last executing test programs:

3m10.366772864s ago: executing program 1 (id=256):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000000c0)={r3, r0}, 0xc)

3m10.211053437s ago: executing program 1 (id=259):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = gettid()
sendmsg$unix(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r2, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

3m10.17113345s ago: executing program 1 (id=261):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="120000000800000004000000b47c000000000000", @ANYRES32, @ANYBLOB="000000000000000000e049000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"], 0x50)

3m9.840554367s ago: executing program 1 (id=268):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010018000000000000007c0000007c00000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e80c20000000000000000000000900000000000000000000000900000200000000000000000902"], 0x0, 0x96}, 0x28)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x4, 0x0, 0x3}]}}, 0x0, 0x26}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1f00}, 0x10}, 0x94)

3m9.642947073s ago: executing program 1 (id=273):
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
write$cgroup_subtree(r1, 0x0, 0x31)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000014c0)={0x0, &(0x7f0000000280)=""/145, 0x0, 0x0, 0x3, 0xffffffffffffffff, 0x4}, 0x38)
r2 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_netprio_ifpriomap(r2, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000280)=0x9, 0x12)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x94)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='hugetlb.1GB.failcnt\x00', 0x2, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x2, 0x0, 0x7, 0xff, 0x0, 0x1000, 0x20848, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x22, 0x80}, 0x80, 0x7, 0x1, 0x4, 0x0, 0x0, 0x6, 0x0, 0xffffbffe, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f1, &(0x7f0000000080))

3m9.506320244s ago: executing program 1 (id=277):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="01000000420000000500000008"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x8001, 0x0, r2}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x8000, r3}, 0x38)

2m54.478116208s ago: executing program 32 (id=277):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="01000000420000000500000008"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x8001, 0x0, r2}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x8000, r3}, 0x38)

3.378960017s ago: executing program 2 (id=1954):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, @perf_bp={0x0, 0x8}, 0x10000, 0xc8, 0xfff, 0x0, 0x0, 0x0, 0x400}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000000000008100000081"], 0x48)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x15)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x300)

3.241471648s ago: executing program 2 (id=1955):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0xc, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2.853725399s ago: executing program 2 (id=1956):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001a00)={0xffffffffffffffff, 0xe0, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000440)=[0x0, 0x0], ""/16, <r1=>0x0, 0x0, 0x0, 0x0, 0x9, 0x2, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000740)=[0x0, 0x0], 0x0, 0xd0, &(0x7f0000000780)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000007c0), &(0x7f0000001880), 0x8, 0xec, 0x8, 0x8, &(0x7f00000018c0)}}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x4020940d, &(0x7f00000005c0)=0x81000400000004)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001b00)={{r0, <r3=>0xffffffffffffffff}, &(0x7f0000001a80), &(0x7f0000001ac0)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001bc0)={0x18, 0xd, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}]}, &(0x7f0000000380)='syzkaller\x00', 0x8bb6, 0x1000, &(0x7f0000000880)=""/4096, 0x41000, 0x8, '\x00', r1, 0x0, r2, 0x8, &(0x7f0000001a40)={0x1, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000001b40)=[r0, r0, r3], &(0x7f0000001b80)=[{0x5, 0x5, 0x2, 0x5}, {0x2, 0x3, 0x7, 0x4}], 0x10, 0x23}, 0x94)

2.772830136s ago: executing program 2 (id=1957):
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffbd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0x40, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$kcm(0x11, 0x2, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f00000000000000"], &(0x7f0000000140)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0x26, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
sendmsg$sock(r0, &(0x7f00000000c0)={&(0x7f0000000040)=@phonet={0x23, 0x0, 0x0, 0x27}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@timestamping={{0x14, 0x1, 0x41, 0x102}}], 0x18}, 0x0)

2.585719281s ago: executing program 2 (id=1962):
socket$kcm(0x10, 0x2, 0x0)

2.48315596s ago: executing program 4 (id=1965):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="050000"], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x1, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xfe80000000000000, 0x22072a18}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)='\x00<', 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f0000000340)={0x5, 0x80, 0xe, 0xb1, 0xd, 0x7, 0x0, 0x8, 0x2000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7fffffff, 0x0, @perf_config_ext={0x5, 0x3}, 0x100, 0x8, 0x8, 0x4, 0x80000000, 0x7, 0x0, 0x0, 0xe, 0x0, 0xfffffffffffffff9}, 0x0, 0x10, r1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40082404, &(0x7f00000002c0)=0x3)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, 0xffffffffffffffff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000300)={r5}, 0xc)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4070300", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)

2.403098366s ago: executing program 2 (id=1966):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000001c0)=r1, 0x4)
sendmsg$kcm(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000300009116144f782db44b904021d08000500142603600e120900210000000401a8001600a400014006000000036010fab94dcf4f0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e012dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5d00040000d6e4edef3d93452a92954b43370e970100"/216, 0xd8}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x16, 0x16, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x253, 0x10, &(0x7f0000000000), 0x19f}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000005c0)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f00000000000000"], &(0x7f0000000140)='GPL\x00'}, 0x94)
r4 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r3}, 0x8)
close(r4)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r3, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x12, 0xc, &(0x7f0000000600)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000005c0)={r4, r3, 0x4, r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x9, 0x7f, 0x2, 0xf910, 0x1407e, 0xffffffffffffffff, 0x9, '\x00', 0x0, r2, 0x4, 0x2, 0x0, 0x0, @void, @value, @value=r4}, 0x50)
syz_clone(0x1c48c9600, 0x0, 0x0, 0x0, 0x0, 0x0)

2.363524539s ago: executing program 3 (id=1968):
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000001c0)={&(0x7f0000000100)="d0bbbcaafd668b684f1cfd460a7f686d201943f49b5b07ef5fccc3662b9ac53d8f6814d4d459d7f1a4051328171915ad286a95a6c60ea615a5f0a2f963b9da47baf955f7d5279ce3c333c892ffdfdd9a0d63aeaa5f23b0f3795d00636fae1f991f5e6aa8b89be301e454f39c6e257fdae384a0d2811319d4be6176a09cc09ca0cbe9c2c63ce70baba0b1d60f6bcdfb622e7cfaefb5cf37df", &(0x7f0000000600)=""/177, &(0x7f0000000040)="7fdedafd1d2ae619", &(0x7f00000006c0)="4dcec4bbdb7201486f2a8ef36c54a9384d493e5129f2f4e3c84385ec207dcb013658000d68d82cf3ddfc224825203226fd24c17d80f9c90aaf2f4ca93aa537dd8e4d8abea24ace8daa0d6dba6c91d9edf4b29ef96e642152d2c906da621a7a101bf95c6651f388136814fdfe43577d01bfd3196b8a19d2804874e9225d7ec4381bf8a772ce62b312bb8adc833fb1f78c0200b7b9ea194152c71b8e68cc495e15572245b89ba9960c12db0e3a50a5e4c64ab197b51c8e303a3af75e6b6b3a35", 0x5, r1}, 0x38)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r4}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$inet(r0, &(0x7f0000000500)={&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000080)="7c3878e9b2e0c9f995389eee54bf331f3729c851c3e33adcf443e54ab9b13852f2188246a6183557216bca2f5e17fc1de6cad7a77cddf7a2739c399f8a37c8dbf3eacd1af299ff87baf829aa10fcae7b", 0x50}, {&(0x7f0000000400)="aed37db91807e3c4047ec2956a", 0xd}], 0x2, &(0x7f00000005c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}], 0x30}, 0x80)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r5, &(0x7f0000000400), &(0x7f0000000540)=""/119}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x2000}, 0x18)
r6 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e068000000110000000000000000dbc790ad000000fc000000000000001400000000000000000000000200000004000000000000001c000000000000000000000008000000", @ANYBLOB="2c2af96e"], 0x68}, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

2.199666873s ago: executing program 0 (id=1969):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cgroup.controllers\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xc, &(0x7f0000000100)=r1, 0x4)
write$cgroup_subtree(r1, &(0x7f00000015c0)=ANY=[], 0x33fe0)
r2 = socket$kcm(0x11, 0x2, 0x0)
r3 = perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80102, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x18944, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x7, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18000000", @ANYRES32, @ANYRES64=r0], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r4, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, &(0x7f0000000380)=[{}], 0x8, 0x0, 0x0, 0x0, 0x0, 0x3c, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$kcm(r2, &(0x7f0000000040)={&(0x7f0000000100)=@phonet={0x23, 0x8, 0x0, 0x41}, 0x80, 0x0}, 0x24048015)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r6 = socket$kcm(0x15, 0x5, 0x0)
recvmsg$kcm(r6, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2040)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000019580)=ANY=[@ANYBLOB="0f000000040000000800000001"], 0x37)
perf_event_open(&(0x7f0000001440)={0x2, 0x80, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22101, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, @perf_bp={0x0}, 0x8c93, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0xffff)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000380)={'syzkaller0\x00', 0x4801})
write$cgroup_devices(r8, &(0x7f0000000240)=ANY=[@ANYBLOB="1b2308217f05"], 0xffdd)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x7, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000afcd48d6494d614dcc6fab5335ec470db2c6161dba392176dd2963038e1d69ba7ea94c500dc4ef2fad96ed406f21caf5adcf920569c00cc1190e95fa7c93836d9ea2cfb0e60436e05425cc4686b066707de94a4f4d5fc79c987d669f381faca0f9d9b24be41a9169bdfaf16da915b2e249ee1c6eee84309e7a23c19a39484809539fca4e0b6eab1aa7d55545a34effa077faa56d59e88254f54077f799bf168301000000bf2255d6a0244d35b213bda84cc172afd8cc2e59a7d8b85a5e3d77ac463920e231b7ae0da8616d2b7958f91f5da6c025d0faab186d94af98af1da2b5952eb15855933a202304e035f7a35dfc72c81256a55a25f8fe3b28d7e53c78fbfe5ab0255f347160ec83070000000000004015cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72bc0480f949c479757306720399379d9271cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2dc5e46ac1c60a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d570ecb5e8cddbed65ff702000000a3ff4f8a4cf796b07a6ff61c5552417fd703f7f14d8b78a602ca3cdf6a9120072a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c8ad9433269af3be5fa6a9a5c24e392955f4e979ea13201bafe4f0f6ea508000000a0c548552b571bed5647223c78a992810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cda6cb799c6e924966a7f90bf8fd1e75ee76bd72346cfbb526890aa7fe5e68949a3b30567e54d3504723177d356c4604bca492ede62fc28839b5301160ecec37e83efceefd7ca2533659edc8be05cc85451c6a145074343caea5c4bf690441974b155f5adc681a03c0bbb8358856175e2ce8b0cbbbe3c033e54ffcebde1d9d3d35a142a9ec9a7a3755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c39cf4b98e1fc6efb5978f51e16b678eca0b658a56008948e561a9845e4ff29e2bdb1d0b923b272341c5e093fd66a2946501559335781092cf8ce3c7c56cd31121624d76517fd3666276c3c0e812b28e2f30d035cee5d0e77a3c70008ec651cc0ae637fa474816bc59d2e2a00092419304b338a987e9d3044d856cf24f370030be3b5f79f030b8d3ebce68663ef5af469abe753314fae31651e0ecea5ece8fb11a4ee288eb149f1fa33669cc8d901fa8e46354c9c3a041a1e7b55c4e81dba1e12289ee34463baf28345bde0c195bc9f021da8f3025ee9c8e3168b4177ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f241262fa3f1dabeb4fc4bda345360200000001fbddeacd3adaa4d2715e21c772ccd44341f7fd53df58ae791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d419de1a7b5c9dc22c96295a4601adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a8640724a5f4e12ad99012a2e01ce79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb408c8a80f7f02f750d6c977a1919f9f69a6cfefdf879d447df53f3b9b70d10355b07466d1ef0056b5af553d18a6cc50feeb7bfad9b7be3283b6450d014e7712d2f1d7004548b19162cef04d18d4f5987baab97a9bfbd8f185b5671820420bf5b6522c0e21c882c66f4f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe52734093ae5aa3c0b4f3f45bfff2418a18217747ae442e31560e5b741445ea2a1acee2e98c9f3427834ba0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa6623920dacc107f532348cc21164efe794874eac73381e961f3d9c8c21578fe3245097c280abe51427a7f6cd72b5da6d0252803c66730cd5eac907f09b9695906313f8873522608c6fc01e1b9e16587bb5f721303e6b89e5c54d680ac66d09af90dbf50ee69a39265964279d17eb0000000000000000000000fa08ad0731c4b839688b22c4da2a6b00008a1949a6ba49fbf981f8265e7f1f4c2d97f4680b135f87c228ce69418a282bffff2481a0df1774fa7d94944bb92d2b89f73f0e8b63f6316c5762f3288bc970720f48b5647dd177db6810fae05334d5a44a020000001c0d882a564d74a7c72bf9a2152b261e58fea6d2f93589cfe261dc0410b5ccc92a5a0eab327a33431d62d2b7c75ce654d556c9e1817c1abca762ab53d40da51560351b673363652e1ecb56cfe4a746a45ab13c6014e9f361ab687d1cd1795ce9e05c817b83d76046bdb3709de5df7499a02d2f636a454b85b987580ada025d83bd7b8df28a540d5ec5537942e79f2f1ab25ea5f563bc77e4f9468bd309469880c7e34150ca886d1f13dff7e82dbe296c877d925c38c54cc8137b29028854b6bd57ca893927c331300e16aba792289e135589d93302fc37c73c303e383cdf8ef3f6d6265fe5ee01759d24027475c8901039a898582022bc95992b86dce0710887c8a625d9cbb897bdbfaf49a3f642a169827a9bae4fcfa5212461db000000000000e6ed75ca8fcda7ef3ee336189fef3b3ffb9f38fefc5ff39c4e69e3fa1f8b10ee97123e99b61eba065b1ad67530e7c4f11f9da7ae000002000000610101ad7f79cb9bbf64a0fc109f49fe50151f5ddfe51833ec65ece70e07ce8ab5d97db47da8f80000664dc0b86ae2b3ff9d4e220752a6b2f3ea9f793612386496dca5af7b8952aafa332482e6137e994d3f5259b7f51544cdc6d8cb4becc20dd3a57545b0c2621e4c5f94a23f73ee02c22ee7e27c2cc491a85947baac523c347c9b9ede5d6265997f2ad6e9719aafdb323988e62b7ec84545cd63b7a7"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffdf2}, 0x48)
r10 = perf_event_open(&(0x7f0000000600)={0x5, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5, 0x88160, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}, 0x9022, 0xfffffffffffffffc, 0x717}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f00000002c0)=@abs, 0x6e, &(0x7f00000014c0)=[{&(0x7f00000011c0)=""/173, 0xad}, {&(0x7f0000001380)=""/65, 0x41}], 0x39, &(0x7f0000001500)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}, 0x40000001)
ioctl$PERF_EVENT_IOC_SET_BPF(r10, 0x40042408, r9)
close(r10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0xe, &(0x7f0000001640)=ANY=[@ANYBLOB="18000000000000000000000000400000181100002d95656597d47d6bad03ea2701336da9f68730a6e3434dced45bc65641e328ace6128677e8c2ea36bb70c0797c97c81a54fd", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r5, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000001280)="b9ffddc1ddcccdde75537d5326a4dfff70bf2dfe443b1b5e2a908137", 0x0, 0x3, 0x60000009, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x50)
r11 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r11, &(0x7f00000009c0)={&(0x7f00000000c0)={0x2, 0x4001, @empty}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x20044818)

2.199379922s ago: executing program 3 (id=1970):
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffbd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0x40, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$kcm(0x11, 0x2, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f00000000000000"], &(0x7f0000000140)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0x26, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
sendmsg$sock(r0, &(0x7f00000000c0)={&(0x7f0000000040)=@phonet={0x23, 0x0, 0x0, 0x27}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@timestamping={{0x14, 0x1, 0x41, 0x102}}], 0x18}, 0x0)

2.088321742s ago: executing program 3 (id=1971):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x400000000000000b, 0x9543, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0xfff, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x24}, r0, 0xfffbffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000f918688c00"/28], 0x50)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000000)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)="b000000016007f029e78f6030f7a0a762353bfb89fd8c902317bab30f89f080aaaaeb9d8091c815dcf03e14e877733fff4fe20a5be870f576b162e7de2d02673e789a4950c9cdc206e086fd0dc8ca9afcd9d522ac78876a4595146add31b35355848794ca3f8b38aef1e114ab9fb0200000000000000a3b0c81c6f8144e74fe13b80ca46c1a6c04ad73c9d44b605f900"/158, 0x9e}, {&(0x7f00000000c0)="68c32a7de6a2395800"/18, 0x12}], 0x2}, 0x4000000)
perf_event_open$cgroup(&(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, @perf_config_ext={0x401, 0x5}, 0x119071, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0xfffffffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$kcm(0x10, 0x3, 0x10)
r7 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r7, &(0x7f0000000040)={0x0, 0xf, &(0x7f0000000080)=[{&(0x7f00000000c0)="0207070002000000e4a17c45c8d260c90ec56959a440278950ff8cdca342f51686908ea4fe07dee035abee82755979fbd7991b71517d20096811c5a663a947eaf378bf56aaccdde0d91d2fa08aba131d91a15f81bfd1e961e534a605e9196747aaf27c0ec3994018ec333b40070beae950827d3efce8a34af6c67c60ee83b76c1132f55a7ccf7843a9a1de5284a60a57f66fa52701bccb915def033b664bc63242c782ecc7", 0x10}], 0x1}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000ac0)={r8, r9}, 0xc)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000000000000, 0x7}, 0x113915, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x15, &(0x7f0000000500), 0x4)

1.955125852s ago: executing program 4 (id=1972):
r0 = socket$kcm(0x2b, 0x1, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x9a8, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000ffffff2284edb30caf3a600edeea7609a27f00000000000000009500000000000000"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = socket$kcm(0xa, 0x1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x3c, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_type(r3, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r4, &(0x7f0000000280), 0x9)
r5 = openat$cgroup_procs(r3, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000c40), 0x12)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(0xffffffffffffffff)
syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
close(r0)

1.953164132s ago: executing program 0 (id=1973):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, 0x0, 0x4048800)
close(r0)

1.399059707s ago: executing program 0 (id=1974):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000003840)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000380)="fbe6bd8dfcdda5a210b8cfefbd66f459c7261b927d25d3cf74d2f7c97735eba47f606a290d184925922333211d168ab0f6e1081fdbd921ed4db0e67c9d5ab1452445a1e0da5ac68b13f4afe2712eeaad35ef06", 0x53}], 0x1, 0x0, 0x3298}, 0x0)
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000008c0)=r3, 0x4)
close(r0)
r4 = perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, r4, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x88)
setsockopt$sock_attach_bpf(r7, 0x1, 0x41, &(0x7f0000000040)=r6, 0x4)
openat$cgroup_ro(r6, &(0x7f0000000000)='cgroup.controllers\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.11908571s ago: executing program 4 (id=1975):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="05"], 0x10)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18080000000000000000000000000000852000000600000018100000", @ANYRES32, @ANYBLOB="00000000000000006100ed0000000000180000000000000000000000000000009500000000000000b50a00000000000095000000000000001315c1"], &(0x7f0000000000)='GPL\x00', 0x4, 0x1e, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x900}, 0x21)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
r3 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000640)='cpu&08\n&\fl\x00')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1, <r4=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)=r0}, 0x20)
close(r4)
close(r2)

787.180166ms ago: executing program 3 (id=1976):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000fcffffff000000000700000018090000", @ANYRES32], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

745.20061ms ago: executing program 4 (id=1977):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
r1 = socket$kcm(0xf, 0x3, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0xffffffff}]}]}}, 0x0, 0x5a}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x3, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000010007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(r1, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="020b0700fc670000e4a17c45c8d260c9", 0x33fe0}], 0x1}, 0x600)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d80000001e0081054e81f782060000000000000006007c095dd2466506000e800a00142603600e1208000f0000000406a80016c0080009400400027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791433a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad909d5e1cace81ed0bffece0b42a9eca0200e6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r3 = bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=ANY=[@ANYBLOB="08000000040000000400000022bb000084820200", @ANYRES32, @ANYBLOB="0000070000000000000003010000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fdffffff0100"/20, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)=@o_path={&(0x7f00000000c0)='./file0\x00', r3, 0x4000, r1}, 0x18)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, 0x0, 0x0)

660.491516ms ago: executing program 3 (id=1978):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000007500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x6d)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r1}, 0xc)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0xc44a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000003}, 0x48)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r7)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907a56675f37538ec86dd6317ce22667f1100db5b686158bbcfe8875a65969ff57b03000000000000000000000000ac1414aa"], 0xfdef)
recvmsg$unix(r6, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000000)=ANY=[], 0xfdef)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x6, 0x0, 0x2004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000f40)={r4, 0xe0, &(0x7f0000000e40)={0x0, <r10=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000c80)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, &(0x7f0000000cc0)=[0x0, 0x0], &(0x7f0000000d00)=[0x0], 0x0, 0xa8, &(0x7f0000000d40)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000d80), &(0x7f0000000dc0), 0x8, 0xef, 0x8, 0x8, &(0x7f0000000e00)}}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000c40)={@map=r9, r3, 0x27, 0x30, 0x0, @void, @void, @void, @value=r10}, 0x20)
r11 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r11, 0x107, 0x18, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r3, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xce, &(0x7f0000000300)=[{}], 0x8, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0xc3, 0x8, 0x8, &(0x7f0000000580)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000001e00000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r13 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000700)={0x1b, 0x0, 0x0, 0x10000, 0x0, r8, 0x7, '\x00', r12, r8, 0x0, 0x3, 0x1}, 0x50)
r14 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$cgroup_int(r14, &(0x7f0000000080), 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x18, 0x18, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000fcffffff000000000000000018110000", @ANYRES32=r13, @ANYBLOB="0000000000000000b702000014000000b7030000000000d7f328f60083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000840)='syzkaller\x00', 0x9, 0x55, &(0x7f0000000880)=""/85, 0x41100, 0x18, '\x00', r12, 0x0, r14, 0x8, &(0x7f0000000900)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000940)={0x3, 0xa, 0x80, 0x9}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000980)=[r8, r8, r0, r3, r5], &(0x7f00000009c0)=[{0x3, 0x3, 0x5, 0x5}, {0x2, 0x4, 0x7, 0x5}, {0x0, 0x1, 0xd, 0x4}], 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)

411.220587ms ago: executing program 4 (id=1979):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

303.245276ms ago: executing program 3 (id=1980):
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x6, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000100)={'veth1\x00', 0x400})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'rose0\x00', 0xd132})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8943, &(0x7f0000000080))
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000001480)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000080)="05804ab382844306d758e620b9dc", 0x0, 0x12c4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r3 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)=""/116, 0x74}, {&(0x7f00000047c0)=""/4057, 0xfd9}, {&(0x7f00000037c0)=""/4073, 0xfe9}, {&(0x7f0000000700)=""/237, 0xed}, {&(0x7f0000000a40)=""/139, 0x8b}, {&(0x7f0000000800)=""/213, 0xd5}], 0x6}, 0x100)
sendmsg$inet(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000900)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80400, 0x0)
ioctl$TUNSETIFF(r5, 0x400454da, &(0x7f00000002c0)={'bond0\x00', 0x4000})
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})

290.008786ms ago: executing program 0 (id=1981):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x2, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r0, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000020c0)=@bpf_ext={0x1a, 0x3, &(0x7f0000001a80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x401}}, &(0x7f0000001b40)='syzkaller\x00', 0xfffffff7, 0x0, 0x0, 0x41000, 0x43, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2d3c4, r2, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)

193.390734ms ago: executing program 4 (id=1982):
perf_event_open(&(0x7f0000000600)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x90c, 0x401, 0x1, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x1, 0x106)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000b00)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x0, 0x0, 0x0, 0x13}]}}, 0x0, 0x26}, 0x20)
sendmsg$unix(r2, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001100)=[@rights={{0x18, 0x1, 0x1, [r1, r2]}}], 0x18, 0x4803e}, 0x8000)
setsockopt$sock_attach_bpf(r0, 0x29, 0x17, 0x0, 0x4)
r4 = socket$kcm(0x2, 0x3, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000200"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000001801"], 0x48)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x890b, &(0x7f0000000100))
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x41}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x0, 0xe, 0x0, &(0x7f0000000680)="548852ac5b4eba7aeaccd2c62b2b", 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x8}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r6)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETOFFLOAD(r7, 0x400454d0, 0x52c5e529714e18f9)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRES16=r2, @ANYRES64=r2, @ANYRES32=r7, @ANYBLOB="c6f67e4c244732bbefa69da01bc4a5835ceef4a0575f6eb917e09e0359bd9515e0e171cf7de0e0f681c1b784ae8dd7ea0d793fb5503c11c5135e13ddd8193c26eae5dfab2b7b87fa28c0adbefa20d1f84cde875e5bc421db19001b8c4e3250c898dc4555de4c8c322618c925ef8390b874fb962589425f90f4ea8e842516c68480e421", @ANYRES8=r1, @ANYRESOCT=r1, @ANYRES8=r1, @ANYBLOB="e292ca51ac284fc605ed8acfd7fac9fbfaac181b5d033c09c4703c52b0ad0ec837c8f323dd64541d261640b411b13a218904cb2670cc7053076fd27852f9712d84c53bc561b59629ca0c36dc5440", @ANYRES16=r1], 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r8, 0x0, &(0x7f00000005c0)=""/104}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x8, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x25}, [@jmp={0x6, 0x0, 0xc, 0x0, 0x0, 0x1, 0x25}, @exit, @cb_func={0x18, 0x0, 0x4, 0x0, 0x2}, @exit]}, &(0x7f0000000100)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x807}, 0x94)

79.010724ms ago: executing program 0 (id=1983):
r0 = socket$kcm(0x2, 0x3, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x4}, 0x828, 0x0, 0x0, 0x0, 0x80000000, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000003a80)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xb}, @multicast1}}}], 0x20}, 0x4008804)
sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f0000000340)=@l2tp={0x2, 0x0, @loopback}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000e40)="3282db78e0", 0x5}], 0x1}, 0x8400)
sendmsg$inet(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x80, @local}, 0x10, &(0x7f0000000b00)=[{&(0x7f0000000640)="455b1c1ed5900423c15445e625bc121395a1ca64b3dd6f8aeb723872f617d717a26bf00271b580f6822a2c6896c756f9884b052d314f2a0e782a11c793063457ccd878782b6599e2c51e40ed5142e32cf8b07a76201b7644ac62f011223e925d8565cde47b522a9b86be7847318bfeaf58de2c6a1aebf00c39a22ec6de373ec332917b7586bf8298180eb89831e03feae224ca839e8ca7041056cb9ed42abcd994", 0xa1}, {&(0x7f0000000800)="7e24225d7d1bf3f2c2e3350446b32bcc9a579c864b87c0b26e9513f1a964562cd0fb40e07a028a9e4a8509c6183dc2c51a7f307806ce093fad8f167b3f1656081a0f4b15e021952a5e40d65779b924ed3fd175df8673c7544e9e3b11bc621acae054258215e76d7f16569f3436c00fcc7c6c154f87afc22e0ad2a3737a8f6e1cdf815f357d0b10e57e633006dd00e8cc5c66ddb415a93124d45ef1e687b1e29d9fb742d4f8b91f69854f7ba2eaec1b2782a4807fba2fc86bb82f320faa5da21794d4e6b2795f823dd429c33bb5a117ec441e28", 0xd3}, {&(0x7f0000003ac0)="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", 0x43c}], 0x3}, 0x0) (fail_nth: 9)

