last executing test programs:

4.197360848s ago: executing program 1 (id=1288):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000000000000000000000000000850000008c00000095"], &(0x7f0000000080)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.913633534s ago: executing program 1 (id=1291):
close(0xffffffffffffffff)
r0 = socket$kcm(0x1e, 0x5, 0x0)
r1 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r2 = socket$kcm(0x10, 0x3, 0x10)
r3 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, @perf_config_ext={0x1, 0x1944}, 0x14440, 0x5bc, 0x0, 0x8, 0x3, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
recvmsg$kcm(r2, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x10000)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000900)=@o_path={&(0x7f0000000880)='./file0\x00', 0xffffffffffffffff, 0x4000, r0}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x12, 0x7, 0x8, 0x2, 0x4}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6, <r7=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000001d40)=r5}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r7}, &(0x7f0000000a00), &(0x7f0000000940)=r5}, 0x20)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x3, [@enum64={0x3, 0x1, 0x0, 0x13, 0x1, 0x8, [{0x6, 0x80000000, 0x2}]}, @restrict={0x6, 0x0, 0x0, 0xb, 0x5}, @restrict={0x4, 0x0, 0x0, 0xb, 0x4}, @const={0x5, 0x0, 0x0, 0xa, 0x3}]}, {0x0, [0x0]}}, &(0x7f0000000240)=""/115, 0x57, 0x73, 0x1, 0x2}, 0x28)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{0x1, <r9=>0xffffffffffffffff}, &(0x7f0000000480), &(0x7f00000004c0)='%-5lx  \x00'}, 0x20)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3a86, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x5}, 0x50)
r11 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000600)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x5}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0x9, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x4}, [@map_fd={0x18, 0x7, 0x1, 0x0, r7}, @exit, @jmp={0x5, 0x1, 0x1, 0x9, 0x1, 0xfffffffffffffff0}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3}]}, &(0x7f0000000140)='GPL\x00', 0x6c5a3188, 0x25, &(0x7f0000000180)=""/37, 0x100, 0xd, '\x00', 0x0, 0x25, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000440)={0x1, 0x5, 0x2, 0x5}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000680)=[r9, r10, 0x1, r11], &(0x7f00000006c0)=[{0x5, 0x4, 0x10}, {0x4, 0x4, 0xf, 0xc}]}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x800)
r12 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r12, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
write$cgroup_subtree(r12, &(0x7f0000000040)=ANY=[], 0xfdef)
recvmsg(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000002a80)=""/4096, 0xfdef}], 0x1}, 0x10021)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000800)={&(0x7f0000000a40)={0xe4, 0x40, 0x9, 0x70bd2d, 0x25dfdbff, {0x1}, [@generic="3c05cd5c40eb4e16d7e2a9be6ef607d741b125d272311b056c5e7dc76151fdc54af6413d8773ca13b14046ca72eb6fe5a0efd3c8dc248e2654f5e3", @nested={0x45, 0xa5, 0x0, 0x1, [@generic="2027e5cb2340711063dd80d18dd5281967f7889d04ca5aabf06a91fe3d362da653442beeb6fc0d35d57a81861713482a2264263bfc5174876f6251012c411fab0d"]}, @generic="482d5259e6236ac2c655aef51fe19be7560879d8a7aad7c7c62a381cd9ff059ac2b903598cc6b9bb8eeecdf211eee5129c0ad27e67", @typed={0x8, 0x51, 0x0, 0x0, @fd=r4}, @typed={0xd, 0x7c, 0x0, 0x0, @str='$%{{+[{[\x00'}]}, 0xe4}, 0x1, 0x0, 0x0, 0x40000}, 0x8804)

2.988817153s ago: executing program 3 (id=1296):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x88e}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000000000000000000000000000000105000000100000000000000200000003000000000100000002"], 0x0, 0x53}, 0x28)
r2 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x890b, &(0x7f0000000000))

2.922216965s ago: executing program 0 (id=1297):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="180000000000110d90a084d8348f71b400001900fcff"], &(0x7f0000000100)='GPL\x00', 0xd}, 0x94)
r1 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000680)={r0, 0xffffffffffffffff, 0x3, 0x0, @val=@tcx={@void, @value=r0}}, 0x1c)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000004c0)={r1, r0, 0x0, r0}, 0x10) (async)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000004c0)={r1, r0, 0x0, r0}, 0x10)
socket$kcm(0x2d, 0x2, 0x0) (async)
r2 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000001e80)) (async)
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000001e80))
socket$kcm(0x10, 0x5, 0x10)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$ITER_CREATE(0xb, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r4, 0x1, 0x5, &(0x7f0000000780)=r3, 0x4)
perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000280), 0xb}, 0x0, 0x4, 0xfffffffe, 0x4, 0xfffffffffffffffd, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000280), 0xb}, 0x0, 0x4, 0xfffffffe, 0x4, 0xfffffffffffffffd, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000000000000002001000000000000000000000000000100000000000000000a00002087000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbfff27fffffffff000000000000000000000000000000000000000000000002000000000000000000000000400000000000000000000000d646dbf4a17beb475158c0baffb372964ffcb242c49991f26bd1989076209e2ee4ee87ec8d56107d9a93"], 0xb8}}, 0x2c000010)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80005, 0x40000}, 0x382, 0xc8, 0x400000, 0x0, 0x8, 0x4, 0x7, 0x0, 0x0, 0x0, 0x20b}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80005, 0x40000}, 0x382, 0xc8, 0x400000, 0x0, 0x8, 0x4, 0x7, 0x0, 0x0, 0x0, 0x20b}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6) (async)
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) (async)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd637f4b22667f2f00db5b686158bbcfe8875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
write$cgroup_subtree(r7, &(0x7f0000000000)=ANY=[], 0xfdef)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xc, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000001d711883000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000900)="89000000120081ae08060cdc030ec0007f03e3f7feff000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf00d7815e381ad6e706033a0093b837dc6cc01e32efaec8c7a6ec08123d000300354001000400446b9bbc7a46e3988285dcdf12f21308f868fece01951fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e9703000000000000", 0xcb}], 0x1}, 0xc8d2)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180), 0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000040), 0x3) (async)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000040), 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x13, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020200008500000070000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000017000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0x10, 0x2, 0x0)

2.737489664s ago: executing program 1 (id=1300):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100), 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45d30000000000000001d25a80", 0x14}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x10000, 0x4000, 0x0, 0x9, 0xa9, 0x7fffffff, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x2}, 0x0, 0x9, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45d30000000000000003d25a80", 0x14}], 0x1}, 0x0)

2.727685423s ago: executing program 3 (id=1301):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{0x1, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x9, 0x1b, &(0x7f00000001c0)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8a6}}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @exit, @jmp={0x5, 0x1, 0x2, 0xa, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @generic={0x3, 0x9, 0x6, 0x100, 0x7}, @map_val={0x18, 0x7, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000001}, @jmp={0x5, 0x0, 0x7, 0x5, 0x9, 0xfffffffffffffff6, 0x4}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x9}, @ldst={0x1, 0x2, 0x0, 0xb, 0x3, 0x8, 0x4}], &(0x7f0000000100)='GPL\x00', 0xb, 0x92, &(0x7f00000002c0)=""/146, 0x41000, 0xf, '\x00', 0x0, @cgroup_sock=0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0xa, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x0, 0x7, 0x7f3f, 0xf}, 0x10, 0x0, 0xffffffffffffffff, 0x9, &(0x7f0000000400)=[0x1, 0x1, 0xffffffffffffffff, 0x1], &(0x7f0000000440)=[{0x4, 0x5, 0x3, 0x3}, {0x5, 0x1, 0x10, 0x7}, {0x1, 0x4, 0x6}, {0x3, 0x4, 0x2, 0x5}, {0x1, 0x1, 0x4, 0x3}, {0x3, 0x1, 0x8, 0xc}, {0x0, 0x1, 0x9, 0x5}, {0x2, 0x3, 0x1, 0x7}, {0x4, 0x4, 0x7, 0x6}], 0x10, 0x3}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f00000000c0), &(0x7f00000005c0)=r2}, 0x20)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x3000, &(0x7f0000001ac0)={&(0x7f0000000180)={0x20, 0x2d, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@nested={0xc, 0x16, 0x0, 0x1, [@typed={0x6, 0x6e, 0x0, 0x0, @str=']\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

2.62485208s ago: executing program 2 (id=1302):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)="1c0000005e007f029e3b470d647dead6a9369022b88a3e378c88ef", 0x1b}], 0x1}, 0x880)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20210fd19b0a01090000000000000000000000020900010073797a300000000014000000140afb8100000000000000000200000a140000001100010000000000000000000100000a"], 0x5c}, 0x1, 0x0, 0x0, 0x40011}, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000eb", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32=0x0, @ANYRES8=r1, @ANYRES32=0x0, @ANYRES8=r0, @ANYBLOB="33a902a7d21200"/21, @ANYRESHEX=r0, @ANYRES16=r0], 0x50)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x400, 0x2, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0xa, 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f0000000180)=r2, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000200)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x1, {0xa, 0x4e21, 0x10000, @remote, 0x9}}}, 0x80, &(0x7f0000000100)}, 0x20044880)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000a00)=@in6={0xa, 0x4e20, 0xc, @mcast2, 0x5}, 0x80, 0x0}, 0x4040004)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000800)={r2, 0x58, &(0x7f0000000780)}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000001f00)="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", 0x132}, {&(0x7f0000000900)="c07e734c607bd2945ee0d04963140f0400000009", 0x14}, {&(0x7f0000000980)="ed3884d431b575041a6e8220b8788b", 0xf}, {&(0x7f0000001b00)="0117e3cb6535e20076ac2439ad894d333514ebfb82b0b36b536a92c3c178cae95e7ad2c9885ec8e172559207b791ec45d811620bd9b5853242acc1636ebe4cdd824c3af6287f1ca92a62b1b29fa6ee82c03a3407098167983b1df88a44117d1aa68460d1dda39e6f47364db21171d6389521b26c337f50fad4be7a7cc60126284d2a7fb1f021484df98d7dea418fc93103e39fbaac7cc6c391201aa971f21dfb6006cad9c6be3991f3c2cd249869b82880b8514d5e667f19185262ecfef2fe9a6d078b698c2c163d41ad136fc237a69367336820f4c52e5352b17238deae2c57c043576a5ae30bd4", 0xe8}, {&(0x7f0000001c00)="d08f9690e1552b7535627f5af840616b9d0c3c180f0097d0c62d5dd37ad983767508679aa96e02b85d1686e2b24b5382943328ce442eeff44e15b767f7fd4b4c36c9d04b4ef8e056e947c9303a4fa791378a1872ade650e06e9968f810ab5e2889e821b8edd4d7e37e9d92cc5f8a39a8656f4d73b3b5bcd4ce6d7d4b2143c4cdbb24fe2792af268251620541b3713d765ea180304f87e8031989b5f7c988a29f821432a70e4e694aa8fb73feacbabe3099b212c66b319c93951692a38e84b795a32f0dda7e63a0833f12c15fad56fd6c0e5ce8501a7651b7023be6d95bd9ea8e381d0782960b0aca2a7caf3e9893de24440ac707", 0xf4}, {&(0x7f0000001dc0)="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", 0x10a}], 0x6}, 0xff0f000020000080)

2.557252589s ago: executing program 0 (id=1303):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="beaace2da64ff6ca040000000a00000000000000"], 0x50)
perf_event_open(&(0x7f0000000c40)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fe, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_int(r1, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0)
openat$cgroup_procs(r1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0400000004000000210000000180000008080000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000ff"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000d80)=ANY=[], 0x50)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x48080)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8946, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x2})
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f3, &(0x7f0000000080))

2.308043776s ago: executing program 1 (id=1304):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x184, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x164, 0x4, 0x0, 0x1, [{0x160, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x150, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8}, @NFTA_MATCH_NAME={0xb, 0x1, 'policy\x00'}, @NFTA_MATCH_INFO={0x138, 0x3, "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"}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x1ac}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)

2.300191407s ago: executing program 2 (id=1305):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0xc220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000010401a7bc54bb0000000000000000000600064000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20048805}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xbb, &(0x7f00000000c0)=[{}, {}, {}, {}, {}], 0x28, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x8, 0x8, &(0x7f0000000240)}}, 0x10)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63239747cb7f2f00db5b686158bbcfe8875a65969ff57b00000000000000000000000000ac1414aa35f086dd"], 0xfdef)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb707000008000000b7030000000000008500000017000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfdef)
socket$kcm(0x10, 0x400000002, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)

2.294001913s ago: executing program 4 (id=1306):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWSETELEM={0x2c, 0xc, 0xa, 0x201, 0x2000000, 0x0, {0x7, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x0)

2.245269059s ago: executing program 0 (id=1307):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x5, 0x4, 0x1000, 0xa, 0x0, 0xffffffffffffffff, 0xd}, 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20020800}, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000005c0)="7bb0c2bd295b37b4a3f9bb55e5ffe6da66afa55d", 0x14}], 0x1}, 0x20000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x58412, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000006000000040000000000000e0400000000000000000000000100000d040000000400000004000000000000000000001004000000000000000000000a030000000000000061"], 0x0, 0x5a, 0x0, 0x4, 0x80000}, 0x28)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xe, &(0x7f00000001c0)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x93}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r6}, 0x10)

2.244105377s ago: executing program 3 (id=1308):
r0 = socket$kcm(0xa, 0x2, 0x3a)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000c40)=""/4096, 0x1000}, {&(0x7f00000024c0)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/129, 0x81}, {&(0x7f00000008c0)=""/177, 0xb1}, {&(0x7f0000000980)=""/189, 0xbd}, {&(0x7f0000000740)=""/24, 0x18}, {&(0x7f0000000a40)=""/217, 0xd9}, {&(0x7f0000000b40)=""/143, 0x8f}, {&(0x7f0000001c40)=""/95, 0x5f}, {&(0x7f0000001cc0)=""/221, 0xdd}], 0xa}, 0x0)

2.001747871s ago: executing program 4 (id=1309):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x21}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x2, 0x1006, 0xff, 0x42, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x4, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3f}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x70)

1.924302863s ago: executing program 1 (id=1310):
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtaction={0x80, 0x30, 0xb, 0x0, 0x0, {}, [{0x6c, 0x1, [@m_skbmod={0x68, 0x1, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x149, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETLINK(r3, 0x400454cd, 0x306)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x2000)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000002a9cf9f4c54d18ed20418b58c009895b43f702a76b14ca8ae9447b63df9c501a960600c82d757d4a6e8c207a52862760d5e8ce9178c57e8026ce169f51a25415c4e66bf51f02610deaa6ce9e8646a78e33dd14af6f6d95d8fff0d9871a825175ad56f8d2f67c4d6fee29bfc91b390009e9e529aadf3c028765c5565806bfb22f9fc691d2294e8889c49b9762e20278789053ef918bd41f10ee9fa3bc37a90ae5ea1bf8381df1447031b9d303f5a69ab35277b405aad4901ea5127c2cc1acc41815a702dce6643f9fa4d8130c2f89fb559484e7cd"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x16, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
close(0x3)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={&(0x7f00000000c0)}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018"], 0x0, 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair(0x27, 0x1, 0x0, &(0x7f0000000200))
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x40, 0x0, 0x8, 0x3fe, 0x7fffffff, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x5, &(0x7f0000000140), 0x4)
r6 = gettid()
perf_event_open(&(0x7f00000004c0)={0x3, 0x80, 0x4, 0x8, 0x2d, 0xa0, 0x0, 0x8b, 0x8000, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x4, @perf_config_ext={0x3, 0x9}, 0x80, 0x7fff, 0x8001, 0xd, 0x0, 0x4, 0xe9, 0x0, 0x81, 0x0, 0xffff}, r6, 0xc, 0xffffffffffffffff, 0x3)
setsockopt$sock_attach_bpf(r0, 0x0, 0x24, 0x0, 0x53)

1.661433331s ago: executing program 2 (id=1311):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x88e}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000000000000000000000000000000105000000100000000000000200000003000000000100000002"], 0x0, 0x53}, 0x28)
r2 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x890b, &(0x7f0000000000))

1.60424205s ago: executing program 2 (id=1312):
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r0}, 0x8)
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2040, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x2, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x8, 0x0, 0x0, 0x3ffffffe, 0x0, 0x0, 0x0, 0xffff0002}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @generic={0x66, 0x8}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1000}, @exit, @exit, @call={0x85, 0x0, 0x0, 0x94}]}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfe33)
socket$kcm(0x2, 0x922000000001, 0x106)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
r3 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0, 0xf}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x11000000, &(0x7f0000000080)="0877bd47bd4dc359", 0x8, &(0x7f0000000340), &(0x7f0000000380), &(0x7f0000000500)="0d060d755438c18c337bfd95cd718a448a33c5b8e0d0c32437a4da33072bed71698c7d88be28ca1db5a81c10fd84d34d2e541a037dce91e542703761175e20a0cea5e799cf258f6b3cf0752d5084fd59079ea255e63c3cf6f0e1")
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x400c802}, 0x4000)
r5 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000280)={0x5de988f055961f15, 0x80, 0x81, 0xb, 0xf, 0x2, 0x0, 0x7fffffffffffffff, 0x4049, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x4, @perf_config_ext={0x6, 0x7}, 0x8000, 0x1000, 0x3ff, 0x9, 0x7, 0x5, 0x81, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x7, r3, 0x1)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0), 0x3e)
sendmsg$kcm(r5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000038000b63d25a80648c251b0908b5e9d1", 0x14}], 0x1}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x2000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x3c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_SEQ_ADJ_REPLY={0x4, 0x4}]}, 0x3c}}, 0x0)

1.348012918s ago: executing program 3 (id=1313):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x400000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x5, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x24}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000035000b63d25a80648c2594f90424fc60", 0x14}], 0x1}, 0x0) (fail_nth: 6)

1.206568333s ago: executing program 2 (id=1314):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100), 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45d30000000000000001d25a80", 0x14}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x10000, 0x4000, 0x0, 0x9, 0xa9, 0x7fffffff, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45d30000000000000003d25a80", 0x14}], 0x1}, 0x0)

1.162890008s ago: executing program 0 (id=1315):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)="1c0000005e007f029e3b470d647dead6a9369022b88a3e378c88ef", 0x1b}], 0x1}, 0x880)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20210fd19b0a01090000000000000000000000020900010073797a300000000014000000140afb8100000000000000000200000a140000001100010000000000000000000100000a"], 0x5c}, 0x1, 0x0, 0x0, 0x40011}, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000eb", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32=0x0, @ANYRES8=r1, @ANYRES32=0x0, @ANYRES8=r0, @ANYBLOB="33a902a7d21200"/21, @ANYRESHEX=r0, @ANYRES16=r0], 0x50)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x400, 0x2, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$kcm(0xa, 0x2, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f0000000180)=r2, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000200)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x1, {0xa, 0x4e21, 0x10000, @remote, 0x9}}}, 0x80, &(0x7f0000000100)}, 0x20044880)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000a00)=@in6={0xa, 0x4e20, 0xc, @mcast2, 0x5}, 0x80, 0x0}, 0x4040004)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000800)={r2, 0x58, &(0x7f0000000780)}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000001f00)="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", 0x132}, {&(0x7f0000000900)="c07e734c607bd2945ee0d04963140f0400000009", 0x14}, {&(0x7f0000000980)="ed3884d431b575041a6e8220b8788b", 0xf}, {&(0x7f0000001b00)="0117e3cb6535e20076ac2439ad894d333514ebfb82b0b36b536a92c3c178cae95e7ad2c9885ec8e172559207b791ec45d811620bd9b5853242acc1636ebe4cdd824c3af6287f1ca92a62b1b29fa6ee82c03a3407098167983b1df88a44117d1aa68460d1dda39e6f47364db21171d6389521b26c337f50fad4be7a7cc60126284d2a7fb1f021484df98d7dea418fc93103e39fbaac7cc6c391201aa971f21dfb6006cad9c6be3991f3c2cd249869b82880b8514d5e667f19185262ecfef2fe9a6d078b698c2c163d41ad136fc237a69367336820f4c52e5352b17238deae2c57c043576a5ae30bd4", 0xe8}, {&(0x7f0000001c00)="d08f9690e1552b7535627f5af840616b9d0c3c180f0097d0c62d5dd37ad983767508679aa96e02b85d1686e2b24b5382943328ce442eeff44e15b767f7fd4b4c36c9d04b4ef8e056e947c9303a4fa791378a1872ade650e06e9968f810ab5e2889e821b8edd4d7e37e9d92cc5f8a39a8656f4d73b3b5bcd4ce6d7d4b2143c4cdbb24fe2792af268251620541b3713d765ea180304f87e8031989b5f7c988a29f821432a70e4e694aa8fb73feacbabe3099b212c66b319c93951692a38e84b795a32f0dda7e63a0833f12c15fad56fd6c0e5ce8501a7651b7023be6d95bd9ea8e381d0782960b0aca2a7caf3e9893de24440ac707", 0xf4}, {&(0x7f0000001dc0)="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", 0x10a}], 0x6}, 0xff0f000020000080)

879.736085ms ago: executing program 4 (id=1316):
socket$kcm(0x2, 0x922000000001, 0x106)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x10000, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x0, 0x8000001946}, 0x0, 0x0, 0x0, 0x2, 0x3fe, 0x7fffffff, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800746800000000000000000000000095"], &(0x7f0000000640)='GPL\x00'}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000680)=ANY=[@ANYRES64=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r7, 0x4)
sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0xfff}, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x14, 0x3d, 0x100, 0x70bd28, 0x25dfdbff, {0x1e}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x29}, 0x94)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={0x0, r2, 0x0, 0x4, &(0x7f0000000040)='GPL\x00', <r8=>0x0}, 0x30)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @typedef={0x3, 0x0, 0x0, 0x8, 0x2}, @volatile={0x6, 0x0, 0x0, 0x9, 0x3}, @volatile={0x0, 0x0, 0x0, 0xa, 0x2}]}, {0x0, [0x0, 0x0, 0x61, 0x0]}}, 0x0, 0x52, 0x0, 0x0, 0x7}, 0x28)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000500)={r8}, 0x4)
r9 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r10, 0x401c5820, &(0x7f0000000000)=0x8000)
perf_event_open$cgroup(&(0x7f0000000200)={0x2, 0x80, 0xff, 0x8, 0x5, 0x5, 0x0, 0x8000000000000000, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x6, 0x9}, 0x1000, 0x3, 0x0, 0x6, 0x5, 0x7, 0x10, 0x0, 0x1, 0x0, 0x8}, r10, 0x1, r9, 0x2)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20008000)
socket$kcm(0x29, 0x0, 0x0)

