: 2 callbacks suppressed
[ 2018.536681][ T4576] netlink: 'syz.0.22496': attribute type 1 has an invalid length.
[ 2018.654831][ T4578] __nla_validate_parse: 10 callbacks suppressed
[ 2018.654864][ T4578] netlink: 15743 bytes leftover after parsing attributes in process `syz.4.22497'.
[ 2018.701014][ T4580] netlink: 184 bytes leftover after parsing attributes in process `syz.0.22498'.
[ 2018.821306][T18489] Bluetooth: hci3: command 0x0406 tx timeout
[ 2018.841560][ T4583] netlink: 830 bytes leftover after parsing attributes in process `syz.4.22499'.
[ 2018.882996][ T4582] netlink: 'syz.4.22499': attribute type 10 has an invalid length.
[ 2018.891062][ T4585] netlink: 184 bytes leftover after parsing attributes in process `syz.3.22500'.
[ 2019.342703][ T4604] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.22509'.
[ 2019.420072][ T4609] netlink: 65055 bytes leftover after parsing attributes in process `syz.0.22507'.
[ 2019.572845][ T4615] netlink: 'syz.1.22511': attribute type 10 has an invalid length.
[ 2019.587080][ T4615] netlink: 40 bytes leftover after parsing attributes in process `syz.1.22511'.
[ 2019.600425][ T4615] device ipvlan1 entered promiscuous mode
[ 2019.648395][ T4615] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[ 2019.720270][ T4622] netlink: 184 bytes leftover after parsing attributes in process `syz.4.22513'.
[ 2019.770771][ T4627] netlink: 184 bytes leftover after parsing attributes in process `syz.1.22516'.
[ 2019.873862][ T4634] FAULT_INJECTION: forcing a failure.
[ 2019.873862][ T4634] name failslab, interval 1, probability 0, space 0, times 0
[ 2019.906260][ T4634] CPU: 1 PID: 4634 Comm: syz.4.22519 Not tainted syzkaller #0
[ 2019.913760][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2019.919557][ T4630] netlink: 830 bytes leftover after parsing attributes in process `syz.1.22517'.
[ 2019.923827][ T4634] Call Trace:
[ 2019.923838][ T4634]  <TASK>
[ 2019.923848][ T4634]  dump_stack_lvl+0x188/0x250
[ 2019.923871][ T4634]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2019.923896][ T4634]  ? show_regs_print_info+0x20/0x20
[ 2019.923913][ T4634]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2019.961336][ T4634]  ? dump_stack+0x5/0x20
[ 2019.965600][ T4634]  should_fail+0x38c/0x4c0
[ 2019.970035][ T4634]  should_failslab+0x5/0x20
[ 2019.974543][ T4634]  slab_pre_alloc_hook+0x51/0xc0
[ 2019.979495][ T4634]  kmem_cache_alloc_trace+0x47/0x2a0
[ 2019.984785][ T4634]  ? sctp_add_bind_addr+0x89/0x350
[ 2019.989923][ T4634]  sctp_add_bind_addr+0x89/0x350
[ 2019.994875][ T4634]  sctp_copy_local_addr_list+0x2dd/0x4a0
[ 2020.000519][ T4634]  ? lockdep_hardirqs_on+0x94/0x140
[ 2020.005744][ T4634]  ? sctp_do_8_2_transport_strike+0x840/0x840
[ 2020.009071][ T4630] netlink: 'syz.1.22517': attribute type 10 has an invalid length.
[ 2020.011829][ T4634]  ? sctp_copy_one_addr+0x93/0x660
[ 2020.011859][ T4634]  ? sctp_copy_local_addr_list+0x1/0x4a0
[ 2020.011883][ T4634]  sctp_bind_addr_copy+0xaf/0x3c0
[ 2020.011906][ T4634]  ? sctp_assoc_set_bind_addr_from_ep+0xa1/0x190
[ 2020.041804][ T4634]  sctp_connect_new_asoc+0x2f5/0x6a0
[ 2020.047120][ T4634]  ? __sctp_connect+0xd80/0xd80
[ 2020.051985][ T4634]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2020.057376][ T4634]  ? bpf_lsm_sctp_bind_connect+0x5/0x10
[ 2020.062929][ T4634]  ? security_sctp_bind_connect+0x85/0xb0
[ 2020.068655][ T4634]  sctp_sendmsg+0x164a/0x2a30
[ 2020.073344][ T4634]  ? aa_sk_perm+0x7dc/0x910
[ 2020.077840][ T4634]  ? sctp_getsockopt+0x8a0/0x8a0
[ 2020.082776][ T4634]  ? aa_af_perm+0x340/0x340
[ 2020.087273][ T4634]  ? tomoyo_socket_sendmsg_permission+0x1dd/0x2f0
[ 2020.093690][ T4634]  ? sock_rps_record_flow+0x17/0x3b0
[ 2020.098981][ T4634]  ? inet_sendmsg+0xe5/0x2f0
[ 2020.103570][ T4634]  ? inet_send_prepare+0x260/0x260
[ 2020.108681][ T4634]  ____sys_sendmsg+0x5b7/0x8f0
[ 2020.113459][ T4634]  ? __sys_sendmsg_sock+0x30/0x30
[ 2020.118493][ T4634]  ? import_iovec+0x6f/0xa0
[ 2020.122997][ T4634]  ___sys_sendmsg+0x236/0x2e0
[ 2020.127678][ T4634]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2020.132442][ T4634]  ? trace_event_raw_event_lock+0x270/0x270
[ 2020.138329][ T4634]  ? vfs_write+0x8b2/0xd60
[ 2020.142759][ T4634]  __se_sys_sendmsg+0x1af/0x290
[ 2020.147604][ T4634]  ? __x64_sys_sendmsg+0x80/0x80
[ 2020.152547][ T4634]  ? syscall_enter_from_user_mode+0x2a/0x70
[ 2020.158440][ T4634]  do_syscall_64+0x4c/0xa0
[ 2020.162844][ T4634]  ? clear_bhb_loop+0x30/0x80
[ 2020.167512][ T4634]  ? clear_bhb_loop+0x30/0x80
[ 2020.172183][ T4634]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2020.178067][ T4634] RIP: 0033:0x7f465f6bce59
[ 2020.182476][ T4634] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2020.202071][ T4634] RSP: 002b:00007f465d916028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2020.210477][ T4634] RAX: ffffffffffffffda RBX: 00007f465f935fa0 RCX: 00007f465f6bce59
[ 2020.218440][ T4634] RDX: 00000000000003e8 RSI: 00002000000004c0 RDI: 0000000000000005
[ 2020.226399][ T4634] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2020.234361][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2020.242326][ T4634] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2020.250311][ T4634]  </TASK>
[ 2021.628523][ T4692] FAULT_INJECTION: forcing a failure.
[ 2021.628523][ T4692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2021.674362][ T4686] netlink: 'syz.2.22534': attribute type 10 has an invalid length.
[ 2021.703051][ T4692] CPU: 0 PID: 4692 Comm: syz.3.22536 Not tainted syzkaller #0
[ 2021.710554][ T4692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2021.720618][ T4692] Call Trace:
[ 2021.723903][ T4692]  <TASK>
[ 2021.726840][ T4692]  dump_stack_lvl+0x188/0x250
[ 2021.731536][ T4692]  ? show_regs_print_info+0x20/0x20
[ 2021.736751][ T4692]  ? load_image+0x400/0x400
[ 2021.741268][ T4692]  ? __lock_acquire+0x7d10/0x7d10
[ 2021.746302][ T4692]  ? bpf_test_run+0x78e/0x800
[ 2021.750987][ T4692]  should_fail+0x38c/0x4c0
[ 2021.755433][ T4692]  _copy_to_user+0x2e/0x130
[ 2021.759952][ T4692]  bpf_test_finish+0x1b7/0x2f0
[ 2021.764728][ T4692]  ? convert_skb_to___skb+0x360/0x360
[ 2021.770116][ T4692]  ? __build_skb+0x1e2/0x2e0
[ 2021.774721][ T4692]  ? convert_skb_to___skb+0x1ff/0x360
[ 2021.780106][ T4692]  bpf_prog_test_run_skb+0xb50/0x10b0
[ 2021.785501][ T4692]  ? cpu_online+0x60/0x60
[ 2021.789835][ T4692]  bpf_prog_test_run+0x31e/0x390
[ 2021.794786][ T4692]  __sys_bpf+0x5a5/0x6f0
[ 2021.799042][ T4692]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2021.804439][ T4692]  ? vtime_user_exit+0x2c8/0x3e0
[ 2021.809396][ T4692]  __x64_sys_bpf+0x78/0x90
[ 2021.813825][ T4692]  do_syscall_64+0x4c/0xa0
[ 2021.818248][ T4692]  ? clear_bhb_loop+0x30/0x80
[ 2021.822932][ T4692]  ? clear_bhb_loop+0x30/0x80
[ 2021.827618][ T4692]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2021.833515][ T4692] RIP: 0033:0x7fb3499c9e59
[ 2021.837937][ T4692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2021.857552][ T4692] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2021.865983][ T4692] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2021.873963][ T4692] RDX: 0000000000000050 RSI: 00002000000003c0 RDI: 000000000000000a
[ 2021.881943][ T4692] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2021.889922][ T4692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2021.897904][ T4692] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2021.905904][ T4692]  </TASK>
[ 2021.949336][ T4705] netlink: 'syz.4.22542': attribute type 1 has an invalid length.
[ 2022.368729][ T4722] netlink: 'syz.4.22547': attribute type 3 has an invalid length.
[ 2022.395324][ T4722] netlink: 'syz.4.22547': attribute type 1 has an invalid length.
[ 2022.437970][ T4724] netlink: 'syz.0.22548': attribute type 10 has an invalid length.
[ 2022.622062][ T4738] FAULT_INJECTION: forcing a failure.
[ 2022.622062][ T4738] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2022.675046][ T4738] CPU: 0 PID: 4738 Comm: syz.3.22556 Not tainted syzkaller #0
[ 2022.682550][ T4738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2022.692623][ T4738] Call Trace:
[ 2022.695910][ T4738]  <TASK>
[ 2022.698864][ T4738]  dump_stack_lvl+0x188/0x250
[ 2022.703557][ T4738]  ? show_regs_print_info+0x20/0x20
[ 2022.708775][ T4738]  ? load_image+0x400/0x400
[ 2022.713291][ T4738]  ? __lock_acquire+0x7d10/0x7d10
[ 2022.718330][ T4738]  ? perf_trace_lock+0xe4/0x390
[ 2022.723204][ T4738]  should_fail+0x38c/0x4c0
[ 2022.727643][ T4738]  prepare_alloc_pages+0x1e4/0x5f0
[ 2022.732776][ T4738]  __alloc_pages+0x11b/0x480
[ 2022.737384][ T4738]  ? zone_statistics+0x170/0x170
[ 2022.742342][ T4738]  ? __rwlock_init+0x140/0x140
[ 2022.747120][ T4738]  ? alloc_pages+0x438/0x550
[ 2022.751726][ T4738]  __get_free_pages+0x8/0x30
[ 2022.756324][ T4738]  kasan_populate_vmalloc_pte+0x21/0xc0
[ 2022.761880][ T4738]  __apply_to_page_range+0x983/0xd10
[ 2022.767187][ T4738]  ? kasan_populate_vmalloc+0x70/0x70
[ 2022.772579][ T4738]  alloc_vmap_area+0x18d5/0x1a10
[ 2022.777547][ T4738]  ? vm_map_ram+0xba0/0xba0
[ 2022.782079][ T4738]  __get_vm_area_node+0x14f/0x2d0
[ 2022.787119][ T4738]  __vmalloc_node_range+0xef/0x8b0
[ 2022.792242][ T4738]  ? array_map_alloc+0x27c/0x6f0
[ 2022.797194][ T4738]  ? apparmor_capable+0x12c/0x190
[ 2022.802230][ T4738]  ? bpf_lsm_capable+0x5/0x10
[ 2022.806922][ T4738]  bpf_map_area_alloc+0xd4/0xe0
[ 2022.811788][ T4738]  ? array_map_alloc+0x27c/0x6f0
[ 2022.816745][ T4738]  array_map_alloc+0x27c/0x6f0
[ 2022.821519][ T4738]  ? bpf_map_meta_alloc+0x144/0x7f0
[ 2022.826743][ T4738]  array_of_map_alloc+0x51/0xc0
[ 2022.831608][ T4738]  map_create+0x485/0x2350
[ 2022.836044][ T4738]  __sys_bpf+0x30a/0x6f0
[ 2022.840306][ T4738]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2022.845704][ T4738]  ? vtime_user_exit+0x2c8/0x3e0
[ 2022.850662][ T4738]  __x64_sys_bpf+0x78/0x90
[ 2022.855154][ T4738]  do_syscall_64+0x4c/0xa0
[ 2022.859654][ T4738]  ? clear_bhb_loop+0x30/0x80
[ 2022.864346][ T4738]  ? clear_bhb_loop+0x30/0x80
[ 2022.869037][ T4738]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2022.874948][ T4738] RIP: 0033:0x7fb3499c9e59
[ 2022.879720][ T4738] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2022.898202][ T4753] netlink: 'syz.0.22559': attribute type 10 has an invalid length.
[ 2022.899331][ T4738] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2022.899358][ T4738] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2022.899372][ T4738] RDX: 0000000000000048 RSI: 0000200000000040 RDI: 0000000000000000
[ 2022.899385][ T4738] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2022.899397][ T4738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2022.899409][ T4738] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2022.899439][ T4738]  </TASK>
[ 2023.260862][ T4768] FAULT_INJECTION: forcing a failure.
[ 2023.260862][ T4768] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2023.300890][ T4768] CPU: 0 PID: 4768 Comm: syz.4.22566 Not tainted syzkaller #0
[ 2023.308398][ T4768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2023.318463][ T4768] Call Trace:
[ 2023.321754][ T4768]  <TASK>
[ 2023.324690][ T4768]  dump_stack_lvl+0x188/0x250
[ 2023.329378][ T4768]  ? show_regs_print_info+0x20/0x20
[ 2023.334584][ T4768]  ? load_image+0x400/0x400
[ 2023.339103][ T4768]  ? __lock_acquire+0x7d10/0x7d10
[ 2023.344142][ T4768]  should_fail+0x38c/0x4c0
[ 2023.348574][ T4768]  _copy_to_user+0x2e/0x130
[ 2023.353091][ T4768]  simple_read_from_buffer+0xe3/0x150
[ 2023.358477][ T4768]  proc_fail_nth_read+0x1a6/0x220
[ 2023.363517][ T4768]  ? proc_fault_inject_write+0x310/0x310
[ 2023.369170][ T4768]  ? fsnotify_perm+0x254/0x560
[ 2023.373945][ T4768]  ? proc_fault_inject_write+0x310/0x310
[ 2023.379586][ T4768]  vfs_read+0x301/0xd60
[ 2023.383762][ T4768]  ? kernel_read+0x1e0/0x1e0
[ 2023.388362][ T4768]  ? __fget_files+0x40f/0x480
[ 2023.393054][ T4768]  ? mutex_lock_nested+0x17/0x20
[ 2023.397998][ T4768]  ? __fdget_pos+0x2bf/0x370
[ 2023.402588][ T4768]  ? ksys_read+0x71/0x260
[ 2023.406929][ T4768]  ksys_read+0x152/0x260
[ 2023.411180][ T4768]  ? vfs_write+0xd60/0xd60
[ 2023.415609][ T4768]  ? lockdep_hardirqs_on+0x94/0x140
[ 2023.420818][ T4768]  do_syscall_64+0x4c/0xa0
[ 2023.425239][ T4768]  ? clear_bhb_loop+0x30/0x80
[ 2023.429920][ T4768]  ? clear_bhb_loop+0x30/0x80
[ 2023.434608][ T4768]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2023.440507][ T4768] RIP: 0033:0x7f465f67d68e
[ 2023.444939][ T4768] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2023.464557][ T4768] RSP: 002b:00007f465d915fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2023.472986][ T4768] RAX: ffffffffffffffda RBX: 00007f465d9166c0 RCX: 00007f465f67d68e
[ 2023.480977][ T4768] RDX: 000000000000000f RSI: 00007f465d9160a0 RDI: 0000000000000004
[ 2023.488950][ T4768] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2023.496927][ T4768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2023.504904][ T4768] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2023.512900][ T4768]  </TASK>
[ 2023.519832][ T4775] ¥: port 1(team0) entered blocking state
[ 2023.526859][ T4775] ¥: port 1(team0) entered disabled state
[ 2023.547214][ T4775] device team0 entered promiscuous mode
[ 2023.564006][ T4775] device team_slave_0 entered promiscuous mode
[ 2023.585758][ T4775] device team_slave_1 entered promiscuous mode
[ 2023.803056][ T4781] __nla_validate_parse: 17 callbacks suppressed
[ 2023.803087][ T4781] netlink: 15743 bytes leftover after parsing attributes in process `syz.2.22571'.
[ 2023.829120][ T4785] netlink: 121460 bytes leftover after parsing attributes in process `syz.0.22573'.
[ 2023.859233][ T4785] validate_nla: 2 callbacks suppressed
[ 2023.859250][ T4785] netlink: 'syz.0.22573': attribute type 1 has an invalid length.
[ 2023.888716][ T4785] netlink: 16520 bytes leftover after parsing attributes in process `syz.0.22573'.
[ 2024.180131][ T4799] netlink: 830 bytes leftover after parsing attributes in process `syz.3.22578'.
[ 2024.205526][ T4799] netlink: 'syz.3.22578': attribute type 10 has an invalid length.
[ 2024.254974][ T4804] netlink: 184 bytes leftover after parsing attributes in process `syz.1.22581'.
[ 2024.409387][ T4811] netlink: 15743 bytes leftover after parsing attributes in process `syz.3.22584'.
[ 2024.502924][ T4820] netlink: 121460 bytes leftover after parsing attributes in process `syz.3.22588'.
[ 2024.518225][ T4820] netlink: 22856 bytes leftover after parsing attributes in process `syz.3.22588'.
[ 2024.656997][ T4835] device sit0 entered promiscuous mode
[ 2024.844613][ T4842] netlink: 184 bytes leftover after parsing attributes in process `syz.2.22595'.
[ 2024.884971][ T4840] netlink: 830 bytes leftover after parsing attributes in process `syz.3.22594'.
[ 2024.925760][ T4840] netlink: 'syz.3.22594': attribute type 10 has an invalid length.
[ 2025.388163][ T4862] openvswitch: netlink: IP tunnel attribute has 3064 unknown bytes.
[ 2026.224022][ T4883] delete_channel: no stack
[ 2026.273746][ T4883] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 2026.281139][ T4883] IPv6: NLM_F_CREATE should be set when creating new route
[ 2026.288678][ T4883] IPv6: NLM_F_CREATE should be set when creating new route
[ 2026.296143][ T4883] IPv6: NLM_F_CREATE should be set when creating new route
[ 2026.391063][ T4891] netlink: 'syz.4.22614': attribute type 10 has an invalid length.
[ 2026.848874][ T4912] netlink: 'syz.2.22622': attribute type 10 has an invalid length.