0s ago: executing program 0 (id=1984):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x400000000000000b, 0x9543, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0xfff, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x24}, r0, 0xfffbffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000f918688c00"/28], 0x50)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000000)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000240)="b000000016007f029e78f6030f7a0a762353bfb89fd8c902317bab30f89f080aaaaeb9d8091c815dcf03e14e877733fff4fe20a5be870f576b162e7de2d02673e789a4950c9cdc206e086fd0dc8ca9afcd9d522ac78876a4595146add31b35355848794ca3f8b38aef1e114ab9fb0200000000000000a3b0c81c6f8144e74fe13b80ca46c1a6c04ad73c9d44b605f900"/158, 0x9e}, {&(0x7f00000000c0)="68c32a7de6a2395800"/18, 0x12}], 0x2}, 0x4000000)
perf_event_open$cgroup(&(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, @perf_config_ext={0x401, 0x5}, 0x119071, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0xfffffffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$kcm(0x10, 0x3, 0x10)
r7 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r7, &(0x7f0000000040)={0x0, 0xf, &(0x7f0000000080)=[{&(0x7f00000000c0)="0207070002000000e4a17c45c8d260c90ec56959a440278950ff8cdca342f51686908ea4fe07dee035abee82755979fbd7991b71517d20096811c5a663a947eaf378bf56aaccdde0d91d2fa08aba131d91a15f81bfd1e961e534a605e9196747aaf27c0ec3994018ec333b40070beae950827d3efce8a34af6c67c60ee83b76c1132f55a7ccf7843a9a1de5284a60a57f66fa52701bccb915def033b664bc63242c782ecc7", 0x10}], 0x1}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000ac0)={r8, r9}, 0xc)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000000000000, 0x7}, 0x113915, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x15, &(0x7f0000000500), 0x4)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.252' (ED25519) to the list of known hosts.
[  352.566911][ T5821] cgroup: Unknown subsys name 'net'
[  352.728165][ T5821] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  354.112797][ T5821] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  355.948427][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  355.953794][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  355.964077][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  355.966044][ T5843] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  355.972392][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  355.980142][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  355.988018][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  355.993799][ T5843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  356.002363][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  356.008578][ T5843] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  356.015347][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  356.022781][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  356.030025][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  356.037025][ T5843] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  356.043143][ T5841] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  356.049984][ T5843] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  356.058670][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  356.066450][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  356.078212][ T5843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  356.091356][ T5843] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  356.099135][ T5843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  356.112368][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  356.139686][ T5844] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  356.148173][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  356.616283][ T5831] chnl_net:caif_netlink_parms(): no params data found
[  356.670372][ T5833] chnl_net:caif_netlink_parms(): no params data found
[  356.700994][ T5832] chnl_net:caif_netlink_parms(): no params data found
[  356.787365][ T5834] chnl_net:caif_netlink_parms(): no params data found
[  356.821475][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[  356.828742][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.837543][ T5831] bridge_slave_0: entered allmulticast mode
[  356.844879][ T5831] bridge_slave_0: entered promiscuous mode
[  356.880894][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[  356.888406][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.895975][ T5831] bridge_slave_1: entered allmulticast mode
[  356.903428][ T5831] bridge_slave_1: entered promiscuous mode
[  356.976823][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[  356.984168][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.992632][ T5832] bridge_slave_0: entered allmulticast mode
[  356.999412][ T5832] bridge_slave_0: entered promiscuous mode
[  357.043911][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.052121][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.059342][ T5832] bridge_slave_1: entered allmulticast mode
[  357.066418][ T5832] bridge_slave_1: entered promiscuous mode
[  357.075926][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  357.088555][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  357.098430][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.105644][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.113421][ T5833] bridge_slave_0: entered allmulticast mode
[  357.120488][ T5833] bridge_slave_0: entered promiscuous mode
[  357.128296][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.136193][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.143799][ T5833] bridge_slave_1: entered allmulticast mode
[  357.150574][ T5833] bridge_slave_1: entered promiscuous mode
[  357.222059][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.229258][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.237335][ T5834] bridge_slave_0: entered allmulticast mode
[  357.245377][ T5834] bridge_slave_0: entered promiscuous mode
[  357.269445][ T5831] team0: Port device team_slave_0 added
[  357.278192][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  357.291396][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  357.300824][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.308423][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.315856][ T5834] bridge_slave_1: entered allmulticast mode
[  357.323453][ T5834] bridge_slave_1: entered promiscuous mode
[  357.332541][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  357.345027][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  357.355679][ T5831] team0: Port device team_slave_1 added
[  357.452415][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[  357.459413][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.486800][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  357.502382][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[  357.509531][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.535955][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  357.550405][ T5833] team0: Port device team_slave_0 added
[  357.561449][ T5833] team0: Port device team_slave_1 added
[  357.569624][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  357.582543][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  357.595401][ T5832] team0: Port device team_slave_0 added
[  357.604398][ T5832] team0: Port device team_slave_1 added
[  357.698617][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  357.706049][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.732169][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  357.757618][ T5834] team0: Port device team_slave_0 added
[  357.767594][ T5834] team0: Port device team_slave_1 added
[  357.774214][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[  357.781375][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.807949][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  357.819677][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  357.826923][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.853186][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  357.889224][ T5831] hsr_slave_0: entered promiscuous mode
[  357.896380][ T5831] hsr_slave_1: entered promiscuous mode
[  357.917296][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[  357.924584][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.950897][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  358.027252][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[  358.034840][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.061985][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  358.089013][ T5833] hsr_slave_0: entered promiscuous mode
[  358.095684][ T5833] hsr_slave_1: entered promiscuous mode
[  358.102581][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.110656][ T5833] Cannot create hsr debugfs directory
[  358.121025][ T5832] hsr_slave_0: entered promiscuous mode
[  358.129698][ T5832] hsr_slave_1: entered promiscuous mode
[  358.137148][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.146095][ T5832] Cannot create hsr debugfs directory
[  358.152610][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[  358.159592][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.186304][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  358.192788][ T5839] Bluetooth: hci3: command tx timeout
[  358.197085][ T5843] Bluetooth: hci0: command tx timeout
[  358.203500][ T5839] Bluetooth: hci1: command tx timeout
[  358.208627][ T5844] Bluetooth: hci2: command tx timeout
[  358.354912][ T5834] hsr_slave_0: entered promiscuous mode
[  358.361791][ T5834] hsr_slave_1: entered promiscuous mode
[  358.368041][ T5834] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.376166][ T5834] Cannot create hsr debugfs directory
[  358.667170][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  358.679740][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  358.692373][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  358.710047][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  358.778632][ T5833] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  358.794744][ T5833] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  358.806037][ T5833] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  358.840954][ T5833] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  358.888712][ T5832] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  358.928243][ T5832] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  358.963864][ T5832] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  358.975280][ T5832] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  359.010683][ T5834] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  359.034844][ T5834] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  359.045843][ T5834] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  359.056853][ T5834] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  359.112144][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.164420][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[  359.179774][ T2927] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.187170][ T2927] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.219559][ T2927] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.226702][ T2927] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.288697][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.374815][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[  359.387282][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.408091][ T5872] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.415462][ T5872] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.426441][ T5872] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.433725][ T5872] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.464791][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.485738][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[  359.502625][ T2919] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.509817][ T2919] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.533487][ T2927] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.540785][ T2927] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.602235][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[  359.636104][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.643349][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.660333][ T2919] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.667525][ T2919] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.755865][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[  359.914458][ T5831] veth0_vlan: entered promiscuous mode
[  359.947563][ T5831] veth1_vlan: entered promiscuous mode
[  360.000575][ T5831] veth0_macvtap: entered promiscuous mode
[  360.035273][ T5831] veth1_macvtap: entered promiscuous mode
[  360.075575][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[  360.132722][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[  360.168809][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[  360.220307][ T5831] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  360.236194][ T5831] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  360.245219][ T5831] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  360.254221][ T5831] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  360.271742][ T5844] Bluetooth: hci2: command tx timeout
[  360.277288][ T5844] Bluetooth: hci1: command tx timeout
[  360.283337][ T5839] Bluetooth: hci0: command tx timeout
[  360.283367][ T5838] Bluetooth: hci3: command tx timeout
[  360.300835][ T5833] veth0_vlan: entered promiscuous mode
[  360.328173][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[  360.340535][ T5833] veth1_vlan: entered promiscuous mode
[  360.374318][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  360.449871][ T5832] veth0_vlan: entered promiscuous mode
[  360.450743][ T2880] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.475330][ T2880] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.498268][ T5833] veth0_macvtap: entered promiscuous mode
[  360.510666][ T5833] veth1_macvtap: entered promiscuous mode
[  360.522834][ T5832] veth1_vlan: entered promiscuous mode
[  360.586620][ T2927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.594097][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.606318][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.607263][ T2927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.619112][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[  360.639713][ T5832] veth0_macvtap: entered promiscuous mode
[  360.662696][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.679111][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.692711][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[  360.703199][ T5832] veth1_macvtap: entered promiscuous mode
[  360.727837][ T5834] veth0_vlan: entered promiscuous mode
[  360.737107][ T5833] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  360.746990][ T5833] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  360.756237][ T5833] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  360.765038][ T5833] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  360.799701][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.812100][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.822624][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  360.844782][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.858794][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  360.875373][ T5834] veth1_vlan: entered promiscuous mode
[  360.904210][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.934835][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.945477][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  360.956496][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  360.968347][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  360.999864][ T5832] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.000619][    C0] hrtimer: interrupt took 67658 ns
[  361.008747][ T5832] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.030359][ T5832] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.043291][ T5832] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  361.079411][ T2919] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.108304][ T2919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.279748][ T5834] veth0_macvtap: entered promiscuous mode
[  361.300102][ T5903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.326041][ T5903] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.366359][ T5834] veth1_macvtap: entered promiscuous mode
[  361.463033][ T2919] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.497186][ T2919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.544338][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.559795][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.572419][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.588584][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.608190][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.621752][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.634117][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[  361.665949][ T5903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.676629][ T5903] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.685123][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.685142][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.685150][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.685160][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.685178][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.800795][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.837887][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[  361.890122][ T5834] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.904314][ T5834] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.914326][ T5834] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.923538][ T5834] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.173937][ T5934] netlink: 1 bytes leftover after parsing attributes in process `syz.0.5'.
[  362.250283][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.278449][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.352847][ T5838] Bluetooth: hci1: command tx timeout
[  362.354392][ T5844] Bluetooth: hci2: command tx timeout
[  362.358430][ T5838] Bluetooth: hci3: command tx timeout
[  362.364525][ T5843] Bluetooth: hci0: command tx timeout
[  362.494861][ T5872] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.503796][ T5872] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.227818][ T5950] netlink: 60 bytes leftover after parsing attributes in process `syz.0.10'.
[  363.534231][ T5956] 
€Â0: renamed from pim6reg1
[  363.876513][ T5974] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.14'.
[  364.085435][ T5978] netlink: 60 bytes leftover after parsing attributes in process `syz.0.16'.
[  364.168400][ T5980] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  364.437375][ T5978] syzkaller0: entered promiscuous mode
[  364.440265][ T5843] Bluetooth: hci0: command tx timeout
[  364.448622][ T5844] Bluetooth: hci3: command tx timeout
[  364.448689][ T5839] Bluetooth: hci1: command tx timeout
[  364.460400][ T5838] Bluetooth: hci2: command tx timeout
[  364.467773][ T5978] syzkaller0: entered allmulticast mode
[  364.926342][ T5992] netlink: 'syz.1.21': attribute type 3 has an invalid length.
[  364.946873][ T5992] netlink: 201372 bytes leftover after parsing attributes in process `syz.1.21'.
[  367.993908][ T6020] netlink: 156 bytes leftover after parsing attributes in process `syz.1.34'.
[  368.211402][ T6026] netlink: 'syz.2.37': attribute type 10 has an invalid length.
[  369.464432][ T6084] netlink: 'syz.1.65': attribute type 10 has an invalid length.
[  369.535053][ T6084] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  373.057507][ T6230] Illegal XDP return value 779812864 on prog  (id 77) dev N/A, expect packet loss!
[  375.025148][ T6299] pim6reg1: entered promiscuous mode
[  375.030500][ T6299] pim6reg1: entered allmulticast mode
[  375.374150][ T6316] macvtap0: refused to change device tx_queue_len
[  376.014973][ T6338] can: request_module (can-proto-0) failed.
[  376.215534][ T6353] pim6reg1: entered promiscuous mode
[  376.221007][ T6353] pim6reg1: entered allmulticast mode
[  376.349600][ T6357] netlink: 'syz.1.199': attribute type 1 has an invalid length.
[  376.359231][ T6357] netlink: 'syz.1.199': attribute type 4 has an invalid length.
[  376.367683][ T6357] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.199'.
[  376.386579][ T6360] netlink: 'syz.1.199': attribute type 1 has an invalid length.
[  376.401310][ T6360] netlink: 'syz.1.199': attribute type 4 has an invalid length.
[  376.417316][ T6360] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.199'.
[  376.644300][ T6370] ªªªªªª: renamed from vlan0 (while UP)
[  377.245160][ T6384] netlink: 132 bytes leftover after parsing attributes in process `syz.1.213'.
[  377.370287][ T6393] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.217'.
[  377.725639][ T6407] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.224'.
[  377.807322][ T6410] syzkaller0: refused to change device tx_queue_len
[  378.843901][ T6452] netlink: 132 bytes leftover after parsing attributes in process `syz.0.244'.
[  378.921582][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  378.928631][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  379.770275][ T6493] wg2: entered promiscuous mode
[  379.781146][ T6493] wg2: entered allmulticast mode
[  380.096309][ T6508] netlink: 'syz.2.270': attribute type 10 has an invalid length.
[  380.136937][ T6508] macvlan1: entered allmulticast mode
[  380.143046][ T6508] veth1_vlan: entered allmulticast mode
[  380.149272][ T6508] team0: Device macvlan1 is up. Set it down before adding it as a team port
[  380.515174][ T6530] netlink: 'syz.3.282': attribute type 21 has an invalid length.
[  380.530293][ T6530] netlink: 132 bytes leftover after parsing attributes in process `syz.3.282'.
[  380.545757][ T6530] netlink: 'syz.3.282': attribute type 1 has an invalid length.
[  381.211717][ T6555] Zero length message leads to an empty skb
[  381.226204][ T6555] netlink: 'syz.3.292': attribute type 10 has an invalid length.
[  381.249051][ T6555] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.258164][ T6555] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.288170][ T6555] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.295701][ T6555] bridge0: port 2(bridge_slave_1) entered forwarding state
[  381.304300][ T6555] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.311527][ T6555] bridge0: port 1(bridge_slave_0) entered forwarding state
[  381.385475][ T6555] team0: Port device bridge0 added
[  381.397142][ T6556] bridge_slave_1: left allmulticast mode
[  381.410053][ T6556] bridge_slave_1: left promiscuous mode
[  381.435628][ T6556] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.468255][ T6556] bridge_slave_0: left allmulticast mode
[  381.481778][ T6556] bridge_slave_0: left promiscuous mode
[  381.489815][ T6556] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.600258][ T6556] team0: Port device bridge0 removed
[  381.718322][ T6568] can: request_module (can-proto-0) failed.
[  381.784531][ T6556] syz.3.292 (6556) used greatest stack depth: 20144 bytes left
[  382.416106][ T6601] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  382.425221][ T6601] batman_adv: batadv0: Removing interface: batadv_slave_0
[  382.445529][ T6601] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  382.454645][ T6601] batman_adv: batadv0: Removing interface: batadv_slave_1
[  383.323185][ T6630] ref_ctr_offset mismatch. inode: 0x178 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  383.756645][ T6651] bridge0: port 3(team0) entered blocking state
[  383.771511][ T6651] bridge0: port 3(team0) entered disabled state
[  383.783647][ T6651] team0: entered allmulticast mode
[  383.789367][ T6651] team_slave_0: entered allmulticast mode
[  383.799487][ T6651] team_slave_1: entered allmulticast mode
[  383.813227][ T6651] team0: entered promiscuous mode
[  383.820604][ T6651] team_slave_0: entered promiscuous mode
[  383.829669][ T6651] team_slave_1: entered promiscuous mode
[  383.841245][ T6651] bridge0: port 3(team0) entered blocking state
[  383.848273][ T6651] bridge0: port 3(team0) entered forwarding state
[  384.627494][ T6674] pim6reg1: entered promiscuous mode
[  384.641874][ T6674] pim6reg1: entered allmulticast mode
[  384.709307][ T6676] netlink: 'syz.2.348': attribute type 10 has an invalid length.
[  384.771482][ T6676] team0: Device hsr_slave_0 failed to register rx_handler
[  385.503372][ T6712] netlink: 'syz.0.365': attribute type 21 has an invalid length.
[  385.612050][ T6717] wg2: entered promiscuous mode
[  385.617378][ T6717] wg2: entered allmulticast mode
[  385.767390][ T6722] syz.2.369 uses obsolete (PF_INET,SOCK_PACKET)
[  386.235333][ T6739] syz.2.377[6739] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  386.235475][ T6739] syz.2.377[6739] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  386.288374][ T6741] ref_ctr_offset mismatch. inode: 0x1d8 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[  387.662145][ T6801] IPv6: Can't replace route, no match found
[  387.755498][ T6804] IPv6: Can't replace route, no match found
[  388.816639][ T6853] pim6reg1: entered promiscuous mode
[  388.822160][ T6853] pim6reg1: entered allmulticast mode
[  389.762009][ T6894] pim6reg1: entered promiscuous mode
[  389.767695][ T6894] pim6reg1: entered allmulticast mode
[  390.602238][ T6930] IPv6: Can't replace route, no match found
[  390.609953][ T6934] netlink: 'syz.0.471': attribute type 10 has an invalid length.
[  390.621020][ T6934] netlink: 40 bytes leftover after parsing attributes in process `syz.0.471'.
[  390.660230][ T6934] geneve0: entered promiscuous mode
[  390.673924][ T6934] geneve0: entered allmulticast mode
[  390.694961][ T6934] team0: Port device geneve0 added
[  390.706065][ T6933] netlink: 'syz.2.472': attribute type 21 has an invalid length.
[  390.716415][ T6933] netlink: 132 bytes leftover after parsing attributes in process `syz.2.472'.
[  390.751924][ T6933] netlink: 'syz.2.472': attribute type 1 has an invalid length.
[  390.854095][ T6942] syz.2.476[6942] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  390.854298][ T6942] syz.2.476[6942] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  391.131888][ T6954] netlink: 132 bytes leftover after parsing attributes in process `syz.0.482'.
[  391.719097][ T6980] IPv6: Can't replace route, no match found
[  391.751752][ T6983] netlink: 132 bytes leftover after parsing attributes in process `syz.3.494'.
[  393.464943][ T7069] netlink: 60 bytes leftover after parsing attributes in process `syz.2.530'.