432.895111ms ago: executing program 0 (id=1317):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)="5c00000013006bcd9e3fe3dc6e48aa31086b87003000000000000000160af365040014000d0002008bc3a0e68bd607ab6b716b7feab556a705251e6182940800000000001282bb2352d1f006baa45e3bbd225a8941b1436e000a84c91c011f", 0x5f}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
socket$kcm(0x10, 0x7, 0x10) (async)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700)) (async)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0xc, 0xe, &(0x7f0000001580)=ANY=[], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)}, 0x40810) (async)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90824fc60040f170147000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r4) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)) (async)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10b8}, 0xff00) (async)
r5 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x0, 0x400007, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0xfffffffffffffffd}, 0x50) (async)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x890b, &(0x7f0000000000)) (async)
r6 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1b, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))

364.212922ms ago: executing program 3 (id=1318):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x13, &(0x7f0000000a00)=ANY=[@ANYBLOB="18080000000000000000000000400000851000000600000018020000", @ANYRES32, @ANYBLOB="0000000000000000660000000000000018000000000000000000000000000000950000f7ffffffff350a00000000000018010000202078250000000000202020791af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xce, &(0x7f0000000340)=""/206, 0x0, 0x20}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x15805, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x891}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000011c0)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000001240)="b9ff03076804268c989e14f088a8", 0x0, 0x4068, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x4, 0xc}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000300), 0x8)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000500)={0xffffffffffffffff, 0xffff, 0x8}, 0xc)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x400, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2}, 0x50)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x15, 0x0, 0x2d, 0x8, 0x24, 0x1, 0x100, '\x00', 0x0, r2, 0x0, 0x5}, 0x50)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0xa60a, 0x3}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r9, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r9, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x14, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc3, 0x0, 0x0, 0x0, 0x390e}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @printk={@lli}, @exit]}, &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x3c, &(0x7f0000000100)=""/60, 0x41100, 0x0, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f00000001c0)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000200)={0x5, 0xc, 0x4, 0x7fffffff}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000640)=[r4, r5, r6, r7, r8, r9], &(0x7f0000000680)=[{0x5, 0x2, 0x2, 0x9}, {0x3, 0x1, 0x1, 0x3}, {0x2, 0x3, 0xa, 0xc}, {0x3, 0x3, 0x8, 0x4}], 0x10, 0x6}, 0x94)
sendmsg$key(r2, &(0x7f0000000180)={0x700, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x80ff, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x30, 0x2b, 0x2, 0x3, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1}}]}, 0xa0}}, 0x0)

309.900432ms ago: executing program 0 (id=1319):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x6, &(0x7f0000000040)=@framed={{0x18, 0x2}, [@func={0x85, 0x0, 0x1, 0x0, 0x1}, @exit, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000a000000000000000100000d000000000100000003000000020000000000000e0300000000000000000000000000000500000000005f61"], 0x0, 0x52}, 0x28)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="11000000520033d487277b9b108b4ab502"], 0xfe33)
r1 = socket$kcm(0x11, 0x2, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffef2, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2, 0x0, 0xa}, {0x90010022}]}, 0x94)
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
close(0x3)
r5 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r7)
recvmsg$unix(r6, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0x12, &(0x7f00000008c0)=r8, 0x4)
setsockopt$sock_attach_bpf(r1, 0x107, 0x12, &(0x7f00000008c0)=r4, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x194a}, 0x2, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r10 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x9, [@typedef={0x7}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x2d}, 0x12)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r10, 0x58, &(0x7f00000002c0)}, 0x10)
ioctl$SIOCSIFHWADDR(r9, 0x8b20, &(0x7f0000000040)={'wlan1\x00', @random="000010000b00"})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0x74, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x10, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @dev}, @CTA_NAT_PROTO={0x4}]}]}, 0x74}}, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c000180060006006558000008000280040011"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0x1}, 0x4)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0x58, &(0x7f0000000080)}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000040000001c0000000000000c02000000000000000000000d000000000000662c"], 0x0, 0x34}, 0x20)

309.146164ms ago: executing program 2 (id=1320):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
close(0x3)
r0 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x104a3d, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xf, 0x4, 0x4, 0x12}, 0x50)
sendmsg(r1, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x4040851)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="0500"/11, @ANYRES32, @ANYBLOB="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", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000180)="067a", 0x2}], 0x1}, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000018c0)=ANY=[@ANYBLOB], 0x48)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r5 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
recvmsg$unix(r6, 0x0, 0x0)
setsockopt$sock_attach_bpf(r5, 0x84, 0x10, 0x0, 0x0)
r7 = socket$kcm(0x25, 0x5, 0x0)
recvmsg$kcm(r7, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x40)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r8=>0x0, <r9=>0x0})
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r10, &(0x7f0000005cc0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x5c, 0x3, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x409}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @multicast1}}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0xc0}, 0x4000)
close(r8)
setsockopt$sock_attach_bpf(r9, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0800000004"], 0x50)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

209.375939ms ago: executing program 4 (id=1321):
r0 = socket$kcm(0xa, 0x2, 0x3a)
sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000800)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000780)="80005b020eaa4da2", 0xfdef}], 0x1, 0x0, 0x0, 0x900}, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000c40)=""/4096, 0x1000}, {&(0x7f00000024c0)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/129, 0x81}, {&(0x7f00000008c0)=""/177, 0xb1}, {&(0x7f0000000980)=""/189, 0xbd}, {&(0x7f0000000740)=""/24, 0x18}, {&(0x7f0000000a40)=""/217, 0xd9}, {&(0x7f0000000b40)=""/143, 0x8f}, {&(0x7f0000001c40)=""/95, 0x5f}, {&(0x7f0000001cc0)=""/221, 0xdd}], 0xa}, 0x0)

180.498205ms ago: executing program 1 (id=1322):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x88e}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000000000000000000000000000000105000000100000000000000200000003000000000100000002"], 0x0, 0x53}, 0x28)
r2 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x890b, &(0x7f0000000000))

115.629779ms ago: executing program 4 (id=1323):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000800)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000780)="80005b020eaa4da2", 0xfdef}], 0x1, 0x0, 0x0, 0x900}, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000c40)=""/4096, 0x1000}, {&(0x7f00000024c0)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/129, 0x81}, {&(0x7f00000008c0)=""/177, 0xb1}, {&(0x7f0000000980)=""/189, 0xbd}, {&(0x7f0000000740)=""/24, 0x18}, {&(0x7f0000000a40)=""/217, 0xd9}, {&(0x7f0000000b40)=""/143, 0x8f}, {&(0x7f0000001c40)=""/95, 0x5f}, {&(0x7f0000001cc0)=""/221, 0xdd}], 0xa}, 0x0)

61.442762ms ago: executing program 3 (id=1324):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xc, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000004000000000000000300000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000100000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000013000000850000001500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x180, 0x4, 0x28}, 0x50)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82030, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8000001946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000010000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4000, 0x0, 0x0, 0x1, 0x8, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x84)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000001000", 0x0, 0x2e00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb58aa6d11ae2a925382e394e90c0100180000000000001800000017000000020000000000000c0200000000000000f6000000"], 0x0, 0x34}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x90)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r5, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r5, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x3, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000700000095000000000000008f5df2daa18b963b98d33eca868e3a546f628330291c205b2f2c8c26860d5390e463ede3430fda0a22ed589981cd9711fa024f276acfe9e8d04abe3c5014ca7db02c107661aee86c0d2d8780b1cdbf19f43b74cb2f9bb654139cfaf79ea43c6259b292bb52e042ef39afdbe6e5f0261ea17ca4561defaf5478aab17f884b1a9bd60f5742e5fe11a01a4148fd76cf610342605f77b1557664aaffc4a2ea4a35be3db8917e99c189b993c4d4"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r6}, 0x94)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0xfffffffb, 0x0, 0x1, 0x7, '\x00', r6, r4, 0x5, 0x3, 0x1}, 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000060000000400000000000007000000000000000000000001050000000000001000000000010000850000000000000000020000000000000a00000000da"], &(0x7f0000000340)=""/142, 0x52, 0x8e, 0x1}, 0x28)
close(0x3)

0s ago: executing program 4 (id=1325):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x5, 0x4, 0x1000, 0xa, 0x0, 0xffffffffffffffff, 0xd}, 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20020800}, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000005c0)="7bb0c2bd295b37b4a3f9bb55e5ffe6da66afa55d", 0x14}], 0x1}, 0x20000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x58412, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000006000000040000000000000e0400000000000000000000000100000d040000000400000004000000000000000000001004000000000000000000000a030000000000000061"], 0x0, 0x5a, 0x0, 0x4, 0x80000}, 0x28)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xe, &(0x7f00000001c0)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x93}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r6}, 0x10)

kernel console output (not intermixed with test programs):

