last executing test programs:

10.778971615s ago: executing program 1 (id=2314):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x7, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x97, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x400040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x5, 0xf, &(0x7f00000001c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x40503c2b, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000005c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100ff}, 0x94)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, @perf_bp={0x0, 0xf}, 0x1000, 0x4, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r2)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020030000b02d25a806f8c2d94f90524fc602f1a04000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)

10.489137209s ago: executing program 1 (id=2317):
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x6, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000e000001000000000400000007010000080700007500fcff0000000095"], &(0x7f0000000100)='GPL\x00', 0x3}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0xc)

9.476440852s ago: executing program 1 (id=2327):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001900599c6d0e00009bd028ef8020ab0700040005"], 0xfe33)

9.216793163s ago: executing program 1 (id=2328):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x40200, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x103004, 0x0, 0x0, 0x3, 0x3, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480))
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
socket$kcm(0x10, 0x2, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x80000, 0xca, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x18)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb4, 0x7f}, 0x48)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
recvmsg$unix(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[@ANYRES8=r1, @ANYBLOB="3eca", @ANYRES8=r5], 0x9a)

7.979039725s ago: executing program 1 (id=2330):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r0, 0x0, 0xe40, 0x0, &(0x7f00000006c0)="ffffffff106c3ed990f77e9eb3cf", 0x0, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (fail_nth: 3)

7.340497587s ago: executing program 1 (id=2332):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x8, 0x1, 0x41}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001580)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018200000000000006c0000006c0000000200000000000000000000070000000000000000070000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d700000000000000000000000000000000a1d8faf5bd23dd800008"], 0x0, 0x86}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x74000000, 0x61, 0x11, 0x70}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe}, 0x82)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r1, &(0x7f00000029c0)={&(0x7f0000000100)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000002780)=[{&(0x7f00000006c0)='{', 0x1}], 0x1}, 0x4000040)
sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000001040)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000140)="97", 0x1}], 0x1}, 0x0)

5.721022s ago: executing program 0 (id=2343):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x22, 0x0, &(0x7f00000008c0)="f6f4e9a1000000000000000d0800c32a8bc678bbd404fcd535fdc8a75167efec52a9", 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="0102", 0x0}, 0x50)

5.587025741s ago: executing program 0 (id=2345):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000040000000000000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000011000000b7030000ffffff3f850000001c00000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x22}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000480)='syzkaller\x00', 0xc, 0xe4, &(0x7f00000000c0)=""/228, 0x40f00, 0x23, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x55}, 0x23) (fail_nth: 3)

3.613372243s ago: executing program 0 (id=2351):
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0xc486d19d431ce5be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xe9}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8940, &(0x7f0000000080)) (fail_nth: 3)

3.019710172s ago: executing program 0 (id=2353):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00'}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000200)="cf", 0x1}], 0x1}, 0x4000)
setsockopt$sock_attach_bpf(r2, 0x1, 0x10, &(0x7f0000000300), 0x4)
sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)='u', 0x1}], 0x1, &(0x7f0000000a80)=ANY=[@ANYBLOB="78000000000000000000000007000000070fb27f000001e0000002ac1414bb8927cce0000002e0000001e0000001ffffffff00000000ac141423e00000017f000001ac14144300440cc401ac1e010100000fff94040100000bba416311049117549344142cb1e00000010000c6707f000001fffffc01000014000000000000000000000001000000f70c0000000000001c000000000000000000000008000000", @ANYRES32, @ANYBLOB="ffffffffffffffff0000000014000000000000000000000001000000090000000000000011000000000000000000000001000000b400000000000000110000000000000000000000010000007a000000000000001c"], 0x118}, 0x0)
recvmsg(r2, &(0x7f0000000fc0)={0x0, 0x0, 0x0}, 0x42)
perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0x9, 0x8, 0xb, 0xfb, 0x0, 0x3c, 0xc002, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x18842, 0x0, 0x7fffffff, 0x7, 0x9, 0x3, 0x7, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000280)={0x4, 0x80, 0x3, 0x8, 0xa5, 0xba, 0x0, 0xdef, 0x60e7, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x36142de77dc402b2, @perf_bp={&(0x7f0000000000), 0xc}, 0x1410, 0x6000000000, 0xd382, 0xb, 0x2, 0x6, 0x3, 0x0, 0x9, 0x0, 0x808})
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r4, 0x0, 0x54)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r5 = openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140), 0x2, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000300)=ANY=[@ANYBLOB='+pids '], 0x6)

2.551232731s ago: executing program 3 (id=2355):
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x15, 0x23, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000016000000000000000100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000085000000a400000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b7080000ffffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000018120000", @ANYRES32, @ANYBLOB="0000000000000000031003001a0b000018200000", @ANYRES32=0x1, @ANYBLOB="000000000300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500000086000000cf7b0c0001000000bf91000000000000b7020000020000008500000084000000b70000000000000095a49e436f00000053d47016c06ebe8a86d84d7263449096b96d07239e611344113194c05aaa1bc7401a038677689aa490a266298bda37ac29ff6c475ce0cfdd6c90892906a1818d2db14e028819614c16f3d1b81269aff75a6570d54ea50ec552241fbe96804db28a0c66f3c8fb7c09790a84c909ece033068578c71eb7ddd2bd3aecc2dbdd41e0315ed722201493c992befa8734abb77d87f3d94394af9d9cb43df3a91f3d72962cb5529e366209d03dd2b51367f84f858dc61d6e25ffc3a029c5b48b37cbf3237e7bfd5ea877c63b63771472a9591efb9b1cc7594042f35efb3b727627f7"], &(0x7f0000000c80)='GPL\x00', 0x79, 0x7b, &(0x7f0000000cc0)=""/123, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000d40)={0xa, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000dc0)=[0xffffffffffffffff], &(0x7f0000000e00)=[{0x1, 0x2, 0x7, 0x5}, {0x1, 0x2, 0x6}], 0x10, 0x81}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000fc0)={0x0, 0x2f, &(0x7f0000000640)=ANY=[@ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000550500000000000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018560000100000000000000000000000185100000e00000000000000000000001800000004000000000000000001000018120000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000085000000b700000100000000950000000000"], &(0x7f0000000600)='syzkaller\x00', 0x9, 0xc4, &(0x7f0000000a40)=""/196, 0x0, 0x8, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000940)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000980)={0x4, 0x8, 0x6, 0x7}, 0x10, 0xffffffffffffffff, r1, 0x6, &(0x7f0000000f00)=[0xffffffffffffffff], &(0x7f0000000f40)=[{0x0, 0x2, 0x5, 0x4}, {0x1, 0x5, 0x8, 0x1}, {0x0, 0x1, 0x2, 0xc}, {0x8, 0x2, 0xb, 0xb}, {0x3, 0x3, 0xb, 0x9}, {0x3, 0xfffffffe, 0x9, 0x8}], 0x10, 0x6}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x400000000004, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000008c0), 0xd}, 0xc001, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x110282, 0xc8}, 0x0, 0x800000000000, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0006000000000000000000000004", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="1400000004000000040000002200000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000c0b0d111b0e4dff5260000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r5, &(0x7f0000000480)="4fde"}, 0x20)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, r3, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x3}, 0x50)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000580)={0x3, 0x4, 0x4, 0xa, 0x0, r7, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x2}, 0x50)
perf_event_open$cgroup(&(0x7f0000000740)={0x5, 0x80, 0x80, 0x9, 0xc, 0xf, 0x0, 0x2, 0x80000, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x200, 0xfffffffffffffffa}, 0x115042, 0x401, 0x9, 0x2, 0x4, 0xfffff800, 0x9, 0x0, 0x7ffffffb, 0x0, 0x5}, r6, 0x5, 0xffffffffffffffff, 0x12)
openat$cgroup_int(r6, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
openat$cgroup_procs(r6, &(0x7f0000001a80)='tasks\x00', 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r8, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="b9180bb76003070c009e40f086dd1fff310000002b0020010010ac14142ee0080001c699da153f0ae0e6e380f60115f683317585d7472ce0ab4439f0f570ff155bc5f73ba3f8bb99a6e8ded1ce485cf058105cd981b42493481cd659416a2e10c9119664f36eb00b333c20c9ec0c222d644bdcb178c1cc53d6960fbb842d6a33dfcde3a1e1848135214baf139753866cadcbe3ce52505e992818cc452bee339d9ab076f484020eaa348a21d7911e4c44905256ec2cc54cca47a198b00c10aff62a4bed43a2ebcad92743fb22c593f28fd4bb7c703cde9cae0569d4c8d9a823f2c12863f7a6c0cf88ed22aae4f6f084508833b61429a25773eedf63dd9f33d430f2a0a30a7761db16fe0f743b95ded898c28aac1256ce2751b3d738899b8b19d9052b7f13ff94", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)

2.134325084s ago: executing program 3 (id=2356):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, 0x0, 0x0)

1.664939143s ago: executing program 3 (id=2357):
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80102, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x18944, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r0, 0x0, 0x29, 0x0, 0x40000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r4 = perf_event_open(&(0x7f0000000380)={0x5, 0x80, 0x3, 0x6, 0x4e, 0x4, 0x0, 0x1, 0x88011, 0x4, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x85, 0x1, @perf_config_ext={0x7, 0x1}, 0x84, 0xe76, 0xb7f, 0x2, 0x79, 0x10, 0x5, 0x0, 0xc726, 0x0, 0x6}, 0x0, 0x8, r3, 0x8)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x40042409, 0x1)
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket$kcm(0x29, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r9 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r9, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r7, 0x89e0, &(0x7f0000000040)={r9, r8})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x22250, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
sendmsg$kcm(r7, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)
close(r7)
sendmsg$tipc(r6, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r10}, 0x10)
close(r5)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018"], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r11)
r12 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$inet(r12, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0x24, &(0x7f0000001080), 0x0, &(0x7f00000011c0)=ANY=[@ANYRES8=r2, @ANYRES32=0x0, @ANYBLOB="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"], 0x6b}, 0x0)
close(r12)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x22, 0x0, &(0x7f00000008c0)="f6f4e9a1000000000000000d0800c32a8bc678bbd404fcd535fdc8a75167efec52a9", 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="0102", 0x0}, 0x50)

1.633921996s ago: executing program 2 (id=2358):
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB='c 122'], 0xa)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000540)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB='1'], 0x31) (fail_nth: 3)

1.176497963s ago: executing program 0 (id=2359):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x10, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="7910480000000000790008000000000095"], &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYRESOCT, @ANYBLOB="762ac03a1fdeafb45e6d245d74330c1c6983a7b3560f82e970d7ed402883fbe8205805bd6b913ec0c5", @ANYRES64, @ANYRESOCT], 0x48)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xc5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000001f80)={&(0x7f0000001d00)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, 0x0}, 0x0)
recvmsg(r3, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x40002182)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000003000000000000000000000003"], 0x0, 0x1b, 0x0, 0x1}, 0x28)
recvmsg(r3, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x20)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000), 0xfdef)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='cpu>\t\t')
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r0}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r1, @ANYBLOB="0000000002000000b70500000800000085000000c200000095"], &(0x7f0000000500)='GPL\x00', 0x5, 0x1002, &(0x7f00000017c0)=""/4098, 0x40f00, 0x12}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r4}, &(0x7f0000000180), &(0x7f0000000200)=r5}, 0x20)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000003c0)={r4, 0x58, &(0x7f0000000340)}, 0x10)

1.121209658s ago: executing program 2 (id=2360):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x100904, 0x0, 0x0, 0x0, 0x200000, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)="d80000001c0081064e81f782db44b904021d08040000000000000aa1180015000600142603600e1208000f0000810401a8001600200001400300000007600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a08400e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="5c00000014006b03000000d86e6c1d0010ffff0af32c6e021fffffff000000000f00000017d3a705251e6182949a369f3d3b48dfd8cd3f9367c1fa51f60a64c9f4d4938037e786a6d0bdd7000000000000eaffffffb3d59256a5a2fd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

941.860373ms ago: executing program 2 (id=2361):
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000003c0)={@map, 0xffffffffffffffff, 0x14}, 0x20)

857.03607ms ago: executing program 2 (id=2362):
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB='c 122'], 0xa)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000540)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB='1'], 0x31)

749.940908ms ago: executing program 2 (id=2363):
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x15, 0x23, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000016000000000000000100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000085000000a400000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b7080000ffffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000018120000", @ANYRES32, @ANYBLOB="0000000000000000031003001a0b000018200000", @ANYRES32=0x1, @ANYBLOB="000000000300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500000086000000cf7b0c0001000000bf91000000000000b7020000020000008500000084000000b70000000000000095a49e436f00000053d47016c06ebe8a86d84d7263449096b96d07239e611344113194c05aaa1bc7401a038677689aa490a266298bda37ac29ff6c475ce0cfdd6c90892906a1818d2db14e028819614c16f3d1b81269aff75a6570d54ea50ec552241fbe96804db28a0c66f3c8fb7c09790a84c909ece033068578c71eb7ddd2bd3aecc2dbdd41e0315ed722201493c992befa8734abb77d87f3d94394af9d9cb43df3a91f3d72962cb5529e366209d03dd2b51367f84f858dc61d6e25ffc3a029c5b48b37cbf3237e7bfd5ea877c63b63771472a9591efb9b1cc7594042f35efb3b727627f7"], &(0x7f0000000c80)='GPL\x00', 0x79, 0x7b, &(0x7f0000000cc0)=""/123, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000d40)={0xa, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000dc0)=[0xffffffffffffffff], &(0x7f0000000e00)=[{0x1, 0x2, 0x7, 0x5}, {0x1, 0x2, 0x6}], 0x10, 0x81}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000fc0)={0x0, 0x2f, &(0x7f0000000640)=ANY=[@ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000550500000000000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018560000100000000000000000000000185100000e00000000000000000000001800000004000000000000000001000018120000", @ANYRESDEC=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000010000008500000085000000b700000100000000950000000000"], &(0x7f0000000600)='syzkaller\x00', 0x9, 0xc4, &(0x7f0000000a40)=""/196, 0x0, 0x8, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000940)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000980)={0x4, 0x8, 0x6, 0x7}, 0x10, 0xffffffffffffffff, r1, 0x6, &(0x7f0000000f00)=[0xffffffffffffffff], &(0x7f0000000f40)=[{0x0, 0x2, 0x5, 0x4}, {0x1, 0x5, 0x8, 0x1}, {0x0, 0x1, 0x2, 0xc}, {0x8, 0x2, 0xb, 0xb}, {0x3, 0x3, 0xb, 0x9}, {0x3, 0xfffffffe, 0x9, 0x8}], 0x10, 0x6}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x400000000004, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000008c0), 0xd}, 0xc001, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x110282, 0xc8}, 0x0, 0x800000000000, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0006000000000000000000000004", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="1400000004000000040000002200000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000c0b0d111b0e4dff5260000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r5, &(0x7f0000000480)="4fde"}, 0x20)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, r3, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x3}, 0x50)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000580)={0x3, 0x4, 0x4, 0xa, 0x0, r7, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x2}, 0x50)
perf_event_open$cgroup(&(0x7f0000000740)={0x5, 0x80, 0x80, 0x9, 0xc, 0xf, 0x0, 0x2, 0x80000, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0x200, 0xfffffffffffffffa}, 0x115042, 0x401, 0x9, 0x2, 0x4, 0xfffff800, 0x9, 0x0, 0x7ffffffb, 0x0, 0x5}, r6, 0x5, 0xffffffffffffffff, 0x12)
openat$cgroup_int(r6, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
openat$cgroup_procs(r6, &(0x7f0000001a80)='tasks\x00', 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r8, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)

645.230517ms ago: executing program 3 (id=2364):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000006c0)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x19, &(0x7f00000009c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x1}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1316}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000003f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x15) (fail_nth: 3)

276.607407ms ago: executing program 3 (id=2365):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_queued\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r1)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)

175.421615ms ago: executing program 2 (id=2366):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00'}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000200)="cf", 0x1}], 0x1}, 0x4000)
setsockopt$sock_attach_bpf(r2, 0x1, 0x10, &(0x7f0000000300), 0x4)
sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)='u', 0x1}], 0x1, &(0x7f0000000a80)=ANY=[@ANYBLOB="78000000000000000000000007000000070fb27f000001e0000002ac1414bb8927cce0000002e0000001e0000001ffffffff00000000ac141423e00000017f000001ac14144300440cc401ac1e010100000fff94040100000bba416311049117549344142cb1e00000010000c6707f000001fffffc01000014000000000000000000000001000000f70c0000000000001c000000000000000000000008000000", @ANYRES32, @ANYBLOB="ffffffffffffffff0000000014000000000000000000000001000000090000000000000011000000000000000000000001000000b400000000000000110000000000000000000000010000007a000000000000001c"], 0x118}, 0x0)
recvmsg(r2, &(0x7f0000000fc0)={0x0, 0x0, 0x0}, 0x42)
perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0x9, 0x8, 0xb, 0xfb, 0x0, 0x3c, 0xc002, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x18842, 0x0, 0x7fffffff, 0x7, 0x9, 0x3, 0x7, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000280)={0x4, 0x80, 0x3, 0x8, 0xa5, 0xba, 0x0, 0xdef, 0x60e7, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x36142de77dc402b2, @perf_bp={&(0x7f0000000000), 0xc}, 0x1410, 0x6000000000, 0xd382, 0xb, 0x2, 0x6, 0x3, 0x0, 0x9, 0x0, 0x808})
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r4, 0x0, 0x54)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r5 = openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140), 0x2, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000300)=ANY=[@ANYBLOB='+pids '], 0x6)

104.954771ms ago: executing program 0 (id=2367):
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0xc486d19d431ce5be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xe9}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x20702, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001440)={0x1f, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
perf_event_open(0x0, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="bb00000031000b63ddd2806c8c6f94f903f4b76ffa24fc60100003000a00020005358ac137800500026ced000300", 0x2e}, {&(0x7f0000000140)="c512603b5c247ac97270d2d9f9e3a774644b37ffa4c38bc5ac41e6569c22f21809625db64973a31646a005a85e988285af8f70ec763129dac5d3c4e5e28b003aec39da77a70fcc3aec02c9d2148fa6edc37169089bf94207176394", 0x5b}, {&(0x7f0000000380)="e166186d6cb0b5b1d6ffadb2be01b8263d3abab0c802ff3938203ba118ca79aec5641d631a209c4a807a66d32c93d6258379", 0x32}], 0x3}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001500)=ANY=[@ANYBLOB="050000007f000000020000000900000000000000", @ANYRES32, @ANYBLOB="00000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x50)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), 0x0, 0xa7c}, 0x38)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r7 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r7, 0x0, 0x24, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={&(0x7f0000000500)="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", &(0x7f0000000180)=""/247, &(0x7f0000000000)="1ef8c6d81120051ea475be2e8a586a851e41c2252906ca99cb6f59c6", &(0x7f0000000280), 0xff, r3}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8940, &(0x7f0000000080))

0s ago: executing program 3 (id=2368):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)=[{}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001900599c6d0e00009bd028ef8020ab0700040005"], 0xfe33)

kernel console output (not intermixed with test programs):

