last executing test programs:

4.937889115s ago: executing program 1 (id=1393):
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800"/12], &(0x7f0000000280)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x34}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_ext={0x1a, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="180f000020", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, 0x19, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4a6}, 0x94)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000023000b02d25a806f8c6394f90224fc60", 0x14}], 0x1}, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x5, 0x4, 0x9, 0x0, 0x0, 0x7, 0x100, 0xc, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f00000000c0)}, 0x800, 0x7fffffff, 0x3, 0x5, 0xf, 0xe91, 0x8, 0x0, 0x23, 0x0, 0x7}, 0x0, 0x2000000000002, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x104101, 0x4, 0x0, 0x5, 0x5ba, 0x0, 0x201}, 0x0, 0x1, r3, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/syz1\x00', 0x200002, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110c230000)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r5, 0x8004745a, 0x0)

4.426146941s ago: executing program 0 (id=1398):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000200)=""/166}, 0x20)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
r1 = perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x1, 0xff, 0x1, 0x0, 0x0, 0x81, 0x80a44, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x0, @perf_config_ext={0x0, 0x2}, 0x40, 0x8, 0x0, 0x0, 0x0, 0xffff0004, 0x0, 0x0, 0xfffffffe, 0x0, 0x3997}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000340)='\"\xab\xa5\xb2\x82r|\x98\x85\x85\xbe\x98\x1c\xbc\xd3\x8b:\x9a\xcd]r\x10\xa7|\xd8~\xf6Q\xee\x00\x97\xb0x<\x1b.O\xc9w\x05G-\x88\xc1+A\x98c\r 60\x02cA\x04\x97\xa1;\x97M\xc8IVb\f\xa4n\xc7\x9a\xab\xc0&>\xaa#1\xfc\xbfz\xb5f\xf4\xaf\xcdT~\xaba+$\xc0\x8c%\xa0\x98L\xc7\x9a\xda\xc4\x00\x00\x00\x00\xc4aa\xd5\x90\xbe\x1e\x80\xfc\x1b\x98\xde\x15`c\xd2\x9b(\a\xa3\x96\xdc\xf0\xdf\x16\xb8^\xf8\x18\xda\x9e\xd3+\xbb\xac\x05\xf3\x0f\xaf\xb6\xc5C\xa1i\xfd<\xce\xce*\x06q\xca\xcd\xd1\x8d\xfc\xf0\xf6\n\x85\x01\xcb\xa8\x87\xb2\xb4\xe9j\xf0;\x06\xc3\x00A\xe7b\xbd\xcc\b\xf5\xe1Y\xffamF(\x0eewE\x90\xcc\xb3\xc2\x02s\xdb\xb6\x9f\"\x94X?\xcc$\xca\x10\x84\xa5\x04dO~\f\xc4\x94\xd5\x14@\xa1\vD\x0e\x9d\xcdH\xbf2&\x92`z\x0f\xc0`\x02\xc9t\xf6\xc4\xa7|x\x13?\xfc\x1d\x8ax\xec\x95\xad\xd2\x99\x13T\xb7\rU\x10\x12b\x80\xae\x15K\x0f\x80/\xdb\x97|\x1d;\x03!&U\xa70bW\xd9\x8c\xd9\x88\x93\xf9\x8a6}E} \xc1&\xc6\xf6\x94t\x049O\x95\x80C\xb6\x99\x8a*\x05\xdaRc\x88U\xb2\xa4p\x10.i\xe7\x16\x91\xaeM\x1fQE\x1bP\x1f\xb3(\x99c\xbd]c\xa6\xb2g\x90x+\x82\xa7\x1d\x9e\xe8\xc1[\xbdPyU\xa4\x03JK\x8b\xf0\x9bz\x9a\xf3\xed\x99\xe2\x16\xed1\x87\xe8E\xbf\x96\xb1\x8b\x04\x91n\xfc\xca\xa9\xde\x18\xc7s\x94\bC4*\xc3\xf2\xf3\xcc)T`\x9f\xdex\xe0\x8d\xd4Yc\x8a')
socket$kcm(0x11, 0x3, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c0000000000000000000000080000", @ANYRES32, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006f"], 0x230}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x7f, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x9, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0xfffffffe, 0x0, 0x4be9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r2)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = socket$kcm(0x2, 0x2, 0x73)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000200)='./file0\x00', 0x0, 0x10}, 0x18)
sendmsg$inet(r4, &(0x7f0000000500)={&(0x7f0000000300)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000400)=[{0x0}], 0x1}, 0x900000000000000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_type(r5, &(0x7f0000000100), 0x2, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000c40), 0x12)
sendmsg$unix(r0, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000001000000010000005c"], 0x70, 0x240040c0}, 0x4000000)
r7 = socket$kcm(0x10, 0x2, 0x0)
socketpair(0x21, 0x3, 0x6, &(0x7f0000000680))
sendmsg$kcm(r7, &(0x7f0000000200)={&(0x7f0000000040)=@vsock={0x28, 0x0, 0x2711, @local}, 0x80, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000000100)="5e62ad657ddd26069e462ebcbea9dfede4fa26f950f234b67a42667b34155c86bd7d41a2605e45286f4bdfddaaccc5f5e43f161809a297e4d2fc1100c353c4b5743f33e24de544307e60bfbd5f3fdfdc949fc64633382271503fb5af3e4072659ba0194c47300558af1af21eea6ec8c33aebc5922bbf222a7c649c99108765e367463321b1dcb877ff077b91a7b8258c333f5c89", 0x94}], 0x2}, 0x40000)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x60, &(0x7f0000000000)=[{&(0x7f0000000300)="2000000011008188040f80ec59acbc0413a181000d0000004001000000000000", 0x20}], 0x1}, 0x40000)
perf_event_open(&(0x7f0000001240)={0x2, 0x80, 0xd, 0xc, 0x0, 0x0, 0x0, 0x8, 0x640b9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000540), 0x9}, 0x8000, 0x82, 0xf7ffff81, 0x5, 0x9cc, 0x0, 0x2, 0x0, 0x0, 0x0, 0x200c}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

4.406463132s ago: executing program 1 (id=1399):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x9, 0x5, 0x202, 0x4, 0x0, 0xffffffffffffffff, 0x100}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1, 0xffffffffffffffff, 0x3}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd8}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000003c0)={@fallback=r2, 0xffffffffffffffff, 0x19}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4)
sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffffe8}, 0x48)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x2, 0x73)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x40068, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x6}, 0x0, 0xfffffffffffffffd, 0x0, 0x4, 0x6, 0xc07, 0xfffd, 0x0, 0x0, 0x0, 0x8000000000000001}, 0x0, 0x2, 0xffffffffffffffff, 0xc)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff003, 0x66, 0x7f, 0x1}, 0x48)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x40, r6}, 0x38)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r7)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r7, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"})
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90124fc60", 0x14}], 0x1}, 0x0)
r9 = socket$kcm(0x10, 0x3, 0x10)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r10, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x80}, {0x6, 0x0, 0x0, 0x4}]})
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r9, &(0x7f00000000c0)={0x0, 0xd18c9b60, &(0x7f0000000080)=[{&(0x7f0000000100)="e03f03002a000b05d25a806c8c6f94f90524fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)

4.1751947s ago: executing program 2 (id=1401):
socketpair(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x64)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0x1, <r0=>0xffffffffffffffff}, 0x4)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@float={0x4, 0x0, 0x0, 0x10, 0x10}]}, {0x0, [0x61, 0x61, 0x2e, 0x61]}}, &(0x7f0000000280)=""/155, 0x2a, 0x9b, 0x1, 0x6, 0x10000}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x10001, '\x00', 0x0, r1, 0x4, 0x2, 0x5}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0, 0x10000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="18000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x19, 0xf, &(0x7f0000000000)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b70200001400009e219999dcade5b2c9f000b703000000000d008500000031"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000028000000280000000200000000000000000000030000000000000000000000000000000000000000000000010502"], 0x0, 0x42}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x4, &(0x7f0000000000)='%', 0x0, 0xd01, 0x80040000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x6, 0x66, &(0x7f00000006c0)=""/102, 0x41100, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
socket$kcm(0x11, 0x3, 0x0)

3.582582478s ago: executing program 2 (id=1402):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000008b0000000000000000000000850000001300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000008ea00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r1, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0), ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000000), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf4, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000300), &(0x7f0000000240), 0x8, 0xac, 0x8, 0x8, &(0x7f0000000180)}}, 0x10)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000880)={&(0x7f0000000680)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6d, 0x6d, 0x6, [@struct={0x5, 0x1, 0x0, 0x4, 0x0, 0x6, [{0x2, 0x0, 0x8}]}, @datasec={0x10, 0x6, 0x0, 0xf, 0x1, [{0x2, 0x0, 0x9}, {0x3, 0x40, 0xf}, {0x3, 0xc, 0x7d49}, {0x4, 0x7, 0xffff}, {0x3, 0x401, 0x1}, {0x5, 0x3, 0xfffffffb}], 'R'}]}, {0x0, [0x61, 0x2e, 0x61, 0x5f]}}, &(0x7f0000000740)=""/228, 0x8e, 0xe4, 0x0, 0x2f06, 0x10000}, 0x28)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x6000, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000010008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x67}], 0x1}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000006c0)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000100)={r4})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x1}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}]}, &(0x7f00000002c0)='GPL\x00', 0x7ff, 0x55, &(0x7f00000003c0)=""/85, 0x41100, 0x8, '\x00', r2, 0x25, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000900)={0x3, 0x5, 0x0, 0x2}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000940)=[r0, r0, r0, r0, r0, r0], &(0x7f0000000980)=[{0x4, 0x2, 0x0, 0xc}], 0x10, 0x401}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="b9ff03076003008cb89e08f088a8", 0x0, 0x5da0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.444442852s ago: executing program 3 (id=1403):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r1, 0x0, 0xe, 0x0, &(0x7f0000000480)="3d25ff0706000000000000c188a8", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7000000}, 0x50)

3.432506562s ago: executing program 0 (id=1404):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="08000000040000000400000004"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r1, 0x58, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0xf, &(0x7f0000000940)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41100, 0x40, '\x00', r2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000009c0)=ANY=[@ANYBLOB="941f75fe671e3d30e5cd752c08f2325c72549107e2b000110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000423fad10000000000008500000025000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007000000", @ANYRES32], 0x48)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0}, 0x90)
r5 = socket$kcm(0x2, 0x2, 0x73)
sendmsg$inet(r5, &(0x7f0000000500)={&(0x7f0000000300)={0x2, 0x0, @local}, 0x10, &(0x7f0000000b00)=[{0x0}, {&(0x7f0000000880)="90e6", 0x2}], 0x2}, 0x900000000000000)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="10000000040000000800000002"], 0x48)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x5, 0x7ff}, 0x104101, 0x4, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x6, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x200}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
socket$kcm(0x21, 0x2, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r8, 0x8b26, &(0x7f0000000280)={'wlan1\x00'})
r9 = openat$cgroup_devices(r4, &(0x7f0000000300)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r9, &(0x7f00000000c0)=ANY=[@ANYBLOB='c *:23', @ANYRESHEX=r4], 0xa)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0xfdef)

3.340494015s ago: executing program 3 (id=1405):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={0xffffffffffffffff, 0x18000000000002a0, 0x1c, 0x0, &(0x7f00000011c0)="b9ffddc1ddcccdf175537d53888edfcef6e296510cff24fc83423368", 0x0, 0x600, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x2, 0x640a9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1007f}, 0x94)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)=@phonet={0x23, 0x0, 0x3, 0x4}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000440)="cb4e88a8af3288", 0x7}], 0x1}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0xa, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000002180)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x44)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xfa, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x4c, 0x0, &(0x7f0000000ac0)="4313a5e1de73ef94a52904aad04fce16f49604c1dc63d9c8cc35e6d2e21bad5f52f04dde32f51f1857b0a340996c2daaeef13787fa577badae0fbafd3f609eda08ec9ebbeddabc201ebe14f7", &(0x7f0000000a00), 0x0, 0x700}, 0x50)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000002c0)=r4, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000006c0)="d800000018007b18e00212ba0d8105040a0a1100fe0f040b067c55a1bc0009001e0006990300000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b01602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5", 0xd2}, {&(0x7f00000004c0)="f80ec2e2badd", 0x6}], 0x2, 0x0, 0x0, 0x2663}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x806, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x9006000, &(0x7f00000030c0)=[{&(0x7f0000000180)="1400000016001963d25a80648c56915a15aa2bfe", 0x14}], 0x1}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x0, 0x34, 0x2e, &(0x7f0000000000)="7a31018b37b275f0b985939297430da125c2e29f2629aac65c470e2ecaf6f9577d38607eff1ea5e20654dbb4d2bb593001edcd2f", &(0x7f0000000040)=""/46, 0x8, 0x0, 0x37, 0x81, &(0x7f0000000080)="30852656ba4d64913700b54c5b25be96180c47a0ce780e9086cf9fae1e45daaec8d341af0b4a1f22f2ac798643afca090afb900ae1d6fb", &(0x7f0000000180)="f0205b9a2a303a9ab9be702feb471420dba0c34a1ce418af070bc69b32c1b263eb53897e3bf720c625c0a33552f2862e63fdb5f109104b986f8732bef639cb6dc42e25021364b73cf0557d8de3af3be35a346263b47ad268c59dd117957faa02eeef44099812b9b57adb3f7434174cb14d553a5c3239dc41fe4597e1033f568e2d", 0x2, 0x0, 0xf77}, 0x50)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @empty}, 0x10, 0x0}, 0x300060c1)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x81)

3.172820351s ago: executing program 2 (id=1406):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080010000000e8fe55a1180015000600142603600e120500210000000401a8001600a400014020000300036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0xa00}, 0x0)

2.996337006s ago: executing program 2 (id=1407):
socket$kcm(0xf, 0x3, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x400, 0x94001, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_config_ext={0xffffffffffffffff}, 0x8000, 0x4, 0x3, 0xaaf04684de878bda, 0x9, 0x6, 0xfffe, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=[@rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}], 0x90}, 0x10140)
openat$ppp(0xffffffffffffff9c, 0x0, 0x100, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_merged\x00', 0x26e1, 0x0)
r3 = socket$kcm(0x2, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x3e, &(0x7f00000002c0)=r2, 0x4)
sendmsg$inet(r3, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x3e8)

2.994015506s ago: executing program 1 (id=1408):
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800"/12], &(0x7f0000000280)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x34}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_ext={0x1a, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="180f000020", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, 0x19, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4a6}, 0x94)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000023000b02d25a806f8c6394f90224fc60", 0x14}], 0x1}, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x5, 0x4, 0x9, 0x0, 0x0, 0x7, 0x100, 0xc, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f00000000c0)}, 0x800, 0x7fffffff, 0x3, 0x5, 0xf, 0xe91, 0x8, 0x0, 0x23, 0x0, 0x7}, 0x0, 0x2000000000002, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x104101, 0x4, 0x0, 0x5, 0x5ba, 0x0, 0x201}, 0x0, 0x1, r3, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/syz1\x00', 0x200002, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110c230000)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r5, 0x8004745a, 0x0)

2.959640927s ago: executing program 0 (id=1409):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r0 = socket$kcm(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x297f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x3, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x4, 0x8, 0xf}, 0x50)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000500)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x19, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r5, r3}, 0xc)
close(r2)
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200102f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa35f022eb"], 0xcfa4)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfdef)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f91424fc60100005000a000200053582c137153e37000c0680040006000a00", 0x33fe0}], 0x1}, 0x0)
recvmsg$unix(r6, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a00)=[{&(0x7f0000000200)=""/240, 0xf0}, {&(0x7f0000000300)=""/110, 0x6e}, {&(0x7f0000000400)=""/97, 0x61}, {&(0x7f0000001880)=""/4096, 0x1000}, {&(0x7f0000002880)=""/32, 0x20}, {&(0x7f00000028c0)=""/41, 0x29}, {&(0x7f0000002900)=""/50, 0x32}, {&(0x7f0000002940)=""/126, 0x7e}], 0x8, &(0x7f0000002a80)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x30}, 0x40000040)
sendmsg$kcm(r0, &(0x7f00000001c0)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e20, 0x1, @remote}}, 0x80, 0x0}, 0x20000001)

2.89282289s ago: executing program 3 (id=1410):
socketpair(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x64)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0x1, <r0=>0xffffffffffffffff}, 0x4)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@float={0x4, 0x0, 0x0, 0x10, 0x10}]}, {0x0, [0x61, 0x61, 0x2e, 0x61]}}, &(0x7f0000000280)=""/155, 0x2a, 0x9b, 0x1, 0x6, 0x10000}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x10001, '\x00', 0x0, r1, 0x4, 0x2, 0x5}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0, 0x10000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="18000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x19, 0xf, &(0x7f0000000000)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b70200001400009e219999dcade5b2c9f000b703000000000d008500000031"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000028000000280000000200000000000000000000030000000000000000000000000000000000000000000000010502"], 0x0, 0x42}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x4, &(0x7f0000000000)='%', 0x0, 0xd01, 0x80040000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x6, 0x66, &(0x7f00000006c0)=""/102, 0x41100, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
socket$kcm(0x11, 0x3, 0x0)

2.646418327s ago: executing program 0 (id=1411):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="120000002400000008000000"], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={r0, 0x58, &(0x7f00000001c0)}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x0, 0x5}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$kcm(0x2, 0x3, 0x2)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xf1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x201}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x8, 0x4}, 0x24, 0x0, 0x3, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r5)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000500)={r5, 0x58, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
r7 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x6, 0x1, &(0x7f0000000940)=ANY=[@ANYBLOB="93443f14c10900c600c2000020991d5f334d0b16bd0000004014414fe4b2c9b011db00320ef76ca8b490a3de4374678be8cafd436ce81560dad25ff0e1f0954010b5b644ebd5100357bd948935c77bc65b7d4aba5cb64af6cc56"], &(0x7f00000002c0)='GPL\x00', 0xe, 0xa9, &(0x7f0000000300)=""/169, 0x40f00, 0xc, '\x00', r6, 0x25, r7, 0x8, &(0x7f00000006c0)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000700)={0x0, 0x9, 0x3, 0x3}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000780), &(0x7f00000007c0)=[{0x4, 0x5, 0x8, 0x1}, {0x0, 0x2, 0x2, 0x5}, {0x3, 0x2, 0xa, 0x9}, {0x0, 0x5, 0x8, 0x4}, {0x1, 0x4, 0xa, 0x7}, {0x2, 0x4, 0x9, 0xc}, {0x4, 0x1, 0x5, 0xb}], 0x10, 0x4}, 0x94)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000bc0)={&(0x7f00000009c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x181, 0x181, 0x3, [@struct={0xa, 0x6, 0x0, 0x4, 0x0, 0x1, [{0xd, 0x3, 0x3}, {0x2, 0x4, 0x2}, {0x7, 0x3, 0x4}, {0x8, 0x4, 0x3b}, {0xf, 0x3, 0x7}, {0xe, 0x0, 0x9}]}, @fwd={0x6}, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{0x1, 0x3}, {0x1, 0x2}, {}, {0x0, 0x1}, {0x5, 0x5}, {0x6, 0x2}]}, @volatile={0x2, 0x0, 0x0, 0x9, 0x2}, @datasec={0x7, 0x9, 0x0, 0xf, 0x1, [{0x4, 0x80, 0x4}, {0x1, 0x401}, {0x4, 0x3, 0xcb67}, {0x1, 0x7, 0x10}, {0x4, 0x5, 0x6}, {0x5, 0x400, 0x6e1}, {0x5, 0xfffffff8}, {0x1, 0x8000, 0x4}, {0x1, 0x679, 0xffffffff}], "fd"}, @union={0x3, 0x7, 0x0, 0x5, 0x1, 0x4, [{0x0, 0x1, 0x1}, {0x0, 0x0, 0x9}, {0x1, 0x5, 0xc7}, {0x6, 0x0, 0x6}, {0xc, 0x0, 0x6a}, {0x8, 0x3, 0x7}, {0x8, 0x3, 0x3}]}]}, {0x0, [0x5f]}}, &(0x7f0000000b80)=""/41, 0x19f, 0x29, 0x0, 0xff, 0x10000}, 0x28)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c00)={0x1b, 0x0, 0x0, 0x42d1, 0x0, 0xffffffffffffffff, 0x4, '\x00', r6, r8, 0x3, 0x5}, 0x50)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{r9}, 0x0, &(0x7f0000000080)='%-5lx  \x00'}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000c80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x53, 0x53, 0x3, [@var={0x1, 0x0, 0x0, 0xe, 0x3}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10}, @datasec={0x9, 0x1, 0x0, 0xf, 0x3, [{0x3, 0xf4, 0x3}], "56f1f7"}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x1, 0x5}}]}, {0x0, [0x61]}}, 0x0, 0x6f}, 0x28)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r10, 0x8b04, &(0x7f0000000040)={'wlan0\x00', @random})
close(r2)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x2504, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x3}, 0x0, 0xc8, 0x8, 0x8, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x4)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r11=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r11, &(0x7f0000000980)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102032b00fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.645574227s ago: executing program 2 (id=1412):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@l2={0x21, 0xfff4, @any, 0x5, 0x2}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x18}, 0xfc00)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10305, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
socketpair(0x6, 0x800, 0x5, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x83)
bpf$BPF_GET_PROG_INFO(0xa, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x2c0000000}, 0x115905, 0x4, 0x0, 0x7, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r2}, 0x8)
socketpair(0xa, 0x3, 0xff, &(0x7f0000000000))
sendmsg$kcm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000740)="d8000000100081044e81f782db44b904021d08390b000000000000a1260015000600142603600e1209002100ff000401a80016000400144006000300036010faf9d113fe5c0461c1d67f6f94007134c76ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f877573bda0b18f92590d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9acbb1086de373d809d5e1cace81ed0bffece0b42a9ecbee5de6ccbb0dd6e4ed", 0xd8}], 0x1}, 0x4004084)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r6 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, 0x0)
r8 = socket$kcm(0x18, 0x0, 0x0)
sendmsg$inet(r8, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x20000)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
ioctl$TUNGETSNDBUF(r0, 0x800454d3, &(0x7f00000000c0))
r9 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100e64, 0xc78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x3, r9, 0xd)
socket$kcm(0xa, 0x2, 0x73)
socketpair(0x22, 0x2, 0x23, &(0x7f0000000000))
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000100))

524.673154ms ago: executing program 3 (id=1413):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f00000017c0)={&(0x7f0000000040)=@l2tp6={0xa, 0x80fe, 0x7, @dev={0xfe, 0x80, '\x00', 0x3e}, 0x12, 0x2}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000004c0)="7f", 0x1}], 0x1, &(0x7f0000000600)=ANY=[@ANYBLOB="1800ffe00000000084000000070000007f00000000000000b8"], 0xd0}, 0x480c4)