62]  ? netlink_deliver_tap+0x2e/0x1b0
[  130.135597][ T6562]  netlink_unicast+0x82c/0x9e0
[  130.135633][ T6562]  ? __pfx_netlink_unicast+0x10/0x10
[  130.135662][ T6562]  ? netlink_sendmsg+0x642/0xb30
[  130.135689][ T6562]  ? skb_put+0x11b/0x210
[  130.135724][ T6562]  netlink_sendmsg+0x805/0xb30
[  130.135765][ T6562]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.135799][ T6562]  ? aa_sock_msg_perm+0xf1/0x1d0
[  130.135833][ T6562]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  130.135855][ T6562]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.135886][ T6562]  __sock_sendmsg+0x21c/0x270
[  130.135916][ T6562]  ____sys_sendmsg+0x505/0x830
[  130.135943][ T6562]  ? __pfx_____sys_sendmsg+0x10/0x10
[  130.135974][ T6562]  ? import_iovec+0x74/0xa0
[  130.136001][ T6562]  ___sys_sendmsg+0x21f/0x2a0
[  130.136024][ T6562]  ? __pfx____sys_sendmsg+0x10/0x10
[  130.136085][ T6562]  ? __fget_files+0x2a/0x420
[  130.136102][ T6562]  ? __fget_files+0x3a0/0x420
[  130.136129][ T6562]  __x64_sys_sendmsg+0x19b/0x260
[  130.136152][ T6562]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  130.136183][ T6562]  ? __pfx_ksys_write+0x10/0x10
[  130.136207][ T6562]  ? rcu_is_watching+0x15/0xb0
[  130.136233][ T6562]  ? do_syscall_64+0xbe/0x3b0
[  130.136266][ T6562]  do_syscall_64+0xfa/0x3b0
[  130.136294][ T6562]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.136326][ T6562]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.136346][ T6562]  ? clear_bhb_loop+0x60/0xb0
[  130.136371][ T6562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.136390][ T6562] RIP: 0033:0x7f104798ebe9
[  130.136408][ T6562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.136425][ T6562] RSP: 002b:00007f1048756038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  130.136446][ T6562] RAX: ffffffffffffffda RBX: 00007f1047bb5fa0 RCX: 00007f104798ebe9
[  130.136460][ T6562] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[  130.136472][ T6562] RBP: 00007f1048756090 R08: 0000000000000000 R09: 0000000000000000
[  130.136484][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  130.136495][ T6562] R13: 00007f1047bb6038 R14: 00007f1047bb5fa0 R15: 00007fff92a33c38
[  130.136527][ T6562]  </TASK>
[  130.595310][ T6569] syzkaller0: entered promiscuous mode
[  130.601180][ T6569] syzkaller0: entered allmulticast mode
[  130.601502][ T6573] netlink: 'syz.2.193': attribute type 10 has an invalid length.
[  130.628239][ T6573] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.637544][ T6573] bridge_slave_1: left allmulticast mode
[  130.644637][ T6573] bridge_slave_1: left promiscuous mode
[  130.651857][ T6573] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.820543][ T6573] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  130.904136][ T6578] netlink: 'syz.4.195': attribute type 10 has an invalid length.
[  131.255358][ T6593] netlink: 'syz.0.200': attribute type 10 has an invalid length.
[  132.327349][ T6590] wg2: entered promiscuous mode
[  132.336388][ T6590] wg2: entered allmulticast mode
[  132.376610][ T6593] veth0_vlan: entered allmulticast mode
[  132.439956][ T6593] veth0_vlan: left promiscuous mode
[  132.460876][ T6593] veth0_vlan: entered promiscuous mode
[  132.483042][ T6593] team0: Device veth0_vlan failed to register rx_handler
[  132.745647][ T6616] netlink: 'syz.3.208': attribute type 39 has an invalid length.
[  132.780016][ T6617] FAULT_INJECTION: forcing a failure.
[  132.780016][ T6617] name failslab, interval 1, probability 0, space 0, times 0
[  132.884430][ T6617] CPU: 0 UID: 0 PID: 6617 Comm: syz.1.209 Not tainted syzkaller #0 PREEMPT(full) 
[  132.884459][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.884472][ T6617] Call Trace:
[  132.884481][ T6617]  <TASK>
[  132.884491][ T6617]  dump_stack_lvl+0x189/0x250
[  132.884523][ T6617]  ? __pfx____ratelimit+0x10/0x10
[  132.884553][ T6617]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.884580][ T6617]  ? __pfx__printk+0x10/0x10
[  132.884618][ T6617]  ? __pfx___might_resched+0x10/0x10
[  132.884638][ T6617]  ? fs_reclaim_acquire+0x7d/0x100
[  132.884678][ T6617]  should_fail_ex+0x414/0x560
[  132.884713][ T6617]  should_failslab+0xa8/0x100
[  132.884747][ T6617]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  132.884777][ T6617]  ? ovs_flow_alloc+0x103/0x1f0
[  132.884807][ T6617]  ovs_flow_alloc+0x103/0x1f0
[  132.884835][ T6617]  ovs_flow_cmd_new+0x1ee/0xd80
[  132.884862][ T6617]  ? stack_depot_save_flags+0x40/0x860
[  132.884890][ T6617]  ? netlink_unicast+0x771/0x9e0
[  132.884926][ T6617]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  132.885036][ T6617]  ? __nla_parse+0x40/0x60
[  132.885073][ T6617]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  132.885109][ T6617]  genl_family_rcv_msg_doit+0x215/0x300
[  132.885144][ T6617]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  132.885187][ T6617]  ? bpf_lsm_capable+0x9/0x20
[  132.885220][ T6617]  ? security_capable+0x7e/0x2e0
[  132.885267][ T6617]  genl_rcv_msg+0x60e/0x790
[  132.885301][ T6617]  ? __pfx_genl_rcv_msg+0x10/0x10
[  132.885324][ T6617]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  132.885355][ T6617]  ? __asan_memcpy+0x40/0x70
[  132.885378][ T6617]  ? __pfx_ref_tracker_free+0x10/0x10
[  132.885426][ T6617]  netlink_rcv_skb+0x205/0x470
[  132.885454][ T6617]  ? __lock_acquire+0xab9/0xd20
[  132.885486][ T6617]  ? __pfx_genl_rcv_msg+0x10/0x10
[  132.885512][ T6617]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  132.885568][ T6617]  ? down_read+0x1ad/0x2e0
[  132.885605][ T6617]  genl_rcv+0x28/0x40
[  132.885625][ T6617]  netlink_unicast+0x82c/0x9e0
[  132.885665][ T6617]  ? __pfx_netlink_unicast+0x10/0x10
[  132.885697][ T6617]  ? netlink_sendmsg+0x642/0xb30
[  132.885725][ T6617]  ? skb_put+0x11b/0x210
[  132.885763][ T6617]  netlink_sendmsg+0x805/0xb30
[  132.885807][ T6617]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.885843][ T6617]  ? aa_sock_msg_perm+0xf1/0x1d0
[  132.885879][ T6617]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  132.885901][ T6617]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.885934][ T6617]  __sock_sendmsg+0x21c/0x270
[  132.885966][ T6617]  ____sys_sendmsg+0x505/0x830
[  132.885996][ T6617]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.886032][ T6617]  ? import_iovec+0x74/0xa0
[  132.886061][ T6617]  ___sys_sendmsg+0x21f/0x2a0
[  132.886087][ T6617]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.886159][ T6617]  ? __fget_files+0x2a/0x420
[  132.886178][ T6617]  ? __fget_files+0x3a0/0x420
[  132.886212][ T6617]  __x64_sys_sendmsg+0x19b/0x260
[  132.886238][ T6617]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  132.886284][ T6617]  ? __pfx_ksys_write+0x10/0x10
[  132.886310][ T6617]  ? rcu_is_watching+0x15/0xb0
[  132.886339][ T6617]  ? do_syscall_64+0xbe/0x3b0
[  132.886375][ T6617]  do_syscall_64+0xfa/0x3b0
[  132.886402][ T6617]  ? lockdep_hardirqs_on+0x9c/0x150
[  132.886436][ T6617]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.886457][ T6617]  ? clear_bhb_loop+0x60/0xb0
[  132.886484][ T6617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.886504][ T6617] RIP: 0033:0x7fd566d8ebe9
[  132.886524][ T6617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.886541][ T6617] RSP: 002b:00007fd567c7d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.886563][ T6617] RAX: ffffffffffffffda RBX: 00007fd566fb5fa0 RCX: 00007fd566d8ebe9
[  132.886578][ T6617] RDX: 000000000000c010 RSI: 0000200000000040 RDI: 0000000000000003
[  132.886591][ T6617] RBP: 00007fd567c7d090 R08: 0000000000000000 R09: 0000000000000000
[  132.886603][ T6617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.886615][ T6617] R13: 00007fd566fb6038 R14: 00007fd566fb5fa0 R15: 00007ffd26733b98
[  132.886652][ T6617]  </TASK>
[  133.302530][ T6610] __nla_validate_parse: 7 callbacks suppressed
[  133.302552][ T6610] netlink: 24 bytes leftover after parsing attributes in process `syz.3.208'.
[  133.905050][ T6641] netlink: 'syz.3.216': attribute type 10 has an invalid length.
[  133.946050][ T6641] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.998422][ T6639] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  134.004359][ T6641] bridge_slave_1: left allmulticast mode
[  134.006919][ T6639] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  134.051109][ T6641] bridge_slave_1: left promiscuous mode
[  134.112846][ T6641] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.266779][ T6641] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  134.429851][ T6639] netlink: 'syz.2.215': attribute type 21 has an invalid length.
[  134.438215][ T6639] netlink: 'syz.2.215': attribute type 4 has an invalid length.
[  134.637309][ T6655] netlink: 16 bytes leftover after parsing attributes in process `syz.3.220'.
[  134.658714][ T6655] netlink: 16 bytes leftover after parsing attributes in process `syz.3.220'.
[  134.683434][ T6655] netlink: 16 bytes leftover after parsing attributes in process `syz.3.220'.
[  135.211692][ T6670] netlink: 10 bytes leftover after parsing attributes in process `syz.0.227'.
[  135.463664][ T6672] vcan0 speed is unknown, defaulting to 1000
[  135.473159][ T6672] vcan0 speed is unknown, defaulting to 1000
[  135.482695][ T6672] vcan0 speed is unknown, defaulting to 1000
[  135.570486][ T6678] netlink: 15743 bytes leftover after parsing attributes in process `syz.3.228'.
[  135.732233][ T6690] netlink: 16 bytes leftover after parsing attributes in process `syz.0.233'.
[  135.745310][ T6690] netlink: 16 bytes leftover after parsing attributes in process `syz.0.233'.
[  135.762505][ T6690] netlink: 16 bytes leftover after parsing attributes in process `syz.0.233'.
[  136.054520][ T6699] tap0: tun_chr_ioctl cmd 1074025677
[  136.098762][ T6699] tap0: linktype set to 32
[  136.146510][ T6699] netlink: 'syz.1.237': attribute type 21 has an invalid length.
[  136.183104][ T6699] IPv6: NLM_F_CREATE should be specified when creating new route
[  136.468201][ T6672] infiniband syz1: set active
[  136.475204][ T6672] infiniband syz1: added vcan0
[  136.493869][ T6672] syz1: rxe_create_cq: returned err = -12
[  136.500309][ T6672] infiniband syz1: Couldn't create ib_mad CQ
[  136.507506][ T6672] infiniband syz1: Couldn't open port 1
[  136.577047][ T6672] RDS/IB: syz1: added
[  136.589508][ T6672] smc: adding ib device syz1 with port count 1
[  136.595936][ T6672] smc:    ib device syz1 port 1 has pnetid 
[  136.775725][ T6717] netlink: 8 bytes leftover after parsing attributes in process `syz.2.242'.
[  136.808938][ T5868] vcan0 speed is unknown, defaulting to 1000
[  136.861892][  T979] vcan0 speed is unknown, defaulting to 1000
[  136.894655][ T6672] vcan0 speed is unknown, defaulting to 1000
[  137.322033][ T6729] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  137.688953][ T6737] netlink: 'syz.0.252': attribute type 10 has an invalid length.
[  137.800733][ T6737] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.888995][ T6737] bridge_slave_1: left allmulticast mode
[  137.894751][ T6737] bridge_slave_1: left promiscuous mode
[  137.939279][ T6737] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.082635][ T6737] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  138.139565][ T6672] vcan0 speed is unknown, defaulting to 1000
[  138.173776][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  138.181616][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  138.781942][ T6759] __nla_validate_parse: 3 callbacks suppressed
[  138.781964][ T6759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.257'.
[  138.825467][ T6759] netlink: 'syz.0.257': attribute type 1 has an invalid length.
[  138.834155][ T6759] netlink: 'syz.0.257': attribute type 2 has an invalid length.
[  138.847871][ T6759] netlink: 56 bytes leftover after parsing attributes in process `syz.0.257'.
[  139.082294][ T6766] netlink: 68 bytes leftover after parsing attributes in process `syz.2.261'.
[  139.347943][ T6773] netlink: 20 bytes leftover after parsing attributes in process `syz.2.262'.
[  140.423263][ T6672] vcan0 speed is unknown, defaulting to 1000
[  141.007147][ T6799] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.270'.
[  141.068993][ T6799] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  141.077625][ T6799] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  141.855779][ T6812] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  142.419703][ T6672] vcan0 speed is unknown, defaulting to 1000
[  142.904778][ T6826] netlink: 'syz.4.281': attribute type 29 has an invalid length.
[  143.189088][ T6829] netlink: 10 bytes leftover after parsing attributes in process `syz.2.282'.
[  143.715481][ T6672] vcan0 speed is unknown, defaulting to 1000
[  144.231361][ T6857] netlink: 'syz.4.293': attribute type 10 has an invalid length.
[  144.340699][ T6857] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.400073][ T6857] bridge_slave_1: left allmulticast mode
[  144.426387][ T6857] bridge_slave_1: left promiscuous mode
[  144.437301][ T6857] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.633193][ T6857] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  144.889079][ T6864] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.296'.
[  144.915888][ T6866] netlink: 10 bytes leftover after parsing attributes in process `syz.1.297'.
[  144.931234][ T6864] netlink: 177760 bytes leftover after parsing attributes in process `syz.2.296'.
[  145.080809][ T6869] netlink: 16 bytes leftover after parsing attributes in process `syz.4.298'.
[  145.495295][ T6877] netlink: 10 bytes leftover after parsing attributes in process `syz.4.300'.
[  145.836843][ T6894] FAULT_INJECTION: forcing a failure.
[  145.836843][ T6894] name failslab, interval 1, probability 0, space 0, times 0
[  145.892816][ T6894] CPU: 0 UID: 0 PID: 6894 Comm: syz.4.308 Not tainted syzkaller #0 PREEMPT(full) 
[  145.892846][ T6894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  145.892858][ T6894] Call Trace:
[  145.892866][ T6894]  <TASK>
[  145.892875][ T6894]  dump_stack_lvl+0x189/0x250
[  145.892906][ T6894]  ? __pfx____ratelimit+0x10/0x10
[  145.892934][ T6894]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.892958][ T6894]  ? __pfx__printk+0x10/0x10
[  145.892989][ T6894]  ? __lock_acquire+0xab9/0xd20
[  145.893031][ T6894]  should_fail_ex+0x414/0x560
[  145.893064][ T6894]  should_failslab+0xa8/0x100
[  145.893116][ T6894]  kmem_cache_alloc_noprof+0x73/0x3c0
[  145.893143][ T6894]  ? skb_clone+0x212/0x3a0
[  145.893170][ T6894]  skb_clone+0x212/0x3a0
[  145.893196][ T6894]  __netlink_deliver_tap+0x404/0x850
[  145.893242][ T6894]  ? netlink_deliver_tap+0x2e/0x1b0
[  145.893273][ T6894]  netlink_deliver_tap+0x19c/0x1b0
[  145.893304][ T6894]  netlink_unicast+0x7fa/0x9e0
[  145.893341][ T6894]  ? __pfx_netlink_unicast+0x10/0x10
[  145.893369][ T6894]  ? netlink_sendmsg+0x642/0xb30
[  145.893397][ T6894]  ? skb_put+0x11b/0x210
[  145.893432][ T6894]  netlink_sendmsg+0x805/0xb30
[  145.893473][ T6894]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.893507][ T6894]  ? aa_sock_msg_perm+0xf1/0x1d0
[  145.893540][ T6894]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  145.893569][ T6894]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.893600][ T6894]  __sock_sendmsg+0x21c/0x270
[  145.893630][ T6894]  ____sys_sendmsg+0x505/0x830
[  145.893657][ T6894]  ? __pfx_____sys_sendmsg+0x10/0x10
[  145.893688][ T6894]  ? import_iovec+0x74/0xa0
[  145.893715][ T6894]  ___sys_sendmsg+0x21f/0x2a0
[  145.893739][ T6894]  ? __pfx____sys_sendmsg+0x10/0x10
[  145.893802][ T6894]  ? __fget_files+0x2a/0x420
[  145.893819][ T6894]  ? __fget_files+0x3a0/0x420
[  145.893849][ T6894]  __x64_sys_sendmsg+0x19b/0x260
[  145.893867][ T6894]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  145.893891][ T6894]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  145.893924][ T6894]  ? __pfx_ksys_write+0x10/0x10
[  145.893948][ T6894]  ? rcu_is_watching+0x15/0xb0
[  145.893974][ T6894]  ? do_syscall_64+0xbe/0x3b0
[  145.894008][ T6894]  do_syscall_64+0xfa/0x3b0
[  145.894034][ T6894]  ? lockdep_hardirqs_on+0x9c/0x150
[  145.894061][ T6894]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.894081][ T6894]  ? clear_bhb_loop+0x60/0xb0
[  145.894105][ T6894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.894125][ T6894] RIP: 0033:0x7f104798ebe9
[  145.894144][ T6894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.894160][ T6894] RSP: 002b:00007f1048756038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  145.894181][ T6894] RAX: ffffffffffffffda RBX: 00007f1047bb5fa0 RCX: 00007f104798ebe9
[  145.894196][ T6894] RDX: 0000000000048000 RSI: 0000200000000140 RDI: 0000000000000003
[  145.894208][ T6894] RBP: 00007f1048756090 R08: 0000000000000000 R09: 0000000000000000
[  145.894220][ T6894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.894232][ T6894] R13: 00007f1047bb6038 R14: 00007f1047bb5fa0 R15: 00007fff92a33c38
[  145.894266][ T6894]  </TASK>
[  146.209834][ T6894] netlink: 44 bytes leftover after parsing attributes in process `syz.4.308'.
[  146.309529][ T6900] netlink: 'syz.4.310': attribute type 21 has an invalid length.
[  146.317415][ T6900] netlink: 132 bytes leftover after parsing attributes in process `syz.4.310'.
[  146.356206][ T6900] netlink: 20 bytes leftover after parsing attributes in process `syz.4.310'.
[  146.386289][ T6900] netlink: 'syz.4.310': attribute type 33 has an invalid length.
[  146.394389][ T6900] netlink: 'syz.4.310': attribute type 13 has an invalid length.
[  146.403053][ T6900] netlink: 152 bytes leftover after parsing attributes in process `syz.4.310'.
[  146.415317][ T6900] netlink: 20 bytes leftover after parsing attributes in process `syz.4.310'.
[  146.427331][ T6900] netlink: 'syz.4.310': attribute type 2 has an invalid length.
[  146.435776][ T6900] netlink: 'syz.4.310': attribute type 2 has an invalid length.
[  146.445751][ T6900] netlink: 'syz.4.310': attribute type 1 has an invalid length.
[  147.498246][ T6918] siw: device registration error -23
[  147.512146][ T6925] =======================================================
[  147.512146][ T6925] WARNING: The mand mount option has been deprecated and
[  147.512146][ T6925]          and is ignored by this kernel. Remove the mand
[  147.512146][ T6925]          option from the mount to silence this warning.
[  147.512146][ T6925] =======================================================
[  147.842847][ T6934] netlink: 'syz.1.321': attribute type 2 has an invalid length.
[  148.132028][ T6949] netlink: 'syz.4.327': attribute type 21 has an invalid length.
[  148.607090][ T6954] siw: device registration error -23
[  150.756763][ T6987] __nla_validate_parse: 11 callbacks suppressed
[  150.756785][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.4.340'.
[  150.839311][ T6987] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  150.905469][ T6987] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  150.957226][ T6991] netlink: 16 bytes leftover after parsing attributes in process `syz.1.341'.
[  151.002875][ T6991] netlink: 16 bytes leftover after parsing attributes in process `syz.1.341'.
[  151.041154][ T6991] netlink: 16 bytes leftover after parsing attributes in process `syz.1.341'.
[  151.391201][ T7002] netlink: 'syz.0.346': attribute type 10 has an invalid length.
[  151.499828][ T7005] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.347'.
[  151.528359][ T7005] netlink: 177760 bytes leftover after parsing attributes in process `syz.1.347'.
[  151.765062][ T7011] netlink: 56 bytes leftover after parsing attributes in process `syz.2.349'.
[  152.478973][ T7029] netlink: 36 bytes leftover after parsing attributes in process `syz.0.350'.
[  152.526518][ T7029] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  152.700198][ T7033] netlink: 8 bytes leftover after parsing attributes in process `syz.4.354'.
[  152.788970][ T7033] FAULT_INJECTION: forcing a failure.
[  152.788970][ T7033] name failslab, interval 1, probability 0, space 0, times 0
[  152.834751][ T7033] CPU: 0 UID: 0 PID: 7033 Comm: syz.4.354 Not tainted syzkaller #0 PREEMPT(full) 
[  152.834787][ T7033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  152.834799][ T7033] Call Trace:
[  152.834807][ T7033]  <TASK>
[  152.834816][ T7033]  dump_stack_lvl+0x189/0x250
[  152.834846][ T7033]  ? __pfx____ratelimit+0x10/0x10
[  152.834874][ T7033]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.834898][ T7033]  ? __pfx__printk+0x10/0x10
[  152.834933][ T7033]  ? __pfx___might_resched+0x10/0x10
[  152.834953][ T7033]  ? fs_reclaim_acquire+0x7d/0x100
[  152.834991][ T7033]  should_fail_ex+0x414/0x560
[  152.835023][ T7033]  should_failslab+0xa8/0x100
[  152.835056][ T7033]  __kmalloc_cache_noprof+0x70/0x3d0
[  152.835083][ T7033]  ? ovs_flow_cmd_new+0x294/0xd80
[  152.835117][ T7033]  ovs_flow_cmd_new+0x294/0xd80
[  152.835156][ T7033]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  152.835250][ T7033]  ? __nla_parse+0x40/0x60
[  152.835286][ T7033]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  152.835320][ T7033]  genl_family_rcv_msg_doit+0x215/0x300
[  152.835351][ T7033]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  152.835390][ T7033]  ? bpf_lsm_capable+0x9/0x20
[  152.835418][ T7033]  ? security_capable+0x7e/0x2e0
[  152.835454][ T7033]  genl_rcv_msg+0x60e/0x790
[  152.835483][ T7033]  ? __pfx_genl_rcv_msg+0x10/0x10
[  152.835504][ T7033]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  152.835534][ T7033]  ? __asan_memcpy+0x40/0x70
[  152.835557][ T7033]  ? __pfx_ref_tracker_free+0x10/0x10
[  152.835594][ T7033]  netlink_rcv_skb+0x205/0x470
[  152.835623][ T7033]  ? __lock_acquire+0xab9/0xd20
[  152.835653][ T7033]  ? __pfx_genl_rcv_msg+0x10/0x10
[  152.835678][ T7033]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  152.835734][ T7033]  ? down_read+0x1ad/0x2e0
[  152.835769][ T7033]  genl_rcv+0x28/0x40
[  152.835797][ T7033]  netlink_unicast+0x82c/0x9e0
[  152.835833][ T7033]  ? __pfx_netlink_unicast+0x10/0x10
[  152.835862][ T7033]  ? netlink_sendmsg+0x642/0xb30