T11274]  ? free_vm_area+0x50/0x50
[  463.617994][T11274]  ? end_current_label_crit_section+0x170/0x170
[  463.624335][T11274]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  463.629952][T11274]  __vmalloc+0x7a/0x90
[  463.634195][T11274]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  463.640000][T11274]  bpf_prog_alloc_no_stats+0x47/0x440
[  463.645529][T11274]  ? bpf_prog_alloc+0x2b/0x1b0
[  463.650376][T11274]  bpf_prog_alloc+0x3d/0x1b0
[  463.655053][T11274]  bpf_prog_load+0x6b8/0x16d0
[  463.659857][T11274]  ? map_freeze+0x420/0x420
[  463.664539][T11274]  ? __might_fault+0xaa/0x120
[  463.669291][T11274]  ? __lock_acquire+0x7c80/0x7c80
[  463.674391][T11274]  ? file_end_write+0x159/0x250
[  463.679319][T11274]  ? __might_fault+0xaa/0x120
[  463.684252][T11274]  ? __might_fault+0xc6/0x120
[  463.688994][T11274]  ? __might_fault+0xaa/0x120
[  463.693779][T11274]  ? bpf_lsm_bpf+0x9/0x10
[  463.698191][T11274]  ? security_bpf+0x7e/0xa0
[  463.702805][T11274]  __sys_bpf+0x55a/0x800
[  463.707237][T11274]  ? bpf_link_show_fdinfo+0x350/0x350
[  463.712771][T11274]  ? lock_chain_count+0x20/0x20
[  463.717752][T11274]  __x64_sys_bpf+0x7c/0x90
[  463.722259][T11274]  do_syscall_64+0x55/0xb0
[  463.726737][T11274]  ? clear_bhb_loop+0x40/0x90
[  463.731463][T11274]  ? clear_bhb_loop+0x40/0x90
[  463.736225][T11274]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  463.742160][T11274] RIP: 0033:0x7f1dfbb8ebe9
[  463.746607][T11274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  463.766422][T11274] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  463.775052][T11274] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  463.783058][T11274] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  463.791146][T11274] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  463.799346][T11274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  463.807372][T11274] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  463.815803][T11274]  </TASK>
[  464.074383][T11274] Mem-Info:
[  464.077721][T11274] active_anon:44622 inactive_anon:0 isolated_anon:0
[  464.077721][T11274]  active_file:23039 inactive_file:39974 isolated_file:0
[  464.077721][T11274]  unevictable:768 dirty:295 writeback:0
[  464.077721][T11274]  slab_reclaimable:10535 slab_unreclaimable:95426
[  464.077721][T11274]  mapped:35035 shmem:40762 pagetables:656
[  464.077721][T11274]  sec_pagetables:0 bounce:0
[  464.077721][T11274]  kernel_misc_reclaimable:0
[  464.077721][T11274]  free:1297760 free_pcp:13275 free_cma:0
[  464.177142][T11274] Node 0 active_anon:175488kB inactive_anon:0kB active_file:92156kB inactive_file:159696kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:129140kB dirty:1180kB writeback:0kB shmem:158712kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11652kB pagetables:2524kB sec_pagetables:0kB all_unreclaimable? no
[  464.341657][T11281] netlink: 'syz.0.1709': attribute type 4 has an invalid length.
[  464.342523][T11274] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  464.368380][T11281] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1709'.
[  464.415966][T11285] netlink: 'syz.1.1710': attribute type 10 has an invalid length.
[  464.430857][T11285] batman_adv: batadv0: Adding interface: wlan0
[  464.437198][T11285] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  464.494374][T11274] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  464.522751][T11285] batman_adv: batadv0: Interface activated: wlan0
[  464.557953][T11274] lowmem_reserve[]: 0 2525 2526 2526 2526
[  464.590953][T11274] Node 0 DMA32 free:1306204kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:156836kB inactive_anon:0kB active_file:92156kB inactive_file:158384kB unevictable:1536kB writepending:1180kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:31232kB local_pcp:9808kB free_cma:0kB
[  464.653225][T11274] lowmem_reserve[]: 0 0 1 1 1
[  464.668337][T11274] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  464.749470][T11274] lowmem_reserve[]: 0 0 0 0 0
[  464.754308][T11274] Node 1 Normal free:3889468kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:24608kB local_pcp:12352kB free_cma:0kB
[  464.779857][T11293] netlink: 'syz.0.1712': attribute type 10 has an invalid length.
[  464.824916][T11293] batman_adv: batadv0: Adding interface: wlan0
[  464.838450][T11274] lowmem_reserve[]: 0 0 0 0 0
[  464.843448][T11274] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  464.850160][T11293] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  464.878444][T11274] Node 0 DMA32: 4183*4kB (UME) 3765*8kB (UME) 2975*16kB (UME) 1392*32kB (UME) 594*64kB (UME) 229*128kB (UME) 98*256kB (UM) 29*512kB (UME) 12*1024kB (UME) 0*2048kB 259*4096kB (UM) = 1319412kB
[  464.928412][T11293] batman_adv: batadv0: Interface activated: wlan0
[  464.978634][T11274] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  465.006473][T11274] Node 1 Normal: 263*4kB (UME) 64*8kB (UME) 54*16kB (UME) 34*32kB (UME) 16*64kB (UME) 5*128kB (UE) 1*256kB (E) 2*512kB (UM) 2*1024kB (UE) 1*2048kB (E) 947*4096kB (M) = 3889468kB
[  465.050154][T11295] netlink: 209588 bytes leftover after parsing attributes in process `syz.2.1713'.
[  465.059667][T11274] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  465.070213][T11274] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  465.080249][T11274] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  465.090110][T11274] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  465.100154][T11274] 91125 total pagecache pages
[  465.105054][T11274] 0 pages in swap cache
[  465.109447][T11274] Free swap  = 124996kB
[  465.113710][T11274] Total swap = 124996kB
[  465.118073][T11274] 2097051 pages RAM
[  465.122015][T11274] 0 pages HighMem/MovableOnly
[  465.126713][T11274] 416138 pages reserved
[  465.131061][T11274] 0 pages cma reserved
[  465.227658][T11295] netlink: get zone limit has 4 unknown bytes
[  465.323061][T11302] FAULT_INJECTION: forcing a failure.
[  465.323061][T11302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  465.356792][T11302] CPU: 0 PID: 11302 Comm: syz.3.1715 Not tainted 6.6.102-syzkaller #0
[  465.365228][T11302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  465.375522][T11302] Call Trace:
[  465.378852][T11302]  <TASK>
[  465.381838][T11302]  dump_stack_lvl+0x16c/0x230
[  465.386768][T11302]  ? show_regs_print_info+0x20/0x20
[  465.392125][T11302]  ? load_image+0x3b0/0x3b0
[  465.396707][T11302]  ? __might_fault+0xaa/0x120
[  465.401561][T11302]  ? __lock_acquire+0x7c80/0x7c80
[  465.406655][T11302]  should_fail_ex+0x39d/0x4d0
[  465.411411][T11302]  _copy_from_user+0x2f/0xe0
[  465.416061][T11302]  ___sys_sendmsg+0x159/0x290
[  465.420808][T11302]  ? __sys_sendmsg+0x270/0x270
[  465.425702][T11302]  ? __lock_acquire+0x7c80/0x7c80
[  465.430850][T11302]  __se_sys_sendmsg+0x1a5/0x270
[  465.435774][T11302]  ? __x64_sys_sendmsg+0x80/0x80
[  465.440897][T11302]  ? lockdep_hardirqs_on+0x98/0x150
[  465.446164][T11302]  do_syscall_64+0x55/0xb0
[  465.450811][T11302]  ? clear_bhb_loop+0x40/0x90
[  465.455531][T11302]  ? clear_bhb_loop+0x40/0x90
[  465.460419][T11302]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  465.466336][T11302] RIP: 0033:0x7f1dfbb8ebe9
[  465.470782][T11302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  465.490688][T11302] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  465.499218][T11302] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  465.507211][T11302] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[  465.515377][T11302] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  465.523626][T11302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.531721][T11302] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  465.539824][T11302]  </TASK>
[  465.825827][T11308] FAULT_INJECTION: forcing a failure.
[  465.825827][T11308] name failslab, interval 1, probability 0, space 0, times 0
[  465.861550][T11308] CPU: 1 PID: 11308 Comm: syz.3.1718 Not tainted 6.6.102-syzkaller #0
[  465.870141][T11308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  465.880851][T11308] Call Trace:
[  465.884241][T11308]  <TASK>
[  465.887204][T11308]  dump_stack_lvl+0x16c/0x230
[  465.892088][T11308]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  465.898187][T11308]  ? show_regs_print_info+0x20/0x20
[  465.903400][T11308]  ? load_image+0x3b0/0x3b0
[  465.907939][T11308]  should_fail_ex+0x39d/0x4d0
[  465.912639][T11308]  should_failslab+0x9/0x20
[  465.917175][T11308]  slab_pre_alloc_hook+0x59/0x310
[  465.922505][T11308]  ? nf_ct_ext_add+0x1ab/0x440
[  465.927284][T11308]  ? nf_ct_ext_add+0x1ab/0x440
[  465.932059][T11308]  __kmem_cache_alloc_node+0x53/0x260
[  465.937455][T11308]  ? nf_ct_ext_add+0x1ab/0x440
[  465.942341][T11308]  __kmalloc_node_track_caller+0xa2/0x230
[  465.948170][T11308]  krealloc+0x86/0x120
[  465.952258][T11308]  nf_ct_ext_add+0x1ab/0x440
[  465.956865][T11308]  init_conntrack+0x674/0xee0
[  465.961654][T11308]  ? early_drop+0x7b0/0x7b0
[  465.966181][T11308]  ? nf_conntrack_find_get+0x600/0x600
[  465.971651][T11308]  ? __local_bh_enable_ip+0x12e/0x1c0
[  465.977626][T11308]  ? __siphash_unaligned+0x232/0x3b0
[  465.982937][T11308]  nf_conntrack_in+0xbf1/0x15c0
[  465.987890][T11308]  ? get_random_u32+0x156/0x940
[  465.992863][T11308]  ? nf_ct_pernet+0x270/0x270
[  465.997569][T11308]  ? ipt_do_table+0x2b2/0x15f0
[  466.002380][T11308]  ? mark_lock+0x94/0x320
[  466.006762][T11308]  ? read_lock_is_recursive+0x20/0x20
[  466.012193][T11308]  ? ipv4_conntrack_defrag+0x29d/0x5a0
[  466.017679][T11308]  ? ipv4_conntrack_local+0x123/0x200
[  466.023193][T11308]  ? ipv4_conntrack_in+0x20/0x20
[  466.028171][T11308]  nf_hook_slow+0xbd/0x200
[  466.032616][T11308]  nf_hook+0x215/0x370
[  466.036710][T11308]  ? nf_hook+0x9e/0x370
[  466.040877][T11308]  ? __ip_local_out+0x5f0/0x5f0
[  466.045770][T11308]  ? nf_hook+0x370/0x370
[  466.050065][T11308]  ? __skb_checksum+0x10a/0x800
[  466.054968][T11308]  ? __skb_checksum+0x74d/0x800
[  466.059855][T11308]  ? ip_fast_csum+0x1ee/0x2b0
[  466.064662][T11308]  __ip_local_out+0x4db/0x5f0
[  466.069361][T11308]  ? nf_hook+0x370/0x370
[  466.073664][T11308]  ip_send_skb+0x4c/0x1d0
[  466.078047][T11308]  udp_send_skb+0xa37/0x13a0
[  466.082706][T11308]  udp_sendmsg+0x6e7/0x2380
[  466.087342][T11308]  ? udp_sendmsg+0x2380/0x2380
[  466.092324][T11308]  ? __lock_acquire+0x1260/0x7c80
[  466.097554][T11308]  ? udp_cmsg_send+0x350/0x350
[  466.102469][T11308]  ? is_bpf_text_address+0x26/0x2a0
[  466.107738][T11308]  ? perf_trace_lock+0xf7/0x380
[  466.112678][T11308]  udpv6_sendmsg+0x79e/0x22f0
[  466.117397][T11308]  ? udpv6_sendmsg+0x22f0/0x22f0
[  466.122373][T11308]  ? udp_v6_early_demux+0xf60/0xf60
[  466.127630][T11308]  ? __lock_acquire+0x1260/0x7c80
[  466.132732][T11308]  ? inet_send_prepare+0x5c/0x260
[  466.137790][T11308]  ? inet6_sendmsg+0x5f/0xd0
[  466.142422][T11308]  ? inet6_compat_ioctl+0x380/0x380
[  466.147769][T11308]  ____sys_sendmsg+0x5bf/0x950
[  466.152596][T11308]  ? __asan_memset+0x22/0x40
[  466.157222][T11308]  ? __sys_sendmsg_sock+0x30/0x30
[  466.162264][T11308]  ? __import_iovec+0x3fa/0x860
[  466.167145][T11308]  ? import_iovec+0x73/0xa0
[  466.171755][T11308]  ___sys_sendmsg+0x220/0x290
[  466.176471][T11308]  ? __sys_sendmsg+0x270/0x270
[  466.181275][T11308]  ? __lock_acquire+0x7c80/0x7c80
[  466.186335][T11308]  __se_sys_sendmsg+0x1a5/0x270
[  466.191207][T11308]  ? __x64_sys_sendmsg+0x80/0x80
[  466.196176][T11308]  ? lockdep_hardirqs_on+0x98/0x150
[  466.201426][T11308]  do_syscall_64+0x55/0xb0
[  466.205858][T11308]  ? clear_bhb_loop+0x40/0x90
[  466.210547][T11308]  ? clear_bhb_loop+0x40/0x90
[  466.215410][T11308]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  466.221611][T11308] RIP: 0033:0x7f1dfbb8ebe9
[  466.226108][T11308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.246097][T11308] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  466.254551][T11308] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  466.262654][T11308] RDX: 0000000004000084 RSI: 0000200000000200 RDI: 0000000000000003
[  466.270726][T11308] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  466.278725][T11308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  466.286734][T11308] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  466.294769][T11308]  </TASK>
[  466.702423][T11315] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1719'.
[  467.356093][T11317] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1720'.
[  467.705091][T11321] netlink: 'syz.0.1721': attribute type 4 has an invalid length.
[  467.746014][T11321] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1721'.
[  467.769752][T11324] FAULT_INJECTION: forcing a failure.
[  467.769752][T11324] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  467.816565][T11324] CPU: 1 PID: 11324 Comm: syz.3.1723 Not tainted 6.6.102-syzkaller #0
[  467.824816][T11324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  467.834990][T11324] Call Trace:
[  467.838295][T11324]  <TASK>
[  467.841252][T11324]  dump_stack_lvl+0x16c/0x230
[  467.846065][T11324]  ? show_regs_print_info+0x20/0x20
[  467.851306][T11324]  ? load_image+0x3b0/0x3b0
[  467.855846][T11324]  ? __might_fault+0xaa/0x120
[  467.860562][T11324]  ? __lock_acquire+0x7c80/0x7c80
[  467.865652][T11324]  ? perf_trace_lock+0xf7/0x380
[  467.870546][T11324]  should_fail_ex+0x39d/0x4d0
[  467.875266][T11324]  _copy_from_user+0x2f/0xe0
[  467.879887][T11324]  ___sys_sendmsg+0x159/0x290
[  467.884692][T11324]  ? __sys_sendmsg+0x270/0x270
[  467.889527][T11324]  ? __lock_acquire+0x7c80/0x7c80
[  467.894755][T11324]  __se_sys_sendmsg+0x1a5/0x270
[  467.900077][T11324]  ? __x64_sys_sendmsg+0x80/0x80
[  467.905074][T11324]  ? lockdep_hardirqs_on+0x98/0x150
[  467.910317][T11324]  do_syscall_64+0x55/0xb0
[  467.914763][T11324]  ? clear_bhb_loop+0x40/0x90
[  467.919541][T11324]  ? clear_bhb_loop+0x40/0x90
[  467.924249][T11324]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  467.930187][T11324] RIP: 0033:0x7f1dfbb8ebe9
[  467.934630][T11324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.954355][T11324] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  467.962823][T11324] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  467.970833][T11324] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  467.978836][T11324] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  467.986834][T11324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.994839][T11324] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  468.002861][T11324]  </TASK>
[  468.768646][T11334] netlink: 'syz.3.1725': attribute type 3 has an invalid length.
[  468.798034][T11334] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1725'.
[  468.841868][T11334] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  468.906695][T11335] netlink: 64519 bytes leftover after parsing attributes in process `syz.3.1725'.
[  468.922702][T11337] netlink: 209588 bytes leftover after parsing attributes in process `syz.0.1726'.
[  468.948824][T11337] netlink: get zone limit has 4 unknown bytes
[  468.997777][T11330] netlink: 'syz.1.1722': attribute type 64 has an invalid length.
[  470.260878][T11355] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1732'.
[  471.001815][T11363] netlink: 'syz.3.1736': attribute type 33 has an invalid length.
[  471.013381][T11367] netlink: 'syz.2.1733': attribute type 4 has an invalid length.
[  471.021438][T11363] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1736'.
[  471.031327][T11363] A link change request failed with some changes committed already. Interface veth1 may have been left with an inconsistent configuration, please check.
[  471.048068][T11367] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1733'.
[  471.077944][T11369] netlink: 209588 bytes leftover after parsing attributes in process `syz.0.1737'.
[  471.118992][T11369] netlink: get zone limit has 4 unknown bytes
[  471.447591][T11375] FAULT_INJECTION: forcing a failure.
[  471.447591][T11375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  471.468393][T11375] CPU: 0 PID: 11375 Comm: syz.0.1738 Not tainted 6.6.102-syzkaller #0
[  471.476716][T11375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  471.487021][T11375] Call Trace:
[  471.490344][T11375]  <TASK>
[  471.493312][T11375]  dump_stack_lvl+0x16c/0x230
[  471.498121][T11375]  ? show_regs_print_info+0x20/0x20
[  471.503518][T11375]  ? load_image+0x3b0/0x3b0
[  471.508073][T11375]  ? __might_fault+0xaa/0x120
[  471.512876][T11375]  ? __lock_acquire+0x7c80/0x7c80
[  471.517950][T11375]  should_fail_ex+0x39d/0x4d0
[  471.522703][T11375]  _copy_from_user+0x2f/0xe0
[  471.527346][T11375]  ____sys_sendmsg+0x30d/0x950
[  471.532181][T11375]  ? __sys_sendmsg_sock+0x30/0x30
[  471.537365][T11375]  ? __import_iovec+0x3fa/0x860
[  471.542270][T11375]  ? import_iovec+0x73/0xa0
[  471.546824][T11375]  ___sys_sendmsg+0x220/0x290
[  471.551642][T11375]  ? __sys_sendmsg+0x270/0x270
[  471.556486][T11375]  ? __lock_acquire+0x7c80/0x7c80
[  471.561631][T11375]  __se_sys_sendmsg+0x1a5/0x270
[  471.566541][T11375]  ? __x64_sys_sendmsg+0x80/0x80
[  471.571546][T11375]  ? lockdep_hardirqs_on+0x98/0x150
[  471.576882][T11375]  do_syscall_64+0x55/0xb0
[  471.581333][T11375]  ? clear_bhb_loop+0x40/0x90
[  471.586047][T11375]  ? clear_bhb_loop+0x40/0x90
[  471.591030][T11375]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  471.596971][T11375] RIP: 0033:0x7fcd35b8ebe9
[  471.601427][T11375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  471.621080][T11375] RSP: 002b:00007fcd33df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  471.629542][T11375] RAX: ffffffffffffffda RBX: 00007fcd35db5fa0 RCX: 00007fcd35b8ebe9
[  471.637611][T11375] RDX: 0000000000000000 RSI: 00002000000011c0 RDI: 0000000000000003
[  471.645635][T11375] RBP: 00007fcd33df6090 R08: 0000000000000000 R09: 0000000000000000
[  471.654095][T11375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  471.662295][T11375] R13: 00007fcd35db6038 R14: 00007fcd35db5fa0 R15: 00007fff648dc808
[  471.670426][T11375]  </TASK>
[  472.515461][T11388] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1744'.
[  473.130657][T11399] netlink: 209588 bytes leftover after parsing attributes in process `syz.3.1746'.
[  473.205848][T11399] netlink: get zone limit has 4 unknown bytes