[ 2026.883675][ T4912] device team0 left promiscuous mode
[ 2026.889005][ T4912] device team_slave_0 left promiscuous mode
[ 2026.910666][ T4912] device team_slave_1 left promiscuous mode
[ 2026.939976][ T4912] ¥: port 1(team0) entered disabled state
[ 2026.965869][ T4912] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 2027.027928][ T4914] ¥: port 1(team0) entered blocking state
[ 2027.049799][ T4914] ¥: port 1(team0) entered disabled state
[ 2027.085195][ T4914] device team0 entered promiscuous mode
[ 2027.111308][ T4914] device team_slave_1 entered promiscuous mode
[ 2027.128888][ T4914] device geneve1 entered promiscuous mode
[ 2028.074687][ T4965] netlink: 'syz.1.22643': attribute type 28 has an invalid length.
[ 2029.221294][ T4236] Bluetooth: hci0: command 0x0406 tx timeout
[ 2029.245875][ T4999] ¥: port 1(team0) entered blocking state
[ 2029.339304][ T4999] ¥: port 1(team0) entered disabled state
[ 2029.412090][ T4999] device team0 entered promiscuous mode
[ 2029.500187][ T4999] device team_slave_1 entered promiscuous mode
[ 2029.559891][ T4999] device geneve1 entered promiscuous mode
[ 2029.576367][ T5015] __nla_validate_parse: 13 callbacks suppressed
[ 2029.576413][ T5015] netlink: 184 bytes leftover after parsing attributes in process `syz.0.22661'.
[ 2029.753518][ T5035] netlink: 'syz.0.22670': attribute type 10 has an invalid length.
[ 2029.902948][ T5032] netlink: 65055 bytes leftover after parsing attributes in process `syz.1.22668'.
[ 2029.956964][ T5030] netlink: 'syz.3.22669': attribute type 20 has an invalid length.
[ 2030.367960][ T5062] FAULT_INJECTION: forcing a failure.
[ 2030.367960][ T5062] name failslab, interval 1, probability 0, space 0, times 0
[ 2030.417412][ T5062] CPU: 0 PID: 5062 Comm: syz.0.22675 Not tainted syzkaller #0
[ 2030.424923][ T5062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2030.434991][ T5062] Call Trace:
[ 2030.438281][ T5062]  <TASK>
[ 2030.441223][ T5062]  dump_stack_lvl+0x188/0x250
[ 2030.445919][ T5062]  ? show_regs_print_info+0x20/0x20
[ 2030.451131][ T5062]  ? load_image+0x400/0x400
[ 2030.455655][ T5062]  ? __might_sleep+0xf0/0xf0
[ 2030.460256][ T5062]  ? __lock_acquire+0x7d10/0x7d10
[ 2030.465307][ T5062]  should_fail+0x38c/0x4c0
[ 2030.469760][ T5062]  should_failslab+0x5/0x20
[ 2030.474281][ T5062]  slab_pre_alloc_hook+0x51/0xc0
[ 2030.479275][ T5062]  __kmalloc_node_track_caller+0x68/0x3a0
[ 2030.485009][ T5062]  ? netlink_ack+0x372/0xb50
[ 2030.489607][ T5062]  ? kmem_cache_alloc_node+0x162/0x2d0
[ 2030.495072][ T5062]  ? __alloc_skb+0xf4/0x750
[ 2030.499590][ T5062]  ? netlink_ack+0x372/0xb50
[ 2030.504200][ T5062]  __alloc_skb+0x22c/0x750
[ 2030.508631][ T5062]  ? perf_trace_run_bpf_submit+0xf3/0x1c0
[ 2030.514375][ T5062]  netlink_ack+0x372/0xb50
[ 2030.518814][ T5062]  ? parse_nl_config+0xb70/0xb70
[ 2030.523774][ T5062]  ? netlink_dump+0xcf0/0xcf0
[ 2030.528487][ T5062]  netlink_rcv_skb+0x27a/0x440
[ 2030.533272][ T5062]  ? genl_bind+0x380/0x380
[ 2030.537707][ T5062]  ? netlink_ack+0xb50/0xb50
[ 2030.542318][ T5062]  ? __lock_acquire+0x7d10/0x7d10
[ 2030.547373][ T5062]  ? down_read+0x1aa/0x2e0
[ 2030.551811][ T5062]  genl_rcv+0x24/0x40
[ 2030.555810][ T5062]  netlink_unicast+0x774/0x920
[ 2030.560604][ T5062]  netlink_sendmsg+0x8ba/0xbe0
[ 2030.565397][ T5062]  ? netlink_getsockopt+0x570/0x570
[ 2030.570608][ T5062]  ? aa_sock_msg_perm+0x94/0x150
[ 2030.575563][ T5062]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2030.580859][ T5062]  ? security_socket_sendmsg+0x7c/0xa0
[ 2030.586338][ T5062]  ? netlink_getsockopt+0x570/0x570
[ 2030.591551][ T5062]  ____sys_sendmsg+0x5b7/0x8f0
[ 2030.596435][ T5062]  ? __sys_sendmsg_sock+0x30/0x30
[ 2030.601493][ T5062]  ? import_iovec+0x6f/0xa0
[ 2030.606056][ T5062]  ___sys_sendmsg+0x236/0x2e0
[ 2030.610769][ T5062]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2030.615575][ T5062]  ? trace_event_raw_event_lock+0x270/0x270
[ 2030.621479][ T5062]  ? vfs_write+0x8b2/0xd60
[ 2030.625958][ T5062]  __se_sys_sendmsg+0x1af/0x290
[ 2030.630833][ T5062]  ? __x64_sys_sendmsg+0x80/0x80
[ 2030.635784][ T5062]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2030.641802][ T5062]  ? lockdep_hardirqs_on+0x94/0x140
[ 2030.647021][ T5062]  do_syscall_64+0x4c/0xa0
[ 2030.651453][ T5062]  ? clear_bhb_loop+0x30/0x80
[ 2030.656141][ T5062]  ? clear_bhb_loop+0x30/0x80
[ 2030.660832][ T5062]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2030.666728][ T5062] RIP: 0033:0x7f40944ffe59
[ 2030.671142][ T5062] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2030.690745][ T5062] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2030.699157][ T5062] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2030.707123][ T5062] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2030.715086][ T5062] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2030.723058][ T5062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2030.731019][ T5062] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2030.739008][ T5062]  </TASK>
[ 2031.107222][ T5073] netlink: 188 bytes leftover after parsing attributes in process `syz.1.22681'.
[ 2031.551869][ T5090] netlink: 65055 bytes leftover after parsing attributes in process `syz.2.22688'.
[ 2031.641601][ T5096] netlink: 'syz.3.22691': attribute type 10 has an invalid length.
[ 2031.898787][ T5098] netlink: 15743 bytes leftover after parsing attributes in process `syz.0.22692'.
[ 2032.069043][ T5116] FAULT_INJECTION: forcing a failure.
[ 2032.069043][ T5116] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2032.140700][ T5116] CPU: 1 PID: 5116 Comm: syz.4.22695 Not tainted syzkaller #0
[ 2032.148202][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2032.158265][ T5116] Call Trace:
[ 2032.161554][ T5116]  <TASK>
[ 2032.164494][ T5116]  dump_stack_lvl+0x188/0x250
[ 2032.169188][ T5116]  ? show_regs_print_info+0x20/0x20
[ 2032.174395][ T5116]  ? load_image+0x400/0x400
[ 2032.178911][ T5116]  ? __lock_acquire+0x7d10/0x7d10
[ 2032.183952][ T5116]  should_fail+0x38c/0x4c0
[ 2032.188385][ T5116]  _copy_to_user+0x2e/0x130
[ 2032.192904][ T5116]  simple_read_from_buffer+0xe3/0x150
[ 2032.198289][ T5116]  proc_fail_nth_read+0x1a6/0x220
[ 2032.203333][ T5116]  ? proc_fault_inject_write+0x310/0x310
[ 2032.208981][ T5116]  ? fsnotify_perm+0x254/0x560
[ 2032.213753][ T5116]  ? proc_fault_inject_write+0x310/0x310
[ 2032.219399][ T5116]  vfs_read+0x301/0xd60
[ 2032.223575][ T5116]  ? kernel_read+0x1e0/0x1e0
[ 2032.228187][ T5116]  ? __fget_files+0x40f/0x480
[ 2032.232875][ T5116]  ? mutex_lock_nested+0x17/0x20
[ 2032.237815][ T5116]  ? __fdget_pos+0x2bf/0x370
[ 2032.242407][ T5116]  ? ksys_read+0x71/0x260
[ 2032.246742][ T5116]  ksys_read+0x152/0x260
[ 2032.251007][ T5116]  ? vfs_write+0xd60/0xd60
[ 2032.255428][ T5116]  ? lockdep_hardirqs_on+0x94/0x140
[ 2032.260636][ T5116]  do_syscall_64+0x4c/0xa0
[ 2032.265056][ T5116]  ? clear_bhb_loop+0x30/0x80
[ 2032.269734][ T5116]  ? clear_bhb_loop+0x30/0x80
[ 2032.274413][ T5116]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2032.280305][ T5116] RIP: 0033:0x7f465f67d68e
[ 2032.284729][ T5116] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2032.304332][ T5116] RSP: 002b:00007f465d915fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2032.312755][ T5116] RAX: ffffffffffffffda RBX: 00007f465d9166c0 RCX: 00007f465f67d68e
[ 2032.320722][ T5116] RDX: 000000000000000f RSI: 00007f465d9160a0 RDI: 0000000000000004
[ 2032.328686][ T5116] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2032.336652][ T5116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2032.344625][ T5116] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2032.352611][ T5116]  </TASK>
[ 2032.383898][ T5119] netlink: 'syz.1.22698': attribute type 21 has an invalid length.
[ 2032.412142][ T5128] netlink: 194488 bytes leftover after parsing attributes in process `syz.3.22700'.
[ 2032.431414][ T5119] netlink: 156 bytes leftover after parsing attributes in process `syz.1.22698'.
[ 2032.799697][ T5142] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.22706'.
[ 2032.844823][ T5144] netlink: 'syz.0.22707': attribute type 33 has an invalid length.
[ 2032.863378][ T5144] netlink: 152 bytes leftover after parsing attributes in process `syz.0.22707'.
[ 2032.888609][ T5140] netlink: 'syz.3.22703': attribute type 10 has an invalid length.
[ 2032.899106][ T5147] FAULT_INJECTION: forcing a failure.
[ 2032.899106][ T5147] name failslab, interval 1, probability 0, space 0, times 0
[ 2032.922181][ T5140] netlink: 140 bytes leftover after parsing attributes in process `syz.3.22703'.
[ 2033.023222][ T5147] CPU: 1 PID: 5147 Comm: syz.2.22709 Not tainted syzkaller #0
[ 2033.030731][ T5147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2033.040796][ T5147] Call Trace:
[ 2033.044084][ T5147]  <TASK>
[ 2033.047026][ T5147]  dump_stack_lvl+0x188/0x250
[ 2033.051716][ T5147]  ? show_regs_print_info+0x20/0x20
[ 2033.056925][ T5147]  ? load_image+0x400/0x400
[ 2033.061440][ T5147]  ? __might_sleep+0xf0/0xf0
[ 2033.066035][ T5147]  ? __lock_acquire+0x7d10/0x7d10
[ 2033.071073][ T5147]  should_fail+0x38c/0x4c0
[ 2033.075513][ T5147]  should_failslab+0x5/0x20
[ 2033.080051][ T5147]  slab_pre_alloc_hook+0x51/0xc0
[ 2033.084996][ T5147]  __kmalloc_node_track_caller+0x68/0x3a0
[ 2033.090812][ T5147]  ? netlink_sendmsg+0x654/0xbe0
[ 2033.095753][ T5147]  ? kmem_cache_alloc_node+0x162/0x2d0
[ 2033.101227][ T5147]  ? __alloc_skb+0xf4/0x750
[ 2033.105750][ T5147]  ? netlink_sendmsg+0x654/0xbe0
[ 2033.110689][ T5147]  __alloc_skb+0x22c/0x750
[ 2033.115115][ T5147]  netlink_sendmsg+0x654/0xbe0
[ 2033.119886][ T5147]  ? netlink_getsockopt+0x570/0x570
[ 2033.125085][ T5147]  ? aa_sock_msg_perm+0x94/0x150
[ 2033.130027][ T5147]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2033.135311][ T5147]  ? security_socket_sendmsg+0x7c/0xa0
[ 2033.140769][ T5147]  ? netlink_getsockopt+0x570/0x570
[ 2033.145963][ T5147]  ____sys_sendmsg+0x5b7/0x8f0
[ 2033.150746][ T5147]  ? __sys_sendmsg_sock+0x30/0x30
[ 2033.155780][ T5147]  ? import_iovec+0x6f/0xa0
[ 2033.160289][ T5147]  ___sys_sendmsg+0x236/0x2e0
[ 2033.164972][ T5147]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2033.169774][ T5147]  __se_sys_sendmsg+0x1af/0x290
[ 2033.174621][ T5147]  ? __x64_sys_sendmsg+0x80/0x80
[ 2033.179554][ T5147]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2033.185544][ T5147]  ? lockdep_hardirqs_on+0x94/0x140
[ 2033.190745][ T5147]  do_syscall_64+0x4c/0xa0
[ 2033.195165][ T5147]  ? clear_bhb_loop+0x30/0x80
[ 2033.199835][ T5147]  ? clear_bhb_loop+0x30/0x80
[ 2033.204509][ T5147]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2033.210397][ T5147] RIP: 0033:0x7f1f50d1fe59
[ 2033.214808][ T5147] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2033.234415][ T5147] RSP: 002b:00007f1f4ef79028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2033.242831][ T5147] RAX: ffffffffffffffda RBX: 00007f1f50f98fa0 RCX: 00007f1f50d1fe59
[ 2033.250803][ T5147] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000003
[ 2033.258766][ T5147] RBP: 00007f1f4ef79090 R08: 0000000000000000 R09: 0000000000000000
[ 2033.266736][ T5147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2033.274832][ T5147] R13: 00007f1f50f99038 R14: 00007f1f50f98fa0 R15: 00007ffe02441758
[ 2033.282825][ T5147]  </TASK>
[ 2033.468222][ T5162] FAULT_INJECTION: forcing a failure.
[ 2033.468222][ T5162] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2033.494743][ T5162] CPU: 1 PID: 5162 Comm: syz.1.22716 Not tainted syzkaller #0
[ 2033.502246][ T5162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2033.512308][ T5162] Call Trace:
[ 2033.515574][ T5162]  <TASK>
[ 2033.518488][ T5162]  dump_stack_lvl+0x188/0x250
[ 2033.523157][ T5162]  ? show_regs_print_info+0x20/0x20
[ 2033.528339][ T5162]  ? load_image+0x400/0x400
[ 2033.532825][ T5162]  ? __lock_acquire+0x7d10/0x7d10
[ 2033.537841][ T5162]  should_fail+0x38c/0x4c0
[ 2033.542252][ T5162]  _copy_from_user+0x2e/0x170
[ 2033.546917][ T5162]  iovec_from_user+0x142/0x370
[ 2033.551671][ T5162]  __import_iovec+0x70/0x490
[ 2033.556256][ T5162]  import_iovec+0x6f/0xa0
[ 2033.560573][ T5162]  ___sys_sendmsg+0x1fd/0x2e0
[ 2033.565246][ T5162]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2033.570004][ T5162]  ? vfs_write+0x8b2/0xd60
[ 2033.574421][ T5162]  __se_sys_sendmsg+0x1af/0x290
[ 2033.579259][ T5162]  ? __x64_sys_sendmsg+0x80/0x80
[ 2033.584182][ T5162]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2033.590159][ T5162]  ? lockdep_hardirqs_on+0x94/0x140
[ 2033.595350][ T5162]  do_syscall_64+0x4c/0xa0
[ 2033.599749][ T5162]  ? clear_bhb_loop+0x30/0x80
[ 2033.604409][ T5162]  ? clear_bhb_loop+0x30/0x80
[ 2033.609068][ T5162]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2033.614944][ T5162] RIP: 0033:0x7fd78fbc1e59
[ 2033.619345][ T5162] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2033.638932][ T5162] RSP: 002b:00007fd78de1b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2033.647331][ T5162] RAX: ffffffffffffffda RBX: 00007fd78fe3afa0 RCX: 00007fd78fbc1e59
[ 2033.655291][ T5162] RDX: 0000000000000811 RSI: 00002000000001c0 RDI: 0000000000000003
[ 2033.663248][ T5162] RBP: 00007fd78de1b090 R08: 0000000000000000 R09: 0000000000000000
[ 2033.671200][ T5162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2033.679156][ T5162] R13: 00007fd78fe3b038 R14: 00007fd78fe3afa0 R15: 00007ffe042327d8
[ 2033.687122][ T5162]  </TASK>
[ 2034.222416][ T5190] device syzkaller0 entered promiscuous mode
[ 2034.667343][ T5203] netlink: 'syz.0.22731': attribute type 20 has an invalid length.
[ 2034.941136][ T5222] __nla_validate_parse: 6 callbacks suppressed
[ 2034.960449][ T5222] netlink: 65055 bytes leftover after parsing attributes in process `syz.1.22735'.
[ 2035.204557][ T5234] netlink: 15743 bytes leftover after parsing attributes in process `syz.0.22740'.
[ 2035.420812][ T5251] FAULT_INJECTION: forcing a failure.
[ 2035.420812][ T5251] name failslab, interval 1, probability 0, space 0, times 0
[ 2035.513026][ T5251] CPU: 0 PID: 5251 Comm: syz.0.22744 Not tainted syzkaller #0
[ 2035.520541][ T5251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2035.530623][ T5251] Call Trace:
[ 2035.533924][ T5251]  <TASK>
[ 2035.536871][ T5251]  dump_stack_lvl+0x188/0x250
[ 2035.541587][ T5251]  ? show_regs_print_info+0x20/0x20
[ 2035.546814][ T5251]  ? load_image+0x400/0x400
[ 2035.551347][ T5251]  ? __lock_acquire+0x7d10/0x7d10
[ 2035.556412][ T5251]  should_fail+0x38c/0x4c0
[ 2035.560858][ T5251]  should_failslab+0x5/0x20
[ 2035.565361][ T5251]  slab_pre_alloc_hook+0x51/0xc0
[ 2035.570302][ T5251]  __kmalloc+0x6b/0x330
[ 2035.574452][ T5251]  ? kernfs_fop_write_iter+0x155/0x4c0
[ 2035.579910][ T5251]  ? end_current_label_crit_section+0x14b/0x170
[ 2035.586154][ T5251]  kernfs_fop_write_iter+0x155/0x4c0
[ 2035.591441][ T5251]  ? iov_iter_init+0xb4/0x170
[ 2035.596123][ T5251]  vfs_write+0x745/0xd60
[ 2035.600375][ T5251]  ? file_end_write+0x250/0x250
[ 2035.605238][ T5251]  ? __fget_files+0x40f/0x480
[ 2035.609926][ T5251]  ? mutex_lock_nested+0x17/0x20
[ 2035.614858][ T5251]  ? __fdget_pos+0x2bf/0x370
[ 2035.619434][ T5251]  ? ksys_write+0x71/0x260
[ 2035.623853][ T5251]  ksys_write+0x152/0x260
[ 2035.628183][ T5251]  ? __ia32_sys_read+0x80/0x80
[ 2035.632949][ T5251]  ? lockdep_hardirqs_on+0x94/0x140
[ 2035.638158][ T5251]  do_syscall_64+0x4c/0xa0
[ 2035.642566][ T5251]  ? clear_bhb_loop+0x30/0x80
[ 2035.647234][ T5251]  ? clear_bhb_loop+0x30/0x80
[ 2035.651906][ T5251]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2035.657792][ T5251] RIP: 0033:0x7f40944ffe59
[ 2035.662206][ T5251] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2035.681807][ T5251] RSP: 002b:00007f4092738028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2035.690222][ T5251] RAX: ffffffffffffffda RBX: 00007f4094779090 RCX: 00007f40944ffe59
[ 2035.698188][ T5251] RDX: 0000000000000006 RSI: 0000200000000300 RDI: 000000000000000d
[ 2035.706152][ T5251] RBP: 00007f4092738090 R08: 0000000000000000 R09: 0000000000000000
[ 2035.714132][ T5251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2035.722099][ T5251] R13: 00007f4094779128 R14: 00007f4094779090 R15: 00007ffc92bdc3e8
[ 2035.730093][ T5251]  </TASK>
[ 2035.747697][ T5255] netlink: 'syz.4.22748': attribute type 20 has an invalid length.