[  152.835888][ T7033]  ? skb_put+0x11b/0x210
[  152.835924][ T7033]  netlink_sendmsg+0x805/0xb30
[  152.835965][ T7033]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.835999][ T7033]  ? aa_sock_msg_perm+0xf1/0x1d0
[  152.836033][ T7033]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  152.836056][ T7033]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.836087][ T7033]  __sock_sendmsg+0x21c/0x270
[  152.836118][ T7033]  ____sys_sendmsg+0x505/0x830
[  152.836146][ T7033]  ? __pfx_____sys_sendmsg+0x10/0x10
[  152.836178][ T7033]  ? import_iovec+0x74/0xa0
[  152.836206][ T7033]  ___sys_sendmsg+0x21f/0x2a0
[  152.836229][ T7033]  ? __pfx____sys_sendmsg+0x10/0x10
[  152.836275][ T7033]  ? __fget_files+0x2a/0x420
[  152.836307][ T7033]  ? __fget_files+0x2a/0x420
[  152.836323][ T7033]  ? __fget_files+0x3a0/0x420
[  152.836353][ T7033]  __x64_sys_sendmsg+0x19b/0x260
[  152.836377][ T7033]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  152.836410][ T7033]  ? __pfx_ksys_write+0x10/0x10
[  152.836434][ T7033]  ? rcu_is_watching+0x15/0xb0
[  152.836460][ T7033]  ? do_syscall_64+0xbe/0x3b0
[  152.836495][ T7033]  do_syscall_64+0xfa/0x3b0
[  152.836522][ T7033]  ? lockdep_hardirqs_on+0x9c/0x150
[  152.836549][ T7033]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.836569][ T7033]  ? clear_bhb_loop+0x60/0xb0
[  152.836595][ T7033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.836623][ T7033] RIP: 0033:0x7f104798ebe9
[  152.836642][ T7033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.836659][ T7033] RSP: 002b:00007f1048756038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.836680][ T7033] RAX: ffffffffffffffda RBX: 00007f1047bb5fa0 RCX: 00007f104798ebe9
[  152.836694][ T7033] RDX: 000000000000c010 RSI: 0000200000000040 RDI: 0000000000000003
[  152.836706][ T7033] RBP: 00007f1048756090 R08: 0000000000000000 R09: 0000000000000000
[  152.836717][ T7033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.836728][ T7033] R13: 00007f1047bb6038 R14: 00007f1047bb5fa0 R15: 00007fff92a33c38
[  152.836761][ T7033]  </TASK>
[  153.942167][ T7056] netlink: 'syz.2.361': attribute type 10 has an invalid length.
[  155.972948][ T7103] netlink: 'syz.3.376': attribute type 10 has an invalid length.
[  156.090299][ T7109] netlink: 40 bytes leftover after parsing attributes in process `syz.1.377'.
[  156.372999][ T7122] netlink: 'syz.3.383': attribute type 4 has an invalid length.
[  156.667149][ T7138] netlink: 14212 bytes leftover after parsing attributes in process `syz.2.387'.
[  157.713020][ T7152] netlink: 36 bytes leftover after parsing attributes in process `syz.4.393'.
[  158.906410][ T7175] siw: device registration error -23
[  159.385415][ T7198] openvswitch: netlink: ct_state flags 0000e7cd unsupported
[  159.513731][ T7198] FAULT_INJECTION: forcing a failure.
[  159.513731][ T7198] name failslab, interval 1, probability 0, space 0, times 0
[  159.576965][ T7198] CPU: 0 UID: 0 PID: 7198 Comm: syz.2.406 Not tainted syzkaller #0 PREEMPT(full) 
[  159.576993][ T7198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  159.577006][ T7198] Call Trace:
[  159.577014][ T7198]  <TASK>
[  159.577023][ T7198]  dump_stack_lvl+0x189/0x250
[  159.577052][ T7198]  ? __pfx____ratelimit+0x10/0x10
[  159.577080][ T7198]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.577105][ T7198]  ? __pfx__printk+0x10/0x10
[  159.577141][ T7198]  ? __pfx___might_resched+0x10/0x10
[  159.577161][ T7198]  ? fs_reclaim_acquire+0x7d/0x100
[  159.577199][ T7198]  should_fail_ex+0x414/0x560
[  159.577232][ T7198]  should_failslab+0xa8/0x100
[  159.577264][ T7198]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  159.577294][ T7198]  ? __alloc_skb+0x112/0x2d0
[  159.577329][ T7198]  __alloc_skb+0x112/0x2d0
[  159.577362][ T7198]  netlink_ack+0x146/0xa50
[  159.577412][ T7198]  netlink_rcv_skb+0x28c/0x470
[  159.577443][ T7198]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  159.577471][ T7198]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  159.577514][ T7198]  ? bpf_lsm_capable+0x9/0x20
[  159.577541][ T7198]  ? security_capable+0x7e/0x2e0
[  159.577579][ T7198]  nfnetlink_rcv+0x26a/0x2520
[  159.577619][ T7198]  ? __dev_queue_xmit+0x1d79/0x3b50
[  159.577651][ T7198]  ? __dev_queue_xmit+0x27b/0x3b50
[  159.577687][ T7198]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  159.577713][ T7198]  ? __pfx___dev_queue_xmit+0x10/0x10
[  159.577752][ T7198]  ? ref_tracker_free+0x63a/0x7d0
[  159.577781][ T7198]  ? __asan_memcpy+0x40/0x70
[  159.577804][ T7198]  ? __pfx_ref_tracker_free+0x10/0x10
[  159.577830][ T7198]  ? __skb_clone+0x63/0x7a0
[  159.577856][ T7198]  ? __skb_clone+0x483/0x7a0
[  159.577885][ T7198]  ? skb_clone+0x246/0x3a0
[  159.577910][ T7198]  ? __netlink_deliver_tap+0x807/0x850
[  159.577939][ T7198]  ? netlink_deliver_tap+0x2e/0x1b0
[  159.577975][ T7198]  ? netlink_deliver_tap+0x2e/0x1b0
[  159.578014][ T7198]  netlink_unicast+0x82c/0x9e0
[  159.578037][ T7198]  ? lockdep_hardirqs_on+0x9c/0x150
[  159.578075][ T7198]  ? __pfx_netlink_unicast+0x10/0x10
[  159.578100][ T7198]  ? __netlink_dump_start+0x761/0x7e0
[  159.578126][ T7198]  ? refcount_inc+0x17/0x70
[  159.578155][ T7198]  ? refcount_inc+0x20/0x70
[  159.578184][ T7198]  netlink_sendmsg+0x805/0xb30
[  159.578222][ T7198]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.578262][ T7198]  ? aa_sock_msg_perm+0xf1/0x1d0
[  159.578296][ T7198]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  159.578318][ T7198]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.578348][ T7198]  __sock_sendmsg+0x21c/0x270
[  159.578378][ T7198]  ____sys_sendmsg+0x505/0x830
[  159.578405][ T7198]  ? __pfx_____sys_sendmsg+0x10/0x10
[  159.578436][ T7198]  ? import_iovec+0x74/0xa0
[  159.578463][ T7198]  ___sys_sendmsg+0x21f/0x2a0
[  159.578486][ T7198]  ? __pfx____sys_sendmsg+0x10/0x10
[  159.578548][ T7198]  ? __fget_files+0x2a/0x420
[  159.578564][ T7198]  ? __fget_files+0x3a0/0x420
[  159.578593][ T7198]  __x64_sys_sendmsg+0x19b/0x260
[  159.578625][ T7198]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  159.578675][ T7198]  do_syscall_64+0xfa/0x3b0
[  159.578705][ T7198]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.578723][ T7198]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  159.578743][ T7198]  ? clear_bhb_loop+0x60/0xb0
[  159.578767][ T7198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.578786][ T7198] RIP: 0033:0x7fd014d8ebe9
[  159.578805][ T7198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.578821][ T7198] RSP: 002b:00007fd015b9c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.578842][ T7198] RAX: ffffffffffffffda RBX: 00007fd014fb5fa0 RCX: 00007fd014d8ebe9
[  159.578856][ T7198] RDX: 0000000004000810 RSI: 00002000000000c0 RDI: 0000000000000004
[  159.578869][ T7198] RBP: 00007fd015b9c090 R08: 0000000000000000 R09: 0000000000000000
[  159.578881][ T7198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.578892][ T7198] R13: 00007fd014fb6038 R14: 00007fd014fb5fa0 R15: 00007ffe93eaa468
[  159.578925][ T7198]  </TASK>
[  160.416348][ T7220] netlink: 12 bytes leftover after parsing attributes in process `syz.3.413'.
[  160.966746][ T7239] netlink: 'syz.2.423': attribute type 1 has an invalid length.
[  160.975342][ T7239] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.423'.
[  161.141077][ T7242] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:0603:0000:0023 with DS=0x3f
[  161.430843][ T7246] netlink: 'syz.3.425': attribute type 2 has an invalid length.
[  161.472435][ T7246] netlink: 'syz.3.425': attribute type 8 has an invalid length.
[  161.536955][ T7246] netlink: 132 bytes leftover after parsing attributes in process `syz.3.425'.
[  162.368621][ T7266] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  164.071798][ T7281] siw: device registration error -23
[  165.214133][ T7296] siw: device registration error -23
[  165.297113][ T7331] netlink: 10 bytes leftover after parsing attributes in process `syz.3.454'.
[  165.365318][ T7332] openvswitch: netlink: IP tunnel dst address not specified
[  168.705278][ T7357] netlink: 'syz.2.464': attribute type 11 has an invalid length.
[  169.085601][ T7366] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.468'.
[  169.116349][ T7366] netlink: 164 bytes leftover after parsing attributes in process `syz.4.468'.
[  171.058856][ T7407] netlink: 8 bytes leftover after parsing attributes in process `syz.2.483'.
[  171.111003][ T7407] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  171.521734][ T7420] netlink: 'syz.2.487': attribute type 4 has an invalid length.
[  172.567417][ T7437] netlink: 'syz.1.494': attribute type 21 has an invalid length.
[  172.630596][ T7437] netlink: 168 bytes leftover after parsing attributes in process `syz.1.494'.
[  172.912311][ T7430] netlink: 'syz.4.492': attribute type 3 has an invalid length.
[  172.925742][ T7430] netlink: 201372 bytes leftover after parsing attributes in process `syz.4.492'.
[  174.582796][   T30] audit: type=1107 audit(1755621842.605:2): pid=7469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='¸ñU'
[  176.204890][ T7504] netlink: 'syz.1.520': attribute type 10 has an invalid length.
[  176.432790][ T7514] netlink: 16 bytes leftover after parsing attributes in process `syz.3.524'.
[  176.447823][ T7514] netlink: 16 bytes leftover after parsing attributes in process `syz.3.524'.
[  176.467889][ T7514] netlink: 16 bytes leftover after parsing attributes in process `syz.3.524'.
[  176.846101][ T7519] netlink: 'syz.2.526': attribute type 21 has an invalid length.
[  176.875396][ T7519] netlink: 132 bytes leftover after parsing attributes in process `syz.2.526'.
[  177.506926][ T7534] FAULT_INJECTION: forcing a failure.
[  177.506926][ T7534] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.522373][ T7534] CPU: 1 UID: 0 PID: 7534 Comm: syz.2.531 Not tainted syzkaller #0 PREEMPT(full) 
[  177.522426][ T7534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  177.522438][ T7534] Call Trace:
[  177.522446][ T7534]  <TASK>
[  177.522455][ T7534]  dump_stack_lvl+0x189/0x250
[  177.522485][ T7534]  ? __pfx____ratelimit+0x10/0x10
[  177.522514][ T7534]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.522538][ T7534]  ? __pfx__printk+0x10/0x10
[  177.522581][ T7534]  should_fail_ex+0x414/0x560
[  177.522613][ T7534]  _copy_to_user+0x31/0xb0
[  177.522639][ T7534]  simple_read_from_buffer+0xe1/0x170
[  177.522674][ T7534]  proc_fail_nth_read+0x1b3/0x220
[  177.522701][ T7534]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  177.522728][ T7534]  ? rw_verify_area+0x2a6/0x4d0
[  177.522753][ T7534]  ? __lock_acquire+0xab9/0xd20
[  177.522780][ T7534]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  177.522805][ T7534]  vfs_read+0x200/0xa30
[  177.522830][ T7534]  ? fdget_pos+0x247/0x320
[  177.522853][ T7534]  ? __pfx___mutex_lock+0x10/0x10
[  177.522883][ T7534]  ? __pfx_vfs_read+0x10/0x10
[  177.522911][ T7534]  ? __fget_files+0x2a/0x420
[  177.522934][ T7534]  ? __fget_files+0x3a0/0x420
[  177.522950][ T7534]  ? __fget_files+0x2a/0x420
[  177.522978][ T7534]  ksys_read+0x145/0x250
[  177.523008][ T7534]  ? __pfx_ksys_read+0x10/0x10
[  177.523031][ T7534]  ? rcu_is_watching+0x15/0xb0
[  177.523058][ T7534]  ? do_syscall_64+0xbe/0x3b0
[  177.523091][ T7534]  do_syscall_64+0xfa/0x3b0
[  177.523118][ T7534]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.523145][ T7534]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.523165][ T7534]  ? clear_bhb_loop+0x60/0xb0
[  177.523190][ T7534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.523209][ T7534] RIP: 0033:0x7fd014d8d5fc
[  177.523228][ T7534] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  177.523244][ T7534] RSP: 002b:00007fd015b9c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  177.523266][ T7534] RAX: ffffffffffffffda RBX: 00007fd014fb5fa0 RCX: 00007fd014d8d5fc
[  177.523280][ T7534] RDX: 000000000000000f RSI: 00007fd015b9c0a0 RDI: 0000000000000006
[  177.523292][ T7534] RBP: 00007fd015b9c090 R08: 0000000000000000 R09: 0000000000000000
[  177.523305][ T7534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  177.523316][ T7534] R13: 00007fd014fb6038 R14: 00007fd014fb5fa0 R15: 00007ffe93eaa468
[  177.523349][ T7534]  </TASK>
[  178.094503][ T7546] netlink: 'syz.4.537': attribute type 2 has an invalid length.
[  178.105192][ T7546] netlink: 16098 bytes leftover after parsing attributes in process `syz.4.537'.
[  178.179930][ T7553] netlink: 64 bytes leftover after parsing attributes in process `syz.0.540'.
[  178.633336][ T7561] netlink: 130984 bytes leftover after parsing attributes in process `syz.4.541'.
[  179.505303][ T7579] netlink: 144 bytes leftover after parsing attributes in process `syz.4.548'.
[  179.610990][ T7582] FAULT_INJECTION: forcing a failure.
[  179.610990][ T7582] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.715065][ T7582] CPU: 0 UID: 0 PID: 7582 Comm: syz.2.549 Not tainted syzkaller #0 PREEMPT(full) 
[  179.715097][ T7582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  179.715111][ T7582] Call Trace:
[  179.715121][ T7582]  <TASK>
[  179.715131][ T7582]  dump_stack_lvl+0x189/0x250
[  179.715167][ T7582]  ? __pfx____ratelimit+0x10/0x10
[  179.715209][ T7582]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.715238][ T7582]  ? __pfx__printk+0x10/0x10
[  179.715293][ T7582]  should_fail_ex+0x414/0x560
[  179.715333][ T7582]  _copy_to_user+0x31/0xb0
[  179.715364][ T7582]  bpf_test_finish+0x56f/0x700
[  179.715414][ T7582]  ? __pfx_bpf_test_finish+0x10/0x10
[  179.715457][ T7582]  ? slab_build_skb+0x273/0x3e0
[  179.715499][ T7582]  bpf_prog_test_run_skb+0xed5/0x1560
[  179.715558][ T7582]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  179.715594][ T7582]  bpf_prog_test_run+0x2c4/0x340
[  179.715635][ T7582]  __sys_bpf+0x581/0x870
[  179.715670][ T7582]  ? __pfx___sys_bpf+0x10/0x10
[  179.715726][ T7582]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  179.715761][ T7582]  ? __pfx_ksys_write+0x10/0x10
[  179.715789][ T7582]  ? rcu_is_watching+0x15/0xb0
[  179.715824][ T7582]  __x64_sys_bpf+0x7c/0x90
[  179.715855][ T7582]  do_syscall_64+0xfa/0x3b0
[  179.715888][ T7582]  ? lockdep_hardirqs_on+0x9c/0x150
[  179.715919][ T7582]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.715942][ T7582]  ? clear_bhb_loop+0x60/0xb0
[  179.715973][ T7582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.715996][ T7582] RIP: 0033:0x7fd014d8ebe9
[  179.716021][ T7582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.716039][ T7582] RSP: 002b:00007fd015b9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  179.716063][ T7582] RAX: ffffffffffffffda RBX: 00007fd014fb5fa0 RCX: 00007fd014d8ebe9
[  179.716080][ T7582] RDX: 000000000000004c RSI: 0000200000000240 RDI: 000000000000000a
[  179.716093][ T7582] RBP: 00007fd015b9c090 R08: 0000000000000000 R09: 0000000000000000
[  179.716106][ T7582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  179.716119][ T7582] R13: 00007fd014fb6038 R14: 00007fd014fb5fa0 R15: 00007ffe93eaa468
[  179.716162][ T7582]  </TASK>
[  180.737341][ T7603] netlink: 8 bytes leftover after parsing attributes in process `syz.1.555'.
[  180.858831][ T7610] netlink: 'syz.1.555': attribute type 21 has an invalid length.
[  181.500184][ T7641] netlink: 104 bytes leftover after parsing attributes in process `syz.4.569'.
[  181.967071][ T7648] lo speed is unknown, defaulting to 1000
[  181.983972][ T7648] vcan0 speed is unknown, defaulting to 1000
[  182.085532][ T7653] netlink: 8 bytes leftover after parsing attributes in process `syz.4.572'.
[  182.144161][ T7653] openvswitch: netlink: nsh attribute has 13 unknown bytes.
[  182.218207][ T7653] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  182.721194][ T7667] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  182.876431][ T7669] netlink: 28 bytes leftover after parsing attributes in process `syz.3.579'.
[  183.293551][ T7678] netlink: 10 bytes leftover after parsing attributes in process `syz.1.581'.
[  183.862613][ T7693] netlink: 36 bytes leftover after parsing attributes in process `syz.1.587'.
[  184.423809][ T7688] netlink: 10 bytes leftover after parsing attributes in process `syz.3.586'.
[  184.562174][ T7695] netlink: 'syz.1.588': attribute type 10 has an invalid length.
[  184.612256][ T7695] netlink: 40 bytes leftover after parsing attributes in process `syz.1.588'.
[  184.690919][ T7695] ipvlan1: entered promiscuous mode
[  184.738728][ T7695] ipvlan1: entered allmulticast mode
[  184.759073][ T7695] veth0_vlan: entered allmulticast mode
[  184.825297][ T7695] bridge0: port 2(ipvlan1) entered blocking state
[  184.856412][ T7695] bridge0: port 2(ipvlan1) entered disabled state
[  184.903905][ T7695] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  185.176643][ T7722] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.597'.
[  185.985688][ T7730] C: renamed from team_slave_0 (while UP)
[  186.012715][ T7730] netlink: 'syz.0.597': attribute type 3 has an invalid length.
[  186.024967][ T7730] netlink: 152 bytes leftover after parsing attributes in process `syz.0.597'.
[  186.216088][ T7743] netlink: 10 bytes leftover after parsing attributes in process `syz.2.603'.
[  186.402527][ T7752] FAULT_INJECTION: forcing a failure.
[  186.402527][ T7752] name failslab, interval 1, probability 0, space 0, times 0
[  186.424296][ T7752] CPU: 1 UID: 0 PID: 7752 Comm: syz.0.606 Not tainted syzkaller #0 PREEMPT(full) 
[  186.424326][ T7752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  186.424338][ T7752] Call Trace:
[  186.424347][ T7752]  <TASK>
[  186.424356][ T7752]  dump_stack_lvl+0x189/0x250
[  186.424387][ T7752]  ? __pfx____ratelimit+0x10/0x10
[  186.424416][ T7752]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.424441][ T7752]  ? __pfx__printk+0x10/0x10
[  186.424466][ T7752]  ? perf_trace_lock_acquire+0xf5/0x410
[  186.424509][ T7752]  should_fail_ex+0x414/0x560
[  186.424544][ T7752]  should_failslab+0xa8/0x100
[  186.424578][ T7752]  kmem_cache_alloc_noprof+0x73/0x3c0
[  186.424605][ T7752]  ? skb_clone+0x212/0x3a0
[  186.424635][ T7752]  skb_clone+0x212/0x3a0
[  186.424662][ T7752]  __netlink_deliver_tap+0x404/0x850
[  186.424708][ T7752]  ? netlink_deliver_tap+0x2e/0x1b0
[  186.424750][ T7752]  netlink_deliver_tap+0x19c/0x1b0
[  186.424782][ T7752]  netlink_sendskb+0x68/0x140
[  186.424812][ T7752]  netlink_unicast+0x397/0x9e0
[  186.424831][ T7752]  ? __asan_memcpy+0x40/0x70
[  186.424859][ T7752]  ? __pfx_netlink_unicast+0x10/0x10
[  186.424891][ T7752]  netlink_rcv_skb+0x28c/0x470
[  186.424917][ T7752]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  186.424940][ T7752]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  186.424977][ T7752]  ? bpf_lsm_capable+0x9/0x20
[  186.424999][ T7752]  ? security_capable+0x7e/0x2e0
[  186.425031][ T7752]  nfnetlink_rcv+0x26a/0x2520
[  186.425056][ T7752]  ? __dev_queue_xmit+0x1d79/0x3b50
[  186.425085][ T7752]  ? __dev_queue_xmit+0x27b/0x3b50
[  186.425117][ T7752]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  186.425137][ T7752]  ? __pfx___dev_queue_xmit+0x10/0x10
[  186.425171][ T7752]  ? ref_tracker_free+0x63a/0x7d0
[  186.425195][ T7752]  ? __asan_memcpy+0x40/0x70
[  186.425213][ T7752]  ? __pfx_ref_tracker_free+0x10/0x10
[  186.425235][ T7752]  ? __skb_clone+0x63/0x7a0
[  186.425256][ T7752]  ? __skb_clone+0x483/0x7a0
[  186.425281][ T7752]  ? skb_clone+0x246/0x3a0
[  186.425302][ T7752]  ? __netlink_deliver_tap+0x807/0x850
[  186.425325][ T7752]  ? netlink_deliver_tap+0x2e/0x1b0
[  186.425356][ T7752]  ? netlink_deliver_tap+0x2e/0x1b0
[  186.425389][ T7752]  netlink_unicast+0x82c/0x9e0
[  186.425420][ T7752]  ? __pfx_netlink_unicast+0x10/0x10
[  186.425449][ T7752]  ? netlink_sendmsg+0x642/0xb30
[  186.425472][ T7752]  ? skb_put+0x11b/0x210
[  186.425503][ T7752]  netlink_sendmsg+0x805/0xb30
[  186.425538][ T7752]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.425566][ T7752]  ? aa_sock_msg_perm+0xf1/0x1d0
[  186.425594][ T7752]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  186.425612][ T7752]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.425638][ T7752]  __sock_sendmsg+0x21c/0x270
[  186.425663][ T7752]  ____sys_sendmsg+0x505/0x830
[  186.425686][ T7752]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.425713][ T7752]  ? import_iovec+0x74/0xa0
[  186.425742][ T7752]  ___sys_sendmsg+0x21f/0x2a0
[  186.425762][ T7752]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.425817][ T7752]  ? __fget_files+0x2a/0x420
[  186.425831][ T7752]  ? __fget_files+0x3a0/0x420
[  186.425856][ T7752]  __x64_sys_sendmsg+0x19b/0x260
[  186.425876][ T7752]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  186.425904][ T7752]  ? __pfx_ksys_write+0x10/0x10
[  186.425924][ T7752]  ? rcu_is_watching+0x15/0xb0
[  186.425946][ T7752]  ? do_syscall_64+0xbe/0x3b0
[  186.425974][ T7752]  do_syscall_64+0xfa/0x3b0
[  186.425997][ T7752]  ? lockdep_hardirqs_on+0x9c/0x150
[  186.426019][ T7752]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.426035][ T7752]  ? clear_bhb_loop+0x60/0xb0
[  186.426056][ T7752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.426072][ T7752] RIP: 0033:0x7f3654f8ebe9
[  186.426088][ T7752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.426102][ T7752] RSP: 002b:00007f3655dc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.426120][ T7752] RAX: ffffffffffffffda RBX: 00007f36551b5fa0 RCX: 00007f3654f8ebe9
[  186.426132][ T7752] RDX: 0000000000048000 RSI: 0000200000000140 RDI: 0000000000000003
[  186.426142][ T7752] RBP: 00007f3655dc3090 R08: 0000000000000000 R09: 0000000000000000
[  186.426151][ T7752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.426161][ T7752] R13: 00007f36551b6038 R14: 00007f36551b5fa0 R15: 00007ffebd90a778
[  186.426190][ T7752]  </TASK>
[  187.254611][ T7764] TCP: TCP_TX_DELAY enabled
[  187.465589][ T7773] __nla_validate_parse: 1 callbacks suppressed
[  187.465611][ T7773] netlink: 36 bytes leftover after parsing attributes in process `syz.2.610'.
[  187.601785][ T7776] netlink: 132 bytes leftover after parsing attributes in process `syz.3.609'.