[  473.311184][T11404] FAULT_INJECTION: forcing a failure.
[  473.311184][T11404] name failslab, interval 1, probability 0, space 0, times 0
[  473.368217][T11404] CPU: 1 PID: 11404 Comm: syz.2.1749 Not tainted 6.6.102-syzkaller #0
[  473.376469][T11404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  473.386664][T11404] Call Trace:
[  473.389987][T11404]  <TASK>
[  473.392954][T11404]  dump_stack_lvl+0x16c/0x230
[  473.397693][T11404]  ? show_regs_print_info+0x20/0x20
[  473.402949][T11404]  ? load_image+0x3b0/0x3b0
[  473.407641][T11404]  ? __might_sleep+0xe0/0xe0
[  473.412373][T11404]  ? __lock_acquire+0x7c80/0x7c80
[  473.417439][T11404]  ? register_lock_class+0xb5/0x890
[  473.422693][T11404]  should_fail_ex+0x39d/0x4d0
[  473.427464][T11404]  should_failslab+0x9/0x20
[  473.434586][T11404]  slab_pre_alloc_hook+0x59/0x310
[  473.440114][T11404]  ? __lock_acquire+0x1334/0x7c80
[  473.445287][T11404]  ? tcp_sendmsg_fastopen+0x1de/0x5d0
[  473.450744][T11404]  __kmem_cache_alloc_node+0x53/0x260
[  473.456184][T11404]  ? tcp_sendmsg_fastopen+0x1de/0x5d0
[  473.461713][T11404]  kmalloc_trace+0x2a/0xe0
[  473.466176][T11404]  tcp_sendmsg_fastopen+0x1de/0x5d0
[  473.471516][T11404]  tcp_sendmsg_locked+0x4555/0x4af0
[  473.476737][T11404]  ? verify_lock_unused+0x140/0x140
[  473.482041][T11404]  ? verify_lock_unused+0x140/0x140
[  473.487340][T11404]  ? tcp_sendmsg+0x21/0x50
[  473.491771][T11404]  ? perf_trace_lock+0xf7/0x380
[  473.496652][T11404]  ? mark_lock+0x94/0x320
[  473.501176][T11404]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  473.507345][T11404]  ? lock_chain_count+0x20/0x20
[  473.512213][T11404]  ? tcp_set_state+0x650/0x650
[  473.517094][T11404]  tcp_sendmsg+0x2f/0x50
[  473.521353][T11404]  ? inet6_compat_ioctl+0x380/0x380
[  473.526598][T11404]  ____sys_sendmsg+0x5bf/0x950
[  473.531517][T11404]  ? __asan_memset+0x22/0x40
[  473.536233][T11404]  ? __sys_sendmsg_sock+0x30/0x30
[  473.541279][T11404]  ? __import_iovec+0x3fa/0x860
[  473.546410][T11404]  ? import_iovec+0x73/0xa0
[  473.551327][T11404]  ___sys_sendmsg+0x220/0x290
[  473.556146][T11404]  ? __sys_sendmsg+0x270/0x270
[  473.561039][T11404]  ? __lock_acquire+0x7c80/0x7c80
[  473.566101][T11404]  __se_sys_sendmsg+0x1a5/0x270
[  473.571359][T11404]  ? __x64_sys_sendmsg+0x80/0x80
[  473.576526][T11404]  ? lockdep_hardirqs_on+0x98/0x150
[  473.581754][T11404]  do_syscall_64+0x55/0xb0
[  473.586188][T11404]  ? clear_bhb_loop+0x40/0x90
[  473.590873][T11404]  ? clear_bhb_loop+0x40/0x90
[  473.595561][T11404]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  473.601475][T11404] RIP: 0033:0x7f724598ebe9
[  473.605985][T11404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.625698][T11404] RSP: 002b:00007f72468c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  473.634437][T11404] RAX: ffffffffffffffda RBX: 00007f7245bb5fa0 RCX: 00007f724598ebe9
[  473.642454][T11404] RDX: 0000000020000001 RSI: 0000200000000780 RDI: 0000000000000003
[  473.650734][T11404] RBP: 00007f72468c3090 R08: 0000000000000000 R09: 0000000000000000
[  473.658920][T11404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.667346][T11404] R13: 00007f7245bb6038 R14: 00007f7245bb5fa0 R15: 00007ffdc3208ba8
[  473.675624][T11404]  </TASK>
[  473.839895][T11402] netlink: 'syz.1.1748': attribute type 4 has an invalid length.
[  473.847789][T11402] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1748'.
[  475.131154][T11421] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1756'.
[  475.562542][T11435] netlink: 209588 bytes leftover after parsing attributes in process `syz.0.1759'.
[  475.582473][T11435] netlink: get zone limit has 4 unknown bytes
[  475.882620][T11439] netlink: 'syz.2.1761': attribute type 4 has an invalid length.
[  475.958557][T11439] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1761'.
[  476.022351][T11442] FAULT_INJECTION: forcing a failure.
[  476.022351][T11442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  476.091113][T11442] CPU: 0 PID: 11442 Comm: syz.0.1763 Not tainted 6.6.102-syzkaller #0
[  476.099617][T11442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  476.109731][T11442] Call Trace:
[  476.113046][T11442]  <TASK>
[  476.116016][T11442]  dump_stack_lvl+0x16c/0x230
[  476.120837][T11442]  ? show_regs_print_info+0x20/0x20
[  476.126080][T11442]  ? load_image+0x3b0/0x3b0
[  476.130725][T11442]  ? __lock_acquire+0x7c80/0x7c80
[  476.135801][T11442]  ? snprintf+0xdb/0x120
[  476.140108][T11442]  should_fail_ex+0x39d/0x4d0
[  476.144934][T11442]  _copy_to_user+0x2f/0xa0
[  476.149551][T11442]  simple_read_from_buffer+0xe7/0x150
[  476.155172][T11442]  proc_fail_nth_read+0x1e3/0x250
[  476.160352][T11442]  ? proc_fault_inject_write+0x340/0x340
[  476.166042][T11442]  ? fsnotify_perm+0x271/0x5e0
[  476.170878][T11442]  ? proc_fault_inject_write+0x340/0x340
[  476.176576][T11442]  vfs_read+0x27e/0x920
[  476.180790][T11442]  ? kernel_read+0x1e0/0x1e0
[  476.185684][T11442]  ? __fget_files+0x28/0x4d0
[  476.190319][T11442]  ? __fget_files+0x44a/0x4d0
[  476.195056][T11442]  ? __fdget_pos+0x2a3/0x330
[  476.199692][T11442]  ? ksys_read+0x75/0x250
[  476.204069][T11442]  ksys_read+0x147/0x250
[  476.208346][T11442]  ? vfs_write+0x940/0x940
[  476.212803][T11442]  ? lockdep_hardirqs_on+0x98/0x150
[  476.218144][T11442]  do_syscall_64+0x55/0xb0
[  476.222617][T11442]  ? clear_bhb_loop+0x40/0x90
[  476.227343][T11442]  ? clear_bhb_loop+0x40/0x90
[  476.232099][T11442]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  476.238154][T11442] RIP: 0033:0x7fcd35b8d5fc
[  476.242621][T11442] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  476.262279][T11442] RSP: 002b:00007fcd33df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  476.270917][T11442] RAX: ffffffffffffffda RBX: 00007fcd35db5fa0 RCX: 00007fcd35b8d5fc
[  476.279024][T11442] RDX: 000000000000000f RSI: 00007fcd33df60a0 RDI: 0000000000000004
[  476.287138][T11442] RBP: 00007fcd33df6090 R08: 0000000000000000 R09: 0000000000000000
[  476.295157][T11442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.303265][T11442] R13: 00007fcd35db6038 R14: 00007fcd35db5fa0 R15: 00007fff648dc808
[  476.311307][T11442]  </TASK>
[  476.327226][T11449] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1765'.
[  476.782240][T11458] FAULT_INJECTION: forcing a failure.
[  476.782240][T11458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  476.795711][T11458] CPU: 1 PID: 11458 Comm: syz.2.1768 Not tainted 6.6.102-syzkaller #0
[  476.803988][T11458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  476.814254][T11458] Call Trace:
[  476.817563][T11458]  <TASK>
[  476.820549][T11458]  dump_stack_lvl+0x16c/0x230
[  476.825376][T11458]  ? show_regs_print_info+0x20/0x20
[  476.830631][T11458]  ? load_image+0x3b0/0x3b0
[  476.835184][T11458]  ? __might_fault+0xaa/0x120
[  476.839989][T11458]  ? __lock_acquire+0x7c80/0x7c80
[  476.845057][T11458]  should_fail_ex+0x39d/0x4d0
[  476.849776][T11458]  _copy_from_user+0x2f/0xe0
[  476.854665][T11458]  ____sys_sendmsg+0x30d/0x950
[  476.859471][T11458]  ? __sys_sendmsg_sock+0x30/0x30
[  476.864607][T11458]  ? __import_iovec+0x3fa/0x860
[  476.869508][T11458]  ? import_iovec+0x73/0xa0
[  476.874039][T11458]  ___sys_sendmsg+0x220/0x290
[  476.878743][T11458]  ? __sys_sendmsg+0x270/0x270
[  476.883545][T11458]  ? __lock_acquire+0x7c80/0x7c80
[  476.888884][T11458]  __se_sys_sendmsg+0x1a5/0x270
[  476.894010][T11458]  ? __x64_sys_sendmsg+0x80/0x80
[  476.898984][T11458]  ? lockdep_hardirqs_on+0x98/0x150
[  476.904202][T11458]  do_syscall_64+0x55/0xb0
[  476.908717][T11458]  ? clear_bhb_loop+0x40/0x90
[  476.913409][T11458]  ? clear_bhb_loop+0x40/0x90
[  476.918094][T11458]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  476.924004][T11458] RIP: 0033:0x7f724598ebe9
[  476.928435][T11458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.948575][T11458] RSP: 002b:00007f72468c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  476.957001][T11458] RAX: ffffffffffffffda RBX: 00007f7245bb5fa0 RCX: 00007f724598ebe9
[  476.965241][T11458] RDX: 0000000000004880 RSI: 0000200000002a80 RDI: 0000000000000003
[  476.973217][T11458] RBP: 00007f72468c3090 R08: 0000000000000000 R09: 0000000000000000
[  476.981201][T11458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.989216][T11458] R13: 00007f7245bb6038 R14: 00007f7245bb5fa0 R15: 00007ffdc3208ba8
[  476.997211][T11458]  </TASK>
[  477.524888][T11456] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1767'.
[  477.691641][T11466] netlink: 'syz.1.1769': attribute type 1 has an invalid length.
[  477.741400][T11466] netlink: 15487 bytes leftover after parsing attributes in process `syz.1.1769'.
[  478.021855][T11472] netlink: 209588 bytes leftover after parsing attributes in process `syz.0.1771'.
[  478.044647][T11472] netlink: get zone limit has 4 unknown bytes
[  478.369625][T11476] netlink: 'syz.3.1773': attribute type 4 has an invalid length.
[  478.429369][T11476] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1773'.
[  479.783016][T11494] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1779'.
[  480.526140][T11505] FAULT_INJECTION: forcing a failure.
[  480.526140][T11505] name failslab, interval 1, probability 0, space 0, times 0
[  480.539235][T11505] CPU: 1 PID: 11505 Comm: syz.1.1783 Not tainted 6.6.102-syzkaller #0
[  480.547420][T11505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  480.557532][T11505] Call Trace:
[  480.560966][T11505]  <TASK>
[  480.563929][T11505]  dump_stack_lvl+0x16c/0x230
[  480.568652][T11505]  ? show_regs_print_info+0x20/0x20
[  480.573884][T11505]  ? load_image+0x3b0/0x3b0
[  480.578420][T11505]  ? mark_lock+0x94/0x320
[  480.582782][T11505]  ? __lock_acquire+0x1334/0x7c80
[  480.587858][T11505]  should_fail_ex+0x39d/0x4d0
[  480.592577][T11505]  should_failslab+0x9/0x20
[  480.597210][T11505]  slab_pre_alloc_hook+0x59/0x310
[  480.602279][T11505]  kmem_cache_alloc+0x5a/0x2e0
[  480.607091][T11505]  ? radix_tree_node_alloc+0x7e/0x3a0
[  480.612501][T11505]  radix_tree_node_alloc+0x7e/0x3a0
[  480.617744][T11505]  idr_get_free+0x2b3/0xa60
[  480.622311][T11505]  idr_alloc_cyclic+0x1a2/0x530
[  480.627229][T11505]  ? idr_alloc+0x2c0/0x2c0
[  480.631719][T11505]  ? do_raw_spin_lock+0x121/0x2c0
[  480.636808][T11505]  ? bpf_map_alloc_id+0x21/0xd0
[  480.641717][T11505]  bpf_map_alloc_id+0x40/0xd0
[  480.646423][T11505]  map_create+0xccc/0x1110
[  480.650874][T11505]  ? security_bpf+0x7e/0xa0
[  480.655413][T11505]  __sys_bpf+0x5f0/0x800
[  480.659689][T11505]  ? bpf_link_show_fdinfo+0x350/0x350
[  480.665132][T11505]  ? lock_chain_count+0x20/0x20
[  480.670064][T11505]  __x64_sys_bpf+0x7c/0x90
[  480.674614][T11505]  do_syscall_64+0x55/0xb0
[  480.679063][T11505]  ? clear_bhb_loop+0x40/0x90
[  480.683938][T11505]  ? clear_bhb_loop+0x40/0x90
[  480.688740][T11505]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  480.694672][T11505] RIP: 0033:0x7f81f6f8ebe9
[  480.699123][T11505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.719197][T11505] RSP: 002b:00007f81f7edb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  480.727653][T11505] RAX: ffffffffffffffda RBX: 00007f81f71b5fa0 RCX: 00007f81f6f8ebe9
[  480.735655][T11505] RDX: 0000000000000048 RSI: 00002000000009c0 RDI: 0000000000000000
[  480.743744][T11505] RBP: 00007f81f7edb090 R08: 0000000000000000 R09: 0000000000000000
[  480.751741][T11505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  480.759831][T11505] R13: 00007f81f71b6038 R14: 00007f81f71b5fa0 R15: 00007ffc81e497e8
[  480.767851][T11505]  </TASK>
[  480.982628][T11509] netlink: 209588 bytes leftover after parsing attributes in process `syz.0.1785'.
[  481.002805][T11509] netlink: get zone limit has 4 unknown bytes
[  481.395431][T11516] netlink: 'syz.2.1787': attribute type 4 has an invalid length.
[  481.424870][T11516] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1787'.
[  481.749773][T11526] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1790'.
[  482.209424][T11529] netlink: 'syz.1.1791': attribute type 5 has an invalid length.
[  482.734109][T11542] delete_channel: no stack
[  482.785950][T11542] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1795'.
[  482.820956][T11542] tap0: tun_chr_ioctl cmd 1074025680
[  483.420053][T11551] netlink: 'syz.2.1797': attribute type 1 has an invalid length.
[  483.689943][T11558] netlink: 'syz.2.1800': attribute type 4 has an invalid length.
[  483.719653][T11558] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1800'.
[  484.074828][T11563] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1801'.
[  484.546665][T11576] FAULT_INJECTION: forcing a failure.
[  484.546665][T11576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  484.578559][T11576] CPU: 1 PID: 11576 Comm: syz.3.1807 Not tainted 6.6.102-syzkaller #0
[  484.586792][T11576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  484.596970][T11576] Call Trace:
[  484.598228][T11578] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1808'.
[  484.600265][T11576]  <TASK>
[  484.600306][T11576]  dump_stack_lvl+0x16c/0x230
[  484.616934][T11576]  ? show_regs_print_info+0x20/0x20
[  484.622181][T11576]  ? load_image+0x3b0/0x3b0
[  484.626822][T11576]  ? __might_fault+0xaa/0x120
[  484.631569][T11576]  ? __lock_acquire+0x7c80/0x7c80
[  484.636906][T11576]  should_fail_ex+0x39d/0x4d0
[  484.641648][T11576]  _copy_to_user+0x2f/0xa0
[  484.646085][T11576]  ppp_ioctl+0xdcd/0x1980
[  484.650522][T11576]  ? ppp_poll+0x250/0x250
[  484.654867][T11576]  ? __fget_files+0x28/0x4d0
[  484.659481][T11576]  ? bpf_lsm_file_ioctl+0x9/0x10
[  484.664428][T11576]  ? security_file_ioctl+0x80/0xa0
[  484.669752][T11576]  ? ppp_poll+0x250/0x250
[  484.674091][T11576]  __se_sys_ioctl+0xfd/0x170
[  484.678784][T11576]  do_syscall_64+0x55/0xb0
[  484.683208][T11576]  ? clear_bhb_loop+0x40/0x90
[  484.687897][T11576]  ? clear_bhb_loop+0x40/0x90
[  484.692587][T11576]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  484.698499][T11576] RIP: 0033:0x7f1dfbb8ebe9
[  484.703014][T11576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  484.722723][T11576] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  484.731234][T11576] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  484.739211][T11576] RDX: 0000200000000180 RSI: 000000008010743f RDI: 0000000000000005
[  484.747294][T11576] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  484.755304][T11576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  484.763440][T11576] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  484.771471][T11576]  </TASK>
[  485.322065][T11590] netlink: 'syz.3.1813': attribute type 4 has an invalid length.
[  485.358697][T11590] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1813'.
[  486.031190][T11594] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1815'.
[  486.072263][T11604] netlink: 'syz.2.1817': attribute type 21 has an invalid length.
[  486.091433][T11604] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1817'.
[  486.164026][T11604] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1817'.
[  486.230193][T11610] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1818'.
[  486.239601][T11610] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1818'.
[  486.492916][T11617] FAULT_INJECTION: forcing a failure.
[  486.492916][T11617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  486.522895][T11617] CPU: 1 PID: 11617 Comm: syz.3.1821 Not tainted 6.6.102-syzkaller #0
[  486.531137][T11617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  486.541590][T11617] Call Trace:
[  486.544901][T11617]  <TASK>
[  486.547892][T11617]  dump_stack_lvl+0x16c/0x230
[  486.552631][T11617]  ? show_regs_print_info+0x20/0x20
[  486.557984][T11617]  ? load_image+0x3b0/0x3b0
[  486.562532][T11617]  ? __might_fault+0xaa/0x120
[  486.567268][T11617]  ? __lock_acquire+0x7c80/0x7c80
[  486.572568][T11617]  should_fail_ex+0x39d/0x4d0
[  486.577330][T11617]  _copy_from_user+0x2f/0xe0
[  486.581930][T11617]  ___sys_sendmsg+0x159/0x290
[  486.586717][T11617]  ? __sys_sendmsg+0x270/0x270
[  486.591597][T11617]  ? __lock_acquire+0x7c80/0x7c80
[  486.596660][T11617]  __se_sys_sendmsg+0x1a5/0x270
[  486.601534][T11617]  ? __x64_sys_sendmsg+0x80/0x80
[  486.606512][T11617]  ? lockdep_hardirqs_on+0x98/0x150
[  486.611735][T11617]  do_syscall_64+0x55/0xb0
[  486.616159][T11617]  ? clear_bhb_loop+0x40/0x90
[  486.620857][T11617]  ? clear_bhb_loop+0x40/0x90
[  486.625573][T11617]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  486.631575][T11617] RIP: 0033:0x7f1dfbb8ebe9
[  486.635995][T11617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.655813][T11617] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  486.664253][T11617] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  486.672298][T11617] RDX: 0000000000040000 RSI: 0000200000000580 RDI: 0000000000000004
[  486.680366][T11617] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  486.688440][T11617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  486.696435][T11617] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  486.704460][T11617]  </TASK>
[  486.710900][T11623] FAULT_INJECTION: forcing a failure.
[  486.710900][T11623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  486.725130][T11623] CPU: 1 PID: 11623 Comm: syz.2.1823 Not tainted 6.6.102-syzkaller #0
[  486.733302][T11623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  486.743421][T11623] Call Trace:
[  486.746715][T11623]  <TASK>
[  486.749660][T11623]  dump_stack_lvl+0x16c/0x230
[  486.754366][T11623]  ? show_regs_print_info+0x20/0x20
[  486.759587][T11623]  ? load_image+0x3b0/0x3b0
[  486.764218][T11623]  ? __might_fault+0xaa/0x120
[  486.768926][T11623]  ? __lock_acquire+0x7c80/0x7c80
[  486.774075][T11623]  should_fail_ex+0x39d/0x4d0
[  486.779044][T11623]  _copy_from_user+0x2f/0xe0
[  486.783686][T11623]  kstrtouint_from_user+0xc2/0x150
[  486.788831][T11623]  ? kstrtol_from_user+0x150/0x150
[  486.793975][T11623]  proc_fail_nth_write+0x89/0x240
[  486.799116][T11623]  ? proc_fail_nth_read+0x250/0x250
[  486.804362][T11623]  ? proc_fail_nth_read+0x250/0x250
[  486.809674][T11623]  vfs_write+0x288/0x940
[  486.813940][T11623]  ? file_end_write+0x250/0x250
[  486.818904][T11623]  ? __fget_files+0x28/0x4d0
[  486.823507][T11623]  ? __fget_files+0x44a/0x4d0
[  486.828200][T11623]  ? __fdget_pos+0x2a3/0x330