[ 2036.253387][ T5280] netlink: 15743 bytes leftover after parsing attributes in process `syz.0.22754'.
[ 2037.021197][ T5307] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.22766'.
[ 2037.028821][ T5310] netlink: 126588 bytes leftover after parsing attributes in process `syz.3.22765'.
[ 2037.234037][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[ 2037.240463][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[ 2037.289611][ T5321] FAULT_INJECTION: forcing a failure.
[ 2037.289611][ T5321] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2037.326693][ T5321] CPU: 1 PID: 5321 Comm: syz.3.22770 Not tainted syzkaller #0
[ 2037.334193][ T5321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2037.344248][ T5321] Call Trace:
[ 2037.347527][ T5321]  <TASK>
[ 2037.350462][ T5321]  dump_stack_lvl+0x188/0x250
[ 2037.355151][ T5321]  ? show_regs_print_info+0x20/0x20
[ 2037.360355][ T5321]  ? load_image+0x400/0x400
[ 2037.364874][ T5321]  ? __lock_acquire+0x7d10/0x7d10
[ 2037.370016][ T5321]  should_fail+0x38c/0x4c0
[ 2037.374455][ T5321]  _copy_to_user+0x2e/0x130
[ 2037.378984][ T5321]  simple_read_from_buffer+0xe3/0x150
[ 2037.381547][ T5315] netlink: 132 bytes leftover after parsing attributes in process `syz.1.22768'.
[ 2037.384369][ T5321]  proc_fail_nth_read+0x1a6/0x220
[ 2037.384398][ T5321]  ? proc_fault_inject_write+0x310/0x310
[ 2037.384423][ T5321]  ? fsnotify_perm+0x254/0x560
[ 2037.408899][ T5321]  ? proc_fault_inject_write+0x310/0x310
[ 2037.414559][ T5321]  vfs_read+0x301/0xd60
[ 2037.418737][ T5321]  ? kernel_read+0x1e0/0x1e0
[ 2037.423353][ T5321]  ? __fget_files+0x40f/0x480
[ 2037.428046][ T5321]  ? mutex_lock_nested+0x17/0x20
[ 2037.432995][ T5321]  ? __fdget_pos+0x2bf/0x370
[ 2037.437607][ T5321]  ? ksys_read+0x71/0x260
[ 2037.441960][ T5321]  ksys_read+0x152/0x260
[ 2037.446217][ T5321]  ? vfs_write+0xd60/0xd60
[ 2037.450646][ T5321]  ? lockdep_hardirqs_on+0x94/0x140
[ 2037.455855][ T5321]  do_syscall_64+0x4c/0xa0
[ 2037.460281][ T5321]  ? clear_bhb_loop+0x30/0x80
[ 2037.464961][ T5321]  ? clear_bhb_loop+0x30/0x80
[ 2037.469649][ T5321]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2037.475555][ T5321] RIP: 0033:0x7fb34998a68e
[ 2037.479978][ T5321] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2037.499599][ T5321] RSP: 002b:00007fb347c22fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2037.508029][ T5321] RAX: ffffffffffffffda RBX: 00007fb347c236c0 RCX: 00007fb34998a68e
[ 2037.516013][ T5321] RDX: 000000000000000f RSI: 00007fb347c230a0 RDI: 0000000000000005
[ 2037.523993][ T5321] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2037.531971][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2037.539957][ T5321] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2037.547958][ T5321]  </TASK>
[ 2037.568462][ T5323] FAULT_INJECTION: forcing a failure.
[ 2037.568462][ T5323] name failslab, interval 1, probability 0, space 0, times 0
[ 2037.591333][ T5323] CPU: 1 PID: 5323 Comm: syz.1.22771 Not tainted syzkaller #0
[ 2037.598816][ T5323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2037.608861][ T5323] Call Trace:
[ 2037.612128][ T5323]  <TASK>
[ 2037.615046][ T5323]  dump_stack_lvl+0x188/0x250
[ 2037.619714][ T5323]  ? show_regs_print_info+0x20/0x20
[ 2037.624916][ T5323]  ? load_image+0x400/0x400
[ 2037.629417][ T5323]  ? __might_sleep+0xf0/0xf0
[ 2037.634007][ T5323]  ? __lock_acquire+0x7d10/0x7d10
[ 2037.639019][ T5323]  ? netlink_insert+0xe95/0x11f0
[ 2037.643946][ T5323]  should_fail+0x38c/0x4c0
[ 2037.648352][ T5323]  should_failslab+0x5/0x20
[ 2037.652843][ T5323]  slab_pre_alloc_hook+0x51/0xc0
[ 2037.657769][ T5323]  kmem_cache_alloc_node+0x47/0x2d0
[ 2037.662952][ T5323]  ? __alloc_skb+0xf4/0x750
[ 2037.667443][ T5323]  __alloc_skb+0xf4/0x750
[ 2037.671759][ T5323]  netlink_sendmsg+0x654/0xbe0
[ 2037.676515][ T5323]  ? netlink_getsockopt+0x570/0x570
[ 2037.681699][ T5323]  ? aa_sock_msg_perm+0x94/0x150
[ 2037.686626][ T5323]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2037.691900][ T5323]  ? security_socket_sendmsg+0x7c/0xa0
[ 2037.697348][ T5323]  ? netlink_getsockopt+0x570/0x570
[ 2037.702531][ T5323]  ____sys_sendmsg+0x5b7/0x8f0
[ 2037.707288][ T5323]  ? __sys_sendmsg_sock+0x30/0x30
[ 2037.712311][ T5323]  ? import_iovec+0x6f/0xa0
[ 2037.716809][ T5323]  ___sys_sendmsg+0x236/0x2e0
[ 2037.721479][ T5323]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2037.726236][ T5323]  ? trace_event_raw_event_lock+0x270/0x270
[ 2037.732116][ T5323]  ? vfs_write+0x8b2/0xd60
[ 2037.736535][ T5323]  __se_sys_sendmsg+0x1af/0x290
[ 2037.741375][ T5323]  ? __x64_sys_sendmsg+0x80/0x80
[ 2037.746299][ T5323]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2037.752280][ T5323]  ? lockdep_hardirqs_on+0x94/0x140
[ 2037.757470][ T5323]  do_syscall_64+0x4c/0xa0
[ 2037.761871][ T5323]  ? clear_bhb_loop+0x30/0x80
[ 2037.766533][ T5323]  ? clear_bhb_loop+0x30/0x80
[ 2037.771199][ T5323]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2037.777082][ T5323] RIP: 0033:0x7fd78fbc1e59
[ 2037.781484][ T5323] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2037.801075][ T5323] RSP: 002b:00007fd78de1b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2037.809485][ T5323] RAX: ffffffffffffffda RBX: 00007fd78fe3afa0 RCX: 00007fd78fbc1e59
[ 2037.817442][ T5323] RDX: 0000000020004800 RSI: 0000200000000080 RDI: 0000000000000003
[ 2037.825404][ T5323] RBP: 00007fd78de1b090 R08: 0000000000000000 R09: 0000000000000000
[ 2037.833369][ T5323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2037.841330][ T5323] R13: 00007fd78fe3b038 R14: 00007fd78fe3afa0 R15: 00007ffe042327d8
[ 2037.849304][ T5323]  </TASK>
[ 2037.896951][ T5325] netlink: 'syz.2.22772': attribute type 3 has an invalid length.
[ 2037.920356][ T5325] netlink: 132 bytes leftover after parsing attributes in process `syz.2.22772'.
[ 2037.938857][ T5328] netlink: 10 bytes leftover after parsing attributes in process `syz.4.22773'.
[ 2037.997755][ T5331] FAULT_INJECTION: forcing a failure.
[ 2037.997755][ T5331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2038.046461][ T5331] CPU: 1 PID: 5331 Comm: syz.0.22774 Not tainted syzkaller #0
[ 2038.053964][ T5331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2038.064026][ T5331] Call Trace:
[ 2038.067318][ T5331]  <TASK>
[ 2038.070260][ T5331]  dump_stack_lvl+0x188/0x250
[ 2038.074956][ T5331]  ? show_regs_print_info+0x20/0x20
[ 2038.080169][ T5331]  ? load_image+0x400/0x400
[ 2038.084683][ T5331]  ? __lock_acquire+0x7d10/0x7d10
[ 2038.089724][ T5331]  should_fail+0x38c/0x4c0
[ 2038.094157][ T5331]  _copy_from_user+0x2e/0x170
[ 2038.098840][ T5331]  __copy_msghdr_from_user+0xc9/0x630
[ 2038.104218][ T5331]  ? verify_lock_unused+0x140/0x140
[ 2038.109429][ T5331]  ? __ia32_sys_shutdown+0x1d0/0x1d0
[ 2038.114730][ T5331]  ___sys_sendmsg+0x19a/0x2e0
[ 2038.119415][ T5331]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2038.124213][ T5331]  __se_sys_sendmsg+0x1af/0x290
[ 2038.129070][ T5331]  ? __x64_sys_sendmsg+0x80/0x80
[ 2038.134004][ T5331]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2038.140001][ T5331]  ? lockdep_hardirqs_on+0x94/0x140
[ 2038.145209][ T5331]  do_syscall_64+0x4c/0xa0
[ 2038.149628][ T5331]  ? clear_bhb_loop+0x30/0x80
[ 2038.154302][ T5331]  ? clear_bhb_loop+0x30/0x80
[ 2038.158975][ T5331]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2038.164867][ T5331] RIP: 0033:0x7f40944ffe59
[ 2038.169285][ T5331] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2038.188888][ T5331] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2038.197308][ T5331] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2038.205295][ T5331] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000005
[ 2038.213287][ T5331] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2038.221265][ T5331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2038.229244][ T5331] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2038.237233][ T5331]  </TASK>
[ 2038.531707][ T5343] netlink: 15743 bytes leftover after parsing attributes in process `syz.0.22779'.
[ 2038.568437][ T5345] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.22780'.
[ 2039.301728][ T4236] Bluetooth: hci2: command 0x0406 tx timeout
[ 2039.449450][ T5376] FAULT_INJECTION: forcing a failure.
[ 2039.449450][ T5376] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2039.525230][ T5376] CPU: 1 PID: 5376 Comm: syz.0.22791 Not tainted syzkaller #0
[ 2039.532750][ T5376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2039.542832][ T5376] Call Trace:
[ 2039.546134][ T5376]  <TASK>
[ 2039.549095][ T5376]  dump_stack_lvl+0x188/0x250
[ 2039.553806][ T5376]  ? show_regs_print_info+0x20/0x20
[ 2039.559030][ T5376]  ? load_image+0x400/0x400
[ 2039.563569][ T5376]  ? __lock_acquire+0x7d10/0x7d10
[ 2039.568622][ T5376]  ? trace_call_bpf+0x515/0x5b0
[ 2039.573520][ T5376]  should_fail+0x38c/0x4c0
[ 2039.577982][ T5376]  _copy_from_user+0x2e/0x170
[ 2039.582695][ T5376]  iovec_from_user+0x142/0x370
[ 2039.587503][ T5376]  __import_iovec+0x70/0x490
[ 2039.592149][ T5376]  import_iovec+0x6f/0xa0
[ 2039.596521][ T5376]  ___sys_sendmsg+0x1fd/0x2e0
[ 2039.601247][ T5376]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2039.606060][ T5376]  ? trace_event_raw_event_lock+0x270/0x270
[ 2039.611952][ T5376]  ? vfs_write+0x8b2/0xd60
[ 2039.616416][ T5376]  __se_sys_sendmsg+0x1af/0x290
[ 2039.621279][ T5376]  ? __x64_sys_sendmsg+0x80/0x80
[ 2039.626223][ T5376]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2039.632231][ T5376]  ? lockdep_hardirqs_on+0x94/0x140
[ 2039.637446][ T5376]  do_syscall_64+0x4c/0xa0
[ 2039.641857][ T5376]  ? clear_bhb_loop+0x30/0x80
[ 2039.646530][ T5376]  ? clear_bhb_loop+0x30/0x80
[ 2039.651211][ T5376]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2039.657108][ T5376] RIP: 0033:0x7f40944ffe59
[ 2039.661526][ T5376] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2039.681129][ T5376] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2039.689553][ T5376] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2039.697520][ T5376] RDX: 00000000000012cd RSI: 0000200000000040 RDI: 0000000000000003
[ 2039.705484][ T5376] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2039.713450][ T5376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2039.721420][ T5376] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2039.729419][ T5376]  </TASK>
[ 2039.933765][ T5394] FAULT_INJECTION: forcing a failure.
[ 2039.933765][ T5394] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2039.954959][ T5394] CPU: 1 PID: 5394 Comm: syz.2.22797 Not tainted syzkaller #0
[ 2039.962459][ T5394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2039.972522][ T5394] Call Trace:
[ 2039.975806][ T5394]  <TASK>
[ 2039.978740][ T5394]  dump_stack_lvl+0x188/0x250
[ 2039.983430][ T5394]  ? show_regs_print_info+0x20/0x20
[ 2039.988631][ T5394]  ? load_image+0x400/0x400
[ 2039.993151][ T5394]  ? __lock_acquire+0x7d10/0x7d10
[ 2039.998185][ T5394]  ? bpf_test_run+0x78e/0x800
[ 2040.002872][ T5394]  should_fail+0x38c/0x4c0
[ 2040.007307][ T5394]  _copy_to_user+0x2e/0x130
[ 2040.011819][ T5394]  bpf_test_finish+0x215/0x2f0
[ 2040.016589][ T5394]  ? convert_skb_to___skb+0x360/0x360
[ 2040.021963][ T5394]  ? convert_skb_to___skb+0x14a/0x360
[ 2040.027341][ T5394]  ? memcpy+0x3c/0x60
[ 2040.031328][ T5394]  ? convert_skb_to___skb+0x14a/0x360
[ 2040.036710][ T5394]  bpf_prog_test_run_skb+0xb50/0x10b0
[ 2040.042105][ T5394]  ? cpu_online+0x60/0x60
[ 2040.046441][ T5394]  bpf_prog_test_run+0x31e/0x390
[ 2040.051388][ T5394]  __sys_bpf+0x5a5/0x6f0
[ 2040.055646][ T5394]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2040.061070][ T5394]  ? vtime_user_exit+0x2c8/0x3e0
[ 2040.066021][ T5394]  __x64_sys_bpf+0x78/0x90
[ 2040.070445][ T5394]  do_syscall_64+0x4c/0xa0
[ 2040.074863][ T5394]  ? clear_bhb_loop+0x30/0x80
[ 2040.079547][ T5394]  ? clear_bhb_loop+0x30/0x80
[ 2040.084231][ T5394]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2040.090128][ T5394] RIP: 0033:0x7f1f50d1fe59
[ 2040.094544][ T5394] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2040.114152][ T5394] RSP: 002b:00007f1f4ef58028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2040.122574][ T5394] RAX: ffffffffffffffda RBX: 00007f1f50f99090 RCX: 00007f1f50d1fe59
[ 2040.130585][ T5394] RDX: 0000000000000048 RSI: 0000200000002c00 RDI: 000000000000000a
[ 2040.138562][ T5394] RBP: 00007f1f4ef58090 R08: 0000000000000000 R09: 0000000000000000
[ 2040.146536][ T5394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2040.154508][ T5394] R13: 00007f1f50f99128 R14: 00007f1f50f99090 R15: 00007ffe02441758
[ 2040.162498][ T5394]  </TASK>
[ 2040.255092][ T5406] FAULT_INJECTION: forcing a failure.
[ 2040.255092][ T5406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2040.287876][ T5406] CPU: 1 PID: 5406 Comm: syz.3.22801 Not tainted syzkaller #0
[ 2040.295376][ T5406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2040.303097][ T5408] __nla_validate_parse: 3 callbacks suppressed
[ 2040.303112][ T5408] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.22802'.
[ 2040.305431][ T5406] Call Trace:
[ 2040.305442][ T5406]  <TASK>
[ 2040.327141][ T5406]  dump_stack_lvl+0x188/0x250
[ 2040.331843][ T5406]  ? show_regs_print_info+0x20/0x20
[ 2040.337051][ T5406]  ? load_image+0x400/0x400
[ 2040.341565][ T5406]  ? __lock_acquire+0x7d10/0x7d10
[ 2040.346596][ T5406]  should_fail+0x38c/0x4c0
[ 2040.351012][ T5406]  _copy_from_iter+0x22e/0x1170
[ 2040.355852][ T5406]  ? __lock_acquire+0x7d10/0x7d10
[ 2040.360871][ T5406]  ? copy_mc_pipe_to_iter+0x7d0/0x7d0
[ 2040.366236][ T5406]  ? __virt_addr_valid+0x3c6/0x470
[ 2040.371332][ T5406]  ? __phys_addr_symbol+0x2b/0x70
[ 2040.376340][ T5406]  ? __check_object_size+0x30c/0x410
[ 2040.381616][ T5406]  netlink_sendmsg+0x758/0xbe0
[ 2040.386375][ T5406]  ? netlink_getsockopt+0x570/0x570
[ 2040.391563][ T5406]  ? aa_sock_msg_perm+0x94/0x150
[ 2040.396489][ T5406]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2040.401762][ T5406]  ? security_socket_sendmsg+0x7c/0xa0
[ 2040.407209][ T5406]  ? netlink_getsockopt+0x570/0x570
[ 2040.412394][ T5406]  ____sys_sendmsg+0x5b7/0x8f0
[ 2040.417152][ T5406]  ? __sys_sendmsg_sock+0x30/0x30
[ 2040.422177][ T5406]  ? import_iovec+0x6f/0xa0
[ 2040.426674][ T5406]  ___sys_sendmsg+0x236/0x2e0
[ 2040.431344][ T5406]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2040.436104][ T5406]  ? vfs_write+0x8b2/0xd60
[ 2040.440520][ T5406]  __se_sys_sendmsg+0x1af/0x290
[ 2040.445359][ T5406]  ? __x64_sys_sendmsg+0x80/0x80
[ 2040.450280][ T5406]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2040.456254][ T5406]  ? lockdep_hardirqs_on+0x94/0x140
[ 2040.461441][ T5406]  do_syscall_64+0x4c/0xa0
[ 2040.465841][ T5406]  ? clear_bhb_loop+0x30/0x80
[ 2040.470504][ T5406]  ? clear_bhb_loop+0x30/0x80
[ 2040.475169][ T5406]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2040.481049][ T5406] RIP: 0033:0x7fb3499c9e59
[ 2040.485453][ T5406] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2040.505052][ T5406] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2040.513451][ T5406] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2040.521409][ T5406] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000005
[ 2040.529366][ T5406] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2040.537324][ T5406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2040.545290][ T5406] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2040.553260][ T5406]  </TASK>
[ 2040.722488][ T5413] netlink: 208188 bytes leftover after parsing attributes in process `syz.1.22804'.