[  187.919971][ T7770] netlink: 56 bytes leftover after parsing attributes in process `syz.1.612'.
[  189.315251][ T7811] netlink: 44 bytes leftover after parsing attributes in process `syz.1.620'.
[  190.029049][ T7824] netlink: 56 bytes leftover after parsing attributes in process `syz.4.625'.
[  190.209775][ T7828] netlink: 56 bytes leftover after parsing attributes in process `syz.1.627'.
[  190.673863][ T7840] netlink: 32 bytes leftover after parsing attributes in process `syz.2.632'.
[  191.628951][ T7855] netlink: 5 bytes leftover after parsing attributes in process `syz.2.639'.
[  194.119059][ T7903] netlink: 16 bytes leftover after parsing attributes in process `syz.3.655'.
[  194.169732][ T7903] netlink: 16 bytes leftover after parsing attributes in process `syz.3.655'.
[  194.192389][ T7906] netlink: 16 bytes leftover after parsing attributes in process `syz.3.655'.
[  194.229876][ T7910] netlink: 192 bytes leftover after parsing attributes in process `syz.2.658'.
[  194.240908][ T7908] netlink: 'syz.1.657': attribute type 9 has an invalid length.
[  194.253982][ T7912] netlink: 96 bytes leftover after parsing attributes in process `syz.4.659'.
[  194.506335][ T7919] netlink: 44 bytes leftover after parsing attributes in process `syz.0.662'.
[  194.684343][ T7925] netlink: 7 bytes leftover after parsing attributes in process `syz.3.663'.
[  194.722912][ T7925] netlink: 7 bytes leftover after parsing attributes in process `syz.3.663'.
[  194.847298][ T7933] netlink: 4 bytes leftover after parsing attributes in process `syz.1.667'.
[  195.133192][ T7942] netlink: 16 bytes leftover after parsing attributes in process `syz.4.673'.
[  197.740661][ T7958] siw: device registration error -23
[  198.275926][ T7992] FAULT_INJECTION: forcing a failure.
[  198.275926][ T7992] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.299134][ T7992] CPU: 0 UID: 0 PID: 7992 Comm: syz.4.691 Not tainted syzkaller #0 PREEMPT(full) 
[  198.299163][ T7992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  198.299176][ T7992] Call Trace:
[  198.299184][ T7992]  <TASK>
[  198.299193][ T7992]  dump_stack_lvl+0x189/0x250
[  198.299222][ T7992]  ? __pfx____ratelimit+0x10/0x10
[  198.299250][ T7992]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.299274][ T7992]  ? __pfx__printk+0x10/0x10
[  198.299317][ T7992]  should_fail_ex+0x414/0x560
[  198.299349][ T7992]  _copy_to_user+0x31/0xb0
[  198.299375][ T7992]  cp_new_stat+0x391/0x4f0
[  198.299403][ T7992]  ? __pfx_cp_new_stat+0x10/0x10
[  198.299442][ T7992]  ? kernfs_iop_getattr+0x32b/0x450
[  198.299479][ T7992]  __x64_sys_newfstat+0x171/0x200
[  198.299504][ T7992]  ? __pfx___x64_sys_newfstat+0x10/0x10
[  198.299549][ T7992]  ? __pfx_ksys_write+0x10/0x10
[  198.299574][ T7992]  ? rcu_is_watching+0x15/0xb0
[  198.299600][ T7992]  ? do_syscall_64+0xbe/0x3b0
[  198.299633][ T7992]  do_syscall_64+0xfa/0x3b0
[  198.299659][ T7992]  ? lockdep_hardirqs_on+0x9c/0x150
[  198.299685][ T7992]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.299705][ T7992]  ? clear_bhb_loop+0x60/0xb0
[  198.299739][ T7992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.299758][ T7992] RIP: 0033:0x7f104798ebe9
[  198.299776][ T7992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.299792][ T7992] RSP: 002b:00007f1048756038 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[  198.299813][ T7992] RAX: ffffffffffffffda RBX: 00007f1047bb5fa0 RCX: 00007f104798ebe9
[  198.299827][ T7992] RDX: 0000000000000000 RSI: 0000200000001040 RDI: 0000000000000004
[  198.299840][ T7992] RBP: 00007f1048756090 R08: 0000000000000000 R09: 0000000000000000
[  198.299851][ T7992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.299863][ T7992] R13: 00007f1047bb6038 R14: 00007f1047bb5fa0 R15: 00007fff92a33c38
[  198.299896][ T7992]  </TASK>
[  198.936913][ T8010] netlink: 'syz.4.695': attribute type 21 has an invalid length.
[  199.603696][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  199.612939][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  199.671502][ T8018] __nla_validate_parse: 8 callbacks suppressed
[  199.671525][ T8018] netlink: 20 bytes leftover after parsing attributes in process `syz.4.698'.
[  199.719469][ T8033] netlink: 8 bytes leftover after parsing attributes in process `syz.2.701'.
[  200.089397][ T8046] delete_channel: no stack
[  200.179894][ T8046] delete_channel: no stack
[  201.440776][ T8063] netlink: 'syz.2.712': attribute type 4 has an invalid length.
[  201.464789][ T8063] netlink: 210788 bytes leftover after parsing attributes in process `syz.2.712'.
[  201.606857][ T8077] netlink: 'syz.1.717': attribute type 29 has an invalid length.
[  201.617409][ T8077] netlink: 'syz.1.717': attribute type 29 has an invalid length.
[  201.787462][ T8082] netlink: 28 bytes leftover after parsing attributes in process `syz.0.716'.
[  201.871886][ T8082] netlink: 12 bytes leftover after parsing attributes in process `syz.0.716'.
[  201.930827][ T8085] netlink: 'syz.2.720': attribute type 3 has an invalid length.
[  201.989500][ T8090] netlink: 8 bytes leftover after parsing attributes in process `syz.3.723'.
[  201.990313][ T8085] netlink: 'syz.2.720': attribute type 1 has an invalid length.
[  202.043782][ T8090] netlink: 'syz.3.723': attribute type 21 has an invalid length.
[  202.167064][ T8085] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.720'.
[  202.340632][ T8092] net veth1_virt_wifi »»»»»»: renamed from virt_wifi0
[  202.924768][ T5866] Bluetooth: hci1: ISO packet for unknown connection handle 2622
[  203.721525][ T8128] netlink: 'syz.3.735': attribute type 21 has an invalid length.
[  203.765821][ T8125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.735'.
[  203.814704][ T8117] lo speed is unknown, defaulting to 1000
[  203.822906][ T8117] vcan0 speed is unknown, defaulting to 1000
[  203.974310][ T8135] FAULT_INJECTION: forcing a failure.
[  203.974310][ T8135] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.044155][ T8135] CPU: 1 UID: 0 PID: 8135 Comm: syz.2.737 Not tainted syzkaller #0 PREEMPT(full) 
[  204.044183][ T8135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  204.044195][ T8135] Call Trace:
[  204.044204][ T8135]  <TASK>
[  204.044213][ T8135]  dump_stack_lvl+0x189/0x250
[  204.044245][ T8135]  ? __pfx____ratelimit+0x10/0x10
[  204.044275][ T8135]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.044301][ T8135]  ? __pfx__printk+0x10/0x10
[  204.044350][ T8135]  should_fail_ex+0x414/0x560
[  204.044386][ T8135]  _copy_to_user+0x31/0xb0
[  204.044413][ T8135]  simple_read_from_buffer+0xe1/0x170
[  204.044452][ T8135]  proc_fail_nth_read+0x1b3/0x220
[  204.044481][ T8135]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  204.044510][ T8135]  ? rw_verify_area+0x2a6/0x4d0
[  204.044536][ T8135]  ? __lock_acquire+0xab9/0xd20
[  204.044571][ T8135]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  204.044597][ T8135]  vfs_read+0x200/0xa30
[  204.044623][ T8135]  ? fdget_pos+0x247/0x320
[  204.044649][ T8135]  ? __pfx___mutex_lock+0x10/0x10
[  204.044680][ T8135]  ? __pfx_vfs_read+0x10/0x10
[  204.044710][ T8135]  ? __fget_files+0x2a/0x420
[  204.044735][ T8135]  ? __fget_files+0x3a0/0x420
[  204.044752][ T8135]  ? __fget_files+0x2a/0x420
[  204.044783][ T8135]  ksys_read+0x145/0x250
[  204.044816][ T8135]  ? __pfx_ksys_read+0x10/0x10
[  204.044851][ T8135]  ? do_syscall_64+0xbe/0x3b0
[  204.044887][ T8135]  do_syscall_64+0xfa/0x3b0
[  204.044914][ T8135]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.044942][ T8135]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.044961][ T8135]  ? clear_bhb_loop+0x60/0xb0
[  204.044988][ T8135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.045008][ T8135] RIP: 0033:0x7fd014d8d5fc
[  204.045027][ T8135] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  204.045044][ T8135] RSP: 002b:00007fd015b7b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  204.045064][ T8135] RAX: ffffffffffffffda RBX: 00007fd014fb6090 RCX: 00007fd014d8d5fc
[  204.045079][ T8135] RDX: 000000000000000f RSI: 00007fd015b7b0a0 RDI: 0000000000000005
[  204.045091][ T8135] RBP: 00007fd015b7b090 R08: 0000000000000000 R09: 0000000000000000
[  204.045103][ T8135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.045114][ T8135] R13: 00007fd014fb6128 R14: 00007fd014fb6090 R15: 00007ffe93eaa468
[  204.045153][ T8135]  </TASK>
[  204.369687][ T8139] netlink: 4 bytes leftover after parsing attributes in process `syz.3.739'.
[  204.375211][ T8134] siw: device registration error -23
[  204.420863][ T8139] netlink: 76 bytes leftover after parsing attributes in process `syz.3.739'.
[  204.463788][ T8141] netlink: 'syz.3.739': attribute type 1 has an invalid length.
[  204.547645][ T8141] netlink: 'syz.3.739': attribute type 2 has an invalid length.
[  205.758588][ T8155] __nla_validate_parse: 1 callbacks suppressed
[  205.758644][ T8155] netlink: 56 bytes leftover after parsing attributes in process `syz.0.743'.
[  205.784609][ T8165] netlink: 68 bytes leftover after parsing attributes in process `syz.2.747'.
[  205.991495][ T8171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.749'.
[  206.126944][ T8174] netlink: 'syz.2.749': attribute type 21 has an invalid length.
[  206.292712][ T8173] netlink: 72 bytes leftover after parsing attributes in process `syz.4.751'.
[  206.445663][ T8179] lo: entered promiscuous mode
[  206.477315][ T8179] lo: entered allmulticast mode
[  206.562691][ T8179] tunl0: entered promiscuous mode
[  206.607927][ T8179] tunl0: entered allmulticast mode
[  206.714956][ T8180] IPv6: NLM_F_CREATE should be specified when creating new route
[  206.785866][ T8179] gre0: entered promiscuous mode
[  206.829752][ T8179] gre0: entered allmulticast mode
[  207.013151][ T8179] gretap0: entered promiscuous mode
[  207.022477][ T8179] gretap0: entered allmulticast mode
[  207.111940][ T8179] erspan0: entered promiscuous mode
[  207.135024][ T8179] erspan0: entered allmulticast mode
[  207.250927][ T8179] ip_vti0: entered promiscuous mode
[  207.296878][ T8179] ip_vti0: entered allmulticast mode
[  207.333588][ T8179] ip6_vti0: entered promiscuous mode
[  207.352035][ T8179] ip6_vti0: entered allmulticast mode
[  207.553409][ T8179] ip6tnl0: entered promiscuous mode
[  207.568668][ T8179] ip6tnl0: entered allmulticast mode
[  207.598619][ T8179] ip6gre0: entered promiscuous mode
[  207.603899][ T8179] ip6gre0: entered allmulticast mode
[  207.682421][ T8179] syz_tun: entered promiscuous mode
[  207.708108][ T8179] syz_tun: entered allmulticast mode
[  207.779445][ T8179] ip6gretap0: entered promiscuous mode
[  207.798557][ T8179] ip6gretap0: entered allmulticast mode
[  207.836696][ T8179] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.876898][ T8179] bridge0: entered promiscuous mode
[  207.898631][ T8179] bridge0: entered allmulticast mode
[  207.953220][ T8179] vcan0: entered promiscuous mode
[  207.975173][ T8179] vcan0: entered allmulticast mode
[  208.002510][ T8179] bond0: entered promiscuous mode
[  208.007628][ T8179] bond_slave_0: entered promiscuous mode
[  208.027888][ T8179] bond_slave_1: entered promiscuous mode
[  208.036642][ T8179] bridge_slave_1: entered promiscuous mode
[  208.050031][ T8179] bond0: entered allmulticast mode
[  208.055546][ T8179] bond_slave_0: entered allmulticast mode
[  208.063141][ T8179] bond_slave_1: entered allmulticast mode
[  208.070059][ T8179] bridge_slave_1: entered allmulticast mode
[  208.130017][ T8179] team0: entered promiscuous mode
[  208.140467][ T8179] team_slave_0: entered promiscuous mode
[  208.147036][ T8179] team_slave_1: entered promiscuous mode
[  208.157877][ T8179] team0: entered allmulticast mode
[  208.167541][ T8179] team_slave_0: entered allmulticast mode
[  208.173760][ T8179] team_slave_1: entered allmulticast mode
[  208.217505][ T8179] dummy0: entered promiscuous mode
[  208.226009][ T8179] dummy0: entered allmulticast mode
[  208.278148][ T8179] nlmon0: entered promiscuous mode
[  208.290493][ T8179] nlmon0: entered allmulticast mode
[  208.321343][ T8179] caif0: entered promiscuous mode
[  208.326482][ T8179] caif0: entered allmulticast mode
[  208.343838][ T8179] batadv0: entered promiscuous mode
[  208.350169][ T8179] batadv0: entered allmulticast mode
[  208.390206][ T8179] veth0: entered promiscuous mode
[  208.408908][ T8179] veth0: entered allmulticast mode
[  208.437736][ T8179] veth1: entered promiscuous mode
[  208.453837][ T8179] veth1: entered allmulticast mode
[  208.513921][ T8179] wg0: entered promiscuous mode
[  208.520060][ T8179] wg0: entered allmulticast mode
[  208.554680][ T8179] wg1: entered promiscuous mode
[  208.562676][ T8179] wg1: entered allmulticast mode
[  208.578167][ T8179] wg2: entered promiscuous mode
[  208.583371][ T8179] wg2: entered allmulticast mode
[  208.592020][ T8179] veth0_to_bridge: entered promiscuous mode
[  208.598067][ T8179] veth0_to_bridge: entered allmulticast mode
[  208.627164][ T8179] veth1_to_bridge: entered promiscuous mode
[  208.638834][ T8179] veth1_to_bridge: entered allmulticast mode
[  208.655199][ T8179] veth0_to_bond: entered promiscuous mode
[  208.672636][ T8179] veth0_to_bond: entered allmulticast mode
[  208.683870][ T8179] veth1_to_bond: entered promiscuous mode
[  208.693384][ T8179] veth1_to_bond: entered allmulticast mode
[  208.711684][ T8179] veth0_to_team: entered promiscuous mode
[  208.717620][ T8179] veth0_to_team: entered allmulticast mode
[  208.739451][ T8179] veth1_to_team: entered promiscuous mode
[  208.745633][ T8179] veth1_to_team: entered allmulticast mode
[  208.770938][ T8179] veth0_to_batadv: entered promiscuous mode
[  208.790233][ T8179] veth0_to_batadv: entered allmulticast mode
[  208.802540][ T8179] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  208.812083][ T8179] batadv_slave_0: entered promiscuous mode
[  208.818500][ T8179] batadv_slave_0: entered allmulticast mode
[  208.847268][ T8179] veth1_to_batadv: entered promiscuous mode
[  208.853626][ T8179] veth1_to_batadv: entered allmulticast mode
[  208.862641][ T8179] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  208.870699][ T8179] batadv_slave_1: entered promiscuous mode
[  208.876561][ T8179] batadv_slave_1: entered allmulticast mode
[  208.893412][ T8179] xfrm0: entered promiscuous mode
[  208.898568][ T8179] xfrm0: entered allmulticast mode
[  208.913271][ T8179] veth0_to_hsr: entered promiscuous mode
[  208.920221][ T8179] veth0_to_hsr: entered allmulticast mode
[  208.936767][ T8179] hsr_slave_0: entered allmulticast mode
[  208.947595][ T8179] veth1_to_hsr: entered promiscuous mode
[  208.953656][ T8179] veth1_to_hsr: entered allmulticast mode
[  208.963114][ T8179] hsr_slave_1: entered allmulticast mode
[  208.979731][ T8179] hsr0: entered promiscuous mode
[  208.984773][ T8179] hsr0: entered allmulticast mode
[  209.002047][ T8179] veth1_vlan: entered allmulticast mode
[  209.016978][ T8179] veth0_vlan: entered allmulticast mode
[  209.044728][ T8179] vlan0: entered promiscuous mode
[  209.052356][ T8179] vlan0: entered allmulticast mode
[  209.058101][ T8179] vlan1: entered promiscuous mode
[  209.064655][ T8179] vlan1: entered allmulticast mode
[  209.072478][ T8179] macvlan0: entered promiscuous mode
[  209.077956][ T8179] macvlan0: entered allmulticast mode
[  209.098256][ T8179] macvlan1: entered promiscuous mode
[  209.104000][ T8179] macvlan1: entered allmulticast mode
[  209.121276][ T8179] ipvlan0: entered promiscuous mode
[  209.130314][ T8179] ipvlan0: entered allmulticast mode
[  209.136973][ T8179] ipvlan1: entered promiscuous mode
[  209.143068][ T8179] ipvlan1: entered allmulticast mode
[  209.150249][ T8179] veth1_macvtap: entered allmulticast mode
[  209.167809][ T8179] veth0_macvtap: entered allmulticast mode
[  209.188372][ T8179] macvtap0: entered promiscuous mode
[  209.195293][ T8179] macvtap0: entered allmulticast mode
[  209.209074][ T8179] macsec0: entered promiscuous mode
[  209.215913][ T8179] macsec0: entered allmulticast mode
[  209.230877][ T8179] geneve0: entered promiscuous mode
[  209.236253][ T8179] geneve0: entered allmulticast mode
[  209.248372][ T8179] geneve1: entered promiscuous mode
[  209.253949][ T8179] geneve1: entered allmulticast mode
[  209.272821][ T8179] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  209.280418][ T8179] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  209.302448][ T8179] netdevsim netdevsim3 netdevsim1: entered promiscuous mode
[  209.317260][ T8179] netdevsim netdevsim3 netdevsim1: entered allmulticast mode
[  209.337190][ T8179] netdevsim netdevsim3 netdevsim2: entered promiscuous mode
[  209.350543][ T8179] netdevsim netdevsim3 netdevsim2: entered allmulticast mode
[  209.376611][ T8179] netdevsim netdevsim3 netdevsim3: entered promiscuous mode
[  209.384304][ T8179] netdevsim netdevsim3 netdevsim3: entered allmulticast mode
[  209.427006][ T8179] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode
[  209.434275][ T8179] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[  209.462098][ T8179] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  209.473335][ T8179] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode
[  209.532067][ T8198] vcan0 speed is unknown, defaulting to 1000
[  209.538494][   T36] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.548093][ T8198] syz1: Port: 1 Link DOWN
[  209.601549][   T36] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.642634][ T8200] vcan0 speed is unknown, defaulting to 1000
[  209.660547][   T36] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.697341][   T36] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  209.743327][ T8183] lo speed is unknown, defaulting to 1000
[  209.755792][ T8183] vcan0 speed is unknown, defaulting to 1000
[  209.912169][ T8222] netlink: 8 bytes leftover after parsing attributes in process `syz.2.759'.
[  210.029838][ T8225] validate_nla: 2 callbacks suppressed
[  210.029862][ T8225] netlink: 'syz.3.762': attribute type 10 has an invalid length.
[  210.617198][ T8230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.764'.
[  210.671556][ T8230] netlink: 'syz.1.764': attribute type 21 has an invalid length.
[  210.872441][ T8233] netlink: 'syz.4.766': attribute type 9 has an invalid length.
[  211.930683][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  211.930729][ T5183] Bluetooth: hci0: command 0x0406 tx timeout
[  211.938325][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  211.943477][ T5183] Bluetooth: hci4: command 0x0406 tx timeout
[  211.950341][ T5884] Bluetooth: hci3: command 0x0406 tx timeout
[  212.386411][ T8247] netlink: 'syz.1.770': attribute type 10 has an invalid length.
[  212.435747][ T8247] netlink: 168 bytes leftover after parsing attributes in process `syz.1.770'.
[  216.478026][ T8291] netlink: 65047 bytes leftover after parsing attributes in process `syz.4.784'.
[  216.519770][ T8291] netlink: 156252 bytes leftover after parsing attributes in process `syz.4.784'.
[  216.601573][ T8291] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  216.892646][ T8294] netlink: 'syz.1.785': attribute type 29 has an invalid length.
[  216.934400][ T8294] netlink: 'syz.1.785': attribute type 29 has an invalid length.
[  217.795357][ T8308] netlink: 'syz.4.787': attribute type 23 has an invalid length.
[  217.956754][ T8303] netlink: 'syz.4.787': attribute type 5 has an invalid length.
[  218.024173][ T8303] netlink: 44 bytes leftover after parsing attributes in process `syz.4.787'.
[  218.435030][ T8314] netlink: 'syz.2.790': attribute type 25 has an invalid length.
[  218.852685][ T8326] tap0: tun_chr_ioctl cmd 1074025677
[  218.858222][ T8326] tap0: linktype set to 270
[  218.875132][ T8329] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  219.685536][ T8338] FAULT_INJECTION: forcing a failure.
[  219.685536][ T8338] name failslab, interval 1, probability 0, space 0, times 0
[  219.773879][ T8338] CPU: 0 UID: 0 PID: 8338 Comm: syz.0.801 Not tainted syzkaller #0 PREEMPT(full) 
[  219.773919][ T8338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  219.773939][ T8338] Call Trace:
[  219.773947][ T8338]  <TASK>
[  219.773956][ T8338]  dump_stack_lvl+0x189/0x250
[  219.773986][ T8338]  ? __pfx____ratelimit+0x10/0x10
[  219.774016][ T8338]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.774041][ T8338]  ? __pfx__printk+0x10/0x10
[  219.774087][ T8338]  should_fail_ex+0x414/0x560
[  219.774120][ T8338]  should_failslab+0xa8/0x100
[  219.774153][ T8338]  __kmalloc_cache_noprof+0x70/0x3d0
[  219.774181][ T8338]  ? sctp_add_bind_addr+0x8c/0x370
[  219.774213][ T8338]  sctp_add_bind_addr+0x8c/0x370
[  219.774245][ T8338]  sctp_copy_local_addr_list+0x30b/0x4e0
[  219.774284][ T8338]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  219.774311][ T8338]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  219.774340][ T8338]  ? sctp_v6_is_any+0x64/0x80
[  219.774371][ T8338]  ? sctp_copy_one_addr+0x93/0x360
[  219.774402][ T8338]  sctp_bind_addr_copy+0xb3/0x3c0
[  219.774430][ T8338]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  219.774457][ T8338]  sctp_connect_new_asoc+0x2e0/0x690
[  219.774493][ T8338]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  219.774522][ T8338]  ? __local_bh_enable_ip+0x12d/0x1c0
[  219.774551][ T8338]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  219.774576][ T8338]  ? security_sctp_bind_connect+0x7e/0x2e0
[  219.774604][ T8338]  sctp_sendmsg+0x155c/0x2810
[  219.774651][ T8338]  ? __pfx_sctp_sendmsg+0x10/0x10
[  219.774686][ T8338]  ? aa_sk_perm+0x81e/0x950
[  219.774722][ T8338]  ? __pfx_aa_sk_perm+0x10/0x10
[  219.774756][ T8338]  ? sock_rps_record_flow+0x19/0x410
[  219.774785][ T8338]  ? inet_sendmsg+0x2f4/0x370
[  219.774814][ T8338]  __sock_sendmsg+0x19c/0x270
[  219.774844][ T8338]  ____sys_sendmsg+0x505/0x830
[  219.774871][ T8338]  ? __pfx_____sys_sendmsg+0x10/0x10
[  219.774908][ T8338]  ? import_iovec+0x74/0xa0
[  219.774936][ T8338]  ___sys_sendmsg+0x21f/0x2a0
[  219.774960][ T8338]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.775024][ T8338]  ? __fget_files+0x2a/0x420