[  486.832904][T11623]  ? ksys_write+0x75/0x250
[  486.837345][T11623]  ksys_write+0x147/0x250
[  486.841736][T11623]  ? __ia32_sys_read+0x90/0x90
[  486.846600][T11623]  ? lockdep_hardirqs_on+0x98/0x150
[  486.851814][T11623]  do_syscall_64+0x55/0xb0
[  486.856363][T11623]  ? clear_bhb_loop+0x40/0x90
[  486.861073][T11623]  ? clear_bhb_loop+0x40/0x90
[  486.865887][T11623]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  486.871809][T11623] RIP: 0033:0x7f724598d69f
[  486.876233][T11623] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  486.895881][T11623] RSP: 002b:00007f72468a2030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  486.904500][T11623] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f724598d69f
[  486.912668][T11623] RDX: 0000000000000001 RSI: 00007f72468a20a0 RDI: 0000000000000003
[  486.920658][T11623] RBP: 00007f72468a2090 R08: 0000000000000000 R09: 0000000000000000
[  486.928675][T11623] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  486.936761][T11623] R13: 00007f7245bb6128 R14: 00007f7245bb6090 R15: 00007ffdc3208ba8
[  486.944846][T11623]  </TASK>
[  487.091496][T11622] netlink: 'syz.0.1824': attribute type 29 has an invalid length.
[  487.208047][T11629] netlink: 'syz.3.1826': attribute type 4 has an invalid length.
[  487.236397][T11629] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1826'.
[  489.407221][T11620] netlink: 11254 bytes leftover after parsing attributes in process `syz.0.1824'.
[  489.416809][T11622] netlink: 'syz.0.1824': attribute type 29 has an invalid length.
[  489.425050][T11632] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1827'.
[  489.653378][T11645] netlink: 'syz.3.1830': attribute type 3 has an invalid length.
[  489.673155][T11647] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.1831'.
[  489.679154][T11645] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1830'.
[  489.719499][T11649] netlink: 'syz.1.1832': attribute type 10 has an invalid length.
[  489.729177][T11649] vlan0: entered allmulticast mode
[  489.886939][T11654] netlink: 'syz.0.1834': attribute type 10 has an invalid length.
[  489.908451][T11654] vlan0: entered allmulticast mode
[  489.981031][T11656] netlink: 'syz.1.1835': attribute type 4 has an invalid length.
[  490.015833][T11658] netlink: 'syz.2.1833': attribute type 17 has an invalid length.
[  491.329025][T11683] FAULT_INJECTION: forcing a failure.
[  491.329025][T11683] name failslab, interval 1, probability 0, space 0, times 0
[  491.341956][T11683] CPU: 0 PID: 11683 Comm: syz.1.1843 Not tainted 6.6.102-syzkaller #0
[  491.350160][T11683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  491.360455][T11683] Call Trace:
[  491.363780][T11683]  <TASK>
[  491.366854][T11683]  dump_stack_lvl+0x16c/0x230
[  491.371596][T11683]  ? show_regs_print_info+0x20/0x20
[  491.376844][T11683]  ? load_image+0x3b0/0x3b0
[  491.381656][T11683]  ? __might_sleep+0xe0/0xe0
[  491.386271][T11683]  ? __lock_acquire+0x7c80/0x7c80
[  491.391311][T11683]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  491.397142][T11683]  should_fail_ex+0x39d/0x4d0
[  491.401843][T11683]  should_failslab+0x9/0x20
[  491.406400][T11683]  slab_pre_alloc_hook+0x59/0x310
[  491.411551][T11683]  kmem_cache_alloc+0x5a/0x2e0
[  491.416355][T11683]  ? getname_flags+0xbb/0x500
[  491.421177][T11683]  getname_flags+0xbb/0x500
[  491.425700][T11683]  __x64_sys_mkdirat+0x7c/0xa0
[  491.430481][T11683]  do_syscall_64+0x55/0xb0
[  491.434910][T11683]  ? clear_bhb_loop+0x40/0x90
[  491.439596][T11683]  ? clear_bhb_loop+0x40/0x90
[  491.444292][T11683]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  491.450211][T11683] RIP: 0033:0x7f81f6f8ebe9
[  491.454721][T11683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  491.474453][T11683] RSP: 002b:00007f81f7edb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  491.483260][T11683] RAX: ffffffffffffffda RBX: 00007f81f71b5fa0 RCX: 00007f81f6f8ebe9
[  491.491349][T11683] RDX: 00000000000001ff RSI: 0000200000000040 RDI: 0000000000000003
[  491.499504][T11683] RBP: 00007f81f7edb090 R08: 0000000000000000 R09: 0000000000000000
[  491.507572][T11683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  491.515595][T11683] R13: 00007f81f71b6038 R14: 00007f81f71b5fa0 R15: 00007ffc81e497e8
[  491.523681][T11683]  </TASK>
[  491.674003][T11690] netlink: 'syz.1.1845': attribute type 10 has an invalid length.
[  491.726912][T11692] netlink: 'syz.2.1846': attribute type 4 has an invalid length.
[  491.732100][T11690] team0: Port device dummy0 added
[  491.749126][T11692] __nla_validate_parse: 3 callbacks suppressed
[  491.749146][T11692] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1846'.
[  492.063666][T11701] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1850'.
[  492.167906][T11701] validate_nla: 1 callbacks suppressed
[  492.168215][T11701] netlink: 'syz.1.1850': attribute type 29 has an invalid length.
[  492.183508][T11701] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1850'.
[  492.330563][T11704] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1851'.
[  492.728052][T11712] FAULT_INJECTION: forcing a failure.
[  492.728052][T11712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  492.763726][T11712] CPU: 0 PID: 11712 Comm: syz.3.1853 Not tainted 6.6.102-syzkaller #0
[  492.772245][T11712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  492.782350][T11712] Call Trace:
[  492.785665][T11712]  <TASK>
[  492.788628][T11712]  dump_stack_lvl+0x16c/0x230
[  492.793358][T11712]  ? show_regs_print_info+0x20/0x20
[  492.799812][T11712]  ? load_image+0x3b0/0x3b0
[  492.806092][T11712]  ? __lock_acquire+0x7c80/0x7c80
[  492.811778][T11712]  ? snprintf+0xdb/0x120
[  492.816347][T11712]  should_fail_ex+0x39d/0x4d0
[  492.821344][T11712]  _copy_to_user+0x2f/0xa0
[  492.826081][T11712]  simple_read_from_buffer+0xe7/0x150
[  492.832688][T11712]  proc_fail_nth_read+0x1e3/0x250
[  492.837781][T11712]  ? proc_fault_inject_write+0x340/0x340
[  492.843559][T11712]  ? fsnotify_perm+0x271/0x5e0
[  492.848413][T11712]  ? proc_fault_inject_write+0x340/0x340
[  492.854288][T11712]  vfs_read+0x27e/0x920
[  492.858595][T11712]  ? kernel_read+0x1e0/0x1e0
[  492.863337][T11712]  ? __fget_files+0x28/0x4d0
[  492.868407][T11712]  ? __fget_files+0x44a/0x4d0
[  492.873312][T11712]  ? __fdget_pos+0x2a3/0x330
[  492.878457][T11712]  ? ksys_read+0x75/0x250
[  492.883103][T11712]  ksys_read+0x147/0x250
[  492.887606][T11712]  ? vfs_write+0x940/0x940
[  492.892179][T11712]  ? lockdep_hardirqs_on+0x98/0x150
[  492.897622][T11712]  do_syscall_64+0x55/0xb0
[  492.902534][T11712]  ? clear_bhb_loop+0x40/0x90
[  492.907889][T11712]  ? clear_bhb_loop+0x40/0x90
[  492.912756][T11712]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  492.918892][T11712] RIP: 0033:0x7f1dfbb8d5fc
[  492.923779][T11712] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  492.946032][T11712] RSP: 002b:00007f1dfc99d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  492.955205][T11712] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8d5fc
[  492.963768][T11712] RDX: 000000000000000f RSI: 00007f1dfc99d0a0 RDI: 0000000000000007
[  492.972558][T11712] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  492.980752][T11712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  492.989205][T11712] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  492.998014][T11712]  </TASK>
[  493.581393][T11735] netlink: 'syz.2.1859': attribute type 4 has an invalid length.
[  493.600448][T11735] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1859'.
[  493.733349][T11744] netlink: 'syz.3.1861': attribute type 10 has an invalid length.
[  493.759139][T11744] dummy0: left promiscuous mode
[  493.833918][T11744] dummy0: entered promiscuous mode
[  493.883034][T11744] team0: Port device dummy0 added
[  494.084795][T11748] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1863'.
[  494.570325][T11758] netlink: 'syz.3.1864': attribute type 29 has an invalid length.
[  494.588617][T11758] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1864'.
[  494.590066][T11761] netlink: 'syz.2.1865': attribute type 29 has an invalid length.
[  494.610870][T11758] netlink: 'syz.3.1864': attribute type 29 has an invalid length.
[  494.620300][T11758] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1864'.
[  494.650471][T11761] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1865'.
[  494.776046][T11761] netlink: 'syz.2.1865': attribute type 29 has an invalid length.
[  494.831194][T11761] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1865'.
[  495.209303][T11773] FAULT_INJECTION: forcing a failure.
[  495.209303][T11773] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  495.223663][T11773] CPU: 1 PID: 11773 Comm: syz.1.1869 Not tainted 6.6.102-syzkaller #0
[  495.231868][T11773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  495.242047][T11773] Call Trace:
[  495.245489][T11773]  <TASK>
[  495.248443][T11773]  dump_stack_lvl+0x16c/0x230
[  495.253146][T11773]  ? show_regs_print_info+0x20/0x20
[  495.258360][T11773]  ? load_image+0x3b0/0x3b0
[  495.262884][T11773]  ? __might_fault+0xaa/0x120
[  495.267570][T11773]  ? __lock_acquire+0x7c80/0x7c80
[  495.272820][T11773]  should_fail_ex+0x39d/0x4d0
[  495.277515][T11773]  _copy_from_user+0x2f/0xe0
[  495.282122][T11773]  get_user_ifreq+0x6b/0x180
[  495.286732][T11773]  sock_ioctl+0x6ea/0x7a0
[  495.291077][T11773]  ? sock_poll+0x3d0/0x3d0
[  495.295526][T11773]  ? bpf_lsm_file_ioctl+0x9/0x10
[  495.300472][T11773]  ? security_file_ioctl+0x80/0xa0
[  495.305804][T11773]  ? sock_poll+0x3d0/0x3d0
[  495.310341][T11773]  __se_sys_ioctl+0xfd/0x170
[  495.315034][T11773]  do_syscall_64+0x55/0xb0
[  495.319463][T11773]  ? clear_bhb_loop+0x40/0x90
[  495.324170][T11773]  ? clear_bhb_loop+0x40/0x90
[  495.328857][T11773]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  495.334854][T11773] RIP: 0033:0x7f81f6f8ebe9
[  495.339399][T11773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.359145][T11773] RSP: 002b:00007f81f7edb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  495.367781][T11773] RAX: ffffffffffffffda RBX: 00007f81f71b5fa0 RCX: 00007f81f6f8ebe9
[  495.376140][T11773] RDX: 0000200000000080 RSI: 00000000000089f9 RDI: 0000000000000004
[  495.384210][T11773] RBP: 00007f81f7edb090 R08: 0000000000000000 R09: 0000000000000000
[  495.392549][T11773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  495.400794][T11773] R13: 00007f81f71b6038 R14: 00007f81f71b5fa0 R15: 00007ffc81e497e8
[  495.408880][T11773]  </TASK>
[  495.562390][T11776] netlink: 'syz.2.1871': attribute type 4 has an invalid length.
[  495.673057][T11784] netlink: 'syz.0.1876': attribute type 10 has an invalid length.
[  495.763792][T11784] dummy0: entered promiscuous mode
[  495.793632][T11784] dummy0: entered allmulticast mode
[  495.810348][T11784] team0: Port device dummy0 added
[  496.695132][T11803] netlink: 'syz.2.1881': attribute type 29 has an invalid length.
[  497.167620][T11809] __nla_validate_parse: 5 callbacks suppressed
[  497.167658][T11809] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1882'.
[  497.197884][T11809] validate_nla: 2 callbacks suppressed
[  497.197920][T11809] netlink: 'syz.3.1882': attribute type 29 has an invalid length.
[  497.220678][T11809] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1882'.
[  497.983723][T11820] netlink: 'syz.3.1884': attribute type 29 has an invalid length.
[  498.068517][T11820] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1884'.
[  498.626394][T11820] netlink: 'syz.3.1884': attribute type 29 has an invalid length.
[  498.732114][T11820] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1884'.
[  499.090214][T11828] netlink: 'syz.2.1886': attribute type 4 has an invalid length.
[  499.098693][T11828] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1886'.
[  499.789134][T11844] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1893'.
[  500.130227][T11850] netlink: 'syz.2.1895': attribute type 29 has an invalid length.
[  500.145729][T11850] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1895'.
[  500.163894][T11850] netlink: 'syz.2.1895': attribute type 29 has an invalid length.
[  500.428111][T11850] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1895'.
[  500.993580][T11860] netlink: 'syz.1.1897': attribute type 29 has an invalid length.
[  501.026433][T11860] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1897'.
[  501.095910][T11860] netlink: 'syz.1.1897': attribute type 29 has an invalid length.
[  501.134263][T11860] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1897'.
[  501.818695][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  501.825272][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  502.268164][T11868] netlink: 'syz.0.1899': attribute type 29 has an invalid length.
[  502.285211][T11868] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1899'.
[  502.315174][T11868] netlink: 'syz.0.1899': attribute type 29 has an invalid length.
[  502.380368][T11868] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1899'.
[  502.920045][T11875] netlink: 'syz.1.1901': attribute type 4 has an invalid length.
[  502.928055][T11875] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1901'.
[  503.491289][T11877] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1902'.
[  503.914940][T11889] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1907'.
[  504.365582][T11897] netlink: 'syz.0.1909': attribute type 29 has an invalid length.
[  504.384812][T11897] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1909'.
[  504.439055][T11897] netlink: 'syz.0.1909': attribute type 29 has an invalid length.
[  504.470808][T11897] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1909'.
[  505.191772][T11904] netlink: 'syz.3.1912': attribute type 29 has an invalid length.
[  505.320150][T11904] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1912'.
[  505.334747][T11904] netlink: 'syz.3.1912': attribute type 29 has an invalid length.
[  505.344394][T11904] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1912'.
[  505.785515][T11912] netlink: 'syz.2.1914': attribute type 4 has an invalid length.
[  505.803319][T11912] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1914'.
[  507.041571][T11922] netlink: 'syz.1.1925': attribute type 4 has an invalid length.
[  508.184541][T11939] __nla_validate_parse: 2 callbacks suppressed
[  508.184563][T11939] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1922'.
[  509.169167][T11963] netlink: 'syz.2.1926': attribute type 29 has an invalid length.
[  509.177393][T11963] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1926'.
[  509.313785][T11963] netlink: 'syz.2.1926': attribute type 29 has an invalid length.
[  509.410774][T11963] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1926'.
[  511.150558][T11980] netlink: 'syz.3.1930': attribute type 4 has an invalid length.
[  511.227543][T11980] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1930'.
[  511.252485][T11981] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1932'.
[  513.434568][T11993] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1938'.
[  513.700674][T12004] FAULT_INJECTION: forcing a failure.
[  513.700674][T12004] name failslab, interval 1, probability 0, space 0, times 0
[  513.760273][T12004] CPU: 0 PID: 12004 Comm: syz.2.1942 Not tainted 6.6.102-syzkaller #0
[  513.768525][T12004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  513.778624][T12004] Call Trace:
[  513.781915][T12004]  <TASK>
[  513.784937][T12004]  dump_stack_lvl+0x16c/0x230
[  513.789637][T12004]  ? show_regs_print_info+0x20/0x20
[  513.794848][T12004]  ? load_image+0x3b0/0x3b0
[  513.799545][T12004]  ? __might_sleep+0xe0/0xe0
[  513.804146][T12004]  ? __lock_acquire+0x7c80/0x7c80
[  513.809187][T12004]  should_fail_ex+0x39d/0x4d0
[  513.813889][T12004]  should_failslab+0x9/0x20
[  513.818404][T12004]  slab_pre_alloc_hook+0x59/0x310
[  513.823612][T12004]  ? mark_lock+0x94/0x320
[  513.828038][T12004]  kmem_cache_alloc_node+0x60/0x330
[  513.833258][T12004]  ? __lock_acquire+0x1260/0x7c80
[  513.838297][T12004]  ? __alloc_skb+0x108/0x2c0
[  513.842917][T12004]  __alloc_skb+0x108/0x2c0
[  513.847353][T12004]  alloc_skb_with_frags+0xca/0x7c0
[  513.852477][T12004]  ? mark_lock+0x94/0x320
[  513.856904][T12004]  ? __lock_acquire+0x1260/0x7c80
[  513.861938][T12004]  sock_alloc_send_pskb+0x857/0x990
[  513.867161][T12004]  ? sock_kzfree_s+0x50/0x50
[  513.871847][T12004]  ? verify_lock_unused+0x140/0x140
[  513.877146][T12004]  ? verify_lock_unused+0x140/0x140
[  513.882445][T12004]  __ip6_append_data+0x29e0/0x3c40
[  513.887586][T12004]  ? __lock_acquire+0x7c80/0x7c80
[  513.892706][T12004]  ? ip6_dst_lookup_tail+0x297/0x14a0
[  513.898201][T12004]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  513.903078][T12004]  ? ip6_mtu+0x7d/0x3f0
[  513.907320][T12004]  ? ip6_setup_cork+0xfe0/0xfe0
[  513.912179][T12004]  ? ip6_setup_cork+0xa2f/0xfe0
[  513.917042][T12004]  ip6_make_skb+0x3a8/0x4c0
[  513.921558][T12004]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  513.926422][T12004]  ? __ip6_flush_pending_frames+0x3a0/0x3a0
[  513.932332][T12004]  ? ip6_dst_hoplimit+0x96/0x350
[  513.937366][T12004]  ? ip6_dst_hoplimit+0x96/0x350
[  513.942408][T12004]  udpv6_sendmsg+0x1b7e/0x22f0
[  513.947281][T12004]  ? ip_skb_dst_mtu+0x9c0/0x9c0
[  513.952156][T12004]  ? udp_v6_early_demux+0xf60/0xf60
[  513.957476][T12004]  ? perf_trace_preemptirq_template+0xa4/0x340
[  513.963651][T12004]  ? lock_chain_count+0x20/0x20
[  513.968525][T12004]  ? _local_bh_enable+0xa0/0xa0
[  513.973390][T12004]  ? inet_send_prepare+0x1b3/0x260
[  513.978536][T12004]  ? inet_send_prepare+0x1b3/0x260
[  513.983654][T12004]  ? inet6_sendmsg+0x5f/0xd0
[  513.988265][T12004]  ? inet6_compat_ioctl+0x380/0x380
[  513.993534][T12004]  ____sys_sendmsg+0x5bf/0x950
[  513.998413][T12004]  ? __asan_memset+0x22/0x40
[  514.003199][T12004]  ? __sys_sendmsg_sock+0x30/0x30
[  514.008276][T12004]  ? __import_iovec+0x3fa/0x860
[  514.013145][T12004]  ? import_iovec+0x73/0xa0
[  514.017673][T12004]  ___sys_sendmsg+0x220/0x290
[  514.022376][T12004]  ? __sys_sendmsg+0x270/0x270
[  514.027196][T12004]  ? __lock_acquire+0x7c80/0x7c80
[  514.032411][T12004]  __se_sys_sendmsg+0x1a5/0x270
[  514.037290][T12004]  ? __x64_sys_sendmsg+0x80/0x80
[  514.042287][T12004]  ? lockdep_hardirqs_on+0x98/0x150