[  393.477459][ T7069] netlink: 60 bytes leftover after parsing attributes in process `syz.2.530'.
[  393.490084][ T7066] netlink: 60 bytes leftover after parsing attributes in process `syz.2.530'.
[  393.537338][ T7071] netlink: 132 bytes leftover after parsing attributes in process `syz.3.532'.
[  394.547456][ T7121] netlink: 'syz.0.556': attribute type 21 has an invalid length.
[  394.558749][ T7121] netlink: 132 bytes leftover after parsing attributes in process `syz.0.556'.
[  394.571842][ T7121] netlink: 'syz.0.556': attribute type 1 has an invalid length.
[  394.580215][ T7120] netlink: 'syz.3.555': attribute type 10 has an invalid length.
[  394.599417][ T7120] netlink: 40 bytes leftover after parsing attributes in process `syz.3.555'.
[  394.839975][ T7134] netlink: 'syz.0.563': attribute type 21 has an invalid length.
[  394.849185][ T7134] netlink: 'syz.0.563': attribute type 1 has an invalid length.
[  395.804683][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  395.818211][ T5839] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  395.827417][ T5839] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  395.845601][ T5839] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  395.859275][ T5839] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  395.869677][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  395.995471][ T7163] syz.0.576[7163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  395.995594][ T7163] syz.0.576[7163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  396.268076][ T7154] chnl_net:caif_netlink_parms(): no params data found
[  396.355940][ T7176] syz.2.582[7176] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  396.356059][ T7176] syz.2.582[7176] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  396.594852][ T7154] bridge0: port 1(bridge_slave_0) entered blocking state
[  396.652307][ T7154] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.659671][ T7154] bridge_slave_0: entered allmulticast mode
[  396.690456][ T7154] bridge_slave_0: entered promiscuous mode
[  396.832483][ T7154] bridge0: port 2(bridge_slave_1) entered blocking state
[  396.855656][ T7154] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.885562][ T7154] bridge_slave_1: entered allmulticast mode
[  396.902905][ T7154] bridge_slave_1: entered promiscuous mode
[  397.007521][ T7154] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  397.115953][ T5903] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.155593][ T7154] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  397.228614][ T7154] team0: Port device team_slave_0 added
[  397.258720][ T5903] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.363389][ T7154] team0: Port device team_slave_1 added
[  397.414764][ T5903] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.437543][ T7213] wg2: left promiscuous mode
[  397.451449][ T7213] wg2: left allmulticast mode
[  397.546072][ T5903] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  397.571533][ T7154] batman_adv: batadv0: Adding interface: batadv_slave_0
[  397.578648][ T7154] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  397.629629][ T7154] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  397.656678][ T7154] batman_adv: batadv0: Adding interface: batadv_slave_1
[  397.668117][ T7154] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  397.698735][ T7154] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  397.870936][ T7154] hsr_slave_0: entered promiscuous mode
[  397.894245][ T7154] hsr_slave_1: entered promiscuous mode
[  397.913622][ T7154] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  397.932572][ T7154] Cannot create hsr debugfs directory
[  397.951621][ T5838] Bluetooth: hci4: command tx timeout
[  399.214691][ T7154] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  399.321478][ T7154] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  399.404838][ T7154] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  399.428358][ T7154] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  399.692861][ T7308] pim6reg1: entered promiscuous mode
[  399.698247][ T7308] pim6reg1: entered allmulticast mode
[  400.031551][ T5838] Bluetooth: hci4: command tx timeout
[  400.389991][ T7154] 8021q: adding VLAN 0 to HW filter on device bond0
[  400.509338][ T5903] hsr_slave_0: left promiscuous mode
[  400.522132][ T5903] hsr_slave_1: left promiscuous mode
[  400.542787][ T5903] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  400.550555][ T5903] batman_adv: batadv0: Removing interface: batadv_slave_0
[  400.573057][ T5903] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  400.580556][ T5903] batman_adv: batadv0: Removing interface: batadv_slave_1
[  400.610188][ T5903] bridge_slave_1: left allmulticast mode
[  400.622257][ T5903] bridge_slave_1: left promiscuous mode
[  400.629885][ T5903] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.711030][ T5903] bridge_slave_0: left allmulticast mode
[  400.723892][ T5903] bridge_slave_0: left promiscuous mode
[  400.734245][ T5903] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.772633][ T5903] veth1_macvtap: left promiscuous mode
[  400.779931][ T5903] veth0_macvtap: left promiscuous mode
[  400.798821][ T5903] veth1_vlan: left promiscuous mode
[  400.811247][ T5903] veth0_vlan: left promiscuous mode
[  401.656387][ T5903] team0 (unregistering): Port device team_slave_1 removed
[  401.710359][ T5903] team0 (unregistering): Port device team_slave_0 removed
[  401.757188][ T5903] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  401.861903][ T5903] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  402.124020][ T5838] Bluetooth: hci4: command tx timeout
[  402.209628][ T5903] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  402.420388][ T5903] bond0 (unregistering): Released all slaves
[  402.488168][ T7154] 8021q: adding VLAN 0 to HW filter on device team0
[  402.642569][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.649913][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.702390][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.709632][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.838500][ T7154] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  402.870820][ T7379] netlink: 'syz.3.657': attribute type 21 has an invalid length.
[  402.907317][ T7379] __nla_validate_parse: 1 callbacks suppressed
[  402.907332][ T7379] netlink: 132 bytes leftover after parsing attributes in process `syz.3.657'.
[  402.927440][ T7379] netlink: 'syz.3.657': attribute type 1 has an invalid length.
[  403.908179][ T7154] 8021q: adding VLAN 0 to HW filter on device batadv0
[  404.191829][ T5838] Bluetooth: hci4: command tx timeout
[  404.401624][ T7418] syz.0.665[7418] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.401759][ T7418] syz.0.665[7418] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.728435][ T7154] veth0_vlan: entered promiscuous mode
[  404.833375][ T7154] veth1_vlan: entered promiscuous mode
[  404.943258][ T7154] veth0_macvtap: entered promiscuous mode
[  404.963076][ T7438] netlink: 'syz.0.672': attribute type 21 has an invalid length.
[  405.058208][ T7154] veth1_macvtap: entered promiscuous mode
[  405.125643][ T7154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.163110][ T7154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.180963][ T7154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  405.204412][ T7154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.243442][ T7154] batman_adv: batadv0: Interface activated: batadv_slave_0
[  405.273448][ T7154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  405.293859][ T7154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.320542][ T7154] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  405.348851][ T7154] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  405.374406][ T7154] batman_adv: batadv0: Interface activated: batadv_slave_1
[  405.388541][ T7459] netlink: 'syz.0.680': attribute type 10 has an invalid length.
[  405.416901][ T7459] team0: Device hsr_slave_0 failed to register rx_handler
[  405.514578][ T7154] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  405.538333][ T7154] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  405.556575][ T7154] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  405.581219][ T7154] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  405.749354][ T7472] pim6reg1: entered promiscuous mode
[  405.751128][ T2927] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.771223][ T7472] pim6reg1: entered allmulticast mode
[  405.796266][ T2927] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.950062][ T5915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.974517][ T5915] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  408.667882][ T7590] netlink: 'syz.2.717': attribute type 10 has an invalid length.
[  408.688087][ T7590] team0: Device hsr_slave_0 failed to register rx_handler
[  409.034901][ T7609] warning: `syz.0.725' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  409.442333][ T7627] netlink: 'syz.0.732': attribute type 21 has an invalid length.
[  409.481091][ T7627] netlink: 'syz.0.732': attribute type 6 has an invalid length.
[  409.488877][ T7627] netlink: 12 bytes leftover after parsing attributes in process `syz.0.732'.
[  409.530318][ T7627] IPv6: NLM_F_CREATE should be specified when creating new route
[  409.551322][ T7627] IPv6: Can't replace route, no match found
[  410.090501][ T7663] netlink: 'syz.4.746': attribute type 10 has an invalid length.
[  410.117718][ T7663] netlink: 'syz.4.746': attribute type 10 has an invalid length.
[  410.518541][ T7687] netlink: 'syz.3.756': attribute type 10 has an invalid length.
[  410.533183][ T7687] team0: Device dummy0 is up. Set it down before adding it as a team port
[  410.919105][ T7712] syzkaller0: create flow: hash 1877308728 index 1
[  410.979699][   T11] syzkaller0: tun_net_xmit 76
[  410.989296][   T11] syzkaller0: tun_net_xmit 48
[  411.001327][ T5874] syzkaller0: tun_net_xmit 76
[  411.051436][   T23] syzkaller0: tun_net_xmit 76
[  411.076092][ T7715] tap0: tun_chr_ioctl cmd 1074025677
[  411.082254][ T7715] tap0: linktype set to 778
[  411.088594][ T7717] ªªªªªª: renamed from bond_slave_0 (while UP)
[  411.091338][ T5813] syzkaller0: tun_net_xmit 76
[  411.141656][ T7703] syzkaller0: delete flow: hash 1877308728 index 1
[  411.768133][ T7751] netlink: 60 bytes leftover after parsing attributes in process `syz.4.780'.
[  413.064499][ T7751] netlink: 60 bytes leftover after parsing attributes in process `syz.4.780'.
[  415.581703][ T7761] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.783'.
[  415.593516][ T7763] netlink: 60 bytes leftover after parsing attributes in process `syz.0.784'.
[  415.610045][ T7775] netlink: 60 bytes leftover after parsing attributes in process `syz.4.787'.
[  415.898384][ T7788] bridge0: port 3(hsr_slave_1) entered blocking state
[  415.917812][ T7788] bridge0: port 3(hsr_slave_1) entered disabled state
[  415.925790][ T7788] hsr_slave_1: entered allmulticast mode
[  415.955501][ T7788] hsr_slave_1: left allmulticast mode
[  416.075620][ T7797] netlink: 'syz.0.791': attribute type 9 has an invalid length.
[  416.094848][ T7797] netlink: 379 bytes leftover after parsing attributes in process `syz.0.791'.
[  416.363977][ T7801] netlink: 168 bytes leftover after parsing attributes in process `syz.2.792'.
[  416.623444][ T7809] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.796'.
[  416.816771][ T7818] delete_channel: no stack
[  416.837761][ T7821] netlink: 60 bytes leftover after parsing attributes in process `syz.0.799'.
[  417.702276][ T7848] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.809'.
[  425.845117][ T7866] netlink: 60 bytes leftover after parsing attributes in process `syz.4.813'.
[  426.225301][ T7879] FAULT_INJECTION: forcing a failure.
[  426.225301][ T7879] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  426.261767][ T7879] CPU: 1 PID: 7879 Comm: syz.4.818 Not tainted 6.6.102-syzkaller #0
[  426.269808][ T7879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  426.279900][ T7879] Call Trace:
[  426.283191][ T7879]  <TASK>
[  426.286125][ T7879]  dump_stack_lvl+0x16c/0x230
[  426.290804][ T7879]  ? show_regs_print_info+0x20/0x20
[  426.296001][ T7879]  ? load_image+0x3b0/0x3b0
[  426.300502][ T7879]  ? __might_fault+0xaa/0x120
[  426.305195][ T7879]  ? __lock_acquire+0x7c80/0x7c80
[  426.310334][ T7879]  should_fail_ex+0x39d/0x4d0
[  426.315031][ T7879]  _copy_to_user+0x2f/0xa0
[  426.319448][ T7879]  bpf_test_finish+0x24b/0x620
[  426.324216][ T7879]  ? bpf_test_timer_leave+0x110/0x150
[  426.329595][ T7879]  ? convert_skb_to___skb+0x420/0x420
[  426.335050][ T7879]  ? read_tsc+0x9/0x20
[  426.339119][ T7879]  bpf_prog_test_run_flow_dissector+0x4a1/0x600
[  426.345367][ T7879]  ? xdp_convert_buff_to_md+0x200/0x200
[  426.350996][ T7879]  ? __fget_files+0x28/0x4d0
[  426.355770][ T7879]  ? xdp_convert_buff_to_md+0x200/0x200
[  426.361440][ T7879]  bpf_prog_test_run+0x321/0x390
[  426.366387][ T7879]  __sys_bpf+0x440/0x800
[  426.370647][ T7879]  ? bpf_link_show_fdinfo+0x350/0x350
[  426.376024][ T7879]  ? lock_chain_count+0x20/0x20
[  426.380884][ T7879]  __x64_sys_bpf+0x7c/0x90
[  426.385397][ T7879]  do_syscall_64+0x55/0xb0
[  426.389896][ T7879]  ? clear_bhb_loop+0x40/0x90
[  426.394589][ T7879]  ? clear_bhb_loop+0x40/0x90
[  426.399420][ T7879]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  426.405345][ T7879] RIP: 0033:0x7f3ef9f8ebe9
[  426.409797][ T7879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.429588][ T7879] RSP: 002b:00007f3efad85038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  426.438018][ T7879] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8ebe9
[  426.445983][ T7879] RDX: 0000000000000050 RSI: 0000200000000180 RDI: 000000000000000a
[  426.454013][ T7879] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  426.462152][ T7879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.470127][ T7879] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  426.478120][ T7879]  </TASK>
[  426.803376][ T7892] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.822'.
[  427.430440][ T7923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.826'.
[  427.699198][ T7926] FAULT_INJECTION: forcing a failure.
[  427.699198][ T7926] name failslab, interval 1, probability 0, space 0, times 1
[  427.721779][ T7926] CPU: 1 PID: 7926 Comm: syz.3.827 Not tainted 6.6.102-syzkaller #0
[  427.729888][ T7926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  427.739983][ T7926] Call Trace:
[  427.743277][ T7926]  <TASK>
[  427.746242][ T7926]  dump_stack_lvl+0x16c/0x230
[  427.750933][ T7926]  ? show_regs_print_info+0x20/0x20
[  427.756141][ T7926]  ? load_image+0x3b0/0x3b0
[  427.760678][ T7926]  ? __might_sleep+0xe0/0xe0
[  427.765273][ T7926]  ? __lock_acquire+0x7c80/0x7c80
[  427.770323][ T7926]  should_fail_ex+0x39d/0x4d0
[  427.775100][ T7926]  should_failslab+0x9/0x20
[  427.779688][ T7926]  slab_pre_alloc_hook+0x59/0x310
[  427.784730][ T7926]  ? __request_module+0x2c2/0x5b0
[  427.789754][ T7926]  ? __request_module+0x2c2/0x5b0
[  427.794775][ T7926]  __kmem_cache_alloc_node+0x53/0x260
[  427.800153][ T7926]  ? __request_module+0x2c2/0x5b0
[  427.805172][ T7926]  __kmalloc_node_track_caller+0xa2/0x230
[  427.810926][ T7926]  kstrdup+0x3b/0x80
[  427.815090][ T7926]  __request_module+0x2c2/0x5b0
[  427.819940][ T7926]  ? module_enforce_rwx_sections+0x150/0x150
[  427.825924][ T7926]  ? module_enforce_rwx_sections+0x150/0x150
[  427.831923][ T7926]  ? apparmor_capable+0x137/0x1a0
[  427.836964][ T7926]  ? dev_load+0x21/0x1f0
[  427.841492][ T7926]  dev_ioctl+0x865/0x1170
[  427.845853][ T7926]  sock_ioctl+0x726/0x7a0
[  427.850291][ T7926]  ? sock_poll+0x3d0/0x3d0
[  427.854775][ T7926]  ? bpf_lsm_file_ioctl+0x9/0x10
[  427.859815][ T7926]  ? security_file_ioctl+0x80/0xa0
[  427.864938][ T7926]  ? sock_poll+0x3d0/0x3d0
[  427.869629][ T7926]  __se_sys_ioctl+0xfd/0x170
[  427.874241][ T7926]  do_syscall_64+0x55/0xb0
[  427.878661][ T7926]  ? clear_bhb_loop+0x40/0x90
[  427.883339][ T7926]  ? clear_bhb_loop+0x40/0x90
[  427.888091][ T7926]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  427.893991][ T7926] RIP: 0033:0x7f6cf218ebe9
[  427.898407][ T7926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.918178][ T7926] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  427.926615][ T7926] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  427.934800][ T7926] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000005
[  427.942816][ T7926] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  427.950806][ T7926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.958806][ T7926] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  427.966846][ T7926]  </TASK>
[  428.149176][ T7941] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.832'.
[  428.173208][ T7942] netlink: 48 bytes leftover after parsing attributes in process `syz.2.830'.
[  428.607235][ T7953] netlink: 60 bytes leftover after parsing attributes in process `syz.3.837'.
[  428.678882][ T7955] ref_ctr_offset mismatch. inode: 0xdb offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0xffffff8c
[  429.334839][ T7971] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.843'.
[  429.374423][ T7974] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[  430.390742][ T7986] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  431.537867][ T7992] netlink: 60 bytes leftover after parsing attributes in process `syz.0.848'.
[  431.942163][ T8019] netlink: 1057 bytes leftover after parsing attributes in process `syz.4.853'.
[  431.953357][ T8022] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.855'.
[  432.092031][ T8027] veth1_macvtap: left promiscuous mode
[  432.288690][ T8015] veth1_macvtap: entered promiscuous mode
[  432.331344][ T8015] macsec0: entered promiscuous mode
[  432.361595][ T8015] macsec0: entered allmulticast mode
[  432.366997][ T8015] veth1_macvtap: entered allmulticast mode
[  433.343431][ T8084] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.866'.
[  434.059993][ T8117] netlink: 144 bytes leftover after parsing attributes in process `syz.4.874'.
[  434.253623][ T8122] ±ÿ: renamed from team_slave_1 (while UP)
[  434.361725][ T8119] netlink: 60 bytes leftover after parsing attributes in process `syz.2.876'.
[  434.403809][ T8119] netlink: 60 bytes leftover after parsing attributes in process `syz.2.876'.
[  434.429309][ T8130] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.878'.
[  434.475417][ T8125] netlink: 60 bytes leftover after parsing attributes in process `syz.2.876'.
[  434.488116][ T8117] ref_ctr_offset mismatch. inode: 0xf5 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  434.521468][ T8119] netlink: 60 bytes leftover after parsing attributes in process `syz.2.876'.
[  436.865976][ T8227] __nla_validate_parse: 3 callbacks suppressed
[  436.865993][ T8227] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.902'.
[  437.036046][ T8237] netlink: 763 bytes leftover after parsing attributes in process `syz.3.906'.
[  437.729769][ T8274] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.914'.
[  437.805517][ T8277] netlink: 'syz.3.915': attribute type 21 has an invalid length.
[  437.821493][ T8277] IPv6: NLM_F_CREATE should be specified when creating new route
[  437.843512][ T8277] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  437.850809][ T8277] IPv6: NLM_F_CREATE should be set when creating new route
[  437.858417][ T8277] IPv6: NLM_F_CREATE should be set when creating new route
[  437.866014][ T8277] IPv6: NLM_F_CREATE should be set when creating new route
[  438.399178][ T8299] syzkaller0: entered promiscuous mode
[  438.428091][ T8299] syzkaller0: entered allmulticast mode
[  440.375039][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  440.381639][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  440.626768][ T8319] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.926'.
[  440.666008][ T8345] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  440.702234][ T8347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.934'.
[  440.791337][ T8353] netlink: 132 bytes leftover after parsing attributes in process `syz.0.936'.
[  441.084463][ T8371] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.943'.
[  441.118669][ T8374] netlink: 132 bytes leftover after parsing attributes in process `syz.3.942'.
[  441.632824][ T8388] netlink: 60 bytes leftover after parsing attributes in process `syz.4.949'.
[  443.124858][ T8388] netlink: 60 bytes leftover after parsing attributes in process `syz.4.949'.
[  443.396156][ T8400] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.954'.
[  444.180302][ T8418] bridge0: entered promiscuous mode
[  444.190505][ T8418] bridge0: entered allmulticast mode
[  444.392703][ T8432] netlink: 132 bytes leftover after parsing attributes in process `syz.2.963'.
[  444.411522][ T8432] FAULT_INJECTION: forcing a failure.
[  444.411522][ T8432] name failslab, interval 1, probability 0, space 0, times 0
[  444.461164][ T8432] CPU: 0 PID: 8432 Comm: syz.2.963 Not tainted 6.6.102-syzkaller #0
[  444.469233][ T8432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  444.479582][ T8432] Call Trace:
[  444.482970][ T8432]  <TASK>
[  444.485922][ T8432]  dump_stack_lvl+0x16c/0x230
[  444.490739][ T8432]  ? show_regs_print_info+0x20/0x20
[  444.496191][ T8432]  ? load_image+0x3b0/0x3b0
[  444.500714][ T8432]  ? verify_lock_unused+0x140/0x140
[  444.505951][ T8432]  ? perf_trace_lock+0xf7/0x380
[  444.510848][ T8432]  ? verify_lock_unused+0x140/0x140
[  444.516304][ T8432]  should_fail_ex+0x39d/0x4d0
[  444.521045][ T8432]  should_failslab+0x9/0x20
[  444.525600][ T8432]  slab_pre_alloc_hook+0x59/0x310
[  444.530685][ T8432]  ? sctp_inet6addr_event+0x37f/0x730
[  444.536198][ T8432]  __kmem_cache_alloc_node+0x53/0x260
[  444.541628][ T8432]  ? sctp_inet6addr_event+0x37f/0x730
[  444.547047][ T8432]  kmalloc_trace+0x2a/0xe0
[  444.551525][ T8432]  sctp_inet6addr_event+0x37f/0x730
[  444.556789][ T8432]  notifier_call_chain+0x197/0x390
[  444.561995][ T8432]  ? atomic_notifier_call_chain+0x26/0x180
[  444.567954][ T8432]  atomic_notifier_call_chain+0xda/0x180
[  444.573714][ T8432]  ipv6_add_addr+0xdad/0x1090
[  444.578615][ T8432]  ? ipv6_count_addresses+0x190/0x190
[  444.584021][ T8432]  inet6_addr_add+0x57e/0xb60
[  444.588722][ T8432]  inet6_rtm_newaddr+0x68d/0x940
[  444.593660][ T8432]  ? inet6_dump_ifinfo+0x940/0x940
[  444.598781][ T8432]  ? mutex_lock_nested+0x20/0x20
[  444.603746][ T8432]  ? inet6_dump_ifinfo+0x940/0x940
[  444.608943][ T8432]  rtnetlink_rcv_msg+0x7c7/0xf10
[  444.613877][ T8432]  ? __dev_queue_xmit+0x245/0x35a0
[  444.619098][ T8432]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  444.624256][ T8432]  ? rtnetlink_bind+0x80/0x80
[  444.628940][ T8432]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  444.634923][ T8432]  ? __dev_queue_xmit+0x245/0x35a0
[  444.640039][ T8432]  ? lock_chain_count+0x20/0x20
[  444.644894][ T8432]  ? __local_bh_enable_ip+0x12e/0x1c0
[  444.650268][ T8432]  ? lockdep_hardirqs_on+0x98/0x150
[  444.655556][ T8432]  ? __local_bh_enable_ip+0x12e/0x1c0
[  444.660935][ T8432]  ? _local_bh_enable+0xa0/0xa0
[  444.665866][ T8432]  ? __dev_queue_xmit+0x245/0x35a0
[  444.670971][ T8432]  ? __dev_queue_xmit+0x1449/0x35a0
[  444.676263][ T8432]  ? __dev_queue_xmit+0x245/0x35a0
[  444.681421][ T8432]  ? netlink_deliver_tap+0x2e/0x1b0
[  444.686626][ T8432]  ? perf_trace_lock+0xf7/0x380
[  444.691468][ T8432]  ? __copy_skb_header+0xa7/0x550
[  444.696518][ T8432]  netlink_rcv_skb+0x216/0x480
[  444.701277][ T8432]  ? rtnetlink_bind+0x80/0x80
[  444.705968][ T8432]  ? netlink_ack+0x1110/0x1110
[  444.710744][ T8432]  ? __lock_acquire+0x7c80/0x7c80
[  444.715782][ T8432]  ? netlink_deliver_tap+0x2e/0x1b0
[  444.720993][ T8432]  netlink_unicast+0x751/0x8d0
[  444.725778][ T8432]  netlink_sendmsg+0x8c1/0xbe0
[  444.730596][ T8432]  ? netlink_getsockopt+0x580/0x580
[  444.735945][ T8432]  ? aa_sock_msg_perm+0x94/0x150
[  444.741322][ T8432]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  444.746610][ T8432]  ? security_socket_sendmsg+0x80/0xa0
[  444.752249][ T8432]  ? netlink_getsockopt+0x580/0x580
[  444.757535][ T8432]  ____sys_sendmsg+0x5bf/0x950
[  444.762390][ T8432]  ? __asan_memset+0x22/0x40
[  444.766995][ T8432]  ? __sys_sendmsg_sock+0x30/0x30
[  444.772107][ T8432]  ? __import_iovec+0x5f2/0x860
[  444.776966][ T8432]  ? import_iovec+0x73/0xa0
[  444.781472][ T8432]  ___sys_sendmsg+0x220/0x290
[  444.786147][ T8432]  ? __sys_sendmsg+0x270/0x270
[  444.790917][ T8432]  ? __lock_acquire+0x7c80/0x7c80
[  444.795954][ T8432]  __se_sys_sendmsg+0x1a5/0x270
[  444.800803][ T8432]  ? __x64_sys_sendmsg+0x80/0x80
[  444.805748][ T8432]  ? lockdep_hardirqs_on+0x98/0x150
[  444.811406][ T8432]  do_syscall_64+0x55/0xb0
[  444.815952][ T8432]  ? clear_bhb_loop+0x40/0x90
[  444.820636][ T8432]  ? clear_bhb_loop+0x40/0x90
[  444.825310][ T8432]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  444.831219][ T8432] RIP: 0033:0x7f5e71d8ebe9
[  444.835630][ T8432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.855449][ T8432] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  444.864391][ T8432] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  444.872366][ T8432] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  444.880331][ T8432] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  444.888305][ T8432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  444.896272][ T8432] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  444.904252][ T8432]  </TASK>
[  444.955382][ T8434] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.964'.
[  445.218768][ T8449] netlink: 'syz.3.969': attribute type 10 has an invalid length.
[  445.259622][ T8449] 8021q: adding VLAN 0 to HW filter on device bond0
[  445.304149][ T8449] team0: Port device bond0 added
[  445.347428][ T8453] netlink: 164 bytes leftover after parsing attributes in process `syz.0.971'.
[  445.416952][ T8452] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.426284][ T8452] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.502992][ T8452] bridge0: entered allmulticast mode
[  445.547875][ T8458] netlink: 202920 bytes leftover after parsing attributes in process `syz.3.973'.
[  445.657351][ T8460] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.974'.
[  445.712526][ T8462] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.975'.
[  445.746537][ T8462] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  446.129585][ T8484] netlink: 'syz.2.983': attribute type 12 has an invalid length.
[  446.151149][ T8484] netlink: 132 bytes leftover after parsing attributes in process `syz.2.983'.
[  446.160283][ T8484] FAULT_INJECTION: forcing a failure.
[  446.160283][ T8484] name failslab, interval 1, probability 0, space 0, times 0
[  446.201163][ T8484] CPU: 0 PID: 8484 Comm: syz.2.983 Not tainted 6.6.102-syzkaller #0