[ 2040.742466][ T5417] syz.3.22805[5417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2040.742565][ T5417] syz.3.22805[5417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2040.899697][ T5431] netlink: 164 bytes leftover after parsing attributes in process `syz.4.22808'.
[ 2040.979555][ T5437] netlink: 'syz.1.22810': attribute type 10 has an invalid length.
[ 2041.044707][ T5434] netlink: 'syz.2.22811': attribute type 1 has an invalid length.
[ 2041.053386][ T5434] netlink: 112860 bytes leftover after parsing attributes in process `syz.2.22811'.
[ 2041.071672][ T5434] netlink: 'syz.2.22811': attribute type 1 has an invalid length.
[ 2041.226971][ T5444] netlink: 'syz.3.22813': attribute type 10 has an invalid length.
[ 2041.237366][ T5444] netlink: 2 bytes leftover after parsing attributes in process `syz.3.22813'.
[ 2041.271398][ T5444] device bond0 entered promiscuous mode
[ 2041.277101][ T5444] device bond_slave_0 entered promiscuous mode
[ 2041.288117][ T5444] device bond_slave_1 entered promiscuous mode
[ 2041.296503][ T5444] device batadv_slave_0 entered promiscuous mode
[ 2041.425487][ T5459] netlink: 15231 bytes leftover after parsing attributes in process `syz.3.22821'.
[ 2041.656745][ T5469] netlink: 'syz.2.22823': attribute type 10 has an invalid length.
[ 2041.669761][ T5469] device syz_tun entered promiscuous mode
[ 2041.696560][ T5469] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 2041.810237][ T5478] netlink: 164 bytes leftover after parsing attributes in process `syz.1.22827'.
[ 2042.176209][ T5493] FAULT_INJECTION: forcing a failure.
[ 2042.176209][ T5493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2042.216728][ T5493] CPU: 1 PID: 5493 Comm: syz.4.22833 Not tainted syzkaller #0
[ 2042.224235][ T5493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2042.234311][ T5493] Call Trace:
[ 2042.237609][ T5493]  <TASK>
[ 2042.240556][ T5493]  dump_stack_lvl+0x188/0x250
[ 2042.245263][ T5493]  ? show_regs_print_info+0x20/0x20
[ 2042.250484][ T5493]  ? load_image+0x400/0x400
[ 2042.255023][ T5493]  ? __lock_acquire+0x7d10/0x7d10
[ 2042.260073][ T5493]  ? trace_event_raw_event_lock+0x270/0x270
[ 2042.265984][ T5493]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2042.271992][ T5493]  should_fail+0x38c/0x4c0
[ 2042.276450][ T5493]  _copy_from_user+0x2e/0x170
[ 2042.281156][ T5493]  get_user_ifreq+0x67/0x170
[ 2042.285772][ T5493]  inet_ioctl+0x2c6/0x460
[ 2042.290129][ T5493]  ? inet_shutdown+0x370/0x370
[ 2042.294946][ T5493]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2042.300441][ T5493]  ? packet_ioctl+0x109/0x240
[ 2042.305158][ T5493]  sock_do_ioctl+0xfb/0x320
[ 2042.309690][ T5493]  ? sock_show_fdinfo+0xb0/0xb0
[ 2042.314591][ T5493]  sock_ioctl+0x4d2/0x710
[ 2042.318947][ T5493]  ? sock_poll+0x410/0x410
[ 2042.323399][ T5493]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 2042.328355][ T5493]  ? security_file_ioctl+0x7c/0xa0
[ 2042.333488][ T5493]  ? sock_poll+0x410/0x410
[ 2042.337918][ T5493]  __se_sys_ioctl+0xfa/0x170
[ 2042.342511][ T5493]  do_syscall_64+0x4c/0xa0
[ 2042.346919][ T5493]  ? clear_bhb_loop+0x30/0x80
[ 2042.351594][ T5493]  ? clear_bhb_loop+0x30/0x80
[ 2042.356271][ T5493]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2042.362169][ T5493] RIP: 0033:0x7f465f6bce59
[ 2042.366591][ T5493] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2042.386222][ T5493] RSP: 002b:00007f465d916028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2042.394644][ T5493] RAX: ffffffffffffffda RBX: 00007f465f935fa0 RCX: 00007f465f6bce59
[ 2042.402655][ T5493] RDX: 0000200000000580 RSI: 0000000000008914 RDI: 0000000000000009
[ 2042.410620][ T5493] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2042.418586][ T5493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2042.426544][ T5493] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2042.434526][ T5493]  </TASK>
[ 2042.451038][ T5506] FAULT_INJECTION: forcing a failure.
[ 2042.451038][ T5506] name failslab, interval 1, probability 0, space 0, times 0
[ 2042.464319][ T5506] CPU: 0 PID: 5506 Comm: syz.0.22837 Not tainted syzkaller #0
[ 2042.471799][ T5506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2042.481860][ T5506] Call Trace:
[ 2042.485148][ T5506]  <TASK>
[ 2042.488086][ T5506]  dump_stack_lvl+0x188/0x250
[ 2042.492779][ T5506]  ? show_regs_print_info+0x20/0x20
[ 2042.497980][ T5506]  ? load_image+0x400/0x400
[ 2042.502482][ T5506]  ? __might_sleep+0xf0/0xf0
[ 2042.507061][ T5506]  ? __lock_acquire+0x7d10/0x7d10
[ 2042.512069][ T5506]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2042.517426][ T5506]  should_fail+0x38c/0x4c0
[ 2042.521839][ T5506]  should_failslab+0x5/0x20
[ 2042.526327][ T5506]  slab_pre_alloc_hook+0x51/0xc0
[ 2042.531251][ T5506]  kmem_cache_alloc_node_trace+0x4a/0x300
[ 2042.536955][ T5506]  ? __get_vm_area_node+0x119/0x2d0
[ 2042.542142][ T5506]  __get_vm_area_node+0x119/0x2d0
[ 2042.547152][ T5506]  __vmalloc_node_range+0xef/0x8b0
[ 2042.552249][ T5506]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2042.557181][ T5506]  ? netlink_data_ready+0x10/0x10
[ 2042.562194][ T5506]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2042.567150][ T5506]  vmalloc+0x75/0x80
[ 2042.571028][ T5506]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2042.575948][ T5506]  netlink_sendmsg+0x5ec/0xbe0
[ 2042.580704][ T5506]  ? netlink_getsockopt+0x570/0x570
[ 2042.585886][ T5506]  ? aa_sock_msg_perm+0x94/0x150
[ 2042.590815][ T5506]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2042.596084][ T5506]  ? security_socket_sendmsg+0x7c/0xa0
[ 2042.601531][ T5506]  ? netlink_getsockopt+0x570/0x570
[ 2042.606715][ T5506]  ____sys_sendmsg+0x5b7/0x8f0
[ 2042.611476][ T5506]  ? __sys_sendmsg_sock+0x30/0x30
[ 2042.616495][ T5506]  ? import_iovec+0x6f/0xa0
[ 2042.620986][ T5506]  ___sys_sendmsg+0x236/0x2e0
[ 2042.625662][ T5506]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2042.630428][ T5506]  ? trace_event_raw_event_lock+0x270/0x270
[ 2042.636309][ T5506]  ? vfs_write+0x8b2/0xd60
[ 2042.640723][ T5506]  __se_sys_sendmsg+0x1af/0x290
[ 2042.645559][ T5506]  ? __x64_sys_sendmsg+0x80/0x80
[ 2042.650492][ T5506]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2042.656469][ T5506]  ? lockdep_hardirqs_on+0x94/0x140
[ 2042.661655][ T5506]  do_syscall_64+0x4c/0xa0
[ 2042.666056][ T5506]  ? clear_bhb_loop+0x30/0x80
[ 2042.670714][ T5506]  ? clear_bhb_loop+0x30/0x80
[ 2042.675374][ T5506]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2042.681251][ T5506] RIP: 0033:0x7f40944ffe59
[ 2042.685652][ T5506] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2042.705241][ T5506] RSP: 002b:00007f4092717028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2042.713643][ T5506] RAX: ffffffffffffffda RBX: 00007f4094779180 RCX: 00007f40944ffe59
[ 2042.721612][ T5506] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2042.729564][ T5506] RBP: 00007f4092717090 R08: 0000000000000000 R09: 0000000000000000
[ 2042.737515][ T5506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2042.745467][ T5506] R13: 00007f4094779218 R14: 00007f4094779180 R15: 00007ffc92bdc3e8
[ 2042.753435][ T5506]  </TASK>
[ 2042.836991][ T5510] netlink: 132 bytes leftover after parsing attributes in process `syz.1.22839'.
[ 2043.098970][ T5522] netlink: 15743 bytes leftover after parsing attributes in process `syz.4.22843'.
[ 2043.168284][ T5506] syz.0.22837: vmalloc error: size 213312, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 2043.173789][ T5521] netlink: 'syz.3.22844': attribute type 39 has an invalid length.
[ 2043.187054][ T5506] CPU: 1 PID: 5506 Comm: syz.0.22837 Not tainted syzkaller #0
[ 2043.198224][ T5506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2043.208289][ T5506] Call Trace:
[ 2043.211568][ T5506]  <TASK>
[ 2043.214503][ T5506]  dump_stack_lvl+0x188/0x250
[ 2043.219190][ T5506]  ? rcu_lock_release+0x5/0x20
[ 2043.223962][ T5506]  ? show_regs_print_info+0x20/0x20
[ 2043.229167][ T5506]  ? load_image+0x400/0x400
[ 2043.233693][ T5506]  warn_alloc+0x243/0x320
[ 2043.238034][ T5506]  ? zone_watermark_ok_safe+0x240/0x240
[ 2043.243593][ T5506]  ? kmem_cache_alloc_node_trace+0x16c/0x300
[ 2043.249578][ T5506]  ? __get_vm_area_node+0x119/0x2d0
[ 2043.254801][ T5506]  __vmalloc_node_range+0x2b1/0x8b0
[ 2043.260007][ T5506]  ? netlink_data_ready+0x10/0x10
[ 2043.265049][ T5506]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2043.269996][ T5506]  vmalloc+0x75/0x80
[ 2043.273905][ T5506]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2043.278852][ T5506]  netlink_sendmsg+0x5ec/0xbe0
[ 2043.283641][ T5506]  ? netlink_getsockopt+0x570/0x570
[ 2043.288846][ T5506]  ? aa_sock_msg_perm+0x94/0x150
[ 2043.293796][ T5506]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2043.299089][ T5506]  ? security_socket_sendmsg+0x7c/0xa0
[ 2043.304560][ T5506]  ? netlink_getsockopt+0x570/0x570
[ 2043.309763][ T5506]  ____sys_sendmsg+0x5b7/0x8f0
[ 2043.314546][ T5506]  ? __sys_sendmsg_sock+0x30/0x30
[ 2043.319597][ T5506]  ? import_iovec+0x6f/0xa0
[ 2043.324122][ T5506]  ___sys_sendmsg+0x236/0x2e0
[ 2043.328821][ T5506]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2043.333613][ T5506]  ? trace_event_raw_event_lock+0x270/0x270
[ 2043.339511][ T5506]  ? vfs_write+0x8b2/0xd60
[ 2043.343959][ T5506]  __se_sys_sendmsg+0x1af/0x290
[ 2043.348824][ T5506]  ? __x64_sys_sendmsg+0x80/0x80
[ 2043.353775][ T5506]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2043.359778][ T5506]  ? lockdep_hardirqs_on+0x94/0x140
[ 2043.364990][ T5506]  do_syscall_64+0x4c/0xa0
[ 2043.369414][ T5506]  ? clear_bhb_loop+0x30/0x80
[ 2043.374096][ T5506]  ? clear_bhb_loop+0x30/0x80
[ 2043.378781][ T5506]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2043.384679][ T5506] RIP: 0033:0x7f40944ffe59
[ 2043.389102][ T5506] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2043.408716][ T5506] RSP: 002b:00007f4092717028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2043.417144][ T5506] RAX: ffffffffffffffda RBX: 00007f4094779180 RCX: 00007f40944ffe59
[ 2043.425125][ T5506] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2043.433103][ T5506] RBP: 00007f4092717090 R08: 0000000000000000 R09: 0000000000000000
[ 2043.441079][ T5506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2043.449058][ T5506] R13: 00007f4094779218 R14: 00007f4094779180 R15: 00007ffc92bdc3e8
[ 2043.457054][ T5506]  </TASK>
[ 2043.464399][ T5521] device veth0_macvtap left promiscuous mode
[ 2043.498295][ T5506] Mem-Info:
[ 2043.501744][ T5506] active_anon:282 inactive_anon:26230 isolated_anon:0
[ 2043.501744][ T5506]  active_file:27054 inactive_file:35849 isolated_file:0
[ 2043.501744][ T5506]  unevictable:768 dirty:298 writeback:0
[ 2043.501744][ T5506]  slab_reclaimable:21649 slab_unreclaimable:100236
[ 2043.501744][ T5506]  mapped:40356 shmem:17035 pagetables:682 bounce:0
[ 2043.501744][ T5506]  kernel_misc_reclaimable:0
[ 2043.501744][ T5506]  free:1343712 free_pcp:3708 free_cma:0
[ 2043.556456][ T5506] Node 0 active_anon:1096kB inactive_anon:104612kB active_file:108008kB inactive_file:143396kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:161424kB dirty:1192kB writeback:0kB shmem:66264kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:10380kB pagetables:2728kB all_unreclaimable? no
[ 2043.576096][ T5525] netlink: 183836 bytes leftover after parsing attributes in process `syz.2.22845'.
[ 2043.609400][ T5506] Node 1 active_anon:32kB inactive_anon:508kB active_file:208kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:2076kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB all_unreclaimable? no
[ 2043.641902][ T5506] Node 0 DMA free:15360kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2043.675138][ T5531] netlink: 'syz.1.22846': attribute type 1 has an invalid length.
[ 2043.692090][ T5506] lowmem_reserve[]: 0 2539 2540 2540 2540
[ 2043.713234][ T5506] Node 0 DMA32 free:1435264kB min:34784kB low:43480kB high:52176kB reserved_highatomic:0KB active_anon:1096kB inactive_anon:108360kB active_file:108016kB inactive_file:143396kB unevictable:1536kB writepending:1216kB present:3129332kB managed:2606536kB mlocked:0kB bounce:0kB free_pcp:12356kB local_pcp:5512kB free_cma:0kB
[ 2044.018253][ T5506] lowmem_reserve[]: 0 0 0 0 0
[ 2044.029122][ T5506] Node 0 Normal free:8kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:660kB mlocked:0kB bounce:0kB free_pcp:24kB local_pcp:12kB free_cma:0kB
[ 2044.098204][ T5506] lowmem_reserve[]: 0 0 0 0 0
[ 2044.118542][ T5506] Node 1 Normal free:3919928kB min:55108kB low:68884kB high:82660kB reserved_highatomic:0KB active_anon:32kB inactive_anon:508kB active_file:208kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4119672kB mlocked:0kB bounce:0kB free_pcp:2488kB local_pcp:328kB free_cma:0kB
[ 2044.177662][ T5549] netlink: 'syz.2.22853': attribute type 1 has an invalid length.
[ 2044.252195][ T5506] lowmem_reserve[]: 0 0 0 0 0
[ 2044.271660][ T5506] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2044.308908][ T5506] Node 0 DMA32: 2814*4kB (U) 1893*8kB (UME) 2268*16kB (UME) 1190*32kB (UME) 1116*64kB (UM) 871*128kB (UME) 153*256kB (UME) 116*512kB (UME) 64*1024kB (UME) 23*2048kB (UME) 228*4096kB (UM) = 1428768kB
[ 2044.393267][ T5506] Node 0 Normal: 2*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[ 2044.449284][ T5506] Node 1 Normal: 190*4kB (UME) 46*8kB (UME) 35*16kB (UME) 203*32kB (UME) 81*64kB (UME) 20*128kB (UME) 12*256kB (U) 3*512kB (U) 0*1024kB 2*2048kB (ME) 951*4096kB (M) = 3919928kB
[ 2044.522220][ T5506] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2044.559783][ T5506] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2044.598351][ T5506] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2044.652215][ T5506] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2044.695185][ T5506] 83891 total pagecache pages
[ 2044.699903][ T5506] 0 pages in swap cache
[ 2044.731280][ T5506] Swap cache stats: add 0, delete 0, find 0/0
[ 2044.805182][ T5506] Free swap  = 124996kB
[ 2044.809460][ T5506] Total swap = 124996kB
[ 2044.813653][ T5506] 2097051 pages RAM
[ 2044.817454][ T5506] 0 pages HighMem/MovableOnly
[ 2044.826365][ T5506] 411494 pages reserved
[ 2044.830524][ T5506] 0 pages cma reserved
[ 2045.012125][ T5573] FAULT_INJECTION: forcing a failure.