[  514.047521][T12004]  do_syscall_64+0x55/0xb0
[  514.052016][T12004]  ? clear_bhb_loop+0x40/0x90
[  514.056796][T12004]  ? clear_bhb_loop+0x40/0x90
[  514.061490][T12004]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.067407][T12004] RIP: 0033:0x7f724598ebe9
[  514.072110][T12004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.091931][T12004] RSP: 002b:00007f72468c3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  514.100548][T12004] RAX: ffffffffffffffda RBX: 00007f7245bb5fa0 RCX: 00007f724598ebe9
[  514.108535][T12004] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  514.116698][T12004] RBP: 00007f72468c3090 R08: 0000000000000000 R09: 0000000000000000
[  514.124706][T12004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.132695][T12004] R13: 00007f7245bb6038 R14: 00007f7245bb5fa0 R15: 00007ffdc3208ba8
[  514.140809][T12004]  </TASK>
[  514.733087][T12013] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1945'.
[  515.342732][T12023] netlink: 'syz.3.1946': attribute type 4 has an invalid length.
[  515.388413][T12023] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1946'.
[  515.999310][T12034] netlink: 'syz.1.1951': attribute type 1 has an invalid length.
[  516.007248][T12034] netlink: 15998 bytes leftover after parsing attributes in process `syz.1.1951'.
[  516.928632][T12048] FAULT_INJECTION: forcing a failure.
[  516.928632][T12048] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  516.946747][T12048] CPU: 1 PID: 12048 Comm: syz.3.1954 Not tainted 6.6.102-syzkaller #0
[  516.955057][T12048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  516.965126][T12048] Call Trace:
[  516.968416][T12048]  <TASK>
[  516.971445][T12048]  dump_stack_lvl+0x16c/0x230
[  516.976150][T12048]  ? show_regs_print_info+0x20/0x20
[  516.981461][T12048]  ? load_image+0x3b0/0x3b0
[  516.985992][T12048]  ? __might_fault+0xaa/0x120
[  516.990687][T12048]  ? __lock_acquire+0x7c80/0x7c80
[  516.995910][T12048]  should_fail_ex+0x39d/0x4d0
[  517.000622][T12048]  _copy_from_user+0x2f/0xe0
[  517.005435][T12048]  bpf_prog_test_run_flow_dissector+0x259/0x600
[  517.011713][T12048]  ? xdp_convert_buff_to_md+0x200/0x200
[  517.017288][T12048]  ? __fget_files+0x28/0x4d0
[  517.021934][T12048]  ? __fget_files+0x44a/0x4d0
[  517.026824][T12048]  ? xdp_convert_buff_to_md+0x200/0x200
[  517.032482][T12048]  bpf_prog_test_run+0x321/0x390
[  517.037442][T12048]  __sys_bpf+0x440/0x800
[  517.041709][T12048]  ? bpf_link_show_fdinfo+0x350/0x350
[  517.047116][T12048]  ? lock_chain_count+0x20/0x20
[  517.051999][T12048]  __x64_sys_bpf+0x7c/0x90
[  517.056428][T12048]  do_syscall_64+0x55/0xb0
[  517.060858][T12048]  ? clear_bhb_loop+0x40/0x90
[  517.065948][T12048]  ? clear_bhb_loop+0x40/0x90
[  517.070641][T12048]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  517.076682][T12048] RIP: 0033:0x7f1dfbb8ebe9
[  517.081133][T12048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  517.101133][T12048] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  517.109578][T12048] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  517.117566][T12048] RDX: 0000000000000050 RSI: 0000200000000180 RDI: 000000000000000a
[  517.125554][T12048] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  517.133549][T12048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  517.141616][T12048] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  517.149621][T12048]  </TASK>
[  517.793332][T12053] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1957'.
[  519.452561][T12077] netlink: 'syz.1.1963': attribute type 4 has an invalid length.
[  519.464642][T12077] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.1963'.
[  521.177706][T12091] netlink: 'syz.3.1969': attribute type 17 has an invalid length.
[  521.203728][T12091] netlink: 160 bytes leftover after parsing attributes in process `syz.3.1969'.
[  521.287037][T12091] netlink: 'syz.3.1969': attribute type 1 has an invalid length.
[  521.341435][T12091] netlink: 15998 bytes leftover after parsing attributes in process `syz.3.1969'.
[  522.132957][T12108] netlink: 'syz.2.1974': attribute type 4 has an invalid length.
[  522.140955][T12108] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1974'.
[  524.049914][T12130] netlink: 'syz.2.1982': attribute type 17 has an invalid length.
[  524.057907][T12130] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1982'.
[  524.248921][T12130] netlink: 'syz.2.1982': attribute type 1 has an invalid length.
[  524.256854][T12130] netlink: 15998 bytes leftover after parsing attributes in process `syz.2.1982'.
[  524.652581][T12136] netlink: 'syz.3.1984': attribute type 4 has an invalid length.
[  524.688701][T12136] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.1984'.
[  526.735948][T12171] netlink: 'syz.2.1995': attribute type 4 has an invalid length.
[  526.744184][T12171] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.1995'.
[  527.422570][T12180] batman_adv: batadv0: Removing interface: team0
[  527.454868][T12180] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  527.484410][T12180] batman_adv: batadv0: Removing interface: batadv_slave_0
[  527.499271][T12180] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  527.512650][T12180] batman_adv: batadv0: Removing interface: batadv_slave_1
[  527.527510][T12180] batman_adv: batadv0: Interface deactivated: wlan0
[  527.536539][T12180] batman_adv: batadv0: Removing interface: wlan0
[  527.647309][T12182] netlink: 'syz.0.2000': attribute type 17 has an invalid length.
[  527.671513][T12182] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2000'.
[  527.740542][T12186] netlink: 'syz.0.2000': attribute type 1 has an invalid length.
[  527.756355][T12186] netlink: 15998 bytes leftover after parsing attributes in process `syz.0.2000'.
[  528.322102][T12199] netlink: 'syz.1.2006': attribute type 4 has an invalid length.
[  528.358846][T12199] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.2006'.
[  528.777225][T12212] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2011'.
[  528.838686][T12212] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2011'.
[  528.884510][T12212] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2011'.
[  528.906456][T12212] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2011'.
[  528.969485][T12212] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2011'.
[  529.100209][T12218] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  529.107772][T12218] batman_adv: batadv0: Removing interface: batadv_slave_0
[  529.124308][T12218] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  529.133274][T12218] batman_adv: batadv0: Removing interface: batadv_slave_1
[  529.153276][T12218] batman_adv: batadv0: Interface deactivated: wlan0
[  529.164845][T12218] batman_adv: batadv0: Removing interface: wlan0
[  529.316886][T12229] netlink: 'syz.2.2016': attribute type 17 has an invalid length.
[  529.341607][T12229] netlink: 'syz.2.2016': attribute type 1 has an invalid length.
[  529.417279][T12230] netlink: 'syz.1.2017': attribute type 29 has an invalid length.
[  529.426711][T12230] netlink: 'syz.1.2017': attribute type 29 has an invalid length.
[  529.657491][T12235] netlink: 'syz.0.2019': attribute type 4 has an invalid length.
[  530.385604][T12240] FAULT_INJECTION: forcing a failure.
[  530.385604][T12240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  530.450536][T12240] CPU: 0 PID: 12240 Comm: syz.3.2021 Not tainted 6.6.102-syzkaller #0
[  530.458965][T12240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  530.469217][T12240] Call Trace:
[  530.472712][T12240]  <TASK>
[  530.475856][T12240]  dump_stack_lvl+0x16c/0x230
[  530.480930][T12240]  ? show_regs_print_info+0x20/0x20
[  530.486256][T12240]  ? load_image+0x3b0/0x3b0
[  530.490860][T12240]  ? __lock_acquire+0x7c80/0x7c80
[  530.495924][T12240]  ? snprintf+0xdb/0x120
[  530.500207][T12240]  should_fail_ex+0x39d/0x4d0
[  530.505066][T12240]  _copy_to_user+0x2f/0xa0
[  530.509548][T12240]  simple_read_from_buffer+0xe7/0x150
[  530.514936][T12240]  proc_fail_nth_read+0x1e3/0x250
[  530.519974][T12240]  ? proc_fault_inject_write+0x340/0x340
[  530.525631][T12240]  ? fsnotify_perm+0x271/0x5e0
[  530.530426][T12240]  ? proc_fault_inject_write+0x340/0x340
[  530.536198][T12240]  vfs_read+0x27e/0x920
[  530.540495][T12240]  ? kernel_read+0x1e0/0x1e0
[  530.545217][T12240]  ? __fget_files+0x28/0x4d0
[  530.549919][T12240]  ? __fget_files+0x44a/0x4d0
[  530.554664][T12240]  ? __fdget_pos+0x2a3/0x330
[  530.559305][T12240]  ? ksys_read+0x75/0x250
[  530.563706][T12240]  ksys_read+0x147/0x250
[  530.568012][T12240]  ? vfs_write+0x940/0x940
[  530.572572][T12240]  ? lockdep_hardirqs_on+0x98/0x150
[  530.577994][T12240]  do_syscall_64+0x55/0xb0
[  530.582450][T12240]  ? clear_bhb_loop+0x40/0x90
[  530.587331][T12240]  ? clear_bhb_loop+0x40/0x90
[  530.592047][T12240]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  530.598000][T12240] RIP: 0033:0x7f1dfbb8d5fc
[  530.602460][T12240] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  530.622192][T12240] RSP: 002b:00007f1dfc99d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  530.630660][T12240] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8d5fc
[  530.638677][T12240] RDX: 000000000000000f RSI: 00007f1dfc99d0a0 RDI: 0000000000000006
[  530.646686][T12240] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  530.654702][T12240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.663238][T12240] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  530.671262][T12240]  </TASK>
[  530.812802][T12257] netlink: 'syz.2.2028': attribute type 4 has an invalid length.
[  530.823305][T12257] __nla_validate_parse: 33 callbacks suppressed
[  530.823321][T12257] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.2028'.
[  531.153475][T12264] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  531.168402][T12264] batman_adv: batadv0: Removing interface: batadv_slave_0
[  531.200368][T12264] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  531.216062][T12264] batman_adv: batadv0: Removing interface: batadv_slave_1
[  532.145932][T12281] netlink: 'syz.3.2036': attribute type 29 has an invalid length.
[  532.156867][T12281] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2036'.
[  532.175883][T12281] netlink: 'syz.3.2036': attribute type 29 has an invalid length.
[  532.185352][T12281] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2036'.
[  532.335879][T12288] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2038'.
[  533.149419][T12310] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2050'.
[  534.293364][T12327] netlink: 'syz.0.2056': attribute type 29 has an invalid length.
[  534.306951][T12327] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2056'.
[  534.363256][T12323] netlink: 830 bytes leftover after parsing attributes in process `syz.2.2053'.
[  534.423693][T12327] netlink: 'syz.0.2056': attribute type 29 has an invalid length.
[  534.449726][T12327] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2056'.
[  535.229172][T12351] netlink: 'syz.0.2062': attribute type 17 has an invalid length.
[  535.247441][T12351] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2062'.
[  536.505694][T12362] FAULT_INJECTION: forcing a failure.
[  536.505694][T12362] name failslab, interval 1, probability 0, space 0, times 0
[  536.528590][T12362] CPU: 0 PID: 12362 Comm: syz.3.2067 Not tainted 6.6.102-syzkaller #0
[  536.536807][T12362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  536.546878][T12362] Call Trace:
[  536.550169][T12362]  <TASK>
[  536.553128][T12362]  dump_stack_lvl+0x16c/0x230
[  536.557937][T12362]  ? show_regs_print_info+0x20/0x20
[  536.563268][T12362]  ? load_image+0x3b0/0x3b0
[  536.567864][T12362]  ? __might_sleep+0xe0/0xe0
[  536.572506][T12362]  ? __lock_acquire+0x7c80/0x7c80
[  536.577563][T12362]  should_fail_ex+0x39d/0x4d0
[  536.582351][T12362]  should_failslab+0x9/0x20
[  536.586984][T12362]  slab_pre_alloc_hook+0x59/0x310
[  536.592242][T12362]  ? tomoyo_encode+0x28b/0x540
[  536.597136][T12362]  ? tomoyo_encode+0x28b/0x540
[  536.601940][T12362]  __kmem_cache_alloc_node+0x53/0x260
[  536.607359][T12362]  ? tomoyo_encode+0x28b/0x540
[  536.612166][T12362]  __kmalloc+0xa4/0x240
[  536.616370][T12362]  tomoyo_encode+0x28b/0x540
[  536.621013][T12362]  tomoyo_realpath_from_path+0x592/0x5d0
[  536.626712][T12362]  tomoyo_path_number_perm+0x1ea/0x590
[  536.632326][T12362]  ? tomoyo_path_number_perm+0x1ba/0x590
[  536.638075][T12362]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  536.643568][T12362]  ? hrtimer_interrupt+0x597/0x9c0
[  536.648881][T12362]  ? ktime_get+0x7f/0x280
[  536.653349][T12362]  ? __fget_files+0x28/0x4d0
[  536.658006][T12362]  security_file_ioctl+0x70/0xa0
[  536.662972][T12362]  __se_sys_ioctl+0x48/0x170
[  536.667662][T12362]  do_syscall_64+0x55/0xb0
[  536.672183][T12362]  ? clear_bhb_loop+0x40/0x90
[  536.677063][T12362]  ? clear_bhb_loop+0x40/0x90
[  536.681783][T12362]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  536.688055][T12362] RIP: 0033:0x7f1dfbb8ebe9
[  536.692569][T12362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.712373][T12362] RSP: 002b:00007f1dfc99d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  536.720891][T12362] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8ebe9
[  536.728869][T12362] RDX: 0000200000000080 RSI: 0000000000008914 RDI: 0000000000000006
[  536.736847][T12362] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  536.744921][T12362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  536.752983][T12362] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  536.761150][T12362]  </TASK>
[  536.786915][T12362] ERROR: Out of memory at tomoyo_realpath_from_path.
[  536.875497][T12362] mac80211_hwsim hwsim15 wlan1: entered allmulticast mode
[  537.159955][T12371] netlink: 830 bytes leftover after parsing attributes in process `syz.1.2070'.
[  537.238787][T12376] netlink: 'syz.2.2072': attribute type 29 has an invalid length.
[  537.258859][T12376] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2072'.
[  537.319300][T12376] netlink: 'syz.2.2072': attribute type 29 has an invalid length.
[  537.341362][T12376] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2072'.
[  537.372726][T12379] netlink: 'syz.0.2073': attribute type 17 has an invalid length.
[  537.387418][T12379] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2073'.
[  539.598808][T12413] netlink: 'syz.3.2085': attribute type 17 has an invalid length.
[  539.616505][T12413] netlink: 160 bytes leftover after parsing attributes in process `syz.3.2085'.
[  539.642642][T12408] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2084'.
[  541.303906][T12444] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.2098'.
[  541.536402][T12447] netlink: 'syz.2.2099': attribute type 17 has an invalid length.
[  541.554713][T12447] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2099'.
[  541.607774][T12447] netlink: 'syz.2.2099': attribute type 1 has an invalid length.
[  541.643795][T12447] netlink: 15998 bytes leftover after parsing attributes in process `syz.2.2099'.
[  542.118602][T12455] netlink: 'syz.3.2102': attribute type 10 has an invalid length.
[  542.152084][T12455] team0: Device ipvlan1 failed to register rx_handler
[  542.213629][T12458] netlink: 'syz.3.2102': attribute type 10 has an invalid length.
[  542.260372][T12458] team0: left promiscuous mode
[  542.266375][T12458] C: left promiscuous mode
[  542.271630][T12458] team_slave_1: left promiscuous mode
[  542.277459][T12458] mac80211_hwsim hwsim4 .3#c„±: left promiscuous mode
[  542.296327][T12458] bridge0: left promiscuous mode
[  542.306815][T12458] dummy0: left promiscuous mode
[  543.028711][T12476] netlink: 'syz.0.2110': attribute type 17 has an invalid length.
[  543.036766][T12476] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2110'.
[  543.096840][T12481] netlink: 'syz.0.2110': attribute type 1 has an invalid length.
[  543.112864][T12481] netlink: 15998 bytes leftover after parsing attributes in process `syz.0.2110'.
[  543.295998][T12485] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.2112'.
[  543.296310][T12489] netlink: 'syz.0.2115': attribute type 10 has an invalid length.
[  543.319867][T12489] team0: Device ipvlan1 failed to register rx_handler
[  543.371496][T12490] netlink: 'syz.0.2115': attribute type 10 has an invalid length.
[  543.429728][T12490] team0: left allmulticast mode
[  543.434968][T12490] team_slave_0: left allmulticast mode
[  543.458415][T12490] team_slave_1: left allmulticast mode
[  543.468805][T12490] bond0: left allmulticast mode
[  543.473744][T12490] bond_slave_0: left allmulticast mode
[  543.516219][T12490] bond_slave_1: left allmulticast mode
[  543.522454][T12490] netdevsim netdevsim0 netdevsim0: left allmulticast mode
[  543.530106][T12490] dummy0: left allmulticast mode
[  543.536092][T12490] team0: left promiscuous mode
[  543.541714][T12490] team_slave_0: left promiscuous mode
[  543.547575][T12490] team_slave_1: left promiscuous mode
[  543.560460][T12490] mac80211_hwsim hwsim8 wlan1: left promiscuous mode
[  543.571003][T12490] bond0: left promiscuous mode
[  543.575948][T12490] bond_slave_0: left promiscuous mode
[  543.582319][T12490] bond_slave_1: left promiscuous mode
[  543.588009][T12490] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  543.596090][T12490] dummy0: left promiscuous mode
[  543.604937][T12490] bridge0: port 3(team0) entered disabled state
[  544.153360][T12517] netlink: 'syz.0.2125': attribute type 17 has an invalid length.
[  544.162334][T12517] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2125'.
[  544.175402][T12517] netlink: 'syz.0.2125': attribute type 1 has an invalid length.
[  544.184334][T12517] netlink: 15998 bytes leftover after parsing attributes in process `syz.0.2125'.
[  544.378448][T12525] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.2126'.
[  544.537437][T12532] netlink: 'syz.3.2132': attribute type 10 has an invalid length.
[  544.889503][T12541] netlink: 'syz.1.2136': attribute type 17 has an invalid length.
[  544.920411][T12541] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2136'.
[  544.957868][T12541] netlink: 'syz.1.2136': attribute type 1 has an invalid length.
[  544.976301][T12541] netlink: 15998 bytes leftover after parsing attributes in process `syz.1.2136'.