476.733685ms ago: executing program 0 (id=1414):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000008b0000000000000000000000850000001300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000008ea00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r1, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0), ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000000), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xf4, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000300), &(0x7f0000000240), 0x8, 0xac, 0x8, 0x8, &(0x7f0000000180)}}, 0x10)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000880)={&(0x7f0000000680)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6d, 0x6d, 0x6, [@struct={0x5, 0x1, 0x0, 0x4, 0x0, 0x6, [{0x2, 0x0, 0x8}]}, @datasec={0x10, 0x6, 0x0, 0xf, 0x1, [{0x2, 0x0, 0x9}, {0x3, 0x40, 0xf}, {0x3, 0xc, 0x7d49}, {0x4, 0x7, 0xffff}, {0x3, 0x401, 0x1}, {0x5, 0x3, 0xfffffffb}], 'R'}]}, {0x0, [0x61, 0x2e, 0x61, 0x5f]}}, &(0x7f0000000740)=""/228, 0x8e, 0xe4, 0x0, 0x2f06, 0x10000}, 0x28)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f00000002c0)={0x0, 0x6000, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000010008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x67}], 0x1}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000006c0)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000100)={r4})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x1}, [@func={0x85, 0x0, 0x1, 0x0, 0x4}]}, &(0x7f00000002c0)='GPL\x00', 0x7ff, 0x55, &(0x7f00000003c0)=""/85, 0x41100, 0x8, '\x00', r2, 0x25, r3, 0x8, &(0x7f00000008c0)={0x4, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000940)=[r0, r0, r0, r0, r0, r0], &(0x7f0000000980)=[{0x4, 0x2, 0x0, 0xc}], 0x10, 0x401}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="b9ff03076003008cb89e08f088a8", 0x0, 0x5da0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

472.214476ms ago: executing program 1 (id=1415):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r0 = socket$kcm(0x2c, 0x3, 0x0)
perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x0) (async)
close(r0) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 32)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, 0x0, 0x0}, 0x94) (async)
r1 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x9, &(0x7f0000000380), 0x98) (async)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000380), 0x12) (async, rerun: 64)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0) (async, rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8b04, &(0x7f0000000040)={'wlan1\x00', @random="f300"}) (async)
r5 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0x13, 0x0, 0x0) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100)={0x7, <r6=>0x0}, 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000e00)={0x3, 0xc, &(0x7f0000000700)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r8 = socket$kcm(0x2, 0xa, 0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={@fallback=r8, 0x34, 0x0, 0x91, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)}, 0x40) (async, rerun: 64)
ioctl$SIOCSIFHWADDR(r8, 0x8918, &(0x7f0000000000)={'ip_vti0\x00', @random="02000300"}) (async, rerun: 64)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r7, 0x18000000000002a0, 0x37, 0x0, &(0x7f0000000040)="d2ff03076003008cb89e08f086ddd6b86e9cbde1768470f96012a257d878da58a5d06db96423beab8cfe40c3ac9065bb096bfb20e4051c", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

336.116889ms ago: executing program 2 (id=1416):
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x2, 0x3, 0x5, &(0x7f0000000240))
r0 = getpid()
syz_open_procfs$namespace(r0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="120000007f00000004000000"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$unix(r1, &(0x7f0000002b00)={&(0x7f00000021c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={0xffffffffffffffff, &(0x7f0000000500), 0x0}, 0x20)
perf_event_open(&(0x7f00000006c0)={0x0, 0x80, 0x9, 0x8d, 0x16, 0x4, 0x0, 0x5, 0x94ba0, 0x48cf3dc79f55ac95, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x10001, 0x4}, 0x100000, 0x0, 0x2, 0x8, 0x0, 0x0, 0x2c, 0x0, 0xc7a8, 0x0, 0x4}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1e, 0x10506, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x1000000000000801, 0x1}, 0x7402, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000"], 0x0}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00'}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff7ffa}, 0x0, 0x35, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000004c0000004c00000002000000000000000000000300000000020000000200000000000000000000000000000105000000080000020000000002000005000000000000000001000000000000000000000001"], 0x0, 0x66, 0x0, 0x1}, 0x28)
socketpair(0x1, 0x5, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020032000b35d25a806f8c6394f90224fc602f0009000a740200053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r4, 0x84, 0x1e, &(0x7f0000000500), 0x4)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000680)={0x0, 0x61, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e1406ca000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

335.443989ms ago: executing program 3 (id=1417):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="08000000040000000400000004"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r1, 0x58, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0xf, &(0x7f0000000940)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41100, 0x40, '\x00', r2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000009c0)=ANY=[@ANYBLOB="941f75fe671e3d30e5cd752c08f2325c72549107e2b000110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000423fad10000000000008500000025000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007000000", @ANYRES32], 0x48)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0}, 0x90)
r5 = socket$kcm(0x2, 0x2, 0x73)
sendmsg$inet(r5, &(0x7f0000000500)={&(0x7f0000000300)={0x2, 0x0, @local}, 0x10, &(0x7f0000000b00)=[{0x0}, {&(0x7f0000000880)="90e6", 0x2}], 0x2}, 0x900000000000000)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="10000000040000000800000002"], 0x48)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x5, 0x7ff}, 0x104101, 0x4, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x6, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x200}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
socket$kcm(0x21, 0x2, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r8, 0x8b26, &(0x7f0000000280)={'wlan1\x00'})
r9 = openat$cgroup_devices(r4, &(0x7f0000000300)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r9, &(0x7f00000000c0)=ANY=[@ANYBLOB='c *:23', @ANYRESHEX=r4], 0xa)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0xfdef)

302.217211ms ago: executing program 1 (id=1418):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={0xffffffffffffffff, 0x18000000000002a0, 0x1c, 0x0, &(0x7f00000011c0)="b9ffddc1ddcccdf175537d53888edfcef6e296510cff24fc83423368", 0x0, 0x600, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x2, 0x640a9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1007f}, 0x94)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)=@phonet={0x23, 0x0, 0x3, 0x4}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000440)="cb4e88a8af3288", 0x7}], 0x1}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="bf16000000000000b7070000010000004070000000000000500000000000e1ff95000000000000002ba76bb33123751c4e345c652fbc1626cca2a2ad75806150ae0209e62751ee04000000670d25010000020000040000009fc404000000c788b277beee11bf9b0a4def23d410f6accd3641110bec4e90a6341965dac03d04683712a0b09edc9e9ef8f6e396ad200e011ea665c45a3449abe802f5ab3e89cf40b8580218ce740068720000074e3e8eea3fd8cf49827ca311f5b87e1ca8433a8acd715f5888b2007f0000000000000000010000000000fb00010000000000414027efc84293af6a22000000005335001db43a5c000000000000000024000000000000000000e75a89faff01210cce39bf405f1e846c1242000000000000cad326ad7add65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d617da7fb5e2a431ab9142f3a06d55740a43088696daaed74b9c5c29647d2f950a959cf9938d6df8600a62e96b7cb8e52cbdc2ba9d580609e31c30891f7e5ff7fd6fce424c2200af6c3784a1975fa657de38a3a32a4fd67ce446ac5431d07db79240acaf091231b986e77d05d988d6edc71df48dca02113a38300c2bf2b5543ffc1669557b3819d8c396d2c2361629d1022f722ec23812770d72cd0010000007889b8c7044f563a1f68d4eff895fdbc463f747c08f40105869035000000000000000000000000000000000000000000000000080000003ddf4aa4b1c8baa0ae6feb6737c275dc2740f742b5425f1d581961471cdb0500000000000000d4123f955267fe4a75c114f874e086287547d4099aeec9f1538ee25a365ccf4a9b604e88e12ff25184d4e3c6f7f623559435b26b50fb7113000000f0bc440550ee91302f5a000000000000000000000000006d0000e67ccc00148ac4c43021cce9f24f4b2f9492c32e7af05c648978d9980ba49789906d923e4916f390ab7edcd3f5b9fe14446dd446a52131c464f2c08efb46d934615c8631b7c42efd0294bea179b0433f5c899119ec2c3f4523110c0acef5383b5a2720caeb68f1e9c05b05d89467ded84da093dea262e51811e2d7fa515722516bd5ef6c8c4966e5937562a5648a696ad3a042a7097ddefe0671f977fb145890f5bf41ba92b8c4c8b14f0d4a880ef4518bb32881dfd15dc84e79d326337e21e041654f06bd7f000000000000000000000000000000282ffe0000000009350cfa3ab109ab4a7d95938c5334a0dd177f1a7389ee570d95e543a27546d3770740f354df6dd6b1bfe4104d2262f33f596d606ccce75a3c3d5f9ad94a7316b0c6ad14f1398a6b39b07121f636da418b34d48677cf8d2d99ee8ac50142bcdcc73dd73cc6ec46896ffb35ac82ac7a9309ea07396d2814dc630ad1a9913934849be25f7b81b59aaa9fa2e9d6ecafcfa1de81b2d3581ab1138537f98d2240b6c2bf40569da4e2bb77532ab9220347d78319617d17e14f7331486e86b2145980b95c88ae11b1c6b6ea6c2b2311d6ce6315cc451dd50ac746ac"], &(0x7f0000000140)='GPL\x00'}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0xa, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000002180)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x44)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xfa, 0x0, &(0x7f0000000100)="b90000000044268cb89e14f086dd65e0ffff01032c00631177fbac141416e000030a44079f030000000000000000000000222f050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa007346111960500000000000000000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0xfe, 0x60000000, 0x4c, 0x0, &(0x7f0000000ac0)="4313a5e1de73ef94a52904aad04fce16f49604c1dc63d9c8cc35e6d2e21bad5f52f04dde32f51f1857b0a340996c2daaeef13787fa577badae0fbafd3f609eda08ec9ebbeddabc201ebe14f7", &(0x7f0000000a00), 0x0, 0x700}, 0x50)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000002c0)=r4, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000006c0)="d800000018007b18e00212ba0d8105040a0a1100fe0f040b067c55a1bc0009001e0006990300000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b01602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5", 0xd2}, {&(0x7f00000004c0)="f80ec2e2badd", 0x6}], 0x2, 0x0, 0x0, 0x2663}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x806, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x9006000, &(0x7f00000030c0)=[{&(0x7f0000000180)="1400000016001963d25a80648c56915a15aa2bfe", 0x14}], 0x1}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x0, 0x34, 0x2e, &(0x7f0000000000)="7a31018b37b275f0b985939297430da125c2e29f2629aac65c470e2ecaf6f9577d38607eff1ea5e20654dbb4d2bb593001edcd2f", &(0x7f0000000040)=""/46, 0x8, 0x0, 0x37, 0x81, &(0x7f0000000080)="30852656ba4d64913700b54c5b25be96180c47a0ce780e9086cf9fae1e45daaec8d341af0b4a1f22f2ac798643afca090afb900ae1d6fb", &(0x7f0000000180)="f0205b9a2a303a9ab9be702feb471420dba0c34a1ce418af070bc69b32c1b263eb53897e3bf720c625c0a33552f2862e63fdb5f109104b986f8732bef639cb6dc42e25021364b73cf0557d8de3af3be35a346263b47ad268c59dd117957faa02eeef44099812b9b57adb3f7434174cb14d553a5c3239dc41fe4597e1033f568e2d", 0x2, 0x0, 0xf77}, 0x50)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @empty}, 0x10, 0x0}, 0x300060c1)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x81)

74.740768ms ago: executing program 3 (id=1419):
socket$kcm(0x10, 0x2, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x1040, 0x3fff7ffc}, 0x10000, 0x32, 0x43a1bd75, 0x7, 0xc, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x7, 0x0, 0x0) (fail_nth: 1)

59.364709ms ago: executing program 1 (id=1420):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x3, 0x106)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x12, 0x6, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x40}, 0x50)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4c, &(0x7f0000000000), 0x4)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x5, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2002009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xf}, 0x90208, 0x0, 0x310c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket$kcm(0xa, 0x2, 0x73)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8}, 0x94)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, 0x0)
socket$kcm(0x10, 0x3, 0x10)
socket$kcm(0x2, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000070000000200000007"], 0x50)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
socket$kcm(0x2, 0x3, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[], 0x0, 0x32, 0x0, 0x1}, 0x28)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cpuacct.usage_all\x00', 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x2, {0x2, 0x0, @empty}}, 0x80, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0x18, 0x68000000}, 0x0)
r3 = socket$kcm(0xa, 0x6, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002280)=ANY=[@ANYBLOB="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"/3636], &(0x7f0000000040)='GPL\x00', 0x4, 0xfdc0, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x70)
setsockopt$sock_attach_bpf(r3, 0x29, 0x22, &(0x7f0000000100)=r4, 0x120)
socket$kcm(0xa, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x44}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x80)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r5)

0s ago: executing program 0 (id=1421):
socketpair(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x64)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0x1, <r0=>0xffffffffffffffff}, 0x4)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@float={0x4, 0x0, 0x0, 0x10, 0x10}]}, {0x0, [0x61, 0x61, 0x2e, 0x61]}}, &(0x7f0000000280)=""/155, 0x2a, 0x9b, 0x1, 0x6, 0x10000}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x10001, '\x00', 0x0, r1, 0x4, 0x2, 0x5}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0, 0x10000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="18000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x19, 0xf, &(0x7f0000000000)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b70200001400009e219999dcade5b2c9f000b703000000000d008500000031"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000028000000280000000200000000000000000000030000000000000000000000000000000000000000000000010502"], 0x0, 0x42}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x4, &(0x7f0000000000)='%', 0x0, 0xd01, 0x80040000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x6, 0x66, &(0x7f00000006c0)=""/102, 0x41100, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
socket$kcm(0x11, 0x3, 0x0)

kernel console output (not intermixed with test programs):