[  219.775042][ T8338]  ? __fget_files+0x3a0/0x420
[  219.775073][ T8338]  __x64_sys_sendmsg+0x19b/0x260
[  219.775098][ T8338]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  219.775131][ T8338]  ? __pfx_ksys_write+0x10/0x10
[  219.775155][ T8338]  ? rcu_is_watching+0x15/0xb0
[  219.775183][ T8338]  ? do_syscall_64+0xbe/0x3b0
[  219.775216][ T8338]  do_syscall_64+0xfa/0x3b0
[  219.775249][ T8338]  ? lockdep_hardirqs_on+0x9c/0x150
[  219.775284][ T8338]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.775304][ T8338]  ? clear_bhb_loop+0x60/0xb0
[  219.775328][ T8338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.775347][ T8338] RIP: 0033:0x7f3654f8ebe9
[  219.775367][ T8338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.775383][ T8338] RSP: 002b:00007f3655dc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.775404][ T8338] RAX: ffffffffffffffda RBX: 00007f36551b5fa0 RCX: 00007f3654f8ebe9
[  219.775418][ T8338] RDX: 0000000000000041 RSI: 0000200000000600 RDI: 0000000000000003
[  219.775430][ T8338] RBP: 00007f3655dc3090 R08: 0000000000000000 R09: 0000000000000000
[  219.775442][ T8338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  219.775453][ T8338] R13: 00007f36551b6038 R14: 00007f36551b5fa0 R15: 00007ffebd90a778
[  219.775486][ T8338]  </TASK>
[  220.530779][ T8348] netlink: 'syz.2.803': attribute type 25 has an invalid length.
[  220.730703][ T8351] netlink: 'syz.4.805': attribute type 21 has an invalid length.
[  221.869535][ T8373] netlink: 56 bytes leftover after parsing attributes in process `syz.4.809'.
[  222.949770][ T8396] netlink: 'syz.1.819': attribute type 10 has an invalid length.
[  223.072781][ T8399] netlink: 76 bytes leftover after parsing attributes in process `syz.0.820'.
[  223.545019][ T8411] FAULT_INJECTION: forcing a failure.
[  223.545019][ T8411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.586149][ T8411] CPU: 1 UID: 0 PID: 8411 Comm: syz.0.822 Not tainted syzkaller #0 PREEMPT(full) 
[  223.586179][ T8411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  223.586193][ T8411] Call Trace:
[  223.586208][ T8411]  <TASK>
[  223.586219][ T8411]  dump_stack_lvl+0x189/0x250
[  223.586250][ T8411]  ? __pfx____ratelimit+0x10/0x10
[  223.586281][ T8411]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.586307][ T8411]  ? __pfx__printk+0x10/0x10
[  223.586338][ T8411]  ? __might_fault+0xb0/0x130
[  223.586371][ T8411]  ? __might_fault+0xb0/0x130
[  223.586409][ T8411]  should_fail_ex+0x414/0x560
[  223.586444][ T8411]  _copy_from_user+0x2d/0xb0
[  223.586470][ T8411]  kstrtouint_from_user+0xc4/0x170
[  223.586507][ T8411]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  223.586562][ T8411]  proc_fail_nth_write+0x88/0x200
[  223.586587][ T8411]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  223.586620][ T8411]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  223.586647][ T8411]  vfs_write+0x27b/0xb30
[  223.586689][ T8411]  ? __pfx_vfs_write+0x10/0x10
[  223.586719][ T8411]  ? __fget_files+0x2a/0x420
[  223.586744][ T8411]  ? __fget_files+0x3a0/0x420
[  223.586762][ T8411]  ? __fget_files+0x2a/0x420
[  223.586793][ T8411]  ksys_write+0x145/0x250
[  223.586825][ T8411]  ? __pfx_ksys_write+0x10/0x10
[  223.586849][ T8411]  ? rcu_is_watching+0x15/0xb0
[  223.586879][ T8411]  ? do_syscall_64+0xbe/0x3b0
[  223.586914][ T8411]  do_syscall_64+0xfa/0x3b0
[  223.586942][ T8411]  ? lockdep_hardirqs_on+0x9c/0x150
[  223.586971][ T8411]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.586992][ T8411]  ? clear_bhb_loop+0x60/0xb0
[  223.587019][ T8411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.587039][ T8411] RIP: 0033:0x7f3654f8d69f
[  223.587058][ T8411] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  223.587075][ T8411] RSP: 002b:00007f3655da2030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  223.587096][ T8411] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3654f8d69f
[  223.587111][ T8411] RDX: 0000000000000001 RSI: 00007f3655da20a0 RDI: 0000000000000010
[  223.587124][ T8411] RBP: 00007f3655da2090 R08: 0000000000000000 R09: 0000000000000000
[  223.587136][ T8411] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  223.587148][ T8411] R13: 00007f36551b6128 R14: 00007f36551b6090 R15: 00007ffebd90a778
[  223.587187][ T8411]  </TASK>
[  223.842565][ T8413] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.823'.
[  223.852511][ T8413] netlink: 132 bytes leftover after parsing attributes in process `syz.4.823'.
[  224.238310][ T8418] netlink: 'syz.0.826': attribute type 3 has an invalid length.
[  224.257083][ T8418] netlink: 132 bytes leftover after parsing attributes in process `syz.0.826'.
[  225.230646][ T8436] netlink: 76 bytes leftover after parsing attributes in process `syz.0.832'.
[  225.338276][ T8440] netlink: 4 bytes leftover after parsing attributes in process `syz.1.833'.
[  225.684052][ T8450] netlink: 'syz.3.835': attribute type 10 has an invalid length.
[  225.877253][ T8455] netlink: 'syz.1.839': attribute type 6 has an invalid length.
[  225.940452][ T8455] netlink: 168 bytes leftover after parsing attributes in process `syz.1.839'.
[  227.304722][ T8475] netlink: 76 bytes leftover after parsing attributes in process `syz.3.848'.
[  227.470390][ T8482] netlink: 8 bytes leftover after parsing attributes in process `syz.0.850'.
[  227.480507][ T8477] tap0: tun_chr_ioctl cmd 1074025677
[  227.486128][ T8477] tap0: linktype set to 776
[  227.510234][ T8482] FAULT_INJECTION: forcing a failure.
[  227.510234][ T8482] name failslab, interval 1, probability 0, space 0, times 0
[  227.529279][ T8482] CPU: 0 UID: 0 PID: 8482 Comm: syz.0.850 Not tainted syzkaller #0 PREEMPT(full) 
[  227.529307][ T8482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  227.529319][ T8482] Call Trace:
[  227.529327][ T8482]  <TASK>
[  227.529336][ T8482]  dump_stack_lvl+0x189/0x250
[  227.529366][ T8482]  ? __pfx____ratelimit+0x10/0x10
[  227.529395][ T8482]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.529427][ T8482]  ? __pfx__printk+0x10/0x10
[  227.529462][ T8482]  ? __pfx___might_resched+0x10/0x10
[  227.529482][ T8482]  ? fs_reclaim_acquire+0x7d/0x100
[  227.529520][ T8482]  should_fail_ex+0x414/0x560
[  227.529554][ T8482]  should_failslab+0xa8/0x100
[  227.529587][ T8482]  __kmalloc_cache_noprof+0x70/0x3d0
[  227.529614][ T8482]  ? nfnetlink_rcv+0xeff/0x2520
[  227.529645][ T8482]  nfnetlink_rcv+0xeff/0x2520
[  227.529707][ T8482]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  227.529750][ T8482]  ? ref_tracker_free+0x63a/0x7d0
[  227.529812][ T8482]  ? __netlink_deliver_tap+0x807/0x850
[  227.529843][ T8482]  ? netlink_deliver_tap+0x2e/0x1b0
[  227.529893][ T8482]  netlink_unicast+0x82c/0x9e0
[  227.529932][ T8482]  ? __pfx_netlink_unicast+0x10/0x10
[  227.529962][ T8482]  ? netlink_sendmsg+0x642/0xb30
[  227.529998][ T8482]  ? skb_put+0x11b/0x210
[  227.530035][ T8482]  netlink_sendmsg+0x805/0xb30
[  227.530076][ T8482]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.530111][ T8482]  ? aa_sock_msg_perm+0xf1/0x1d0
[  227.530145][ T8482]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  227.530168][ T8482]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.530200][ T8482]  __sock_sendmsg+0x21c/0x270
[  227.530232][ T8482]  ____sys_sendmsg+0x505/0x830
[  227.530260][ T8482]  ? __pfx_____sys_sendmsg+0x10/0x10
[  227.530294][ T8482]  ? import_iovec+0x74/0xa0
[  227.530321][ T8482]  ___sys_sendmsg+0x21f/0x2a0
[  227.530346][ T8482]  ? __pfx____sys_sendmsg+0x10/0x10
[  227.530410][ T8482]  ? __fget_files+0x2a/0x420
[  227.530427][ T8482]  ? __fget_files+0x3a0/0x420
[  227.530458][ T8482]  __x64_sys_sendmsg+0x19b/0x260
[  227.530477][ T8482]  ? perf_trace_run_bpf_submit+0x100/0x170
[  227.530502][ T8482]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  227.530536][ T8482]  ? __pfx_ksys_write+0x10/0x10
[  227.530562][ T8482]  ? rcu_is_watching+0x15/0xb0
[  227.530589][ T8482]  ? do_syscall_64+0xbe/0x3b0
[  227.530624][ T8482]  do_syscall_64+0xfa/0x3b0
[  227.530652][ T8482]  ? lockdep_hardirqs_on+0x9c/0x150
[  227.530679][ T8482]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.530699][ T8482]  ? clear_bhb_loop+0x60/0xb0
[  227.530724][ T8482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.530744][ T8482] RIP: 0033:0x7f3654f8ebe9
[  227.530763][ T8482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.530781][ T8482] RSP: 002b:00007f3655dc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  227.530802][ T8482] RAX: ffffffffffffffda RBX: 00007f36551b5fa0 RCX: 00007f3654f8ebe9
[  227.530817][ T8482] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  227.530830][ T8482] RBP: 00007f3655dc3090 R08: 0000000000000000 R09: 0000000000000000
[  227.530843][ T8482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.530854][ T8482] R13: 00007f36551b6038 R14: 00007f36551b5fa0 R15: 00007ffebd90a778
[  227.530889][ T8482]  </TASK>
[  228.115045][ T8493] netlink: 'syz.1.854': attribute type 10 has an invalid length.
[  228.350179][ T8499] netlink: 'syz.2.857': attribute type 1 has an invalid length.
[  228.378697][ T8499] netlink: 'syz.2.857': attribute type 1 has an invalid length.
[  228.606709][ T8514] netlink: 4 bytes leftover after parsing attributes in process `syz.0.863'.
[  228.685081][ T8514] netlink: 76 bytes leftover after parsing attributes in process `syz.0.863'.
[  228.736854][ T8516] netlink: 56 bytes leftover after parsing attributes in process `syz.3.864'.
[  228.752774][ T8519] netlink: 198328 bytes leftover after parsing attributes in process `syz.0.863'.
[  228.780638][ T8519] netlink: 'syz.0.863': attribute type 1 has an invalid length.
[  228.810906][ T8519] netlink: 'syz.0.863': attribute type 2 has an invalid length.
[  228.874049][ T8526] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.865'.
[  229.066785][ T8526] netlink: 2 bytes leftover after parsing attributes in process `syz.2.865'.
[  229.459570][ T8539] netlink: 'syz.3.871': attribute type 10 has an invalid length.
[  229.492306][ T8547] netlink: 16 bytes leftover after parsing attributes in process `syz.2.872'.
[  229.536682][ T8547] netlink: 16 bytes leftover after parsing attributes in process `syz.2.872'.
[  229.574309][ T8547] netlink: 16 bytes leftover after parsing attributes in process `syz.2.872'.
[  229.667669][ T8553] netlink: 16 bytes leftover after parsing attributes in process `syz.4.873'.
[  230.547630][ T8571] netlink: 'syz.3.881': attribute type 39 has an invalid length.
[  230.841196][ T8585] netlink: 'syz.0.885': attribute type 10 has an invalid length.
[  231.107646][ T8596] netlink: 'syz.2.891': attribute type 1 has an invalid length.
[  231.896769][ T8617] netlink: 'syz.2.899': attribute type 3 has an invalid length.
[  233.714982][ T8667] FAULT_INJECTION: forcing a failure.
[  233.714982][ T8667] name failslab, interval 1, probability 0, space 0, times 0
[  233.748535][ T8667] CPU: 1 UID: 0 PID: 8667 Comm: syz.4.922 Not tainted syzkaller #0 PREEMPT(full) 
[  233.748564][ T8667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  233.748587][ T8667] Call Trace:
[  233.748596][ T8667]  <TASK>
[  233.748605][ T8667]  dump_stack_lvl+0x189/0x250
[  233.748636][ T8667]  ? __pfx____ratelimit+0x10/0x10
[  233.748666][ T8667]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.748690][ T8667]  ? __pfx__printk+0x10/0x10
[  233.748720][ T8667]  ? __lock_acquire+0xab9/0xd20
[  233.748761][ T8667]  should_fail_ex+0x414/0x560
[  233.748794][ T8667]  should_failslab+0xa8/0x100
[  233.748827][ T8667]  kmem_cache_alloc_noprof+0x73/0x3c0
[  233.748853][ T8667]  ? skb_clone+0x212/0x3a0
[  233.748881][ T8667]  skb_clone+0x212/0x3a0
[  233.748908][ T8667]  __netlink_deliver_tap+0x404/0x850
[  233.748954][ T8667]  ? netlink_deliver_tap+0x2e/0x1b0
[  233.748985][ T8667]  netlink_deliver_tap+0x19c/0x1b0
[  233.749017][ T8667]  netlink_unicast+0x7fa/0x9e0
[  233.749054][ T8667]  ? __pfx_netlink_unicast+0x10/0x10
[  233.749083][ T8667]  ? netlink_sendmsg+0x642/0xb30
[  233.749110][ T8667]  ? skb_put+0x11b/0x210
[  233.749146][ T8667]  netlink_sendmsg+0x805/0xb30
[  233.749187][ T8667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.749226][ T8667]  ? aa_sock_msg_perm+0xf1/0x1d0
[  233.749260][ T8667]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  233.749283][ T8667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.749315][ T8667]  __sock_sendmsg+0x21c/0x270
[  233.749344][ T8667]  ____sys_sendmsg+0x505/0x830
[  233.749373][ T8667]  ? __pfx_____sys_sendmsg+0x10/0x10
[  233.749405][ T8667]  ? import_iovec+0x74/0xa0
[  233.749433][ T8667]  ___sys_sendmsg+0x21f/0x2a0
[  233.749457][ T8667]  ? __pfx____sys_sendmsg+0x10/0x10
[  233.749520][ T8667]  ? __fget_files+0x2a/0x420
[  233.749537][ T8667]  ? __fget_files+0x3a0/0x420
[  233.749567][ T8667]  __x64_sys_sendmsg+0x19b/0x260
[  233.749600][ T8667]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  233.749634][ T8667]  ? __pfx_ksys_write+0x10/0x10
[  233.749661][ T8667]  ? rcu_is_watching+0x15/0xb0
[  233.749688][ T8667]  ? do_syscall_64+0xbe/0x3b0
[  233.749724][ T8667]  do_syscall_64+0xfa/0x3b0
[  233.749753][ T8667]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.749780][ T8667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.749802][ T8667]  ? clear_bhb_loop+0x60/0xb0
[  233.749828][ T8667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.749848][ T8667] RIP: 0033:0x7f104798ebe9
[  233.749868][ T8667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.749887][ T8667] RSP: 002b:00007f1048756038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  233.749910][ T8667] RAX: ffffffffffffffda RBX: 00007f1047bb5fa0 RCX: 00007f104798ebe9
[  233.749926][ T8667] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  233.749939][ T8667] RBP: 00007f1048756090 R08: 0000000000000000 R09: 0000000000000000
[  233.749952][ T8667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.749964][ T8667] R13: 00007f1047bb6038 R14: 00007f1047bb5fa0 R15: 00007fff92a33c38
[  233.749999][ T8667]  </TASK>
[  234.076702][ T8675] __nla_validate_parse: 18 callbacks suppressed
[  234.076753][ T8675] netlink: 196 bytes leftover after parsing attributes in process `syz.3.923'.
[  234.891588][ T8699] netlink: 8 bytes leftover after parsing attributes in process `syz.3.932'.
[  234.933555][ T8699] validate_nla: 2 callbacks suppressed
[  234.955727][ T8704] netlink: 16 bytes leftover after parsing attributes in process `syz.4.933'.
[  234.962759][ T8699] netlink: 'syz.3.932': attribute type 21 has an invalid length.
[  234.965002][ T8704] netlink: 16 bytes leftover after parsing attributes in process `syz.4.933'.
[  235.017020][ T8704] netlink: 16 bytes leftover after parsing attributes in process `syz.4.933'.
[  235.252818][ T8709] lo: left promiscuous mode
[  235.290253][ T8709] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  235.303745][ T8715] netlink: 4 bytes leftover after parsing attributes in process `syz.3.935'.
[  235.668325][ T8712] siw: device registration error -23
[  236.084616][ T8735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.945'.
[  236.121217][ T8735] netlink: 'syz.0.945': attribute type 21 has an invalid length.
[  236.130849][ T8733] netlink: 48 bytes leftover after parsing attributes in process `syz.3.943'.
[  236.210953][ T8747] netlink: 16 bytes leftover after parsing attributes in process `syz.4.947'.
[  236.232091][ T8747] netlink: 16 bytes leftover after parsing attributes in process `syz.4.947'.
[  237.264624][ T8761] netlink: 'syz.0.953': attribute type 25 has an invalid length.
[  237.869699][ T8776] netlink: 'syz.1.957': attribute type 16 has an invalid length.
[  237.895677][ T8776] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.981840][ T8779] netlink: 'syz.2.960': attribute type 21 has an invalid length.
[  239.067064][ T8797] siw: device registration error -23
[  239.357020][ T8815] __nla_validate_parse: 6 callbacks suppressed
[  239.357041][ T8815] netlink: 16 bytes leftover after parsing attributes in process `syz.4.975'.
[  239.373017][ T8815] netlink: 16 bytes leftover after parsing attributes in process `syz.4.975'.
[  239.388893][ T8811] netlink: 8 bytes leftover after parsing attributes in process `syz.0.974'.
[  239.404083][ T8815] netlink: 16 bytes leftover after parsing attributes in process `syz.4.975'.
[  239.442717][ T8811] netlink: 'syz.0.974': attribute type 21 has an invalid length.
[  239.692012][ T8827] netlink: 'syz.4.980': attribute type 21 has an invalid length.
[  240.031395][ T8847] FAULT_INJECTION: forcing a failure.
[  240.031395][ T8847] name failslab, interval 1, probability 0, space 0, times 0
[  240.045326][ T8847] CPU: 0 UID: 0 PID: 8847 Comm: syz.1.988 Not tainted syzkaller #0 PREEMPT(full) 
[  240.045355][ T8847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  240.045368][ T8847] Call Trace:
[  240.045377][ T8847]  <TASK>
[  240.045386][ T8847]  dump_stack_lvl+0x189/0x250
[  240.045417][ T8847]  ? __pfx____ratelimit+0x10/0x10
[  240.045445][ T8847]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.045470][ T8847]  ? __pfx__printk+0x10/0x10
[  240.045488][ T8845] netlink: 4 bytes leftover after parsing attributes in process `syz.3.987'.
[  240.045505][ T8847]  ? __pfx___might_resched+0x10/0x10
[  240.045531][ T8847]  should_fail_ex+0x414/0x560
[  240.045562][ T8847]  should_failslab+0xa8/0x100
[  240.045599][ T8847]  __kmalloc_cache_noprof+0x70/0x3d0
[  240.045634][ T8847]  ? nft_netdev_hook_alloc+0x1f0/0x530
[  240.045671][ T8847]  nft_netdev_hook_alloc+0x1f0/0x530
[  240.045715][ T8847]  nf_tables_parse_netdev_hooks+0x10b/0x8e0
[  240.045744][ T8847]  ? nf_flow_table_init+0x280/0x2a0
[  240.045789][ T8847]  nft_flowtable_parse_hook+0x465/0x910
[  240.045838][ T8847]  ? __pfx_nft_flowtable_parse_hook+0x10/0x10
[  240.045884][ T8847]  ? nf_flow_table_init+0x280/0x2a0
[  240.045917][ T8847]  nf_tables_newflowtable+0x1220/0x20d0
[  240.045965][ T8847]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  240.046014][ T8847]  ? __nla_parse+0x40/0x60
[  240.046056][ T8847]  nfnetlink_rcv+0x1132/0x2520
[  240.046125][ T8847]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  240.046184][ T8847]  ? ref_tracker_free+0x63a/0x7d0
[  240.046252][ T8847]  ? __netlink_deliver_tap+0x807/0x850
[  240.046287][ T8847]  ? netlink_deliver_tap+0x2e/0x1b0
[  240.046342][ T8847]  netlink_unicast+0x82c/0x9e0
[  240.046383][ T8847]  ? __pfx_netlink_unicast+0x10/0x10
[  240.046417][ T8847]  ? netlink_sendmsg+0x642/0xb30
[  240.046447][ T8847]  ? skb_put+0x11b/0x210
[  240.046494][ T8847]  netlink_sendmsg+0x805/0xb30
[  240.046541][ T8847]  ? __pfx_netlink_sendmsg+0x10/0x10
[  240.046579][ T8847]  ? aa_sock_msg_perm+0xf1/0x1d0
[  240.046622][ T8847]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  240.046648][ T8847]  ? __pfx_netlink_sendmsg+0x10/0x10
[  240.046683][ T8847]  __sock_sendmsg+0x21c/0x270
[  240.046736][ T8847]  ____sys_sendmsg+0x505/0x830
[  240.046767][ T8847]  ? __pfx_____sys_sendmsg+0x10/0x10
[  240.046803][ T8847]  ? import_iovec+0x74/0xa0
[  240.046833][ T8847]  ___sys_sendmsg+0x21f/0x2a0
[  240.046861][ T8847]  ? __pfx____sys_sendmsg+0x10/0x10
[  240.046929][ T8847]  ? __fget_files+0x2a/0x420
[  240.046949][ T8847]  ? __fget_files+0x3a0/0x420
[  240.046985][ T8847]  __x64_sys_sendmsg+0x19b/0x260
[  240.047007][ T8847]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  240.047035][ T8847]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  240.047073][ T8847]  ? __pfx_ksys_write+0x10/0x10
[  240.047102][ T8847]  ? rcu_is_watching+0x15/0xb0
[  240.047133][ T8847]  ? do_syscall_64+0xbe/0x3b0
[  240.047179][ T8847]  do_syscall_64+0xfa/0x3b0
[  240.047210][ T8847]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.047241][ T8847]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.047265][ T8847]  ? clear_bhb_loop+0x60/0xb0
[  240.047293][ T8847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.047315][ T8847] RIP: 0033:0x7fd566d8ebe9
[  240.047336][ T8847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.047358][ T8847] RSP: 002b:00007fd567c7d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  240.047381][ T8847] RAX: ffffffffffffffda RBX: 00007fd566fb5fa0 RCX: 00007fd566d8ebe9
[  240.047399][ T8847] RDX: 0000000000000080 RSI: 0000200000000c40 RDI: 0000000000000003
[  240.047414][ T8847] RBP: 00007fd567c7d090 R08: 0000000000000000 R09: 0000000000000000
[  240.047427][ T8847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  240.047441][ T8847] R13: 00007fd566fb6038 R14: 00007fd566fb5fa0 R15: 00007ffd26733b98
[  240.047479][ T8847]  </TASK>
[  240.237118][ T8852] netlink: 76 bytes leftover after parsing attributes in process `syz.3.987'.
[  240.353094][ T8856] netlink: 198328 bytes leftover after parsing attributes in process `syz.3.987'.
[  240.464271][ T8856] netlink: 'syz.3.987': attribute type 1 has an invalid length.
[  240.474560][ T8856] netlink: 'syz.3.987': attribute type 2 has an invalid length.
[  240.540296][ T8861] netlink: 16 bytes leftover after parsing attributes in process `syz.1.990'.
[  240.571507][ T8861] netlink: 16 bytes leftover after parsing attributes in process `syz.1.990'.
[  240.622677][ T8861] netlink: 16 bytes leftover after parsing attributes in process `syz.1.990'.
[  240.681678][ T8840] siw: device registration error -23
[  240.868311][ T8870] netlink: 'syz.1.993': attribute type 21 has an invalid length.
[  241.062849][ T8872] lo speed is unknown, defaulting to 1000
[  241.079303][ T8872] vcan0 speed is unknown, defaulting to 1000
[  241.814590][ T8908] netlink: 'syz.3.1007': attribute type 21 has an invalid length.
[  242.045410][   T30] audit: type=1107 audit(1755621910.065:3): pid=8919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  242.402617][ T8930] FAULT_INJECTION: forcing a failure.
[  242.402617][ T8930] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  242.472433][ T8930] CPU: 1 UID: 0 PID: 8930 Comm: syz.3.1013 Not tainted syzkaller #0 PREEMPT(full) 
[  242.472462][ T8930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  242.472474][ T8930] Call Trace:
[  242.472482][ T8930]  <TASK>