[  545.978898][T12558] syzkaller0: entered promiscuous mode
[  545.987411][T12560] netlink: 'syz.0.2142': attribute type 2 has an invalid length.
[  545.998499][T12558] syzkaller0: entered allmulticast mode
[  546.008598][T12560] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2142'.
[  546.148915][T12564] team0: left allmulticast mode
[  546.166466][T12564] team_slave_0: left allmulticast mode
[  546.176605][T12564] team_slave_1: left allmulticast mode
[  546.189862][T12564] bond0: left allmulticast mode
[  546.194875][T12564] bond_slave_0: left allmulticast mode
[  546.201312][T12564] bond_slave_1: left allmulticast mode
[  546.207031][T12564] dummy0: left allmulticast mode
[  546.212792][T12564] mac80211_hwsim hwsim9 wlan1: left allmulticast mode
[  546.220949][T12564] team0: left promiscuous mode
[  546.225955][T12564] team_slave_0: left promiscuous mode
[  546.234928][T12564] team_slave_1: left promiscuous mode
[  546.242180][T12564] bond0: left promiscuous mode
[  546.247133][T12564] bond_slave_0: left promiscuous mode
[  546.253538][T12564] bond_slave_1: left promiscuous mode
[  546.260016][T12564] dummy0: left promiscuous mode
[  546.265971][T12564] mac80211_hwsim hwsim9 wlan1: left promiscuous mode
[  546.274420][T12564] bridge0: port 3(team0) entered disabled state
[  547.723093][T12576] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2149'.
[  548.029404][ T5785] Bluetooth: hci3: unexpected subevent 0x0a length: 150 > 30
[  549.022215][T12607] validate_nla: 3 callbacks suppressed
[  549.022235][T12607] netlink: 'syz.3.2157': attribute type 10 has an invalid length.
[  549.362043][T12616] netlink: 'syz.3.2161': attribute type 17 has an invalid length.
[  549.385015][T12616] __nla_validate_parse: 1 callbacks suppressed
[  549.385033][T12616] netlink: 160 bytes leftover after parsing attributes in process `syz.3.2161'.
[  549.404835][T12616] netlink: 'syz.3.2161': attribute type 1 has an invalid length.
[  549.413884][T12616] netlink: 15998 bytes leftover after parsing attributes in process `syz.3.2161'.
[  549.779959][ T5782] Bluetooth: hci0: unexpected event 0x16 length: 15 > 6
[  549.990894][T12631] netlink: 'syz.2.2168': attribute type 10 has an invalid length.
[  550.019853][T12631] team0: Device ipvlan1 failed to register rx_handler
[  550.105969][ T5782] Bluetooth: hci3: command 0x0406 tx timeout
[  550.533698][T12647] netlink: 'syz.3.2174': attribute type 17 has an invalid length.
[  550.548948][T12647] netlink: 160 bytes leftover after parsing attributes in process `syz.3.2174'.
[  550.578076][T12647] netlink: 'syz.3.2174': attribute type 1 has an invalid length.
[  550.597532][T12647] netlink: 15998 bytes leftover after parsing attributes in process `syz.3.2174'.
[  550.879983][T12654] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.2177'.
[  551.091054][T12659] netlink: 'syz.3.2179': attribute type 10 has an invalid length.
[  551.118419][T12659] team0: Device ipvlan1 failed to register rx_handler
[  551.201841][T12665] FAULT_INJECTION: forcing a failure.
[  551.201841][T12665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  551.246948][T12667] netlink: 176 bytes leftover after parsing attributes in process `syz.1.2181'.
[  551.262873][T12665] CPU: 1 PID: 12665 Comm: syz.0.2180 Not tainted 6.6.102-syzkaller #0
[  551.271729][T12665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  551.281922][T12665] Call Trace:
[  551.285250][T12665]  <TASK>
[  551.288223][T12665]  dump_stack_lvl+0x16c/0x230
[  551.292963][T12665]  ? show_regs_print_info+0x20/0x20
[  551.298212][T12665]  ? load_image+0x3b0/0x3b0
[  551.302755][T12665]  ? __might_fault+0xaa/0x120
[  551.307456][T12665]  ? __lock_acquire+0x7c80/0x7c80
[  551.312518][T12665]  should_fail_ex+0x39d/0x4d0
[  551.317221][T12665]  _copy_from_user+0x2f/0xe0
[  551.321837][T12665]  __sys_bpf+0x1e9/0x800
[  551.326096][T12665]  ? bpf_link_show_fdinfo+0x350/0x350
[  551.331503][T12665]  ? lock_chain_count+0x20/0x20
[  551.336472][T12665]  __x64_sys_bpf+0x7c/0x90
[  551.340912][T12665]  do_syscall_64+0x55/0xb0
[  551.345353][T12665]  ? clear_bhb_loop+0x40/0x90
[  551.350048][T12665]  ? clear_bhb_loop+0x40/0x90
[  551.354742][T12665]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  551.360657][T12665] RIP: 0033:0x7fcd35b8ebe9
[  551.365083][T12665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.384964][T12665] RSP: 002b:00007fcd33df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  551.393478][T12665] RAX: ffffffffffffffda RBX: 00007fcd35db5fa0 RCX: 00007fcd35b8ebe9
[  551.401462][T12665] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  551.409442][T12665] RBP: 00007fcd33df6090 R08: 0000000000000000 R09: 0000000000000000
[  551.417423][T12665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  551.425405][T12665] R13: 00007fcd35db6038 R14: 00007fcd35db5fa0 R15: 00007fff648dc808
[  551.433424][T12665]  </TASK>
[  551.534055][T12667] netlink: 'syz.1.2181': attribute type 21 has an invalid length.
[  551.552960][T12667] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2181'.
[  551.631882][T12672] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.2184'.
[  551.712526][T12678] netlink: 'syz.1.2186': attribute type 17 has an invalid length.
[  551.720801][T12678] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2186'.
[  551.742928][T12678] netlink: 'syz.1.2186': attribute type 1 has an invalid length.
[  551.758377][T12678] netlink: 15998 bytes leftover after parsing attributes in process `syz.1.2186'.
[  552.452616][T12697] team0: Device ipvlan1 failed to register rx_handler
[  552.541995][T12699] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  552.566585][T12699] CPU: 1 PID: 12699 Comm: syz.1.2194 Not tainted 6.6.102-syzkaller #0
[  552.575012][T12699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  552.585218][T12699] Call Trace:
[  552.588573][T12699]  <TASK>
[  552.591565][T12699]  dump_stack_lvl+0x16c/0x230
[  552.596288][T12699]  ? show_regs_print_info+0x20/0x20
[  552.601528][T12699]  ? load_image+0x3b0/0x3b0
[  552.606110][T12699]  sysfs_warn_dup+0x8e/0xa0
[  552.610658][T12699]  sysfs_do_create_link_sd+0xc0/0x110
[  552.616258][T12699]  device_add_class_symlinks+0x1cf/0x240
[  552.622108][T12699]  device_add+0x507/0xc20
[  552.626488][T12699]  wiphy_register+0x1e74/0x2c00
[  552.631433][T12699]  ? cfg80211_event_work+0x40/0x40
[  552.636660][T12699]  ? minstrel_ht_alloc+0x88a/0x990
[  552.641838][T12699]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  552.648044][T12699]  ieee80211_register_hw+0x2dc2/0x3ac0
[  552.653602][T12699]  ? ieee80211_tasklet_handler+0x20/0x20
[  552.659264][T12699]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  552.665302][T12699]  ? __debug_object_init+0xe8/0x430
[  552.670632][T12699]  ? __asan_memset+0x22/0x40
[  552.675267][T12699]  ? __hrtimer_init+0x186/0x270
[  552.680158][T12699]  mac80211_hwsim_new_radio+0x2a00/0x4cf0
[  552.686059][T12699]  ? mac80211_hwsim_free+0x220/0x220
[  552.691457][T12699]  ? rcu_is_watching+0x15/0xb0
[  552.696340][T12699]  ? kstrndup+0xbd/0x140
[  552.700666][T12699]  hwsim_new_radio_nl+0xd78/0x19d0
[  552.705862][T12699]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  552.712253][T12699]  ? __nla_parse+0x40/0x50
[  552.716714][T12699]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  552.723097][T12699]  genl_family_rcv_msg_doit+0x209/0x2f0
[  552.728701][T12699]  ? genl_family_rcv_msg_dumpit+0x2c0/0x2c0
[  552.734652][T12699]  ? bpf_lsm_capable+0x9/0x10
[  552.739362][T12699]  ? security_capable+0x89/0xb0
[  552.744354][T12699]  genl_rcv_msg+0x60b/0x790
[  552.749011][T12699]  ? genl_bind+0x360/0x360
[  552.753474][T12699]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  552.760027][T12699]  ? trace_event_raw_event_lock_acquire+0x2a0/0x2a0
[  552.766771][T12699]  netlink_rcv_skb+0x216/0x480
[  552.771574][T12699]  ? genl_bind+0x360/0x360
[  552.776031][T12699]  ? netlink_ack+0x1110/0x1110
[  552.781039][T12699]  ? __lock_acquire+0x7c80/0x7c80
[  552.786206][T12699]  ? down_read+0x1ac/0x2e0
[  552.790757][T12699]  genl_rcv+0x28/0x40
[  552.794775][T12699]  netlink_unicast+0x751/0x8d0
[  552.799600][T12699]  netlink_sendmsg+0x8c1/0xbe0
[  552.804421][T12699]  ? netlink_getsockopt+0x580/0x580
[  552.809662][T12699]  ? aa_sock_msg_perm+0x94/0x150
[  552.814636][T12699]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  552.819966][T12699]  ? security_socket_sendmsg+0x80/0xa0
[  552.825562][T12699]  ? netlink_getsockopt+0x580/0x580
[  552.830797][T12699]  ____sys_sendmsg+0x5bf/0x950
[  552.835620][T12699]  ? __asan_memset+0x22/0x40
[  552.840246][T12699]  ? __sys_sendmsg_sock+0x30/0x30
[  552.845295][T12699]  ? __import_iovec+0x5f2/0x860
[  552.850210][T12699]  ? import_iovec+0x73/0xa0
[  552.854853][T12699]  ___sys_sendmsg+0x220/0x290
[  552.859708][T12699]  ? __sys_sendmsg+0x270/0x270
[  552.864661][T12699]  __se_sys_sendmsg+0x1a5/0x270
[  552.869602][T12699]  ? __x64_sys_sendmsg+0x80/0x80
[  552.874618][T12699]  ? lockdep_hardirqs_on+0x98/0x150
[  552.879862][T12699]  do_syscall_64+0x55/0xb0
[  552.884303][T12699]  ? clear_bhb_loop+0x40/0x90
[  552.889101][T12699]  ? clear_bhb_loop+0x40/0x90
[  552.893812][T12699]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  552.899824][T12699] RIP: 0033:0x7f81f6f8ebe9
[  552.904421][T12699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  552.924063][T12699] RSP: 002b:00007f81f7edb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  552.932522][T12699] RAX: ffffffffffffffda RBX: 00007f81f71b5fa0 RCX: 00007f81f6f8ebe9
[  552.940607][T12699] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  552.948692][T12699] RBP: 00007f81f7011e19 R08: 0000000000000000 R09: 0000000000000000
[  552.956806][T12699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  552.964894][T12699] R13: 00007f81f71b6038 R14: 00007f81f71b5fa0 R15: 00007ffc81e497e8
[  552.973027][T12699]  </TASK>
[  554.346986][T12742] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[  554.716635][T12749] __nla_validate_parse: 7 callbacks suppressed
[  554.716661][T12749] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.2215'.
[  554.853803][T12754] validate_nla: 4 callbacks suppressed
[  554.853821][T12754] netlink: 'syz.0.2217': attribute type 29 has an invalid length.
[  554.883316][T12754] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2217'.
[  554.898951][T12754] netlink: 'syz.0.2217': attribute type 29 has an invalid length.
[  554.918355][T12754] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2217'.
[  555.069914][T12761] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2219'.
[  555.275671][T12765] netlink: 'syz.1.2220': attribute type 10 has an invalid length.
[  555.821350][T12776] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.2226'.
[  556.083214][T12787] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2229'.
[  556.279585][T12791] netlink: 'syz.1.2231': attribute type 10 has an invalid length.
[  556.507328][T12793] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.2240'.
[  556.921621][T12804] netlink: 'syz.3.2235': attribute type 29 has an invalid length.
[  556.958815][T12804] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2235'.
[  557.108758][T12804] netlink: 'syz.3.2235': attribute type 29 has an invalid length.
[  557.148789][T12804] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2235'.
[  557.456374][T12817] netlink: 'syz.2.2238': attribute type 1 has an invalid length.
[  557.476429][T12817] netlink: 15998 bytes leftover after parsing attributes in process `syz.2.2238'.
[  557.975338][T12828] netlink: 'syz.2.2241': attribute type 10 has an invalid length.
[  560.357269][T12860] netlink: 'syz.0.2253': attribute type 10 has an invalid length.
[  560.995270][T12880] netlink: 'syz.0.2260': attribute type 29 has an invalid length.
[  561.022622][T12880] __nla_validate_parse: 1 callbacks suppressed
[  561.022641][T12880] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2260'.
[  561.088736][T12880] netlink: 'syz.0.2260': attribute type 29 has an invalid length.
[  561.096873][T12880] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2260'.
[  562.222635][T12898] netlink: 'syz.3.2268': attribute type 10 has an invalid length.
[  563.039027][T12920] ref_ctr_offset mismatch. inode: 0xb13 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  563.072188][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  563.079346][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  563.256839][T12925] netlink: 'syz.0.2277': attribute type 10 has an invalid length.
[  563.278393][T12925] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2277'.
[  563.287389][T12925] team0: entered promiscuous mode
[  563.298460][T12925] team_slave_0: entered promiscuous mode
[  563.304846][T12925] team_slave_1: entered promiscuous mode
[  563.311610][T12925] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  563.320772][T12925] bond0: entered promiscuous mode
[  563.326374][T12925] bond_slave_0: entered promiscuous mode
[  563.332960][T12925] bond_slave_1: entered promiscuous mode
[  563.339558][T12925] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  563.347906][T12925] dummy0: entered promiscuous mode
[  563.356598][T12925] 8021q: adding VLAN 0 to HW filter on device team0
[  563.364782][T12925] bridge0: port 3(team0) entered blocking state
[  563.372027][T12925] bridge0: port 3(team0) entered disabled state
[  563.379380][T12925] team0: entered allmulticast mode
[  563.384795][T12925] team_slave_0: entered allmulticast mode
[  563.391495][T12925] team_slave_1: entered allmulticast mode
[  563.397429][T12925] bond0: entered allmulticast mode
[  563.403705][T12925] bond_slave_0: entered allmulticast mode
[  563.410035][T12925] bond_slave_1: entered allmulticast mode
[  563.416107][T12925] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  563.424275][T12925] dummy0: entered allmulticast mode
[  564.308956][T12931] ip6erspan0: tun_chr_ioctl cmd 1074025672
[  564.315303][T12931] ip6erspan0: ignored: set checksum enabled
[  564.524229][T12934] netlink: 'syz.3.2289': attribute type 10 has an invalid length.
[  564.573639][T12934] team0: Device ipvlan1 failed to register rx_handler
[  564.681655][T12934] netlink: 'syz.3.2289': attribute type 10 has an invalid length.
[  564.912357][T12940] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2282'.
[  565.243229][T12956] netlink: 'syz.3.2287': attribute type 10 has an invalid length.
[  565.267521][T12956] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2287'.
[  565.283593][T12956] team0: entered promiscuous mode
[  565.290147][T12956] C: entered promiscuous mode
[  565.296054][T12956] team_slave_1: entered promiscuous mode
[  565.308727][T12956] mac80211_hwsim hwsim4 .3#c„±: entered promiscuous mode
[  565.316205][T12956] bridge0: entered promiscuous mode
[  565.322721][T12956] dummy0: entered promiscuous mode
[  565.336615][T12956] 8021q: adding VLAN 0 to HW filter on device team0
[  565.346093][T12955] ref_ctr_offset mismatch. inode: 0xb7b offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20
[  565.349215][T12956] bridge0: port 3(team0) entered blocking state
[  565.378932][T12956] bridge0: port 3(team0) entered disabled state
[  565.385585][T12956] team0: entered allmulticast mode
[  565.391912][T12956] C: entered allmulticast mode
[  565.396763][T12956] team_slave_1: entered allmulticast mode
[  565.404285][T12956] mac80211_hwsim hwsim4 .3#c„±: entered allmulticast mode
[  565.413147][T12956] bridge0: entered allmulticast mode
[  565.419301][T12956] dummy0: entered allmulticast mode
[  565.430143][T12956] team0: left allmulticast mode
[  565.435235][T12956] C: left allmulticast mode
[  565.440529][T12956] team_slave_1: left allmulticast mode
[  565.446183][T12956] mac80211_hwsim hwsim4 .3#c„±: left allmulticast mode
[  565.454746][T12956] bridge0: left allmulticast mode
[  565.461142][T12956] dummy0: left allmulticast mode
[  565.633611][T12963] netlink: 'syz.2.2290': attribute type 4 has an invalid length.
[  565.641795][T12963] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.2290'.
[  565.666605][T12966] netlink: 209588 bytes leftover after parsing attributes in process `syz.3.2291'.
[  565.676425][T12966] netlink: get zone limit has 4 unknown bytes
[  566.043560][T12975] netlink: 'syz.3.2296': attribute type 10 has an invalid length.
[  566.056404][T12975] netlink: 55 bytes leftover after parsing attributes in process `syz.3.2296'.
[  566.479607][T12983] netlink: 'syz.2.2299': attribute type 10 has an invalid length.
[  566.495287][T12983] team0: Device ipvlan1 failed to register rx_handler
[  566.641024][T12984] netlink: 'syz.2.2299': attribute type 10 has an invalid length.
[  566.922367][T12996] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.2310'.
[  567.004455][T12992] netlink: 'syz.3.2302': attribute type 4 has an invalid length.
[  567.013420][T12992] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.2302'.
[  567.095856][T13002] netlink: 'syz.1.2304': attribute type 33 has an invalid length.
[  567.113768][T13002] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2304'.
[  567.128500][T13002] A link change request failed with some changes committed already. Interface veth1 may have been left with an inconsistent configuration, please check.
[  567.278581][T13006] netlink: 'syz.3.2306': attribute type 10 has an invalid length.
[  567.287506][T13006] netlink: 55 bytes leftover after parsing attributes in process `syz.3.2306'.
[  567.480061][T13013] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.2309'.
[  567.552356][T13017] netlink: 'syz.1.2312': attribute type 10 has an invalid length.
[  567.567975][T13017] team0: Device ipvlan1 failed to register rx_handler
[  567.597152][T13017] netlink: 'syz.1.2312': attribute type 10 has an invalid length.
[  567.827399][T13024] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.2315'.
[  567.890544][T13021] netlink: 'syz.1.2314': attribute type 4 has an invalid length.
[  567.909123][T13021] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.2314'.
[  567.961214][T13026] team0: Device ipvlan1 failed to register rx_handler
[  568.121777][T13032] netlink: 55 bytes leftover after parsing attributes in process `syz.3.2318'.
[  568.255474][T13036] FAULT_INJECTION: forcing a failure.