[  174.142479][ T6974]  __se_sys_sendmsg+0x1c2/0x2b0
[  174.147473][ T6974]  ? __x64_sys_sendmsg+0x80/0x80
[  174.152542][ T6974]  ? lockdep_hardirqs_on+0x98/0x150
[  174.158490][ T6974]  do_syscall_64+0x55/0xb0
[  174.163160][ T6974]  ? clear_bhb_loop+0x40/0x90
[  174.168694][ T6974]  ? clear_bhb_loop+0x40/0x90
[  174.174029][ T6974]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  174.180136][ T6974] RIP: 0033:0x7f029d19ce59
[  174.185571][ T6974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  174.205570][ T6974] RSP: 002b:00007f029df8e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.214300][ T6974] RAX: ffffffffffffffda RBX: 00007f029d416090 RCX: 00007f029d19ce59
[  174.222925][ T6974] RDX: 0000000000000080 RSI: 00002000000011c0 RDI: 0000000000000003
[  174.231385][ T6974] RBP: 00007f029df8e090 R08: 0000000000000000 R09: 0000000000000000
[  174.239657][ T6974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  174.249073][ T6974] R13: 00007f029d416128 R14: 00007f029d416090 R15: 00007ffe4ba49088
[  174.257535][ T6974]  </TASK>
[  174.506531][ T6979] netlink: 'syz.0.396': attribute type 1 has an invalid length.
[  174.521618][ T6979] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.396'.
[  174.535295][ T6981] netlink: 152 bytes leftover after parsing attributes in process `syz.2.397'.
[  174.570285][ T6981] bond0: (slave bond_slave_0): Releasing backup interface
[  174.658505][ T6981] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  174.931836][ T5787] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  174.939748][ T5787] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  175.365447][ T5793] Bluetooth: Frame is too long (len 149, expected len 4)
[  175.702986][ T7000] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.728400][ T7000] netlink: 'syz.1.405': attribute type 10 has an invalid length.
[  175.819342][ T7004] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.406'.
[  175.829679][ T7003] netlink: 158020 bytes leftover after parsing attributes in process `syz.2.407'.
[  175.843417][ T7004] netlink: 6320 bytes leftover after parsing attributes in process `syz.3.406'.
[  175.860089][ T7004] netlink: 'syz.3.406': attribute type 10 has an invalid length.
[  175.931919][ T7004] team0: Port device geneve1 added
[  175.969378][ T7004] syz.3.406 (7004) used greatest stack depth: 19944 bytes left
[  176.199801][ T5793] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  176.207946][ T5793] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  176.286464][ T5787] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  176.294739][ T5787] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  176.365706][ T5787] Bluetooth: Frame is too long (len 149, expected len 4)
[  177.222765][ T7034] netlink: 'syz.1.418': attribute type 10 has an invalid length.
[  177.635552][ T5787] Bluetooth: Frame is too long (len 149, expected len 4)
[  177.742117][ T5787] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  177.750755][ T5787] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  178.731709][ T7068] netlink: 'syz.0.430': attribute type 10 has an invalid length.
[  178.994098][ T7076] FAULT_INJECTION: forcing a failure.
[  178.994098][ T7076] name failslab, interval 1, probability 0, space 0, times 0
[  179.010134][ T7077] netlink: 'syz.1.435': attribute type 10 has an invalid length.
[  179.036902][ T7076] CPU: 0 PID: 7076 Comm: syz.3.432 Not tainted syzkaller #0
[  179.044321][ T7076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  179.054477][ T7076] Call Trace:
[  179.057800][ T7076]  <TASK>
[  179.060856][ T7076]  dump_stack_lvl+0x18c/0x250
[  179.065593][ T7076]  ? show_regs_print_info+0x20/0x20
[  179.070945][ T7076]  ? load_image+0x420/0x420
[  179.075754][ T7076]  ? verify_lock_unused+0x140/0x140
[  179.081698][ T7076]  should_fail_ex+0x39d/0x4d0
[  179.086840][ T7076]  should_failslab+0x9/0x20
[  179.091418][ T7076]  slab_pre_alloc_hook+0x59/0x310
[  179.096577][ T7076]  kmem_cache_alloc+0x5a/0x2d0
[  179.101671][ T7076]  ? skb_clone+0x1eb/0x370
[  179.106288][ T7076]  skb_clone+0x1eb/0x370
[  179.110701][ T7076]  __netlink_deliver_tap+0x41c/0x830
[  179.116307][ T7076]  ? netlink_deliver_tap+0x2e/0x1b0
[  179.121565][ T7076]  netlink_deliver_tap+0x19c/0x1b0
[  179.126846][ T7076]  netlink_unicast+0x72c/0x8d0
[  179.131691][ T7076]  netlink_sendmsg+0x8d0/0xbf0
[  179.136482][ T7076]  ? netlink_getsockopt+0x590/0x590
[  179.141913][ T7076]  ? aa_sock_msg_perm+0x94/0x150
[  179.146917][ T7076]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  179.152352][ T7076]  ? security_socket_sendmsg+0x80/0xa0
[  179.158246][ T7076]  ? netlink_getsockopt+0x590/0x590
[  179.163925][ T7076]  ____sys_sendmsg+0x5ba/0x960
[  179.168729][ T7076]  ? __asan_memset+0x22/0x40
[  179.173555][ T7076]  ? __sys_sendmsg_sock+0x30/0x30
[  179.178616][ T7076]  ? __import_iovec+0x5f2/0x850
[  179.183936][ T7076]  ? import_iovec+0x73/0xa0
[  179.188568][ T7076]  ___sys_sendmsg+0x2a6/0x360
[  179.193638][ T7076]  ? get_pid_task+0x20/0x1e0
[  179.198363][ T7076]  ? __sys_sendmsg+0x2a0/0x2a0
[  179.203211][ T7076]  ? __lock_acquire+0x7d40/0x7d40
[  179.208310][ T7076]  __se_sys_sendmsg+0x1c2/0x2b0
[  179.213351][ T7076]  ? __x64_sys_sendmsg+0x80/0x80
[  179.218343][ T7076]  ? lockdep_hardirqs_on+0x98/0x150
[  179.223579][ T7076]  do_syscall_64+0x55/0xb0
[  179.228072][ T7076]  ? clear_bhb_loop+0x40/0x90
[  179.232898][ T7076]  ? clear_bhb_loop+0x40/0x90
[  179.237921][ T7076]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  179.244307][ T7076] RIP: 0033:0x7f6a1859ce59
[  179.248942][ T7076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  179.269204][ T7076] RSP: 002b:00007f6a1951c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.278112][ T7076] RAX: ffffffffffffffda RBX: 00007f6a18815fa0 RCX: 00007f6a1859ce59
[  179.286471][ T7076] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000003
[  179.294985][ T7076] RBP: 00007f6a1951c090 R08: 0000000000000000 R09: 0000000000000000
[  179.303257][ T7076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.312216][ T7076] R13: 00007f6a18816038 R14: 00007f6a18815fa0 R15: 00007fff497c45e8
[  179.320414][ T7076]  </TASK>
[  179.352730][ T7077] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  179.394026][ T7076] netlink: 'syz.3.432': attribute type 10 has an invalid length.
[  179.441722][ T7076] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  179.600924][ T5787] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  179.609088][ T5787] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  179.848094][ T7091] netlink: 'syz.3.438': attribute type 39 has an invalid length.
[  180.760376][ T7091] hsr_slave_1 (unregistering): left promiscuous mode
[  181.484088][ T7161] netlink: 'syz.2.443': attribute type 10 has an invalid length.
[  181.650644][ T7167] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.446'.
[  181.809219][ T7167] netlink: 'syz.3.446': attribute type 10 has an invalid length.
[  181.853605][ T7167] veth0_macvtap: left promiscuous mode
[  181.958770][ T5793] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  181.966530][ T5793] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  182.865182][ T7185] bridge_slave_1: left allmulticast mode
[  182.885208][ T7185] bridge_slave_1: left promiscuous mode
[  182.907998][ T7185] bridge0: port 2(bridge_slave_1) entered disabled state
[  182.984408][ T7185] bridge_slave_0: left allmulticast mode
[  183.016389][ T7185] bridge_slave_0: left promiscuous mode
[  183.033968][ T7185] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.427306][ T7189] netlink: 'syz.2.456': attribute type 39 has an invalid length.
[  183.603373][ T7185] syz.3.454 (7185) used greatest stack depth: 19792 bytes left
[  183.748530][ T7195] netlink: 'syz.1.458': attribute type 10 has an invalid length.
[  183.765844][ T5787] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  183.774227][ T5787] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  183.993748][ T7204] FAULT_INJECTION: forcing a failure.
[  183.993748][ T7204] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.043445][ T7204] CPU: 0 PID: 7204 Comm: syz.2.460 Not tainted syzkaller #0
[  184.050923][ T7204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  184.061376][ T7204] Call Trace:
[  184.064738][ T7204]  <TASK>
[  184.067782][ T7204]  dump_stack_lvl+0x18c/0x250
[  184.072718][ T7204]  ? show_regs_print_info+0x20/0x20
[  184.078029][ T7204]  ? load_image+0x420/0x420
[  184.082789][ T7204]  ? __might_fault+0xaa/0x120
[  184.087542][ T7204]  ? __lock_acquire+0x7d40/0x7d40
[  184.092672][ T7204]  should_fail_ex+0x39d/0x4d0
[  184.097446][ T7204]  _copy_from_iter+0x1d9/0x12e0
[  184.102585][ T7204]  ? __might_fault+0xaa/0x120
[  184.107345][ T7204]  ? _copy_from_iter+0x24e/0x12e0
[  184.112459][ T7204]  ? __virt_addr_valid+0x18c/0x540
[  184.117829][ T7204]  ? __lock_acquire+0x7d40/0x7d40
[  184.123111][ T7204]  ? copyout_mc+0x70/0x70
[  184.127625][ T7204]  ? copyout_mc+0x70/0x70
[  184.132123][ T7204]  ? __virt_addr_valid+0x18c/0x540
[  184.137538][ T7204]  ? page_copy_sane+0x16a/0x270
[  184.142504][ T7204]  copy_page_from_iter+0x7b/0x100
[  184.147796][ T7204]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  184.154386][ T7204]  tun_get_user+0x15db/0x3ca0
[  184.159509][ T7204]  ? aa_file_perm+0x11b/0xee0
[  184.164634][ T7204]  ? rcu_read_unlock+0xa0/0xa0
[  184.169759][ T7204]  ? tun_get+0x1c/0x2e0
[  184.174183][ T7204]  ? __lock_acquire+0x7d40/0x7d40
[  184.179851][ T7204]  ? tun_get+0x1c/0x2e0
[  184.184365][ T7204]  tun_chr_write_iter+0x119/0x200
[  184.190473][ T7204]  vfs_write+0x46c/0x990
[  184.195000][ T7204]  ? file_end_write+0x250/0x250
[  184.200114][ T7204]  ? __fget_files+0x43d/0x4b0
[  184.204990][ T7204]  ? __fdget_pos+0x1d8/0x330
[  184.209676][ T7204]  ? ksys_write+0x75/0x260
[  184.214355][ T7204]  ksys_write+0x150/0x260
[  184.218877][ T7204]  ? __ia32_sys_read+0x90/0x90
[  184.223744][ T7204]  ? lockdep_hardirqs_on+0x98/0x150
[  184.229085][ T7204]  do_syscall_64+0x55/0xb0
[  184.233670][ T7204]  ? clear_bhb_loop+0x40/0x90
[  184.238415][ T7204]  ? clear_bhb_loop+0x40/0x90
[  184.243423][ T7204]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  184.249843][ T7204] RIP: 0033:0x7fd4dbf9ce59
[  184.254525][ T7204] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  184.258507][ T7206] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.462'.
[  184.274948][ T7204] RSP: 002b:00007fd4dce0a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  184.274981][ T7204] RAX: ffffffffffffffda RBX: 00007fd4dc215fa0 RCX: 00007fd4dbf9ce59
[  184.274994][ T7204] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 00000000000000c8
[  184.275007][ T7204] RBP: 00007fd4dce0a090 R08: 0000000000000000 R09: 0000000000000000
[  184.275019][ T7204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.275031][ T7204] R13: 00007fd4dc216038 R14: 00007fd4dc215fa0 R15: 00007ffe7e270708
[  184.275061][ T7204]  </TASK>
[  185.143311][ T7208] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.463'.
[  185.451995][ T7217] netlink: 'syz.0.468': attribute type 39 has an invalid length.
[  189.047448][ T7217] hsr_slave_1 (unregistering): left promiscuous mode
[  189.925743][ T7221] netlink: 'syz.2.469': attribute type 10 has an invalid length.
[  190.498639][ T7251] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.477'.
[  190.986391][ T7260] netlink: 'syz.3.480': attribute type 39 has an invalid length.
[  191.665558][ T7263] netlink: 'syz.1.481': attribute type 10 has an invalid length.
[  192.135433][ T5787] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  192.143693][ T5787] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  192.347274][ T7288] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.492'.
[  192.406280][ T7292] netlink: 'syz.0.493': attribute type 3 has an invalid length.
[  192.431215][ T7292] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.493'.
[  192.770444][ T7299] netlink: 'syz.1.495': attribute type 10 has an invalid length.
[  193.183995][ T5787] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  193.192479][ T5787] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  193.281050][ T7313] netlink: 'syz.2.500': attribute type 39 has an invalid length.
[  194.722404][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  194.731489][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  194.815882][ T7334] netlink: 'syz.1.508': attribute type 10 has an invalid length.
[  195.057375][ T7336] dvmrp1: tun_chr_ioctl cmd 1074025677
[  195.063086][ T7336] dvmrp1: linktype set to 768
[  195.126403][ T7336] dvmrp1: tun_chr_ioctl cmd 1074812117
[  195.172787][ T5787] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  195.180663][ T5787] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  195.323284][ T7345] netlink: 'syz.2.513': attribute type 20 has an invalid length.
[  195.344285][ T7345] netlink: 'syz.2.513': attribute type 21 has an invalid length.
[  195.354687][ T7345] netlink: 'syz.2.513': attribute type 23 has an invalid length.
[  195.365214][ T7345] netlink: 'syz.2.513': attribute type 25 has an invalid length.
[  195.402945][ T7345] netlink: 'syz.2.513': attribute type 27 has an invalid length.
[  195.427339][ T7345] netlink: 'syz.2.513': attribute type 28 has an invalid length.
[  195.444271][ T7345] netlink: 'syz.2.513': attribute type 29 has an invalid length.
[  195.454389][ T7345] netlink: 'syz.2.513': attribute type 30 has an invalid length.
[  195.655506][ T7353] netlink: 'syz.0.515': attribute type 39 has an invalid length.
[  196.019115][ T7358] netlink: 'syz.3.520': attribute type 10 has an invalid length.
[  197.250126][ T7380] netlink: 140 bytes leftover after parsing attributes in process `syz.0.526'.
[  198.037593][ T7393] FAULT_INJECTION: forcing a failure.
[  198.037593][ T7393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.124595][ T7393] CPU: 0 PID: 7393 Comm: syz.1.531 Not tainted syzkaller #0
[  198.132147][ T7393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  198.142608][ T7393] Call Trace:
[  198.145940][ T7393]  <TASK>
[  198.149925][ T7393]  dump_stack_lvl+0x18c/0x250
[  198.154951][ T7393]  ? show_regs_print_info+0x20/0x20
[  198.160415][ T7393]  ? load_image+0x420/0x420
[  198.165168][ T7393]  ? __might_fault+0xaa/0x120
[  198.170386][ T7393]  ? __lock_acquire+0x7d40/0x7d40
[  198.175840][ T7393]  should_fail_ex+0x39d/0x4d0
[  198.180836][ T7393]  _copy_from_user+0x2f/0xe0
[  198.185600][ T7393]  ____sys_sendmsg+0x2fd/0x960
[  198.190636][ T7393]  ? __lock_acquire+0x7d40/0x7d40
[  198.196467][ T7393]  ? __sys_sendmsg_sock+0x30/0x30
[  198.201608][ T7393]  ? __import_iovec+0x3fa/0x850
[  198.206921][ T7393]  ? import_iovec+0x73/0xa0
[  198.212367][ T7393]  ___sys_sendmsg+0x2a6/0x360
[  198.217399][ T7393]  ? get_pid_task+0x20/0x1e0
[  198.222155][ T7393]  ? __sys_sendmsg+0x2a0/0x2a0
[  198.227197][ T7393]  ? __lock_acquire+0x7d40/0x7d40
[  198.232509][ T7393]  __se_sys_sendmsg+0x1c2/0x2b0
[  198.237444][ T7393]  ? __x64_sys_sendmsg+0x80/0x80
[  198.242576][ T7393]  ? lockdep_hardirqs_on+0x98/0x150
[  198.248027][ T7393]  do_syscall_64+0x55/0xb0
[  198.252787][ T7393]  ? clear_bhb_loop+0x40/0x90
[  198.257700][ T7393]  ? clear_bhb_loop+0x40/0x90
[  198.262452][ T7393]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.268705][ T7393] RIP: 0033:0x7f029d19ce59
[  198.273398][ T7393] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  198.294375][ T7393] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  198.303066][ T7393] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  198.311218][ T7393] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  198.320916][ T7393] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  198.329339][ T7393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.337738][ T7393] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  198.346224][ T7393]  </TASK>
[  199.505919][ T7426] netlink: 132 bytes leftover after parsing attributes in process `syz.0.540'.
[  199.979750][ T7441] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  200.335454][ T7448] netlink: 132 bytes leftover after parsing attributes in process `syz.1.546'.
[  201.673941][ T7468] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.554'.
[  202.406524][ T7472] validate_nla: 1 callbacks suppressed
[  202.406555][ T7472] netlink: 'syz.2.555': attribute type 10 has an invalid length.
[  202.489221][ T7477] netlink: 'syz.1.557': attribute type 10 has an invalid length.
[  202.675263][ T7477] veth1_vlan: left allmulticast mode
[  202.682305][ T7477] macvlan0: left promiscuous mode
[  202.690262][ T7477] macvlan0: left allmulticast mode
[  202.759038][ T7477] team0: Port device macvlan0 added
[  203.718962][ T7501] netlink: 'syz.1.567': attribute type 10 has an invalid length.
[  204.278489][ T7509] netlink: 'syz.2.569': attribute type 39 has an invalid length.
[  204.791171][ T7513] netlink: 'syz.1.571': attribute type 10 has an invalid length.
[  204.838486][ T7513] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  205.704003][ T7533] netlink: 'syz.3.579': attribute type 10 has an invalid length.
[  206.138180][ T7541] netlink: 44 bytes leftover after parsing attributes in process `syz.1.581'.
[  206.881629][ T5787] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  206.889613][ T5787] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  206.911567][ T7555] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.585'.
[  207.877442][ T7576] netlink: 'syz.2.592': attribute type 10 has an invalid length.
[  208.910842][ T7585] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.598'.
[  209.420384][ T5793] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  209.428266][ T5793] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  210.057167][ T7606] netlink: 'syz.2.607': attribute type 10 has an invalid length.
[  210.158098][ T7613] netlink: 64535 bytes leftover after parsing attributes in process `syz.0.610'.
[  210.454412][ T7618] netlink: 'syz.3.612': attribute type 21 has an invalid length.
[  210.503513][ T7620] netlink: 'syz.3.612': attribute type 1 has an invalid length.
[  210.887055][ T5793] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  210.895217][ T5793] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  211.125306][ T7630] syz.1.617 uses obsolete (PF_INET,SOCK_PACKET)
[  211.784072][ T7642] FAULT_INJECTION: forcing a failure.
[  211.784072][ T7642] name failslab, interval 1, probability 0, space 0, times 0
[  211.837226][ T7642] CPU: 0 PID: 7642 Comm: syz.1.623 Not tainted syzkaller #0
[  211.845360][ T7642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  211.856190][ T7642] Call Trace:
[  211.859860][ T7642]  <TASK>
[  211.863214][ T7642]  dump_stack_lvl+0x18c/0x250
[  211.868012][ T7642]  ? show_regs_print_info+0x20/0x20
[  211.873469][ T7642]  ? load_image+0x420/0x420
[  211.878435][ T7642]  ? __might_sleep+0xe0/0xe0
[  211.883377][ T7642]  ? __lock_acquire+0x7d40/0x7d40
[  211.888493][ T7642]  should_fail_ex+0x39d/0x4d0
[  211.893471][ T7642]  should_failslab+0x9/0x20
[  211.898034][ T7642]  slab_pre_alloc_hook+0x59/0x310
[  211.903219][ T7642]  ? __ns_get_path+0x2c/0x640
[  211.907994][ T7642]  kmem_cache_alloc_lru+0x4d/0x2d0
[  211.913496][ T7642]  ? new_inode_pseudo+0x82/0x1d0
[  211.918796][ T7642]  new_inode_pseudo+0x82/0x1d0
[  211.923731][ T7642]  ? __ns_get_path+0x2c/0x640
[  211.929426][ T7642]  __ns_get_path+0x24d/0x640
[  211.934502][ T7642]  ? _raw_spin_unlock+0x28/0x40
[  211.939895][ T7642]  ns_get_path+0x54/0x90
[  211.944297][ T7642]  proc_ns_get_link+0xf8/0x240
[  211.949126][ T7642]  ? proc_ns_instantiate+0xf0/0xf0
[  211.954310][ T7642]  ? bpf_lsm_inode_follow_link+0x9/0x10
[  211.959914][ T7642]  ? security_inode_follow_link+0xb7/0x100
[  211.965970][ T7642]  ? proc_ns_instantiate+0xf0/0xf0
[  211.971420][ T7642]  pick_link+0x666/0xdd0
[  211.975933][ T7642]  step_into+0xc4d/0xf20
[  211.980487][ T7642]  ? rcu_read_lock_any_held+0xb4/0x140
[  211.986127][ T7642]  ? rcu_read_lock_bh_held+0x100/0x100
[  211.991927][ T7642]  ? set_root+0x3a0/0x3a0
[  211.996417][ T7642]  ? d_splice_alias+0x114/0x330
[  212.001530][ T7642]  path_openat+0x1714/0x3230
[  212.006262][ T7642]  ? do_filp_open+0x430/0x430
[  212.011785][ T7642]  ? __virt_addr_valid+0x18c/0x540
[  212.017867][ T7642]  do_filp_open+0x1f5/0x430
[  212.022663][ T7642]  ? vfs_tmpfile+0x490/0x490
[  212.027555][ T7642]  ? _raw_spin_unlock+0x28/0x40
[  212.032541][ T7642]  ? alloc_fd+0x58f/0x630
[  212.036933][ T7642]  do_sys_openat2+0x134/0x1d0
[  212.041690][ T7642]  ? perf_trace_preemptirq_template+0x269/0x330
[  212.048071][ T7642]  ? do_sys_open+0xe0/0xe0
[  212.052611][ T7642]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  212.058714][ T7642]  ? lock_chain_count+0x20/0x20
[  212.063693][ T7642]  __x64_sys_openat+0x139/0x160
[  212.068789][ T7642]  do_syscall_64+0x55/0xb0
[  212.073508][ T7642]  ? clear_bhb_loop+0x40/0x90
[  212.078236][ T7642]  ? clear_bhb_loop+0x40/0x90
[  212.082946][ T7642]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  212.089057][ T7642] RIP: 0033:0x7f029d15d68e
[  212.093500][ T7642] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  212.114175][ T7642] RSP: 002b:00007f029dfaeec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  212.122640][ T7642] RAX: ffffffffffffffda RBX: 00007f029dfaf6c0 RCX: 00007f029d15d68e
[  212.130895][ T7642] RDX: 0000000000000002 RSI: 00007f029dfaef90 RDI: ffffffffffffff9c