[  446.209228][ T8484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  446.219411][ T8484] Call Trace:
[  446.222718][ T8484]  <TASK>
[  446.225674][ T8484]  dump_stack_lvl+0x16c/0x230
[  446.230404][ T8484]  ? show_regs_print_info+0x20/0x20
[  446.235732][ T8484]  ? load_image+0x3b0/0x3b0
[  446.240306][ T8484]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  446.246354][ T8484]  ? lock_chain_count+0x20/0x20
[  446.251259][ T8484]  should_fail_ex+0x39d/0x4d0
[  446.256084][ T8484]  should_failslab+0x9/0x20
[  446.260637][ T8484]  slab_pre_alloc_hook+0x59/0x310
[  446.263920][ T8490] netlink: 'syz.3.986': attribute type 29 has an invalid length.
[  446.265679][ T8484]  kmem_cache_alloc_node+0x60/0x330
[  446.278633][ T8484]  ? __alloc_skb+0x108/0x2c0
[  446.283246][ T8484]  __alloc_skb+0x108/0x2c0
[  446.287677][ T8484]  ? __neigh_notify+0x29/0x300
[  446.292438][ T8484]  __neigh_notify+0x15c/0x300
[  446.297126][ T8484]  __neigh_update+0x1e4a/0x2520
[  446.302040][ T8484]  neigh_add+0x9c2/0xd20
[  446.306323][ T8484]  ? do_raw_spin_unlock+0x121/0x230
[  446.311556][ T8484]  ? neigh_proc_dointvec_unres_qlen+0x270/0x270
[  446.317839][ T8484]  ? __mutex_lock+0x4e8/0xcc0
[  446.322577][ T8484]  ? neigh_proc_dointvec_unres_qlen+0x270/0x270
[  446.328857][ T8484]  rtnetlink_rcv_msg+0x7c7/0xf10
[  446.333847][ T8484]  ? rtnetlink_rcv_msg+0x1eb/0xf10
[  446.338981][ T8484]  ? lockdep_hardirqs_on+0x98/0x150
[  446.344188][ T8484]  ? rtnetlink_bind+0x80/0x80
[  446.348866][ T8484]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  446.354871][ T8484]  ? __dev_queue_xmit+0x245/0x35a0
[  446.360343][ T8484]  ? lock_chain_count+0x20/0x20
[  446.365221][ T8484]  ? __local_bh_enable_ip+0x12e/0x1c0
[  446.370627][ T8484]  ? lockdep_hardirqs_on+0x98/0x150
[  446.375851][ T8484]  ? __local_bh_enable_ip+0x12e/0x1c0
[  446.381377][ T8484]  ? _local_bh_enable+0xa0/0xa0
[  446.386283][ T8484]  ? __dev_queue_xmit+0x245/0x35a0
[  446.391513][ T8484]  ? __dev_queue_xmit+0x1449/0x35a0
[  446.396732][ T8484]  ? __dev_queue_xmit+0x245/0x35a0
[  446.401876][ T8484]  ? ref_tracker_free+0x634/0x7d0
[  446.406936][ T8484]  ? __copy_skb_header+0xa7/0x550
[  446.411984][ T8484]  netlink_rcv_skb+0x216/0x480
[  446.417035][ T8484]  ? rtnetlink_bind+0x80/0x80
[  446.421744][ T8484]  ? netlink_ack+0x1110/0x1110
[  446.426514][ T8484]  ? __lock_acquire+0x7c80/0x7c80
[  446.431541][ T8484]  ? netlink_deliver_tap+0x2e/0x1b0
[  446.436741][ T8484]  netlink_unicast+0x751/0x8d0
[  446.441511][ T8484]  netlink_sendmsg+0x8c1/0xbe0
[  446.446294][ T8484]  ? netlink_getsockopt+0x580/0x580
[  446.451540][ T8484]  ? aa_sock_msg_perm+0x94/0x150
[  446.456616][ T8484]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  446.461993][ T8484]  ? security_socket_sendmsg+0x80/0xa0
[  446.467715][ T8484]  ? netlink_getsockopt+0x580/0x580
[  446.473020][ T8484]  ____sys_sendmsg+0x5bf/0x950
[  446.477904][ T8484]  ? __asan_memset+0x22/0x40
[  446.482588][ T8484]  ? __sys_sendmsg_sock+0x30/0x30
[  446.487703][ T8484]  ? __import_iovec+0x5f2/0x860
[  446.492670][ T8484]  ? import_iovec+0x73/0xa0
[  446.497193][ T8484]  ___sys_sendmsg+0x220/0x290
[  446.501899][ T8484]  ? __sys_sendmsg+0x270/0x270
[  446.506725][ T8484]  ? __lock_acquire+0x7c80/0x7c80
[  446.511815][ T8484]  __se_sys_sendmsg+0x1a5/0x270
[  446.516695][ T8484]  ? __x64_sys_sendmsg+0x80/0x80
[  446.521828][ T8484]  ? lockdep_hardirqs_on+0x98/0x150
[  446.527037][ T8484]  do_syscall_64+0x55/0xb0
[  446.531457][ T8484]  ? clear_bhb_loop+0x40/0x90
[  446.536138][ T8484]  ? clear_bhb_loop+0x40/0x90
[  446.540832][ T8484]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  446.546758][ T8484] RIP: 0033:0x7f5e71d8ebe9
[  446.551196][ T8484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.570979][ T8484] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  446.579394][ T8484] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  446.587397][ T8484] RDX: 0000000000000700 RSI: 0000200000000940 RDI: 0000000000000003
[  446.595396][ T8484] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  446.603374][ T8484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  446.611350][ T8484] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  446.619405][ T8484]  </TASK>
[  446.644250][ T8486] netlink: 'syz.0.984': attribute type 21 has an invalid length.
[  446.662646][ T8490] netlink: 'syz.3.986': attribute type 29 has an invalid length.
[  446.733592][ T8493] netlink: 'syz.3.986': attribute type 29 has an invalid length.
[  446.844474][ T8497] netlink: 'syz.0.988': attribute type 29 has an invalid length.
[  446.868923][ T8497] netlink: 'syz.0.988': attribute type 29 has an invalid length.
[  446.882773][ T8497] FAULT_INJECTION: forcing a failure.
[  446.882773][ T8497] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  446.882802][ T8498] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.987'.
[  446.910286][ T8497] CPU: 1 PID: 8497 Comm: syz.0.988 Not tainted 6.6.102-syzkaller #0
[  446.918332][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  446.928538][ T8497] Call Trace:
[  446.931860][ T8497]  <TASK>
[  446.934937][ T8497]  dump_stack_lvl+0x16c/0x230
[  446.936049][ T8502] netlink: 'syz.4.989': attribute type 10 has an invalid length.
[  446.939903][ T8497]  ? show_regs_print_info+0x20/0x20
[  446.952991][ T8497]  ? load_image+0x3b0/0x3b0
[  446.957529][ T8497]  ? __might_fault+0xaa/0x120
[  446.962233][ T8497]  ? __lock_acquire+0x7c80/0x7c80
[  446.967302][ T8497]  should_fail_ex+0x39d/0x4d0
[  446.972032][ T8497]  _copy_from_user+0x2f/0xe0
[  446.976653][ T8497]  ___sys_recvmsg+0x12f/0x510
[  446.981428][ T8497]  ? __sys_recvmsg+0x270/0x270
[  446.986189][ T8497]  ? ksys_write+0x1c1/0x250
[  446.990717][ T8497]  ? __fget_files+0x44a/0x4d0
[  446.995512][ T8497]  __x64_sys_recvmsg+0x1f2/0x2c0
[  447.000461][ T8497]  ? ___sys_recvmsg+0x510/0x510
[  447.005337][ T8497]  ? lockdep_hardirqs_on+0x98/0x150
[  447.010542][ T8497]  do_syscall_64+0x55/0xb0
[  447.014958][ T8497]  ? clear_bhb_loop+0x40/0x90
[  447.019630][ T8497]  ? clear_bhb_loop+0x40/0x90
[  447.024308][ T8497]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  447.030207][ T8497] RIP: 0033:0x7f547738ebe9
[  447.034630][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  447.054244][ T8497] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  447.062695][ T8497] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  447.070677][ T8497] RDX: 0000000000002000 RSI: 00002000000007c0 RDI: 0000000000000003
[  447.078681][ T8497] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  447.086862][ T8497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  447.095256][ T8497] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  447.103387][ T8497]  </TASK>
[  448.296618][ T8559] FAULT_INJECTION: forcing a failure.
[  448.296618][ T8559] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  448.311225][ T8559] CPU: 1 PID: 8559 Comm: syz.0.1016 Not tainted 6.6.102-syzkaller #0
[  448.319340][ T8559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  448.329409][ T8559] Call Trace:
[  448.332683][ T8559]  <TASK>
[  448.335620][ T8559]  dump_stack_lvl+0x16c/0x230
[  448.340297][ T8559]  ? show_regs_print_info+0x20/0x20
[  448.345594][ T8559]  ? load_image+0x3b0/0x3b0
[  448.350099][ T8559]  ? __lock_acquire+0x7c80/0x7c80
[  448.355120][ T8559]  ? _copy_from_iter+0x1c1/0x1290
[  448.360254][ T8559]  should_fail_ex+0x39d/0x4d0
[  448.365015][ T8559]  prepare_alloc_pages+0x1e2/0x5f0
[  448.370174][ T8559]  __alloc_pages+0x127/0x460
[  448.374762][ T8559]  ? zone_statistics+0x170/0x170
[  448.379691][ T8559]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  448.385060][ T8559]  ? copy_page_from_iter+0xe8/0x100
[  448.390257][ T8559]  pipe_write+0x63b/0x1af0
[  448.394883][ T8559]  ? pipe_read+0x12a0/0x12a0
[  448.399750][ T8559]  ? end_current_label_crit_section+0x149/0x170
[  448.406001][ T8559]  ? common_file_perm+0x198/0x1f0
[  448.411030][ T8559]  vfs_write+0x43b/0x940
[  448.415278][ T8559]  ? file_end_write+0x250/0x250
[  448.420137][ T8559]  ? __fget_files+0x44a/0x4d0
[  448.424816][ T8559]  ? __fdget_pos+0x1d8/0x330
[  448.429483][ T8559]  ? ksys_write+0x75/0x250
[  448.433902][ T8559]  ksys_write+0x147/0x250
[  448.438255][ T8559]  ? __ia32_sys_read+0x90/0x90
[  448.443029][ T8559]  ? trace_sys_enter+0x1f/0x80
[  448.447819][ T8559]  do_syscall_64+0x55/0xb0
[  448.452327][ T8559]  ? clear_bhb_loop+0x40/0x90
[  448.457012][ T8559]  ? clear_bhb_loop+0x40/0x90
[  448.461702][ T8559]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  448.467593][ T8559] RIP: 0033:0x7f547738ebe9
[  448.472009][ T8559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.491711][ T8559] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  448.500128][ T8559] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  448.508092][ T8559] RDX: 00000000fffffdef RSI: 00002000000001c0 RDI: 0000000000000000
[  448.516227][ T8559] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  448.524192][ T8559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  448.532180][ T8559] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  448.540770][ T8559]  </TASK>
[  448.875320][ T8572] FAULT_INJECTION: forcing a failure.
[  448.875320][ T8572] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.920922][ T8572] CPU: 0 PID: 8572 Comm: syz.0.1022 Not tainted 6.6.102-syzkaller #0
[  448.929158][ T8572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  448.939264][ T8572] Call Trace:
[  448.942803][ T8572]  <TASK>
[  448.945782][ T8572]  dump_stack_lvl+0x16c/0x230
[  448.950568][ T8572]  ? show_regs_print_info+0x20/0x20
[  448.955843][ T8572]  ? load_image+0x3b0/0x3b0
[  448.960770][ T8572]  ? __lock_acquire+0x7c80/0x7c80
[  448.965847][ T8572]  ? snprintf+0xdb/0x120
[  448.970144][ T8572]  should_fail_ex+0x39d/0x4d0
[  448.975018][ T8572]  _copy_to_user+0x2f/0xa0
[  448.979573][ T8572]  simple_read_from_buffer+0xe7/0x150
[  448.985082][ T8572]  proc_fail_nth_read+0x1e3/0x250
[  448.990236][ T8572]  ? proc_fault_inject_write+0x340/0x340
[  448.995931][ T8572]  ? fsnotify_perm+0x271/0x5e0
[  449.000811][ T8572]  ? proc_fault_inject_write+0x340/0x340
[  449.006456][ T8572]  vfs_read+0x27e/0x920
[  449.010650][ T8572]  ? kernel_read+0x1e0/0x1e0
[  449.015259][ T8572]  ? __fget_files+0x28/0x4d0
[  449.019869][ T8572]  ? __fget_files+0x44a/0x4d0
[  449.024679][ T8572]  ? __fdget_pos+0x2a3/0x330
[  449.029296][ T8572]  ? ksys_read+0x75/0x250
[  449.033637][ T8572]  ksys_read+0x147/0x250
[  449.037896][ T8572]  ? vfs_write+0x940/0x940
[  449.042337][ T8572]  ? lockdep_hardirqs_on+0x98/0x150
[  449.047560][ T8572]  do_syscall_64+0x55/0xb0
[  449.052093][ T8572]  ? clear_bhb_loop+0x40/0x90
[  449.056921][ T8572]  ? clear_bhb_loop+0x40/0x90
[  449.061633][ T8572]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  449.067644][ T8572] RIP: 0033:0x7f547738d5fc
[  449.072079][ T8572] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  449.091881][ T8572] RSP: 002b:00007f5478280030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  449.100562][ T8572] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738d5fc
[  449.108549][ T8572] RDX: 000000000000000f RSI: 00007f54782800a0 RDI: 0000000000000005
[  449.116555][ T8572] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  449.124622][ T8572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.132594][ T8572] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  449.140603][ T8572]  </TASK>
[  449.433544][ T8579] __nla_validate_parse: 4 callbacks suppressed
[  449.433560][ T8579] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1024'.
[  449.544879][ T8583] netlink: 9286 bytes leftover after parsing attributes in process `syz.2.1028'.
[  449.550613][ T8581] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1026'.
[  449.603487][ T8581] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1026'.
[  449.629257][ T8581] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1026'.
[  450.451380][ T8604] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1036'.
[  450.767957][ T8620] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1042'.
[  450.777096][ T8620] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1042'.
[  450.786800][ T8619] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1042'.
[  450.806511][ T8619] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1042'.
[  453.281585][ T5454] dhcpcd (5454) used greatest stack depth: 18928 bytes left
[  454.536012][ T8710] __nla_validate_parse: 3 callbacks suppressed
[  454.536028][ T8710] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1077'.
[  456.092209][ T8740] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1087'.
[  456.569618][ T8761] netlink: 'syz.3.1097': attribute type 10 has an invalid length.
[  457.106629][ T8766] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1099'.
[  457.614413][ T8770] netlink: 21 bytes leftover after parsing attributes in process `syz.3.1101'.
[  457.634188][ T8770] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  457.663818][ T8770] netlink: 'syz.3.1101': attribute type 10 has an invalid length.
[  457.755827][ T8786] FAULT_INJECTION: forcing a failure.
[  457.755827][ T8786] name failslab, interval 1, probability 0, space 0, times 0
[  457.787520][ T8786] CPU: 0 PID: 8786 Comm: syz.2.1105 Not tainted 6.6.102-syzkaller #0
[  457.795734][ T8786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  457.805810][ T8786] Call Trace:
[  457.809195][ T8786]  <TASK>
[  457.812314][ T8786]  dump_stack_lvl+0x16c/0x230
[  457.817994][ T8786]  ? show_regs_print_info+0x20/0x20
[  457.823229][ T8786]  ? load_image+0x3b0/0x3b0
[  457.827791][ T8786]  ? __might_sleep+0xe0/0xe0
[  457.832440][ T8786]  ? __lock_acquire+0x7c80/0x7c80
[  457.837713][ T8786]  should_fail_ex+0x39d/0x4d0
[  457.842451][ T8786]  should_failslab+0x9/0x20
[  457.847000][ T8786]  slab_pre_alloc_hook+0x59/0x310
[  457.852215][ T8786]  ? unix_prepare_fpl+0xee/0x460
[  457.857174][ T8786]  __kmem_cache_alloc_node+0x53/0x260
[  457.862557][ T8786]  ? unix_prepare_fpl+0xee/0x460
[  457.867510][ T8786]  kmalloc_trace+0x2a/0xe0
[  457.871927][ T8786]  unix_prepare_fpl+0xee/0x460
[  457.876706][ T8786]  unix_scm_to_skb+0x2ea/0x470
[  457.881497][ T8786]  unix_dgram_sendmsg+0x5ce/0x1720
[  457.886713][ T8786]  ? aa_sk_perm+0x7fc/0x930
[  457.891251][ T8786]  ? __might_fault+0xaa/0x120
[  457.895931][ T8786]  ? unix_dgram_poll+0x670/0x670
[  457.900859][ T8786]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  457.907274][ T8786]  ? __might_fault+0xaa/0x120
[  457.911988][ T8786]  ? aa_sock_msg_perm+0x94/0x150
[  457.916956][ T8786]  ? unix_seqpacket_sendmsg+0x10c/0x1e0
[  457.922507][ T8786]  ? unix_dgram_peer_wake_me+0x430/0x430
[  457.928149][ T8786]  ____sys_sendmsg+0x5bf/0x950
[  457.932920][ T8786]  ? __sys_sendmsg_sock+0x30/0x30
[  457.937937][ T8786]  ? __import_iovec+0x3fa/0x860
[  457.942797][ T8786]  ? import_iovec+0x73/0xa0
[  457.947343][ T8786]  ___sys_sendmsg+0x220/0x290
[  457.952080][ T8786]  ? __sys_sendmsg+0x270/0x270
[  457.956974][ T8786]  ? __lock_acquire+0x7c80/0x7c80
[  457.962028][ T8786]  __se_sys_sendmsg+0x1a5/0x270
[  457.966912][ T8786]  ? __x64_sys_sendmsg+0x80/0x80
[  457.971974][ T8786]  ? lockdep_hardirqs_on+0x98/0x150
[  457.977199][ T8786]  do_syscall_64+0x55/0xb0
[  457.981630][ T8786]  ? clear_bhb_loop+0x40/0x90
[  457.986426][ T8786]  ? clear_bhb_loop+0x40/0x90
[  457.991122][ T8786]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  457.997030][ T8786] RIP: 0033:0x7f5e71d8ebe9
[  458.001488][ T8786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  458.021381][ T8786] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  458.029899][ T8786] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  458.037863][ T8786] RDX: 0000000000000000 RSI: 0000200000001b00 RDI: 0000000000000005
[  458.045949][ T8786] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  458.054003][ T8786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  458.062077][ T8786] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  458.070177][ T8786]  </TASK>
[  458.173151][ T8795] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1109'.
[  458.355733][ T8806] FAULT_INJECTION: forcing a failure.
[  458.355733][ T8806] name failslab, interval 1, probability 0, space 0, times 0
[  458.370405][ T8806] CPU: 1 PID: 8806 Comm: syz.0.1112 Not tainted 6.6.102-syzkaller #0
[  458.378615][ T8806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  458.388968][ T8806] Call Trace:
[  458.392284][ T8806]  <TASK>
[  458.395275][ T8806]  dump_stack_lvl+0x16c/0x230
[  458.400364][ T8806]  ? verify_lock_unused+0x140/0x140
[  458.405796][ T8806]  ? show_regs_print_info+0x20/0x20
[  458.411028][ T8806]  ? load_image+0x3b0/0x3b0
[  458.415613][ T8806]  ? crng_make_state+0x349/0x700
[  458.420590][ T8806]  ? lockdep_hardirqs_on+0x98/0x150
[  458.425829][ T8806]  should_fail_ex+0x39d/0x4d0
[  458.430547][ T8806]  should_failslab+0x9/0x20
[  458.435070][ T8806]  slab_pre_alloc_hook+0x59/0x310
[  458.440122][ T8806]  ? sctp_add_bind_addr+0x8c/0x360
[  458.445334][ T8806]  __kmem_cache_alloc_node+0x53/0x260
[  458.450919][ T8806]  ? sctp_add_bind_addr+0x8c/0x360
[  458.456055][ T8806]  kmalloc_trace+0x2a/0xe0
[  458.460568][ T8806]  sctp_add_bind_addr+0x8c/0x360
[  458.465521][ T8806]  sctp_copy_local_addr_list+0x30c/0x4e0
[  458.471189][ T8806]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  458.476995][ T8806]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  458.483071][ T8806]  ? sctp_v4_is_any+0x35/0x60
[  458.487743][ T8806]  ? sctp_copy_one_addr+0x8c/0x350
[  458.492946][ T8806]  sctp_bind_addr_copy+0xb3/0x3c0
[  458.497967][ T8806]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  458.504553][ T8806]  sctp_connect_new_asoc+0x2da/0x690
[  458.509934][ T8806]  ? __sctp_connect+0xd20/0xd20
[  458.514783][ T8806]  ? __local_bh_enable_ip+0x12e/0x1c0
[  458.520149][ T8806]  ? _local_bh_enable+0xa0/0xa0
[  458.525054][ T8806]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  458.530858][ T8806]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  458.536661][ T8806]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  458.542204][ T8806]  ? security_sctp_bind_connect+0x89/0xb0
[  458.547922][ T8806]  sctp_sendmsg+0x155c/0x27e0
[  458.552609][ T8806]  ? sctp_getsockopt+0xb60/0xb60
[  458.557590][ T8806]  ? bsearch+0x8e/0xb0
[  458.561706][ T8806]  ? search_extable+0xd0/0xd0
[  458.566426][ T8806]  ? aa_sk_perm+0x7fc/0x930
[  458.571118][ T8806]  ? aa_af_perm+0x2b0/0x2b0
[  458.575623][ T8806]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  458.582069][ T8806]  ? sock_rps_record_flow+0x19/0x400
[  458.587359][ T8806]  ? inet_send_prepare+0x260/0x260
[  458.592461][ T8806]  ? inet_sendmsg+0x7c/0x2f0
[  458.597038][ T8806]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  458.602330][ T8806]  ? security_socket_sendmsg+0x80/0xa0
[  458.608133][ T8806]  ? inet_send_prepare+0x260/0x260
[  458.614111][ T8806]  ____sys_sendmsg+0x5bf/0x950
[  458.618965][ T8806]  ? __asan_memset+0x22/0x40
[  458.623698][ T8806]  ? __sys_sendmsg_sock+0x30/0x30
[  458.628828][ T8806]  ? __import_iovec+0x5f2/0x860
[  458.633691][ T8806]  ? import_iovec+0x73/0xa0
[  458.638308][ T8806]  ___sys_sendmsg+0x220/0x290
[  458.643114][ T8806]  ? __sys_sendmsg+0x270/0x270
[  458.648016][ T8806]  ? exc_page_fault+0x8f/0x110
[  458.652822][ T8806]  __se_sys_sendmsg+0x1a5/0x270
[  458.657972][ T8806]  ? __x64_sys_sendmsg+0x80/0x80
[  458.662945][ T8806]  ? bpf_trace_run2+0x26f/0x3c0
[  458.667815][ T8806]  ? trace_sys_enter+0x1f/0x80
[  458.672612][ T8806]  do_syscall_64+0x55/0xb0
[  458.677079][ T8806]  ? clear_bhb_loop+0x40/0x90
[  458.681791][ T8806]  ? clear_bhb_loop+0x40/0x90
[  458.686518][ T8806]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  458.692440][ T8806] RIP: 0033:0x7f547738ebe9
[  458.696860][ T8806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  458.716486][ T8806] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  458.725196][ T8806] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  458.733518][ T8806] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  458.741579][ T8806] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  458.749539][ T8806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  458.757503][ T8806] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  458.765594][ T8806]  </TASK>
[  458.983205][ T8820] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1116'.
[  459.001877][ T8820] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1116'.
[  459.014866][ T8817] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1116'.
[  459.025894][ T8820] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1116'.
[  459.045874][ T8824] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1119'.
[  459.454265][ T8846] netlink: 'syz.4.1128': attribute type 33 has an invalid length.
[  459.597723][ T8852] veth1_macvtap: entered allmulticast mode
[  459.705166][ T8854] __nla_validate_parse: 2 callbacks suppressed
[  459.705188][ T8854] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1132'.
[  460.149654][ T8871] FAULT_INJECTION: forcing a failure.
[  460.149654][ T8871] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  460.155665][ T8873] netlink: 144316 bytes leftover after parsing attributes in process `syz.2.1140'.
[  460.164118][ T8871] CPU: 0 PID: 8871 Comm: syz.4.1139 Not tainted 6.6.102-syzkaller #0
[  460.180903][ T8871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  460.186936][ T8873] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1140'.
[  460.191157][ T8871] Call Trace:
[  460.191170][ T8871]  <TASK>
[  460.191179][ T8871]  dump_stack_lvl+0x16c/0x230
[  460.191212][ T8871]  ? show_regs_print_info+0x20/0x20
[  460.191232][ T8871]  ? load_image+0x3b0/0x3b0
[  460.191305][ T8871]  ? __lock_acquire+0x7c80/0x7c80
[  460.226753][ T8871]  ? snprintf+0xdb/0x120
[  460.231299][ T8871]  should_fail_ex+0x39d/0x4d0
[  460.235993][ T8871]  _copy_to_user+0x2f/0xa0
[  460.240409][ T8871]  simple_read_from_buffer+0xe7/0x150
[  460.245790][ T8871]  proc_fail_nth_read+0x1e3/0x250
[  460.250853][ T8871]  ? proc_fault_inject_write+0x340/0x340
[  460.256598][ T8871]  ? fsnotify_perm+0x271/0x5e0
[  460.261390][ T8871]  ? proc_fault_inject_write+0x340/0x340
[  460.267032][ T8871]  vfs_read+0x27e/0x920
[  460.271222][ T8871]  ? kernel_read+0x1e0/0x1e0
[  460.275823][ T8871]  ? __fget_files+0x28/0x4d0
[  460.280428][ T8871]  ? __fget_files+0x44a/0x4d0
[  460.285164][ T8871]  ? __fdget_pos+0x2a3/0x330
[  460.289852][ T8871]  ? ksys_read+0x75/0x250
[  460.294188][ T8871]  ksys_read+0x147/0x250
[  460.298444][ T8871]  ? vfs_write+0x940/0x940
[  460.303038][ T8871]  ? lockdep_hardirqs_on+0x98/0x150
[  460.308357][ T8871]  do_syscall_64+0x55/0xb0
[  460.312885][ T8871]  ? clear_bhb_loop+0x40/0x90
[  460.317649][ T8871]  ? clear_bhb_loop+0x40/0x90
[  460.322347][ T8871]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  460.328241][ T8871] RIP: 0033:0x7f3ef9f8d5fc
[  460.332659][ T8871] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  460.352277][ T8871] RSP: 002b:00007f3efad85030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  460.360797][ T8871] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8d5fc
[  460.368951][ T8871] RDX: 000000000000000f RSI: 00007f3efad850a0 RDI: 0000000000000007
[  460.376963][ T8871] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  460.385063][ T8871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  460.394754][ T8871] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  460.402943][ T8871]  </TASK>
[  460.574490][ T8882] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1142'.
[  460.789742][ T8897] netlink: 'syz.0.1149': attribute type 21 has an invalid length.
[  460.891455][ T8900] FAULT_INJECTION: forcing a failure.
[  460.891455][ T8900] name failslab, interval 1, probability 0, space 0, times 0
[  460.915011][ T8900] CPU: 1 PID: 8900 Comm: syz.4.1150 Not tainted 6.6.102-syzkaller #0
[  460.923301][ T8900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  460.933401][ T8900] Call Trace:
[  460.936707][ T8900]  <TASK>
[  460.939704][ T8900]  dump_stack_lvl+0x16c/0x230
[  460.944507][ T8900]  ? trace_event_raw_event_lock_acquire+0x2a0/0x2a0
[  460.951338][ T8900]  ? show_regs_print_info+0x20/0x20
[  460.956666][ T8900]  ? load_image+0x3b0/0x3b0
[  460.961401][ T8900]  should_fail_ex+0x39d/0x4d0
[  460.966138][ T8900]  should_failslab+0x9/0x20
[  460.970666][ T8900]  slab_pre_alloc_hook+0x59/0x310
[  460.975900][ T8900]  ? __hw_addr_add_ex+0x1f4/0x760
[  460.980958][ T8900]  __kmem_cache_alloc_node+0x53/0x260
[  460.986332][ T8900]  ? __hw_addr_add_ex+0x1f4/0x760
[  460.991609][ T8900]  kmalloc_trace+0x2a/0xe0
[  460.996052][ T8900]  __hw_addr_add_ex+0x1f4/0x760
[  461.001294][ T8900]  dev_addr_init+0x150/0x230
[  461.005994][ T8900]  ? dev_addr_flush+0x210/0x210
[  461.010929][ T8900]  alloc_netdev_mqs+0x2e4/0x1040
[  461.015866][ T8900]  ? IP6_ECN_decapsulate+0x1790/0x1790
[  461.021352][ T8900]  ip6_tnl_locate+0x656/0x800
[  461.026089][ T8900]  ? ip6_tnl_parm_from_user+0x340/0x340
[  461.031670][ T8900]  ? __might_fault+0xaa/0x120
[  461.036385][ T8900]  ? __might_fault+0xc6/0x120
[  461.041116][ T8900]  ? __might_fault+0xaa/0x120
[  461.045822][ T8900]  ? ip6_tnl_siocdevprivate+0x605/0xac0
[  461.051395][ T8900]  ip6_tnl_siocdevprivate+0x629/0xac0
[  461.056794][ T8900]  ? ip6_tnl_start_xmit+0x1140/0x1140
[  461.062186][ T8900]  ? rcu_is_watching+0x15/0xb0
[  461.066969][ T8900]  ? full_name_hash+0x92/0xe0
[  461.071677][ T8900]  dev_ifsioc+0xae6/0xe20
[  461.076130][ T8900]  ? dev_ioctl+0x1170/0x1170
[  461.080759][ T8900]  ? dev_load+0x21/0x1f0
[  461.085012][ T8900]  ? dev_load+0x21/0x1f0
[  461.089268][ T8900]  dev_ioctl+0x87a/0x1170
[  461.093931][ T8900]  sock_ioctl+0x726/0x7a0
[  461.099066][ T8900]  ? sock_poll+0x3d0/0x3d0
[  461.103908][ T8900]  ? bpf_lsm_file_ioctl+0x9/0x10
[  461.108956][ T8900]  ? security_file_ioctl+0x80/0xa0
[  461.114078][ T8900]  ? sock_poll+0x3d0/0x3d0
[  461.118495][ T8900]  __se_sys_ioctl+0xfd/0x170
[  461.123091][ T8900]  do_syscall_64+0x55/0xb0
[  461.127509][ T8900]  ? clear_bhb_loop+0x40/0x90
[  461.132217][ T8900]  ? clear_bhb_loop+0x40/0x90
[  461.136890][ T8900]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  461.142810][ T8900] RIP: 0033:0x7f3ef9f8ebe9
[  461.147306][ T8900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.166942][ T8900] RSP: 002b:00007f3efad85038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  461.175375][ T8900] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8ebe9
[  461.183355][ T8900] RDX: 0000200000000080 RSI: 00000000000089f1 RDI: 0000000000000008
[  461.191341][ T8900] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  461.199323][ T8900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  461.207465][ T8900] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  461.215707][ T8900]  </TASK>