[ 2045.012125][ T5573] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2045.061426][ T5573] CPU: 1 PID: 5573 Comm: syz.1.22861 Not tainted syzkaller #0
[ 2045.068940][ T5573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2045.079017][ T5573] Call Trace:
[ 2045.082327][ T5573]  <TASK>
[ 2045.085284][ T5573]  dump_stack_lvl+0x188/0x250
[ 2045.090010][ T5573]  ? show_regs_print_info+0x20/0x20
[ 2045.095240][ T5573]  ? load_image+0x400/0x400
[ 2045.099776][ T5573]  ? __lock_acquire+0x7d10/0x7d10
[ 2045.104930][ T5573]  should_fail+0x38c/0x4c0
[ 2045.109394][ T5573]  _copy_from_user+0x2e/0x170
[ 2045.114103][ T5573]  __copy_msghdr_from_user+0xc9/0x630
[ 2045.119501][ T5573]  ? verify_lock_unused+0x140/0x140
[ 2045.124907][ T5573]  ? __ia32_sys_shutdown+0x1d0/0x1d0
[ 2045.130272][ T5573]  ___sys_sendmsg+0x19a/0x2e0
[ 2045.135005][ T5573]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2045.139835][ T5573]  ? trace_event_raw_event_lock+0x270/0x270
[ 2045.145752][ T5573]  ? vfs_write+0x8b2/0xd60
[ 2045.150246][ T5573]  __se_sys_sendmsg+0x1af/0x290
[ 2045.155124][ T5573]  ? __x64_sys_sendmsg+0x80/0x80
[ 2045.160067][ T5573]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2045.166086][ T5573]  ? lockdep_hardirqs_on+0x94/0x140
[ 2045.171300][ T5573]  do_syscall_64+0x4c/0xa0
[ 2045.175721][ T5573]  ? clear_bhb_loop+0x30/0x80
[ 2045.180399][ T5573]  ? clear_bhb_loop+0x30/0x80
[ 2045.185083][ T5573]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2045.190977][ T5573] RIP: 0033:0x7fd78fbc1e59
[ 2045.195393][ T5573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2045.214998][ T5573] RSP: 002b:00007fd78de1b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2045.223413][ T5573] RAX: ffffffffffffffda RBX: 00007fd78fe3afa0 RCX: 00007fd78fbc1e59
[ 2045.231400][ T5573] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 2045.239380][ T5573] RBP: 00007fd78de1b090 R08: 0000000000000000 R09: 0000000000000000
[ 2045.247358][ T5573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2045.255336][ T5573] R13: 00007fd78fe3b038 R14: 00007fd78fe3afa0 R15: 00007ffe042327d8
[ 2045.263345][ T5573]  </TASK>
[ 2045.315586][ T5581] __nla_validate_parse: 6 callbacks suppressed
[ 2045.315619][ T5581] netlink: 15743 bytes leftover after parsing attributes in process `syz.3.22862'.
[ 2045.455643][ T5589] netlink: 209844 bytes leftover after parsing attributes in process `syz.4.22869'.
[ 2045.527043][ T5597] netlink: 164 bytes leftover after parsing attributes in process `syz.3.22870'.
[ 2045.864403][ T5610] netlink: 'syz.4.22876': attribute type 2 has an invalid length.
[ 2045.886619][ T5610] netlink: 132 bytes leftover after parsing attributes in process `syz.4.22876'.
[ 2045.976401][ T5606] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2046.011330][ T5606] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2046.215702][ T5623] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.22880'.
[ 2046.287299][ T5627] netlink: 15743 bytes leftover after parsing attributes in process `syz.2.22882'.
[ 2046.376477][ T5630] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.22883'.
[ 2046.412645][ T5632] FAULT_INJECTION: forcing a failure.
[ 2046.412645][ T5632] name failslab, interval 1, probability 0, space 0, times 0
[ 2046.412954][ T5635] netlink: 164 bytes leftover after parsing attributes in process `syz.4.22886'.
[ 2046.447435][ T5632] CPU: 0 PID: 5632 Comm: syz.0.22885 Not tainted syzkaller #0
[ 2046.454931][ T5632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2046.464992][ T5632] Call Trace:
[ 2046.468276][ T5632]  <TASK>
[ 2046.471206][ T5632]  dump_stack_lvl+0x188/0x250
[ 2046.475888][ T5632]  ? show_regs_print_info+0x20/0x20
[ 2046.481088][ T5632]  ? load_image+0x400/0x400
[ 2046.485597][ T5632]  ? __might_sleep+0xf0/0xf0
[ 2046.490188][ T5632]  ? __lock_acquire+0x7d10/0x7d10
[ 2046.495214][ T5632]  ? mark_lock+0x94/0x320
[ 2046.499548][ T5632]  should_fail+0x38c/0x4c0
[ 2046.503974][ T5632]  should_failslab+0x5/0x20
[ 2046.508475][ T5632]  slab_pre_alloc_hook+0x51/0xc0
[ 2046.513414][ T5632]  __kmalloc+0x6b/0x330
[ 2046.517566][ T5632]  ? tomoyo_realpath_from_path+0x118/0x610
[ 2046.523382][ T5632]  tomoyo_realpath_from_path+0x118/0x610
[ 2046.529020][ T5632]  tomoyo_path_number_perm+0x242/0x660
[ 2046.534476][ T5632]  ? verify_lock_unused+0x140/0x140
[ 2046.539676][ T5632]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2046.545132][ T5632]  ? ksys_write+0x1c6/0x260
[ 2046.549677][ T5632]  security_file_ioctl+0x6c/0xa0
[ 2046.554617][ T5632]  __se_sys_ioctl+0x48/0x170
[ 2046.559206][ T5632]  do_syscall_64+0x4c/0xa0
[ 2046.563624][ T5632]  ? clear_bhb_loop+0x30/0x80
[ 2046.568298][ T5632]  ? clear_bhb_loop+0x30/0x80
[ 2046.572975][ T5632]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2046.578876][ T5632] RIP: 0033:0x7f40944ffe59
[ 2046.583289][ T5632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2046.602894][ T5632] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2046.611308][ T5632] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2046.619282][ T5632] RDX: 0000200000000080 RSI: 0000000000008b06 RDI: 0000000000000006
[ 2046.627261][ T5632] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2046.635230][ T5632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2046.643194][ T5632] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2046.651178][ T5632]  </TASK>
[ 2046.805039][ T5643] netlink: 'syz.4.22889': attribute type 2 has an invalid length.
[ 2046.831425][ T5643] netlink: 132 bytes leftover after parsing attributes in process `syz.4.22889'.
[ 2046.851323][ T5632] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2047.171042][ T5662] netlink: 'syz.2.22896': attribute type 8 has an invalid length.
[ 2047.198088][ T5662] netlink: 161700 bytes leftover after parsing attributes in process `syz.2.22896'.
[ 2047.579335][ T5676] netlink: 'syz.4.22902': attribute type 2 has an invalid length.
[ 2048.069152][ T5702] FAULT_INJECTION: forcing a failure.
[ 2048.069152][ T5702] name failslab, interval 1, probability 0, space 0, times 0
[ 2048.131626][ T5702] CPU: 0 PID: 5702 Comm: syz.4.22915 Not tainted syzkaller #0
[ 2048.139142][ T5702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2048.149218][ T5702] Call Trace:
[ 2048.152515][ T5702]  <TASK>
[ 2048.155447][ T5702]  dump_stack_lvl+0x188/0x250
[ 2048.160148][ T5702]  ? show_regs_print_info+0x20/0x20
[ 2048.165357][ T5702]  ? load_image+0x400/0x400
[ 2048.169872][ T5702]  ? __lock_acquire+0x7d10/0x7d10
[ 2048.174915][ T5702]  should_fail+0x38c/0x4c0
[ 2048.179342][ T5702]  should_failslab+0x5/0x20
[ 2048.183842][ T5702]  slab_pre_alloc_hook+0x51/0xc0
[ 2048.188780][ T5702]  __kmalloc+0x6b/0x330
[ 2048.192946][ T5702]  ? sk_prot_alloc+0xe7/0x210
[ 2048.197639][ T5702]  sk_prot_alloc+0xe7/0x210
[ 2048.202135][ T5702]  ? sk_alloc+0x1d/0x310
[ 2048.206380][ T5702]  sk_alloc+0x2f/0x310
[ 2048.210452][ T5702]  mISDN_sock_create+0xa6/0x5c0
[ 2048.215331][ T5702]  __sock_create+0x47b/0x900
[ 2048.219940][ T5702]  __sys_socket+0xe2/0x170
[ 2048.224367][ T5702]  __x64_sys_socket+0x76/0x80
[ 2048.229045][ T5702]  do_syscall_64+0x4c/0xa0
[ 2048.233455][ T5702]  ? clear_bhb_loop+0x30/0x80
[ 2048.238137][ T5702]  ? clear_bhb_loop+0x30/0x80
[ 2048.242813][ T5702]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2048.248715][ T5702] RIP: 0033:0x7f465f6bce59
[ 2048.253142][ T5702] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2048.272753][ T5702] RSP: 002b:00007f465d916028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 2048.281185][ T5702] RAX: ffffffffffffffda RBX: 00007f465f935fa0 RCX: 00007f465f6bce59
[ 2048.289161][ T5702] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000022
[ 2048.297129][ T5702] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2048.305094][ T5702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2048.313206][ T5702] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2048.321224][ T5702]  </TASK>
[ 2048.475374][ T5710] netlink: 'syz.0.22917': attribute type 2 has an invalid length.
[ 2048.840802][ T5722] netlink: 'syz.2.22923': attribute type 2 has an invalid length.
[ 2049.214566][ T5735] netlink: 'syz.2.22928': attribute type 2 has an invalid length.
[ 2049.285552][ T5741] FAULT_INJECTION: forcing a failure.
[ 2049.285552][ T5741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2049.338961][ T5741] CPU: 0 PID: 5741 Comm: syz.0.22931 Not tainted syzkaller #0
[ 2049.346457][ T5741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2049.356522][ T5741] Call Trace:
[ 2049.359806][ T5741]  <TASK>
[ 2049.362735][ T5741]  dump_stack_lvl+0x188/0x250
[ 2049.367420][ T5741]  ? show_regs_print_info+0x20/0x20
[ 2049.372615][ T5741]  ? load_image+0x400/0x400
[ 2049.377114][ T5741]  ? __lock_acquire+0x7d10/0x7d10
[ 2049.382127][ T5741]  ? perf_trace_lock_acquire+0xed/0x3e0
[ 2049.387664][ T5741]  should_fail+0x38c/0x4c0
[ 2049.392073][ T5741]  _copy_from_user+0x2e/0x170
[ 2049.396737][ T5741]  __copy_msghdr_from_user+0x48a/0x630
[ 2049.402184][ T5741]  ? verify_lock_unused+0x140/0x140
[ 2049.407372][ T5741]  ? __ia32_sys_shutdown+0x1d0/0x1d0
[ 2049.412662][ T5741]  ___sys_sendmsg+0x19a/0x2e0
[ 2049.417337][ T5741]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2049.422099][ T5741]  ? vfs_write+0x8b2/0xd60
[ 2049.426517][ T5741]  __se_sys_sendmsg+0x1af/0x290
[ 2049.431357][ T5741]  ? __x64_sys_sendmsg+0x80/0x80
[ 2049.436287][ T5741]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2049.442262][ T5741]  ? lockdep_hardirqs_on+0x94/0x140
[ 2049.447448][ T5741]  do_syscall_64+0x4c/0xa0
[ 2049.451847][ T5741]  ? clear_bhb_loop+0x30/0x80
[ 2049.456512][ T5741]  ? clear_bhb_loop+0x30/0x80
[ 2049.461179][ T5741]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2049.467059][ T5741] RIP: 0033:0x7f40944ffe59
[ 2049.471464][ T5741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2049.491058][ T5741] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2049.499460][ T5741] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2049.507415][ T5741] RDX: 0000000000000000 RSI: 0000200000000b40 RDI: 0000000000000003
[ 2049.515372][ T5741] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2049.523338][ T5741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2049.531293][ T5741] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2049.539263][ T5741]  </TASK>
[ 2049.877736][ T5758] FAULT_INJECTION: forcing a failure.
[ 2049.877736][ T5758] name failslab, interval 1, probability 0, space 0, times 0
[ 2049.879787][ T5755] netlink: 'syz.4.22936': attribute type 2 has an invalid length.
[ 2049.894085][ T5758] CPU: 0 PID: 5758 Comm: syz.0.22938 Not tainted syzkaller #0
[ 2049.905995][ T5758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2049.916059][ T5758] Call Trace:
[ 2049.919347][ T5758]  <TASK>
[ 2049.922292][ T5758]  dump_stack_lvl+0x188/0x250
[ 2049.926984][ T5758]  ? show_regs_print_info+0x20/0x20
[ 2049.932184][ T5758]  ? load_image+0x400/0x400
[ 2049.936672][ T5758]  ? __might_sleep+0xf0/0xf0
[ 2049.941250][ T5758]  ? __lock_acquire+0x7d10/0x7d10
[ 2049.946281][ T5758]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2049.951666][ T5758]  should_fail+0x38c/0x4c0
[ 2049.956099][ T5758]  should_failslab+0x5/0x20
[ 2049.960608][ T5758]  slab_pre_alloc_hook+0x51/0xc0
[ 2049.965554][ T5758]  kmem_cache_alloc_node_trace+0x4a/0x300
[ 2049.971277][ T5758]  ? __get_vm_area_node+0x119/0x2d0
[ 2049.976486][ T5758]  __get_vm_area_node+0x119/0x2d0
[ 2049.981520][ T5758]  __vmalloc_node_range+0xef/0x8b0
[ 2049.986641][ T5758]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2049.991581][ T5758]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2049.997743][ T5758]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2050.002704][ T5758]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2050.007654][ T5758]  vmalloc+0x75/0x80
[ 2050.011556][ T5758]  ? netlink_sendmsg+0x5ec/0xbe0
[ 2050.016503][ T5758]  netlink_sendmsg+0x5ec/0xbe0
[ 2050.021293][ T5758]  ? netlink_getsockopt+0x570/0x570
[ 2050.026594][ T5758]  ? aa_sock_msg_perm+0x94/0x150
[ 2050.031543][ T5758]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2050.036836][ T5758]  ? security_socket_sendmsg+0x7c/0xa0
[ 2050.042385][ T5758]  ? netlink_getsockopt+0x570/0x570
[ 2050.047598][ T5758]  ____sys_sendmsg+0x5b7/0x8f0
[ 2050.052384][ T5758]  ? __sys_sendmsg_sock+0x30/0x30
[ 2050.057428][ T5758]  ? import_iovec+0x6f/0xa0
[ 2050.061941][ T5758]  ___sys_sendmsg+0x236/0x2e0
[ 2050.066662][ T5758]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2050.071446][ T5758]  ? vfs_write+0x8b2/0xd60
[ 2050.075894][ T5758]  __se_sys_sendmsg+0x1af/0x290
[ 2050.080754][ T5758]  ? __x64_sys_sendmsg+0x80/0x80
[ 2050.085687][ T5758]  ? syscall_enter_from_user_mode+0x2a/0x70
[ 2050.091576][ T5758]  do_syscall_64+0x4c/0xa0
[ 2050.095994][ T5758]  ? clear_bhb_loop+0x30/0x80
[ 2050.100659][ T5758]  ? clear_bhb_loop+0x30/0x80
[ 2050.105322][ T5758]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2050.111199][ T5758] RIP: 0033:0x7f40944ffe59
[ 2050.115614][ T5758] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2050.135204][ T5758] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2050.143602][ T5758] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2050.151565][ T5758] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[ 2050.159526][ T5758] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2050.167488][ T5758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2050.175454][ T5758] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2050.183440][ T5758]  </TASK>
[ 2050.397413][ T5781] __nla_validate_parse: 14 callbacks suppressed
[ 2050.397447][ T5781] netlink: 15743 bytes leftover after parsing attributes in process `syz.2.22946'.
[ 2050.486285][ T5792] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.22949'.
[ 2050.668384][ T5800] IPv6: Can't replace route, no match found
[ 2050.749899][ T5808] netlink: 164 bytes leftover after parsing attributes in process `syz.3.22958'.
[ 2050.850669][ T5815] netlink: 15743 bytes leftover after parsing attributes in process `syz.3.22960'.
[ 2050.925362][ T5820] FAULT_INJECTION: forcing a failure.
[ 2050.925362][ T5820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2050.960113][ T5820] CPU: 1 PID: 5820 Comm: syz.3.22962 Not tainted syzkaller #0
[ 2050.967607][ T5820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2050.977668][ T5820] Call Trace:
[ 2050.980948][ T5820]  <TASK>
[ 2050.983877][ T5820]  dump_stack_lvl+0x188/0x250
[ 2050.988567][ T5820]  ? show_regs_print_info+0x20/0x20
[ 2050.993777][ T5820]  ? load_image+0x400/0x400
[ 2050.998285][ T5820]  ? __lock_acquire+0x7d10/0x7d10
[ 2051.003295][ T5820]  should_fail+0x38c/0x4c0
[ 2051.007696][ T5820]  _copy_from_iter+0x22e/0x1170
[ 2051.012538][ T5820]  ? __lock_acquire+0x7d10/0x7d10
[ 2051.017577][ T5820]  ? copy_mc_pipe_to_iter+0x7d0/0x7d0
[ 2051.022965][ T5820]  ? __virt_addr_valid+0x3c6/0x470
[ 2051.028080][ T5820]  ? __phys_addr_symbol+0x2b/0x70
[ 2051.033113][ T5820]  ? __check_object_size+0x30c/0x410
[ 2051.038405][ T5820]  netlink_sendmsg+0x758/0xbe0
[ 2051.043180][ T5820]  ? netlink_getsockopt+0x570/0x570
[ 2051.048389][ T5820]  ? aa_sock_msg_perm+0x94/0x150
[ 2051.053334][ T5820]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2051.054913][ T5823] IPv6: Can't replace route, no match found
[ 2051.058618][ T5820]  ? security_socket_sendmsg+0x7c/0xa0
[ 2051.069958][ T5820]  ? netlink_getsockopt+0x570/0x570
[ 2051.075167][ T5820]  ____sys_sendmsg+0x5b7/0x8f0
[ 2051.079955][ T5820]  ? __sys_sendmsg_sock+0x30/0x30
[ 2051.085001][ T5820]  ? import_iovec+0x6f/0xa0
[ 2051.089517][ T5820]  ___sys_sendmsg+0x236/0x2e0
[ 2051.094217][ T5820]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2051.099006][ T5820]  ? vfs_write+0x8b2/0xd60
[ 2051.103443][ T5820]  __se_sys_sendmsg+0x1af/0x290
[ 2051.108300][ T5820]  ? __x64_sys_sendmsg+0x80/0x80
[ 2051.113234][ T5820]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2051.119220][ T5820]  ? lockdep_hardirqs_on+0x94/0x140
[ 2051.124414][ T5820]  do_syscall_64+0x4c/0xa0
[ 2051.128818][ T5820]  ? clear_bhb_loop+0x30/0x80
[ 2051.133482][ T5820]  ? clear_bhb_loop+0x30/0x80
[ 2051.138152][ T5820]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2051.144044][ T5820] RIP: 0033:0x7fb3499c9e59
[ 2051.148454][ T5820] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2051.168047][ T5820] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2051.176457][ T5820] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2051.184415][ T5820] RDX: 0000000020048812 RSI: 0000200000001000 RDI: 0000000000000003
[ 2051.192374][ T5820] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2051.200332][ T5820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2051.208287][ T5820] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2051.216258][ T5820]  </TASK>
[ 2051.249488][ T5833] netlink: 'syz.2.22966': attribute type 2 has an invalid length.
[ 2051.264275][ T5832] netlink: 'syz.4.22967': attribute type 39 has an invalid length.
[ 2051.267902][ T5831] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.22965'.
[ 2051.346330][ T5833] netlink: 14 bytes leftover after parsing attributes in process `syz.2.22966'.