[  212.138967][ T7642] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  212.147194][ T7642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  212.156496][ T7642] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  212.164977][ T7642]  </TASK>
[  212.462518][ T7650] netlink: 'syz.2.626': attribute type 10 has an invalid length.
[  212.686152][ T5793] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  212.700077][ T5793] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  212.710319][ T5793] CPU: 0 PID: 5793 Comm: kworker/u5:6 Not tainted syzkaller #0
[  212.718066][ T5793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  212.729155][ T5793] Workqueue: hci2 hci_rx_work
[  212.734079][ T5793] Call Trace:
[  212.737494][ T5793]  <TASK>
[  212.740497][ T5793]  dump_stack_lvl+0x18c/0x250
[  212.745460][ T5793]  ? show_regs_print_info+0x20/0x20
[  212.750755][ T5793]  ? load_image+0x420/0x420
[  212.755372][ T5793]  sysfs_create_dir_ns+0x26e/0x2a0
[  212.760734][ T5793]  ? sysfs_warn_dup+0xa0/0xa0
[  212.765565][ T5793]  ? do_raw_spin_unlock+0x121/0x230
[  212.770945][ T5793]  kobject_add_internal+0x61c/0xcc0
[  212.776238][ T5793]  kobject_add+0x164/0x240
[  212.780837][ T5793]  ? __rwlock_init+0x150/0x150
[  212.785967][ T5793]  ? kobject_init+0x1e0/0x1e0
[  212.790713][ T5793]  ? _raw_spin_unlock+0x28/0x40
[  212.795988][ T5793]  ? get_device_parent+0x366/0x390
[  212.801274][ T5793]  device_add+0x408/0xc50
[  212.805736][ T5793]  hci_conn_add_sysfs+0xd5/0x1e0
[  212.810866][ T5793]  le_conn_complete_evt+0xf5d/0x1540
[  212.816303][ T5793]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  212.822737][ T5793]  ? bt_info+0x180/0x180
[  212.827045][ T5793]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  212.832916][ T5793]  ? skb_pull_data+0xfb/0x200
[  212.837833][ T5793]  hci_le_conn_complete_evt+0x187/0x440
[  212.843631][ T5793]  ? hci_remote_host_features_evt+0x150/0x150
[  212.850370][ T5793]  hci_event_packet+0x7ba/0x1270
[  212.855548][ T5793]  ? bis_list+0x290/0x290
[  212.860271][ T5793]  ? lockdep_hardirqs_on+0x98/0x150
[  212.866126][ T5793]  ? hci_send_to_monitor+0xd7/0x4f0
[  212.871666][ T5793]  hci_rx_work+0x43a/0xd60
[  212.876759][ T5793]  ? process_scheduled_works+0x96f/0x15d0
[  212.882650][ T5793]  process_scheduled_works+0xa5d/0x15d0
[  212.888497][ T5793]  ? worker_attach_to_pool+0x380/0x380
[  212.894209][ T5793]  ? assign_work+0x3d2/0x5d0
[  212.899587][ T5793]  worker_thread+0xa55/0xfc0
[  212.904543][ T5793]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  212.910604][ T5793]  ? _raw_spin_unlock+0x40/0x40
[  212.916581][ T5793]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  212.922801][ T5793]  kthread+0x2fa/0x390
[  212.926919][ T5793]  ? pr_cont_work+0x560/0x560
[  212.931673][ T5793]  ? kthread_blkcg+0xd0/0xd0
[  212.936313][ T5793]  ret_from_fork+0x48/0x80
[  212.941230][ T5793]  ? kthread_blkcg+0xd0/0xd0
[  212.945947][ T5793]  ret_from_fork_asm+0x11/0x20
[  212.950961][ T5793]  </TASK>
[  212.985463][ T7655] netlink: 'syz.1.627': attribute type 3 has an invalid length.
[  213.002341][ T5793] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  213.016996][ T5793] Bluetooth: hci2: failed to register connection device
[  213.028600][ T7655] netlink: 132 bytes leftover after parsing attributes in process `syz.1.627'.
[  214.333105][ T7683] netlink: 'syz.3.640': attribute type 10 has an invalid length.
[  214.538738][ T5793] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  214.547640][ T5793] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  214.582045][ T5793] CPU: 1 PID: 5793 Comm: kworker/u5:6 Not tainted syzkaller #0
[  214.589734][ T5793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  214.600086][ T5793] Workqueue: hci3 hci_rx_work
[  214.604985][ T5793] Call Trace:
[  214.608641][ T5793]  <TASK>
[  214.612006][ T5793]  dump_stack_lvl+0x18c/0x250
[  214.617078][ T5793]  ? show_regs_print_info+0x20/0x20
[  214.622474][ T5793]  ? load_image+0x420/0x420
[  214.627246][ T5793]  sysfs_create_dir_ns+0x26e/0x2a0
[  214.632634][ T5793]  ? sysfs_warn_dup+0xa0/0xa0
[  214.638148][ T5793]  ? do_raw_spin_unlock+0x121/0x230
[  214.643657][ T5793]  kobject_add_internal+0x61c/0xcc0
[  214.649126][ T5793]  kobject_add+0x164/0x240
[  214.653844][ T5793]  ? __rwlock_init+0x150/0x150
[  214.658832][ T5793]  ? kobject_init+0x1e0/0x1e0
[  214.663819][ T5793]  ? _raw_spin_unlock+0x28/0x40
[  214.669035][ T5793]  ? get_device_parent+0x366/0x390
[  214.674387][ T5793]  device_add+0x408/0xc50
[  214.678856][ T5793]  hci_conn_add_sysfs+0xd5/0x1e0
[  214.684487][ T5793]  le_conn_complete_evt+0xf5d/0x1540
[  214.690059][ T5793]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  214.696598][ T5793]  ? bt_info+0x180/0x180
[  214.700920][ T5793]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  214.706736][ T5793]  ? skb_pull_data+0xfb/0x200
[  214.711680][ T5793]  hci_le_conn_complete_evt+0x187/0x440
[  214.718212][ T5793]  ? hci_remote_host_features_evt+0x150/0x150
[  214.724593][ T5793]  hci_event_packet+0x7ba/0x1270
[  214.729944][ T5793]  ? bis_list+0x290/0x290
[  214.734726][ T5793]  ? lockdep_hardirqs_on+0x98/0x150
[  214.740005][ T5793]  ? hci_send_to_monitor+0xd7/0x4f0
[  214.745546][ T5793]  hci_rx_work+0x43a/0xd60
[  214.750166][ T5793]  ? process_scheduled_works+0x96f/0x15d0
[  214.756212][ T5793]  process_scheduled_works+0xa5d/0x15d0
[  214.762272][ T5793]  ? worker_attach_to_pool+0x380/0x380
[  214.767816][ T5793]  ? assign_work+0x3d2/0x5d0
[  214.773431][ T5793]  worker_thread+0xa55/0xfc0
[  214.778354][ T5793]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  214.784709][ T5793]  ? _raw_spin_unlock+0x40/0x40
[  214.790249][ T5793]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  214.796596][ T5793]  kthread+0x2fa/0x390
[  214.800796][ T5793]  ? pr_cont_work+0x560/0x560
[  214.805685][ T5793]  ? kthread_blkcg+0xd0/0xd0
[  214.810533][ T5793]  ret_from_fork+0x48/0x80
[  214.815017][ T5793]  ? kthread_blkcg+0xd0/0xd0
[  214.819794][ T5793]  ret_from_fork_asm+0x11/0x20
[  214.824932][ T5793]  </TASK>
[  214.837678][ T5793] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  214.852377][ T5793] Bluetooth: hci3: failed to register connection device
[  215.037200][ T5787] Bluetooth: hci2: command tx timeout
[  215.366966][ T7689] FAULT_INJECTION: forcing a failure.
[  215.366966][ T7689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.396876][ T7689] CPU: 0 PID: 7689 Comm: syz.3.643 Not tainted syzkaller #0
[  215.404355][ T7689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  215.414466][ T7689] Call Trace:
[  215.417885][ T7689]  <TASK>
[  215.420871][ T7689]  dump_stack_lvl+0x18c/0x250
[  215.425787][ T7689]  ? show_regs_print_info+0x20/0x20
[  215.431265][ T7689]  ? load_image+0x420/0x420
[  215.435941][ T7689]  ? __lock_acquire+0x7d40/0x7d40
[  215.441221][ T7689]  ? snprintf+0xe9/0x140
[  215.445792][ T7689]  should_fail_ex+0x39d/0x4d0
[  215.450672][ T7689]  _copy_to_user+0x2f/0xa0
[  215.455247][ T7689]  simple_read_from_buffer+0xe7/0x150
[  215.460692][ T7689]  proc_fail_nth_read+0x1e8/0x260
[  215.465865][ T7689]  ? proc_fault_inject_write+0x360/0x360
[  215.471593][ T7689]  ? fsnotify_perm+0x271/0x5e0
[  215.476691][ T7689]  ? proc_fault_inject_write+0x360/0x360
[  215.482598][ T7689]  vfs_read+0x28b/0x970
[  215.486944][ T7689]  ? kernel_read+0x1e0/0x1e0
[  215.492428][ T7689]  ? __fget_files+0x28/0x4b0
[  215.497194][ T7689]  ? __fget_files+0x28/0x4b0
[  215.501939][ T7689]  ? __fget_files+0x43d/0x4b0
[  215.506903][ T7689]  ? __fdget_pos+0x2a3/0x330
[  215.511559][ T7689]  ? ksys_read+0x75/0x260
[  215.516048][ T7689]  ksys_read+0x150/0x260
[  215.520365][ T7689]  ? vfs_write+0x990/0x990
[  215.524850][ T7689]  ? lockdep_hardirqs_on+0x98/0x150
[  215.530325][ T7689]  do_syscall_64+0x55/0xb0
[  215.534802][ T7689]  ? clear_bhb_loop+0x40/0x90
[  215.539540][ T7689]  ? clear_bhb_loop+0x40/0x90
[  215.544273][ T7689]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  215.550321][ T7689] RIP: 0033:0x7f6a1855d68e
[  215.554794][ T7689] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  215.574544][ T7689] RSP: 002b:00007f6a1951bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  215.583019][ T7689] RAX: ffffffffffffffda RBX: 00007f6a1951c6c0 RCX: 00007f6a1855d68e
[  215.591139][ T7689] RDX: 000000000000000f RSI: 00007f6a1951c0a0 RDI: 0000000000000004
[  215.599175][ T7689] RBP: 00007f6a1951c090 R08: 0000000000000000 R09: 0000000000000000
[  215.607474][ T7689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.615761][ T7689] R13: 00007f6a18816038 R14: 00007f6a18815fa0 R15: 00007fff497c45e8
[  215.623901][ T7689]  </TASK>
[  216.553038][ T7707] netlink: 'syz.3.652': attribute type 10 has an invalid length.
[  216.567811][ T7708] tap0: tun_chr_ioctl cmd 1074025677
[  216.573582][ T7708] tap0: linktype set to 0
[  216.877521][ T5786] Bluetooth: hci3: command tx timeout
[  217.102656][ T7714] netlink: 'syz.1.662': attribute type 10 has an invalid length.
[  217.280723][ T5786] Bluetooth: hci1: command 0x0406 tx timeout
[  217.280765][ T5791] Bluetooth: hci0: command 0x0406 tx timeout
[  217.295408][ T5791] Bluetooth: hci2: command 0x0406 tx timeout
[  217.527551][ T7726] FAULT_INJECTION: forcing a failure.
[  217.527551][ T7726] name failslab, interval 1, probability 0, space 0, times 0
[  217.561671][ T7726] CPU: 1 PID: 7726 Comm: syz.1.657 Not tainted syzkaller #0
[  217.569489][ T7726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  217.579918][ T7726] Call Trace:
[  217.583264][ T7726]  <TASK>
[  217.586340][ T7726]  dump_stack_lvl+0x18c/0x250
[  217.591171][ T7726]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  217.597583][ T7726]  ? show_regs_print_info+0x20/0x20
[  217.603025][ T7726]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  217.609532][ T7726]  should_fail_ex+0x39d/0x4d0
[  217.614848][ T7726]  should_failslab+0x9/0x20
[  217.619435][ T7726]  slab_pre_alloc_hook+0x59/0x310
[  217.624747][ T7726]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  217.630983][ T7726]  ? sk_prot_alloc+0xe7/0x210
[  217.635820][ T7726]  ? sk_prot_alloc+0xe7/0x210
[  217.640670][ T7726]  __kmem_cache_alloc_node+0x53/0x250
[  217.646404][ T7726]  ? sk_prot_alloc+0xe7/0x210
[  217.651549][ T7726]  __kmalloc+0xa4/0x230
[  217.655951][ T7726]  ? lockdep_hardirqs_on+0x98/0x150
[  217.661301][ T7726]  sk_prot_alloc+0xe7/0x210
[  217.665901][ T7726]  ? sk_alloc+0x24/0x360
[  217.670406][ T7726]  sk_alloc+0x3a/0x360
[  217.674557][ T7726]  pppol2tp_create+0x32/0x200
[  217.680852][ T7726]  pppox_create+0x12b/0x1a0
[  217.685817][ T7726]  __sock_create+0x4a6/0x940
[  217.691104][ T7726]  __sys_socketpair+0x1c1/0x550
[  217.696215][ T7726]  __x64_sys_socketpair+0x9b/0xb0
[  217.701392][ T7726]  do_syscall_64+0x55/0xb0
[  217.705996][ T7726]  ? clear_bhb_loop+0x40/0x90
[  217.710849][ T7726]  ? clear_bhb_loop+0x40/0x90
[  217.715595][ T7726]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  217.721674][ T7726] RIP: 0033:0x7f029d19ce59
[  217.726338][ T7726] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  217.746639][ T7726] RSP: 002b:00007f029df8e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  217.755426][ T7726] RAX: ffffffffffffffda RBX: 00007f029d416090 RCX: 00007f029d19ce59
[  217.764183][ T7726] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000018
[  217.773082][ T7726] RBP: 00007f029df8e090 R08: 0000000000000000 R09: 0000000000000000
[  217.782258][ T7726] R10: 0000200000001780 R11: 0000000000000246 R12: 0000000000000001
[  217.791180][ T7726] R13: 00007f029d416128 R14: 00007f029d416090 R15: 00007ffe4ba49088
[  217.801160][ T7726]  </TASK>
[  218.069362][ T7738] IPv6: Can't replace route, no match found
[  218.561650][ T7752] netlink: 'syz.2.667': attribute type 10 has an invalid length.
[  218.584074][ T7749] tap0: tun_chr_ioctl cmd 1074025677
[  218.589820][ T7749] tap0: linktype set to 0
[  218.956952][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  218.970848][ T7760] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.670'.
[  219.137443][ T7762] netlink: 6 bytes leftover after parsing attributes in process `syz.0.671'.
[  219.173942][ T7762] openvswitch: netlink: Flow actions attr not present in new flow.
[  219.376568][   T51] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  219.386256][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  219.397795][   T51] CPU: 0 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  219.405803][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  219.416635][   T51] Workqueue: hci0 hci_rx_work
[  219.421398][   T51] Call Trace:
[  219.424937][   T51]  <TASK>
[  219.428101][   T51]  dump_stack_lvl+0x18c/0x250
[  219.433024][   T51]  ? show_regs_print_info+0x20/0x20
[  219.438569][   T51]  ? load_image+0x420/0x420
[  219.443253][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  219.448441][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  219.453621][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  219.459514][   T51]  kobject_add_internal+0x61c/0xcc0
[  219.465275][   T51]  kobject_add+0x164/0x240
[  219.470183][   T51]  ? __rwlock_init+0x150/0x150
[  219.475299][   T51]  ? kobject_init+0x1e0/0x1e0
[  219.480696][   T51]  ? _raw_spin_unlock+0x28/0x40
[  219.485720][   T51]  ? get_device_parent+0x366/0x390
[  219.491093][   T51]  device_add+0x408/0xc50
[  219.495595][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  219.500683][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  219.506127][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  219.512648][   T51]  ? bt_info+0x180/0x180
[  219.517174][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  219.523050][   T51]  ? skb_pull_data+0xfb/0x200
[  219.528064][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  219.533772][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  219.540248][   T51]  hci_event_packet+0x7ba/0x1270
[  219.545614][   T51]  ? bis_list+0x290/0x290
[  219.550385][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  219.555726][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  219.561065][   T51]  hci_rx_work+0x43a/0xd60
[  219.565802][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  219.571813][   T51]  process_scheduled_works+0xa5d/0x15d0
[  219.577749][   T51]  ? worker_attach_to_pool+0x380/0x380
[  219.583548][   T51]  ? assign_work+0x3d2/0x5d0
[  219.589225][   T51]  worker_thread+0xa55/0xfc0
[  219.594129][   T51]  kthread+0x2fa/0x390
[  219.598645][   T51]  ? pr_cont_work+0x560/0x560
[  219.603895][   T51]  ? kthread_blkcg+0xd0/0xd0
[  219.609112][   T51]  ret_from_fork+0x48/0x80
[  219.613962][   T51]  ? kthread_blkcg+0xd0/0xd0
[  219.619057][   T51]  ret_from_fork_asm+0x11/0x20
[  219.624184][   T51]  </TASK>
[  219.647934][   T51] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  219.665922][   T51] Bluetooth: hci0: failed to register connection device
[  219.743103][ T7773] netlink: 4 bytes leftover after parsing attributes in process `syz.3.676'.
[  219.869328][ T7775] netlink: 'syz.0.677': attribute type 10 has an invalid length.
[  219.911618][ T7777] netlink: 'syz.1.679': attribute type 10 has an invalid length.
[  220.176605][ T7783] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.681'.
[  220.600943][ T7792] netlink: 'syz.2.683': attribute type 2 has an invalid length.
[  220.627269][ T7792] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.683'.
[  220.873329][ T7805] IPv6: Can't replace route, no match found
[  221.208052][ T7814] netlink: 'syz.3.692': attribute type 10 has an invalid length.
[  221.436547][ T7822] netlink: 'syz.0.697': attribute type 3 has an invalid length.
[  221.476934][ T7822] netlink: 132 bytes leftover after parsing attributes in process `syz.0.697'.
[  221.519266][ T7822] netlink: 14 bytes leftover after parsing attributes in process `syz.0.697'.
[  221.765687][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  221.857144][   T51] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  221.865295][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  221.876235][   T51] CPU: 1 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  221.883724][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  221.894122][   T51] Workqueue: hci3 hci_rx_work
[  221.898895][   T51] Call Trace:
[  221.902227][   T51]  <TASK>
[  221.905245][   T51]  dump_stack_lvl+0x18c/0x250
[  221.910126][   T51]  ? show_regs_print_info+0x20/0x20
[  221.915673][   T51]  ? load_image+0x420/0x420
[  221.920868][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  221.926730][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  221.931543][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  221.937086][   T51]  kobject_add_internal+0x61c/0xcc0
[  221.942370][   T51]  kobject_add+0x164/0x240
[  221.947310][   T51]  ? __rwlock_init+0x150/0x150
[  221.952246][   T51]  ? kobject_init+0x1e0/0x1e0
[  221.957094][   T51]  ? _raw_spin_unlock+0x28/0x40
[  221.962341][   T51]  ? get_device_parent+0x366/0x390
[  221.967689][   T51]  device_add+0x408/0xc50
[  221.972076][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  221.977253][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  221.982619][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  221.989492][   T51]  ? bt_info+0x180/0x180
[  221.993956][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  221.999855][   T51]  ? skb_pull_data+0xfb/0x200
[  222.004597][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  222.010549][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  222.018081][   T51]  hci_event_packet+0x7ba/0x1270
[  222.023092][   T51]  ? bis_list+0x290/0x290
[  222.027656][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  222.032911][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  222.038255][   T51]  hci_rx_work+0x43a/0xd60
[  222.042860][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  222.048637][   T51]  process_scheduled_works+0xa5d/0x15d0
[  222.054274][   T51]  ? worker_attach_to_pool+0x380/0x380
[  222.059800][   T51]  ? assign_work+0x3d2/0x5d0
[  222.064514][   T51]  worker_thread+0xa55/0xfc0
[  222.069277][   T51]  kthread+0x2fa/0x390
[  222.073452][   T51]  ? pr_cont_work+0x560/0x560
[  222.078351][   T51]  ? kthread_blkcg+0xd0/0xd0
[  222.082992][   T51]  ret_from_fork+0x48/0x80
[  222.087452][   T51]  ? kthread_blkcg+0xd0/0xd0
[  222.092189][   T51]  ret_from_fork_asm+0x11/0x20
[  222.097529][   T51]  </TASK>
[  222.102515][   T51] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  222.117295][   T51] Bluetooth: hci3: failed to register connection device
[  222.374400][ T7847] FAULT_INJECTION: forcing a failure.
[  222.374400][ T7847] name failslab, interval 1, probability 0, space 0, times 0
[  222.399004][ T7847] CPU: 0 PID: 7847 Comm: syz.1.706 Not tainted syzkaller #0
[  222.407013][ T7847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  222.417404][ T7847] Call Trace:
[  222.420768][ T7847]  <TASK>
[  222.423768][ T7847]  dump_stack_lvl+0x18c/0x250
[  222.428526][ T7847]  ? show_regs_print_info+0x20/0x20
[  222.434247][ T7847]  ? load_image+0x420/0x420
[  222.438993][ T7847]  ? __might_sleep+0xe0/0xe0
[  222.443883][ T7847]  ? __lock_acquire+0x7d40/0x7d40
[  222.449371][ T7847]  should_fail_ex+0x39d/0x4d0
[  222.454223][ T7847]  should_failslab+0x9/0x20
[  222.458894][ T7847]  slab_pre_alloc_hook+0x59/0x310
[  222.464465][ T7847]  ? page_pool_create+0x71/0x5c0
[  222.470286][ T7847]  __kmem_cache_alloc_node+0x53/0x250
[  222.476122][ T7847]  ? page_pool_create+0x71/0x5c0
[  222.481269][ T7847]  kmalloc_node_trace+0x26/0xe0
[  222.486394][ T7847]  page_pool_create+0x71/0x5c0
[  222.491419][ T7847]  bpf_test_run_xdp_live+0x203/0x1b20
[  222.497220][ T7847]  ? verify_lock_unused+0x140/0x140
[  222.502974][ T7847]  ? kasan_set_track+0x4e/0x70
[  222.508021][ T7847]  ? __kasan_kmalloc+0x8f/0xa0
[  222.512950][ T7847]  ? __kmalloc+0xb4/0x230
[  222.517512][ T7847]  ? bpf_test_init+0x9f/0x140
[  222.522521][ T7847]  ? bpf_prog_test_run+0x321/0x390
[  222.527927][ T7847]  ? __sys_bpf+0x49d/0x890
[  222.532661][ T7847]  ? __x64_sys_bpf+0x7c/0x90
[  222.537296][ T7847]  ? do_syscall_64+0x55/0xb0
[  222.541952][ T7847]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  222.548454][ T7847]  ? xdp_convert_md_to_buff+0x330/0x330
[  222.554376][ T7847]  ? __lock_acquire+0x7d40/0x7d40
[  222.559586][ T7847]  ? __virt_addr_valid+0x18c/0x540
[  222.564862][ T7847]  ? trace_raw_output_bpf_test_finish+0xd0/0xd0
[  222.571372][ T7847]  ? _copy_from_user+0xa5/0xe0
[  222.576218][ T7847]  ? bpf_test_init+0x119/0x140
[  222.581131][ T7847]  ? xdp_convert_md_to_buff+0x5b/0x330
[  222.586764][ T7847]  bpf_prog_test_run_xdp+0x7ca/0x10e0
[  222.592702][ T7847]  ? dev_put+0x80/0x80
[  222.596850][ T7847]  ? dev_put+0x80/0x80
[  222.600992][ T7847]  bpf_prog_test_run+0x321/0x390
[  222.606260][ T7847]  __sys_bpf+0x49d/0x890
[  222.610786][ T7847]  ? bpf_link_show_fdinfo+0x390/0x390
[  222.616423][ T7847]  ? lock_chain_count+0x20/0x20
[  222.621361][ T7847]  __x64_sys_bpf+0x7c/0x90
[  222.626405][ T7847]  do_syscall_64+0x55/0xb0
[  222.631072][ T7847]  ? clear_bhb_loop+0x40/0x90
[  222.635928][ T7847]  ? clear_bhb_loop+0x40/0x90
[  222.640762][ T7847]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  222.647423][ T7847] RIP: 0033:0x7f029d19ce59
[  222.652257][ T7847] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  222.672524][ T7847] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  222.681371][ T7847] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  222.689408][ T7847] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  222.697594][ T7847] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  222.705785][ T7847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  222.714050][ T7847] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  222.722336][ T7847]  </TASK>