[  461.372099][ T8904] netlink: 'syz.4.1152': attribute type 10 has an invalid length.
[  461.415008][ T8904] batman_adv: batadv0: Adding interface: team0
[  461.430066][ T8904] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  461.462740][ T8904] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  461.519335][ T8907] netlink: 'syz.4.1152': attribute type 10 has an invalid length.
[  461.542338][ T8907] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1152'.
[  461.561575][ T8907] team0: entered promiscuous mode
[  461.566695][ T8907] team_slave_0: entered promiscuous mode
[  461.588991][ T8907] team_slave_1: entered promiscuous mode
[  461.613501][ T8907] 8021q: adding VLAN 0 to HW filter on device team0
[  461.622466][ T8907] batman_adv: batadv0: Interface activated: team0
[  461.629398][ T8907] batman_adv: batadv0: Interface deactivated: team0
[  461.645782][ T8907] batman_adv: batadv0: Removing interface: team0
[  461.655150][ T8907] bridge0: port 3(team0) entered blocking state
[  461.664165][ T8907] bridge0: port 3(team0) entered disabled state
[  461.670718][ T8907] team0: entered allmulticast mode
[  461.678411][ T8907] team_slave_0: entered allmulticast mode
[  461.701344][ T8907] team_slave_1: entered allmulticast mode
[  461.710502][ T8907] bridge0: port 3(team0) entered blocking state
[  461.717009][ T8907] bridge0: port 3(team0) entered forwarding state
[  461.747016][ T8912] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1155'.
[  461.769660][ T8914] netlink: 'syz.0.1156': attribute type 2 has an invalid length.
[  462.409029][ T8945] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1167'.
[  463.290066][ T8970] bridge0: entered promiscuous mode
[  463.305063][ T8970] bridge0: entered allmulticast mode
[  463.412127][ T8974] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1176'.
[  463.680101][ T8981] netlink: 'syz.0.1179': attribute type 21 has an invalid length.
[  463.695089][ T8981] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1179'.
[  463.704739][ T8981] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1179'.
[  464.130811][ T9006] FAULT_INJECTION: forcing a failure.
[  464.130811][ T9006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  464.161143][ T9006] CPU: 0 PID: 9006 Comm: syz.2.1190 Not tainted 6.6.102-syzkaller #0
[  464.169346][ T9006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  464.179699][ T9006] Call Trace:
[  464.183560][ T9006]  <TASK>
[  464.186523][ T9006]  dump_stack_lvl+0x16c/0x230
[  464.191299][ T9006]  ? show_regs_print_info+0x20/0x20
[  464.196527][ T9006]  ? load_image+0x3b0/0x3b0
[  464.201163][ T9006]  ? __lock_acquire+0x7c80/0x7c80
[  464.206264][ T9006]  ? snprintf+0xdb/0x120
[  464.210639][ T9006]  should_fail_ex+0x39d/0x4d0
[  464.215384][ T9006]  _copy_to_user+0x2f/0xa0
[  464.219852][ T9006]  simple_read_from_buffer+0xe7/0x150
[  464.225353][ T9006]  proc_fail_nth_read+0x1e3/0x250
[  464.230426][ T9006]  ? proc_fault_inject_write+0x340/0x340
[  464.236095][ T9006]  ? fsnotify_perm+0x271/0x5e0
[  464.240895][ T9006]  ? proc_fault_inject_write+0x340/0x340
[  464.246758][ T9006]  vfs_read+0x27e/0x920
[  464.250942][ T9006]  ? kernel_read+0x1e0/0x1e0
[  464.255647][ T9006]  ? __fget_files+0x28/0x4d0
[  464.260360][ T9006]  ? __fget_files+0x44a/0x4d0
[  464.265185][ T9006]  ? __fdget_pos+0x2a3/0x330
[  464.269815][ T9006]  ? ksys_read+0x75/0x250
[  464.274185][ T9006]  ksys_read+0x147/0x250
[  464.278458][ T9006]  ? vfs_write+0x940/0x940
[  464.282899][ T9006]  ? lockdep_hardirqs_on+0x98/0x150
[  464.288124][ T9006]  do_syscall_64+0x55/0xb0
[  464.292545][ T9006]  ? clear_bhb_loop+0x40/0x90
[  464.297224][ T9006]  ? clear_bhb_loop+0x40/0x90
[  464.301901][ T9006]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  464.307804][ T9006] RIP: 0033:0x7f5e71d8d5fc
[  464.312245][ T9006] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  464.332216][ T9006] RSP: 002b:00007f5e6fff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  464.340796][ T9006] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8d5fc
[  464.348848][ T9006] RDX: 000000000000000f RSI: 00007f5e6fff60a0 RDI: 0000000000000005
[  464.357029][ T9006] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  464.365088][ T9006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  464.373050][ T9006] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  464.381028][ T9006]  </TASK>
[  464.594790][ T9017] netlink: 'syz.0.1194': attribute type 16 has an invalid length.
[  464.735928][ T9025] __nla_validate_parse: 3 callbacks suppressed
[  464.735945][ T9025] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1197'.
[  464.835230][ T9027] FAULT_INJECTION: forcing a failure.
[  464.835230][ T9027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  464.873952][ T9027] CPU: 0 PID: 9027 Comm: syz.4.1198 Not tainted 6.6.102-syzkaller #0
[  464.882079][ T9027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  464.892157][ T9027] Call Trace:
[  464.895631][ T9027]  <TASK>
[  464.898594][ T9027]  dump_stack_lvl+0x16c/0x230
[  464.903398][ T9027]  ? show_regs_print_info+0x20/0x20
[  464.908620][ T9027]  ? load_image+0x3b0/0x3b0
[  464.913160][ T9027]  ? __might_fault+0xaa/0x120
[  464.918014][ T9027]  should_fail_ex+0x39d/0x4d0
[  464.922806][ T9027]  copyin+0x1a/0x90
[  464.926638][ T9027]  _copy_from_iter+0x404/0x1290
[  464.931600][ T9027]  ? __virt_addr_valid+0x18c/0x540
[  464.936746][ T9027]  ? __lock_acquire+0x7c80/0x7c80
[  464.941899][ T9027]  ? copyout_mc+0x70/0x70
[  464.946262][ T9027]  ? __virt_addr_valid+0x18c/0x540
[  464.951407][ T9027]  ? __virt_addr_valid+0x18c/0x540
[  464.956766][ T9027]  ? __virt_addr_valid+0x469/0x540
[  464.961921][ T9027]  ? __check_object_size+0x506/0xa30
[  464.967240][ T9027]  skb_copy_datagram_from_iter+0xf4/0x6e0
[  464.972983][ T9027]  ? dev_get_by_index+0x22/0x2d0
[  464.977953][ T9027]  ? skb_put+0x11b/0x210
[  464.982235][ T9027]  packet_sendmsg+0x3537/0x4d30
[  464.987397][ T9027]  ? __might_sleep+0xe0/0xe0
[  464.992220][ T9027]  ? verify_lock_unused+0x140/0x140
[  464.997506][ T9027]  ? bpf_trace_run1+0x267/0x3b0
[  465.002410][ T9027]  ? aa_sk_perm+0x7fc/0x930
[  465.006951][ T9027]  ? packet_getsockopt+0xa20/0xa20
[  465.012104][ T9027]  ? aa_sock_msg_perm+0x94/0x150
[  465.017067][ T9027]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  465.022471][ T9027]  ? security_socket_sendmsg+0x80/0xa0
[  465.027959][ T9027]  ? packet_getsockopt+0xa20/0xa20
[  465.033104][ T9027]  ____sys_sendmsg+0x5bf/0x950
[  465.037903][ T9027]  ? __asan_memset+0x22/0x40
[  465.042528][ T9027]  ? __sys_sendmsg_sock+0x30/0x30
[  465.047575][ T9027]  ? __import_iovec+0x3fa/0x860
[  465.052562][ T9027]  ? import_iovec+0x73/0xa0
[  465.057109][ T9027]  ___sys_sendmsg+0x220/0x290
[  465.061813][ T9027]  ? __sys_sendmsg+0x270/0x270
[  465.066791][ T9027]  __se_sys_sendmsg+0x1a5/0x270
[  465.071877][ T9027]  ? __x64_sys_sendmsg+0x80/0x80
[  465.077118][ T9027]  ? bpf_trace_run2+0x26f/0x3c0
[  465.082396][ T9027]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  465.088962][ T9027]  ? trace_sys_enter+0x1f/0x80
[  465.094318][ T9027]  do_syscall_64+0x55/0xb0
[  465.099222][ T9027]  ? clear_bhb_loop+0x40/0x90
[  465.104473][ T9027]  ? clear_bhb_loop+0x40/0x90
[  465.109214][ T9027]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  465.115240][ T9027] RIP: 0033:0x7f3ef9f8ebe9
[  465.119781][ T9027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  465.139514][ T9027] RSP: 002b:00007f3efad85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  465.147967][ T9027] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8ebe9
[  465.155976][ T9027] RDX: 0000000000004011 RSI: 00002000000001c0 RDI: 0000000000000003
[  465.163986][ T9027] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  465.171989][ T9027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.180008][ T9027] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  465.188055][ T9027]  </TASK>
[  465.709904][ T9054] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1208'.
[  465.980331][ T9068] netlink: 'syz.2.1212': attribute type 3 has an invalid length.
[  466.001300][ T9068] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.1212'.
[  466.693734][ T9090] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1222'.
[  467.042717][ T9100] netlink: 'syz.4.1226': attribute type 4 has an invalid length.
[  467.101499][ T9095] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.1224'.
[  468.285936][ T9129] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1235'.
[  468.816312][ T9149] syzkaller0: entered promiscuous mode
[  468.822999][ T9149] syzkaller0: entered allmulticast mode
[  469.153786][ T9148] syzkaller0: entered promiscuous mode
[  469.183204][ T9148] syzkaller0: entered allmulticast mode
[  469.231416][   T23] page_pool_release_retry() stalled pool shutdown 1 inflight 60 sec
[  469.241785][ T9155] FAULT_INJECTION: forcing a failure.
[  469.241785][ T9155] name failslab, interval 1, probability 0, space 0, times 0
[  469.272409][ T9155] CPU: 1 PID: 9155 Comm: syz.2.1244 Not tainted 6.6.102-syzkaller #0
[  469.280539][ T9155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  469.290625][ T9155] Call Trace:
[  469.293923][ T9155]  <TASK>
[  469.296872][ T9155]  dump_stack_lvl+0x16c/0x230
[  469.301595][ T9155]  ? show_regs_print_info+0x20/0x20
[  469.306819][ T9155]  ? load_image+0x3b0/0x3b0
[  469.311361][ T9155]  ? __might_sleep+0xe0/0xe0
[  469.315990][ T9155]  ? __lock_acquire+0x7c80/0x7c80
[  469.321155][ T9155]  should_fail_ex+0x39d/0x4d0
[  469.325980][ T9155]  should_failslab+0x9/0x20
[  469.330613][ T9155]  slab_pre_alloc_hook+0x59/0x310
[  469.336311][ T9155]  ? br_netlink_fini+0x30/0x30
[  469.341200][ T9155]  kmem_cache_alloc_node+0x60/0x330
[  469.346437][ T9155]  ? __alloc_skb+0x108/0x2c0
[  469.351072][ T9155]  __alloc_skb+0x108/0x2c0
[  469.355623][ T9155]  rtmsg_ifinfo_build_skb+0x8c/0x260
[  469.361549][ T9155]  rtnetlink_event+0x1b7/0x260
[  469.366719][ T9155]  notifier_call_chain+0x197/0x390
[  469.372576][ T9155]  netdev_features_change+0x86/0xc0
[  469.378038][ T9155]  ? dev_get_alias+0x250/0x250
[  469.383298][ T9155]  dev_ethtool+0x13e9/0x1720
[  469.388157][ T9155]  ? ethtool_get_module_eeprom_call+0x170/0x170
[  469.394532][ T9155]  ? __lock_acquire+0x7c80/0x7c80
[  469.399973][ T9155]  ? __might_fault+0xaa/0x120
[  469.405229][ T9155]  ? full_name_hash+0x92/0xe0
[  469.410589][ T9155]  ? dev_load+0x21/0x1f0
[  469.414955][ T9155]  dev_ioctl+0x4ca/0x1170
[  469.419494][ T9155]  sock_do_ioctl+0x226/0x2f0
[  469.424495][ T9155]  ? sock_show_fdinfo+0xb0/0xb0
[  469.429516][ T9155]  sock_ioctl+0x623/0x7a0
[  469.433894][ T9155]  ? sock_poll+0x3d0/0x3d0
[  469.438367][ T9155]  ? bpf_lsm_file_ioctl+0x9/0x10
[  469.443432][ T9155]  ? security_file_ioctl+0x80/0xa0
[  469.448740][ T9155]  ? sock_poll+0x3d0/0x3d0
[  469.453281][ T9155]  __se_sys_ioctl+0xfd/0x170
[  469.457920][ T9155]  do_syscall_64+0x55/0xb0
[  469.462453][ T9155]  ? clear_bhb_loop+0x40/0x90
[  469.467225][ T9155]  ? clear_bhb_loop+0x40/0x90
[  469.471948][ T9155]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  469.477878][ T9155] RIP: 0033:0x7f5e71d8ebe9
[  469.482411][ T9155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  469.502145][ T9155] RSP: 002b:00007f5e6ffd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.510657][ T9155] RAX: ffffffffffffffda RBX: 00007f5e71fb6090 RCX: 00007f5e71d8ebe9
[  469.518832][ T9155] RDX: 0000200000000080 RSI: 0000000000008946 RDI: 000000000000000a
[  469.526941][ T9155] RBP: 00007f5e6ffd5090 R08: 0000000000000000 R09: 0000000000000000
[  469.535382][ T9155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  469.544258][ T9155] R13: 00007f5e71fb6128 R14: 00007f5e71fb6090 R15: 00007fff91fdfad8
[  469.552440][ T9155]  </TASK>
[  472.466373][ T9158] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1246'.
[  472.784859][ T9167] FAULT_INJECTION: forcing a failure.
[  472.784859][ T9167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.815380][ T9167] CPU: 0 PID: 9167 Comm: syz.4.1251 Not tainted 6.6.102-syzkaller #0
[  472.824485][ T9167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  472.834904][ T9167] Call Trace:
[  472.838413][ T9167]  <TASK>
[  472.842080][ T9167]  dump_stack_lvl+0x16c/0x230
[  472.847057][ T9167]  ? show_regs_print_info+0x20/0x20
[  472.852336][ T9167]  ? load_image+0x3b0/0x3b0
[  472.856881][ T9167]  ? __might_fault+0xaa/0x120
[  472.861660][ T9167]  ? __lock_acquire+0x7c80/0x7c80
[  472.866711][ T9167]  ? perf_trace_lock+0xf7/0x380
[  472.871673][ T9167]  should_fail_ex+0x39d/0x4d0
[  472.876721][ T9167]  _copy_from_iter+0x1d3/0x1290
[  472.881792][ T9167]  ? pipe_write+0x723/0x1af0
[  472.886416][ T9167]  ? copyout_mc+0x70/0x70
[  472.890755][ T9167]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  472.896821][ T9167]  ? lock_chain_count+0x20/0x20
[  472.901675][ T9167]  ? _raw_spin_lock_irq+0xaf/0xe0
[  472.906709][ T9167]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  472.912179][ T9167]  ? page_copy_sane+0x4e/0x270
[  472.916964][ T9167]  copy_page_from_iter+0x7b/0x100
[  472.922037][ T9167]  pipe_write+0x878/0x1af0
[  472.926521][ T9167]  ? pipe_read+0x12a0/0x12a0
[  472.931157][ T9167]  ? end_current_label_crit_section+0x149/0x170
[  472.937437][ T9167]  ? common_file_perm+0x198/0x1f0
[  472.942507][ T9167]  vfs_write+0x43b/0x940
[  472.946788][ T9167]  ? file_end_write+0x250/0x250
[  472.951686][ T9167]  ? __fget_files+0x44a/0x4d0
[  472.956403][ T9167]  ? __fdget_pos+0x1d8/0x330
[  472.961187][ T9167]  ? ksys_write+0x75/0x250
[  472.965613][ T9167]  ksys_write+0x147/0x250
[  472.969939][ T9167]  ? __ia32_sys_read+0x90/0x90
[  472.974719][ T9167]  ? trace_sys_enter+0x1f/0x80
[  472.979510][ T9167]  do_syscall_64+0x55/0xb0
[  472.983945][ T9167]  ? clear_bhb_loop+0x40/0x90
[  472.988611][ T9167]  ? clear_bhb_loop+0x40/0x90
[  472.993276][ T9167]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  472.999169][ T9167] RIP: 0033:0x7f3ef9f8ebe9
[  473.003599][ T9167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.023579][ T9167] RSP: 002b:00007f3efad85038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  473.032099][ T9167] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8ebe9
[  473.040077][ T9167] RDX: 00000000fffffdef RSI: 00002000000001c0 RDI: 0000000000000000
[  473.048139][ T9167] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  473.056129][ T9167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  473.064376][ T9167] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  473.072520][ T9167]  </TASK>
[  473.160078][ T9172] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1253'.
[  473.803864][ T9190] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1258'.
[  474.455826][ T9205] netlink: 'syz.2.1265': attribute type 3 has an invalid length.
[  474.476912][ T9205] netlink: 201372 bytes leftover after parsing attributes in process `syz.2.1265'.
[  475.425681][ T9259] bridge0: port 3(team0) entered blocking state
[  475.442024][ T9259] bridge0: port 3(team0) entered disabled state
[  475.448785][ T9259] team0: entered allmulticast mode
[  475.468328][ T9259] team_slave_0: entered allmulticast mode
[  475.475332][ T9259] team_slave_1: entered allmulticast mode
[  475.493079][ T9259] team0: entered promiscuous mode
[  475.498200][ T9259] team_slave_0: entered promiscuous mode
[  475.504209][ T9259] team_slave_1: entered promiscuous mode
[  475.545706][ T9266] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1290'.
[  475.718926][ T9272] netlink: 'syz.4.1292': attribute type 3 has an invalid length.
[  475.727393][ T9272] netlink: 201372 bytes leftover after parsing attributes in process `syz.4.1292'.
[  478.281913][ T5104] Bluetooth: hci1: command 0x0406 tx timeout
[  478.288261][ T5104] Bluetooth: hci3: command 0x0406 tx timeout
[  478.295500][ T5844] Bluetooth: hci2: command 0x0406 tx timeout
[  484.910808][ T9288] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1300'.
[  485.885764][ T9317] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1312'.
[  485.913314][ T9322] FAULT_INJECTION: forcing a failure.
[  485.913314][ T9322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  485.942370][ T9322] CPU: 1 PID: 9322 Comm: syz.0.1314 Not tainted 6.6.102-syzkaller #0
[  485.950498][ T9322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  485.960662][ T9322] Call Trace:
[  485.963960][ T9322]  <TASK>
[  485.966917][ T9322]  dump_stack_lvl+0x16c/0x230
[  485.971637][ T9322]  ? show_regs_print_info+0x20/0x20
[  485.976863][ T9322]  ? load_image+0x3b0/0x3b0
[  485.981572][ T9322]  ? __might_fault+0xaa/0x120
[  485.986365][ T9322]  ? __lock_acquire+0x7c80/0x7c80
[  485.991432][ T9322]  should_fail_ex+0x39d/0x4d0
[  485.996144][ T9322]  _copy_from_iter+0x1d3/0x1290
[  486.001019][ T9322]  ? slab_post_alloc_hook+0x8a/0x4d0
[  486.006330][ T9322]  ? __virt_addr_valid+0x18c/0x540
[  486.011467][ T9322]  ? __lock_acquire+0x7c80/0x7c80
[  486.016514][ T9322]  ? rcu_is_watching+0x15/0xb0
[  486.021293][ T9322]  ? copyout_mc+0x70/0x70
[  486.025666][ T9322]  ? __virt_addr_valid+0x18c/0x540
[  486.030805][ T9322]  ? __virt_addr_valid+0x18c/0x540
[  486.035940][ T9322]  ? __virt_addr_valid+0x469/0x540
[  486.041054][ T9322]  ? __check_object_size+0x506/0xa30
[  486.046394][ T9322]  netlink_sendmsg+0x75c/0xbe0
[  486.051190][ T9322]  ? netlink_getsockopt+0x580/0x580
[  486.056572][ T9322]  ? aa_sock_msg_perm+0x94/0x150
[  486.061511][ T9322]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  486.066810][ T9322]  ? security_socket_sendmsg+0x80/0xa0
[  486.072272][ T9322]  ? netlink_getsockopt+0x580/0x580
[  486.077484][ T9322]  ____sys_sendmsg+0x5bf/0x950
[  486.082338][ T9322]  ? __asan_memset+0x22/0x40
[  486.087008][ T9322]  ? __sys_sendmsg_sock+0x30/0x30
[  486.092025][ T9322]  ? __import_iovec+0x5f2/0x860
[  486.096987][ T9322]  ? import_iovec+0x73/0xa0
[  486.101507][ T9322]  ___sys_sendmsg+0x220/0x290
[  486.106193][ T9322]  ? __sys_sendmsg+0x270/0x270
[  486.110975][ T9322]  __se_sys_sendmsg+0x1a5/0x270
[  486.115917][ T9322]  ? perf_trace_preemptirq_template+0x281/0x340
[  486.122247][ T9322]  ? __x64_sys_sendmsg+0x80/0x80
[  486.127387][ T9322]  ? lockdep_hardirqs_on+0x98/0x150
[  486.132583][ T9322]  do_syscall_64+0x55/0xb0
[  486.137012][ T9322]  ? clear_bhb_loop+0x40/0x90
[  486.141878][ T9322]  ? clear_bhb_loop+0x40/0x90
[  486.146609][ T9322]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  486.152502][ T9322] RIP: 0033:0x7f547738ebe9
[  486.156918][ T9322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.176619][ T9322] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  486.185200][ T9322] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  486.193257][ T9322] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  486.201228][ T9322] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  486.209610][ T9322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  486.217725][ T9322] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  486.225820][ T9322]  </TASK>
[  486.939698][ T9353] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1325'.
[  487.152744][ T9365] netlink: 'syz.3.1329': attribute type 29 has an invalid length.
[  487.174342][ T9365] netlink: 'syz.3.1329': attribute type 29 has an invalid length.
[  487.193603][ T9362] netlink: 'syz.3.1329': attribute type 29 has an invalid length.
[  487.433850][ T9362] syzkaller0: entered promiscuous mode
[  487.439554][ T9362] syzkaller0: entered allmulticast mode
[  491.839084][ T9392] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1340'.
[  493.259843][ T9407] netlink: 'syz.0.1347': attribute type 10 has an invalid length.
[  493.287222][ T9407] team0: Device ipvlan1 failed to register rx_handler
[  493.361519][ T9413] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1350'.
[  493.394987][ T9417] netlink: 'syz.4.1351': attribute type 10 has an invalid length.
[  493.420517][ T9417] team0: Device ipvlan1 failed to register rx_handler
[  493.749808][ T9427] netlink: 'syz.3.1356': attribute type 10 has an invalid length.
[  493.771509][ T9427] netlink: 'syz.3.1356': attribute type 19 has an invalid length.
[  493.779669][ T9427] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1356'.
[  494.058506][ T9452] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1364'.
[  494.250257][ T9458] netlink: 'syz.3.1367': attribute type 3 has an invalid length.
[  494.280648][ T9458] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1367'.
[  494.484312][ T9477] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1375'.
[  494.738172][ T9491] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1377'.
[  494.798259][ T9491] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1377'.
[  494.823409][ T9485] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1377'.
[  494.845705][ T9493] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1377'.
[  494.869559][ T9492] netlink: 'syz.2.1380': attribute type 39 has an invalid length.
[  495.130489][ T9509] syz.4.1387[9509] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  495.130606][ T9509] syz.4.1387[9509] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  495.280315][ T9519] netlink: 'syz.4.1391': attribute type 7 has an invalid length.
[  495.734613][ T9542] FAULT_INJECTION: forcing a failure.
[  495.734613][ T9542] name failslab, interval 1, probability 0, space 0, times 0
[  495.762928][ T9542] CPU: 0 PID: 9542 Comm: syz.0.1402 Not tainted 6.6.102-syzkaller #0
[  495.771086][ T9542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  495.781369][ T9542] Call Trace:
[  495.784686][ T9542]  <TASK>
[  495.787651][ T9542]  dump_stack_lvl+0x16c/0x230
[  495.792497][ T9542]  ? show_regs_print_info+0x20/0x20
[  495.797761][ T9542]  ? load_image+0x3b0/0x3b0
[  495.802426][ T9542]  ? __might_sleep+0xe0/0xe0
[  495.807074][ T9542]  ? __lock_acquire+0x7c80/0x7c80
[  495.812154][ T9542]  should_fail_ex+0x39d/0x4d0
[  495.816889][ T9542]  should_failslab+0x9/0x20
[  495.821442][ T9542]  slab_pre_alloc_hook+0x59/0x310
[  495.826587][ T9542]  ? trace_call_bpf+0x5ba/0x690
[  495.831559][ T9542]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  495.837329][ T9542]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  495.843347][ T9542]  __kmem_cache_alloc_node+0x53/0x260
[  495.848856][ T9542]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  495.854615][ T9542]  __kmalloc+0xa4/0x240
[  495.858977][ T9542]  tomoyo_realpath_from_path+0xe3/0x5d0
[  495.864824][ T9542]  tomoyo_path_number_perm+0x1ea/0x590
[  495.870297][ T9542]  ? tomoyo_path_number_perm+0x1ba/0x590
[  495.875955][ T9542]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  495.881451][ T9542]  ? ksys_write+0x1c1/0x250
[  495.886185][ T9542]  ? __fget_files+0x28/0x4d0
[  495.890924][ T9542]  security_file_ioctl+0x70/0xa0
[  495.895976][ T9542]  __se_sys_ioctl+0x48/0x170
[  495.900615][ T9542]  do_syscall_64+0x55/0xb0
[  495.905071][ T9542]  ? clear_bhb_loop+0x40/0x90
[  495.909821][ T9542]  ? clear_bhb_loop+0x40/0x90
[  495.914613][ T9542]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  495.920741][ T9542] RIP: 0033:0x7f547738ebe9
[  495.925167][ T9542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.945233][ T9542] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  495.953759][ T9542] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  495.961740][ T9542] RDX: 00002000000000c0 RSI: 00000000000089a0 RDI: 0000000000000009
[  495.969723][ T9542] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  495.977738][ T9542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.986133][ T9542] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  495.994416][ T9542]  </TASK>
[  496.111831][ T9542] ERROR: Out of memory at tomoyo_realpath_from_path.
[  497.098522][ T9577] netlink: 'syz.3.1415': attribute type 5 has an invalid length.
[  497.153866][ T5843] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  497.322046][ T9588] __nla_validate_parse: 6 callbacks suppressed
[  497.322063][ T9588] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1422'.
[  497.325798][ T9584] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1421'.
[  497.724273][ T9606] netlink: 196 bytes leftover after parsing attributes in process `syz.0.1431'.
[  497.952693][ T9617] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1433'.
[  498.355789][ T9636] ref_ctr_offset mismatch. inode: 0x7b5 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  498.802486][ T5843] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  499.211786][ T9650] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1445'.
[  499.227720][ T9650] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1445'.
[  499.238309][ T9648] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1445'.
[  499.393254][ T9654] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1447'.
[  499.598385][ T9662] FAULT_INJECTION: forcing a failure.
[  499.598385][ T9662] name failslab, interval 1, probability 0, space 0, times 0
[  499.647750][ T9662] CPU: 1 PID: 9662 Comm: syz.0.1451 Not tainted 6.6.102-syzkaller #0
[  499.656447][ T9662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  499.666732][ T9662] Call Trace:
[  499.670065][ T9662]  <TASK>
[  499.673034][ T9662]  dump_stack_lvl+0x16c/0x230
[  499.677942][ T9662]  ? show_regs_print_info+0x20/0x20
[  499.683371][ T9662]  ? load_image+0x3b0/0x3b0
[  499.688018][ T9662]  ? verify_lock_unused+0x140/0x140
[  499.693267][ T9662]  ? perf_trace_lock+0x2ed/0x380
[  499.698450][ T9662]  should_fail_ex+0x39d/0x4d0
[  499.703270][ T9662]  should_failslab+0x9/0x20
[  499.707820][ T9662]  slab_pre_alloc_hook+0x59/0x310
[  499.712988][ T9662]  kmem_cache_alloc+0x5a/0x2e0
[  499.717883][ T9662]  ? skb_clone+0x1eb/0x370
[  499.722337][ T9662]  skb_clone+0x1eb/0x370
[  499.726599][ T9662]  __netlink_deliver_tap+0x41c/0x830
[  499.731995][ T9662]  ? netlink_deliver_tap+0x2e/0x1b0
[  499.737306][ T9662]  netlink_deliver_tap+0x19c/0x1b0
[  499.742434][ T9662]  __netlink_sendskb+0x4b/0x90
[  499.747211][ T9662]  netlink_dump+0x9fb/0xde0
[  499.751856][ T9662]  ? netlink_lookup+0x200/0x200
[  499.756725][ T9662]  ? __asan_memset+0x22/0x40
[  499.761385][ T9662]  ? genl_start+0x493/0x6b0
[  499.765899][ T9662]  __netlink_dump_start+0x5f1/0x810
[  499.771107][ T9662]  genl_family_rcv_msg_dumpit+0x1e8/0x2c0
[  499.776832][ T9662]  ? genl_rcv_msg+0x790/0x790
[  499.781721][ T9662]  ? genl_get_cmd+0x7d6/0x910
[  499.786415][ T9662]  ? genl_family_rcv_msg_doit+0x2f0/0x2f0
[  499.792143][ T9662]  ? genl_start+0x6b0/0x6b0
[  499.796657][ T9662]  ? genl_dumpit+0x1a0/0x1a0
[  499.801353][ T9662]  genl_rcv_msg+0x5d7/0x790
[  499.805866][ T9662]  ? genl_bind+0x360/0x360
[  499.810288][ T9662]  ? psample_group_nl_fill+0x3c0/0x3c0
[  499.815750][ T9662]  ? perf_trace_lock+0x2ed/0x380
[  499.820692][ T9662]  ? __copy_skb_header+0xa7/0x550
[  499.827324][ T9662]  netlink_rcv_skb+0x216/0x480