[  568.255474][T13036] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  568.275187][T13036] CPU: 0 PID: 13036 Comm: syz.3.2320 Not tainted 6.6.102-syzkaller #0
[  568.283582][T13036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  568.293672][T13036] Call Trace:
[  568.296995][T13036]  <TASK>
[  568.299972][T13036]  dump_stack_lvl+0x16c/0x230
[  568.304796][T13036]  ? show_regs_print_info+0x20/0x20
[  568.310115][T13036]  ? load_image+0x3b0/0x3b0
[  568.314663][T13036]  ? __lock_acquire+0x7c80/0x7c80
[  568.319722][T13036]  ? snprintf+0xdb/0x120
[  568.324006][T13036]  should_fail_ex+0x39d/0x4d0
[  568.328724][T13036]  _copy_to_user+0x2f/0xa0
[  568.333200][T13036]  simple_read_from_buffer+0xe7/0x150
[  568.338620][T13036]  proc_fail_nth_read+0x1e3/0x250
[  568.343657][T13036]  ? proc_fault_inject_write+0x340/0x340
[  568.349305][T13036]  ? fsnotify_perm+0x271/0x5e0
[  568.354086][T13036]  ? proc_fault_inject_write+0x340/0x340
[  568.359745][T13036]  vfs_read+0x27e/0x920
[  568.363919][T13036]  ? kernel_read+0x1e0/0x1e0
[  568.368556][T13036]  ? __fget_files+0x28/0x4d0
[  568.373158][T13036]  ? __fget_files+0x44a/0x4d0
[  568.377875][T13036]  ? __fdget_pos+0x2a3/0x330
[  568.382610][T13036]  ? ksys_read+0x75/0x250
[  568.386986][T13036]  ksys_read+0x147/0x250
[  568.391376][T13036]  ? vfs_write+0x940/0x940
[  568.395899][T13036]  ? lockdep_hardirqs_on+0x98/0x150
[  568.401113][T13036]  do_syscall_64+0x55/0xb0
[  568.405537][T13036]  ? clear_bhb_loop+0x40/0x90
[  568.410220][T13036]  ? clear_bhb_loop+0x40/0x90
[  568.414903][T13036]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  568.420900][T13036] RIP: 0033:0x7f1dfbb8d5fc
[  568.425329][T13036] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  568.445996][T13036] RSP: 002b:00007f1dfc99d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  568.454424][T13036] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8d5fc
[  568.462407][T13036] RDX: 000000000000000f RSI: 00007f1dfc99d0a0 RDI: 0000000000000004
[  568.470383][T13036] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  568.478363][T13036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  568.486437][T13036] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  568.494522][T13036]  </TASK>
[  568.506161][T13038] team0: Device ipvlan1 failed to register rx_handler
[  569.197775][T13054] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.2327'.
[  570.813024][T13062] FAULT_INJECTION: forcing a failure.
[  570.813024][T13062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  570.850305][T13062] CPU: 1 PID: 13062 Comm: syz.1.2330 Not tainted 6.6.102-syzkaller #0
[  570.858720][T13062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  570.869497][T13062] Call Trace:
[  570.872807][T13062]  <TASK>
[  570.875764][T13062]  dump_stack_lvl+0x16c/0x230
[  570.880474][T13062]  ? show_regs_print_info+0x20/0x20
[  570.885788][T13062]  ? load_image+0x3b0/0x3b0
[  570.890516][T13062]  ? __might_fault+0xaa/0x120
[  570.895333][T13062]  ? __lock_acquire+0x7c80/0x7c80
[  570.900478][T13062]  ? __virt_addr_valid+0x18c/0x540
[  570.905624][T13062]  should_fail_ex+0x39d/0x4d0
[  570.910406][T13062]  _copy_from_user+0x2f/0xe0
[  570.915117][T13062]  bpf_prog_test_run_skb+0x259/0x11c0
[  570.920519][T13062]  ? __fget_files+0x28/0x4d0
[  570.925142][T13062]  ? __fget_files+0x44a/0x4d0
[  570.929865][T13062]  ? cpu_online+0x60/0x60
[  570.934224][T13062]  bpf_prog_test_run+0x321/0x390
[  570.939205][T13062]  __sys_bpf+0x440/0x800
[  570.943567][T13062]  ? bpf_link_show_fdinfo+0x350/0x350
[  570.948993][T13062]  ? lock_chain_count+0x20/0x20
[  570.953890][T13062]  __x64_sys_bpf+0x7c/0x90
[  570.958336][T13062]  do_syscall_64+0x55/0xb0
[  570.962789][T13062]  ? clear_bhb_loop+0x40/0x90
[  570.967488][T13062]  ? clear_bhb_loop+0x40/0x90
[  570.972371][T13062]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  570.978390][T13062] RIP: 0033:0x7f81f6f8ebe9
[  570.982836][T13062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  571.002654][T13062] RSP: 002b:00007f81f7edb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  571.011113][T13062] RAX: ffffffffffffffda RBX: 00007f81f71b5fa0 RCX: 00007f81f6f8ebe9
[  571.019275][T13062] RDX: 0000000000000048 RSI: 0000200000000380 RDI: 000000000000000a
[  571.027255][T13062] RBP: 00007f81f7edb090 R08: 0000000000000000 R09: 0000000000000000
[  571.035238][T13062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  571.043222][T13062] R13: 00007f81f71b6038 R14: 00007f81f71b5fa0 R15: 00007ffc81e497e8
[  571.051500][T13062]  </TASK>
[  571.286001][T13070] validate_nla: 5 callbacks suppressed
[  571.286024][T13070] netlink: 'syz.0.2340': attribute type 10 has an invalid length.
[  571.304944][T13070] team0: Device ipvlan1 failed to register rx_handler
[  571.386999][T13071] netlink: 'syz.0.2340': attribute type 10 has an invalid length.
[  571.472786][T13071] team0: left allmulticast mode
[  571.489559][T13071] team_slave_0: left allmulticast mode
[  571.512495][T13071] team_slave_1: left allmulticast mode
[  571.521702][T13071] bond0: left allmulticast mode
[  571.533530][T13071] bond_slave_0: left allmulticast mode
[  571.548488][T13071] bond_slave_1: left allmulticast mode
[  571.560996][T13071] netdevsim netdevsim0 netdevsim0: left allmulticast mode
[  571.576766][T13071] dummy0: left allmulticast mode
[  571.602731][T13071] team0: left promiscuous mode
[  571.618446][T13071] team_slave_0: left promiscuous mode
[  571.624287][T13071] team_slave_1: left promiscuous mode
[  571.630809][T13071] mac80211_hwsim hwsim8 wlan1: left promiscuous mode
[  571.637741][T13061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  571.648021][T13071] bond0: left promiscuous mode
[  571.653517][T13071] bond_slave_0: left promiscuous mode
[  571.659805][T13071] bond_slave_1: left promiscuous mode
[  571.665814][T13071] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  571.673637][T13071] dummy0: left promiscuous mode
[  571.683906][T13071] bridge0: port 3(team0) entered disabled state
[  572.041018][T13079] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.2336'.
[  572.362628][T13085] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  572.375170][T13085] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  572.383686][T13085] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  572.392536][T13085] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  572.401070][T13085] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  572.410493][T13085] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  572.584495][ T2983] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.773400][ T2983] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.928710][ T2983] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.979613][T13100] FAULT_INJECTION: forcing a failure.
[  572.979613][T13100] name failslab, interval 1, probability 0, space 0, times 0
[  572.997480][T13100] CPU: 1 PID: 13100 Comm: syz.0.2345 Not tainted 6.6.102-syzkaller #0
[  573.005783][T13100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  573.015869][T13100] Call Trace:
[  573.019180][T13100]  <TASK>
[  573.022139][T13100]  dump_stack_lvl+0x16c/0x230
[  573.027251][T13100]  ? show_regs_print_info+0x20/0x20
[  573.032563][T13100]  ? load_image+0x3b0/0x3b0
[  573.037120][T13100]  ? __lock_acquire+0x7c80/0x7c80
[  573.042218][T13100]  should_fail_ex+0x39d/0x4d0
[  573.046955][T13100]  should_failslab+0x9/0x20
[  573.051581][T13100]  slab_pre_alloc_hook+0x59/0x310
[  573.056636][T13100]  ? bpf_prog_alloc+0x3d/0x1b0
[  573.061428][T13100]  ? bpf_prog_load+0x6b8/0x16d0
[  573.066392][T13100]  ? __sys_bpf+0x55a/0x800
[  573.070843][T13100]  kmem_cache_alloc_node+0x60/0x330
[  573.076181][T13100]  ? alloc_vmap_area+0x1c4/0x1c70
[  573.081336][T13100]  alloc_vmap_area+0x1c4/0x1c70
[  573.086237][T13100]  ? vm_map_ram+0xcb0/0xcb0
[  573.090852][T13100]  ? rcu_is_watching+0x15/0xb0
[  573.095673][T13100]  __get_vm_area_node+0x162/0x370
[  573.100759][T13100]  __vmalloc_node_range+0x36e/0x1320
[  573.106440][T13100]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  573.112021][T13100]  ? mark_lock+0x94/0x320
[  573.116388][T13100]  ? __lock_acquire+0x1334/0x7c80
[  573.121442][T13100]  ? verify_lock_unused+0x140/0x140
[  573.126855][T13100]  ? free_vm_area+0x50/0x50
[  573.131394][T13100]  ? end_current_label_crit_section+0x170/0x170
[  573.137711][T13100]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  573.143287][T13100]  __vmalloc+0x7a/0x90
[  573.147388][T13100]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  573.152969][T13100]  bpf_prog_alloc_no_stats+0x47/0x440
[  573.158552][T13100]  ? bpf_prog_alloc+0x2b/0x1b0
[  573.163519][T13100]  bpf_prog_alloc+0x3d/0x1b0
[  573.168148][T13100]  bpf_prog_load+0x6b8/0x16d0
[  573.172860][T13100]  ? map_freeze+0x420/0x420
[  573.177394][T13100]  ? __might_fault+0xaa/0x120
[  573.182092][T13100]  ? __lock_acquire+0x7c80/0x7c80
[  573.187163][T13100]  ? file_end_write+0x159/0x250
[  573.192139][T13100]  ? __might_fault+0xaa/0x120
[  573.196935][T13100]  ? __might_fault+0xc6/0x120
[  573.201642][T13100]  ? __might_fault+0xaa/0x120
[  573.206395][T13100]  ? bpf_lsm_bpf+0x9/0x10
[  573.210757][T13100]  ? security_bpf+0x7e/0xa0
[  573.215371][T13100]  __sys_bpf+0x55a/0x800
[  573.219630][T13100]  ? bpf_link_show_fdinfo+0x350/0x350
[  573.225067][T13100]  ? lock_chain_count+0x20/0x20
[  573.230227][T13100]  __x64_sys_bpf+0x7c/0x90
[  573.234674][T13100]  do_syscall_64+0x55/0xb0
[  573.239197][T13100]  ? clear_bhb_loop+0x40/0x90
[  573.243975][T13100]  ? clear_bhb_loop+0x40/0x90
[  573.248681][T13100]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.254624][T13100] RIP: 0033:0x7fcd35b8ebe9
[  573.259052][T13100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  573.278930][T13100] RSP: 002b:00007fcd33df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  573.287527][T13100] RAX: ffffffffffffffda RBX: 00007fcd35db5fa0 RCX: 00007fcd35b8ebe9
[  573.295532][T13100] RDX: 0000000000000023 RSI: 00002000000004c0 RDI: 0000000000000005
[  573.303540][T13100] RBP: 00007fcd33df6090 R08: 0000000000000000 R09: 0000000000000000
[  573.311561][T13100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  573.319551][T13100] R13: 00007fcd35db6038 R14: 00007fcd35db5fa0 R15: 00007fff648dc808
[  573.327546][T13100]  </TASK>
[  573.378491][T13100] syz.0.2345: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  573.399702][T13100] CPU: 1 PID: 13100 Comm: syz.0.2345 Not tainted 6.6.102-syzkaller #0
[  573.408010][T13100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  573.418105][T13100] Call Trace:
[  573.421411][T13100]  <TASK>
[  573.424364][T13100]  dump_stack_lvl+0x16c/0x230
[  573.429175][T13100]  ? show_regs_print_info+0x20/0x20
[  573.434430][T13100]  ? load_image+0x3b0/0x3b0
[  573.438992][T13100]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  573.445531][T13100]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  573.452069][T13100]  warn_alloc+0x210/0x300
[  573.456528][T13100]  ? slab_free_freelist_hook+0x130/0x1b0
[  573.462218][T13100]  ? zone_watermark_ok_safe+0x230/0x230
[  573.467820][T13100]  ? __get_vm_area_node+0x17b/0x370
[  573.473075][T13100]  ? __get_vm_area_node+0x17b/0x370
[  573.478324][T13100]  __vmalloc_node_range+0x393/0x1320
[  573.483701][T13100]  ? mark_lock+0x94/0x320
[  573.488159][T13100]  ? __lock_acquire+0x1334/0x7c80
[  573.493313][T13100]  ? verify_lock_unused+0x140/0x140
[  573.498568][T13100]  ? free_vm_area+0x50/0x50
[  573.503118][T13100]  ? end_current_label_crit_section+0x170/0x170
[  573.509588][T13100]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  573.515183][T13100]  __vmalloc+0x7a/0x90
[  573.519399][T13100]  ? bpf_prog_alloc_no_stats+0x47/0x440
[  573.524988][T13100]  bpf_prog_alloc_no_stats+0x47/0x440
[  573.530394][T13100]  ? bpf_prog_alloc+0x2b/0x1b0
[  573.535178][T13100]  bpf_prog_alloc+0x3d/0x1b0
[  573.539800][T13100]  bpf_prog_load+0x6b8/0x16d0
[  573.544507][T13100]  ? map_freeze+0x420/0x420
[  573.549035][T13100]  ? __might_fault+0xaa/0x120
[  573.553768][T13100]  ? __lock_acquire+0x7c80/0x7c80
[  573.559070][T13100]  ? file_end_write+0x159/0x250
[  573.563932][T13100]  ? __might_fault+0xaa/0x120
[  573.568815][T13100]  ? __might_fault+0xc6/0x120
[  573.573496][T13100]  ? __might_fault+0xaa/0x120
[  573.578267][T13100]  ? bpf_lsm_bpf+0x9/0x10
[  573.582643][T13100]  ? security_bpf+0x7e/0xa0
[  573.587355][T13100]  __sys_bpf+0x55a/0x800
[  573.591613][T13100]  ? bpf_link_show_fdinfo+0x350/0x350
[  573.597266][T13100]  ? lock_chain_count+0x20/0x20
[  573.602135][T13100]  __x64_sys_bpf+0x7c/0x90
[  573.606556][T13100]  do_syscall_64+0x55/0xb0
[  573.610985][T13100]  ? clear_bhb_loop+0x40/0x90
[  573.615805][T13100]  ? clear_bhb_loop+0x40/0x90
[  573.620491][T13100]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.626409][T13100] RIP: 0033:0x7fcd35b8ebe9
[  573.630835][T13100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  573.650562][T13100] RSP: 002b:00007fcd33df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  573.658991][T13100] RAX: ffffffffffffffda RBX: 00007fcd35db5fa0 RCX: 00007fcd35b8ebe9
[  573.667343][T13100] RDX: 0000000000000023 RSI: 00002000000004c0 RDI: 0000000000000005
[  573.675401][T13100] RBP: 00007fcd33df6090 R08: 0000000000000000 R09: 0000000000000000
[  573.683390][T13100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  573.691375][T13100] R13: 00007fcd35db6038 R14: 00007fcd35db5fa0 R15: 00007fff648dc808
[  573.699650][T13100]  </TASK>
[  573.779374][T13100] Mem-Info:
[  573.798868][T13100] active_anon:8122 inactive_anon:0 isolated_anon:0
[  573.798868][T13100]  active_file:23039 inactive_file:40019 isolated_file:0
[  573.798868][T13100]  unevictable:768 dirty:406 writeback:0
[  573.798868][T13100]  slab_reclaimable:10494 slab_unreclaimable:95317
[  573.798868][T13100]  mapped:25002 shmem:1361 pagetables:534
[  573.798868][T13100]  sec_pagetables:0 bounce:0
[  573.798868][T13100]  kernel_misc_reclaimable:0
[  573.798868][T13100]  free:1337415 free_pcp:9375 free_cma:0
[  573.867996][T13100] Node 0 active_anon:32488kB inactive_anon:0kB active_file:92156kB inactive_file:159876kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100108kB dirty:1624kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11564kB pagetables:2136kB sec_pagetables:0kB all_unreclaimable? no
[  573.906290][T13100] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  573.937262][T13100] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  573.939018][ T2983] bond0: (slave netdevsim0): Releasing backup interface
[  573.987956][T13100] lowmem_reserve[]: 0 2525 2526 2526 2526
[  573.996849][T13100] Node 0 DMA32 free:1444812kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:32436kB inactive_anon:0kB active_file:92156kB inactive_file:158564kB unevictable:1536kB writepending:1620kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:13140kB local_pcp:6184kB free_cma:0kB
[  574.030166][ T2983] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  574.040562][T13100] lowmem_reserve[]: 0 0 1 1 1
[  574.045260][T13100] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:4kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  574.104031][T13082] chnl_net:caif_netlink_parms(): no params data found
[  574.145656][T13100] lowmem_reserve[]: 0 0 0 0 0
[  574.167557][T13100] Node 1 Normal free:3889468kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:24608kB local_pcp:12256kB free_cma:0kB
[  574.295408][T13100] lowmem_reserve[]: 0 0 0 0 0
[  574.319491][T13100] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  574.354107][T13100] Node 0 DMA32: 261*4kB (UM) 1135*8kB (ME) 1468*16kB (UM) 1109*32kB (UME) 707*64kB (UME) 503*128kB (UME) 234*256kB (UME) 101*512kB (UM) 30*1024kB (UME) 12*2048kB (M) 268*4096kB (UM) = 1443372kB
[  574.396933][T13100] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  574.465992][T13100] Node 1 Normal: 263*4kB (UME) 64*8kB (UME) 54*16kB (UME) 34*32kB (UME) 16*64kB (UME) 5*128kB (UE) 1*256kB (E) 2*512kB (UM) 2*1024kB (UE) 1*2048kB (E) 947*4096kB (M) = 3889468kB
[  574.498920][T13085] Bluetooth: hci2: command tx timeout
[  574.561692][T13082] bridge0: port 1(bridge_slave_0) entered blocking state
[  574.569613][T13100] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  574.598450][T13082] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.600625][T13100] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  574.605859][T13082] bridge_slave_0: entered allmulticast mode
[  574.654735][T13100] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  574.656305][T13082] bridge_slave_0: entered promiscuous mode
[  574.678360][T13100] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  574.697989][T13100] 64419 total pagecache pages
[  574.703673][T13100] 0 pages in swap cache
[  574.713176][T13082] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.718486][T13100] Free swap  = 124996kB
[  574.724970][T13100] Total swap = 124996kB
[  574.742158][T13082] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.748656][T13100] 2097051 pages RAM
[  574.753371][T13100] 0 pages HighMem/MovableOnly
[  574.758089][T13100] 416138 pages reserved
[  574.772656][T13100] 0 pages cma reserved
[  574.781408][T13082] bridge_slave_1: entered allmulticast mode
[  574.801039][T13082] bridge_slave_1: entered promiscuous mode
[  574.926910][T13082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  575.070951][T13082] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  575.087669][T13127] FAULT_INJECTION: forcing a failure.
[  575.087669][T13127] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  575.108508][T13127] CPU: 0 PID: 13127 Comm: syz.0.2351 Not tainted 6.6.102-syzkaller #0
[  575.116726][T13127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  575.126825][T13127] Call Trace:
[  575.130144][T13127]  <TASK>
[  575.133108][T13127]  dump_stack_lvl+0x16c/0x230
[  575.137922][T13127]  ? show_regs_print_info+0x20/0x20
[  575.143171][T13127]  ? load_image+0x3b0/0x3b0
[  575.147966][T13127]  ? __might_fault+0xaa/0x120
[  575.152703][T13127]  ? __lock_acquire+0x7c80/0x7c80
[  575.157771][T13127]  ? __mutex_trylock_common+0x153/0x250
[  575.163375][T13127]  should_fail_ex+0x39d/0x4d0
[  575.168110][T13127]  _copy_from_user+0x2f/0xe0
[  575.172751][T13127]  br_ioctl_stub+0x23f/0xa40
[  575.177389][T13127]  ? rcu_read_unlock+0xa0/0xa0
[  575.182193][T13127]  ? sock_ioctl+0x3d8/0x7a0