[  222.995546][ T7859] netlink: 'syz.1.711': attribute type 2 has an invalid length.
[  223.012104][ T7859] netlink: 'syz.1.711': attribute type 1 has an invalid length.
[  223.022271][ T7859] netlink: 9 bytes leftover after parsing attributes in process `syz.1.711'.
[  223.788117][ T7881] netlink: 'syz.0.719': attribute type 21 has an invalid length.
[  223.856354][ T7881] netlink: 'syz.0.719': attribute type 7 has an invalid length.
[  224.167049][ T5787] Bluetooth: hci3: command 0x0406 tx timeout
[  226.984860][ T7890] syzkaller0: entered promiscuous mode
[  226.995715][ T7895] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.725'.
[  227.005696][ T7890] syzkaller0: entered allmulticast mode
[  229.214453][ T7902] syzkaller0: entered promiscuous mode
[  229.222595][ T7902] syzkaller0: entered allmulticast mode
[  230.189152][ T7940] netlink: 'syz.1.737': attribute type 10 has an invalid length.
[  230.221939][ T7940] netlink: 55 bytes leftover after parsing attributes in process `syz.1.737'.
[  230.502066][   T51] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  230.510571][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[  230.520801][   T51] CPU: 1 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  230.528730][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  230.539718][   T51] Workqueue: hci1 hci_rx_work
[  230.544583][   T51] Call Trace:
[  230.547952][   T51]  <TASK>
[  230.550977][   T51]  dump_stack_lvl+0x18c/0x250
[  230.555781][   T51]  ? show_regs_print_info+0x20/0x20
[  230.561705][   T51]  ? load_image+0x420/0x420
[  230.566791][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  230.572345][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  230.577144][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  230.583351][   T51]  kobject_add_internal+0x61c/0xcc0
[  230.588803][   T51]  kobject_add+0x164/0x240
[  230.593412][   T51]  ? __rwlock_init+0x150/0x150
[  230.598301][   T51]  ? kobject_init+0x1e0/0x1e0
[  230.603271][   T51]  ? _raw_spin_unlock+0x28/0x40
[  230.608309][   T51]  ? get_device_parent+0x366/0x390
[  230.613740][   T51]  device_add+0x408/0xc50
[  230.618201][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  230.623338][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  230.628945][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  230.635373][   T51]  ? bt_info+0x180/0x180
[  230.639878][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  230.645720][   T51]  ? skb_pull_data+0xfb/0x200
[  230.650586][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  230.656282][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  230.662616][   T51]  hci_event_packet+0x7ba/0x1270
[  230.667638][   T51]  ? bis_list+0x290/0x290
[  230.672196][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  230.677538][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  230.682823][   T51]  hci_rx_work+0x43a/0xd60
[  230.687323][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  230.693459][   T51]  process_scheduled_works+0xa5d/0x15d0
[  230.699090][   T51]  ? worker_attach_to_pool+0x380/0x380
[  230.705062][   T51]  ? assign_work+0x3d2/0x5d0
[  230.709960][   T51]  worker_thread+0xa55/0xfc0
[  230.715446][   T51]  kthread+0x2fa/0x390
[  230.719925][   T51]  ? pr_cont_work+0x560/0x560
[  230.724847][   T51]  ? kthread_blkcg+0xd0/0xd0
[  230.730682][   T51]  ret_from_fork+0x48/0x80
[  230.735677][   T51]  ? kthread_blkcg+0xd0/0xd0
[  230.740540][   T51]  ret_from_fork_asm+0x11/0x20
[  230.745624][   T51]  </TASK>
[  230.761927][   T51] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  230.778057][   T51] Bluetooth: hci1: failed to register connection device
[  230.806423][ T7945] syzkaller0: entered promiscuous mode
[  230.820776][ T7945] syzkaller0: entered allmulticast mode
[  231.476436][ T7967] netlink: 1772 bytes leftover after parsing attributes in process `syz.1.747'.
[  232.806921][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  233.164935][ T7969] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.748'.
[  233.773828][ T7990] FAULT_INJECTION: forcing a failure.
[  233.773828][ T7990] name failslab, interval 1, probability 0, space 0, times 0
[  233.799127][ T7990] CPU: 0 PID: 7990 Comm: syz.1.756 Not tainted syzkaller #0
[  233.806625][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  233.816822][ T7990] Call Trace:
[  233.820159][ T7990]  <TASK>
[  233.823284][ T7990]  dump_stack_lvl+0x18c/0x250
[  233.828374][ T7990]  ? sctp_sendmsg+0x15d2/0x2910
[  233.833607][ T7990]  ? ___sys_sendmsg+0x2a6/0x360
[  233.839055][ T7990]  ? show_regs_print_info+0x20/0x20
[  233.844327][ T7990]  ? load_image+0x420/0x420
[  233.848924][ T7990]  should_fail_ex+0x39d/0x4d0
[  233.853871][ T7990]  should_failslab+0x9/0x20
[  233.858636][ T7990]  slab_pre_alloc_hook+0x59/0x310
[  233.864040][ T7990]  ? sctp_add_bind_addr+0x8c/0x360
[  233.869572][ T7990]  __kmem_cache_alloc_node+0x53/0x250
[  233.875013][ T7990]  ? sctp_add_bind_addr+0x8c/0x360
[  233.880390][ T7990]  kmalloc_trace+0x2a/0xe0
[  233.884908][ T7990]  sctp_add_bind_addr+0x8c/0x360
[  233.890034][ T7990]  sctp_copy_local_addr_list+0x315/0x4f0
[  233.895931][ T7990]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  233.902027][ T7990]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  233.908268][ T7990]  ? sctp_v4_is_any+0x35/0x60
[  233.913287][ T7990]  ? sctp_copy_one_addr+0x8c/0x350
[  233.918643][ T7990]  sctp_bind_addr_copy+0x189/0x3c0
[  233.924022][ T7990]  sctp_connect_new_asoc+0x2f9/0x6a0
[  233.929930][ T7990]  ? __sctp_connect+0xd80/0xd80
[  233.935056][ T7990]  ? _local_bh_enable+0xa0/0xa0
[  233.940002][ T7990]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  233.945873][ T7990]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  233.951896][ T7990]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  233.957526][ T7990]  ? security_sctp_bind_connect+0x89/0xb0
[  233.963442][ T7990]  sctp_sendmsg+0x15d2/0x2910
[  233.968487][ T7990]  ? sctp_getsockopt+0xb60/0xb60
[  233.973669][ T7990]  ? aa_sk_perm+0x83c/0x970
[  233.978265][ T7990]  ? aa_af_perm+0x330/0x330
[  233.982975][ T7990]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  233.989563][ T7990]  ? sock_rps_record_flow+0x19/0x3f0
[  233.995048][ T7990]  ? inet_sendmsg+0x7c/0x2f0
[  233.999967][ T7990]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  234.005332][ T7990]  ? security_socket_sendmsg+0x80/0xa0
[  234.011003][ T7990]  ? inet_send_prepare+0x260/0x260
[  234.016189][ T7990]  ____sys_sendmsg+0x5ba/0x960
[  234.021130][ T7990]  ? __lock_acquire+0x7d40/0x7d40
[  234.026318][ T7990]  ? __asan_memset+0x22/0x40
[  234.031094][ T7990]  ? __sys_sendmsg_sock+0x30/0x30
[  234.036284][ T7990]  ? __import_iovec+0x5f2/0x850
[  234.041228][ T7990]  ? import_iovec+0x73/0xa0
[  234.045920][ T7990]  ___sys_sendmsg+0x2a6/0x360
[  234.050772][ T7990]  ? __sys_sendmsg+0x2a0/0x2a0
[  234.055835][ T7990]  ? __lock_acquire+0x7d40/0x7d40
[  234.061086][ T7990]  __se_sys_sendmsg+0x1c2/0x2b0
[  234.066391][ T7990]  ? __x64_sys_sendmsg+0x80/0x80
[  234.071607][ T7990]  ? lockdep_hardirqs_on+0x98/0x150
[  234.077430][ T7990]  do_syscall_64+0x55/0xb0
[  234.082003][ T7990]  ? clear_bhb_loop+0x40/0x90
[  234.086737][ T7990]  ? clear_bhb_loop+0x40/0x90
[  234.091516][ T7990]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  234.097513][ T7990] RIP: 0033:0x7f029d19ce59
[  234.102083][ T7990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  234.121836][ T7990] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  234.130500][ T7990] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  234.138841][ T7990] RDX: 0000000000008040 RSI: 00002000000002c0 RDI: 0000000000000004
[  234.147389][ T7990] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  234.156367][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.164427][ T7990] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  234.172539][ T7990]  </TASK>
[  235.993940][ T8053] mac80211_hwsim hwsim8 .3ãc¤±: renamed from wlan1 (while UP)
[  236.703636][ T8060] netlink: 'syz.0.782': attribute type 10 has an invalid length.
[  236.713195][ T8060] netlink: 40 bytes leftover after parsing attributes in process `syz.0.782'.
[  236.740656][ T8060] batman_adv: batadv0: Adding interface: veth0_vlan
[  236.750133][ T8060] batman_adv: batadv0: The MTU of interface veth0_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.791162][ T8060] batman_adv: batadv0: Interface activated: veth0_vlan
[  239.371435][ T8076] FAULT_INJECTION: forcing a failure.
[  239.371435][ T8076] name failslab, interval 1, probability 0, space 0, times 0
[  239.426864][ T8076] CPU: 1 PID: 8076 Comm: syz.3.788 Not tainted syzkaller #0
[  239.434426][ T8076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  239.444893][ T8076] Call Trace:
[  239.448310][ T8076]  <TASK>
[  239.451277][ T8076]  dump_stack_lvl+0x18c/0x250
[  239.456014][ T8076]  ? sctp_sendmsg+0x15d2/0x2910
[  239.461051][ T8076]  ? ___sys_sendmsg+0x2a6/0x360
[  239.466235][ T8076]  ? show_regs_print_info+0x20/0x20
[  239.471629][ T8076]  ? load_image+0x420/0x420
[  239.476504][ T8076]  should_fail_ex+0x39d/0x4d0
[  239.481651][ T8076]  should_failslab+0x9/0x20
[  239.486343][ T8076]  slab_pre_alloc_hook+0x59/0x310
[  239.491567][ T8076]  ? sctp_add_bind_addr+0x8c/0x360
[  239.496767][ T8076]  __kmem_cache_alloc_node+0x53/0x250
[  239.502265][ T8076]  ? sctp_add_bind_addr+0x8c/0x360
[  239.507798][ T8076]  kmalloc_trace+0x2a/0xe0
[  239.512290][ T8076]  sctp_add_bind_addr+0x8c/0x360
[  239.517479][ T8076]  sctp_copy_local_addr_list+0x315/0x4f0
[  239.523271][ T8076]  ? sctp_copy_local_addr_list+0xa5/0x4f0
[  239.529355][ T8076]  ? sctp_do_8_2_transport_strike+0x8a0/0x8a0
[  239.536643][ T8076]  ? sctp_v4_is_any+0x35/0x60
[  239.541610][ T8076]  ? sctp_copy_one_addr+0x8c/0x350
[  239.546824][ T8076]  sctp_bind_addr_copy+0xb3/0x3c0
[  239.552110][ T8076]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  239.558786][ T8076]  sctp_connect_new_asoc+0x2f9/0x6a0
[  239.564349][ T8076]  ? __sctp_connect+0xd80/0xd80
[  239.569482][ T8076]  ? __local_bh_enable_ip+0x13a/0x1c0
[  239.575017][ T8076]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  239.580717][ T8076]  ? security_sctp_bind_connect+0x89/0xb0
[  239.586564][ T8076]  sctp_sendmsg+0x15d2/0x2910
[  239.591619][ T8076]  ? sctp_getsockopt+0xb60/0xb60
[  239.596733][ T8076]  ? aa_sk_perm+0x83c/0x970
[  239.601432][ T8076]  ? aa_af_perm+0x330/0x330
[  239.606187][ T8076]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  239.612767][ T8076]  ? sock_rps_record_flow+0x19/0x3f0
[  239.618312][ T8076]  ? inet_sendmsg+0xe9/0x2f0
[  239.623779][ T8076]  ? inet_send_prepare+0x260/0x260
[  239.629046][ T8076]  ____sys_sendmsg+0x5ba/0x960
[  239.634032][ T8076]  ? __lock_acquire+0x7d40/0x7d40
[  239.639301][ T8076]  ? __asan_memset+0x22/0x40
[  239.644173][ T8076]  ? __sys_sendmsg_sock+0x30/0x30
[  239.649438][ T8076]  ? __import_iovec+0x5f2/0x850
[  239.654355][ T8076]  ? import_iovec+0x73/0xa0
[  239.659101][ T8076]  ___sys_sendmsg+0x2a6/0x360
[  239.664268][ T8076]  ? __sys_sendmsg+0x2a0/0x2a0
[  239.669276][ T8076]  ? trace_call_bpf+0xc3/0x6c0
[  239.674154][ T8076]  __se_sys_sendmsg+0x1c2/0x2b0
[  239.679051][ T8076]  ? __x64_sys_sendmsg+0x80/0x80
[  239.684174][ T8076]  ? lockdep_hardirqs_on+0x98/0x150
[  239.689495][ T8076]  do_syscall_64+0x55/0xb0
[  239.693974][ T8076]  ? clear_bhb_loop+0x40/0x90
[  239.698765][ T8076]  ? clear_bhb_loop+0x40/0x90
[  239.703561][ T8076]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  239.709768][ T8076] RIP: 0033:0x7f6a1859ce59
[  239.714482][ T8076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  239.734564][ T8076] RSP: 002b:00007f6a1951c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  239.743383][ T8076] RAX: ffffffffffffffda RBX: 00007f6a18815fa0 RCX: 00007f6a1859ce59
[  239.751922][ T8076] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  239.760281][ T8076] RBP: 00007f6a1951c090 R08: 0000000000000000 R09: 0000000000000000
[  239.768607][ T8076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  239.776886][ T8076] R13: 00007f6a18816038 R14: 00007f6a18815fa0 R15: 00007fff497c45e8
[  239.785009][ T8076]  </TASK>
[  239.950847][ T8079] netlink: 668 bytes leftover after parsing attributes in process `syz.2.790'.
[  239.976970][ T8079] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  239.993455][ T8079] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  240.477241][   T51] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  240.486193][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[  240.499803][   T51] CPU: 1 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  240.507306][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  240.517696][   T51] Workqueue: hci1 hci_rx_work
[  240.522519][   T51] Call Trace:
[  240.525865][   T51]  <TASK>
[  240.528938][   T51]  dump_stack_lvl+0x18c/0x250
[  240.533706][   T51]  ? show_regs_print_info+0x20/0x20
[  240.539081][   T51]  ? load_image+0x420/0x420
[  240.543883][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  240.549083][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  240.553973][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  240.559452][   T51]  kobject_add_internal+0x61c/0xcc0
[  240.565268][   T51]  kobject_add+0x164/0x240
[  240.569734][   T51]  ? __rwlock_init+0x150/0x150
[  240.574543][   T51]  ? kobject_init+0x1e0/0x1e0
[  240.579289][   T51]  ? _raw_spin_unlock+0x28/0x40
[  240.584197][   T51]  ? get_device_parent+0x366/0x390
[  240.589459][   T51]  device_add+0x408/0xc50
[  240.593960][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  240.599204][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  240.604722][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  240.611443][   T51]  ? bt_info+0x180/0x180
[  240.615833][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  240.621606][   T51]  ? skb_pull_data+0xfb/0x200
[  240.626419][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  240.632129][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  240.638438][   T51]  hci_event_packet+0x7ba/0x1270
[  240.643556][   T51]  ? bis_list+0x290/0x290
[  240.648039][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  240.653322][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  240.658612][   T51]  hci_rx_work+0x43a/0xd60
[  240.663711][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  240.669576][   T51]  process_scheduled_works+0xa5d/0x15d0
[  240.675284][   T51]  ? worker_attach_to_pool+0x380/0x380
[  240.680795][   T51]  ? assign_work+0x3d2/0x5d0
[  240.685435][   T51]  worker_thread+0xa55/0xfc0
[  240.690105][   T51]  kthread+0x2fa/0x390
[  240.694211][   T51]  ? pr_cont_work+0x560/0x560
[  240.699043][   T51]  ? kthread_blkcg+0xd0/0xd0
[  240.703791][   T51]  ret_from_fork+0x48/0x80
[  240.708554][   T51]  ? kthread_blkcg+0xd0/0xd0
[  240.713275][   T51]  ret_from_fork_asm+0x11/0x20
[  240.718211][   T51]  </TASK>
[  240.769141][   T51] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  240.786942][   T51] Bluetooth: hci1: failed to register connection device
[  241.790764][ T8102] netlink: 132 bytes leftover after parsing attributes in process `syz.3.797'.
[  242.102570][ T8110] netlink: 'syz.3.799': attribute type 39 has an invalid length.
[  242.797505][ T5787] Bluetooth: hci1: command 0x0406 tx timeout
[  243.400912][ T5787] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  243.411333][ T5787] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  243.421553][ T5787] CPU: 0 PID: 5787 Comm: kworker/u5:4 Not tainted syzkaller #0
[  243.429336][ T5787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  243.439678][ T5787] Workqueue: hci3 hci_rx_work
[  243.444462][ T5787] Call Trace:
[  243.447816][ T5787]  <TASK>
[  243.450821][ T5787]  dump_stack_lvl+0x18c/0x250
[  243.455789][ T5787]  ? show_regs_print_info+0x20/0x20
[  243.461090][ T5787]  ? load_image+0x420/0x420
[  243.465762][ T5787]  sysfs_create_dir_ns+0x26e/0x2a0
[  243.471430][ T5787]  ? sysfs_warn_dup+0xa0/0xa0
[  243.476375][ T5787]  ? do_raw_spin_unlock+0x121/0x230
[  243.482569][ T5787]  kobject_add_internal+0x61c/0xcc0
[  243.488428][ T5787]  kobject_add+0x164/0x240
[  243.493545][ T5787]  ? __rwlock_init+0x150/0x150
[  243.498493][ T5787]  ? kobject_init+0x1e0/0x1e0
[  243.503372][ T5787]  ? _raw_spin_unlock+0x28/0x40
[  243.508490][ T5787]  ? get_device_parent+0x366/0x390
[  243.513929][ T5787]  device_add+0x408/0xc50
[  243.518626][ T5787]  hci_conn_add_sysfs+0xd5/0x1e0
[  243.523658][ T5787]  le_conn_complete_evt+0xf5d/0x1540
[  243.529144][ T5787]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  243.535822][ T5787]  ? bt_info+0x180/0x180
[  243.540230][ T5787]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  243.546028][ T5787]  ? skb_pull_data+0xfb/0x200
[  243.550797][ T5787]  hci_le_conn_complete_evt+0x187/0x440
[  243.556652][ T5787]  ? hci_remote_host_features_evt+0x150/0x150
[  243.563986][ T5787]  hci_event_packet+0x7ba/0x1270
[  243.569326][ T5787]  ? bis_list+0x290/0x290
[  243.573865][ T5787]  ? lockdep_hardirqs_on+0x98/0x150
[  243.579668][ T5787]  ? hci_send_to_monitor+0xd7/0x4f0
[  243.584944][ T5787]  hci_rx_work+0x43a/0xd60
[  243.589624][ T5787]  ? process_scheduled_works+0x96f/0x15d0
[  243.595498][ T5787]  process_scheduled_works+0xa5d/0x15d0
[  243.601144][ T5787]  ? worker_attach_to_pool+0x380/0x380
[  243.606694][ T5787]  ? assign_work+0x3d2/0x5d0
[  243.611623][ T5787]  worker_thread+0xa55/0xfc0
[  243.616506][ T5787]  kthread+0x2fa/0x390
[  243.620824][ T5787]  ? pr_cont_work+0x560/0x560
[  243.625752][ T5787]  ? kthread_blkcg+0xd0/0xd0
[  243.630400][ T5787]  ret_from_fork+0x48/0x80
[  243.635277][ T5787]  ? kthread_blkcg+0xd0/0xd0
[  243.639951][ T5787]  ret_from_fork_asm+0x11/0x20
[  243.644825][ T5787]  </TASK>
[  243.655203][ T5787] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  243.670345][ T5787] Bluetooth: hci3: failed to register connection device
[  244.259191][ T8143] netlink: 'syz.1.811': attribute type 39 has an invalid length.
[  244.693215][ T8154] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.352387][   T51] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  245.362613][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  245.375363][   T51] CPU: 0 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  245.383380][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  245.393880][   T51] Workqueue: hci0 hci_rx_work
[  245.398677][   T51] Call Trace:
[  245.402039][   T51]  <TASK>
[  245.405192][   T51]  dump_stack_lvl+0x18c/0x250
[  245.410522][   T51]  ? show_regs_print_info+0x20/0x20
[  245.416044][   T51]  ? load_image+0x420/0x420
[  245.420718][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  245.426134][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  245.430942][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  245.436532][   T51]  kobject_add_internal+0x61c/0xcc0
[  245.441973][   T51]  kobject_add+0x164/0x240
[  245.446848][   T51]  ? __rwlock_init+0x150/0x150
[  245.451989][   T51]  ? kobject_init+0x1e0/0x1e0
[  245.457048][   T51]  ? _raw_spin_unlock+0x28/0x40
[  245.462085][   T51]  ? get_device_parent+0x366/0x390
[  245.467364][   T51]  device_add+0x408/0xc50
[  245.471898][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  245.477186][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  245.482692][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  245.489093][   T51]  ? bt_info+0x180/0x180
[  245.493749][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  245.499632][   T51]  ? skb_pull_data+0xfb/0x200
[  245.504383][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  245.510076][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  245.516311][   T51]  hci_event_packet+0x7ba/0x1270
[  245.521564][   T51]  ? bis_list+0x290/0x290
[  245.525936][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  245.531399][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  245.536796][   T51]  hci_rx_work+0x43a/0xd60
[  245.541458][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  245.547223][   T51]  process_scheduled_works+0xa5d/0x15d0
[  245.552941][   T51]  ? worker_attach_to_pool+0x380/0x380
[  245.558559][   T51]  ? assign_work+0x3d2/0x5d0
[  245.563560][   T51]  worker_thread+0xa55/0xfc0
[  245.568424][   T51]  kthread+0x2fa/0x390
[  245.572707][   T51]  ? pr_cont_work+0x560/0x560
[  245.577610][   T51]  ? kthread_blkcg+0xd0/0xd0
[  245.582347][   T51]  ret_from_fork+0x48/0x80
[  245.586982][   T51]  ? kthread_blkcg+0xd0/0xd0
[  245.591849][   T51]  ret_from_fork_asm+0x11/0x20
[  245.596703][   T51]  </TASK>
[  245.600825][   T51] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  245.615954][   T51] Bluetooth: hci0: failed to register connection device
[  245.765576][ T5787] Bluetooth: hci3: command 0x0406 tx timeout
[  245.775676][ T8169] netlink: 180 bytes leftover after parsing attributes in process `syz.1.821'.
[  246.933280][ T8187] 8021q: adding VLAN 0 to HW filter on device batadv0
[  246.962421][ T8188] netlink: 'syz.2.829': attribute type 39 has an invalid length.
[  247.490290][ T8200] tap0: tun_chr_ioctl cmd 2147767517
[  247.677020][ T5787] Bluetooth: hci0: command 0x0406 tx timeout
[  249.215297][ T8228] FAULT_INJECTION: forcing a failure.