[  499.832384][ T9662]  ? genl_bind+0x360/0x360
[  499.837359][ T9662]  ? netlink_ack+0x1110/0x1110
[  499.842245][ T9662]  ? __lock_acquire+0x7c80/0x7c80
[  499.847530][ T9662]  ? down_read+0x1ac/0x2e0
[  499.852042][ T9662]  genl_rcv+0x28/0x40
[  499.856207][ T9662]  netlink_unicast+0x751/0x8d0
[  499.861184][ T9662]  netlink_sendmsg+0x8c1/0xbe0
[  499.866006][ T9662]  ? netlink_getsockopt+0x580/0x580
[  499.871534][ T9662]  ? aa_sock_msg_perm+0x94/0x150
[  499.876541][ T9662]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  499.881878][ T9662]  ? security_socket_sendmsg+0x80/0xa0
[  499.887344][ T9662]  ? netlink_getsockopt+0x580/0x580
[  499.892547][ T9662]  ____sys_sendmsg+0x5bf/0x950
[  499.897428][ T9662]  ? __asan_memset+0x22/0x40
[  499.902044][ T9662]  ? __sys_sendmsg_sock+0x30/0x30
[  499.907251][ T9662]  ? __import_iovec+0x5f2/0x860
[  499.912259][ T9662]  ? import_iovec+0x73/0xa0
[  499.916994][ T9662]  ___sys_sendmsg+0x220/0x290
[  499.921752][ T9662]  ? __sys_sendmsg+0x270/0x270
[  499.926661][ T9662]  ? __lock_acquire+0x7c80/0x7c80
[  499.931821][ T9662]  __se_sys_sendmsg+0x1a5/0x270
[  499.936678][ T9662]  ? __x64_sys_sendmsg+0x80/0x80
[  499.941918][ T9662]  ? lockdep_hardirqs_on+0x98/0x150
[  499.947238][ T9662]  do_syscall_64+0x55/0xb0
[  499.951736][ T9662]  ? clear_bhb_loop+0x40/0x90
[  499.956590][ T9662]  ? clear_bhb_loop+0x40/0x90
[  499.961460][ T9662]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  499.967365][ T9662] RIP: 0033:0x7f547738ebe9
[  499.972040][ T9662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  499.991768][ T9662] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  500.000392][ T9662] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  500.008550][ T9662] RDX: 0000000000004000 RSI: 0000200000000000 RDI: 0000000000000004
[  500.016713][ T9662] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  500.024782][ T9662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  500.032753][ T9662] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  500.040748][ T9662]  </TASK>
[  500.274565][ T9676] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1456'.
[  500.462826][ T9682] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1459'.
[  501.821163][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  501.827740][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  502.612941][ T9766] pim6reg1: entered promiscuous mode
[  502.618516][ T9766] pim6reg1: entered allmulticast mode
[  504.951973][ T9779] netlink: 'syz.4.1471': attribute type 2 has an invalid length.
[  504.972560][ T9779] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1471'.
[  506.478304][ T9803] netlink: zone id is out of range
[  506.492880][ T9803] netlink: set zone limit has 8 unknown bytes
[  512.279033][ T9871] pim6reg1: entered promiscuous mode
[  512.296252][ T9871] pim6reg1: entered allmulticast mode
[  512.405744][ T9879] netlink: 'syz.2.1510': attribute type 5 has an invalid length.
[  512.540942][ T9879] netlink: 'syz.2.1510': attribute type 2 has an invalid length.
[  512.558517][ T9879] netlink: 'syz.2.1510': attribute type 4 has an invalid length.
[  512.578443][ T9879] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1510'.
[  512.609510][ T9888] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1514'.
[  512.700911][ T9894] FAULT_INJECTION: forcing a failure.
[  512.700911][ T9894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  512.771197][ T9894] CPU: 0 PID: 9894 Comm: syz.0.1516 Not tainted 6.6.102-syzkaller #0
[  512.779312][ T9894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  512.789468][ T9894] Call Trace:
[  512.792742][ T9894]  <TASK>
[  512.795763][ T9894]  dump_stack_lvl+0x16c/0x230
[  512.800437][ T9894]  ? show_regs_print_info+0x20/0x20
[  512.805633][ T9894]  ? load_image+0x3b0/0x3b0
[  512.810241][ T9894]  ? __might_fault+0xaa/0x120
[  512.814946][ T9894]  ? __lock_acquire+0x7c80/0x7c80
[  512.819977][ T9894]  ? __virt_addr_valid+0x18c/0x540
[  512.825212][ T9894]  should_fail_ex+0x39d/0x4d0
[  512.829979][ T9894]  _copy_from_user+0x2f/0xe0
[  512.834595][ T9894]  bpf_prog_test_run_skb+0x259/0x11c0
[  512.840058][ T9894]  ? __fget_files+0x28/0x4d0
[  512.844829][ T9894]  ? __fget_files+0x44a/0x4d0
[  512.849510][ T9894]  ? cpu_online+0x60/0x60
[  512.853856][ T9894]  bpf_prog_test_run+0x321/0x390
[  512.858811][ T9894]  __sys_bpf+0x440/0x800
[  512.863074][ T9894]  ? bpf_link_show_fdinfo+0x350/0x350
[  512.868457][ T9894]  ? lock_chain_count+0x20/0x20
[  512.873455][ T9894]  __x64_sys_bpf+0x7c/0x90
[  512.877885][ T9894]  do_syscall_64+0x55/0xb0
[  512.882393][ T9894]  ? clear_bhb_loop+0x40/0x90
[  512.887062][ T9894]  ? clear_bhb_loop+0x40/0x90
[  512.891728][ T9894]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  512.897621][ T9894] RIP: 0033:0x7f547738ebe9
[  512.902030][ T9894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  512.921646][ T9894] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  512.930173][ T9894] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  512.938192][ T9894] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[  512.946446][ T9894] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  512.954533][ T9894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  512.962601][ T9894] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  512.970705][ T9894]  </TASK>
[  512.986453][ T9898] netlink: 'syz.4.1517': attribute type 39 has an invalid length.
[  513.008580][ T9898] veth0_macvtap: left promiscuous mode
[  513.644702][ T9933] netlink: 'syz.4.1534': attribute type 10 has an invalid length.
[  513.664943][ T9933] netlink: 65015 bytes leftover after parsing attributes in process `syz.4.1534'.
[  513.776061][ T9937] netlink: 'syz.3.1536': attribute type 39 has an invalid length.
[  513.916070][ T9945] netlink: 184 bytes leftover after parsing attributes in process `syz.2.1539'.
[  514.884998][ T9978] netlink: 129384 bytes leftover after parsing attributes in process `syz.4.1554'.
[  515.122223][ T9990] netlink: 'syz.2.1560': attribute type 1 has an invalid length.
[  515.130605][ T9990] netlink: 'syz.2.1560': attribute type 4 has an invalid length.
[  515.148810][ T9990] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.1560'.
[  515.168948][ T9990] netlink: 'syz.2.1560': attribute type 1 has an invalid length.
[  515.179776][ T9990] netlink: 'syz.2.1560': attribute type 4 has an invalid length.
[  515.194077][ T9990] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.1560'.
[  515.204901][ T9990] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1560'.
[  515.227996][ T9990] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1560'.
[  515.251474][ T9997] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1560'.
[  516.007865][T10026] FAULT_INJECTION: forcing a failure.
[  516.007865][T10026] name failslab, interval 1, probability 0, space 0, times 0
[  516.026894][T10026] CPU: 1 PID: 10026 Comm: syz.2.1573 Not tainted 6.6.102-syzkaller #0
[  516.035126][T10026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  516.045202][T10026] Call Trace:
[  516.048506][T10026]  <TASK>
[  516.051489][T10026]  dump_stack_lvl+0x16c/0x230
[  516.056191][T10026]  ? sctp_sendmsg+0x155c/0x27e0
[  516.061165][T10026]  ? ___sys_sendmsg+0x220/0x290
[  516.066147][T10026]  ? show_regs_print_info+0x20/0x20
[  516.071369][T10026]  ? load_image+0x3b0/0x3b0
[  516.076012][T10026]  should_fail_ex+0x39d/0x4d0
[  516.080816][T10026]  should_failslab+0x9/0x20
[  516.085344][T10026]  slab_pre_alloc_hook+0x59/0x310
[  516.090396][T10026]  ? sctp_add_bind_addr+0x8c/0x360
[  516.095534][T10026]  __kmem_cache_alloc_node+0x53/0x260
[  516.100944][T10026]  ? sctp_add_bind_addr+0x8c/0x360
[  516.106094][T10026]  kmalloc_trace+0x2a/0xe0
[  516.110542][T10026]  sctp_add_bind_addr+0x8c/0x360
[  516.115613][T10026]  sctp_copy_local_addr_list+0x30c/0x4e0
[  516.121286][T10026]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  516.127035][T10026]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  516.133145][T10026]  ? sctp_v6_is_any+0x64/0x70
[  516.137882][T10026]  ? sctp_copy_one_addr+0x8c/0x350
[  516.143030][T10026]  sctp_bind_addr_copy+0xb3/0x3c0
[  516.148103][T10026]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  516.154475][T10026]  sctp_connect_new_asoc+0x2da/0x690
[  516.159801][T10026]  ? __sctp_connect+0xd20/0xd20
[  516.164679][T10026]  ? __local_bh_enable_ip+0x12e/0x1c0
[  516.170169][T10026]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  516.175742][T10026]  ? security_sctp_bind_connect+0x89/0xb0
[  516.181515][T10026]  sctp_sendmsg+0x155c/0x27e0
[  516.186246][T10026]  ? sctp_getsockopt+0xb60/0xb60
[  516.191223][T10026]  ? aa_sk_perm+0x7fc/0x930
[  516.195759][T10026]  ? aa_af_perm+0x2b0/0x2b0
[  516.200313][T10026]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  516.206850][T10026]  ? sock_rps_record_flow+0x19/0x400
[  516.212253][T10026]  ? inet_send_prepare+0x260/0x260
[  516.217385][T10026]  ? inet_sendmsg+0xe9/0x2f0
[  516.222000][T10026]  ? inet_send_prepare+0x260/0x260
[  516.227134][T10026]  ____sys_sendmsg+0x5bf/0x950
[  516.231939][T10026]  ? __sys_sendmsg_sock+0x30/0x30
[  516.236997][T10026]  ? __import_iovec+0x5f2/0x860
[  516.241884][T10026]  ? import_iovec+0x73/0xa0
[  516.246525][T10026]  ___sys_sendmsg+0x220/0x290
[  516.251279][T10026]  ? __sys_sendmsg+0x270/0x270
[  516.256108][T10026]  ? __lock_acquire+0x7c80/0x7c80
[  516.261198][T10026]  __se_sys_sendmsg+0x1a5/0x270
[  516.266084][T10026]  ? __x64_sys_sendmsg+0x80/0x80
[  516.271077][T10026]  ? lockdep_hardirqs_on+0x98/0x150
[  516.276308][T10026]  do_syscall_64+0x55/0xb0
[  516.280763][T10026]  ? clear_bhb_loop+0x40/0x90
[  516.285463][T10026]  ? clear_bhb_loop+0x40/0x90
[  516.290164][T10026]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  516.296104][T10026] RIP: 0033:0x7f5e71d8ebe9
[  516.300629][T10026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.321111][T10026] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  516.329649][T10026] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  516.337653][T10026] RDX: 0000000000000041 RSI: 0000200000000600 RDI: 0000000000000003
[  516.345747][T10026] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  516.353762][T10026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  516.361950][T10026] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  516.370061][T10026]  </TASK>
[  517.024886][T10056] C: renamed from team_slave_0 (while UP)
[  517.040721][T10056] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  517.572407][T10067] FAULT_INJECTION: forcing a failure.
[  517.572407][T10067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  517.621244][T10067] CPU: 0 PID: 10067 Comm: syz.0.1591 Not tainted 6.6.102-syzkaller #0
[  517.629593][T10067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  517.640408][T10067] Call Trace:
[  517.643907][T10067]  <TASK>
[  517.647017][T10067]  dump_stack_lvl+0x16c/0x230
[  517.651788][T10067]  ? show_regs_print_info+0x20/0x20
[  517.657349][T10067]  ? load_image+0x3b0/0x3b0
[  517.661919][T10067]  ? __lock_acquire+0x7c80/0x7c80
[  517.667011][T10067]  should_fail_ex+0x39d/0x4d0
[  517.671877][T10067]  _copy_from_user+0x2f/0xe0
[  517.676578][T10067]  __copy_msghdr+0x3bb/0x580
[  517.681228][T10067]  ___sys_sendmsg+0x1a6/0x290
[  517.685983][T10067]  ? __sys_sendmsg+0x270/0x270
[  517.690837][T10067]  ? __lock_acquire+0x7c80/0x7c80
[  517.695922][T10067]  __se_sys_sendmsg+0x1a5/0x270
[  517.700820][T10067]  ? __x64_sys_sendmsg+0x80/0x80
[  517.705888][T10067]  ? lockdep_hardirqs_on+0x98/0x150
[  517.711196][T10067]  do_syscall_64+0x55/0xb0
[  517.715631][T10067]  ? clear_bhb_loop+0x40/0x90
[  517.720420][T10067]  ? clear_bhb_loop+0x40/0x90
[  517.725192][T10067]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  517.731113][T10067] RIP: 0033:0x7f547738ebe9
[  517.735652][T10067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  517.755574][T10067] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  517.764008][T10067] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  517.771990][T10067] RDX: 0000000000000000 RSI: 0000200000001180 RDI: 0000000000000004
[  517.780076][T10067] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  517.788088][T10067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  517.796171][T10067] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  517.804221][T10067]  </TASK>
[  517.996587][T10074] validate_nla: 7 callbacks suppressed
[  517.996609][T10074] netlink: 'syz.2.1594': attribute type 29 has an invalid length.
[  518.022226][T10074] netlink: 'syz.2.1594': attribute type 29 has an invalid length.
[  518.039170][T10072] __nla_validate_parse: 8 callbacks suppressed
[  518.039190][T10072] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1593'.
[  518.063288][T10072] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1593'.
[  518.082104][T10070] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1593'.
[  518.112042][T10072] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1593'.
[  518.434152][T10089] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1598'.
[  518.443458][T10089] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1598'.
[  518.453276][T10083] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1598'.
[  518.464405][T10089] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1598'.
[  518.793734][T10098] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1604'.
[  519.088403][T10102] netlink: 'syz.3.1606': attribute type 1 has an invalid length.
[  519.107814][T10102] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.1606'.
[  519.232588][ T5843] Bluetooth: hci4: command 0x0406 tx timeout
[  520.927136][T10133] ref_ctr_offset mismatch. inode: 0x4a9 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  521.058571][ T5839] Bluetooth: hci4: unexpected subevent 0x01 length: 150 > 18
[  522.419934][T10156] C: renamed from team_slave_0
[  522.529290][T10156] netlink: 'syz.0.1622': attribute type 3 has an invalid length.
[  522.537496][T10156] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  523.243384][T10173] __nla_validate_parse: 11 callbacks suppressed
[  523.243406][T10173] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1626'.
[  523.290111][T10173] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1626'.
[  523.336004][T10170] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1626'.
[  523.365950][T10179] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1626'.
[  523.460075][T10169] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1627'.
[  523.517728][T10184] netlink: 'syz.0.1632': attribute type 29 has an invalid length.
[  523.537073][T10184] netlink: 'syz.0.1632': attribute type 29 has an invalid length.
[  523.615110][T10185] ref_ctr_offset mismatch. inode: 0x828 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  524.105009][ T5843] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  524.286612][T10196] netlink: 'syz.0.1637': attribute type 39 has an invalid length.
[  525.326244][T10217] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1644'.
[  525.359206][T10217] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1644'.
[  525.369750][T10216] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1644'.
[  525.381114][T10223] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1644'.
[  525.476956][T10221] IPv6: Can't replace route, no match found
[  525.822744][T10240] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  526.961911][T10281] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1665'.
[  528.794959][T10281] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1665'.
[  529.010196][T10302] FAULT_INJECTION: forcing a failure.
[  529.010196][T10302] name failslab, interval 1, probability 0, space 0, times 0
[  529.029421][T10302] CPU: 1 PID: 10302 Comm: syz.3.1674 Not tainted 6.6.102-syzkaller #0
[  529.037631][T10302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  529.048169][T10302] Call Trace:
[  529.051565][T10302]  <TASK>
[  529.054609][T10302]  dump_stack_lvl+0x16c/0x230
[  529.059346][T10302]  ? show_regs_print_info+0x20/0x20
[  529.064678][T10302]  ? load_image+0x3b0/0x3b0
[  529.069242][T10302]  should_fail_ex+0x39d/0x4d0
[  529.073979][T10302]  should_failslab+0x9/0x20
[  529.078510][T10302]  slab_pre_alloc_hook+0x59/0x310
[  529.083575][T10302]  kmem_cache_alloc+0x5a/0x2e0
[  529.088465][T10302]  ? dst_alloc+0x105/0x170
[  529.093000][T10302]  ? ipv6_sysctl_rtcache_flush+0xf0/0xf0
[  529.098672][T10302]  dst_alloc+0x105/0x170
[  529.102917][T10302]  ip6_rt_cache_alloc+0x39f/0x9c0
[  529.108033][T10302]  ? rt6_find_cached_rt+0x270/0x270
[  529.113227][T10302]  ? rt6_find_cached_rt+0x21d/0x270
[  529.118520][T10302]  ? ip6_pol_route+0x166/0x1160
[  529.123369][T10302]  ip6_pol_route+0xf3a/0x1160
[  529.128056][T10302]  ? ip6_pol_route+0x166/0x1160
[  529.132900][T10302]  ? trace_fib6_table_lookup+0x1c0/0x1c0
[  529.138653][T10302]  fib6_rule_lookup+0x2fd/0x510
[  529.143624][T10302]  ? skb_header_pointer+0x120/0x120
[  529.149107][T10302]  ? fib6_lookup+0x2c0/0x2c0
[  529.153805][T10302]  ? perf_trace_lock_acquire+0xfb/0x3e0
[  529.159443][T10302]  ? read_lock_is_recursive+0x20/0x20
[  529.165107][T10302]  ip6_route_output_flags+0x364/0x5d0
[  529.170578][T10302]  ? ip6_route_output_flags+0x2e/0x5d0
[  529.176036][T10302]  ip6_dst_lookup_tail+0x199/0x14a0
[  529.181233][T10302]  ? txopt_get+0x7b/0x3e0
[  529.185559][T10302]  ? __lock_acquire+0x7c80/0x7c80
[  529.190581][T10302]  ? ip6_dst_lookup+0x60/0x60
[  529.195274][T10302]  ? txopt_get+0x7b/0x3e0
[  529.199608][T10302]  ? txopt_get+0x7b/0x3e0
[  529.203942][T10302]  ? txopt_get+0x336/0x3e0
[  529.208375][T10302]  ? fl6_sock_lookup+0xd0/0xd0
[  529.213224][T10302]  ip6_dst_lookup_flow+0x48/0xe0
[  529.218158][T10302]  rawv6_sendmsg+0xd07/0x17f0
[  529.222844][T10302]  ? __might_sleep+0xe0/0xe0
[  529.227432][T10302]  ? compat_rawv6_ioctl+0x70/0x70
[  529.232464][T10302]  ? aa_sk_perm+0x7fc/0x930
[  529.236967][T10302]  ? tomoyo_socket_sendmsg_permission+0x216/0x2f0
[  529.243384][T10302]  ? inet_send_prepare+0x260/0x260
[  529.248574][T10302]  ? inet_sendmsg+0x7c/0x2f0
[  529.253155][T10302]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  529.258453][T10302]  ? security_socket_sendmsg+0x80/0xa0
[  529.264226][T10302]  ? inet_send_prepare+0x260/0x260
[  529.269630][T10302]  ____sys_sendmsg+0x5bf/0x950
[  529.274414][T10302]  ? __asan_memset+0x22/0x40
[  529.279089][T10302]  ? __sys_sendmsg_sock+0x30/0x30
[  529.284102][T10302]  ? __import_iovec+0x5f2/0x860
[  529.288956][T10302]  ? import_iovec+0x73/0xa0
[  529.293479][T10302]  ___sys_sendmsg+0x220/0x290
[  529.298175][T10302]  ? __sys_sendmsg+0x270/0x270
[  529.302953][T10302]  ? __lock_acquire+0x7c80/0x7c80
[  529.307986][T10302]  __se_sys_sendmsg+0x1a5/0x270
[  529.312836][T10302]  ? __x64_sys_sendmsg+0x80/0x80
[  529.317775][T10302]  ? lockdep_hardirqs_on+0x98/0x150
[  529.322976][T10302]  do_syscall_64+0x55/0xb0
[  529.327489][T10302]  ? clear_bhb_loop+0x40/0x90
[  529.332262][T10302]  ? clear_bhb_loop+0x40/0x90
[  529.337124][T10302]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  529.343052][T10302] RIP: 0033:0x7f6cf218ebe9
[  529.348178][T10302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  529.369586][T10302] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  529.378379][T10302] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  529.386615][T10302] RDX: 0000000020040000 RSI: 0000200000000240 RDI: 0000000000000003
[  529.396015][T10302] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  529.404172][T10302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  529.412543][T10302] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  529.421022][T10302]  </TASK>
[  529.556077][T10314] netlink: 55631 bytes leftover after parsing attributes in process `syz.4.1680'.
[  529.696934][T10320] netlink: 'syz.4.1683': attribute type 39 has an invalid length.
[  529.707225][T10321] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1679'.
[  529.744647][T10321] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1679'.
[  529.755131][T10309] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1679'.
[  529.766642][T10323] netlink: 'syz.3.1684': attribute type 39 has an invalid length.
[  529.807501][T10321] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1679'.
[  529.918958][T10327] netlink: 'syz.2.1685': attribute type 9 has an invalid length.
[  529.971706][T10330] FAULT_INJECTION: forcing a failure.
[  529.971706][T10330] name failslab, interval 1, probability 0, space 0, times 0
[  529.984928][T10330] CPU: 1 PID: 10330 Comm: syz.3.1687 Not tainted 6.6.102-syzkaller #0
[  529.993273][T10330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  530.003955][T10330] Call Trace:
[  530.007228][T10330]  <TASK>
[  530.010198][T10330]  dump_stack_lvl+0x16c/0x230
[  530.015157][T10330]  ? show_regs_print_info+0x20/0x20
[  530.020354][T10330]  ? load_image+0x3b0/0x3b0
[  530.024864][T10330]  ? mark_lock+0x94/0x320
[  530.029190][T10330]  ? __lock_acquire+0x1334/0x7c80
[  530.034209][T10330]  should_fail_ex+0x39d/0x4d0
[  530.038886][T10330]  should_failslab+0x9/0x20
[  530.043398][T10330]  slab_pre_alloc_hook+0x59/0x310
[  530.048421][T10330]  kmem_cache_alloc+0x5a/0x2e0
[  530.053175][T10330]  ? radix_tree_node_alloc+0x7e/0x3a0
[  530.058562][T10330]  radix_tree_node_alloc+0x7e/0x3a0
[  530.063767][T10330]  idr_get_free+0x2b3/0xa60
[  530.068362][T10330]  idr_alloc_cyclic+0x1a2/0x530
[  530.073238][T10330]  ? idr_alloc+0x2c0/0x2c0
[  530.077698][T10330]  ? do_raw_spin_lock+0x121/0x2c0
[  530.083576][T10330]  ? __radix_tree_preload+0x82/0x880
[  530.088913][T10330]  ? bpf_link_prime+0x4c/0x1d0
[  530.093799][T10330]  bpf_link_prime+0x6b/0x1d0
[  530.098421][T10330]  bpf_raw_tp_link_attach+0x33c/0x560
[  530.104098][T10330]  ? bpf_insn_prepare_dump+0x840/0x840
[  530.109855][T10330]  bpf_raw_tracepoint_open+0x197/0x210
[  530.115408][T10330]  __sys_bpf+0x364/0x800
[  530.119744][T10330]  ? bpf_link_show_fdinfo+0x350/0x350
[  530.125118][T10330]  ? lock_chain_count+0x20/0x20
[  530.130066][T10330]  __x64_sys_bpf+0x7c/0x90
[  530.134579][T10330]  do_syscall_64+0x55/0xb0
[  530.138997][T10330]  ? clear_bhb_loop+0x40/0x90
[  530.143874][T10330]  ? clear_bhb_loop+0x40/0x90
[  530.148660][T10330]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  530.154576][T10330] RIP: 0033:0x7f6cf218ebe9
[  530.158994][T10330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.179293][T10330] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  530.187893][T10330] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  530.195860][T10330] RDX: 0000000000000010 RSI: 0000200000000480 RDI: 0000000000000011
[  530.203851][T10330] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  530.211916][T10330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.219899][T10330] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  530.227880][T10330]  </TASK>
[  530.443428][T10343] netlink: 'syz.3.1690': attribute type 3 has an invalid length.
[  530.455391][T10343] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1690'.
[  530.473083][T10343] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  530.565717][T10347] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1694'.
[  530.645394][T10351] FAULT_INJECTION: forcing a failure.
[  530.645394][T10351] name failslab, interval 1, probability 0, space 0, times 0
[  530.664467][T10351] CPU: 1 PID: 10351 Comm: syz.3.1696 Not tainted 6.6.102-syzkaller #0
[  530.673466][T10351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  530.685024][T10351] Call Trace:
[  530.689390][T10351]  <TASK>
[  530.694233][T10351]  dump_stack_lvl+0x16c/0x230
[  530.699331][T10351]  ? show_regs_print_info+0x20/0x20
[  530.704900][T10351]  ? load_image+0x3b0/0x3b0
[  530.709680][T10351]  ? __might_sleep+0xe0/0xe0
[  530.714368][T10351]  ? __lock_acquire+0x7c80/0x7c80
[  530.719823][T10351]  should_fail_ex+0x39d/0x4d0
[  530.724690][T10351]  should_failslab+0x9/0x20
[  530.729195][T10351]  slab_pre_alloc_hook+0x59/0x310
[  530.734235][T10351]  ? __get_vm_area_node+0x125/0x370
[  530.739426][T10351]  __kmem_cache_alloc_node+0x53/0x260
[  530.744793][T10351]  ? __get_vm_area_node+0x125/0x370
[  530.750011][T10351]  kmalloc_node_trace+0x26/0xe0
[  530.754884][T10351]  __get_vm_area_node+0x125/0x370
[  530.760097][T10351]  __vmalloc_node_range+0x36e/0x1320
[  530.765401][T10351]  ? netlink_sendmsg+0x5f3/0xbe0
[  530.770881][T10351]  ? netlink_insert+0x106a/0x1370
[  530.775917][T10351]  ? netlink_insert+0x2b3/0x1370
[  530.780851][T10351]  ? netlink_data_ready+0x10/0x10
[  530.785977][T10351]  ? free_vm_area+0x50/0x50
[  530.790697][T10351]  ? netlink_sendmsg+0x5f3/0xbe0
[  530.796002][T10351]  vmalloc+0x79/0x90
[  530.799930][T10351]  ? netlink_sendmsg+0x5f3/0xbe0
[  530.804872][T10351]  netlink_sendmsg+0x5f3/0xbe0
[  530.809783][T10351]  ? netlink_getsockopt+0x580/0x580
[  530.814981][T10351]  ? aa_sock_msg_perm+0x94/0x150
[  530.819915][T10351]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  530.825398][T10351]  ? security_socket_sendmsg+0x80/0xa0
[  530.831243][T10351]  sock_write_iter+0x2bb/0x3f0
[  530.836429][T10351]  ? sock_read_iter+0x3b0/0x3b0
[  530.841475][T10351]  ? common_file_perm+0x198/0x1f0
[  530.846599][T10351]  vfs_write+0x43b/0x940
[  530.850841][T10351]  ? file_end_write+0x250/0x250
[  530.855825][T10351]  ? __fget_files+0x44a/0x4d0
[  530.860543][T10351]  ? __fdget_pos+0x1d8/0x330
[  530.865621][T10351]  ? ksys_write+0x75/0x250
[  530.870051][T10351]  ksys_write+0x147/0x250
[  530.874477][T10351]  ? __ia32_sys_read+0x90/0x90
[  530.879245][T10351]  ? lockdep_hardirqs_on+0x98/0x150
[  530.884441][T10351]  do_syscall_64+0x55/0xb0
[  530.888934][T10351]  ? clear_bhb_loop+0x40/0x90
[  530.893690][T10351]  ? clear_bhb_loop+0x40/0x90
[  530.898360][T10351]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  530.904261][T10351] RIP: 0033:0x7f6cf218ebe9
[  530.908689][T10351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.928476][T10351] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  530.936914][T10351] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  530.945079][T10351] RDX: 000000000000fe33 RSI: 0000200000000000 RDI: 0000000000000003
[  530.953234][T10351] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  530.961216][T10351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.969532][T10351] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  530.977997][T10351]  </TASK>
[  531.001928][T10351] syz.3.1696: vmalloc error: size 65408, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  531.020740][T10351] CPU: 0 PID: 10351 Comm: syz.3.1696 Not tainted 6.6.102-syzkaller #0
[  531.029315][T10351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  531.039505][T10351] Call Trace:
[  531.042864][T10351]  <TASK>
[  531.045830][T10351]  dump_stack_lvl+0x16c/0x230
[  531.050825][T10351]  ? show_regs_print_info+0x20/0x20