[ 2051.421985][ T5839] netlink: 132 bytes leftover after parsing attributes in process `syz.3.22970'.
[ 2051.756722][ T5864] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.22976'.
[ 2051.909783][ T5871] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.22983'.
[ 2051.991822][ T5870] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 2052.007075][ T5872] netlink: 64 bytes leftover after parsing attributes in process `syz.0.22982'.
[ 2052.072163][ T5876] FAULT_INJECTION: forcing a failure.
[ 2052.072163][ T5876] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2052.136940][ T5876] CPU: 1 PID: 5876 Comm: syz.3.22985 Not tainted syzkaller #0
[ 2052.144437][ T5876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2052.154498][ T5876] Call Trace:
[ 2052.157770][ T5876]  <TASK>
[ 2052.160695][ T5876]  dump_stack_lvl+0x188/0x250
[ 2052.165376][ T5876]  ? show_regs_print_info+0x20/0x20
[ 2052.170564][ T5876]  ? load_image+0x400/0x400
[ 2052.175066][ T5876]  ? __lock_acquire+0x7d10/0x7d10
[ 2052.180085][ T5876]  should_fail+0x38c/0x4c0
[ 2052.184490][ T5876]  _copy_from_iter+0x22e/0x1170
[ 2052.189326][ T5876]  ? __lock_acquire+0x7d10/0x7d10
[ 2052.194341][ T5876]  ? copy_mc_pipe_to_iter+0x7d0/0x7d0
[ 2052.199708][ T5876]  ? __virt_addr_valid+0x3c6/0x470
[ 2052.204804][ T5876]  ? __phys_addr_symbol+0x2b/0x70
[ 2052.209816][ T5876]  ? __check_object_size+0x30c/0x410
[ 2052.215102][ T5876]  netlink_sendmsg+0x758/0xbe0
[ 2052.219882][ T5876]  ? netlink_getsockopt+0x570/0x570
[ 2052.225075][ T5876]  ? aa_sock_msg_perm+0x94/0x150
[ 2052.230018][ T5876]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2052.235300][ T5876]  ? security_socket_sendmsg+0x7c/0xa0
[ 2052.240756][ T5876]  ? netlink_getsockopt+0x570/0x570
[ 2052.245946][ T5876]  ____sys_sendmsg+0x5b7/0x8f0
[ 2052.250713][ T5876]  ? __sys_sendmsg_sock+0x30/0x30
[ 2052.255736][ T5876]  ? import_iovec+0x6f/0xa0
[ 2052.260231][ T5876]  ___sys_sendmsg+0x236/0x2e0
[ 2052.264902][ T5876]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2052.269660][ T5876]  ? vfs_write+0x8b2/0xd60
[ 2052.274076][ T5876]  __se_sys_sendmsg+0x1af/0x290
[ 2052.278936][ T5876]  ? __x64_sys_sendmsg+0x80/0x80
[ 2052.283873][ T5876]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2052.289865][ T5876]  ? lockdep_hardirqs_on+0x94/0x140
[ 2052.295063][ T5876]  do_syscall_64+0x4c/0xa0
[ 2052.299468][ T5876]  ? clear_bhb_loop+0x30/0x80
[ 2052.304139][ T5876]  ? clear_bhb_loop+0x30/0x80
[ 2052.308804][ T5876]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2052.314693][ T5876] RIP: 0033:0x7fb3499c9e59
[ 2052.319095][ T5876] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2052.338693][ T5876] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2052.347107][ T5876] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2052.355080][ T5876] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[ 2052.363045][ T5876] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2052.371004][ T5876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2052.378961][ T5876] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2052.386929][ T5876]  </TASK>
[ 2052.484819][ T5891] netlink: 'syz.4.22991': attribute type 13 has an invalid length.
[ 2052.641294][ T5893] netlink: 'syz.3.22992': attribute type 2 has an invalid length.
[ 2052.662794][ T5897] FAULT_INJECTION: forcing a failure.
[ 2052.662794][ T5897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2052.716545][ T5897] CPU: 1 PID: 5897 Comm: syz.2.22993 Not tainted syzkaller #0
[ 2052.724051][ T5897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2052.734120][ T5897] Call Trace:
[ 2052.737407][ T5897]  <TASK>
[ 2052.740341][ T5897]  dump_stack_lvl+0x188/0x250
[ 2052.745027][ T5897]  ? show_regs_print_info+0x20/0x20
[ 2052.750233][ T5897]  ? load_image+0x400/0x400
[ 2052.754747][ T5897]  ? __lock_acquire+0x7d10/0x7d10
[ 2052.759783][ T5897]  ? bpf_test_run+0x78e/0x800
[ 2052.764470][ T5897]  should_fail+0x38c/0x4c0
[ 2052.768903][ T5897]  _copy_to_user+0x2e/0x130
[ 2052.773421][ T5897]  bpf_test_finish+0x215/0x2f0
[ 2052.778196][ T5897]  ? convert_skb_to___skb+0x360/0x360
[ 2052.783584][ T5897]  ? convert_skb_to___skb+0x14a/0x360
[ 2052.788957][ T5897]  ? memcpy+0x3c/0x60
[ 2052.792939][ T5897]  ? convert_skb_to___skb+0x14a/0x360
[ 2052.798311][ T5897]  bpf_prog_test_run_skb+0xb50/0x10b0
[ 2052.803708][ T5897]  ? cpu_online+0x60/0x60
[ 2052.808038][ T5897]  bpf_prog_test_run+0x31e/0x390
[ 2052.812983][ T5897]  __sys_bpf+0x5a5/0x6f0
[ 2052.817235][ T5897]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2052.822625][ T5897]  ? vtime_user_exit+0x2c8/0x3e0
[ 2052.827577][ T5897]  __x64_sys_bpf+0x78/0x90
[ 2052.831996][ T5897]  do_syscall_64+0x4c/0xa0
[ 2052.836412][ T5897]  ? clear_bhb_loop+0x30/0x80
[ 2052.841090][ T5897]  ? clear_bhb_loop+0x30/0x80
[ 2052.845767][ T5897]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2052.851661][ T5897] RIP: 0033:0x7f1f50d1fe59
[ 2052.856075][ T5897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2052.875689][ T5897] RSP: 002b:00007f1f4ef79028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2052.884124][ T5897] RAX: ffffffffffffffda RBX: 00007f1f50f98fa0 RCX: 00007f1f50d1fe59
[ 2052.892101][ T5897] RDX: 0000000000000048 RSI: 0000200000002c00 RDI: 000000000000000a
[ 2052.900073][ T5897] RBP: 00007f1f4ef79090 R08: 0000000000000000 R09: 0000000000000000
[ 2052.908053][ T5897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2052.916034][ T5897] R13: 00007f1f50f99038 R14: 00007f1f50f98fa0 R15: 00007ffe02441758
[ 2052.924032][ T5897]  </TASK>
[ 2053.228387][ T5915] netlink: 'syz.1.23002': attribute type 2 has an invalid length.
[ 2053.259754][ T5918] FAULT_INJECTION: forcing a failure.
[ 2053.259754][ T5918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2053.325165][ T5918] CPU: 0 PID: 5918 Comm: syz.3.23003 Not tainted syzkaller #0
[ 2053.332672][ T5918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2053.342745][ T5918] Call Trace:
[ 2053.346041][ T5918]  <TASK>
[ 2053.348984][ T5918]  dump_stack_lvl+0x188/0x250
[ 2053.353685][ T5918]  ? show_regs_print_info+0x20/0x20
[ 2053.358899][ T5918]  ? load_image+0x400/0x400
[ 2053.363421][ T5918]  ? __lock_acquire+0x7d10/0x7d10
[ 2053.368470][ T5918]  should_fail+0x38c/0x4c0
[ 2053.372912][ T5918]  _copy_to_user+0x2e/0x130
[ 2053.377435][ T5918]  simple_read_from_buffer+0xe3/0x150
[ 2053.382825][ T5918]  proc_fail_nth_read+0x1a6/0x220
[ 2053.387864][ T5918]  ? proc_fault_inject_write+0x310/0x310
[ 2053.393515][ T5918]  ? fsnotify_perm+0x254/0x560
[ 2053.398293][ T5918]  ? proc_fault_inject_write+0x310/0x310
[ 2053.403935][ T5918]  vfs_read+0x301/0xd60
[ 2053.408110][ T5918]  ? kernel_read+0x1e0/0x1e0
[ 2053.412718][ T5918]  ? __fget_files+0x40f/0x480
[ 2053.417417][ T5918]  ? mutex_lock_nested+0x17/0x20
[ 2053.422364][ T5918]  ? __fdget_pos+0x2bf/0x370
[ 2053.426963][ T5918]  ? ksys_read+0x71/0x260
[ 2053.431305][ T5918]  ksys_read+0x152/0x260
[ 2053.435563][ T5918]  ? vfs_write+0xd60/0xd60
[ 2053.439999][ T5918]  ? syscall_enter_from_user_mode+0x2a/0x70
[ 2053.445909][ T5918]  do_syscall_64+0x4c/0xa0
[ 2053.450340][ T5918]  ? clear_bhb_loop+0x30/0x80
[ 2053.455029][ T5918]  ? clear_bhb_loop+0x30/0x80
[ 2053.459719][ T5918]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2053.465625][ T5918] RIP: 0033:0x7fb34998a68e
[ 2053.470052][ T5918] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2053.489670][ T5918] RSP: 002b:00007fb347c22fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2053.498100][ T5918] RAX: ffffffffffffffda RBX: 00007fb347c236c0 RCX: 00007fb34998a68e
[ 2053.506084][ T5918] RDX: 000000000000000f RSI: 00007fb347c230a0 RDI: 0000000000000007
[ 2053.514068][ T5918] RBP: 00007fb347c23090 R08: 0000000000000000 R09: 0000000000000000
[ 2053.522052][ T5918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2053.530036][ T5918] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2053.538040][ T5918]  </TASK>
[ 2053.819576][ T5935] netlink: 'syz.2.23005': attribute type 1 has an invalid length.
[ 2054.321661][ T5960] FAULT_INJECTION: forcing a failure.
[ 2054.321661][ T5960] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2054.353802][ T5960] CPU: 1 PID: 5960 Comm: syz.1.23017 Not tainted syzkaller #0
[ 2054.361305][ T5960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2054.371363][ T5960] Call Trace:
[ 2054.374644][ T5960]  <TASK>
[ 2054.377578][ T5960]  dump_stack_lvl+0x188/0x250
[ 2054.382262][ T5960]  ? show_regs_print_info+0x20/0x20
[ 2054.387462][ T5960]  ? load_image+0x400/0x400
[ 2054.391977][ T5960]  ? __lock_acquire+0x7d10/0x7d10
[ 2054.397016][ T5960]  should_fail+0x38c/0x4c0
[ 2054.401446][ T5960]  _copy_to_user+0x2e/0x130
[ 2054.405955][ T5960]  simple_read_from_buffer+0xe3/0x150
[ 2054.411337][ T5960]  proc_fail_nth_read+0x1a6/0x220
[ 2054.416369][ T5960]  ? proc_fault_inject_write+0x310/0x310
[ 2054.422010][ T5960]  ? fsnotify_perm+0x254/0x560
[ 2054.426777][ T5960]  ? proc_fault_inject_write+0x310/0x310
[ 2054.432408][ T5960]  vfs_read+0x301/0xd60
[ 2054.436575][ T5960]  ? kernel_read+0x1e0/0x1e0
[ 2054.441172][ T5960]  ? __fget_files+0x40f/0x480
[ 2054.445858][ T5960]  ? mutex_lock_nested+0x17/0x20
[ 2054.450800][ T5960]  ? __fdget_pos+0x2bf/0x370
[ 2054.455393][ T5960]  ? ksys_read+0x71/0x260
[ 2054.459726][ T5960]  ksys_read+0x152/0x260
[ 2054.463972][ T5960]  ? vfs_write+0xd60/0xd60
[ 2054.468396][ T5960]  ? lockdep_hardirqs_on+0x94/0x140
[ 2054.473610][ T5960]  do_syscall_64+0x4c/0xa0
[ 2054.478033][ T5960]  ? clear_bhb_loop+0x30/0x80
[ 2054.482731][ T5960]  ? clear_bhb_loop+0x30/0x80
[ 2054.487414][ T5960]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2054.493308][ T5960] RIP: 0033:0x7fd78fb8268e
[ 2054.497728][ T5960] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2054.517340][ T5960] RSP: 002b:00007fd78de1afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2054.525768][ T5960] RAX: ffffffffffffffda RBX: 00007fd78de1b6c0 RCX: 00007fd78fb8268e
[ 2054.533742][ T5960] RDX: 000000000000000f RSI: 00007fd78de1b0a0 RDI: 0000000000000004
[ 2054.541714][ T5960] RBP: 00007fd78de1b090 R08: 0000000000000000 R09: 0000000000000000
[ 2054.549687][ T5960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2054.557657][ T5960] R13: 00007fd78fe3b038 R14: 00007fd78fe3afa0 R15: 00007ffe042327d8
[ 2054.565650][ T5960]  </TASK>
[ 2054.841026][ T5966] netlink: 'syz.2.23018': attribute type 2 has an invalid length.
[ 2054.858169][ T5965] FAULT_INJECTION: forcing a failure.
[ 2054.858169][ T5965] name failslab, interval 1, probability 0, space 0, times 0
[ 2054.872286][ T5965] CPU: 0 PID: 5965 Comm: syz.4.23019 Not tainted syzkaller #0
[ 2054.879767][ T5965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2054.889832][ T5965] Call Trace:
[ 2054.893117][ T5965]  <TASK>
[ 2054.896060][ T5965]  dump_stack_lvl+0x188/0x250
[ 2054.900759][ T5965]  ? show_regs_print_info+0x20/0x20
[ 2054.905962][ T5965]  ? load_image+0x400/0x400
[ 2054.910482][ T5965]  should_fail+0x38c/0x4c0
[ 2054.914912][ T5965]  should_failslab+0x5/0x20
[ 2054.919405][ T5965]  slab_pre_alloc_hook+0x51/0xc0
[ 2054.924339][ T5965]  kmem_cache_alloc_trace+0x47/0x2a0
[ 2054.929610][ T5965]  ? sctp_add_bind_addr+0x89/0x350
[ 2054.934717][ T5965]  sctp_add_bind_addr+0x89/0x350
[ 2054.939650][ T5965]  sctp_copy_local_addr_list+0x2dd/0x4a0
[ 2054.945283][ T5965]  ? sctp_do_8_2_transport_strike+0x840/0x840
[ 2054.951347][ T5965]  ? sctp_v4_is_any+0x31/0x50
[ 2054.956013][ T5965]  ? sctp_copy_one_addr+0x93/0x660
[ 2054.961119][ T5965]  sctp_bind_addr_copy+0xaf/0x3c0
[ 2054.966135][ T5965]  ? sctp_assoc_set_bind_addr_from_ep+0xa1/0x190
[ 2054.972457][ T5965]  sctp_connect_new_asoc+0x2f5/0x6a0
[ 2054.977737][ T5965]  ? __sctp_connect+0xd80/0xd80
[ 2054.982573][ T5965]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2054.987941][ T5965]  ? bpf_lsm_sctp_bind_connect+0x5/0x10
[ 2054.993475][ T5965]  ? security_sctp_bind_connect+0x85/0xb0
[ 2054.999189][ T5965]  sctp_sendmsg+0x164a/0x2a30
[ 2055.003878][ T5965]  ? aa_sk_perm+0x7dc/0x910
[ 2055.008372][ T5965]  ? sctp_getsockopt+0x8a0/0x8a0
[ 2055.013304][ T5965]  ? aa_af_perm+0x340/0x340
[ 2055.017794][ T5965]  ? tomoyo_socket_sendmsg_permission+0x1dd/0x2f0
[ 2055.024203][ T5965]  ? sock_rps_record_flow+0x17/0x3b0
[ 2055.029485][ T5965]  ? inet_sendmsg+0xe5/0x2f0
[ 2055.034071][ T5965]  ? inet_send_prepare+0x260/0x260
[ 2055.039168][ T5965]  ____sys_sendmsg+0x5b7/0x8f0
[ 2055.043937][ T5965]  ? __sys_sendmsg_sock+0x30/0x30
[ 2055.048962][ T5965]  ? import_iovec+0x6f/0xa0
[ 2055.053464][ T5965]  ___sys_sendmsg+0x236/0x2e0
[ 2055.058144][ T5965]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2055.062919][ T5965]  ? vfs_write+0x8b2/0xd60
[ 2055.067358][ T5965]  __se_sys_sendmsg+0x1af/0x290
[ 2055.072203][ T5965]  ? __x64_sys_sendmsg+0x80/0x80
[ 2055.077128][ T5965]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2055.083117][ T5965]  ? lockdep_hardirqs_on+0x94/0x140
[ 2055.088313][ T5965]  do_syscall_64+0x4c/0xa0
[ 2055.092716][ T5965]  ? clear_bhb_loop+0x30/0x80
[ 2055.097379][ T5965]  ? clear_bhb_loop+0x30/0x80
[ 2055.102047][ T5965]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2055.107930][ T5965] RIP: 0033:0x7f465f6bce59
[ 2055.112336][ T5965] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2055.131927][ T5965] RSP: 002b:00007f465d916028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2055.140332][ T5965] RAX: ffffffffffffffda RBX: 00007f465f935fa0 RCX: 00007f465f6bce59
[ 2055.148291][ T5965] RDX: 0000000000008054 RSI: 0000200000000ac0 RDI: 0000000000000004
[ 2055.156252][ T5965] RBP: 00007f465d916090 R08: 0000000000000000 R09: 0000000000000000
[ 2055.164211][ T5965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2055.172172][ T5965] R13: 00007f465f936038 R14: 00007f465f935fa0 R15: 00007ffe9ecdd088
[ 2055.180152][ T5965]  </TASK>
[ 2055.218944][ T5968] netlink: 'syz.0.23031': attribute type 2 has an invalid length.
[ 2055.516053][ T5985] __nla_validate_parse: 13 callbacks suppressed
[ 2055.516102][ T5985] netlink: 1041 bytes leftover after parsing attributes in process `syz.2.23027'.
[ 2055.787293][ T5998] netlink: 'syz.4.23032': attribute type 9 has an invalid length.
[ 2055.807981][ T5998] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.23032'.
[ 2055.908319][ T6001] netlink: 199556 bytes leftover after parsing attributes in process `syz.3.23034'.
[ 2056.107887][ T6013] netlink: 'syz.2.23038': attribute type 21 has an invalid length.
[ 2056.115945][ T6013] netlink: 156 bytes leftover after parsing attributes in process `syz.2.23038'.
[ 2056.532644][ T6027] netlink: 132 bytes leftover after parsing attributes in process `syz.1.23043'.
[ 2056.576773][ T6027] netlink: 128 bytes leftover after parsing attributes in process `syz.1.23043'.
[ 2056.612183][ T6027] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 2056.633041][ T6035] netlink: 199556 bytes leftover after parsing attributes in process `syz.3.23047'.
[ 2056.813309][ T6042] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.23049'.
[ 2057.140395][ T6051] FAULT_INJECTION: forcing a failure.