[  249.215297][ T8228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  249.237052][ T8228] CPU: 1 PID: 8228 Comm: syz.0.844 Not tainted syzkaller #0
[  249.244639][ T8228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  249.255012][ T8228] Call Trace:
[  249.258427][ T8228]  <TASK>
[  249.261489][ T8228]  dump_stack_lvl+0x18c/0x250
[  249.266230][ T8228]  ? show_regs_print_info+0x20/0x20
[  249.271530][ T8228]  ? load_image+0x420/0x420
[  249.276181][ T8228]  ? __might_fault+0xaa/0x120
[  249.280919][ T8228]  ? __lock_acquire+0x7d40/0x7d40
[  249.286194][ T8228]  should_fail_ex+0x39d/0x4d0
[  249.291059][ T8228]  _copy_from_iter+0x1d9/0x12e0
[  249.295977][ T8228]  ? __might_fault+0xaa/0x120
[  249.300730][ T8228]  ? _copy_from_iter+0x24e/0x12e0
[  249.306084][ T8228]  ? __virt_addr_valid+0x18c/0x540
[  249.311977][ T8228]  ? __lock_acquire+0x7d40/0x7d40
[  249.317268][ T8228]  ? copyout_mc+0x70/0x70
[  249.321966][ T8228]  ? copyout_mc+0x70/0x70
[  249.326392][ T8228]  ? __virt_addr_valid+0x18c/0x540
[  249.332309][ T8228]  ? page_copy_sane+0x16a/0x270
[  249.337620][ T8228]  copy_page_from_iter+0x7b/0x100
[  249.342759][ T8228]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  249.348787][ T8228]  tun_get_user+0x15db/0x3ca0
[  249.353645][ T8228]  ? aa_file_perm+0x11b/0xee0
[  249.358390][ T8228]  ? rcu_read_unlock+0xa0/0xa0
[  249.363520][ T8228]  ? tun_get+0x1c/0x2e0
[  249.367753][ T8228]  ? __lock_acquire+0x7d40/0x7d40
[  249.372958][ T8228]  ? tun_get+0x1c/0x2e0
[  249.377612][ T8228]  tun_chr_write_iter+0x119/0x200
[  249.382694][ T8228]  vfs_write+0x46c/0x990
[  249.387091][ T8228]  ? file_end_write+0x250/0x250
[  249.392505][ T8228]  ? __fget_files+0x43d/0x4b0
[  249.397252][ T8228]  ? __fdget_pos+0x1d8/0x330
[  249.401897][ T8228]  ? ksys_write+0x75/0x260
[  249.406457][ T8228]  ksys_write+0x150/0x260
[  249.411041][ T8228]  ? __ia32_sys_read+0x90/0x90
[  249.415861][ T8228]  ? lockdep_hardirqs_on+0x98/0x150
[  249.421314][ T8228]  do_syscall_64+0x55/0xb0
[  249.425778][ T8228]  ? clear_bhb_loop+0x40/0x90
[  249.430502][ T8228]  ? clear_bhb_loop+0x40/0x90
[  249.435229][ T8228]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  249.441185][ T8228] RIP: 0033:0x7f025e39ce59
[  249.445640][ T8228] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  249.466095][ T8228] RSP: 002b:00007f025f324028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  249.474754][ T8228] RAX: ffffffffffffffda RBX: 00007f025e615fa0 RCX: 00007f025e39ce59
[  249.482953][ T8228] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 00000000000000c8
[  249.491056][ T8228] RBP: 00007f025f324090 R08: 0000000000000000 R09: 0000000000000000
[  249.499194][ T8228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.507535][ T8228] R13: 00007f025e616038 R14: 00007f025e615fa0 R15: 00007fff667b7cc8
[  249.516189][ T8228]  </TASK>
[  249.788503][ T8234] netlink: 144 bytes leftover after parsing attributes in process `syz.0.847'.
[  250.022920][ T8244] netlink: 'syz.0.851': attribute type 6 has an invalid length.
[  250.032163][ T8244] netlink: 164 bytes leftover after parsing attributes in process `syz.0.851'.
[  251.747358][ T8264] netlink: 132 bytes leftover after parsing attributes in process `syz.0.859'.
[  253.166461][ T8285] 8021q: adding VLAN 0 to HW filter on device batadv0
[  253.737636][ T5787] Bluetooth: hci2: ISO packet for unknown connection handle 61
[  253.875682][ T8303] netlink: 'syz.1.873': attribute type 10 has an invalid length.
[  253.884502][ T8303] netlink: 2 bytes leftover after parsing attributes in process `syz.1.873'.
[  253.905265][ T8303] bond0: entered promiscuous mode
[  253.915774][ T8303] bond_slave_0: entered promiscuous mode
[  253.929190][ T8303] bond_slave_1: entered promiscuous mode
[  253.940853][ T8303] batadv0: entered promiscuous mode
[  253.946694][ T8303] dummy0: entered promiscuous mode
[  253.970497][ T8303] bridge0: port 3(bond0) entered blocking state
[  253.987309][ T8303] bridge0: port 3(bond0) entered disabled state
[  253.995143][ T8303] bond0: entered allmulticast mode
[  254.000799][ T8303] bond_slave_0: entered allmulticast mode
[  254.008420][ T8303] bond_slave_1: entered allmulticast mode
[  254.014491][ T8303] batadv0: entered allmulticast mode
[  254.027141][ T8303] dummy0: entered allmulticast mode
[  254.057284][ T8303] bridge0: port 3(bond0) entered blocking state
[  254.064043][ T8303] bridge0: port 3(bond0) entered forwarding state
[  254.242821][ T7136] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  254.253072][ T7136] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  256.095137][ T8349] netlink: 203516 bytes leftover after parsing attributes in process `syz.0.887'.
[  256.139330][ T8349] netlink: 6332 bytes leftover after parsing attributes in process `syz.0.887'.
[  256.165574][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  256.172706][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  256.350942][ T8342] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.884'.
[  256.499731][ T8354] 8021q: adding VLAN 0 to HW filter on device batadv0
[  256.936986][ T8364] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  257.280582][ T8375] syzkaller1: tun_chr_ioctl cmd 2147767521
[  258.039738][ T8384] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  258.047318][ T8384] IPv6: NLM_F_CREATE should be set when creating new route
[  258.054780][ T8384] IPv6: NLM_F_CREATE should be set when creating new route
[  258.062148][ T8384] IPv6: NLM_F_CREATE should be set when creating new route
[  258.332088][ T8370] delete_channel: no stack
[  258.430017][ T8394] netlink: 'syz.0.906': attribute type 10 has an invalid length.
[  258.477854][ T8394] 8021q: adding VLAN 0 to HW filter on device team0
[  258.513931][ T8394] bond0: (slave team0): Enslaving as an active interface with an up link
[  258.586489][ T8400] FAULT_INJECTION: forcing a failure.
[  258.586489][ T8400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.637989][ T8400] CPU: 1 PID: 8400 Comm: syz.3.907 Not tainted syzkaller #0
[  258.645387][ T8400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  258.655720][ T8400] Call Trace:
[  258.659167][ T8400]  <TASK>
[  258.662171][ T8400]  dump_stack_lvl+0x18c/0x250
[  258.667274][ T8400]  ? show_regs_print_info+0x20/0x20
[  258.673063][ T8400]  ? load_image+0x420/0x420
[  258.677990][ T8400]  ? __might_fault+0xaa/0x120
[  258.682906][ T8400]  ? __lock_acquire+0x7d40/0x7d40
[  258.688196][ T8400]  should_fail_ex+0x39d/0x4d0
[  258.693929][ T8400]  _copy_from_user+0x2f/0xe0
[  258.698595][ T8400]  ___sys_sendmsg+0x1c7/0x360
[  258.703350][ T8400]  ? __sys_sendmsg+0x2a0/0x2a0
[  258.708838][ T8400]  ? trace_call_bpf+0xc3/0x6c0
[  258.713839][ T8400]  __se_sys_sendmsg+0x1c2/0x2b0
[  258.718853][ T8400]  ? __x64_sys_sendmsg+0x80/0x80
[  258.723958][ T8400]  ? lockdep_hardirqs_on+0x98/0x150
[  258.730583][ T8400]  do_syscall_64+0x55/0xb0
[  258.735301][ T8400]  ? clear_bhb_loop+0x40/0x90
[  258.740134][ T8400]  ? clear_bhb_loop+0x40/0x90
[  258.745229][ T8400]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  258.751459][ T8400] RIP: 0033:0x7f6a1859ce59
[  258.756051][ T8400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  258.777026][ T8400] RSP: 002b:00007f6a1951c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  258.786038][ T8400] RAX: ffffffffffffffda RBX: 00007f6a18815fa0 RCX: 00007f6a1859ce59
[  258.794337][ T8400] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000003
[  258.802556][ T8400] RBP: 00007f6a1951c090 R08: 0000000000000000 R09: 0000000000000000
[  258.810888][ T8400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.819111][ T8400] R13: 00007f6a18816038 R14: 00007f6a18815fa0 R15: 00007fff497c45e8
[  258.827267][ T8400]  </TASK>
[  259.445120][ T8423] netlink: 'syz.3.915': attribute type 10 has an invalid length.
[  259.508082][ T8423] 8021q: adding VLAN 0 to HW filter on device team0
[  259.555229][ T8423] bond0: (slave team0): Enslaving as an active interface with an up link
[  259.845116][ T8435] FAULT_INJECTION: forcing a failure.
[  259.845116][ T8435] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.907731][ T8435] CPU: 0 PID: 8435 Comm: syz.2.919 Not tainted syzkaller #0
[  259.915727][ T8435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  259.926043][ T8435] Call Trace:
[  259.929379][ T8435]  <TASK>
[  259.932360][ T8435]  dump_stack_lvl+0x18c/0x250
[  259.937114][ T8435]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  259.943360][ T8435]  ? show_regs_print_info+0x20/0x20
[  259.948801][ T8435]  ? load_image+0x420/0x420
[  259.953475][ T8435]  should_fail_ex+0x39d/0x4d0
[  259.958606][ T8435]  _copy_from_user+0x2f/0xe0
[  259.963302][ T8435]  ____sys_sendmsg+0x2fd/0x960
[  259.968332][ T8435]  ? __lock_acquire+0x7d40/0x7d40
[  259.973711][ T8435]  ? __sys_sendmsg_sock+0x30/0x30
[  259.978823][ T8435]  ? __import_iovec+0x3fa/0x850
[  259.983988][ T8435]  ? import_iovec+0x73/0xa0
[  259.988757][ T8435]  ___sys_sendmsg+0x2a6/0x360
[  259.993526][ T8435]  ? __sys_sendmsg+0x2a0/0x2a0
[  259.998571][ T8435]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[  260.005034][ T8435]  __se_sys_sendmsg+0x1c2/0x2b0
[  260.010058][ T8435]  ? __x64_sys_sendmsg+0x80/0x80
[  260.015420][ T8435]  ? lockdep_hardirqs_on+0x98/0x150
[  260.021130][ T8435]  do_syscall_64+0x55/0xb0
[  260.025630][ T8435]  ? clear_bhb_loop+0x40/0x90
[  260.030883][ T8435]  ? clear_bhb_loop+0x40/0x90
[  260.035689][ T8435]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  260.041639][ T8435] RIP: 0033:0x7fd4dbf9ce59
[  260.046320][ T8435] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  260.068104][ T8435] RSP: 002b:00007fd4dce0a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  260.077028][ T8435] RAX: ffffffffffffffda RBX: 00007fd4dc215fa0 RCX: 00007fd4dbf9ce59
[  260.085286][ T8435] RDX: 0000000000000000 RSI: 0000200000007940 RDI: 0000000000000007
[  260.093404][ T8435] RBP: 00007fd4dce0a090 R08: 0000000000000000 R09: 0000000000000000
[  260.102069][ T8435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.110288][ T8435] R13: 00007fd4dc216038 R14: 00007fd4dc215fa0 R15: 00007ffe7e270708
[  260.118593][ T8435]  </TASK>
[  260.549016][ T5787] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  260.557728][ T5787] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  260.567785][ T5787] CPU: 0 PID: 5787 Comm: kworker/u5:4 Not tainted syzkaller #0
[  260.575619][ T5787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  260.586358][ T5787] Workqueue: hci0 hci_rx_work
[  260.591450][ T5787] Call Trace:
[  260.594891][ T5787]  <TASK>
[  260.597983][ T5787]  dump_stack_lvl+0x18c/0x250
[  260.603011][ T5787]  ? show_regs_print_info+0x20/0x20
[  260.608640][ T5787]  ? load_image+0x420/0x420
[  260.613337][ T5787]  sysfs_create_dir_ns+0x26e/0x2a0
[  260.618903][ T5787]  ? sysfs_warn_dup+0xa0/0xa0
[  260.623667][ T5787]  ? do_raw_spin_unlock+0x121/0x230
[  260.629052][ T5787]  kobject_add_internal+0x61c/0xcc0
[  260.634615][ T5787]  kobject_add+0x164/0x240
[  260.639210][ T5787]  ? __rwlock_init+0x150/0x150
[  260.644075][ T5787]  ? kobject_init+0x1e0/0x1e0
[  260.648840][ T5787]  ? _raw_spin_unlock+0x28/0x40
[  260.654077][ T5787]  ? get_device_parent+0x366/0x390
[  260.660396][ T5787]  device_add+0x408/0xc50
[  260.665265][ T5787]  hci_conn_add_sysfs+0xd5/0x1e0
[  260.670297][ T5787]  le_conn_complete_evt+0xf5d/0x1540
[  260.675977][ T5787]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  260.682659][ T5787]  ? bt_info+0x180/0x180
[  260.687071][ T5787]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  260.692800][ T5787]  ? skb_pull_data+0xfb/0x200
[  260.697593][ T5787]  hci_le_conn_complete_evt+0x187/0x440
[  260.703417][ T5787]  ? hci_remote_host_features_evt+0x150/0x150
[  260.709677][ T5787]  hci_event_packet+0x7ba/0x1270
[  260.715078][ T5787]  ? bis_list+0x290/0x290
[  260.719500][ T5787]  ? lockdep_hardirqs_on+0x98/0x150
[  260.725136][ T5787]  ? hci_send_to_monitor+0xd7/0x4f0
[  260.730605][ T5787]  hci_rx_work+0x43a/0xd60
[  260.735254][ T5787]  ? process_scheduled_works+0x96f/0x15d0
[  260.741590][ T5787]  process_scheduled_works+0xa5d/0x15d0
[  260.747471][ T5787]  ? worker_attach_to_pool+0x380/0x380
[  260.753547][ T5787]  ? assign_work+0x3d2/0x5d0
[  260.758592][ T5787]  worker_thread+0xa55/0xfc0
[  260.763747][ T5787]  kthread+0x2fa/0x390
[  260.768484][ T5787]  ? pr_cont_work+0x560/0x560
[  260.773514][ T5787]  ? kthread_blkcg+0xd0/0xd0
[  260.779147][ T5787]  ret_from_fork+0x48/0x80
[  260.783777][ T5787]  ? kthread_blkcg+0xd0/0xd0
[  260.788533][ T5787]  ret_from_fork_asm+0x11/0x20
[  260.794257][ T5787]  </TASK>
[  260.807352][ T5787] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  260.822220][ T5787] Bluetooth: hci0: failed to register connection device
[  261.076528][   T51] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  261.085170][   T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[  261.095225][   T51] CPU: 0 PID: 51 Comm: kworker/u5:0 Not tainted syzkaller #0
[  261.102966][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  261.113088][   T51] Workqueue: hci1 hci_rx_work
[  261.117927][   T51] Call Trace:
[  261.121262][   T51]  <TASK>
[  261.124239][   T51]  dump_stack_lvl+0x18c/0x250
[  261.129076][   T51]  ? show_regs_print_info+0x20/0x20
[  261.134695][   T51]  ? load_image+0x420/0x420
[  261.139361][   T51]  sysfs_create_dir_ns+0x26e/0x2a0
[  261.144628][   T51]  ? sysfs_warn_dup+0xa0/0xa0
[  261.149644][   T51]  ? do_raw_spin_unlock+0x121/0x230
[  261.155365][   T51]  kobject_add_internal+0x61c/0xcc0
[  261.160904][   T51]  kobject_add+0x164/0x240
[  261.165889][   T51]  ? __rwlock_init+0x150/0x150
[  261.171470][   T51]  ? kobject_init+0x1e0/0x1e0
[  261.176677][   T51]  ? _raw_spin_unlock+0x28/0x40
[  261.181879][   T51]  ? get_device_parent+0x366/0x390
[  261.187255][   T51]  device_add+0x408/0xc50
[  261.191756][   T51]  hci_conn_add_sysfs+0xd5/0x1e0
[  261.197076][   T51]  le_conn_complete_evt+0xf5d/0x1540
[  261.202643][   T51]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  261.209069][   T51]  ? bt_info+0x180/0x180
[  261.213674][   T51]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  261.219671][   T51]  ? skb_pull_data+0xfb/0x200
[  261.224434][   T51]  hci_le_conn_complete_evt+0x187/0x440
[  261.230687][   T51]  ? hci_remote_host_features_evt+0x150/0x150
[  261.237365][   T51]  hci_event_packet+0x7ba/0x1270
[  261.242597][   T51]  ? bis_list+0x290/0x290
[  261.247285][   T51]  ? lockdep_hardirqs_on+0x98/0x150
[  261.253094][   T51]  ? hci_send_to_monitor+0xd7/0x4f0
[  261.259372][   T51]  hci_rx_work+0x43a/0xd60
[  261.264467][   T51]  ? process_scheduled_works+0x96f/0x15d0
[  261.270897][   T51]  process_scheduled_works+0xa5d/0x15d0
[  261.277100][   T51]  ? worker_attach_to_pool+0x380/0x380
[  261.282776][   T51]  ? assign_work+0x3d2/0x5d0
[  261.287721][   T51]  worker_thread+0xa55/0xfc0
[  261.292552][   T51]  kthread+0x2fa/0x390
[  261.296773][   T51]  ? pr_cont_work+0x560/0x560
[  261.301631][   T51]  ? kthread_blkcg+0xd0/0xd0
[  261.306298][   T51]  ret_from_fork+0x48/0x80
[  261.310799][   T51]  ? kthread_blkcg+0xd0/0xd0
[  261.315732][   T51]  ret_from_fork_asm+0x11/0x20
[  261.320915][   T51]  </TASK>
[  261.328548][   T51] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  261.343537][   T51] Bluetooth: hci1: failed to register connection device
[  261.537471][ T8465] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.928'.
[  262.286520][ T5787] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  262.295987][ T5787] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  262.308418][ T5787] CPU: 1 PID: 5787 Comm: kworker/u5:4 Not tainted syzkaller #0
[  262.316166][ T5787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  262.326505][ T5787] Workqueue: hci3 hci_rx_work
[  262.331375][ T5787] Call Trace:
[  262.334890][ T5787]  <TASK>
[  262.337881][ T5787]  dump_stack_lvl+0x18c/0x250
[  262.342732][ T5787]  ? show_regs_print_info+0x20/0x20
[  262.348193][ T5787]  ? load_image+0x420/0x420
[  262.353431][ T5787]  sysfs_create_dir_ns+0x26e/0x2a0
[  262.360307][ T5787]  ? sysfs_warn_dup+0xa0/0xa0
[  262.365467][ T5787]  ? do_raw_spin_unlock+0x121/0x230
[  262.371220][ T5787]  kobject_add_internal+0x61c/0xcc0
[  262.376782][ T5787]  kobject_add+0x164/0x240
[  262.381381][ T5787]  ? __rwlock_init+0x150/0x150
[  262.386702][ T5787]  ? kobject_init+0x1e0/0x1e0
[  262.391927][ T5787]  ? _raw_spin_unlock+0x28/0x40
[  262.396943][ T5787]  ? get_device_parent+0x366/0x390
[  262.402222][ T5787]  device_add+0x408/0xc50
[  262.407465][ T5787]  hci_conn_add_sysfs+0xd5/0x1e0
[  262.412822][ T5787]  le_conn_complete_evt+0xf5d/0x1540
[  262.418383][ T5787]  ? hci_le_big_info_adv_report_evt+0x910/0x910
[  262.424856][ T5787]  ? bt_info+0x180/0x180
[  262.429178][ T5787]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  262.435259][ T5787]  ? skb_pull_data+0xfb/0x200
[  262.440095][ T5787]  hci_le_conn_complete_evt+0x187/0x440
[  262.445740][ T5787]  ? hci_remote_host_features_evt+0x150/0x150
[  262.451993][ T5787]  hci_event_packet+0x7ba/0x1270
[  262.457183][ T5787]  ? bis_list+0x290/0x290
[  262.461695][ T5787]  ? lockdep_hardirqs_on+0x98/0x150
[  262.468480][ T5787]  ? hci_send_to_monitor+0xd7/0x4f0
[  262.475354][ T5787]  hci_rx_work+0x43a/0xd60
[  262.480220][ T5787]  ? process_scheduled_works+0x96f/0x15d0
[  262.486822][ T5787]  process_scheduled_works+0xa5d/0x15d0
[  262.493484][ T5787]  ? worker_attach_to_pool+0x380/0x380
[  262.499216][ T5787]  ? assign_work+0x3d2/0x5d0
[  262.504940][ T5787]  worker_thread+0xa55/0xfc0
[  262.509729][ T5787]  kthread+0x2fa/0x390
[  262.514048][ T5787]  ? pr_cont_work+0x560/0x560
[  262.518998][ T5787]  ? kthread_blkcg+0xd0/0xd0
[  262.523734][ T5787]  ret_from_fork+0x48/0x80
[  262.528219][ T5787]  ? kthread_blkcg+0xd0/0xd0
[  262.532860][ T5787]  ret_from_fork_asm+0x11/0x20
[  262.537693][ T5787]  </TASK>
[  262.547121][ T5787] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  262.562312][ T5787] Bluetooth: hci3: failed to register connection device
[  262.886673][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  263.360872][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  264.637247][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  264.782422][ T8543] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  264.812693][ T8543] netlink: 'syz.3.960': attribute type 39 has an invalid length.
[  265.919710][ T8568] netlink: 'syz.3.970': attribute type 4 has an invalid length.
[  265.931709][ T8568] netlink: 'syz.3.970': attribute type 16 has an invalid length.
[  265.941263][ T8568] netlink: 132 bytes leftover after parsing attributes in process `syz.3.970'.
[  266.122241][ T8570] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  266.198345][ T8575] netlink: 'syz.3.971': attribute type 10 has an invalid length.
[  266.338620][ T8575] team0: Device hsr_slave_0 failed to register rx_handler
[  267.558338][ T8605] delete_channel: no stack
[  267.577158][ T8605] netlink: 'syz.1.984': attribute type 3 has an invalid length.
[  267.593391][ T8605] netlink: 'syz.1.984': attribute type 4 has an invalid length.
[  267.604103][ T8605] netlink: 132 bytes leftover after parsing attributes in process `syz.1.984'.
[  268.659386][ T8634] mac80211_hwsim hwsim9 .3ãc¤±: renamed from wlan1 (while UP)
[  270.039965][ T8665] FAULT_INJECTION: forcing a failure.
[  270.039965][ T8665] name failslab, interval 1, probability 0, space 0, times 0
[  270.098308][ T8665] CPU: 0 PID: 8665 Comm: syz.1.1008 Not tainted syzkaller #0
[  270.106189][ T8665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  270.116957][ T8665] Call Trace:
[  270.120598][ T8665]  <TASK>
[  270.123625][ T8665]  dump_stack_lvl+0x18c/0x250
[  270.128537][ T8665]  ? show_regs_print_info+0x20/0x20
[  270.134047][ T8665]  ? load_image+0x420/0x420
[  270.138685][ T8665]  ? __might_sleep+0xe0/0xe0
[  270.143741][ T8665]  ? __lock_acquire+0x7d40/0x7d40
[  270.149181][ T8665]  ? perf_swevent_get_recursion_context+0xde/0x150
[  270.155902][ T8665]  should_fail_ex+0x39d/0x4d0
[  270.161180][ T8665]  should_failslab+0x9/0x20
[  270.166244][ T8665]  slab_pre_alloc_hook+0x59/0x310
[  270.171609][ T8665]  kmem_cache_alloc_node+0x60/0x320
[  270.176996][ T8665]  ? trace_call_bpf+0x5e9/0x6c0
[  270.182381][ T8665]  ? __alloc_skb+0x103/0x2c0
[  270.187264][ T8665]  __alloc_skb+0x103/0x2c0
[  270.192229][ T8665]  alloc_skb_with_frags+0xca/0x7b0
[  270.197648][ T8665]  ? trace_call_bpf+0xc3/0x6c0
[  270.202790][ T8665]  ? __lock_acquire+0x7d40/0x7d40
[  270.208088][ T8665]  sock_alloc_send_pskb+0x883/0x9a0
[  270.213469][ T8665]  ? sock_kzfree_s+0x50/0x50
[  270.218286][ T8665]  tun_get_user+0x82c/0x3ca0
[  270.223083][ T8665]  ? aa_file_perm+0x11b/0xee0
[  270.227956][ T8665]  ? rcu_read_unlock+0xa0/0xa0
[  270.233266][ T8665]  ? tun_get+0x1c/0x2e0
[  270.237594][ T8665]  ? __lock_acquire+0x7d40/0x7d40
[  270.242864][ T8665]  ? __fget_files+0x28/0x4b0
[  270.249013][ T8665]  ? tun_get+0x1c/0x2e0
[  270.253682][ T8665]  tun_chr_write_iter+0x119/0x200
[  270.259553][ T8665]  vfs_write+0x46c/0x990
[  270.264731][ T8665]  ? file_end_write+0x250/0x250
[  270.270071][ T8665]  ? __fget_files+0x43d/0x4b0
[  270.275202][ T8665]  ? __fdget_pos+0x1d8/0x330
[  270.280210][ T8665]  ? ksys_write+0x75/0x260
[  270.285397][ T8665]  ksys_write+0x150/0x260
[  270.289983][ T8665]  ? __ia32_sys_read+0x90/0x90
[  270.294905][ T8665]  ? syscall_enter_from_user_mode+0x2e/0x80
[  270.301378][ T8665]  do_syscall_64+0x55/0xb0
[  270.306229][ T8665]  ? clear_bhb_loop+0x40/0x90
[  270.311217][ T8665]  ? clear_bhb_loop+0x40/0x90