[  531.056584][T10351]  ? load_image+0x3b0/0x3b0
[  531.061131][T10351]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  531.067768][T10351]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  531.074418][T10351]  warn_alloc+0x210/0x300
[  531.078877][T10351]  ? __get_vm_area_node+0x125/0x370
[  531.084115][T10351]  ? zone_watermark_ok_safe+0x230/0x230
[  531.089711][T10351]  ? rcu_is_watching+0x15/0xb0
[  531.094886][T10351]  ? __get_vm_area_node+0x356/0x370
[  531.100132][T10351]  __vmalloc_node_range+0x393/0x1320
[  531.105542][T10351]  ? netlink_insert+0x106a/0x1370
[  531.110606][T10351]  ? netlink_insert+0x2b3/0x1370
[  531.115742][T10351]  ? netlink_data_ready+0x10/0x10
[  531.120796][T10351]  ? free_vm_area+0x50/0x50
[  531.125331][T10351]  ? netlink_sendmsg+0x5f3/0xbe0
[  531.130301][T10351]  vmalloc+0x79/0x90
[  531.134309][T10351]  ? netlink_sendmsg+0x5f3/0xbe0
[  531.139274][T10351]  netlink_sendmsg+0x5f3/0xbe0
[  531.144161][T10351]  ? netlink_getsockopt+0x580/0x580
[  531.149426][T10351]  ? aa_sock_msg_perm+0x94/0x150
[  531.154482][T10351]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  531.159797][T10351]  ? security_socket_sendmsg+0x80/0xa0
[  531.165296][T10351]  sock_write_iter+0x2bb/0x3f0
[  531.170193][T10351]  ? sock_read_iter+0x3b0/0x3b0
[  531.175087][T10351]  ? common_file_perm+0x198/0x1f0
[  531.180148][T10351]  vfs_write+0x43b/0x940
[  531.184429][T10351]  ? file_end_write+0x250/0x250
[  531.189308][T10351]  ? __fget_files+0x44a/0x4d0
[  531.194058][T10351]  ? __fdget_pos+0x1d8/0x330
[  531.198879][T10351]  ? ksys_write+0x75/0x250
[  531.203539][T10351]  ksys_write+0x147/0x250
[  531.207886][T10351]  ? __ia32_sys_read+0x90/0x90
[  531.212691][T10351]  ? lockdep_hardirqs_on+0x98/0x150
[  531.217932][T10351]  do_syscall_64+0x55/0xb0
[  531.222441][T10351]  ? clear_bhb_loop+0x40/0x90
[  531.227206][T10351]  ? clear_bhb_loop+0x40/0x90
[  531.231899][T10351]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  531.238078][T10351] RIP: 0033:0x7f6cf218ebe9
[  531.242706][T10351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  531.262622][T10351] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  531.271165][T10351] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  531.279153][T10351] RDX: 000000000000fe33 RSI: 0000200000000000 RDI: 0000000000000003
[  531.287121][T10351] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  531.295085][T10351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  531.303070][T10351] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  531.311239][T10351]  </TASK>
[  531.322947][T10360] netlink: 'syz.2.1699': attribute type 1 has an invalid length.
[  531.332044][T10360] netlink: 15999 bytes leftover after parsing attributes in process `syz.2.1699'.
[  531.343772][T10351] Mem-Info:
[  531.347108][T10351] active_anon:6333 inactive_anon:0 isolated_anon:0
[  531.347108][T10351]  active_file:13191 inactive_file:39901 isolated_file:0
[  531.347108][T10351]  unevictable:768 dirty:452 writeback:0
[  531.347108][T10351]  slab_reclaimable:10523 slab_unreclaimable:95552
[  531.347108][T10351]  mapped:24014 shmem:1373 pagetables:353
[  531.347108][T10351]  sec_pagetables:0 bounce:0
[  531.347108][T10351]  kernel_misc_reclaimable:0
[  531.347108][T10351]  free:1345627 free_pcp:14880 free_cma:0
[  531.353439][T10359] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1699'.
[  531.405006][T10351] Node 0 active_anon:25332kB inactive_anon:0kB active_file:52764kB inactive_file:159400kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96056kB dirty:1808kB writeback:0kB shmem:3956kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10888kB pagetables:1412kB sec_pagetables:0kB all_unreclaimable? no
[  531.405063][T10351] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  531.405117][T10351] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  531.405165][T10351] lowmem_reserve[]: 0
[  531.420857][T10359] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  531.449367][T10351]  2525 2526 2526 2526
[  531.449406][T10351] Node 0 DMA32 free:1478512kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:25288kB inactive_anon:0kB active_file:52764kB inactive_file:158080kB unevictable:1536kB writepending:1808kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:36820kB local_pcp:17516kB free_cma:0kB
[  531.449455][T10351] lowmem_reserve[]: 0 0 1 1 1
[  531.449492][T10351] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  531.449536][T10351] lowmem_reserve[]: 0 0 0 0 0
[  531.449572][T10351] Node 1 Normal free:3888624kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22456kB local_pcp:9792kB free_cma:0kB
[  531.449627][T10351] lowmem_reserve[]: 0 0 0 0 0
[  531.449664][T10351] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  531.449795][T10351] Node 0 DMA32: 1936*4kB (UME) 1322*8kB (UME) 826*16kB (UME) 615*32kB (UME) 466*64kB (UME) 86*128kB (UME) 32*256kB (UME) 15*512kB (M) 4*1024kB (UM) 1*2048kB (M) 333*4096kB (UM) = 1478032kB
[  531.665322][T10351] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  531.677876][T10351] Node 1 Normal: 166*4kB (UE) 57*8kB (UME) 43*16kB (UME) 59*32kB (UME) 20*64kB (U) 7*128kB (UME) 1*256kB (E) 3*512kB (UME) 2*1024kB (UE) 2*2048kB (UE) 946*4096kB (M) = 3888624kB
[  531.700481][T10351] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  531.710490][T10351] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  531.720065][T10351] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  531.729796][T10351] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  531.739254][T10351] 54465 total pagecache pages
[  531.744329][T10351] 0 pages in swap cache
[  531.748901][T10351] Free swap  = 124996kB
[  531.761085][T10351] Total swap = 124996kB
[  531.765316][T10351] 2097051 pages RAM
[  531.769130][T10351] 0 pages HighMem/MovableOnly
[  531.797652][T10351] 416138 pages reserved
[  531.804028][T10351] 0 pages cma reserved
[  532.148638][T10375] C: renamed from team_slave_0 (while UP)
[  532.177698][T10375] netlink: 'syz.4.1705': attribute type 3 has an invalid length.
[  532.192333][T10375] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  533.111558][T10413] mac80211_hwsim hwsim3 .3#c„±: renamed from wlan1 (while UP)
[  533.656561][T10426] C: renamed from team_slave_0 (while UP)
[  533.682819][T10426] netlink: 'syz.2.1723': attribute type 3 has an invalid length.
[  533.694207][T10426] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  533.916784][T10436] FAULT_INJECTION: forcing a failure.
[  533.916784][T10436] name failslab, interval 1, probability 0, space 0, times 0
[  533.959575][T10436] CPU: 0 PID: 10436 Comm: syz.0.1727 Not tainted 6.6.102-syzkaller #0
[  533.967819][T10436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  533.978077][T10436] Call Trace:
[  533.981393][T10436]  <TASK>
[  533.984395][T10436]  dump_stack_lvl+0x16c/0x230
[  533.989282][T10436]  ? show_regs_print_info+0x20/0x20
[  533.994597][T10436]  ? load_image+0x3b0/0x3b0
[  533.999218][T10436]  ? __lock_acquire+0x7c80/0x7c80
[  534.004282][T10436]  should_fail_ex+0x39d/0x4d0
[  534.009267][T10436]  should_failslab+0x9/0x20
[  534.013802][T10436]  slab_pre_alloc_hook+0x59/0x310
[  534.018953][T10436]  ? sk_prot_alloc+0xe7/0x210
[  534.023692][T10436]  ? sk_prot_alloc+0xe7/0x210
[  534.028394][T10436]  __kmem_cache_alloc_node+0x53/0x260
[  534.033807][T10436]  ? sk_prot_alloc+0xe7/0x210
[  534.038515][T10436]  __kmalloc+0xa4/0x240
[  534.043232][T10436]  sk_prot_alloc+0xe7/0x210
[  534.047767][T10436]  ? sk_alloc+0x24/0x360
[  534.052044][T10436]  sk_alloc+0x3a/0x360
[  534.056157][T10436]  ? bpf_ctx_init+0x163/0x1a0
[  534.060960][T10436]  ? bpf_prog_test_run_skb+0x268/0x11c0
[  534.066540][T10436]  bpf_prog_test_run_skb+0x39a/0x11c0
[  534.072027][T10436]  ? __fget_files+0x28/0x4d0
[  534.076841][T10436]  ? cpu_online+0x60/0x60
[  534.081292][T10436]  bpf_prog_test_run+0x321/0x390
[  534.086298][T10436]  __sys_bpf+0x440/0x800
[  534.090569][T10436]  ? bpf_link_show_fdinfo+0x350/0x350
[  534.096242][T10436]  ? lock_chain_count+0x20/0x20
[  534.101211][T10436]  __x64_sys_bpf+0x7c/0x90
[  534.105740][T10436]  do_syscall_64+0x55/0xb0
[  534.110179][T10436]  ? clear_bhb_loop+0x40/0x90
[  534.114886][T10436]  ? clear_bhb_loop+0x40/0x90
[  534.119605][T10436]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  534.125633][T10436] RIP: 0033:0x7f547738ebe9
[  534.130071][T10436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.149874][T10436] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  534.158504][T10436] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  534.166711][T10436] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[  534.174806][T10436] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  534.182802][T10436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.190821][T10436] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  534.198839][T10436]  </TASK>
[  534.218661][T10437] __nla_validate_parse: 10 callbacks suppressed
[  534.218679][T10437] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1728'.
[  534.259097][T10437] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1728'.
[  534.274681][T10443] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1728'.
[  534.349515][T10440] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1728'.
[  535.041554][T10466] netlink: 'syz.4.1735': attribute type 29 has an invalid length.
[  535.049456][T10466] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1735'.
[  535.359239][T10467] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1733'.
[  535.383690][T10467] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1733'.
[  535.403840][T10467] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1733'.
[  535.464117][T10465] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1733'.
[  536.644539][T10512] netlink: 'syz.2.1750': attribute type 51 has an invalid length.
[  537.184318][T10526] netlink: 'syz.2.1755': attribute type 5 has an invalid length.
[  537.271510][T10526] netlink: 'syz.2.1755': attribute type 10 has an invalid length.
[  537.291807][T10526] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1755'.
[  539.894915][T10565] __nla_validate_parse: 8 callbacks suppressed
[  539.894933][T10565] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1763'.
[  539.984415][T10565] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1763'.
[  540.034527][T10566] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1763'.
[  540.070453][T10568] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1763'.
[  540.228682][T10570] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1764'.
[  540.297050][T10572] FAULT_INJECTION: forcing a failure.
[  540.297050][T10572] name failslab, interval 1, probability 0, space 0, times 0
[  540.321892][T10570] batadv_slave_1: entered promiscuous mode
[  540.360454][T10572] CPU: 1 PID: 10572 Comm: syz.0.1766 Not tainted 6.6.102-syzkaller #0
[  540.368897][T10572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  540.379243][T10572] Call Trace:
[  540.382726][T10572]  <TASK>
[  540.385795][T10572]  dump_stack_lvl+0x16c/0x230
[  540.390732][T10572]  ? show_regs_print_info+0x20/0x20
[  540.396081][T10572]  ? load_image+0x3b0/0x3b0
[  540.400759][T10572]  ? __might_sleep+0xe0/0xe0
[  540.405551][T10572]  ? __lock_acquire+0x7c80/0x7c80
[  540.410767][T10572]  should_fail_ex+0x39d/0x4d0
[  540.415627][T10572]  should_failslab+0x9/0x20
[  540.420335][T10572]  slab_pre_alloc_hook+0x59/0x310
[  540.425639][T10572]  kmem_cache_alloc+0x5a/0x2e0
[  540.430646][T10572]  ? security_inode_alloc+0x34/0x110
[  540.436224][T10572]  security_inode_alloc+0x34/0x110
[  540.441536][T10572]  inode_init_always+0x8fc/0xc90
[  540.446766][T10572]  new_inode_pseudo+0x95/0x1d0
[  540.451904][T10572]  sock_alloc+0x46/0x220
[  540.456306][T10572]  kcm_ioctl+0xec/0xff0
[  540.460767][T10572]  ? __kmem_cache_free+0xba/0x1f0
[  540.466349][T10572]  ? kcm_release+0x5b0/0x5b0
[  540.471188][T10572]  ? tomoyo_path_number_perm+0x4dc/0x590
[  540.477040][T10572]  ? tomoyo_path_number_perm+0x1ba/0x590
[  540.482817][T10572]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  540.488634][T10572]  sock_do_ioctl+0xd7/0x2f0
[  540.493408][T10572]  ? sock_show_fdinfo+0xb0/0xb0
[  540.498721][T10572]  sock_ioctl+0x623/0x7a0
[  540.503318][T10572]  ? sock_poll+0x3d0/0x3d0
[  540.507980][T10572]  ? bpf_lsm_file_ioctl+0x9/0x10
[  540.513128][T10572]  ? security_file_ioctl+0x80/0xa0
[  540.518572][T10572]  ? sock_poll+0x3d0/0x3d0
[  540.523138][T10572]  __se_sys_ioctl+0xfd/0x170
[  540.527925][T10572]  do_syscall_64+0x55/0xb0
[  540.532479][T10572]  ? clear_bhb_loop+0x40/0x90
[  540.537274][T10572]  ? clear_bhb_loop+0x40/0x90
[  540.542269][T10572]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  540.548293][T10572] RIP: 0033:0x7f547738ebe9
[  540.552832][T10572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.572577][T10572] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  540.581139][T10572] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  540.589237][T10572] RDX: 00002000000001c0 RSI: 00000000000089e2 RDI: 0000000000000006
[  540.597306][T10572] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  540.605329][T10572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  540.613353][T10572] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  540.621470][T10572]  </TASK>
[  541.074323][T10583] netlink: 'syz.0.1770': attribute type 2 has an invalid length.
[  541.121470][T10583] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.1770'.
[  541.235505][T10583] netlink: 'syz.0.1770': attribute type 3 has an invalid length.
[  541.251601][T10583] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1770'.
[  541.260741][T10583] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  541.295134][ T9739] tipc: Subscription rejected, illegal request
[  541.796166][T10591] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1771'.
[  542.120222][T10591] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1771'.
[  542.215751][T10588] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1771'.
[  544.017338][T10628] FAULT_INJECTION: forcing a failure.
[  544.017338][T10628] name failslab, interval 1, probability 0, space 0, times 0
[  544.092946][T10628] CPU: 0 PID: 10628 Comm: syz.3.1783 Not tainted 6.6.102-syzkaller #0
[  544.101481][T10628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  544.111678][T10628] Call Trace:
[  544.115001][T10628]  <TASK>
[  544.117975][T10628]  dump_stack_lvl+0x16c/0x230
[  544.122831][T10628]  ? show_regs_print_info+0x20/0x20
[  544.128084][T10628]  ? load_image+0x3b0/0x3b0
[  544.132661][T10628]  ? __might_sleep+0xe0/0xe0
[  544.137333][T10628]  ? __lock_acquire+0x7c80/0x7c80
[  544.142433][T10628]  should_fail_ex+0x39d/0x4d0
[  544.147207][T10628]  should_failslab+0x9/0x20
[  544.151767][T10628]  slab_pre_alloc_hook+0x59/0x310
[  544.156943][T10628]  ? tomoyo_encode2+0x27f/0x530
[  544.161863][T10628]  ? tomoyo_encode2+0x27f/0x530
[  544.166852][T10628]  __kmem_cache_alloc_node+0x53/0x260
[  544.172561][T10628]  ? tomoyo_encode2+0x27f/0x530
[  544.177475][T10628]  __kmalloc+0xa4/0x240
[  544.181711][T10628]  tomoyo_encode2+0x27f/0x530
[  544.186472][T10628]  tomoyo_check_unix_address+0x3be/0x7a0
[  544.192202][T10628]  ? tomoyo_check_unix_address+0x158/0x7a0
[  544.198063][T10628]  ? tomoyo_socket_listen_permission+0x320/0x320
[  544.204492][T10628]  tomoyo_socket_sendmsg_permission+0x1da/0x2f0
[  544.210786][T10628]  security_socket_sendmsg+0x70/0xa0
[  544.216115][T10628]  ____sys_sendmsg+0x533/0x950
[  544.221181][T10628]  ? __asan_memset+0x22/0x40
[  544.225803][T10628]  ? __sys_sendmsg_sock+0x30/0x30
[  544.230849][T10628]  ? __import_iovec+0x3fa/0x860
[  544.235744][T10628]  ? import_iovec+0x73/0xa0
[  544.240286][T10628]  ___sys_sendmsg+0x220/0x290
[  544.244991][T10628]  ? __sys_sendmsg+0x270/0x270
[  544.249840][T10628]  ? __lock_acquire+0x7c80/0x7c80
[  544.255039][T10628]  __se_sys_sendmsg+0x1a5/0x270
[  544.259918][T10628]  ? __x64_sys_sendmsg+0x80/0x80
[  544.264941][T10628]  ? lockdep_hardirqs_on+0x98/0x150
[  544.270519][T10628]  do_syscall_64+0x55/0xb0
[  544.275036][T10628]  ? clear_bhb_loop+0x40/0x90
[  544.279875][T10628]  ? clear_bhb_loop+0x40/0x90
[  544.285018][T10628]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  544.290935][T10628] RIP: 0033:0x7f6cf218ebe9
[  544.295374][T10628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.315178][T10628] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  544.323794][T10628] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  544.331787][T10628] RDX: 0000000000000000 RSI: 0000200000000640 RDI: 000000000000000a
[  544.339770][T10628] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  544.347759][T10628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  544.356055][T10628] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  544.364101][T10628]  </TASK>
[  545.781232][T10642] __nla_validate_parse: 1 callbacks suppressed
[  545.781253][T10642] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1788'.
[  545.879688][T10649] netlink: 'syz.4.1789': attribute type 2 has an invalid length.
[  545.915397][T10649] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.1789'.
[  546.000430][T10642] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1788'.
[  546.022289][T10641] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1788'.
[  546.055569][T10655] netlink: 'syz.3.1792': attribute type 28 has an invalid length.
[  546.072075][T10647] netlink: 'syz.4.1789': attribute type 3 has an invalid length.
[  546.088894][T10647] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1789'.
[  546.146855][T10647] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  546.206340][T10643] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1788'.
[  546.476186][T10661] netlink: 'syz.4.1795': attribute type 4 has an invalid length.
[  546.514893][T10661] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1795'.
[  547.109080][T10675] netlink: 'syz.0.1800': attribute type 28 has an invalid length.
[  547.131675][T10675] ip6gretap0: entered allmulticast mode
[  547.514386][T10685] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.1806'.
[  548.259771][T10701] netlink: 'syz.4.1812': attribute type 10 has an invalid length.
[  548.482773][T10701] macvlan1: entered promiscuous mode
[  548.496887][T10701] macvlan1: entered allmulticast mode
[  548.523597][T10701] veth1_vlan: entered allmulticast mode
[  548.542339][T10701] team0: Port device macvlan1 added
[  548.792690][T10713] netlink: 'syz.4.1817': attribute type 1 has an invalid length.
[  548.820219][T10713] netlink: 181400 bytes leftover after parsing attributes in process `syz.4.1817'.
[  550.058936][T10734] netlink: 49920 bytes leftover after parsing attributes in process `syz.0.1825'.
[  550.079639][T10734] netlink: 'syz.0.1825': attribute type 21 has an invalid length.
[  550.938372][T10763] FAULT_INJECTION: forcing a failure.
[  550.938372][T10763] name failslab, interval 1, probability 0, space 0, times 0
[  550.962325][T10763] CPU: 1 PID: 10763 Comm: syz.0.1837 Not tainted 6.6.102-syzkaller #0
[  550.970547][T10763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  550.980627][T10763] Call Trace:
[  550.983918][T10763]  <TASK>
[  550.986869][T10763]  dump_stack_lvl+0x16c/0x230
[  550.991553][T10763]  ? show_regs_print_info+0x20/0x20
[  550.997801][T10763]  ? load_image+0x3b0/0x3b0
[  551.002321][T10763]  ? __lock_acquire+0x7c80/0x7c80
[  551.007450][T10763]  should_fail_ex+0x39d/0x4d0
[  551.012255][T10763]  should_failslab+0x9/0x20
[  551.016886][T10763]  slab_pre_alloc_hook+0x59/0x310
[  551.022030][T10763]  ? __lock_acquire+0x7c80/0x7c80
[  551.027077][T10763]  kmem_cache_alloc+0x5a/0x2e0
[  551.031835][T10763]  ? security_file_alloc+0x34/0x120
[  551.037054][T10763]  security_file_alloc+0x34/0x120
[  551.042111][T10763]  init_file+0x94/0x1f0
[  551.046280][T10763]  alloc_empty_file+0xb7/0x1d0
[  551.051047][T10763]  alloc_file+0x5c/0x600
[  551.055301][T10763]  alloc_file_pseudo+0x17e/0x200
[  551.060235][T10763]  ? alloc_empty_backing_file+0xe0/0xe0
[  551.065888][T10763]  anon_inode_getfile+0xc5/0x1a0
[  551.071011][T10763]  __se_sys_perf_event_open+0xeb5/0x1c20
[  551.076660][T10763]  ? __x64_sys_perf_event_open+0xc0/0xc0
[  551.082293][T10763]  ? lock_chain_count+0x20/0x20
[  551.087325][T10763]  ? lockdep_hardirqs_on+0x98/0x150
[  551.092601][T10763]  ? __x64_sys_perf_event_open+0x20/0xc0
[  551.098339][T10763]  do_syscall_64+0x55/0xb0
[  551.102791][T10763]  ? clear_bhb_loop+0x40/0x90
[  551.107466][T10763]  ? clear_bhb_loop+0x40/0x90
[  551.112143][T10763]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  551.118037][T10763] RIP: 0033:0x7f547738ebe9
[  551.122441][T10763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.142045][T10763] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  551.150461][T10763] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  551.158427][T10763] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000000
[  551.166395][T10763] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  551.174443][T10763] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002
[  551.182414][T10763] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  551.190389][T10763]  </TASK>
[  552.033313][T10795] netlink: 'syz.4.1845': attribute type 21 has an invalid length.
[  552.044543][T10795] netlink: 'syz.4.1845': attribute type 11 has an invalid length.
[  552.184460][T10797] netlink: 'syz.0.1848': attribute type 10 has an invalid length.
[  552.230741][T10797] macvlan1: entered promiscuous mode
[  552.243409][T10797] macvlan1: entered allmulticast mode
[  552.260585][T10797] veth1_vlan: entered allmulticast mode
[  552.273771][T10797] team0: Port device macvlan1 added
[  552.571985][T10807] netlink: 'syz.0.1852': attribute type 1 has an invalid length.
[  552.579774][T10807] __nla_validate_parse: 2 callbacks suppressed
[  552.579788][T10807] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.1852'.
[  552.834600][T10818] netlink: 'syz.2.1857': attribute type 153 has an invalid length.
[  552.846103][T10818] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1857'.
[  554.052309][T10871] netlink: 'syz.2.1860': attribute type 10 has an invalid length.
[  554.267560][T10871] veth1_vlan: left allmulticast mode
[  554.630113][T10871] veth1_vlan: entered allmulticast mode
[  554.686143][T10874] netlink: 'syz.4.1862': attribute type 10 has an invalid length.
[  554.703108][T10871] macvlan1: entered promiscuous mode
[  554.724585][T10871] team0: Port device macvlan1 added
[  554.814828][T10877] netlink: 'syz.3.1861': attribute type 1 has an invalid length.
[  554.835063][T10877] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.1861'.
[  554.972116][T10879] netlink: 'syz.0.1869': attribute type 21 has an invalid length.
[  554.989553][T10879] netlink: 'syz.0.1869': attribute type 11 has an invalid length.
[  555.076485][T10885] FAULT_INJECTION: forcing a failure.
[  555.076485][T10885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  555.077254][T10888] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.1866'.
[  555.090040][T10885] CPU: 1 PID: 10885 Comm: syz.2.1865 Not tainted 6.6.102-syzkaller #0
[  555.108662][T10885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  555.118829][T10887] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.1866'.
[  555.118887][T10885] Call Trace:
[  555.118897][T10885]  <TASK>
[  555.134496][T10885]  dump_stack_lvl+0x16c/0x230
[  555.139188][T10885]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  555.145351][T10885]  ? show_regs_print_info+0x20/0x20
[  555.150641][T10885]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  555.157165][T10885]  should_fail_ex+0x39d/0x4d0
[  555.161940][T10885]  _copy_to_user+0x2f/0xa0
[  555.166448][T10885]  bpf_test_finish+0x24b/0x620
[  555.171260][T10885]  ? convert___skb_to_skb+0x590/0x590
[  555.176831][T10885]  ? convert_skb_to___skb+0x420/0x420
[  555.182238][T10885]  ? bpf_test_init+0x134/0x150
[  555.187014][T10885]  bpf_prog_test_run_xdp+0x7fa/0xfa0
[  555.192339][T10885]  ? dev_put+0x80/0x80
[  555.196430][T10885]  ? dev_put+0x80/0x80
[  555.200519][T10885]  bpf_prog_test_run+0x321/0x390
[  555.205508][T10885]  __sys_bpf+0x440/0x800
[  555.209775][T10885]  ? bpf_link_show_fdinfo+0x350/0x350
[  555.215184][T10885]  ? lock_chain_count+0x20/0x20
[  555.220024][T10885]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  555.226100][T10885]  __x64_sys_bpf+0x7c/0x90
[  555.230512][T10885]  do_syscall_64+0x55/0xb0
[  555.234933][T10885]  ? clear_bhb_loop+0x40/0x90
[  555.239616][T10885]  ? clear_bhb_loop+0x40/0x90
[  555.244468][T10885]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  555.250362][T10885] RIP: 0033:0x7f5e71d8ebe9
[  555.255039][T10885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.274642][T10885] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  555.283071][T10885] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  555.291053][T10885] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  555.299124][T10885] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  555.307181][T10885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  555.315235][T10885] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  555.323303][T10885]  </TASK>
[  555.410375][T10894] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1868'.
[  555.430546][T10894] netlink: 209844 bytes leftover after parsing attributes in process `syz.4.1868'.
[  555.908900][T10916] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1877'.
[  555.937715][T10916] .`: renamed from bond0 (while UP)
[  556.037293][T10919] FAULT_INJECTION: forcing a failure.
[  556.037293][T10919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  556.066808][T10919] CPU: 0 PID: 10919 Comm: syz.0.1879 Not tainted 6.6.102-syzkaller #0
[  556.075064][T10919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  556.085174][T10919] Call Trace:
[  556.088508][T10919]  <TASK>
[  556.091507][T10919]  dump_stack_lvl+0x16c/0x230
[  556.096327][T10919]  ? show_regs_print_info+0x20/0x20
[  556.101855][T10919]  ? load_image+0x3b0/0x3b0
[  556.106398][T10919]  ? __lock_acquire+0x7c80/0x7c80
[  556.111478][T10919]  ? snprintf+0xdb/0x120
[  556.115761][T10919]  should_fail_ex+0x39d/0x4d0
[  556.120578][T10919]  _copy_to_user+0x2f/0xa0
[  556.125040][T10919]  simple_read_from_buffer+0xe7/0x150
[  556.130497][T10919]  proc_fail_nth_read+0x1e3/0x250
[  556.135587][T10919]  ? proc_fault_inject_write+0x340/0x340
[  556.141382][T10919]  ? fsnotify_perm+0x271/0x5e0
[  556.146229][T10919]  ? proc_fault_inject_write+0x340/0x340
[  556.151907][T10919]  vfs_read+0x27e/0x920
[  556.156118][T10919]  ? kernel_read+0x1e0/0x1e0
[  556.160753][T10919]  ? __fget_files+0x28/0x4d0
[  556.165397][T10919]  ? __fget_files+0x44a/0x4d0
[  556.170283][T10919]  ? __fdget_pos+0x2a3/0x330
[  556.174896][T10919]  ? ksys_read+0x75/0x250