[ 2057.140395][ T6051] name failslab, interval 1, probability 0, space 0, times 0
[ 2057.157362][ T6054] FAULT_INJECTION: forcing a failure.
[ 2057.157362][ T6054] name failslab, interval 1, probability 0, space 0, times 0
[ 2057.170477][ T6054] CPU: 1 PID: 6054 Comm: syz.0.23054 Not tainted syzkaller #0
[ 2057.177951][ T6054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2057.188010][ T6054] Call Trace:
[ 2057.191290][ T6054]  <TASK>
[ 2057.194221][ T6054]  dump_stack_lvl+0x188/0x250
[ 2057.198911][ T6054]  ? show_regs_print_info+0x20/0x20
[ 2057.204120][ T6054]  ? load_image+0x400/0x400
[ 2057.208651][ T6054]  should_fail+0x38c/0x4c0
[ 2057.213080][ T6054]  should_failslab+0x5/0x20
[ 2057.217596][ T6054]  slab_pre_alloc_hook+0x51/0xc0
[ 2057.222541][ T6054]  ? skb_clone+0x1bd/0x350
[ 2057.226967][ T6054]  kmem_cache_alloc+0x3d/0x290
[ 2057.231743][ T6054]  skb_clone+0x1bd/0x350
[ 2057.235986][ T6054]  ? dev_queue_xmit_nit+0x1df/0xb00
[ 2057.241190][ T6054]  dev_queue_xmit_nit+0x2cc/0xb00
[ 2057.246216][ T6054]  ? validate_xmit_skb+0x7b3/0xe40
[ 2057.251328][ T6054]  dev_hard_start_xmit+0x13e/0x7e0
[ 2057.256453][ T6054]  __dev_queue_xmit+0x1a9b/0x2f80
[ 2057.261492][ T6054]  ? dev_queue_xmit+0x20/0x20
[ 2057.266169][ T6054]  ? memcpy+0x3c/0x60
[ 2057.270149][ T6054]  ? __copy_skb_header+0x3ba/0x4f0
[ 2057.275262][ T6054]  ? __skb_clone+0x480/0x790
[ 2057.279861][ T6054]  ? skb_clone+0x1f1/0x350
[ 2057.284280][ T6054]  __netlink_deliver_tap+0x53e/0x7c0
[ 2057.289577][ T6054]  netlink_deliver_tap+0x16c/0x180
[ 2057.294687][ T6054]  netlink_dump+0x823/0xcf0
[ 2057.299204][ T6054]  ? netlink_lookup+0x1d0/0x1d0
[ 2057.304067][ T6054]  __netlink_dump_start+0x523/0x700
[ 2057.309271][ T6054]  packet_diag_handler_dump+0x1d0/0x290
[ 2057.314820][ T6054]  ? mutex_lock_io_nested+0x60/0x60
[ 2057.320018][ T6054]  ? packet_sendmsg_spkt+0x1200/0x1200
[ 2057.325479][ T6054]  ? packet_diag_handler_dump+0x290/0x290
[ 2057.331211][ T6054]  ? packet_sendmsg_spkt+0x1200/0x1200
[ 2057.336669][ T6054]  sock_diag_rcv_msg+0x164/0x3e0
[ 2057.341613][ T6054]  netlink_rcv_skb+0x1f5/0x440
[ 2057.346381][ T6054]  ? sock_diag_bind+0xa0/0xa0
[ 2057.351057][ T6054]  ? netlink_ack+0xb50/0xb50
[ 2057.355645][ T6054]  ? __lock_acquire+0x7d10/0x7d10
[ 2057.360681][ T6054]  sock_diag_rcv+0x26/0x40
[ 2057.365100][ T6054]  netlink_unicast+0x774/0x920
[ 2057.369870][ T6054]  netlink_sendmsg+0x8ba/0xbe0
[ 2057.374641][ T6054]  ? netlink_getsockopt+0x570/0x570
[ 2057.379839][ T6054]  ? aa_sock_msg_perm+0x94/0x150
[ 2057.384777][ T6054]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2057.390059][ T6054]  ? security_socket_sendmsg+0x7c/0xa0
[ 2057.395513][ T6054]  ? netlink_getsockopt+0x570/0x570
[ 2057.400705][ T6054]  ____sys_sendmsg+0x5b7/0x8f0
[ 2057.405489][ T6054]  ? __sys_sendmsg_sock+0x30/0x30
[ 2057.410522][ T6054]  ? import_iovec+0x6f/0xa0
[ 2057.415029][ T6054]  ___sys_sendmsg+0x236/0x2e0
[ 2057.419724][ T6054]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2057.424498][ T6054]  ? vfs_write+0x8b2/0xd60
[ 2057.428936][ T6054]  __se_sys_sendmsg+0x1af/0x290
[ 2057.433788][ T6054]  ? __x64_sys_sendmsg+0x80/0x80
[ 2057.438726][ T6054]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2057.444722][ T6054]  ? lockdep_hardirqs_on+0x94/0x140
[ 2057.449924][ T6054]  do_syscall_64+0x4c/0xa0
[ 2057.454339][ T6054]  ? clear_bhb_loop+0x30/0x80
[ 2057.459014][ T6054]  ? clear_bhb_loop+0x30/0x80
[ 2057.463687][ T6054]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2057.469584][ T6054] RIP: 0033:0x7f40944ffe59
[ 2057.473998][ T6054] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2057.493602][ T6054] RSP: 002b:00007f4092759028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2057.502016][ T6054] RAX: ffffffffffffffda RBX: 00007f4094778fa0 RCX: 00007f40944ffe59
[ 2057.509986][ T6054] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000007
[ 2057.517953][ T6054] RBP: 00007f4092759090 R08: 0000000000000000 R09: 0000000000000000
[ 2057.525919][ T6054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2057.533886][ T6054] R13: 00007f4094779038 R14: 00007f4094778fa0 R15: 00007ffc92bdc3e8
[ 2057.541872][ T6054]  </TASK>
[ 2057.550167][ T6051] CPU: 1 PID: 6051 Comm: syz.1.23051 Not tainted syzkaller #0
[ 2057.557651][ T6051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2057.567798][ T6051] Call Trace:
[ 2057.571074][ T6051]  <TASK>
[ 2057.574002][ T6051]  dump_stack_lvl+0x188/0x250
[ 2057.578690][ T6051]  ? show_regs_print_info+0x20/0x20
[ 2057.583897][ T6051]  ? load_image+0x400/0x400
[ 2057.588413][ T6051]  should_fail+0x38c/0x4c0
[ 2057.592836][ T6051]  should_failslab+0x5/0x20
[ 2057.597336][ T6051]  slab_pre_alloc_hook+0x51/0xc0
[ 2057.602276][ T6051]  ? skb_clone+0x1bd/0x350
[ 2057.606696][ T6051]  kmem_cache_alloc+0x3d/0x290
[ 2057.611470][ T6051]  skb_clone+0x1bd/0x350
[ 2057.615721][ T6051]  __netlink_deliver_tap+0x3cd/0x7c0
[ 2057.621037][ T6051]  netlink_deliver_tap+0x16c/0x180
[ 2057.626144][ T6051]  netlink_unicast+0x74f/0x920
[ 2057.630913][ T6051]  netlink_sendmsg+0x8ba/0xbe0
[ 2057.635682][ T6051]  ? netlink_getsockopt+0x570/0x570
[ 2057.640883][ T6051]  ? aa_sock_msg_perm+0x94/0x150
[ 2057.645823][ T6051]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2057.651106][ T6051]  ? security_socket_sendmsg+0x7c/0xa0
[ 2057.656568][ T6051]  ? netlink_getsockopt+0x570/0x570
[ 2057.661767][ T6051]  ____sys_sendmsg+0x5b7/0x8f0
[ 2057.666549][ T6051]  ? __sys_sendmsg_sock+0x30/0x30
[ 2057.671580][ T6051]  ? import_iovec+0x6f/0xa0
[ 2057.676089][ T6051]  ___sys_sendmsg+0x236/0x2e0
[ 2057.680775][ T6051]  ? __sys_sendmsg+0x2a0/0x2a0
[ 2057.685553][ T6051]  ? vfs_write+0x8b2/0xd60
[ 2057.689987][ T6051]  __se_sys_sendmsg+0x1af/0x290
[ 2057.694844][ T6051]  ? __x64_sys_sendmsg+0x80/0x80
[ 2057.699779][ T6051]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2057.705772][ T6051]  ? lockdep_hardirqs_on+0x94/0x140
[ 2057.710984][ T6051]  do_syscall_64+0x4c/0xa0
[ 2057.715400][ T6051]  ? clear_bhb_loop+0x30/0x80
[ 2057.720078][ T6051]  ? clear_bhb_loop+0x30/0x80
[ 2057.724756][ T6051]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2057.730658][ T6051] RIP: 0033:0x7fd78fbc1e59
[ 2057.735080][ T6051] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2057.754682][ T6051] RSP: 002b:00007fd78ddfa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2057.763103][ T6051] RAX: ffffffffffffffda RBX: 00007fd78fe3b090 RCX: 00007fd78fbc1e59
[ 2057.771073][ T6051] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000008
[ 2057.779036][ T6051] RBP: 00007fd78ddfa090 R08: 0000000000000000 R09: 0000000000000000
[ 2057.787002][ T6051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2057.794971][ T6051] R13: 00007fd78fe3b128 R14: 00007fd78fe3b090 R15: 00007ffe042327d8
[ 2057.802951][ T6051]  </TASK>
[ 2057.830164][ T6051] netlink: 'syz.1.23051': attribute type 10 has an invalid length.
[ 2057.846618][ T6051] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2057.870022][ T6051] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2057.886604][ T6051] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2057.929933][ T6051] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 2058.014909][ T6061] netlink: 'syz.0.23057': attribute type 7 has an invalid length.
[ 2058.025465][ T6061] netlink: 140 bytes leftover after parsing attributes in process `syz.0.23057'.
[ 2058.100642][ T6068] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.23060'.
[ 2058.511778][ T6082] netlink: 'syz.2.23064': attribute type 2 has an invalid length.
[ 2059.585256][ T6129] netlink: 'syz.3.23081': attribute type 21 has an invalid length.
[ 2060.573597][ T6185] __nla_validate_parse: 8 callbacks suppressed
[ 2060.573614][ T6185] netlink: 184 bytes leftover after parsing attributes in process `syz.4.23103'.
[ 2060.677163][ T6194] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.23105'.
[ 2060.787097][ T6199] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.23106'.
[ 2061.413568][ T6227] netlink: 15743 bytes leftover after parsing attributes in process `syz.3.23118'.
[ 2061.638560][ T6235] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.23122'.
[ 2079.785643][T15948] Bluetooth: hci8: command 0x0409 tx timeout
[ 2079.792722][T15948] Bluetooth: hci7: command 0x0409 tx timeout
[ 2079.799868][T15948] Bluetooth: hci6: command 0x0409 tx timeout
[ 2079.862454][T15948] Bluetooth: hci4: command 0x0409 tx timeout
[ 2079.868567][T15948] Bluetooth: hci9: command 0x0409 tx timeout
[ 2081.862571][T15948] Bluetooth: hci6: command 0x041b tx timeout
[ 2081.869944][T15948] Bluetooth: hci7: command 0x041b tx timeout
[ 2081.880032][T15948] Bluetooth: hci8: command 0x041b tx timeout
[ 2081.945631][T15948] Bluetooth: hci9: command 0x041b tx timeout
[ 2081.951808][T15948] Bluetooth: hci4: command 0x041b tx timeout
[ 2083.942569][T15948] Bluetooth: hci8: command 0x040f tx timeout
[ 2083.949235][T15948] Bluetooth: hci7: command 0x040f tx timeout
[ 2083.958847][T15948] Bluetooth: hci6: command 0x040f tx timeout
[ 2084.022393][T15948] Bluetooth: hci4: command 0x040f tx timeout
[ 2084.029111][T15948] Bluetooth: hci9: command 0x040f tx timeout
[ 2086.022540][T15948] Bluetooth: hci6: command 0x0419 tx timeout
[ 2086.028625][T15948] Bluetooth: hci7: command 0x0419 tx timeout
[ 2086.042419][T15948] Bluetooth: hci8: command 0x0419 tx timeout
[ 2086.102426][T15948] Bluetooth: hci9: command 0x0419 tx timeout
[ 2086.108520][T15948] Bluetooth: hci4: command 0x0419 tx timeout
[ 2140.264465][T15949] Bluetooth: hci12: command 0x0409 tx timeout
[ 2140.341558][T15949] Bluetooth: hci13: command 0x0409 tx timeout
[ 2140.421324][T15949] Bluetooth: hci14: command 0x0409 tx timeout
[ 2140.428327][T15949] Bluetooth: hci11: command 0x0409 tx timeout
[ 2140.434899][T15949] Bluetooth: hci10: command 0x0409 tx timeout
[ 2142.341321][T15949] Bluetooth: hci12: command 0x041b tx timeout
[ 2142.424771][T15949] Bluetooth: hci13: command 0x041b tx timeout
[ 2142.501314][T15949] Bluetooth: hci10: command 0x041b tx timeout
[ 2142.508087][T15949] Bluetooth: hci11: command 0x041b tx timeout
[ 2142.514630][T15949] Bluetooth: hci14: command 0x041b tx timeout
[ 2144.421310][T15949] Bluetooth: hci12: command 0x040f tx timeout
[ 2144.501497][T15949] Bluetooth: hci13: command 0x040f tx timeout
[ 2144.581342][T15949] Bluetooth: hci14: command 0x040f tx timeout
[ 2144.588025][T15949] Bluetooth: hci11: command 0x040f tx timeout
[ 2144.594545][T15949] Bluetooth: hci10: command 0x040f tx timeout
[ 2146.501323][T15949] Bluetooth: hci12: command 0x0419 tx timeout
[ 2146.581507][T15949] Bluetooth: hci13: command 0x0419 tx timeout
[ 2146.661369][T15949] Bluetooth: hci10: command 0x0419 tx timeout
[ 2146.667533][T15949] Bluetooth: hci11: command 0x0419 tx timeout
[ 2146.674026][T15949] Bluetooth: hci14: command 0x0419 tx timeout
[ 2166.611267][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 2166.618243][    C1] rcu: 	0-...!: (0 ticks this GP) idle=701/1/0x4000000000000000 softirq=226809/226809 fqs=0 
[ 2166.629510][    C1] 	(detected by 1, t=10502 jiffies, g=289445, q=1199)
[ 2166.636298][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 2166.641504][    C0] NMI backtrace for cpu 0
[ 2166.641513][    C0] CPU: 0 PID: 6233 Comm: syz.3.23121 Not tainted syzkaller #0
[ 2166.641528][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2166.641537][    C0] RIP: 0010:__lock_acquire+0x662/0x7d10
[ 2166.641561][    C0] Code: 48 89 d8 48 c1 e8 03 42 0f b6 04 00 84 c0 0f 85 cb 61 00 00 45 84 f6 0f 84 25 05 00 00 0f b6 1b 48 8b 44 24 58 42 0f b6 04 00 <84> c0 0f 85 8f 62 00 00 41 f6 44 24 01 80 0f 85 04 05 00 00 84 db
[ 2166.641573][    C0] RSP: 0018:ffffc9000314eac0 EFLAGS: 00000002
[ 2166.641587][    C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff815d303c
[ 2166.641597][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff901d80c0
[ 2166.641606][    C0] RBP: ffffc9000314ed10 R08: dffffc0000000000 R09: 1ffffffff203b018
[ 2166.641618][    C0] R10: dffffc0000000000 R11: fffffbfff203b019 R12: ffff888023cba970
[ 2166.641628][    C0] R13: ffff888023cb9dc0 R14: 0000000000000002 R15: ffff888023cba950
[ 2166.641639][    C0] FS:  00007fb347c236c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[ 2166.641652][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2166.641663][    C0] CR2: 0000200000001740 CR3: 0000000020241000 CR4: 00000000003506f0
[ 2166.641676][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2166.641685][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 2166.641694][    C0] Call Trace:
[ 2166.641701][    C0]  <TASK>
[ 2166.641711][    C0]  ? __lock_acquire+0x12e8/0x7d10
[ 2166.641734][    C0]  ? mark_lock+0x94/0x320
[ 2166.641748][    C0]  ? verify_lock_unused+0x140/0x140
[ 2166.641764][    C0]  ? perf_trace_lock_acquire+0xed/0x3e0
[ 2166.641782][    C0]  ? trace_event_raw_event_lock_acquire+0x2b0/0x2b0
[ 2166.641804][    C0]  lock_acquire+0x19e/0x400
[ 2166.641819][    C0]  ? rcu_lock_acquire+0x5/0x30
[ 2166.641837][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 2166.641855][    C0]  ? llist_add_batch+0x85/0xa0
[ 2166.641875][    C0]  rcu_lock_acquire+0x2a/0x30
[ 2166.641888][    C0]  ? rcu_lock_acquire+0x5/0x30
[ 2166.641900][    C0]  perf_output_begin_forward+0xa5/0xa40
[ 2166.641912][    C0]  ? kvm_is_in_guest+0x24/0x30
[ 2166.642024][    C0]  ? __perf_cgroup_move+0x140/0x140
[ 2166.642038][    C0]  ? perf_callchain+0x190/0x190
[ 2166.642056][    C0]  perf_event_output_forward+0x19b/0x2e0
[ 2166.642072][    C0]  ? perf_get_page_size+0x430/0x430
[ 2166.642087][    C0]  ? tracing_gen_ctx_irq_test+0xb3/0x130
[ 2166.642106][    C0]  ? __perf_event_account_interrupt+0x187/0x280
[ 2166.642122][    C0]  __perf_event_overflow+0x364/0x530
[ 2166.642145][    C0]  perf_tp_event+0x383/0xbf0
[ 2166.642162][    C0]  ? perf_trace_run_bpf_submit+0x1c0/0x1c0
[ 2166.642194][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2166.642213][    C0]  perf_trace_run_bpf_submit+0xf3/0x1c0
[ 2166.642230][    C0]  perf_trace_preemptirq_template+0x2aa/0x360
[ 2166.642247][    C0]  ? asm_sysvec_irq_work+0x16/0x20
[ 2166.642265][    C0]  ? trace_event_raw_event_preemptirq_template+0x290/0x290
[ 2166.642281][    C0]  ? rcu_idle_exit+0x120/0x120
[ 2166.642294][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2166.642314][    C0]  ? asm_sysvec_irq_work+0x16/0x20
[ 2166.642328][    C0]  trace_irq_enable_rcuidle+0x108/0x180
[ 2166.642344][    C0]  trace_hardirqs_on+0x57/0x80
[ 2166.642358][    C0]  asm_sysvec_irq_work+0x16/0x20
[ 2166.642373][    C0] RIP: 0010:__rcu_read_unlock+0x51/0xd0
[ 2166.642388][    C0] Code: ec 03 43 0f b6 04 3c 84 c0 75 48 ff 0b 75 1d 4c 8d b7 40 04 00 00 4c 89 f0 48 c1 e8 03 42 0f b6 04 38 84 c0 75 5f 41 83 3e 00 <75> 20 43 0f b6 04 3c 84 c0 75 3a 8b 03 3d 00 00 00 40 73 0a 5b 41
[ 2166.642400][    C0] RSP: 0018:ffffc9000314f5f0 EFLAGS: 00000206
[ 2166.642412][    C0] RAX: 0000000000000000 RBX: ffff888023cba1fc RCX: 0000000000080000
[ 2166.642422][    C0] RDX: ffffc9000ea0a000 RSI: 0000000000000be8 RDI: ffff888023cb9dc0
[ 2166.642433][    C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff203b018