[  270.315961][ T8665]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  270.322114][ T8665] RIP: 0033:0x7f029d19ce59
[  270.326850][ T8665] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  270.346792][ T8665] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  270.355746][ T8665] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  270.364854][ T8665] RDX: 000000000000fdef RSI: 00002000000004c0 RDI: 00000000000000c8
[  270.372986][ T8665] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  270.381390][ T8665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.389518][ T8665] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  270.397633][ T8665]  </TASK>
[  274.631898][ T8762] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.1045'.
[  274.730278][ T8768] netlink: 'syz.3.1045': attribute type 11 has an invalid length.
[  276.473111][ T8806] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1058'.
[  276.593290][ T8806] team0: Port device team_slave_0 removed
[  276.610964][ T8806] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  277.853837][ T8833] netlink: 'syz.0.1071': attribute type 9 has an invalid length.
[  277.865984][ T8833] netlink: 126588 bytes leftover after parsing attributes in process `syz.0.1071'.
[  277.887676][ T8836] netlink: 'syz.0.1071': attribute type 10 has an invalid length.
[  278.195628][ T8846] FAULT_INJECTION: forcing a failure.
[  278.195628][ T8846] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  278.217360][ T8846] CPU: 0 PID: 8846 Comm: syz.1.1075 Not tainted syzkaller #0
[  278.225186][ T8846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  278.235316][ T8846] Call Trace:
[  278.238830][ T8846]  <TASK>
[  278.241803][ T8846]  dump_stack_lvl+0x18c/0x250
[  278.246826][ T8846]  ? show_regs_print_info+0x20/0x20
[  278.252772][ T8846]  ? load_image+0x420/0x420
[  278.258989][ T8846]  ? __lock_acquire+0x7d40/0x7d40
[  278.264662][ T8846]  ? mark_lock+0x94/0x320
[  278.269039][ T8846]  should_fail_ex+0x39d/0x4d0
[  278.274674][ T8846]  prepare_alloc_pages+0x1e2/0x5f0
[  278.280630][ T8846]  __alloc_pages+0x134/0x460
[  278.285261][ T8846]  ? zone_statistics+0x170/0x170
[  278.290264][ T8846]  ? do_wp_page+0x7ca/0x35f0
[  278.295277][ T8846]  ? do_wp_page+0xfc5/0x35f0
[  278.300585][ T8846]  __folio_alloc+0x10/0x20
[  278.305142][ T8846]  vma_alloc_folio+0x47a/0x8f0
[  278.310037][ T8846]  do_wp_page+0x1243/0x35f0
[  278.315542][ T8846]  ? folio_put+0xd0/0xd0
[  278.320116][ T8846]  ? do_raw_spin_lock+0x11f/0x2c0
[  278.325770][ T8846]  ? __rwlock_init+0x150/0x150
[  278.330943][ T8846]  handle_mm_fault+0x135d/0x4c00
[  278.336186][ T8846]  ? handle_mm_fault+0xe7/0x4c00
[  278.341423][ T8846]  ? numa_migrate_prep+0x350/0x350
[  278.346839][ T8846]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  278.352335][ T8846]  do_user_addr_fault+0x730/0x12c0
[  278.358300][ T8846]  exc_page_fault+0x64/0x100
[  278.363365][ T8846]  asm_exc_page_fault+0x26/0x30
[  278.368709][ T8846] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  278.374658][ T8846] Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 29 f8 48 01
[  278.395607][ T8846] RSP: 0018:ffffc90019d1f718 EFLAGS: 00050206
[  278.401754][ T8846] RAX: ffffffff84281901 RBX: 1ffff920033a3fc7 RCX: 00000000000077a0
[  278.409784][ T8846] RDX: 0000000000000000 RSI: ffff888051728b18 RDI: 0000200000019000
[  278.418075][ T8846] RBP: ffffc90019d1f878 R08: ffff8880517302b7 R09: 1ffff1100a2e6056
[  278.426197][ T8846] R10: dffffc0000000000 R11: ffffed100a2e6057 R12: ffff8880517200e8
[  278.434227][ T8846] R13: 00000000000101d0 R14: 00000000000101d0 R15: ffffc90019d1fe48
[  278.442755][ T8846]  ? _copy_to_iter+0x1d1/0x1120
[  278.447787][ T8846]  _copy_to_iter+0x24f/0x1120
[  278.452690][ T8846]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  278.461197][ T8846]  ? iov_iter_init+0x1e0/0x1e0
[  278.466304][ T8846]  ? __virt_addr_valid+0x18c/0x540
[  278.471734][ T8846]  ? __virt_addr_valid+0x469/0x540
[  278.477167][ T8846]  ? __phys_addr_symbol+0x2f/0x70
[  278.482521][ T8846]  ? __check_object_size+0x506/0xa20
[  278.488008][ T8846]  __skb_datagram_iter+0xdb/0x780
[  278.493201][ T8846]  ? tsk_importance+0x150/0x150
[  278.498218][ T8846]  ? skb_copy_datagram_iter+0x200/0x200
[  278.504016][ T8846]  skb_copy_datagram_iter+0xb1/0x200
[  278.510046][ T8846]  tipc_recvstream+0x72b/0xe70
[  278.515026][ T8846]  ? tipc_sendstream+0x70/0x70
[  278.519925][ T8846]  ____sys_recvmsg+0x2ce/0x5e0
[  278.524836][ T8846]  ? __sys_recvmsg_sock+0x50/0x50
[  278.530125][ T8846]  ? import_iovec+0x73/0xa0
[  278.534850][ T8846]  ___sys_recvmsg+0x216/0x590
[  278.539750][ T8846]  ? __sys_recvmsg+0x2a0/0x2a0
[  278.544743][ T8846]  ? ksys_write+0x1c4/0x260
[  278.549396][ T8846]  ? __fget_files+0x43d/0x4b0
[  278.554218][ T8846]  __x64_sys_recvmsg+0x20c/0x2e0
[  278.559731][ T8846]  ? ___sys_recvmsg+0x590/0x590
[  278.564958][ T8846]  ? lockdep_hardirqs_on+0x98/0x150
[  278.570759][ T8846]  do_syscall_64+0x55/0xb0
[  278.575554][ T8846]  ? clear_bhb_loop+0x40/0x90
[  278.580846][ T8846]  ? clear_bhb_loop+0x40/0x90
[  278.585586][ T8846]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  278.591539][ T8846] RIP: 0033:0x7f029d19ce59
[  278.596193][ T8846] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  278.616012][ T8846] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  278.625235][ T8846] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  278.633525][ T8846] RDX: 0000000000001f00 RSI: 0000200000000500 RDI: 0000000000000004
[  278.641629][ T8846] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  278.649826][ T8846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  278.660048][ T8846] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  278.669318][ T8846]  </TASK>
[  279.864897][ T8879] FAULT_INJECTION: forcing a failure.
[  279.864897][ T8879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.902239][ T8879] CPU: 0 PID: 8879 Comm: syz.1.1090 Not tainted syzkaller #0
[  279.910340][ T8879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  279.921249][ T8879] Call Trace:
[  279.924861][ T8879]  <TASK>
[  279.927851][ T8879]  dump_stack_lvl+0x18c/0x250
[  279.932864][ T8879]  ? show_regs_print_info+0x20/0x20
[  279.938340][ T8879]  ? load_image+0x420/0x420
[  279.943023][ T8879]  ? __might_fault+0xaa/0x120
[  279.948046][ T8879]  ? __lock_acquire+0x7d40/0x7d40
[  279.953438][ T8879]  should_fail_ex+0x39d/0x4d0
[  279.959063][ T8879]  _copy_from_iter+0x1d9/0x12e0
[  279.964382][ T8879]  ? __might_fault+0xaa/0x120
[  279.969433][ T8879]  ? _copy_from_iter+0x24e/0x12e0
[  279.974523][ T8879]  ? __virt_addr_valid+0x18c/0x540
[  279.979991][ T8879]  ? __lock_acquire+0x7d40/0x7d40
[  279.985717][ T8879]  ? copyout_mc+0x70/0x70
[  279.990405][ T8879]  ? copyout_mc+0x70/0x70
[  279.994830][ T8879]  ? __virt_addr_valid+0x18c/0x540
[  280.000152][ T8879]  ? page_copy_sane+0x16a/0x270
[  280.005471][ T8879]  copy_page_from_iter+0x7b/0x100
[  280.011386][ T8879]  skb_copy_datagram_from_iter+0x2e4/0x6e0
[  280.019090][ T8879]  tun_get_user+0x15db/0x3ca0
[  280.024059][ T8879]  ? aa_file_perm+0x11b/0xee0
[  280.029182][ T8879]  ? rcu_read_unlock+0xa0/0xa0
[  280.034738][ T8879]  ? tun_get+0x1c/0x2e0
[  280.039792][ T8879]  ? __lock_acquire+0x7d40/0x7d40
[  280.046058][ T8879]  ? tun_get+0x1c/0x2e0
[  280.051461][ T8879]  tun_chr_write_iter+0x119/0x200
[  280.057021][ T8879]  vfs_write+0x46c/0x990
[  280.061709][ T8879]  ? file_end_write+0x250/0x250
[  280.067127][ T8879]  ? __fget_files+0x43d/0x4b0
[  280.072265][ T8879]  ? __fdget_pos+0x1d8/0x330
[  280.077679][ T8879]  ? ksys_write+0x75/0x260
[  280.082804][ T8879]  ksys_write+0x150/0x260
[  280.087916][ T8879]  ? __ia32_sys_read+0x90/0x90
[  280.092947][ T8879]  ? lockdep_hardirqs_on+0x98/0x150
[  280.098489][ T8879]  do_syscall_64+0x55/0xb0
[  280.105077][ T8879]  ? clear_bhb_loop+0x40/0x90
[  280.109864][ T8879]  ? clear_bhb_loop+0x40/0x90
[  280.114982][ T8879]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  280.122541][ T8879] RIP: 0033:0x7f029d19ce59
[  280.128432][ T8879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  280.151069][ T8879] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  280.161693][ T8879] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  280.171749][ T8879] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 00000000000000c8
[  280.180683][ T8879] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  280.189344][ T8879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.198341][ T8879] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  280.207570][ T8879]  </TASK>
[  286.348594][ T8979] syzkaller0: entered promiscuous mode
[  286.358161][ T8979] syzkaller0: entered allmulticast mode
[  286.990169][   T51] Bluetooth: hci0: unexpected event 0x05 length: 151 > 4
[  289.156641][ T9011] netlink: 'syz.2.1138': attribute type 10 has an invalid length.
[  290.066069][   T51] Bluetooth: hci2: unexpected event 0x05 length: 151 > 4
[  290.221674][ T9032] netlink: 'syz.0.1146': attribute type 2 has an invalid length.
[  290.262252][ T9032] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1146'.
[  290.288236][ T9037] netlink: 'syz.0.1146': attribute type 29 has an invalid length.
[  290.335355][ T9037] netlink: 'syz.0.1146': attribute type 29 has an invalid length.
[  290.353488][ T9032] netlink: 'syz.0.1146': attribute type 29 has an invalid length.
[  290.745102][ T9049] netlink: 'syz.3.1152': attribute type 10 has an invalid length.
[  290.790619][ T9049] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1152'.
[  291.390716][ T9065] netlink: 'syz.3.1158': attribute type 10 has an invalid length.
[  291.877407][   T51] Bluetooth: hci1: unexpected event 0x05 length: 151 > 4
[  292.544129][ T9090] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  292.652330][ T9093] netlink: 'syz.0.1168': attribute type 10 has an invalid length.
[  293.086687][   T51] Bluetooth: hci1: unexpected event 0x05 length: 151 > 4
[  294.476231][ T9119] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1178'.
[  294.542428][ T9118] netlink: 14601 bytes leftover after parsing attributes in process `syz.1.1178'.
[  294.798125][ T9130] netlink: 'syz.1.1181': attribute type 10 has an invalid length.
[  295.387843][   T51] Bluetooth: hci3: unexpected event 0x05 length: 151 > 4
[  295.968241][ T9151] netlink: 'syz.2.1190': attribute type 10 has an invalid length.
[  296.007203][ T9151] veth1_vlan: left allmulticast mode
[  296.047548][ T9151] veth1_vlan: entered allmulticast mode
[  296.090029][ T9151] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  296.496448][ T9164] netlink: 'syz.2.1194': attribute type 10 has an invalid length.
[  297.241760][   T51] Bluetooth: hci0: unexpected event 0x05 length: 151 > 4
[  297.954670][ T9178] FAULT_INJECTION: forcing a failure.
[  297.954670][ T9178] name failslab, interval 1, probability 0, space 0, times 0
[  297.986972][ T9178] CPU: 1 PID: 9178 Comm: syz.1.1199 Not tainted syzkaller #0
[  297.994525][ T9178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  298.005109][ T9178] Call Trace:
[  298.008886][ T9178]  <TASK>
[  298.011879][ T9178]  dump_stack_lvl+0x18c/0x250
[  298.016723][ T9178]  ? show_regs_print_info+0x20/0x20
[  298.022166][ T9178]  ? load_image+0x420/0x420
[  298.026912][ T9178]  ? __might_sleep+0xe0/0xe0
[  298.031666][ T9178]  ? __lock_acquire+0x7d40/0x7d40
[  298.036888][ T9178]  should_fail_ex+0x39d/0x4d0
[  298.041771][ T9178]  should_failslab+0x9/0x20
[  298.046528][ T9178]  slab_pre_alloc_hook+0x59/0x310
[  298.051831][ T9178]  kmem_cache_alloc_node+0x60/0x320
[  298.057471][ T9178]  ? __alloc_skb+0x103/0x2c0
[  298.062424][ T9178]  __alloc_skb+0x103/0x2c0
[  298.066927][ T9178]  netlink_dump+0x1ec/0xe50
[  298.071512][ T9178]  ? ethnl_ops_complete+0xc0/0xc0
[  298.076606][ T9178]  ? netlink_lookup+0x200/0x200
[  298.081541][ T9178]  ? genl_start+0x574/0x6b0
[  298.086118][ T9178]  __netlink_dump_start+0x5f1/0x810
[  298.092092][ T9178]  genl_family_rcv_msg_dumpit+0x214/0x310
[  298.098054][ T9178]  ? genl_rcv_msg+0x7a0/0x7a0
[  298.103230][ T9178]  ? genl_get_cmd+0x692/0x920
[  298.108042][ T9178]  ? genl_family_rcv_msg_doit+0x310/0x310
[  298.113896][ T9178]  ? genl_start+0x6b0/0x6b0
[  298.118721][ T9178]  ? genl_dumpit+0x1a0/0x1a0
[  298.124090][ T9178]  genl_rcv_msg+0x5e5/0x7a0
[  298.128740][ T9178]  ? genl_bind+0x360/0x360
[  298.133371][ T9178]  ? ethnl_default_doit+0xb80/0xb80
[  298.139147][ T9178]  ? ethnl_default_start+0x560/0x560
[  298.144566][ T9178]  ? ethnl_default_dumpit+0x8a0/0x8a0
[  298.149988][ T9178]  ? ref_tracker_free+0x690/0x840
[  298.155247][ T9178]  netlink_rcv_skb+0x241/0x4d0
[  298.160871][ T9178]  ? genl_bind+0x360/0x360
[  298.165536][ T9178]  ? netlink_ack+0x1180/0x1180
[  298.170632][ T9178]  ? __lock_acquire+0x7d40/0x7d40
[  298.175708][ T9178]  ? down_read+0x1ac/0x2e0
[  298.180253][ T9178]  genl_rcv+0x28/0x40
[  298.184271][ T9178]  netlink_unicast+0x751/0x8d0
[  298.189228][ T9178]  netlink_sendmsg+0x8d0/0xbf0
[  298.194144][ T9178]  ? netlink_getsockopt+0x590/0x590
[  298.199483][ T9178]  ? aa_sock_msg_perm+0x94/0x150
[  298.204552][ T9178]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  298.209897][ T9178]  ? security_socket_sendmsg+0x80/0xa0
[  298.216036][ T9178]  ? netlink_getsockopt+0x590/0x590
[  298.221682][ T9178]  ____sys_sendmsg+0x5ba/0x960
[  298.226687][ T9178]  ? __asan_memset+0x22/0x40
[  298.231515][ T9178]  ? __sys_sendmsg_sock+0x30/0x30
[  298.237173][ T9178]  ? __import_iovec+0x5f2/0x850
[  298.242805][ T9178]  ? import_iovec+0x73/0xa0
[  298.247453][ T9178]  ___sys_sendmsg+0x2a6/0x360
[  298.252793][ T9178]  ? get_pid_task+0x20/0x1e0
[  298.258419][ T9178]  ? __sys_sendmsg+0x2a0/0x2a0
[  298.264307][ T9178]  ? __lock_acquire+0x7d40/0x7d40
[  298.271352][ T9178]  __se_sys_sendmsg+0x1c2/0x2b0
[  298.279376][ T9178]  ? __x64_sys_sendmsg+0x80/0x80
[  298.285976][ T9178]  ? lockdep_hardirqs_on+0x98/0x150
[  298.292513][ T9178]  do_syscall_64+0x55/0xb0
[  298.297092][ T9178]  ? clear_bhb_loop+0x40/0x90
[  298.302254][ T9178]  ? clear_bhb_loop+0x40/0x90
[  298.307163][ T9178]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  298.313421][ T9178] RIP: 0033:0x7f029d19ce59
[  298.317966][ T9178] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  298.338237][ T9178] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  298.346891][ T9178] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  298.355983][ T9178] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  298.364351][ T9178] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  298.373176][ T9178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  298.381851][ T9178] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  298.390001][ T9178]  </TASK>
[  299.176580][ T9200] 8021q: adding VLAN 0 to HW filter on device batadv0
[  299.193236][ T9200] netlink: 'syz.2.1206': attribute type 10 has an invalid length.
[  299.948401][ T9206] syzkaller0: entered promiscuous mode
[  299.954468][ T9206] syzkaller0: entered allmulticast mode
[  300.967850][ T9227] netlink: 'syz.1.1217': attribute type 10 has an invalid length.
[  301.022939][ T9226] 8021q: adding VLAN 0 to HW filter on device batadv0
[  301.972704][ T9238] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1221'.
[  302.207499][   T42] syzkaller0: tun_net_xmit 76
[  302.213292][   T42] syzkaller0: tun_net_xmit 48
[  302.237645][ T5824] syzkaller0: tun_net_xmit 76
[  304.466222][ T9255] 8021q: adding VLAN 0 to HW filter on device batadv0
[  304.494131][ T9256] netlink: 'syz.3.1227': attribute type 10 has an invalid length.
[  304.669196][ T9261] FAULT_INJECTION: forcing a failure.
[  304.669196][ T9261] name failslab, interval 1, probability 0, space 0, times 0
[  304.694408][ T9261] CPU: 1 PID: 9261 Comm: syz.1.1228 Not tainted syzkaller #0
[  304.702189][ T9261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  304.712567][ T9261] Call Trace:
[  304.716011][ T9261]  <TASK>
[  304.719091][ T9261]  dump_stack_lvl+0x18c/0x250
[  304.724131][ T9261]  ? show_regs_print_info+0x20/0x20
[  304.729672][ T9261]  ? load_image+0x420/0x420
[  304.734416][ T9261]  ? __might_sleep+0xe0/0xe0
[  304.739329][ T9261]  ? __lock_acquire+0x7d40/0x7d40
[  304.744506][ T9261]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  304.750297][ T9261]  should_fail_ex+0x39d/0x4d0
[  304.755131][ T9261]  should_failslab+0x9/0x20
[  304.759741][ T9261]  slab_pre_alloc_hook+0x59/0x310
[  304.764905][ T9261]  kmem_cache_alloc+0x5a/0x2d0
[  304.770248][ T9261]  ? getname_flags+0xbb/0x500
[  304.775237][ T9261]  getname_flags+0xbb/0x500
[  304.780237][ T9261]  __x64_sys_mkdirat+0x7c/0xa0
[  304.785107][ T9261]  do_syscall_64+0x55/0xb0
[  304.789626][ T9261]  ? clear_bhb_loop+0x40/0x90
[  304.794388][ T9261]  ? clear_bhb_loop+0x40/0x90
[  304.799260][ T9261]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  304.805375][ T9261] RIP: 0033:0x7f029d19ce59
[  304.809985][ T9261] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  304.830317][ T9261] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  304.838874][ T9261] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  304.848083][ T9261] RDX: 00000000000001ff RSI: 00002000000001c0 RDI: 0000000000000008
[  304.857192][ T9261] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  304.865375][ T9261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.874168][ T9261] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  304.882895][ T9261]  </TASK>
[  305.875220][ T9284] 8021q: adding VLAN 0 to HW filter on device batadv0
[  305.900179][ T9284] netlink: 'syz.0.1238': attribute type 10 has an invalid length.
[  306.216899][ T9288] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1240'.
[  309.148268][ T9312] 8021q: adding VLAN 0 to HW filter on device batadv0
[  309.161956][ T9312] netlink: 'syz.2.1249': attribute type 10 has an invalid length.
[  311.330948][ T9344] netlink: 'syz.1.1261': attribute type 10 has an invalid length.
[  311.609478][ T9352] netlink: 'syz.2.1263': attribute type 19 has an invalid length.
[  311.623266][ T9352] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1263'.
[  311.639659][ T9352] netlink: 'syz.2.1263': attribute type 10 has an invalid length.
[  311.653490][ T9352] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1263'.
[  311.666510][ T9352] netlink: 59975 bytes leftover after parsing attributes in process `syz.2.1263'.
[  312.550051][ T9374] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.575382][ T9374] netlink: 'syz.1.1274': attribute type 10 has an invalid length.
[  313.344878][ T9390] netlink: 'syz.0.1278': attribute type 10 has an invalid length.
[  313.354497][ T9390] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1278'.
[  313.374880][ T9390] ipvlan1: entered promiscuous mode
[  313.388702][ T9390] ipvlan1: entered allmulticast mode
[  313.403139][ T9390] veth0_vlan: entered allmulticast mode
[  313.463987][ T9390] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  313.524999][ T9390] syz.0.1278 (9390) used greatest stack depth: 18920 bytes left
[  313.894300][ T9410] 8021q: adding VLAN 0 to HW filter on device batadv0
[  313.959528][ T9410] netlink: 'syz.2.1286': attribute type 10 has an invalid length.
[  314.837368][ T9432] netlink: 'syz.0.1293': attribute type 10 has an invalid length.
[  314.861460][ T9432] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1293'.
[  314.894870][ T9432] bridge0: port 3(ipvlan1) entered blocking state
[  314.919381][ T9432] bridge0: port 3(ipvlan1) entered disabled state
[  315.040133][ T9432] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  315.664929][ T9458] 8021q: adding VLAN 0 to HW filter on device batadv0
[  315.696066][ T9458] netlink: 'syz.1.1302': attribute type 10 has an invalid length.
[  316.707674][ T9471] FAULT_INJECTION: forcing a failure.
[  316.707674][ T9471] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.746814][ T9471] CPU: 1 PID: 9471 Comm: syz.1.1304 Not tainted syzkaller #0
[  316.754497][ T9471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  316.764722][ T9471] Call Trace:
[  316.768128][ T9471]  <TASK>
[  316.771122][ T9471]  dump_stack_lvl+0x18c/0x250
[  316.776146][ T9471]  ? show_regs_print_info+0x20/0x20
[  316.781868][ T9471]  ? load_image+0x420/0x420
[  316.786881][ T9471]  ? __lock_acquire+0x7d40/0x7d40
[  316.792268][ T9471]  ? snprintf+0xe9/0x140
[  316.796870][ T9471]  should_fail_ex+0x39d/0x4d0
[  316.802023][ T9471]  _copy_to_user+0x2f/0xa0
[  316.806946][ T9471]  simple_read_from_buffer+0xe7/0x150
[  316.812610][ T9471]  proc_fail_nth_read+0x1e8/0x260
[  316.817718][ T9471]  ? proc_fault_inject_write+0x360/0x360
[  316.823709][ T9471]  ? fsnotify_perm+0x271/0x5e0
[  316.828814][ T9471]  ? proc_fault_inject_write+0x360/0x360
[  316.834627][ T9471]  vfs_read+0x28b/0x970
[  316.838942][ T9471]  ? kernel_read+0x1e0/0x1e0
[  316.843619][ T9471]  ? __fget_files+0x28/0x4b0
[  316.848715][ T9471]  ? __fget_files+0x28/0x4b0
[  316.853386][ T9471]  ? __fget_files+0x43d/0x4b0
[  316.858158][ T9471]  ? __fdget_pos+0x2a3/0x330
[  316.863746][ T9471]  ? ksys_read+0x75/0x260
[  316.868557][ T9471]  ksys_read+0x150/0x260
[  316.873556][ T9471]  ? vfs_write+0x990/0x990
[  316.878160][ T9471]  ? lockdep_hardirqs_on+0x98/0x150
[  316.886154][ T9471]  do_syscall_64+0x55/0xb0
[  316.891303][ T9471]  ? clear_bhb_loop+0x40/0x90
[  316.896056][ T9471]  ? clear_bhb_loop+0x40/0x90
[  316.901157][ T9471]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  316.907300][ T9471] RIP: 0033:0x7f029d15d68e