[  556.179273][T10919]  ksys_read+0x147/0x250
[  556.183523][T10919]  ? vfs_write+0x940/0x940
[  556.188039][T10919]  ? lockdep_hardirqs_on+0x98/0x150
[  556.193258][T10919]  do_syscall_64+0x55/0xb0
[  556.197679][T10919]  ? clear_bhb_loop+0x40/0x90
[  556.202463][T10919]  ? clear_bhb_loop+0x40/0x90
[  556.207163][T10919]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  556.213066][T10919] RIP: 0033:0x7f547738d5fc
[  556.217478][T10919] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  556.237174][T10919] RSP: 002b:00007f5478280030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  556.245589][T10919] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738d5fc
[  556.253562][T10919] RDX: 000000000000000f RSI: 00007f54782800a0 RDI: 0000000000000006
[  556.261541][T10919] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  556.269599][T10919] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[  556.277653][T10919] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  556.285738][T10919]  </TASK>
[  556.408122][T10926] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1881'.
[  556.420568][T10926] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1881'.
[  556.958153][T10930] syzkaller0: entered promiscuous mode
[  556.965213][T10930] syzkaller0: entered allmulticast mode
[  557.162117][T10936] validate_nla: 6 callbacks suppressed
[  557.162136][T10936] netlink: 'syz.4.1883': attribute type 21 has an invalid length.
[  557.176557][T10936] netlink: 'syz.4.1883': attribute type 11 has an invalid length.
[  559.606616][T10963] __nla_validate_parse: 1 callbacks suppressed
[  559.606634][T10963] netlink: 65027 bytes leftover after parsing attributes in process `syz.2.1893'.
[  559.608092][T10965] FAULT_INJECTION: forcing a failure.
[  559.608092][T10965] name failslab, interval 1, probability 0, space 0, times 0
[  559.642108][T10965] CPU: 1 PID: 10965 Comm: syz.4.1894 Not tainted 6.6.102-syzkaller #0
[  559.650345][T10965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  559.660607][T10965] Call Trace:
[  559.663924][T10965]  <TASK>
[  559.666882][T10965]  dump_stack_lvl+0x16c/0x230
[  559.671699][T10965]  ? show_regs_print_info+0x20/0x20
[  559.676949][T10965]  ? load_image+0x3b0/0x3b0
[  559.681515][T10965]  ? verify_lock_unused+0x140/0x140
[  559.686771][T10965]  ? perf_trace_lock+0x2ed/0x380
[  559.691772][T10965]  should_fail_ex+0x39d/0x4d0
[  559.696511][T10965]  should_failslab+0x9/0x20
[  559.701043][T10965]  slab_pre_alloc_hook+0x59/0x310
[  559.706116][T10965]  kmem_cache_alloc+0x5a/0x2e0
[  559.710922][T10965]  ? skb_clone+0x1eb/0x370
[  559.715394][T10965]  skb_clone+0x1eb/0x370
[  559.719679][T10965]  __netlink_deliver_tap+0x41c/0x830
[  559.725107][T10965]  ? netlink_deliver_tap+0x2e/0x1b0
[  559.730348][T10965]  netlink_deliver_tap+0x19c/0x1b0
[  559.735510][T10965]  __netlink_sendskb+0x4b/0x90
[  559.740420][T10965]  netlink_dump+0x9fb/0xde0
[  559.744943][T10965]  ? netlink_lookup+0x200/0x200
[  559.749902][T10965]  ? __asan_memset+0x22/0x40
[  559.754498][T10965]  ? genl_start+0x493/0x6b0
[  559.759173][T10965]  __netlink_dump_start+0x5f1/0x810
[  559.764396][T10965]  genl_family_rcv_msg_dumpit+0x1e8/0x2c0
[  559.770147][T10965]  ? genl_rcv_msg+0x790/0x790
[  559.774881][T10965]  ? genl_get_cmd+0x7d6/0x910
[  559.779665][T10965]  ? genl_family_rcv_msg_doit+0x2f0/0x2f0
[  559.785407][T10965]  ? genl_start+0x6b0/0x6b0
[  559.789915][T10965]  ? genl_dumpit+0x1a0/0x1a0
[  559.794519][T10965]  genl_rcv_msg+0x5d7/0x790
[  559.799316][T10965]  ? genl_bind+0x360/0x360
[  559.803740][T10965]  ? psample_group_nl_fill+0x3c0/0x3c0
[  559.809221][T10965]  ? perf_trace_lock+0x2ed/0x380
[  559.814181][T10965]  ? __copy_skb_header+0xa7/0x550
[  559.819323][T10965]  netlink_rcv_skb+0x216/0x480
[  559.824194][T10965]  ? genl_bind+0x360/0x360
[  559.828685][T10965]  ? netlink_ack+0x1110/0x1110
[  559.833885][T10965]  ? __lock_acquire+0x7c80/0x7c80
[  559.839041][T10965]  ? down_read+0x1ac/0x2e0
[  559.843493][T10965]  genl_rcv+0x28/0x40
[  559.847510][T10965]  netlink_unicast+0x751/0x8d0
[  559.852414][T10965]  netlink_sendmsg+0x8c1/0xbe0
[  559.857566][T10965]  ? netlink_getsockopt+0x580/0x580
[  559.862785][T10965]  ? aa_sock_msg_perm+0x94/0x150
[  559.867752][T10965]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  559.873062][T10965]  ? security_socket_sendmsg+0x80/0xa0
[  559.878631][T10965]  ? netlink_getsockopt+0x580/0x580
[  559.883868][T10965]  ____sys_sendmsg+0x5bf/0x950
[  559.888736][T10965]  ? __asan_memset+0x22/0x40
[  559.893379][T10965]  ? __sys_sendmsg_sock+0x30/0x30
[  559.898695][T10965]  ? __import_iovec+0x5f2/0x860
[  559.903775][T10965]  ? import_iovec+0x73/0xa0
[  559.908334][T10965]  ___sys_sendmsg+0x220/0x290
[  559.913229][T10965]  ? __sys_sendmsg+0x270/0x270
[  559.918123][T10965]  ? __lock_acquire+0x7c80/0x7c80
[  559.923262][T10965]  __se_sys_sendmsg+0x1a5/0x270
[  559.928125][T10965]  ? __x64_sys_sendmsg+0x80/0x80
[  559.933143][T10965]  ? lockdep_hardirqs_on+0x98/0x150
[  559.938501][T10965]  do_syscall_64+0x55/0xb0
[  559.942938][T10965]  ? clear_bhb_loop+0x40/0x90
[  559.947635][T10965]  ? clear_bhb_loop+0x40/0x90
[  559.952513][T10965]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  559.958440][T10965] RIP: 0033:0x7f3ef9f8ebe9
[  559.962863][T10965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.982739][T10965] RSP: 002b:00007f3efad85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  559.991212][T10965] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8ebe9
[  559.999284][T10965] RDX: 0000000000004000 RSI: 0000200000000000 RDI: 0000000000000004
[  560.007282][T10965] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  560.015263][T10965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  560.023512][T10965] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  560.031534][T10965]  </TASK>
[  560.452409][T10990] FAULT_INJECTION: forcing a failure.
[  560.452409][T10990] name failslab, interval 1, probability 0, space 0, times 0
[  560.484603][T10990] CPU: 0 PID: 10990 Comm: syz.3.1901 Not tainted 6.6.102-syzkaller #0
[  560.493012][T10990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  560.503103][T10990] Call Trace:
[  560.506387][T10990]  <TASK>
[  560.509410][T10990]  dump_stack_lvl+0x16c/0x230
[  560.514106][T10990]  ? show_regs_print_info+0x20/0x20
[  560.519399][T10990]  ? load_image+0x3b0/0x3b0
[  560.523919][T10990]  ? __might_sleep+0xe0/0xe0
[  560.528522][T10990]  ? __lock_acquire+0x7c80/0x7c80
[  560.533565][T10990]  should_fail_ex+0x39d/0x4d0
[  560.538355][T10990]  should_failslab+0x9/0x20
[  560.542875][T10990]  slab_pre_alloc_hook+0x59/0x310
[  560.548010][T10990]  ? memcg_alloc_slab_cgroups+0x87/0x130
[  560.553664][T10990]  ? memcg_alloc_slab_cgroups+0x87/0x130
[  560.559319][T10990]  __kmem_cache_alloc_node+0x53/0x260
[  560.564811][T10990]  ? memcg_alloc_slab_cgroups+0x87/0x130
[  560.570545][T10990]  __kmalloc_node+0xa4/0x230
[  560.575154][T10990]  memcg_alloc_slab_cgroups+0x87/0x130
[  560.580636][T10990]  slab_post_alloc_hook+0xfc/0x4d0
[  560.585855][T10990]  kmem_cache_alloc_node+0x150/0x330
[  560.591166][T10990]  ? __alloc_skb+0x108/0x2c0
[  560.595872][T10990]  __alloc_skb+0x108/0x2c0
[  560.600302][T10990]  alloc_skb_with_frags+0xca/0x7c0
[  560.605434][T10990]  ? trace_event_raw_event_lock+0x230/0x230
[  560.611359][T10990]  sock_alloc_send_pskb+0x857/0x990
[  560.616615][T10990]  ? sock_kzfree_s+0x50/0x50
[  560.621228][T10990]  ? aa_sk_perm+0x930/0x930
[  560.625849][T10990]  queue_oob+0xe7/0x4e0
[  560.630030][T10990]  ? scm_stat_add+0xc0/0xc0
[  560.634665][T10990]  ? __might_sleep+0xe0/0xe0
[  560.639286][T10990]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x10
[  560.645360][T10990]  ? security_socket_getpeersec_dgram+0x83/0xa0
[  560.651710][T10990]  unix_stream_sendmsg+0xaa2/0xba0
[  560.657020][T10990]  ? aa_sk_perm+0x7fc/0x930
[  560.661549][T10990]  ? unix_show_fdinfo+0x270/0x270
[  560.666763][T10990]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  560.673396][T10990]  ? aa_sock_msg_perm+0x94/0x150
[  560.678443][T10990]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  560.684001][T10990]  ? security_socket_sendmsg+0x80/0xa0
[  560.689484][T10990]  ? unix_show_fdinfo+0x270/0x270
[  560.694548][T10990]  ____sys_sendmsg+0x5bf/0x950
[  560.699355][T10990]  ? __asan_memset+0x22/0x40
[  560.703979][T10990]  ? __sys_sendmsg_sock+0x30/0x30
[  560.709132][T10990]  ? __import_iovec+0x5f2/0x860
[  560.714170][T10990]  ? import_iovec+0x73/0xa0
[  560.718706][T10990]  ___sys_sendmsg+0x220/0x290
[  560.723402][T10990]  ? __sys_sendmsg+0x270/0x270
[  560.728242][T10990]  ? __lock_acquire+0x7c80/0x7c80
[  560.733348][T10990]  __se_sys_sendmsg+0x1a5/0x270
[  560.738512][T10990]  ? __x64_sys_sendmsg+0x80/0x80
[  560.743512][T10990]  ? lockdep_hardirqs_on+0x98/0x150
[  560.748738][T10990]  do_syscall_64+0x55/0xb0
[  560.753165][T10990]  ? clear_bhb_loop+0x40/0x90
[  560.757849][T10990]  ? clear_bhb_loop+0x40/0x90
[  560.762547][T10990]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  560.768467][T10990] RIP: 0033:0x7f6cf218ebe9
[  560.772893][T10990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.792602][T10990] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  560.801174][T10990] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  560.809153][T10990] RDX: 000000000400100f RSI: 0000200000000f80 RDI: 0000000000000004
[  560.817244][T10990] RBP: 00007f6cf2f4c090 R08: 0000000000000000 R09: 0000000000000000
[  560.825295][T10990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  560.833389][T10990] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  560.841538][T10990]  </TASK>
[  561.531691][T11024] FAULT_INJECTION: forcing a failure.
[  561.531691][T11024] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  561.571508][T11024] CPU: 0 PID: 11024 Comm: syz.2.1906 Not tainted 6.6.102-syzkaller #0
[  561.579746][T11024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  561.589830][T11024] Call Trace:
[  561.593209][T11024]  <TASK>
[  561.596145][T11024]  dump_stack_lvl+0x16c/0x230
[  561.600911][T11024]  ? show_regs_print_info+0x20/0x20
[  561.606105][T11024]  ? load_image+0x3b0/0x3b0
[  561.610617][T11024]  ? __might_fault+0xaa/0x120
[  561.615374][T11024]  ? __lock_acquire+0x7c80/0x7c80
[  561.620404][T11024]  ? perf_trace_lock+0xf7/0x380
[  561.625258][T11024]  should_fail_ex+0x39d/0x4d0
[  561.629942][T11024]  _copy_from_user+0x2f/0xe0
[  561.634628][T11024]  ___sys_sendmsg+0x159/0x290
[  561.639440][T11024]  ? __sys_sendmsg+0x270/0x270
[  561.644240][T11024]  ? __lock_acquire+0x7c80/0x7c80
[  561.649328][T11024]  __se_sys_sendmsg+0x1a5/0x270
[  561.654231][T11024]  ? __x64_sys_sendmsg+0x80/0x80
[  561.659204][T11024]  ? lockdep_hardirqs_on+0x98/0x150
[  561.664448][T11024]  do_syscall_64+0x55/0xb0
[  561.668878][T11024]  ? clear_bhb_loop+0x40/0x90
[  561.673910][T11024]  ? clear_bhb_loop+0x40/0x90
[  561.678579][T11024]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  561.684479][T11024] RIP: 0033:0x7f5e71d8ebe9
[  561.688885][T11024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.708674][T11024] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  561.717091][T11024] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  561.725093][T11024] RDX: 0000000000000080 RSI: 0000200000000100 RDI: 0000000000000003
[  561.733085][T11024] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  561.741245][T11024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  561.749219][T11024] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  561.757231][T11024]  </TASK>
[  561.865136][T11032] FAULT_INJECTION: forcing a failure.
[  561.865136][T11032] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  561.914846][T11032] CPU: 0 PID: 11032 Comm: syz.3.1908 Not tainted 6.6.102-syzkaller #0
[  561.923117][T11032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  561.933491][T11032] Call Trace:
[  561.936816][T11032]  <TASK>
[  561.939789][T11032]  dump_stack_lvl+0x16c/0x230
[  561.944541][T11032]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  561.950893][T11032]  ? show_regs_print_info+0x20/0x20
[  561.956173][T11032]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  561.962509][T11032]  should_fail_ex+0x39d/0x4d0
[  561.967352][T11032]  _copy_from_user+0x2f/0xe0
[  561.972070][T11032]  strndup_user+0xb7/0x150
[  561.976649][T11032]  perf_uprobe_init+0x61/0x190
[  561.981504][T11032]  perf_uprobe_event_init+0xe6/0x180
[  561.986957][T11032]  perf_try_init_event+0x12b/0x3c0
[  561.992101][T11032]  perf_event_alloc+0xfa4/0x21b0
[  561.997047][T11032]  ? perf_event_alloc+0xc06/0x21b0
[  562.002221][T11032]  ? find_lively_task_by_vpid+0x19/0x290
[  562.008081][T11032]  __se_sys_perf_event_open+0x70e/0x1c20
[  562.013849][T11032]  ? mutex_unlock+0x10/0x10
[  562.018393][T11032]  ? __x64_sys_perf_event_open+0xc0/0xc0
[  562.024198][T11032]  ? lock_chain_count+0x20/0x20
[  562.029261][T11032]  ? lockdep_hardirqs_on+0x98/0x150
[  562.034478][T11032]  ? __x64_sys_perf_event_open+0x20/0xc0
[  562.040202][T11032]  do_syscall_64+0x55/0xb0
[  562.044728][T11032]  ? clear_bhb_loop+0x40/0x90
[  562.049448][T11032]  ? clear_bhb_loop+0x40/0x90
[  562.054158][T11032]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  562.060072][T11032] RIP: 0033:0x7f6cf218ebe9
[  562.064508][T11032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  562.084438][T11032] RSP: 002b:00007f6cf2f4c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  562.092874][T11032] RAX: ffffffffffffffda RBX: 00007f6cf23b5fa0 RCX: 00007f6cf218ebe9
[  562.100901][T11032] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  562.109046][T11032] RBP: 00007f6cf2f4c090 R08: 0000000000000001 R09: 0000000000000000
[  562.117075][T11032] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  562.125073][T11032] R13: 00007f6cf23b6038 R14: 00007f6cf23b5fa0 R15: 00007ffcd7ae74a8
[  562.133097][T11032]  </TASK>
[  562.730787][T11053] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1916'.
[  562.764589][T11053] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1916'.
[  563.236438][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  563.243195][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  563.297639][T11069] netlink: 'syz.2.1921': attribute type 2 has an invalid length.
[  563.356671][T11069] netlink: 'syz.2.1921': attribute type 4 has an invalid length.
[  563.387233][T11069] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1921'.
[  563.682312][T11080] netlink: 56537 bytes leftover after parsing attributes in process `syz.3.1923'.
[  563.886775][T11091] batman_adv: The newly added mac address (00:00:00:20:00:00) already exists on: batadv_slave_0
[  563.908266][T11091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.143188][T11100] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1928'.
[  564.173216][T11100] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1928'.
[  564.216715][T11105] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1928'.
[  564.422090][T11111] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.1933'.
[  564.854458][T11121] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1935'.
[  564.882116][T11121] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1935'.
[  564.924932][T11118] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1935'.
[  564.940467][T11123] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1935'.
[  565.035272][T11124] netlink: 'syz.4.1937': attribute type 153 has an invalid length.
[  565.069142][T11124] netlink: 'syz.4.1937': attribute type 1 has an invalid length.
[  565.097440][T11124] netlink: 104088 bytes leftover after parsing attributes in process `syz.4.1937'.
[  565.411470][T11132] netlink: 71 bytes leftover after parsing attributes in process `syz.3.1939'.
[  565.608668][T11142] FAULT_INJECTION: forcing a failure.
[  565.608668][T11142] name failslab, interval 1, probability 0, space 0, times 0
[  565.634537][T11142] CPU: 1 PID: 11142 Comm: syz.2.1943 Not tainted 6.6.102-syzkaller #0
[  565.642873][T11142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  565.653038][T11142] Call Trace:
[  565.656322][T11142]  <TASK>
[  565.659342][T11142]  dump_stack_lvl+0x16c/0x230
[  565.664118][T11142]  ? show_regs_print_info+0x20/0x20
[  565.669314][T11142]  ? load_image+0x3b0/0x3b0
[  565.673914][T11142]  ? __might_sleep+0xe0/0xe0
[  565.678508][T11142]  ? __lock_acquire+0x7c80/0x7c80
[  565.683550][T11142]  should_fail_ex+0x39d/0x4d0
[  565.688244][T11142]  should_failslab+0x9/0x20
[  565.692791][T11142]  slab_pre_alloc_hook+0x59/0x310
[  565.697822][T11142]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  565.703550][T11142]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  565.709282][T11142]  __kmem_cache_alloc_node+0x53/0x260
[  565.714666][T11142]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  565.720562][T11142]  __kmalloc+0xa4/0x240
[  565.724730][T11142]  tomoyo_realpath_from_path+0xe3/0x5d0
[  565.730346][T11142]  tomoyo_path_number_perm+0x1ea/0x590
[  565.735821][T11142]  ? tomoyo_path_number_perm+0x1ba/0x590
[  565.741547][T11142]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  565.747055][T11142]  ? ksys_write+0x1c1/0x250
[  565.751635][T11142]  ? __fget_files+0x28/0x4d0
[  565.756259][T11142]  security_file_ioctl+0x70/0xa0
[  565.761209][T11142]  __se_sys_ioctl+0x48/0x170
[  565.765799][T11142]  do_syscall_64+0x55/0xb0
[  565.770217][T11142]  ? clear_bhb_loop+0x40/0x90
[  565.774892][T11142]  ? clear_bhb_loop+0x40/0x90
[  565.779565][T11142]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  565.785507][T11142] RIP: 0033:0x7f5e71d8ebe9
[  565.789940][T11142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.809570][T11142] RSP: 002b:00007f5e6fff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  565.818005][T11142] RAX: ffffffffffffffda RBX: 00007f5e71fb5fa0 RCX: 00007f5e71d8ebe9
[  565.825981][T11142] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000005
[  565.833959][T11142] RBP: 00007f5e6fff6090 R08: 0000000000000000 R09: 0000000000000000
[  565.842103][T11142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  565.850094][T11142] R13: 00007f5e71fb6038 R14: 00007f5e71fb5fa0 R15: 00007fff91fdfad8
[  565.858295][T11142]  </TASK>
[  565.872229][T11142] ERROR: Out of memory at tomoyo_realpath_from_path.
[  566.295137][T11163] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  566.423834][T11170] FAULT_INJECTION: forcing a failure.
[  566.423834][T11170] name failslab, interval 1, probability 0, space 0, times 0
[  566.444574][T11169] FAULT_INJECTION: forcing a failure.
[  566.444574][T11169] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  566.471683][T11170] CPU: 0 PID: 11170 Comm: syz.0.1953 Not tainted 6.6.102-syzkaller #0
[  566.479909][T11170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  566.490089][T11170] Call Trace:
[  566.493444][T11170]  <TASK>
[  566.496484][T11170]  dump_stack_lvl+0x16c/0x230
[  566.501207][T11170]  ? show_regs_print_info+0x20/0x20
[  566.506432][T11170]  ? load_image+0x3b0/0x3b0
[  566.510959][T11170]  ? __might_sleep+0xe0/0xe0
[  566.515602][T11170]  ? __lock_acquire+0x7c80/0x7c80
[  566.520651][T11170]  should_fail_ex+0x39d/0x4d0
[  566.525423][T11170]  should_failslab+0x9/0x20
[  566.529957][T11170]  slab_pre_alloc_hook+0x59/0x310
[  566.535018][T11170]  ? tomoyo_encode+0x28b/0x540
[  566.539910][T11170]  ? tomoyo_encode+0x28b/0x540
[  566.544702][T11170]  __kmem_cache_alloc_node+0x53/0x260
[  566.550102][T11170]  ? tomoyo_encode+0x28b/0x540
[  566.554900][T11170]  __kmalloc+0xa4/0x240
[  566.559080][T11170]  tomoyo_encode+0x28b/0x540
[  566.563701][T11170]  tomoyo_realpath_from_path+0x592/0x5d0
[  566.569397][T11170]  tomoyo_path_number_perm+0x1ea/0x590
[  566.574875][T11170]  ? tomoyo_path_number_perm+0x1ba/0x590
[  566.580522][T11170]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  566.586179][T11170]  ? ksys_write+0x1c1/0x250
[  566.590732][T11170]  ? __fget_files+0x28/0x4d0
[  566.595390][T11170]  security_file_ioctl+0x70/0xa0
[  566.600352][T11170]  __se_sys_ioctl+0x48/0x170
[  566.604979][T11170]  do_syscall_64+0x55/0xb0
[  566.609450][T11170]  ? clear_bhb_loop+0x40/0x90
[  566.614148][T11170]  ? clear_bhb_loop+0x40/0x90
[  566.618860][T11170]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  566.624864][T11170] RIP: 0033:0x7f547738ebe9
[  566.629393][T11170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.649192][T11170] RSP: 002b:00007f5478280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  566.657674][T11170] RAX: ffffffffffffffda RBX: 00007f54775b5fa0 RCX: 00007f547738ebe9
[  566.665669][T11170] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000005
[  566.673740][T11170] RBP: 00007f5478280090 R08: 0000000000000000 R09: 0000000000000000
[  566.681753][T11170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  566.689741][T11170] R13: 00007f54775b6038 R14: 00007f54775b5fa0 R15: 00007ffe7df7f8d8
[  566.697838][T11170]  </TASK>
[  566.711295][T11169] CPU: 1 PID: 11169 Comm: syz.4.1952 Not tainted 6.6.102-syzkaller #0
[  566.719523][T11169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  566.729597][T11169] Call Trace:
[  566.732883][T11169]  <TASK>
[  566.735822][T11169]  dump_stack_lvl+0x16c/0x230
[  566.740515][T11169]  ? show_regs_print_info+0x20/0x20
[  566.745727][T11169]  ? load_image+0x3b0/0x3b0
[  566.750331][T11169]  ? __might_fault+0xaa/0x120
[  566.751951][T11170] ERROR: Out of memory at tomoyo_realpath_from_path.
[  566.755090][T11169]  ? __lock_acquire+0x7c80/0x7c80
[  566.766898][T11169]  ? perf_trace_lock+0xf7/0x380
[  566.771767][T11169]  should_fail_ex+0x39d/0x4d0
[  566.776475][T11169]  _copy_from_user+0x2f/0xe0
[  566.781081][T11169]  ___sys_sendmsg+0x159/0x290
[  566.785956][T11169]  ? __sys_sendmsg+0x270/0x270
[  566.790839][T11169]  ? __lock_acquire+0x7c80/0x7c80
[  566.795894][T11169]  __se_sys_sendmsg+0x1a5/0x270
[  566.800757][T11169]  ? __x64_sys_sendmsg+0x80/0x80
[  566.805727][T11169]  ? lockdep_hardirqs_on+0x98/0x150
[  566.810944][T11169]  do_syscall_64+0x55/0xb0
[  566.815361][T11169]  ? clear_bhb_loop+0x40/0x90
[  566.820045][T11169]  ? clear_bhb_loop+0x40/0x90
[  566.824819][T11169]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  566.830770][T11169] RIP: 0033:0x7f3ef9f8ebe9
[  566.835213][T11169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.855729][T11169] RSP: 002b:00007f3efad85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  566.864509][T11169] RAX: ffffffffffffffda RBX: 00007f3efa1b5fa0 RCX: 00007f3ef9f8ebe9
[  566.872679][T11169] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000000000000003
[  566.880774][T11169] RBP: 00007f3efad85090 R08: 0000000000000000 R09: 0000000000000000
[  566.888866][T11169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  566.896847][T11169] R13: 00007f3efa1b6038 R14: 00007f3efa1b5fa0 R15: 00007fffaea320a8
[  566.904847][T11169]  </TASK>
[  567.367991][T11195] netlink: 15487 bytes leftover after parsing attributes in process `syz.0.1963'.
[  567.390961][T11195] netlink: 'syz.0.1963': attribute type 21 has an invalid length.
[  567.400721][T11195] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1963'.
[  567.417856][T11195] netlink: 'syz.0.1963': attribute type 1 has an invalid length.
[  567.439023][T11200] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1966'.
[  567.448678][T11195] netlink: 'syz.0.1963': attribute type 1 has an invalid length.
[  567.448708][T11195] netlink: 63263 bytes leftover after parsing attributes in process `syz.0.1963'.
[  569.288067][T11237] ref_ctr_offset mismatch. inode: 0xa7a offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  571.925145][ T2927] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.170184][ T2927] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.278466][ T2927] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.396541][ T2927] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.387579][ T2927] hsr_slave_0: left promiscuous mode
[  573.396014][ T2927] hsr_slave_1: left promiscuous mode
[  573.402583][ T2927] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  573.410164][ T2927] batman_adv: batadv0: Removing interface: batadv_slave_0
[  573.418664][ T2927] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  573.426376][ T2927] batman_adv: batadv0: Removing interface: batadv_slave_1
[  573.434723][ T2927] team0: left allmulticast mode
[  573.439827][ T2927] C: left allmulticast mode
[  573.444927][ T2927] team_slave_1: left allmulticast mode
[  573.452513][ T2927] bridge0: port 3(team0) entered disabled state
[  573.462503][ T2927] bridge_slave_1: left allmulticast mode
[  573.468480][ T2927] bridge_slave_1: left promiscuous mode
[  573.475498][ T2927] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.484156][ T2927] bridge_slave_0: left allmulticast mode
[  573.489845][ T2927] bridge_slave_0: left promiscuous mode
[  573.495736][ T2927] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.514521][ T2927] veth1_macvtap: left promiscuous mode
[  573.523800][ T2927] veth0_macvtap: left promiscuous mode
[  573.529758][ T2927] veth1_vlan: left allmulticast mode
[  573.535452][ T2927] veth1_vlan: left promiscuous mode
[  573.541088][ T2927] veth0_vlan: left promiscuous mode
[  573.740464][ T2927] macvlan1 (unregistering): left promiscuous mode
[  573.750936][ T2927] team0 (unregistering): Port device macvlan1 removed
[  574.018040][ T2927] team_slave_1 (unregistering): left promiscuous mode
[  574.027617][ T2927] team0 (unregistering): Port device team_slave_1 removed
[  574.065654][ T2927] C (unregistering): left promiscuous mode
[  574.074929][ T2927] team0 (unregistering): Port device C removed
[  574.115123][ T2927] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  574.152705][ T2927] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  574.554767][ T2927] .` (unregistering): Released all slaves
[  574.931594][ T2927] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  574.987885][ T2927] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.034318][ T2927] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.087239][ T2927] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.391402][ T5881] page_pool_release_retry() stalled pool shutdown 1 inflight 60 sec
[  575.998722][ T2927] hsr_slave_0: left promiscuous mode
[  576.004994][ T2927] hsr_slave_1: left promiscuous mode
[  576.017803][ T2927] veth0_macvtap: left promiscuous mode
[  576.023795][ T2927] veth1_vlan: left promiscuous mode
[  576.029099][ T2927] veth0_vlan: left promiscuous mode
[  576.563157][ T2927] team0 (unregistering): Port device 
2
6±ÿ removed
[  576.607919][ T2927] team0 (unregistering): Port device C removed
[  576.663129][ T2927] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  576.716278][ T2927] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  577.125643][ T2927] team0 (unregistering): Port device bond0 removed
[  577.285915][ T2927] bond0 (unregistering): Released all slaves