[  242.472490][ T8930]  dump_stack_lvl+0x189/0x250
[  242.472519][ T8930]  ? __pfx____ratelimit+0x10/0x10
[  242.472548][ T8930]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.472572][ T8930]  ? __pfx__printk+0x10/0x10
[  242.472601][ T8930]  ? __might_fault+0xb0/0x130
[  242.472642][ T8930]  should_fail_ex+0x414/0x560
[  242.472675][ T8930]  _copy_from_iter+0x1db/0x16f0
[  242.472708][ T8930]  ? rcu_is_watching+0x15/0xb0
[  242.472731][ T8930]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  242.472761][ T8930]  ? __pfx__copy_from_iter+0x10/0x10
[  242.472783][ T8930]  ? __build_skb_around+0x257/0x3e0
[  242.472818][ T8930]  ? netlink_sendmsg+0x642/0xb30
[  242.472846][ T8930]  ? skb_put+0x11b/0x210
[  242.472879][ T8930]  netlink_sendmsg+0x6b2/0xb30
[  242.472920][ T8930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  242.472954][ T8930]  ? aa_sock_msg_perm+0xf1/0x1d0
[  242.472988][ T8930]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  242.473010][ T8930]  ? __pfx_netlink_sendmsg+0x10/0x10
[  242.473041][ T8930]  __sock_sendmsg+0x21c/0x270
[  242.473071][ T8930]  ____sys_sendmsg+0x505/0x830
[  242.473099][ T8930]  ? __pfx_____sys_sendmsg+0x10/0x10
[  242.473130][ T8930]  ? import_iovec+0x74/0xa0
[  242.473157][ T8930]  ___sys_sendmsg+0x21f/0x2a0
[  242.473186][ T8930]  ? __pfx____sys_sendmsg+0x10/0x10
[  242.473248][ T8930]  ? __fget_files+0x2a/0x420
[  242.473265][ T8930]  ? __fget_files+0x3a0/0x420
[  242.473295][ T8930]  __x64_sys_sendmsg+0x19b/0x260
[  242.473320][ T8930]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  242.473353][ T8930]  ? __pfx_ksys_write+0x10/0x10
[  242.473378][ T8930]  ? rcu_is_watching+0x15/0xb0
[  242.473403][ T8930]  ? do_syscall_64+0xbe/0x3b0
[  242.473437][ T8930]  do_syscall_64+0xfa/0x3b0
[  242.473469][ T8930]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.473496][ T8930]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.473516][ T8930]  ? clear_bhb_loop+0x60/0xb0
[  242.473541][ T8930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.473561][ T8930] RIP: 0033:0x7f010db8ebe9
[  242.473579][ T8930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.473597][ T8930] RSP: 002b:00007f010ea67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  242.473618][ T8930] RAX: ffffffffffffffda RBX: 00007f010ddb5fa0 RCX: 00007f010db8ebe9
[  242.473632][ T8930] RDX: 0000000000000800 RSI: 0000200000000200 RDI: 0000000000000003
[  242.473645][ T8930] RBP: 00007f010ea67090 R08: 0000000000000000 R09: 0000000000000000
[  242.473657][ T8930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.473669][ T8930] R13: 00007f010ddb6038 R14: 00007f010ddb5fa0 R15: 00007ffd1b153b28
[  242.473711][ T8930]  </TASK>
[  243.081147][ T8939] FAULT_INJECTION: forcing a failure.
[  243.081147][ T8939] name failslab, interval 1, probability 0, space 0, times 0
[  243.105816][ T8939] CPU: 1 UID: 0 PID: 8939 Comm: syz.1.1017 Not tainted syzkaller #0 PREEMPT(full) 
[  243.105849][ T8939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  243.105874][ T8939] Call Trace:
[  243.105882][ T8939]  <TASK>
[  243.105892][ T8939]  dump_stack_lvl+0x189/0x250
[  243.105929][ T8939]  ? __pfx____ratelimit+0x10/0x10
[  243.105959][ T8939]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.105983][ T8939]  ? __pfx__printk+0x10/0x10
[  243.106018][ T8939]  ? __pfx___might_resched+0x10/0x10
[  243.106037][ T8939]  ? fs_reclaim_acquire+0x7d/0x100
[  243.106074][ T8939]  should_fail_ex+0x414/0x560
[  243.106105][ T8939]  should_failslab+0xa8/0x100
[  243.106134][ T8939]  __kmalloc_noprof+0xcb/0x4f0
[  243.106158][ T8939]  ? kfree+0x4d/0x440
[  243.106180][ T8939]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  243.106208][ T8939]  tomoyo_realpath_from_path+0xe3/0x5d0
[  243.106231][ T8939]  ? tomoyo_domain+0xd9/0x130
[  243.106258][ T8939]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  243.106286][ T8939]  tomoyo_path_number_perm+0x1e8/0x5a0
[  243.106317][ T8939]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  243.106366][ T8939]  ? __lock_acquire+0xab9/0xd20
[  243.106421][ T8939]  ? __fget_files+0x2a/0x420
[  243.106445][ T8939]  ? __fget_files+0x2a/0x420
[  243.106462][ T8939]  ? __fget_files+0x3a0/0x420
[  243.106478][ T8939]  ? __fget_files+0x2a/0x420
[  243.106501][ T8939]  security_file_ioctl+0xcb/0x2d0
[  243.106551][ T8939]  __se_sys_ioctl+0x47/0x170
[  243.106582][ T8939]  do_syscall_64+0xfa/0x3b0
[  243.106614][ T8939]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.106634][ T8939]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  243.106655][ T8939]  ? clear_bhb_loop+0x60/0xb0
[  243.106681][ T8939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.106701][ T8939] RIP: 0033:0x7fd566d8ebe9
[  243.106721][ T8939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.106738][ T8939] RSP: 002b:00007fd567c7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  243.106761][ T8939] RAX: ffffffffffffffda RBX: 00007fd566fb5fa0 RCX: 00007fd566d8ebe9
[  243.106776][ T8939] RDX: 0000200000000080 RSI: 0000000000008946 RDI: 0000000000000018
[  243.106790][ T8939] RBP: 00007fd567c7d090 R08: 0000000000000000 R09: 0000000000000000
[  243.106803][ T8939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.106815][ T8939] R13: 00007fd566fb6038 R14: 00007fd566fb5fa0 R15: 00007ffd26733b98
[  243.106849][ T8939]  </TASK>
[  243.107817][ T8939] ERROR: Out of memory at tomoyo_realpath_from_path.
[  243.581204][ T8947] netlink: 'syz.0.1021': attribute type 10 has an invalid length.
[  243.628352][ T8951] netlink: 'syz.3.1022': attribute type 10 has an invalid length.
[  244.192633][ T8962] netlink: 'syz.1.1027': attribute type 2 has an invalid length.
[  244.207048][ T8962] netlink: 'syz.1.1027': attribute type 8 has an invalid length.
[  245.323005][ T8987] __nla_validate_parse: 3 callbacks suppressed
[  245.325951][ T8987] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1034'.
[  245.383000][ T8982] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1034'.
[  245.526927][ T8982] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1034'.
[  245.619420][ T8987] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1034'.
[  246.583986][ T9016] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1045'.
[  246.774783][ T9022] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1047'.
[  246.962533][ T9026] netlink: 3815 bytes leftover after parsing attributes in process `syz.2.1049'.
[  247.048782][ T9035] netlink: 'syz.0.1051': attribute type 10 has an invalid length.
[  248.522622][ T9067] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1062'.
[  248.549601][ T9073] netlink: 3815 bytes leftover after parsing attributes in process `syz.3.1064'.
[  248.585848][ T5877] Bluetooth: hci1: unexpected cc 0x1004 length: 12 > 11
[  248.593661][ T5877] Bluetooth: hci1: unexpected event for opcode 0x1004
[  248.608243][ T9069] netlink: 'syz.0.1063': attribute type 4 has an invalid length.
[  248.634928][ T9069] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1063'.
[  249.131840][ T9085] syz.2.1071 uses obsolete (PF_INET,SOCK_PACKET)
[  250.111110][ T9111] FAULT_INJECTION: forcing a failure.
[  250.111110][ T9111] name failslab, interval 1, probability 0, space 0, times 0
[  250.188641][ T9111] CPU: 0 UID: 0 PID: 9111 Comm: syz.4.1081 Not tainted syzkaller #0 PREEMPT(full) 
[  250.188670][ T9111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  250.188683][ T9111] Call Trace:
[  250.188692][ T9111]  <TASK>
[  250.188701][ T9111]  dump_stack_lvl+0x189/0x250
[  250.188731][ T9111]  ? __pfx____ratelimit+0x10/0x10
[  250.188760][ T9111]  ? __pfx_dump_stack_lvl+0x10/0x10
[  250.188785][ T9111]  ? __pfx__printk+0x10/0x10
[  250.188820][ T9111]  ? __pfx___might_resched+0x10/0x10
[  250.188838][ T9111]  ? fs_reclaim_acquire+0x7d/0x100
[  250.188876][ T9111]  should_fail_ex+0x414/0x560
[  250.188907][ T9111]  ? nf_hook_entries_grow+0x27c/0x710
[  250.188936][ T9111]  should_failslab+0xa8/0x100
[  250.188969][ T9111]  __kvmalloc_node_noprof+0x161/0x5f0
[  250.188998][ T9111]  ? nf_hook_entries_grow+0x27c/0x710
[  250.189034][ T9111]  nf_hook_entries_grow+0x27c/0x710
[  250.189081][ T9111]  __nf_register_net_hook+0x2c9/0x930
[  250.189124][ T9111]  nf_register_net_hook+0xf9/0x190
[  250.189157][ T9111]  nf_tables_newchain+0x2469/0x2900
[  250.189197][ T9111]  ? __pfx_nf_tables_newchain+0x10/0x10
[  250.189257][ T9111]  ? nfnl_pernet+0x23/0x240
[  250.189294][ T9111]  ? __nla_parse+0x40/0x60
[  250.189329][ T9111]  nfnetlink_rcv+0x1132/0x2520
[  250.189391][ T9111]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  250.189436][ T9111]  ? ref_tracker_free+0x63a/0x7d0
[  250.189536][ T9111]  ? __netlink_deliver_tap+0x807/0x850
[  250.189566][ T9111]  ? netlink_deliver_tap+0x2e/0x1b0
[  250.189615][ T9111]  netlink_unicast+0x82c/0x9e0
[  250.189652][ T9111]  ? __pfx_netlink_unicast+0x10/0x10
[  250.189681][ T9111]  ? netlink_sendmsg+0x642/0xb30
[  250.189709][ T9111]  ? skb_put+0x11b/0x210
[  250.189744][ T9111]  netlink_sendmsg+0x805/0xb30
[  250.189785][ T9111]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.189819][ T9111]  ? aa_sock_msg_perm+0xf1/0x1d0
[  250.189853][ T9111]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  250.189875][ T9111]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.189906][ T9111]  __sock_sendmsg+0x21c/0x270
[  250.189935][ T9111]  ____sys_sendmsg+0x505/0x830
[  250.189963][ T9111]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.189994][ T9111]  ? import_iovec+0x74/0xa0
[  250.190021][ T9111]  ___sys_sendmsg+0x21f/0x2a0
[  250.190045][ T9111]  ? __pfx____sys_sendmsg+0x10/0x10
[  250.190108][ T9111]  ? __fget_files+0x2a/0x420
[  250.190125][ T9111]  ? __fget_files+0x3a0/0x420
[  250.190155][ T9111]  __x64_sys_sendmsg+0x19b/0x260
[  250.190179][ T9111]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  250.190212][ T9111]  ? __pfx_ksys_write+0x10/0x10
[  250.190237][ T9111]  ? rcu_is_watching+0x15/0xb0
[  250.190263][ T9111]  ? do_syscall_64+0xbe/0x3b0
[  250.190297][ T9111]  do_syscall_64+0xfa/0x3b0
[  250.190324][ T9111]  ? lockdep_hardirqs_on+0x9c/0x150
[  250.190351][ T9111]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.190371][ T9111]  ? clear_bhb_loop+0x60/0xb0
[  250.190397][ T9111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.190416][ T9111] RIP: 0033:0x7f104798ebe9
[  250.190434][ T9111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.190452][ T9111] RSP: 002b:00007f1048756038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.190474][ T9111] RAX: ffffffffffffffda RBX: 00007f1047bb5fa0 RCX: 00007f104798ebe9
[  250.190495][ T9111] RDX: 0000000000000800 RSI: 00002000000000c0 RDI: 0000000000000003
[  250.190508][ T9111] RBP: 00007f1048756090 R08: 0000000000000000 R09: 0000000000000000
[  250.190521][ T9111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  250.190532][ T9111] R13: 00007f1047bb6038 R14: 00007f1047bb5fa0 R15: 00007fff92a33c38
[  250.190566][ T9111]  </TASK>
[  250.637200][ T9122] FAULT_INJECTION: forcing a failure.
[  250.637200][ T9122] name failslab, interval 1, probability 0, space 0, times 0
[  250.650862][ T9122] CPU: 0 UID: 0 PID: 9122 Comm: syz.1.1085 Not tainted syzkaller #0 PREEMPT(full) 
[  250.650890][ T9122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  250.650905][ T9122] Call Trace:
[  250.650913][ T9122]  <TASK>
[  250.650922][ T9122]  dump_stack_lvl+0x189/0x250
[  250.650953][ T9122]  ? __pfx____ratelimit+0x10/0x10
[  250.650982][ T9122]  ? __pfx_dump_stack_lvl+0x10/0x10
[  250.651007][ T9122]  ? __pfx__printk+0x10/0x10
[  250.651033][ T9122]  ? netlink_unicast+0x82c/0x9e0
[  250.651060][ T9122]  ? ___sys_sendmsg+0x21f/0x2a0
[  250.651080][ T9122]  ? do_syscall_64+0xfa/0x3b0
[  250.651121][ T9122]  should_fail_ex+0x414/0x560
[  250.651154][ T9122]  should_failslab+0xa8/0x100
[  250.651188][ T9122]  kmem_cache_alloc_noprof+0x73/0x3c0
[  250.651215][ T9122]  ? skb_clone+0x212/0x3a0
[  250.651242][ T9122]  skb_clone+0x212/0x3a0
[  250.651268][ T9122]  __netlink_deliver_tap+0x404/0x850
[  250.651312][ T9122]  ? netlink_deliver_tap+0x2e/0x1b0
[  250.651344][ T9122]  netlink_deliver_tap+0x19c/0x1b0
[  250.651376][ T9122]  netlink_sendskb+0x68/0x140
[  250.651404][ T9122]  netlink_unicast+0x397/0x9e0
[  250.651428][ T9122]  ? __asan_memcpy+0x40/0x70
[  250.651462][ T9122]  ? __pfx_netlink_unicast+0x10/0x10
[  250.651509][ T9122]  netlink_rcv_skb+0x28c/0x470
[  250.651539][ T9122]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  250.651572][ T9122]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  250.651615][ T9122]  ? netlink_deliver_tap+0x2e/0x1b0
[  250.651655][ T9122]  netlink_unicast+0x82c/0x9e0
[  250.651692][ T9122]  ? __pfx_netlink_unicast+0x10/0x10
[  250.651721][ T9122]  ? netlink_sendmsg+0x642/0xb30
[  250.651749][ T9122]  ? skb_put+0x11b/0x210
[  250.651785][ T9122]  netlink_sendmsg+0x805/0xb30
[  250.651826][ T9122]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.651861][ T9122]  ? aa_sock_msg_perm+0xf1/0x1d0
[  250.651895][ T9122]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  250.651917][ T9122]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.651948][ T9122]  __sock_sendmsg+0x21c/0x270
[  250.651977][ T9122]  ____sys_sendmsg+0x505/0x830
[  250.652005][ T9122]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.652037][ T9122]  ? import_iovec+0x74/0xa0
[  250.652065][ T9122]  ___sys_sendmsg+0x21f/0x2a0
[  250.652089][ T9122]  ? __pfx____sys_sendmsg+0x10/0x10
[  250.652152][ T9122]  ? __fget_files+0x2a/0x420
[  250.652169][ T9122]  ? __fget_files+0x3a0/0x420
[  250.652200][ T9122]  __x64_sys_sendmsg+0x19b/0x260
[  250.652225][ T9122]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  250.652257][ T9122]  ? __pfx_ksys_write+0x10/0x10
[  250.652283][ T9122]  ? rcu_is_watching+0x15/0xb0
[  250.652310][ T9122]  ? do_syscall_64+0xbe/0x3b0
[  250.652344][ T9122]  do_syscall_64+0xfa/0x3b0
[  250.652372][ T9122]  ? lockdep_hardirqs_on+0x9c/0x150
[  250.652399][ T9122]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.652420][ T9122]  ? clear_bhb_loop+0x60/0xb0
[  250.652445][ T9122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.652464][ T9122] RIP: 0033:0x7fd566d8ebe9
[  250.652484][ T9122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.652508][ T9122] RSP: 002b:00007fd567c7d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.652530][ T9122] RAX: ffffffffffffffda RBX: 00007fd566fb5fa0 RCX: 00007fd566d8ebe9
[  250.652545][ T9122] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[  250.652557][ T9122] RBP: 00007fd567c7d090 R08: 0000000000000000 R09: 0000000000000000
[  250.652569][ T9122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  250.652581][ T9122] R13: 00007fd566fb6038 R14: 00007fd566fb5fa0 R15: 00007ffd26733b98
[  250.652615][ T9122]  </TASK>
[  251.333721][ T9134] __nla_validate_parse: 4 callbacks suppressed
[  251.333744][ T9134] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1089'.
[  251.524460][ T9145] netlink: 3963 bytes leftover after parsing attributes in process `syz.0.1092'.
[  252.140094][ T9163] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1099'.
[  252.641104][ T5877] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  252.656880][ T5877] Bluetooth: hci1: Injecting HCI hardware error event
[  252.666628][ T5878] Bluetooth: hci1: hardware error 0x00
[  252.904307][ T9174] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1102'.
[  253.639597][ T9170] netlink: 'syz.3.1101': attribute type 6 has an invalid length.
[  253.647755][ T9170] netlink: 164 bytes leftover after parsing attributes in process `syz.3.1101'.
[  254.725418][ T5878] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  258.297545][ T9203] FAULT_INJECTION: forcing a failure.
[  258.297545][ T9203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.311063][ T9203] CPU: 1 UID: 0 PID: 9203 Comm: syz.2.1112 Not tainted syzkaller #0 PREEMPT(full) 
[  258.311091][ T9203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  258.311104][ T9203] Call Trace:
[  258.311113][ T9203]  <TASK>
[  258.311122][ T9203]  dump_stack_lvl+0x189/0x250
[  258.311154][ T9203]  ? __pfx____ratelimit+0x10/0x10
[  258.311184][ T9203]  ? __pfx_dump_stack_lvl+0x10/0x10
[  258.311210][ T9203]  ? __pfx__printk+0x10/0x10
[  258.311240][ T9203]  ? __might_fault+0xb0/0x130
[  258.311284][ T9203]  should_fail_ex+0x414/0x560
[  258.311320][ T9203]  _copy_from_user+0x2d/0xb0
[  258.311345][ T9203]  ___sys_sendmsg+0x158/0x2a0
[  258.311372][ T9203]  ? __pfx____sys_sendmsg+0x10/0x10
[  258.311447][ T9203]  ? __fget_files+0x2a/0x420
[  258.311463][ T9203]  ? __fget_files+0x3a0/0x420
[  258.311498][ T9203]  __x64_sys_sendmsg+0x19b/0x260
[  258.311516][ T9203]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  258.311542][ T9203]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  258.311561][ T9203]  ? perf_trace_preemptirq_template+0xa3/0x340
[  258.311604][ T9203]  ? __pfx_ksys_write+0x10/0x10
[  258.311629][ T9203]  ? rcu_is_watching+0x15/0xb0
[  258.311658][ T9203]  ? do_syscall_64+0xbe/0x3b0
[  258.311692][ T9203]  do_syscall_64+0xfa/0x3b0
[  258.311720][ T9203]  ? lockdep_hardirqs_on+0x9c/0x150
[  258.311748][ T9203]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.311768][ T9203]  ? clear_bhb_loop+0x60/0xb0
[  258.311795][ T9203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.311815][ T9203] RIP: 0033:0x7fd014d8ebe9
[  258.311833][ T9203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.311851][ T9203] RSP: 002b:00007fd015b9c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  258.311873][ T9203] RAX: ffffffffffffffda RBX: 00007fd014fb5fa0 RCX: 00007fd014d8ebe9
[  258.311888][ T9203] RDX: 00000000000400d0 RSI: 00002000000001c0 RDI: 0000000000000003
[  258.311901][ T9203] RBP: 00007fd015b9c090 R08: 0000000000000000 R09: 0000000000000000
[  258.311913][ T9203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.311924][ T9203] R13: 00007fd014fb6038 R14: 00007fd014fb5fa0 R15: 00007ffe93eaa468
[  258.311969][ T9203]  </TASK>
[  258.656114][ T9207] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1113'.
[  259.234243][ T5878] Bluetooth: hci3: unexpected event 0x23 length: 15 > 13
[  259.237816][ T9218] tun0: tun_chr_ioctl cmd 1074025675
[  259.300720][ T9218] tun0: persist enabled
[  259.597886][ T9234] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1124'.
[  259.709968][ T9238] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1124'.
[  259.807982][ T9234] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1124'.
[  260.304622][ T9253] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1127'.
[  261.044960][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  261.051688][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  261.219652][ T9270] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1135'.
[  261.256378][ T9270] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1135'.
[  261.721090][ T9285] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1139'.
[  261.982420][ T9298] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1143'.
[  262.049459][ T9301] netlink: 'syz.2.1144': attribute type 21 has an invalid length.
[  262.394071][ T9306] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.567005][ T9312] bridge_slave_0: left allmulticast mode
[  262.582674][ T9312] bridge_slave_0: left promiscuous mode
[  262.610070][ T9312] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.705736][ T9328] FAULT_INJECTION: forcing a failure.
[  262.705736][ T9328] name failslab, interval 1, probability 0, space 0, times 0
[  262.738559][ T9328] CPU: 1 UID: 0 PID: 9328 Comm: syz.0.1152 Not tainted syzkaller #0 PREEMPT(full) 
[  262.738590][ T9328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  262.738603][ T9328] Call Trace:
[  262.738612][ T9328]  <TASK>
[  262.738621][ T9328]  dump_stack_lvl+0x189/0x250
[  262.738651][ T9328]  ? __pfx____ratelimit+0x10/0x10
[  262.738681][ T9328]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.738701][ T9328]  ? __pfx__printk+0x10/0x10
[  262.738725][ T9328]  ? nfnetlink_rcv+0x26a/0x2520
[  262.738771][ T9328]  should_fail_ex+0x414/0x560
[  262.738806][ T9328]  should_failslab+0xa8/0x100
[  262.738841][ T9328]  kmem_cache_alloc_noprof+0x73/0x3c0
[  262.738868][ T9328]  ? skb_clone+0x212/0x3a0
[  262.738897][ T9328]  skb_clone+0x212/0x3a0
[  262.738923][ T9328]  __netlink_deliver_tap+0x404/0x850
[  262.738971][ T9328]  ? netlink_deliver_tap+0x2e/0x1b0
[  262.739004][ T9328]  netlink_deliver_tap+0x19c/0x1b0
[  262.739036][ T9328]  netlink_sendskb+0x68/0x140
[  262.739066][ T9328]  netlink_unicast+0x397/0x9e0
[  262.739090][ T9328]  ? __asan_memcpy+0x40/0x70
[  262.739126][ T9328]  ? __pfx_netlink_unicast+0x10/0x10
[  262.739168][ T9328]  netlink_rcv_skb+0x28c/0x470
[  262.739199][ T9328]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  262.739228][ T9328]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  262.739274][ T9328]  ? bpf_lsm_capable+0x9/0x20
[  262.739301][ T9328]  ? security_capable+0x7e/0x2e0
[  262.739349][ T9328]  nfnetlink_rcv+0x26a/0x2520
[  262.739381][ T9328]  ? __dev_queue_xmit+0x1d79/0x3b50
[  262.739419][ T9328]  ? __dev_queue_xmit+0x27b/0x3b50
[  262.739459][ T9328]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  262.739485][ T9328]  ? __pfx___dev_queue_xmit+0x10/0x10
[  262.739528][ T9328]  ? ref_tracker_free+0x63a/0x7d0
[  262.739557][ T9328]  ? __asan_memcpy+0x40/0x70
[  262.739580][ T9328]  ? __pfx_ref_tracker_free+0x10/0x10
[  262.739606][ T9328]  ? __skb_clone+0x63/0x7a0
[  262.739636][ T9328]  ? perf_trace_lock+0xec/0x3b0
[  262.739655][ T9328]  ? __skb_clone+0x483/0x7a0
[  262.739682][ T9328]  ? __pfx_perf_trace_lock+0x10/0x10
[  262.739703][ T9328]  ? skb_clone+0x246/0x3a0
[  262.739730][ T9328]  ? __netlink_deliver_tap+0x807/0x850
[  262.739760][ T9328]  ? netlink_deliver_tap+0x2e/0x1b0
[  262.739798][ T9328]  ? netlink_deliver_tap+0x2e/0x1b0
[  262.739840][ T9328]  netlink_unicast+0x82c/0x9e0
[  262.739879][ T9328]  ? __pfx_netlink_unicast+0x10/0x10
[  262.739908][ T9328]  ? netlink_sendmsg+0x642/0xb30
[  262.739936][ T9328]  ? skb_put+0x11b/0x210