[  316.911960][ T9471] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  316.933731][ T9471] RSP: 002b:00007f029dfaefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  316.942280][ T9471] RAX: ffffffffffffffda RBX: 00007f029dfaf6c0 RCX: 00007f029d15d68e
[  316.950502][ T9471] RDX: 000000000000000f RSI: 00007f029dfaf0a0 RDI: 000000000000000b
[  316.958627][ T9471] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  316.966948][ T9471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.975942][ T9471] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  316.984377][ T9471]  </TASK>
[  317.538854][ T9473] raw_sendmsg: syz.1.1306 forgot to set AF_INET. Fix it!
[  317.638075][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  317.644788][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  317.964456][ T9491] netlink: 'syz.1.1308': attribute type 12 has an invalid length.
[  317.981119][ T9491] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1308'.
[  318.073392][ T9494] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1312'.
[  318.192840][ T9497] 8021q: adding VLAN 0 to HW filter on device batadv0
[  318.204696][ T9497] netlink: 'syz.0.1314': attribute type 10 has an invalid length.
[  318.932385][ T9511] netlink: 16399 bytes leftover after parsing attributes in process `syz.3.1318'.
[  319.090510][ T9517] FAULT_INJECTION: forcing a failure.
[  319.090510][ T9517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  319.123203][ T9517] CPU: 0 PID: 9517 Comm: syz.0.1320 Not tainted syzkaller #0
[  319.130848][ T9517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  319.141860][ T9517] Call Trace:
[  319.145671][ T9517]  <TASK>
[  319.148830][ T9517]  dump_stack_lvl+0x18c/0x250
[  319.153607][ T9517]  ? show_regs_print_info+0x20/0x20
[  319.159066][ T9517]  ? load_image+0x420/0x420
[  319.163728][ T9517]  ? __might_fault+0xaa/0x120
[  319.168756][ T9517]  ? __lock_acquire+0x7d40/0x7d40
[  319.174250][ T9517]  should_fail_ex+0x39d/0x4d0
[  319.179281][ T9517]  _copy_from_user+0x2f/0xe0
[  319.184046][ T9517]  generic_map_update_batch+0x59a/0x810
[  319.190011][ T9517]  ? rcu_read_unlock+0xa0/0xa0
[  319.194837][ T9517]  ? __fdget+0x180/0x210
[  319.199240][ T9517]  ? rcu_read_unlock+0xa0/0xa0
[  319.204182][ T9517]  bpf_map_do_batch+0x3d7/0x610
[  319.209292][ T9517]  __sys_bpf+0x381/0x890
[  319.213611][ T9517]  ? bpf_link_show_fdinfo+0x390/0x390
[  319.219417][ T9517]  ? lock_chain_count+0x20/0x20
[  319.224523][ T9517]  __x64_sys_bpf+0x7c/0x90
[  319.229117][ T9517]  do_syscall_64+0x55/0xb0
[  319.233607][ T9517]  ? clear_bhb_loop+0x40/0x90
[  319.238576][ T9517]  ? clear_bhb_loop+0x40/0x90
[  319.243404][ T9517]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  319.249550][ T9517] RIP: 0033:0x7f025e39ce59
[  319.254014][ T9517] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  319.274649][ T9517] RSP: 002b:00007f025f324028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  319.283487][ T9517] RAX: ffffffffffffffda RBX: 00007f025e615fa0 RCX: 00007f025e39ce59
[  319.291574][ T9517] RDX: 0000000000000038 RSI: 00002000000001c0 RDI: 000000000000001a
[  319.299697][ T9517] RBP: 00007f025f324090 R08: 0000000000000000 R09: 0000000000000000
[  319.308269][ T9517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.316752][ T9517] R13: 00007f025e616038 R14: 00007f025e615fa0 R15: 00007fff667b7cc8
[  319.324978][ T9517]  </TASK>
[  319.606640][ T9527] 8021q: adding VLAN 0 to HW filter on device batadv0
[  319.618531][ T9527] netlink: 'syz.0.1325': attribute type 10 has an invalid length.
[  320.506207][ T9551] FAULT_INJECTION: forcing a failure.
[  320.506207][ T9551] name failslab, interval 1, probability 0, space 0, times 0
[  320.549322][ T9551] CPU: 1 PID: 9551 Comm: syz.1.1329 Not tainted syzkaller #0
[  320.557115][ T9551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  320.567469][ T9551] Call Trace:
[  320.570981][ T9551]  <TASK>
[  320.574020][ T9551]  dump_stack_lvl+0x18c/0x250
[  320.579045][ T9551]  ? show_regs_print_info+0x20/0x20
[  320.584646][ T9551]  ? load_image+0x420/0x420
[  320.589403][ T9551]  ? __might_sleep+0xe0/0xe0
[  320.594158][ T9551]  ? __lock_acquire+0x7d40/0x7d40
[  320.599451][ T9551]  should_fail_ex+0x39d/0x4d0
[  320.604370][ T9551]  should_failslab+0x9/0x20
[  320.609066][ T9551]  slab_pre_alloc_hook+0x59/0x310
[  320.614369][ T9551]  ? tomoyo_encode+0x28b/0x540
[  320.619451][ T9551]  ? tomoyo_encode+0x28b/0x540
[  320.624434][ T9551]  __kmem_cache_alloc_node+0x53/0x250
[  320.630191][ T9551]  ? tomoyo_encode+0x28b/0x540
[  320.635175][ T9551]  __kmalloc+0xa4/0x230
[  320.639497][ T9551]  tomoyo_encode+0x28b/0x540
[  320.644446][ T9551]  tomoyo_realpath_from_path+0x592/0x5d0
[  320.650351][ T9551]  tomoyo_path_number_perm+0x248/0x620
[  320.656080][ T9551]  ? tomoyo_path_number_perm+0x217/0x620
[  320.662785][ T9551]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  320.668704][ T9551]  ? ksys_write+0x1c4/0x260
[  320.673534][ T9551]  ? __fget_files+0x28/0x4b0
[  320.678514][ T9551]  ? __fget_files+0x28/0x4b0
[  320.684258][ T9551]  security_file_ioctl+0x70/0xa0
[  320.689451][ T9551]  __se_sys_ioctl+0x48/0x170
[  320.694216][ T9551]  do_syscall_64+0x55/0xb0
[  320.698980][ T9551]  ? clear_bhb_loop+0x40/0x90
[  320.703728][ T9551]  ? clear_bhb_loop+0x40/0x90
[  320.708869][ T9551]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  320.714899][ T9551] RIP: 0033:0x7f029d19ce59
[  320.719926][ T9551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.740150][ T9551] RSP: 002b:00007f029dfaf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  320.748777][ T9551] RAX: ffffffffffffffda RBX: 00007f029d415fa0 RCX: 00007f029d19ce59
[  320.756843][ T9551] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000006
[  320.765267][ T9551] RBP: 00007f029dfaf090 R08: 0000000000000000 R09: 0000000000000000
[  320.773591][ T9551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.782008][ T9551] R13: 00007f029d416038 R14: 00007f029d415fa0 R15: 00007ffe4ba49088
[  320.790496][ T9551]  </TASK>
[  320.837836][ T9551] ERROR: Out of memory at tomoyo_realpath_from_path.
[  323.203635][ T9568] 8021q: adding VLAN 0 to HW filter on device batadv0
[  323.224145][ T9568] netlink: 'syz.3.1336': attribute type 10 has an invalid length.
[  323.374888][ T9577] netlink: 144772 bytes leftover after parsing attributes in process `syz.1.1340'.
[  323.973876][ T9590] FAULT_INJECTION: forcing a failure.
[  323.973876][ T9590] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.013414][ T9590] CPU: 1 PID: 9590 Comm: syz.2.1343 Not tainted syzkaller #0
[  324.021055][ T9590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  324.031695][ T9590] Call Trace:
[  324.035271][ T9590]  <TASK>
[  324.038253][ T9590]  dump_stack_lvl+0x18c/0x250
[  324.042997][ T9590]  ? show_regs_print_info+0x20/0x20
[  324.048357][ T9590]  ? load_image+0x420/0x420
[  324.053813][ T9590]  ? __might_fault+0xaa/0x120
[  324.059522][ T9590]  ? __lock_acquire+0x7d40/0x7d40
[  324.064641][ T9590]  should_fail_ex+0x39d/0x4d0
[  324.069579][ T9590]  _copy_from_user+0x2f/0xe0
[  324.074328][ T9590]  ___sys_recvmsg+0x176/0x590
[  324.079450][ T9590]  ? __sys_recvmsg+0x2a0/0x2a0
[  324.084333][ T9590]  ? ksys_write+0x1c4/0x260
[  324.089180][ T9590]  ? __fget_files+0x43d/0x4b0
[  324.094028][ T9590]  __x64_sys_recvmsg+0x20c/0x2e0
[  324.099236][ T9590]  ? ___sys_recvmsg+0x590/0x590
[  324.104165][ T9590]  ? lockdep_hardirqs_on+0x98/0x150
[  324.109729][ T9590]  do_syscall_64+0x55/0xb0
[  324.114207][ T9590]  ? clear_bhb_loop+0x40/0x90
[  324.118970][ T9590]  ? clear_bhb_loop+0x40/0x90
[  324.123821][ T9590]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  324.129789][ T9590] RIP: 0033:0x7fd4dbf9ce59
[  324.134311][ T9590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  324.155114][ T9590] RSP: 002b:00007fd4dce0a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  324.163688][ T9590] RAX: ffffffffffffffda RBX: 00007fd4dc215fa0 RCX: 00007fd4dbf9ce59
[  324.172254][ T9590] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  324.180383][ T9590] RBP: 00007fd4dce0a090 R08: 0000000000000000 R09: 0000000000000000
[  324.188519][ T9590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.196642][ T9590] R13: 00007fd4dc216038 R14: 00007fd4dc215fa0 R15: 00007ffe7e270708
[  324.205040][ T9590]  </TASK>
[  324.831441][ T9610] 8021q: adding VLAN 0 to HW filter on device batadv0
[  324.844800][ T9610] netlink: 'syz.2.1350': attribute type 10 has an invalid length.
[  327.432576][ T9652] 8021q: adding VLAN 0 to HW filter on device batadv0
[  327.451500][ T9652] netlink: 'syz.0.1364': attribute type 10 has an invalid length.
[  327.510185][ T9655] netlink: 'syz.1.1363': attribute type 12 has an invalid length.
[  327.533998][ T9655] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1363'.
[  327.727038][ T9657] netlink: 'syz.0.1365': attribute type 10 has an invalid length.
[  327.747029][ T9657] netlink: 55 bytes leftover after parsing attributes in process `syz.0.1365'.
[  330.306295][ T9682] netlink: 'syz.1.1375': attribute type 21 has an invalid length.
[  330.337438][ T9682] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1375'.
[  330.379782][ T9685] 8021q: adding VLAN 0 to HW filter on device batadv0
[  330.392771][ T9685] netlink: 'syz.3.1374': attribute type 10 has an invalid length.
[  331.439000][ T9708] netlink: 'syz.3.1385': attribute type 9 has an invalid length.
[  331.480462][ T9708] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1385'.
[  331.565396][ T9709] netlink: 'syz.3.1385': attribute type 9 has an invalid length.
[  331.577212][ T9709] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1385'.
[  331.736902][ T9708] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.1385'.
[  332.027627][ T9723] 8021q: adding VLAN 0 to HW filter on device batadv0
[  332.091954][ T9723] netlink: 'syz.2.1390': attribute type 10 has an invalid length.
[  333.744592][ T9744] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1397'.
[  333.880720][ T9749] bridge_slave_1: left allmulticast mode
[  333.886637][ T9749] bridge_slave_1: left promiscuous mode
[  333.918913][ T9749] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.973214][ T9749] bridge_slave_0: left allmulticast mode
[  333.988552][ T9749] bridge_slave_0: left promiscuous mode
[  333.994580][ T9749] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.138886][ T9753] netlink: 199800 bytes leftover after parsing attributes in process `syz.3.1400'.
[  334.581213][ T9757] netlink: 'syz.1.1399': attribute type 9 has an invalid length.
[  334.609818][ T9757] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1399'.
[  334.711346][ T9761] 8021q: adding VLAN 0 to HW filter on device batadv0
[  334.718998][ T9759] netlink: 'syz.1.1399': attribute type 9 has an invalid length.
[  334.740066][ T9759] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.1399'.
[  334.786198][ T9761] netlink: 'syz.2.1402': attribute type 10 has an invalid length.
[  335.370569][ T9776] netlink: 161340 bytes leftover after parsing attributes in process `syz.0.1409'.
[  335.725808][ T9787] delete_channel: no stack
[  335.758310][ T9787] delete_channel: no stack
[  337.507027][ T9784] netlink: 'syz.2.1412': attribute type 33 has an invalid length.
[  337.536843][ T9784] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1412'.
[  337.555035][ T9784] `: renamed from syz_tun (while UP)
[  337.825033][ T9797] 8021q: adding VLAN 0 to HW filter on device batadv0
[  337.866307][ T9797] netlink: 'syz.0.1414': attribute type 10 has an invalid length.
[  338.145566][ T9806] netlink: 'syz.2.1416': attribute type 10 has an invalid length.
[  338.325206][ T9810] FAULT_INJECTION: forcing a failure.
[  338.325206][ T9810] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.400359][ T9810] CPU: 1 PID: 9810 Comm: syz.3.1419 Not tainted syzkaller #0
[  338.407923][ T9810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  338.418422][ T9810] Call Trace:
[  338.422488][ T9810]  <TASK>
[  338.425748][ T9810]  dump_stack_lvl+0x18c/0x250
[  338.430588][ T9810]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  338.437030][ T9810]  ? show_regs_print_info+0x20/0x20
[  338.442492][ T9810]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  338.442795][ T9806] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  338.448808][ T9810]  should_fail_ex+0x39d/0x4d0
[  338.448881][ T9810]  _copy_to_user+0x2f/0xa0
[  338.448913][ T9810]  simple_read_from_buffer+0xe7/0x150
[  338.448954][ T9810]  proc_fail_nth_read+0x1e8/0x260
[  338.448996][ T9810]  ? proc_fault_inject_write+0x360/0x360
[  338.449033][ T9810]  ? fsnotify_perm+0x271/0x5e0
[  338.449055][ T9810]  ? proc_fault_inject_write+0x360/0x360
[  338.449088][ T9810]  vfs_read+0x28b/0x970
[  338.449126][ T9810]  ? kernel_read+0x1e0/0x1e0
[  338.449172][ T9810]  ? __fget_files+0x28/0x4b0
[  338.449200][ T9810]  ? __fget_files+0x28/0x4b0
[  338.449230][ T9810]  ? __fget_files+0x43d/0x4b0
[  338.449271][ T9810]  ? __fdget_pos+0x2a3/0x330
[  338.449299][ T9810]  ? ksys_read+0x75/0x260
[  338.449332][ T9810]  ksys_read+0x150/0x260
[  338.449366][ T9810]  ? vfs_write+0x990/0x990
[  338.449410][ T9810]  do_syscall_64+0x55/0xb0
[  338.449436][ T9810]  ? clear_bhb_loop+0x40/0x90
[  338.449455][ T9810]  ? clear_bhb_loop+0x40/0x90
[  338.449477][ T9810]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  338.449509][ T9810] RIP: 0033:0x7f6a1855d68e
[  338.449531][ T9810] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  338.449550][ T9810] RSP: 002b:00007f6a1951bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  338.449575][ T9810] RAX: ffffffffffffffda RBX: 00007f6a1951c6c0 RCX: 00007f6a1855d68e
[  338.449592][ T9810] RDX: 000000000000000f RSI: 00007f6a1951c0a0 RDI: 0000000000000008
[  338.449606][ T9810] RBP: 00007f6a1951c090 R08: 0000000000000000 R09: 0000000000000000
[  338.449621][ T9810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.449635][ T9810] R13: 00007f6a18816038 R14: 00007f6a18815fa0 R15: 00007fff497c45e8
[  338.449670][ T9810]  </TASK>
[  340.867111][ T9801] ------------[ cut here ]------------
[  340.872799][ T9801] WARNING: CPU: 0 PID: 9801 at kernel/events/core.c:6808 perf_pending_task+0x35c/0x470
[  340.883154][ T9801] Modules linked in:
[  340.887661][ T9801] CPU: 0 PID: 9801 Comm: syz.2.1416 Not tainted syzkaller #0
[  340.895289][ T9801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  340.906456][ T9801] RIP: 0010:perf_pending_task+0x35c/0x470
[  340.912412][ T9801] Code: ff 84 db 75 14 e8 74 cb d5 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 60 cb d5 ff e8 4b 3d 4f ff eb e5 e8 54 cb d5 ff <0f> 0b e9 f3 fe ff ff e8 48 cb d5 ff 48 c7 c7 10 f9 1c 8d 4c 89 f6
[  340.934944][ T9801] RSP: 0018:ffffc900032579c0 EFLAGS: 00010293
[  340.941974][ T9801] RAX: ffffffff81b1603c RBX: ffff88801db07e48 RCX: ffff888024a83c00
[  340.950394][ T9801] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  340.959216][ T9801] RBP: 0000000000000001 R08: ffffffff8e8b666f R09: 1ffffffff1d16ccd
[  340.967537][ T9801] R10: dffffc0000000000 R11: fffffbfff1d16cce R12: ffff888024a83c00
[  340.975994][ T9801] R13: ffff888030e9c130 R14: ffff88801db07c08 R15: 1ffff11003b60f81
[  340.984553][ T9801] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  340.994403][ T9801] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  341.001481][ T9801] CR2: 0000001b2de21ff8 CR3: 000000007d20b000 CR4: 00000000003506f0
[  341.010044][ T9801] DR0: 0000200000000300 DR1: 0000200000000300 DR2: 0000200000000300
[  341.018247][ T9801] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  341.026486][ T9801] Call Trace:
[  341.030121][ T9801]  <TASK>
[  341.033133][ T9801]  task_work_run+0x1d4/0x260
[  341.038254][ T9801]  ? task_work_cancel+0x220/0x220
[  341.044257][ T9801]  do_exit+0x95a/0x2460
[  341.048947][ T9801]  ? get_signal+0x1068/0x13f0
[  341.053808][ T9801]  ? put_task_struct+0xc0/0xc0
[  341.059004][ T9801]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  341.065253][ T9801]  ? get_signal+0x1068/0x13f0
[  341.070348][ T9801]  ? lock_chain_count+0x20/0x20
[  341.075283][ T9801]  ? _raw_spin_lock_irq+0xbb/0xf0
[  341.080679][ T9801]  do_group_exit+0x21b/0x2d0
[  341.085558][ T9801]  ? lockdep_hardirqs_on+0x98/0x150
[  341.091748][ T9801]  get_signal+0x12fc/0x13f0
[  341.096547][ T9801]  arch_do_signal_or_restart+0xc2/0x800
[  341.102752][ T9801]  ? get_sigframe_size+0x20/0x20
[  341.108987][ T9801]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  341.115950][ T9801]  ? exit_to_user_mode_loop+0x3b/0x110
[  341.122068][ T9801]  exit_to_user_mode_loop+0x70/0x110
[  341.128076][ T9801]  exit_to_user_mode_prepare+0xee/0x180
[  341.134151][ T9801]  syscall_exit_to_user_mode+0x1a/0x50
[  341.140153][ T9801]  do_syscall_64+0x61/0xb0
[  341.145592][ T9801]  ? clear_bhb_loop+0x40/0x90
[  341.150968][ T9801]  ? clear_bhb_loop+0x40/0x90
[  341.155824][ T9801]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  341.162151][ T9801] RIP: 0033:0x7fd4dbf9ce59
[  341.167103][ T9801] Code: Unable to access opcode bytes at 0x7fd4dbf9ce2f.
[  341.174455][ T9801] RSP: 002b:00007fd4dce0a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  341.183367][ T9801] RAX: fffffffffffffe00 RBX: 00007fd4dc215fa8 RCX: 00007fd4dbf9ce59
[  341.191768][ T9801] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd4dc215fa8
[  341.200883][ T9801] RBP: 00007fd4dc215fa0 R08: 0000000000000000 R09: 0000000000000000
[  341.209195][ T9801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  341.217839][ T9801] R13: 00007fd4dc216038 R14: 00007ffe7e270620 R15: 00007ffe7e270708
[  341.226045][ T9801]  </TASK>
[  341.229674][ T9801] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  341.237890][ T9801] CPU: 0 PID: 9801 Comm: syz.2.1416 Not tainted syzkaller #0
[  341.246984][ T9801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  341.259019][ T9801] Call Trace:
[  341.262423][ T9801]  <TASK>
[  341.265646][ T9801]  dump_stack_lvl+0x18c/0x250
[  341.270461][ T9801]  ? show_regs_print_info+0x20/0x20
[  341.275777][ T9801]  ? load_image+0x420/0x420
[  341.280594][ T9801]  panic+0x2dc/0x730
[  341.284811][ T9801]  ? bpf_jit_dump+0xd0/0xd0
[  341.289386][ T9801]  __warn+0x2e0/0x470
[  341.293517][ T9801]  ? perf_pending_task+0x35c/0x470
[  341.298670][ T9801]  ? perf_pending_task+0x35c/0x470
[  341.303828][ T9801]  report_bug+0x2be/0x4f0
[  341.308279][ T9801]  ? perf_pending_task+0x35c/0x470
[  341.313441][ T9801]  ? perf_pending_task+0x35c/0x470
[  341.318631][ T9801]  ? perf_pending_task+0x35e/0x470
[  341.324054][ T9801]  handle_bug+0xcf/0x120
[  341.328526][ T9801]  exc_invalid_op+0x1a/0x50
[  341.333157][ T9801]  asm_exc_invalid_op+0x1a/0x20
[  341.338051][ T9801] RIP: 0010:perf_pending_task+0x35c/0x470
[  341.343995][ T9801] Code: ff 84 db 75 14 e8 74 cb d5 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 60 cb d5 ff e8 4b 3d 4f ff eb e5 e8 54 cb d5 ff <0f> 0b e9 f3 fe ff ff e8 48 cb d5 ff 48 c7 c7 10 f9 1c 8d 4c 89 f6
[  341.364555][ T9801] RSP: 0018:ffffc900032579c0 EFLAGS: 00010293
[  341.370971][ T9801] RAX: ffffffff81b1603c RBX: ffff88801db07e48 RCX: ffff888024a83c00
[  341.379270][ T9801] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  341.387544][ T9801] RBP: 0000000000000001 R08: ffffffff8e8b666f R09: 1ffffffff1d16ccd
[  341.395658][ T9801] R10: dffffc0000000000 R11: fffffbfff1d16cce R12: ffff888024a83c00
[  341.403933][ T9801] R13: ffff888030e9c130 R14: ffff88801db07c08 R15: 1ffff11003b60f81
[  341.412470][ T9801]  ? perf_pending_task+0x35c/0x470
[  341.417647][ T9801]  task_work_run+0x1d4/0x260
[  341.422377][ T9801]  ? task_work_cancel+0x220/0x220
[  341.427464][ T9801]  do_exit+0x95a/0x2460
[  341.432279][ T9801]  ? get_signal+0x1068/0x13f0
[  341.437104][ T9801]  ? put_task_struct+0xc0/0xc0
[  341.442092][ T9801]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  341.448289][ T9801]  ? get_signal+0x1068/0x13f0
[  341.453045][ T9801]  ? lock_chain_count+0x20/0x20
[  341.458066][ T9801]  ? _raw_spin_lock_irq+0xbb/0xf0
[  341.463665][ T9801]  do_group_exit+0x21b/0x2d0
[  341.468745][ T9801]  ? lockdep_hardirqs_on+0x98/0x150
[  341.474357][ T9801]  get_signal+0x12fc/0x13f0
[  341.479020][ T9801]  arch_do_signal_or_restart+0xc2/0x800
[  341.484901][ T9801]  ? get_sigframe_size+0x20/0x20
[  341.490409][ T9801]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  341.497084][ T9801]  ? exit_to_user_mode_loop+0x3b/0x110
[  341.502924][ T9801]  exit_to_user_mode_loop+0x70/0x110
[  341.508313][ T9801]  exit_to_user_mode_prepare+0xee/0x180
[  341.514178][ T9801]  syscall_exit_to_user_mode+0x1a/0x50
[  341.519938][ T9801]  do_syscall_64+0x61/0xb0
[  341.524385][ T9801]  ? clear_bhb_loop+0x40/0x90
[  341.529098][ T9801]  ? clear_bhb_loop+0x40/0x90
[  341.533957][ T9801]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  341.540162][ T9801] RIP: 0033:0x7fd4dbf9ce59
[  341.544634][ T9801] Code: Unable to access opcode bytes at 0x7fd4dbf9ce2f.
[  341.552042][ T9801] RSP: 002b:00007fd4dce0a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  341.561132][ T9801] RAX: fffffffffffffe00 RBX: 00007fd4dc215fa8 RCX: 00007fd4dbf9ce59
[  341.569422][ T9801] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd4dc215fa8
[  341.578066][ T9801] RBP: 00007fd4dc215fa0 R08: 0000000000000000 R09: 0000000000000000
[  341.586347][ T9801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  341.594436][ T9801] R13: 00007fd4dc216038 R14: 00007ffe7e270620 R15: 00007ffe7e270708
[  341.602585][ T9801]  </TASK>
[  341.606252][ T9801] Kernel Offset: disabled
[  341.610730][ T9801] Rebooting in 86400 seconds..