[ 2166.642443][    C0] R10: dffffc0000000000 R11: fffffbfff203b019 R12: 1ffff1100479743f
[ 2166.642453][    C0] R13: 000000000000ea56 R14: ffff888023cba200 R15: dffffc0000000000
[ 2166.642472][    C0]  ? 0xffffffffa0032000
[ 2166.642483][    C0]  is_bpf_text_address+0x24f/0x270
[ 2166.642499][    C0]  __kernel_text_address+0x9a/0x100
[ 2166.642516][    C0]  unwind_get_return_address+0x49/0x80
[ 2166.642556][    C0]  ? stack_trace_save+0xf0/0xf0
[ 2166.642570][    C0]  arch_stack_walk+0xf2/0x140
[ 2166.642620][    C0]  stack_trace_save+0xa6/0xf0
[ 2166.642634][    C0]  ? stack_trace_snprint+0xf0/0xf0
[ 2166.642651][    C0]  __kasan_slab_alloc+0x9c/0xd0
[ 2166.642668][    C0]  ? __kasan_slab_alloc+0x9c/0xd0
[ 2166.642681][    C0]  ? slab_post_alloc_hook+0x4c/0x380
[ 2166.642694][    C0]  ? kmem_cache_alloc+0x100/0x290
[ 2166.642706][    C0]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2166.642722][    C0]  ? idr_get_free+0x2af/0xa60
[ 2166.642735][    C0]  ? idr_alloc_cyclic+0x277/0x5c0
[ 2166.642748][    C0]  ? bpf_map_alloc_id+0x4d/0x180
[ 2166.642763][    C0]  ? map_create+0x1a09/0x2350
[ 2166.642776][    C0]  ? __sys_bpf+0x30a/0x6f0
[ 2166.642790][    C0]  ? __x64_sys_bpf+0x78/0x90
[ 2166.642803][    C0]  ? do_syscall_64+0x4c/0xa0
[ 2166.642818][    C0]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2166.642851][    C0]  slab_post_alloc_hook+0x4c/0x380
[ 2166.642865][    C0]  ? should_failslab+0x5/0x20
[ 2166.642879][    C0]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2166.642894][    C0]  kmem_cache_alloc+0x100/0x290
[ 2166.642910][    C0]  radix_tree_node_alloc+0x7e/0x3a0
[ 2166.642927][    C0]  idr_get_free+0x2af/0xa60
[ 2166.642947][    C0]  idr_alloc_cyclic+0x277/0x5c0
[ 2166.642965][    C0]  ? idr_alloc+0x2e0/0x2e0
[ 2166.642977][    C0]  ? do_raw_spin_lock+0x128/0x2f0
[ 2166.642995][    C0]  ? __radix_tree_preload+0x3cf/0x450
[ 2166.643010][    C0]  ? bpf_map_alloc_id+0x2e/0x180
[ 2166.643026][    C0]  bpf_map_alloc_id+0x4d/0x180
[ 2166.643042][    C0]  map_create+0x1a09/0x2350
[ 2166.643059][    C0]  __sys_bpf+0x30a/0x6f0
[ 2166.643075][    C0]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2166.643099][    C0]  __x64_sys_bpf+0x78/0x90
[ 2166.643114][    C0]  do_syscall_64+0x4c/0xa0
[ 2166.643127][    C0]  ? clear_bhb_loop+0x30/0x80
[ 2166.643146][    C0]  ? clear_bhb_loop+0x30/0x80
[ 2166.643160][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2166.643174][    C0] RIP: 0033:0x7fb3499c9e59
[ 2166.643189][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2166.643200][    C0] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2166.643215][    C0] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2166.643225][    C0] RDX: 0000000000000048 RSI: 0000200000001740 RDI: 0000000000000000
[ 2166.643234][    C0] RBP: 00007fb349a5fd6f R08: 0000000000000000 R09: 0000000000000000
[ 2166.643244][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2166.643253][    C0] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2166.643270][    C0]  </TASK>
[ 2166.643502][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g289445 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[ 2167.314421][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=122814
[ 2167.322390][    C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g289445 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[ 2167.333839][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 2167.343800][    C1] rcu: RCU grace-period kthread stack dump:
[ 2167.349677][    C1] task:rcu_preempt     state:I stack:26864 pid:   15 ppid:     2 flags:0x00004000
[ 2167.358891][    C1] Call Trace:
[ 2167.362164][    C1]  <TASK>
[ 2167.365099][    C1]  __schedule+0x11ef/0x43c0
[ 2167.369611][    C1]  ? _raw_spin_lock_irqsave+0x8b/0x100
[ 2167.375070][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 2167.380962][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[ 2167.386163][    C1]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 2167.392051][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 2167.396902][    C1]  ? release_firmware_map_entry+0x190/0x190
[ 2167.402798][    C1]  ? __mod_timer+0x91e/0xd00
[ 2167.407393][    C1]  schedule+0x11b/0x1e0
[ 2167.411553][    C1]  schedule_timeout+0x184/0x2d0
[ 2167.416397][    C1]  ? console_conditional_schedule+0x40/0x40
[ 2167.422286][    C1]  ? update_process_times+0x200/0x200
[ 2167.427658][    C1]  ? prepare_to_swait_event+0x331/0x350
[ 2167.433214][    C1]  rcu_gp_fqs_loop+0x2be/0x11d0
[ 2167.438061][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 2167.443255][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[ 2167.448456][    C1]  ? rcu_gp_init+0xd6c/0x10f0
[ 2167.453135][    C1]  ? rcu_gp_init+0x10f0/0x10f0
[ 2167.457901][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 2167.463093][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 2167.468288][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[ 2167.473487][    C1]  rcu_gp_kthread+0x9b/0x370
[ 2167.478083][    C1]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 2167.483974][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 2167.489085][    C1]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 2167.494979][    C1]  ? __kthread_parkme+0x157/0x1b0
[ 2167.500005][    C1]  kthread+0x436/0x520
[ 2167.504068][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 2167.509173][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 2167.513763][    C1]  ret_from_fork+0x1f/0x30
[ 2167.518215][    C1]  </TASK>
[ 2167.521228][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 2167.527542][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 2167.532743][    C0] NMI backtrace for cpu 0
[ 2167.532751][    C0] CPU: 0 PID: 6233 Comm: syz.3.23121 Not tainted syzkaller #0
[ 2167.532766][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 2167.532774][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x32/0x60
[ 2167.532792][    C0] Code: c4 26 89 7e 65 8b 15 c5 26 89 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 34 16 00 00 00 74 2c 8b 91 10 16 00 00 <83> fa 02 75 21 48 8b 91 18 16 00 00 48 8b 32 48 8d 7e 01 8b 89 14
[ 2167.532805][    C0] RSP: 0018:ffffc9000314ee30 EFLAGS: 00000046
[ 2167.532819][    C0] RAX: ffffffff81852d26 RBX: ffff8880b903b1f0 RCX: ffff888023cb9dc0
[ 2167.532830][    C0] RDX: 0000000000000002 RSI: 000000000007ffff RDI: 0000000000080000
[ 2167.532840][    C0] RBP: 0000000000000000 R08: ffff8880b9033d77 R09: 1ffff110172067ae
[ 2167.532850][    C0] R10: dffffc0000000000 R11: ffffed10172067af R12: 0000000000000000
[ 2167.532860][    C0] R13: dffffc0000000001 R14: ffffffff8be35820 R15: dffffc0000000000
[ 2167.532871][    C0] FS:  00007fb347c236c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[ 2167.532884][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2167.532894][    C0] CR2: 0000200000001740 CR3: 0000000020241000 CR4: 00000000003506f0
[ 2167.532907][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2167.532916][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[ 2167.532925][    C0] Call Trace:
[ 2167.532931][    C0]  <TASK>
[ 2167.532935][    C0]  __irq_work_queue_local+0xb6/0x190
[ 2167.532956][    C0]  irq_work_queue_on+0x11e/0x220
[ 2167.532973][    C0]  rcu_read_unlock_special+0x37b/0x4a0
[ 2167.532995][    C0]  ? __rcu_read_unlock+0xd0/0xd0
[ 2167.533011][    C0]  ? __perf_cgroup_move+0x140/0x140
[ 2167.533030][    C0]  __rcu_read_unlock+0x78/0xd0
[ 2167.533044][    C0]  perf_event_output_forward+0x255/0x2e0
[ 2167.533061][    C0]  ? perf_get_page_size+0x430/0x430
[ 2167.533077][    C0]  ? tracing_gen_ctx_irq_test+0xb3/0x130
[ 2167.533096][    C0]  ? __perf_event_account_interrupt+0x187/0x280
[ 2167.533113][    C0]  __perf_event_overflow+0x364/0x530
[ 2167.533130][    C0]  perf_tp_event+0x383/0xbf0
[ 2167.533147][    C0]  ? perf_trace_run_bpf_submit+0x1c0/0x1c0
[ 2167.533183][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2167.533204][    C0]  perf_trace_run_bpf_submit+0xf3/0x1c0
[ 2167.533222][    C0]  perf_trace_preemptirq_template+0x2aa/0x360
[ 2167.533239][    C0]  ? asm_sysvec_irq_work+0x16/0x20
[ 2167.533254][    C0]  ? trace_event_raw_event_preemptirq_template+0x290/0x290
[ 2167.533271][    C0]  ? rcu_idle_exit+0x120/0x120
[ 2167.533283][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2167.533303][    C0]  ? asm_sysvec_irq_work+0x16/0x20
[ 2167.533317][    C0]  trace_irq_enable_rcuidle+0x108/0x180
[ 2167.533334][    C0]  trace_hardirqs_on+0x57/0x80
[ 2167.533348][    C0]  asm_sysvec_irq_work+0x16/0x20
[ 2167.533362][    C0] RIP: 0010:__rcu_read_unlock+0x51/0xd0
[ 2167.533376][    C0] Code: ec 03 43 0f b6 04 3c 84 c0 75 48 ff 0b 75 1d 4c 8d b7 40 04 00 00 4c 89 f0 48 c1 e8 03 42 0f b6 04 38 84 c0 75 5f 41 83 3e 00 <75> 20 43 0f b6 04 3c 84 c0 75 3a 8b 03 3d 00 00 00 40 73 0a 5b 41
[ 2167.533388][    C0] RSP: 0018:ffffc9000314f5f0 EFLAGS: 00000206
[ 2167.533399][    C0] RAX: 0000000000000000 RBX: ffff888023cba1fc RCX: 0000000000080000
[ 2167.533408][    C0] RDX: ffffc9000ea0a000 RSI: 0000000000000be8 RDI: ffff888023cb9dc0
[ 2167.533418][    C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff203b018
[ 2167.533428][    C0] R10: dffffc0000000000 R11: fffffbfff203b019 R12: 1ffff1100479743f
[ 2167.533439][    C0] R13: 000000000000ea56 R14: ffff888023cba200 R15: dffffc0000000000
[ 2167.533460][    C0]  ? 0xffffffffa0032000
[ 2167.533470][    C0]  is_bpf_text_address+0x24f/0x270
[ 2167.533485][    C0]  __kernel_text_address+0x9a/0x100
[ 2167.533503][    C0]  unwind_get_return_address+0x49/0x80
[ 2167.533519][    C0]  ? stack_trace_save+0xf0/0xf0
[ 2167.533532][    C0]  arch_stack_walk+0xf2/0x140
[ 2167.533555][    C0]  stack_trace_save+0xa6/0xf0
[ 2167.533568][    C0]  ? stack_trace_snprint+0xf0/0xf0
[ 2167.533587][    C0]  __kasan_slab_alloc+0x9c/0xd0
[ 2167.533602][    C0]  ? __kasan_slab_alloc+0x9c/0xd0
[ 2167.533615][    C0]  ? slab_post_alloc_hook+0x4c/0x380
[ 2167.533629][    C0]  ? kmem_cache_alloc+0x100/0x290
[ 2167.533641][    C0]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2167.533656][    C0]  ? idr_get_free+0x2af/0xa60
[ 2167.533669][    C0]  ? idr_alloc_cyclic+0x277/0x5c0
[ 2167.533682][    C0]  ? bpf_map_alloc_id+0x4d/0x180
[ 2167.533696][    C0]  ? map_create+0x1a09/0x2350
[ 2167.533710][    C0]  ? __sys_bpf+0x30a/0x6f0
[ 2167.533722][    C0]  ? __x64_sys_bpf+0x78/0x90
[ 2167.533735][    C0]  ? do_syscall_64+0x4c/0xa0
[ 2167.533749][    C0]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2167.533786][    C0]  slab_post_alloc_hook+0x4c/0x380
[ 2167.533801][    C0]  ? should_failslab+0x5/0x20
[ 2167.533815][    C0]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2167.533830][    C0]  kmem_cache_alloc+0x100/0x290
[ 2167.533846][    C0]  radix_tree_node_alloc+0x7e/0x3a0
[ 2167.533864][    C0]  idr_get_free+0x2af/0xa60
[ 2167.533886][    C0]  idr_alloc_cyclic+0x277/0x5c0
[ 2167.533904][    C0]  ? idr_alloc+0x2e0/0x2e0
[ 2167.533917][    C0]  ? do_raw_spin_lock+0x128/0x2f0
[ 2167.533935][    C0]  ? __radix_tree_preload+0x3cf/0x450
[ 2167.533951][    C0]  ? bpf_map_alloc_id+0x2e/0x180
[ 2167.533967][    C0]  bpf_map_alloc_id+0x4d/0x180
[ 2167.533982][    C0]  map_create+0x1a09/0x2350
[ 2167.534006][    C0]  __sys_bpf+0x30a/0x6f0
[ 2167.534022][    C0]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2167.534048][    C0]  __x64_sys_bpf+0x78/0x90
[ 2167.534063][    C0]  do_syscall_64+0x4c/0xa0
[ 2167.534077][    C0]  ? clear_bhb_loop+0x30/0x80
[ 2167.534090][    C0]  ? clear_bhb_loop+0x30/0x80
[ 2167.534104][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2167.534118][    C0] RIP: 0033:0x7fb3499c9e59
[ 2167.534133][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2167.534144][    C0] RSP: 002b:00007fb347c23028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2167.534158][    C0] RAX: ffffffffffffffda RBX: 00007fb349c42fa0 RCX: 00007fb3499c9e59
[ 2167.534169][    C0] RDX: 0000000000000048 RSI: 0000200000001740 RDI: 0000000000000000
[ 2167.534178][    C0] RBP: 00007fb349a5fd6f R08: 0000000000000000 R09: 0000000000000000
[ 2167.534188][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2167.534196][    C0] R13: 00007fb349c43038 R14: 00007fb349c42fa0 R15: 00007ffda0f98d78
[ 2167.534216][    C0]  </TASK>
[ 2170.342582][T15943] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 0-... } 10875 jiffies s: 216821 root: 0x1/.
[ 2170.361777][T15943] rcu: blocking rcu_node structures (internal RCU debug):
[ 2170.368945][T15943] Task dump for CPU 0:
[ 2170.373078][T15943] task:syz.3.23121     state:R  running task     stack:26960 pid: 6233 ppid: 32338 flags:0x0000400c
[ 2170.383927][T15943] Call Trace:
[ 2170.387206][T15943]  <TASK>
[ 2170.390144][T15943]  ? __rcu_read_unlock+0x51/0xd0
[ 2170.395142][T15943]  ? 0xffffffffa0032000
[ 2170.399297][T15943]  ? is_bpf_text_address+0x24f/0x270
[ 2170.404661][T15943]  ? __kernel_text_address+0x9a/0x100
[ 2170.410045][T15943]  ? unwind_get_return_address+0x49/0x80
[ 2170.415774][T15943]  ? stack_trace_save+0xf0/0xf0
[ 2170.420850][T15943]  ? arch_stack_walk+0xf2/0x140
[ 2170.425771][T15943]  ? stack_trace_save+0xa6/0xf0
[ 2170.430628][T15943]  ? stack_trace_snprint+0xf0/0xf0
[ 2170.435783][T15943]  ? __kasan_slab_alloc+0x9c/0xd0
[ 2170.440812][T15943]  ? __kasan_slab_alloc+0x9c/0xd0
[ 2170.445884][T15943]  ? slab_post_alloc_hook+0x4c/0x380
[ 2170.451171][T15943]  ? kmem_cache_alloc+0x100/0x290
[ 2170.456225][T15943]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2170.461648][T15943]  ? idr_get_free+0x2af/0xa60
[ 2170.466337][T15943]  ? idr_alloc_cyclic+0x277/0x5c0
[ 2170.471404][T15943]  ? bpf_map_alloc_id+0x4d/0x180
[ 2170.476348][T15943]  ? map_create+0x1a09/0x2350
[ 2170.481027][T15943]  ? __sys_bpf+0x30a/0x6f0
[ 2170.485487][T15943]  ? __x64_sys_bpf+0x78/0x90
[ 2170.490080][T15943]  ? do_syscall_64+0x4c/0xa0
[ 2170.494712][T15943]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2170.500827][T15943]  ? slab_post_alloc_hook+0x4c/0x380
[ 2170.506220][T15943]  ? should_failslab+0x5/0x20
[ 2170.510902][T15943]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2170.516301][T15943]  ? kmem_cache_alloc+0x100/0x290
[ 2170.521613][T15943]  ? radix_tree_node_alloc+0x7e/0x3a0
[ 2170.526999][T15943]  ? idr_get_free+0x2af/0xa60
[ 2170.531717][T15943]  ? idr_alloc_cyclic+0x277/0x5c0
[ 2170.536751][T15943]  ? idr_alloc+0x2e0/0x2e0
[ 2170.541201][T15943]  ? do_raw_spin_lock+0x128/0x2f0
[ 2170.546285][T15943]  ? __radix_tree_preload+0x3cf/0x450
[ 2170.551692][T15943]  ? bpf_map_alloc_id+0x2e/0x180
[ 2170.556640][T15943]  ? bpf_map_alloc_id+0x4d/0x180
[ 2170.561630][T15943]  ? map_create+0x1a09/0x2350
[ 2170.566328][T15943]  ? __sys_bpf+0x30a/0x6f0
[ 2170.570749][T15943]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2170.576178][T15943]  ? __x64_sys_bpf+0x78/0x90
[ 2170.580772][T15943]  ? do_syscall_64+0x4c/0xa0
[ 2170.585447][T15943]  ? clear_bhb_loop+0x30/0x80
[ 2170.590209][T15943]  ? clear_bhb_loop+0x30/0x80
[ 2170.594980][T15943]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 2170.601069][T15943]  </TASK>