[  262.739973][ T9328]  netlink_sendmsg+0x805/0xb30
[  262.740016][ T9328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  262.740052][ T9328]  ? aa_sock_msg_perm+0xf1/0x1d0
[  262.740086][ T9328]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  262.740109][ T9328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  262.740142][ T9328]  __sock_sendmsg+0x21c/0x270
[  262.740174][ T9328]  ____sys_sendmsg+0x505/0x830
[  262.740204][ T9328]  ? __pfx_____sys_sendmsg+0x10/0x10
[  262.740239][ T9328]  ? import_iovec+0x74/0xa0
[  262.740269][ T9328]  ___sys_sendmsg+0x21f/0x2a0
[  262.740294][ T9328]  ? __pfx____sys_sendmsg+0x10/0x10
[  262.740352][ T9328]  ? __fget_files+0x2a/0x420
[  262.740389][ T9328]  ? __fget_files+0x2a/0x420
[  262.740405][ T9328]  ? __fget_files+0x3a0/0x420
[  262.740439][ T9328]  __x64_sys_sendmsg+0x19b/0x260
[  262.740464][ T9328]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  262.740500][ T9328]  ? __pfx_ksys_write+0x10/0x10
[  262.740524][ T9328]  ? rcu_is_watching+0x15/0xb0
[  262.740560][ T9328]  ? do_syscall_64+0xbe/0x3b0
[  262.740596][ T9328]  do_syscall_64+0xfa/0x3b0
[  262.740623][ T9328]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.740651][ T9328]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.740671][ T9328]  ? clear_bhb_loop+0x60/0xb0
[  262.740697][ T9328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.740717][ T9328] RIP: 0033:0x7f3654f8ebe9
[  262.740736][ T9328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.740760][ T9328] RSP: 002b:00007f3655dc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  262.740782][ T9328] RAX: ffffffffffffffda RBX: 00007f36551b5fa0 RCX: 00007f3654f8ebe9
[  262.740797][ T9328] RDX: 0000000004000084 RSI: 0000200000000000 RDI: 0000000000000003
[  262.740810][ T9328] RBP: 00007f3655dc3090 R08: 0000000000000000 R09: 0000000000000000
[  262.740822][ T9328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.740834][ T9328] R13: 00007f36551b6038 R14: 00007f36551b5fa0 R15: 00007ffebd90a778
[  262.740871][ T9328]  </TASK>
[  263.398893][ T9330] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1154'.
[  263.736150][ T9346] netlink: 'syz.2.1157': attribute type 21 has an invalid length.
[  264.238862][ T9358] __nla_validate_parse: 1 callbacks suppressed
[  264.238883][ T9358] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1162'.
[  264.463650][ T9369] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  264.933027][ T9365] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1166'.
[  265.766481][ T9400] nftables ruleset with unbound chain
[  266.181600][ T9410] netlink: 'syz.2.1178': attribute type 10 has an invalid length.
[  266.463484][ T9407] syz.4.1177 (9407) used obsolete PPPIOCDETACH ioctl
[  267.783485][ T9444] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1191'.
[  268.059576][ T9454] FAULT_INJECTION: forcing a failure.
[  268.059576][ T9454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  268.105550][ T9454] CPU: 1 UID: 0 PID: 9454 Comm: syz.2.1195 Not tainted syzkaller #0 PREEMPT(full) 
[  268.105578][ T9454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  268.105590][ T9454] Call Trace:
[  268.105599][ T9454]  <TASK>
[  268.105607][ T9454]  dump_stack_lvl+0x189/0x250
[  268.105637][ T9454]  ? __pfx____ratelimit+0x10/0x10
[  268.105665][ T9454]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.105690][ T9454]  ? __pfx__printk+0x10/0x10
[  268.105719][ T9454]  ? __might_fault+0xb0/0x130
[  268.105761][ T9454]  should_fail_ex+0x414/0x560
[  268.105794][ T9454]  _copy_from_user+0x2d/0xb0
[  268.105819][ T9454]  ___sys_sendmsg+0x158/0x2a0
[  268.105844][ T9454]  ? __pfx____sys_sendmsg+0x10/0x10
[  268.105906][ T9454]  ? __fget_files+0x2a/0x420
[  268.105923][ T9454]  ? __fget_files+0x3a0/0x420
[  268.105954][ T9454]  __x64_sys_sendmsg+0x19b/0x260
[  268.105977][ T9454]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  268.106009][ T9454]  ? __pfx_ksys_write+0x10/0x10
[  268.106034][ T9454]  ? rcu_is_watching+0x15/0xb0
[  268.106068][ T9454]  ? do_syscall_64+0xbe/0x3b0
[  268.106102][ T9454]  do_syscall_64+0xfa/0x3b0
[  268.106130][ T9454]  ? lockdep_hardirqs_on+0x9c/0x150
[  268.106158][ T9454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.106178][ T9454]  ? clear_bhb_loop+0x60/0xb0
[  268.106204][ T9454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.106224][ T9454] RIP: 0033:0x7fd014d8ebe9
[  268.106242][ T9454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.106260][ T9454] RSP: 002b:00007fd015b9c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  268.106282][ T9454] RAX: ffffffffffffffda RBX: 00007fd014fb5fa0 RCX: 00007fd014d8ebe9
[  268.106297][ T9454] RDX: 0000000004000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  268.106311][ T9454] RBP: 00007fd015b9c090 R08: 0000000000000000 R09: 0000000000000000
[  268.106323][ T9454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.106335][ T9454] R13: 00007fd014fb6038 R14: 00007fd014fb5fa0 R15: 00007ffe93eaa468
[  268.106369][ T9454]  </TASK>
[  269.403488][ T9479] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1205'.
[  270.861068][ T9508] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1215'.
[  271.420106][ T9527] netlink: 'syz.1.1221': attribute type 21 has an invalid length.
[  272.683213][ T9555] netlink: 'syz.2.1232': attribute type 25 has an invalid length.
[  272.739876][ T9557] netlink: 'syz.3.1233': attribute type 21 has an invalid length.
[  273.317672][ T9578] netlink: 'syz.3.1242': attribute type 10 has an invalid length.
[  273.433865][ T9585] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1243'.
[  273.804183][ T9601] netlink: 'syz.2.1250': attribute type 11 has an invalid length.
[  273.806636][ T9596] netlink: 65047 bytes leftover after parsing attributes in process `syz.4.1248'.
[  273.821136][ T9601] netlink: 140 bytes leftover after parsing attributes in process `syz.2.1250'.
[  274.507588][ T9612] netlink: 'syz.4.1256': attribute type 10 has an invalid length.
[  275.786442][ T9631] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1262'.
[  276.186550][ T9646] netlink: 'syz.0.1268': attribute type 21 has an invalid length.
[  276.667123][ T9653] lo speed is unknown, defaulting to 1000
[  276.711631][ T9653] vcan0 speed is unknown, defaulting to 1000
[  276.834236][ T9671] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1276'.
[  276.843175][ T9651] netlink: 'syz.4.1270': attribute type 10 has an invalid length.
[  276.843234][ T9651] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1270'.
[  276.843439][ T9651] team0: entered promiscuous mode
[  276.904602][ T9651] team_slave_0: entered promiscuous mode
[  276.931772][ T9651] team_slave_1: entered promiscuous mode
[  276.938685][ T9671] FAULT_INJECTION: forcing a failure.
[  276.938685][ T9671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  276.954950][ T9651] team0: entered allmulticast mode
[  276.965186][ T9651] team_slave_0: entered allmulticast mode
[  276.968587][ T9671] CPU: 0 UID: 0 PID: 9671 Comm: syz.3.1276 Not tainted syzkaller #0 PREEMPT(full) 
[  276.968620][ T9671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  276.968634][ T9671] Call Trace:
[  276.968652][ T9671]  <TASK>
[  276.968662][ T9671]  dump_stack_lvl+0x189/0x250
[  276.968697][ T9671]  ? __pfx____ratelimit+0x10/0x10
[  276.968731][ T9671]  ? __pfx_dump_stack_lvl+0x10/0x10
[  276.968759][ T9671]  ? __pfx__printk+0x10/0x10
[  276.968792][ T9671]  ? __might_fault+0xb0/0x130
[  276.968839][ T9671]  should_fail_ex+0x414/0x560
[  276.968877][ T9671]  _copy_from_user+0x2d/0xb0
[  276.968905][ T9671]  kstrtouint_from_user+0xc4/0x170
[  276.968946][ T9671]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  276.969003][ T9671]  proc_fail_nth_write+0x88/0x200
[  276.969031][ T9671]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  276.969065][ T9671]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  276.969094][ T9671]  vfs_write+0x27b/0xb30
[  276.969137][ T9671]  ? __pfx_vfs_write+0x10/0x10
[  276.969170][ T9671]  ? __fget_files+0x2a/0x420
[  276.969196][ T9671]  ? __fget_files+0x3a0/0x420
[  276.969215][ T9671]  ? __fget_files+0x2a/0x420
[  276.969246][ T9671]  ksys_write+0x145/0x250
[  276.969281][ T9671]  ? __pfx_ksys_write+0x10/0x10
[  276.969309][ T9671]  ? rcu_is_watching+0x15/0xb0
[  276.969339][ T9671]  ? do_syscall_64+0xbe/0x3b0
[  276.969378][ T9671]  do_syscall_64+0xfa/0x3b0
[  276.969407][ T9671]  ? lockdep_hardirqs_on+0x9c/0x150
[  276.969437][ T9671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.969461][ T9671]  ? clear_bhb_loop+0x60/0xb0
[  276.969489][ T9671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.969511][ T9671] RIP: 0033:0x7f010db8d69f
[  276.969533][ T9671] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  276.969553][ T9671] RSP: 002b:00007f010ea67030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  276.969577][ T9671] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f010db8d69f
[  276.969594][ T9671] RDX: 0000000000000001 RSI: 00007f010ea670a0 RDI: 0000000000000004
[  276.969612][ T9671] RBP: 00007f010ea67090 R08: 0000000000000000 R09: 0000000000000000
[  276.969628][ T9671] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  276.969640][ T9671] R13: 00007f010ddb6038 R14: 00007f010ddb5fa0 R15: 00007ffd1b153b28
[  276.969693][ T9671]  </TASK>
[  277.338260][ T9651] team_slave_1: entered allmulticast mode
[  277.462924][ T9651] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  278.586391][ T9698] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1285'.
[  278.787722][ T9707] netlink: 'syz.0.1287': attribute type 16 has an invalid length.
[  278.795766][ T9707] netlink: 'syz.0.1287': attribute type 3 has an invalid length.
[  278.806845][ T9707] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1287'.
[  279.271416][ T9719] netlink: 208192 bytes leftover after parsing attributes in process `syz.2.1293'.
[  279.376316][ T9719] netlink: 'syz.2.1293': attribute type 1 has an invalid length.
[  279.452449][ T9719] netlink: 'syz.2.1293': attribute type 2 has an invalid length.
[  279.511254][ T9723] netlink: 'syz.3.1294': attribute type 21 has an invalid length.
[  280.284851][ T9744] netlink: 'syz.3.1301': attribute type 11 has an invalid length.
[  281.543364][ T9772] pim6reg1: entered promiscuous mode
[  281.827504][ T9772] pim6reg1: entered allmulticast mode
[  281.925861][ T9778] FAULT_INJECTION: forcing a failure.
[  281.925861][ T9778] name failslab, interval 1, probability 0, space 0, times 0
[  281.963901][ T9778] CPU: 1 UID: 0 PID: 9778 Comm: syz.3.1313 Not tainted syzkaller #0 PREEMPT(full) 
[  281.963932][ T9778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  281.963945][ T9778] Call Trace:
[  281.963954][ T9778]  <TASK>
[  281.963964][ T9778]  dump_stack_lvl+0x189/0x250
[  281.963994][ T9778]  ? __pfx____ratelimit+0x10/0x10
[  281.964024][ T9778]  ? __pfx_dump_stack_lvl+0x10/0x10
[  281.964050][ T9778]  ? __pfx__printk+0x10/0x10
[  281.964088][ T9778]  ? __pfx___might_resched+0x10/0x10
[  281.964115][ T9778]  should_fail_ex+0x414/0x560
[  281.964151][ T9778]  should_failslab+0xa8/0x100
[  281.964184][ T9778]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  281.964215][ T9778]  ? __alloc_skb+0x112/0x2d0
[  281.964254][ T9778]  __alloc_skb+0x112/0x2d0
[  281.964291][ T9778]  netlink_dump+0x1b7/0xe90
[  281.964339][ T9778]  ? __pfx_netlink_dump+0x10/0x10
[  281.964399][ T9778]  ? genl_start+0x499/0x6c0
[  281.964434][ T9778]  __netlink_dump_start+0x5cb/0x7e0
[  281.964475][ T9778]  genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[  281.964506][ T9778]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  281.964541][ T9778]  ? __pfx_genl_start+0x10/0x10
[  281.964561][ T9778]  ? __pfx_genl_dumpit+0x10/0x10
[  281.964580][ T9778]  ? __pfx_genl_done+0x10/0x10
[  281.964609][ T9778]  ? bpf_lsm_capable+0x9/0x20
[  281.964637][ T9778]  ? security_capable+0x7e/0x2e0
[  281.964677][ T9778]  genl_rcv_msg+0x5da/0x790
[  281.964711][ T9778]  ? __pfx_genl_rcv_msg+0x10/0x10
[  281.964734][ T9778]  ? __pfx_l2tp_nl_cmd_tunnel_dump+0x10/0x10
[  281.964793][ T9778]  netlink_rcv_skb+0x205/0x470
[  281.964833][ T9778]  ? __lock_acquire+0xab9/0xd20
[  281.964865][ T9778]  ? __pfx_genl_rcv_msg+0x10/0x10
[  281.964891][ T9778]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  281.964947][ T9778]  ? down_read+0x1ad/0x2e0
[  281.964983][ T9778]  genl_rcv+0x28/0x40
[  281.965003][ T9778]  netlink_unicast+0x82c/0x9e0
[  281.965044][ T9778]  ? __pfx_netlink_unicast+0x10/0x10
[  281.965075][ T9778]  ? netlink_sendmsg+0x642/0xb30
[  281.965107][ T9778]  ? skb_put+0x11b/0x210
[  281.965144][ T9778]  netlink_sendmsg+0x805/0xb30
[  281.965192][ T9778]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.965228][ T9778]  ? aa_sock_msg_perm+0xf1/0x1d0
[  281.965262][ T9778]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  281.965291][ T9778]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.965323][ T9778]  __sock_sendmsg+0x21c/0x270
[  281.965361][ T9778]  ____sys_sendmsg+0x505/0x830
[  281.965390][ T9778]  ? __pfx_____sys_sendmsg+0x10/0x10
[  281.965423][ T9778]  ? import_iovec+0x74/0xa0
[  281.965453][ T9778]  ___sys_sendmsg+0x21f/0x2a0
[  281.965479][ T9778]  ? __pfx____sys_sendmsg+0x10/0x10
[  281.965531][ T9778]  ? __fget_files+0x2a/0x420
[  281.965567][ T9778]  ? __fget_files+0x2a/0x420
[  281.965582][ T9778]  ? __fget_files+0x3a0/0x420
[  281.965614][ T9778]  __x64_sys_sendmsg+0x19b/0x260
[  281.965640][ T9778]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  281.965676][ T9778]  ? __pfx_ksys_write+0x10/0x10
[  281.965700][ T9778]  ? rcu_is_watching+0x15/0xb0
[  281.965728][ T9778]  ? do_syscall_64+0xbe/0x3b0
[  281.965763][ T9778]  do_syscall_64+0xfa/0x3b0
[  281.965791][ T9778]  ? lockdep_hardirqs_on+0x9c/0x150
[  281.965818][ T9778]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.965839][ T9778]  ? clear_bhb_loop+0x60/0xb0
[  281.965866][ T9778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.965884][ T9778] RIP: 0033:0x7f010db8ebe9
[  281.965903][ T9778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.965920][ T9778] RSP: 002b:00007f010ea67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  281.965943][ T9778] RAX: ffffffffffffffda RBX: 00007f010ddb5fa0 RCX: 00007f010db8ebe9
[  281.965958][ T9778] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  281.965972][ T9778] RBP: 00007f010ea67090 R08: 0000000000000000 R09: 0000000000000000
[  281.965985][ T9778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.965996][ T9778] R13: 00007f010ddb6038 R14: 00007f010ddb5fa0 R15: 00007ffd1b153b28
[  281.966036][ T9778]  </TASK>
[  282.497395][ T9788] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1317'.
[  282.671806][ T9796] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1319'.
[  282.686443][ T9796] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  282.693737][ T9796] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  282.897361][ T5850] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI
[  282.909431][ T5850] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  282.917877][ T5850] CPU: 0 UID: 0 PID: 5850 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  282.927474][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  282.937547][ T5850] RIP: 0010:__pcpu_freelist_pop+0x6b7/0x8c0
[  282.943468][ T5850] Code: 10 48 3b 8c 24 80 00 00 00 0f 85 b4 01 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 81 3a 9a 09 cc 48 89 f8 48 c1 e8 03 <80> 3c 18 00 48 89 7c 24 20 74 0a e8 69 3f 41 00 48 8b 7c 24 20 48
[  282.963263][ T5850] RSP: 0018:ffffc90003fdf000 EFLAGS: 00010046
[  282.969348][ T5850] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffe8ffffc3a218
[  282.977328][ T5850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  282.985304][ T5850] RBP: ffffc90003fdf0d0 R08: 0000000000000003 R09: 0000000000000004
[  282.993291][ T5850] R10: dffffc0000000000 R11: fffff520007fbe0c R12: 1ffffd1ffff87442
[  283.001385][ T5850] R13: ffffe8ffffc3a210 R14: 0000000000000000 R15: 0000000000000000
[  283.009366][ T5850] FS:  0000555563b1a500(0000) GS:ffff888125c1c000(0000) knlGS:0000000000000000
[  283.018389][ T5850] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  283.024986][ T5850] CR2: 0000000000000003 CR3: 00000000269dc000 CR4: 00000000003526f0
[  283.032964][ T5850] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  283.041128][ T5850] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  283.049283][ T5850] Call Trace:
[  283.052657][ T5850]  <TASK>
[  283.055601][ T5850]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  283.062297][ T5850]  ? __pfx___pcpu_freelist_pop+0x10/0x10
[  283.067958][ T5850]  ? __get_user_nocheck_8+0x20/0x20
[  283.073171][ T5850]  ? rcu_is_watching+0x15/0xb0
[  283.078046][ T5850]  pcpu_freelist_pop+0xca/0x170
[  283.082912][ T5850]  ? __pfx_pcpu_freelist_pop+0x10/0x10
[  283.088386][ T5850]  ? get_perf_callchain+0x42f/0x6b0
[  283.093614][ T5850]  ? __pfx_get_perf_callchain+0x10/0x10
[  283.099181][ T5850]  __bpf_get_stackid+0x574/0xcf0
[  283.104161][ T5850]  ? bpf_get_stackid+0x11c/0x1d0
[  283.109134][ T5850]  ? bpf_prog_12712c88fd19bd5b+0x2a/0x32
[  283.114775][ T5850]  bpf_get_stackid_raw_tp+0x196/0x210
[  283.120268][ T5850]  bpf_prog_12712c88fd19bd5b+0x2a/0x32
[  283.125862][ T5850]  bpf_trace_run4+0x28b/0x4a0
[  283.130553][ T5850]  ? bpf_trace_run4+0x19c/0x4a0
[  283.135506][ T5850]  ? __pfx_bpf_trace_run4+0x10/0x10
[  283.140888][ T5850]  ? __pfx_get_page_from_freelist+0x10/0x10
[  283.147102][ T5850]  ? prepare_alloc_pages+0x213/0x610
[  283.152574][ T5850]  trace_mm_page_alloc+0x129/0x150
[  283.157788][ T5850]  __alloc_frozen_pages_noprof+0x1d6/0x370
[  283.163612][ T5850]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  283.170134][ T5850]  ? do_raw_spin_lock+0x121/0x290
[  283.175188][ T5850]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  283.180857][ T5850]  ? policy_nodemask+0x27c/0x720
[  283.185965][ T5850]  alloc_pages_mpol+0x232/0x4a0
[  283.190843][ T5850]  alloc_pages_noprof+0xa9/0x190
[  283.195805][ T5850]  get_free_pages_noprof+0xf/0x80
[  283.200873][ T5850]  __pollwait+0x27b/0x460
[  283.205219][ T5850]  ? __pfx___pollwait+0x10/0x10
[  283.210087][ T5850]  pipe_poll+0xdd/0x470
[  283.214257][ T5850]  ? __pfx_pipe_poll+0x10/0x10
[  283.219046][ T5850]  do_select+0x105b/0x17e0
[  283.223498][ T5850]  ? __pfx_do_select+0x10/0x10
[  283.228289][ T5850]  ? __pfx___pollwait+0x10/0x10
[  283.233158][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.237939][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.242635][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.247336][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.252048][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.256752][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.261460][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.266216][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.270927][ T5850]  ? __pfx_pollwake+0x10/0x10
[  283.275635][ T5850]  core_sys_select+0x6dd/0xa20
[  283.280428][ T5850]  ? __pfx_core_sys_select+0x10/0x10
[  283.285851][ T5850]  ? __pfx_set_user_sigmask+0x10/0x10
[  283.291237][ T5850]  __se_sys_pselect6+0x27a/0x300
[  283.296192][ T5850]  ? __pfx___se_sys_pselect6+0x10/0x10
[  283.301665][ T5850]  ? __pfx_ksys_write+0x10/0x10
[  283.306541][ T5850]  ? rcu_is_watching+0x15/0xb0
[  283.311629][ T5850]  ? __x64_sys_pselect6+0x21/0xf0
[  283.316777][ T5850]  do_syscall_64+0xfa/0x3b0
[  283.321317][ T5850]  ? lockdep_hardirqs_on+0x9c/0x150
[  283.326569][ T5850]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.332830][ T5850]  ? clear_bhb_loop+0x60/0xb0
[  283.337561][ T5850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.343566][ T5850] RIP: 0033:0x7f5479b8e9ac
[  283.348063][ T5850] Code: 29 44 24 30 80 3d cb 9b 1f 00 00 4c 89 4c 24 40 4c 8d 4c 24 40 48 c7 44 24 48 08 00 00 00 74 2e 4c 89 ea b8 0e 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 7c 48 8b 54 24 58 64 48 2b 14 25 28 00 00 00
[  283.368026][ T5850] RSP: 002b:00007fffe78b8d50 EFLAGS: 00000202 ORIG_RAX: 000000000000010e
[  283.376460][ T5850] RAX: ffffffffffffffda RBX: 00007fffe78b8e80 RCX: 00007f5479b8e9ac
[  283.384619][ T5850] RDX: 0000000000000000 RSI: 00007fffe78b8e80 RDI: 0000000000000023
[  283.392599][ T5850] RBP: 00007fffe78b90c0 R08: 00007fffe78b8d80 R09: 00007fffe78b8d90
[  283.400673][ T5850] R10: 0000000000000000 R11: 0000000000000202 R12: 00007fffe78b9120
[  283.408919][ T5850] R13: 0000000000000000 R14: 00007fffe78b92d0 R15: 00007fffe78b8f10
[  283.417004][ T5850]  </TASK>
[  283.420030][ T5850] Modules linked in:
[  283.423947][ T5850] ---[ end trace 0000000000000000 ]---
[  283.429405][ T5850] RIP: 0010:__pcpu_freelist_pop+0x6b7/0x8c0
[  283.435343][ T5850] Code: 10 48 3b 8c 24 80 00 00 00 0f 85 b4 01 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d e9 81 3a 9a 09 cc 48 89 f8 48 c1 e8 03 <80> 3c 18 00 48 89 7c 24 20 74 0a e8 69 3f 41 00 48 8b 7c 24 20 48
[  283.455244][ T5850] RSP: 0018:ffffc90003fdf000 EFLAGS: 00010046
[  283.461605][ T5850] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffe8ffffc3a218
[  283.469724][ T5850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  283.477715][ T5850] RBP: ffffc90003fdf0d0 R08: 0000000000000003 R09: 0000000000000004
[  283.485700][ T5850] R10: dffffc0000000000 R11: fffff520007fbe0c R12: 1ffffd1ffff87442
[  283.493688][ T5850] R13: ffffe8ffffc3a210 R14: 0000000000000000 R15: 0000000000000000
[  283.501762][ T5850] FS:  0000555563b1a500(0000) GS:ffff888125c1c000(0000) knlGS:0000000000000000
[  283.510787][ T5850] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  283.517411][ T5850] CR2: 0000000000000003 CR3: 00000000269dc000 CR4: 00000000003526f0
[  283.525651][ T5850] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  283.533626][ T5850] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  283.541778][ T5850] Kernel panic - not syncing: Fatal exception
[  283.548524][ T5850] Kernel Offset: disabled
[  283.552865][ T5850] Rebooting in 86400 seconds..