[  575.186852][T13127]  ? rcu_read_unlock+0xa0/0xa0
[  575.191660][T13127]  sock_ioctl+0x3fa/0x7a0
[  575.196049][T13127]  ? sock_poll+0x3d0/0x3d0
[  575.200529][T13127]  ? bpf_lsm_file_ioctl+0x9/0x10
[  575.205518][T13127]  ? security_file_ioctl+0x80/0xa0
[  575.210708][T13127]  ? sock_poll+0x3d0/0x3d0
[  575.215172][T13127]  __se_sys_ioctl+0xfd/0x170
[  575.219827][T13127]  do_syscall_64+0x55/0xb0
[  575.224454][T13127]  ? clear_bhb_loop+0x40/0x90
[  575.229169][T13127]  ? clear_bhb_loop+0x40/0x90
[  575.233877][T13127]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  575.239810][T13127] RIP: 0033:0x7fcd35b8ebe9
[  575.244257][T13127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.263982][T13127] RSP: 002b:00007fcd33df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  575.272612][T13127] RAX: ffffffffffffffda RBX: 00007fcd35db5fa0 RCX: 00007fcd35b8ebe9
[  575.280647][T13127] RDX: 0000200000000080 RSI: 0000000000008940 RDI: 0000000000000004
[  575.288821][T13127] RBP: 00007fcd33df6090 R08: 0000000000000000 R09: 0000000000000000
[  575.296857][T13127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  575.305343][T13127] R13: 00007fcd35db6038 R14: 00007fcd35db5fa0 R15: 00007fff648dc808
[  575.313539][T13127]  </TASK>
[  575.946268][T13082] team0: Port device team_slave_0 added
[  576.306322][T13147] sit0: entered allmulticast mode
[  576.379946][T13082] team0: Port device team_slave_1 added
[  576.395409][T13149] sit0: entered promiscuous mode
[  576.578676][T13085] Bluetooth: hci2: command tx timeout
[  576.927332][T13159] FAULT_INJECTION: forcing a failure.
[  576.927332][T13159] name failslab, interval 1, probability 0, space 0, times 0
[  576.942620][T13159] CPU: 0 PID: 13159 Comm: syz.2.2358 Not tainted 6.6.102-syzkaller #0
[  576.950826][T13159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  576.961183][T13159] Call Trace:
[  576.964666][T13159]  <TASK>
[  576.967632][T13159]  dump_stack_lvl+0x16c/0x230
[  576.972354][T13159]  ? show_regs_print_info+0x20/0x20
[  576.977585][T13159]  ? load_image+0x3b0/0x3b0
[  576.982225][T13159]  ? __might_sleep+0xe0/0xe0
[  576.986848][T13159]  ? __lock_acquire+0x7c80/0x7c80
[  576.991911][T13159]  should_fail_ex+0x39d/0x4d0
[  576.997180][T13159]  should_failslab+0x9/0x20
[  577.001809][T13159]  slab_pre_alloc_hook+0x59/0x310
[  577.007054][T13159]  ? cpuset_write_resmask+0x1ff/0x1eb0
[  577.012552][T13159]  ? cpuset_write_resmask+0x1ff/0x1eb0
[  577.018042][T13159]  __kmem_cache_alloc_node+0x53/0x260
[  577.023705][T13159]  ? cpuset_write_resmask+0x1ff/0x1eb0
[  577.029280][T13159]  __kmalloc_node_track_caller+0xa2/0x230
[  577.035061][T13159]  kmemdup+0x2b/0x70
[  577.038997][T13159]  cpuset_write_resmask+0x1ff/0x1eb0
[  577.044331][T13159]  ? __mutex_trylock_common+0x153/0x250
[  577.049925][T13159]  ? trace_raw_output_contention_end+0xd0/0xd0
[  577.056119][T13159]  ? cpuset_common_seq_show+0x240/0x240
[  577.061794][T13159]  ? __virt_addr_valid+0x18c/0x540
[  577.066958][T13159]  ? cpuset_common_seq_show+0x240/0x240
[  577.072567][T13159]  cgroup_file_write+0x2fc/0x660
[  577.077549][T13159]  ? read_lock_is_recursive+0x20/0x20
[  577.083042][T13159]  ? cgroup_seqfile_stop+0xd0/0xd0
[  577.088200][T13159]  ? cgroup_seqfile_stop+0xd0/0xd0
[  577.093340][T13159]  kernfs_fop_write_iter+0x37d/0x4d0
[  577.098851][T13159]  vfs_write+0x43b/0x940
[  577.103136][T13159]  ? file_end_write+0x250/0x250
[  577.108032][T13159]  ? __fget_files+0x44a/0x4d0
[  577.112838][T13159]  ? __fdget_pos+0x2a3/0x330
[  577.117598][T13159]  ? ksys_write+0x75/0x250
[  577.122054][T13159]  ksys_write+0x147/0x250
[  577.126423][T13159]  ? __ia32_sys_read+0x90/0x90
[  577.131223][T13159]  ? lockdep_hardirqs_on+0x98/0x150
[  577.136461][T13159]  do_syscall_64+0x55/0xb0
[  577.140909][T13159]  ? clear_bhb_loop+0x40/0x90
[  577.145615][T13159]  ? clear_bhb_loop+0x40/0x90
[  577.150326][T13159]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  577.156254][T13159] RIP: 0033:0x7f724598ebe9
[  577.160694][T13159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.180537][T13159] RSP: 002b:00007f72468c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  577.189078][T13159] RAX: ffffffffffffffda RBX: 00007f7245bb5fa0 RCX: 00007f724598ebe9
[  577.197076][T13159] RDX: 0000000000000031 RSI: 0000200000000240 RDI: 0000000000000004
[  577.205073][T13159] RBP: 00007f72468c3090 R08: 0000000000000000 R09: 0000000000000000
[  577.213073][T13159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  577.221160][T13159] R13: 00007f7245bb6038 R14: 00007f7245bb5fa0 R15: 00007ffdc3208ba8
[  577.229226][T13159]  </TASK>
[  577.494398][T13082] batman_adv: batadv0: Adding interface: batadv_slave_0
[  577.502236][T13082] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  577.532439][T13082] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  577.545697][T13082] batman_adv: batadv0: Adding interface: batadv_slave_1
[  577.554712][T13082] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  577.581202][T13082] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  577.741097][T13082] hsr_slave_0: entered promiscuous mode
[  577.757772][T13082] hsr_slave_1: entered promiscuous mode
[  577.966078][T13181] FAULT_INJECTION: forcing a failure.
[  577.966078][T13181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  577.999104][T13181] CPU: 0 PID: 13181 Comm: syz.3.2364 Not tainted 6.6.102-syzkaller #0
[  578.007345][T13181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  578.018138][T13181] Call Trace:
[  578.021454][T13181]  <TASK>
[  578.024506][T13181]  dump_stack_lvl+0x16c/0x230
[  578.029237][T13181]  ? show_regs_print_info+0x20/0x20
[  578.034488][T13181]  ? load_image+0x3b0/0x3b0
[  578.039049][T13181]  ? __lock_acquire+0x7c80/0x7c80
[  578.044117][T13181]  ? snprintf+0xdb/0x120
[  578.048381][T13181]  should_fail_ex+0x39d/0x4d0
[  578.053076][T13181]  _copy_to_user+0x2f/0xa0
[  578.057502][T13181]  simple_read_from_buffer+0xe7/0x150
[  578.062979][T13181]  proc_fail_nth_read+0x1e3/0x250
[  578.068015][T13181]  ? proc_fault_inject_write+0x340/0x340
[  578.073670][T13181]  ? fsnotify_perm+0x271/0x5e0
[  578.078461][T13181]  ? proc_fault_inject_write+0x340/0x340
[  578.084119][T13181]  vfs_read+0x27e/0x920
[  578.088316][T13181]  ? kernel_read+0x1e0/0x1e0
[  578.092959][T13181]  ? __fget_files+0x28/0x4d0
[  578.097576][T13181]  ? __fget_files+0x44a/0x4d0
[  578.102280][T13181]  ? __fdget_pos+0x2a3/0x330
[  578.106883][T13181]  ? ksys_read+0x75/0x250
[  578.111239][T13181]  ksys_read+0x147/0x250
[  578.115583][T13181]  ? vfs_write+0x940/0x940
[  578.120278][T13181]  ? lockdep_hardirqs_on+0x98/0x150
[  578.125499][T13181]  do_syscall_64+0x55/0xb0
[  578.129934][T13181]  ? clear_bhb_loop+0x40/0x90
[  578.134726][T13181]  ? clear_bhb_loop+0x40/0x90
[  578.139462][T13181]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  578.145403][T13181] RIP: 0033:0x7f1dfbb8d5fc
[  578.150041][T13181] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  578.170020][T13181] RSP: 002b:00007f1dfc99d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  578.178631][T13181] RAX: ffffffffffffffda RBX: 00007f1dfbdb5fa0 RCX: 00007f1dfbb8d5fc
[  578.186799][T13181] RDX: 000000000000000f RSI: 00007f1dfc99d0a0 RDI: 0000000000000006
[  578.194953][T13181] RBP: 00007f1dfc99d090 R08: 0000000000000000 R09: 0000000000000000
[  578.202930][T13181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  578.210929][T13181] R13: 00007f1dfbdb6038 R14: 00007f1dfbdb5fa0 R15: 00007fffbda8c938
[  578.218925][T13181]  </TASK>
[  578.658389][T13085] Bluetooth: hci2: command tx timeout
[  579.427684][ T2983] 
[  579.430097][ T2983] ======================================================
[  579.437190][ T2983] WARNING: possible circular locking dependency detected
[  579.444210][ T2983] 6.6.102-syzkaller #0 Not tainted
[  579.449353][ T2983] ------------------------------------------------------
[  579.456484][ T2983] kworker/u4:8/2983 is trying to acquire lock:
[  579.462759][ T2983] ffff88805f62cd00 (team->team_lock_key#4){+.+.}-{3:3}, at: team_del_slave+0x32/0x1c0
[  579.472463][ T2983] 
[  579.472463][ T2983] but task is already holding lock:
[  579.479945][ T2983] ffff88801ef80768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: ieee80211_remove_interfaces+0x292/0x680
[  579.490360][ T2983] 
[  579.490360][ T2983] which lock already depends on the new lock.
[  579.490360][ T2983] 
[  579.500773][ T2983] 
[  579.500773][ T2983] the existing dependency chain (in reverse order) is:
[  579.509849][ T2983] 
[  579.509849][ T2983] -> #1 (&rdev->wiphy.mtx){+.+.}-{3:3}:
[  579.517566][ T2983]        __mutex_lock+0x129/0xcc0
[  579.522602][ T2983]        ieee80211_open+0x144/0x200
[  579.527866][ T2983]        __dev_open+0x2bc/0x430
[  579.532853][ T2983]        dev_open+0xab/0x170
[  579.537589][ T2983]        team_add_slave+0xae7/0x2660
[  579.542922][ T2983]        do_setlink+0xe14/0x3fb0
[  579.547907][ T2983]        rtnl_newlink+0x175b/0x2020
[  579.553321][ T2983]        rtnetlink_rcv_msg+0x7c7/0xf10
[  579.558823][ T2983]        netlink_rcv_skb+0x216/0x480
[  579.564330][ T2983]        netlink_unicast+0x751/0x8d0
[  579.569653][ T2983]        netlink_sendmsg+0x8c1/0xbe0
[  579.575063][ T2983]        ____sys_sendmsg+0x5bf/0x950
[  579.580392][ T2983]        ___sys_sendmsg+0x220/0x290
[  579.585645][ T2983]        __se_sys_sendmsg+0x1a5/0x270
[  579.591145][ T2983]        do_syscall_64+0x55/0xb0
[  579.596122][ T2983]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  579.602573][ T2983] 
[  579.602573][ T2983] -> #0 (team->team_lock_key#4){+.+.}-{3:3}:
[  579.610919][ T2983]        __lock_acquire+0x2ddb/0x7c80
[  579.616311][ T2983]        lock_acquire+0x197/0x410
[  579.621435][ T2983]        __mutex_lock+0x129/0xcc0
[  579.626503][ T2983]        team_del_slave+0x32/0x1c0
[  579.631645][ T2983]        team_device_event+0x28d/0xa20
[  579.637146][ T2983]        notifier_call_chain+0x197/0x390
[  579.642827][ T2983]        unregister_netdevice_many_notify+0xf36/0x1810
[  579.649731][ T2983]        unregister_netdevice_queue+0x324/0x360
[  579.656016][ T2983]        _cfg80211_unregister_wdev+0x16b/0x580
[  579.662228][ T2983]        ieee80211_remove_interfaces+0x496/0x680
[  579.668603][ T2983]        ieee80211_unregister_hw+0x5d/0x2a0
[  579.674535][ T2983]        mac80211_hwsim_del_radio+0x274/0x450
[  579.680723][ T2983]        hwsim_exit_net+0x585/0x640
[  579.685960][ T2983]        cleanup_net+0x6f4/0xb90
[  579.690939][ T2983]        process_scheduled_works+0xa45/0x15b0
[  579.697133][ T2983]        worker_thread+0xa55/0xfc0
[  579.702330][ T2983]        kthread+0x2fa/0x390
[  579.706924][ T2983]        ret_from_fork+0x48/0x80
[  579.711867][ T2983]        ret_from_fork_asm+0x11/0x20
[  579.717775][ T2983] 
[  579.717775][ T2983] other info that might help us debug this:
[  579.717775][ T2983] 
[  579.728174][ T2983]  Possible unsafe locking scenario:
[  579.728174][ T2983] 
[  579.735707][ T2983]        CPU0                    CPU1
[  579.741069][ T2983]        ----                    ----
[  579.746427][ T2983]   lock(&rdev->wiphy.mtx);
[  579.750935][ T2983]                                lock(team->team_lock_key#4);
[  579.758572][ T2983]                                lock(&rdev->wiphy.mtx);
[  579.765602][ T2983]   lock(team->team_lock_key#4);
[  579.770551][ T2983] 
[  579.770551][ T2983]  *** DEADLOCK ***
[  579.770551][ T2983] 
[  579.778692][ T2983] 5 locks held by kworker/u4:8/2983:
[  579.783971][ T2983]  #0: ffff888017873938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  579.795029][ T2983]  #1: ffffc9000bd17d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  579.805561][ T2983]  #2: ffffffff8dfaec50 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x136/0xb90
[  579.814971][ T2983]  #3: ffffffff8dfbba48 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_unregister_hw+0x55/0x2a0
[  579.824818][ T2983]  #4: ffff88801ef80768 (&rdev->wiphy.mtx){+.+.}-{3:3}, at: ieee80211_remove_interfaces+0x292/0x680
[  579.835791][ T2983] 
[  579.835791][ T2983] stack backtrace:
[  579.841762][ T2983] CPU: 1 PID: 2983 Comm: kworker/u4:8 Not tainted 6.6.102-syzkaller #0
[  579.850005][ T2983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  579.860066][ T2983] Workqueue: netns cleanup_net
[  579.864876][ T2983] Call Trace:
[  579.868158][ T2983]  <TASK>
[  579.871096][ T2983]  dump_stack_lvl+0x16c/0x230
[  579.876228][ T2983]  ? load_image+0x3b0/0x3b0
[  579.880747][ T2983]  ? show_regs_print_info+0x20/0x20
[  579.886045][ T2983]  ? print_circular_bug+0x12b/0x1a0
[  579.891278][ T2983]  check_noncircular+0x2bd/0x3c0
[  579.896231][ T2983]  ? print_deadlock_bug+0x5d0/0x5d0
[  579.901432][ T2983]  ? lockdep_lock+0xe0/0x220
[  579.906027][ T2983]  ? __lock_acquire+0x1334/0x7c80
[  579.911068][ T2983]  ? _find_first_zero_bit+0xd3/0x100
[  579.916363][ T2983]  __lock_acquire+0x2ddb/0x7c80
[  579.921239][ T2983]  ? verify_lock_unused+0x140/0x140
[  579.926447][ T2983]  ? verify_lock_unused+0x140/0x140
[  579.931743][ T2983]  lock_acquire+0x197/0x410
[  579.936254][ T2983]  ? team_del_slave+0x32/0x1c0
[  579.941026][ T2983]  ? __might_sleep+0xe0/0xe0
[  579.945621][ T2983]  ? read_lock_is_recursive+0x20/0x20
[  579.951004][ T2983]  __mutex_lock+0x129/0xcc0
[  579.955516][ T2983]  ? team_del_slave+0x32/0x1c0
[  579.960279][ T2983]  ? __lock_acquire+0x7c80/0x7c80
[  579.965318][ T2983]  ? rcu_is_watching+0x15/0xb0
[  579.970093][ T2983]  ? trace_contention_end+0x39/0xe0
[  579.975388][ T2983]  ? __mutex_lock+0x304/0xcc0
[  579.980069][ T2983]  ? team_del_slave+0x32/0x1c0
[  579.984944][ T2983]  ? mutex_lock_nested+0x20/0x20
[  579.989934][ T2983]  ? bond_netdev_event+0xe1/0xef0
[  579.995175][ T2983]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  580.000854][ T2983]  ? bond_ipsec_offload_ok+0x410/0x410
[  580.006337][ T2983]  team_del_slave+0x32/0x1c0
[  580.011111][ T2983]  team_device_event+0x28d/0xa20
[  580.016061][ T2983]  notifier_call_chain+0x197/0x390
[  580.021183][ T2983]  unregister_netdevice_many_notify+0xf36/0x1810
[  580.027538][ T2983]  ? trace_event_raw_event_lock+0x230/0x230
[  580.033545][ T2983]  ? unregister_netdevice_many+0x20/0x20
[  580.039190][ T2983]  ? kernfs_remove_by_name_ns+0x117/0x150
[  580.044930][ T2983]  ? __lock_acquire+0x7c80/0x7c80
[  580.050136][ T2983]  unregister_netdevice_queue+0x324/0x360
[  580.055863][ T2983]  ? list_netdevice+0x730/0x730
[  580.060724][ T2983]  ? kernfs_remove_by_name_ns+0x117/0x150
[  580.066648][ T2983]  _cfg80211_unregister_wdev+0x16b/0x580
[  580.072347][ T2983]  ieee80211_remove_interfaces+0x496/0x680
[  580.078162][ T2983]  ? ieee80211_do_stop+0x1db0/0x1db0
[  580.083464][ T2983]  ? rcu_is_watching+0x15/0xb0
[  580.088294][ T2983]  ieee80211_unregister_hw+0x5d/0x2a0
[  580.093674][ T2983]  mac80211_hwsim_del_radio+0x274/0x450
[  580.099317][ T2983]  ? rhashtable_remove_fast+0xbf0/0xbf0
[  580.104866][ T2983]  hwsim_exit_net+0x585/0x640
[  580.109550][ T2983]  ? hwsim_init_net+0x90/0x90
[  580.114301][ T2983]  ? __ip_vs_dev_cleanup_batch+0x238/0x250
[  580.120123][ T2983]  cleanup_net+0x6f4/0xb90
[  580.124573][ T2983]  ? ops_free_list+0x3b0/0x3b0
[  580.129522][ T2983]  ? _raw_spin_unlock_irq+0x23/0x50
[  580.134816][ T2983]  ? process_scheduled_works+0x957/0x15b0
[  580.140577][ T2983]  ? process_scheduled_works+0x957/0x15b0
[  580.146319][ T2983]  process_scheduled_works+0xa45/0x15b0
[  580.152060][ T2983]  ? assign_work+0x400/0x400
[  580.156659][ T2983]  ? assign_work+0x39e/0x400
[  580.161347][ T2983]  worker_thread+0xa55/0xfc0
[  580.166069][ T2983]  kthread+0x2fa/0x390
[  580.170140][ T2983]  ? pr_cont_work+0x560/0x560
[  580.174826][ T2983]  ? kthread_blkcg+0xd0/0xd0
[  580.179441][ T2983]  ret_from_fork+0x48/0x80
[  580.183971][ T2983]  ? kthread_blkcg+0xd0/0xd0
[  580.188658][ T2983]  ret_from_fork_asm+0x11/0x20
[  580.193449][ T2983]  </TASK>
[  580.254214][ T2983] team0: Port device .3#c„± removed
[  580.293967][T13198] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2368'.
[  580.303891][T13207] netlink: 'syz.2.2370': attribute type 21 has an invalid length.
[  580.486882][ T2983] bridge_slave_1: left allmulticast mode
[  580.498680][ T2983] bridge_slave_1: left promiscuous mode
[  580.504725][ T2983] bridge0: port 2(bridge_slave_1) entered disabled state
[  580.514585][ T2983] bridge_slave_0: left promiscuous mode
[  580.520971][ T2983] bridge0: port 1(bridge_slave_0) entered disabled state
[  580.531896][ T2983] veth1_macvtap: left allmulticast mode
[  580.537747][ T2983] veth1_macvtap: left promiscuous mode
[  580.543818][ T2983] veth0_macvtap: left promiscuous mode
[  580.551980][ T2983] veth1_vlan: left allmulticast mode
[  580.557554][ T2983] veth1_vlan: left promiscuous mode
[  580.654890][ T2983] team0 (unregistering): Port device geneve0 removed
[  580.738586][T13085] Bluetooth: hci2: command tx timeout
[  580.757863][ T2983] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  580.857488][ T2983] team0 (unregistering): Port device hsr_slave_0 removed
[  580.895835][ T2983] team0 (unregistering): Port device team_slave_1 removed
[  580.919197][ T2983] team0 (unregistering): Port device C removed
[  580.944634][ T2983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  580.968002][ T2983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  581.023209][ T2983] team0 (unregistering): Port device dummy0 removed
[  581.135630][ T2983] bond0 (unregistering): Released all slaves
[  581.267019][T13082] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  581.276402][T13082] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  581.298164][T13082] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  581.317864][T13082] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  581.437305][T13082] 8021q: adding VLAN 0 to HW filter on device bond0
[  581.457468][T13082] 8021q: adding VLAN 0 to HW filter on device team0
[  581.472393][  T336] bridge0: port 1(bridge_slave_0) entered blocking state
[  581.479601][  T336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  581.498005][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  581.505246][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  581.695375][T13082] 8021q: adding VLAN 0 to HW filter on device batadv0
[  581.744708][T13082] veth0_vlan: entered promiscuous mode
[  581.758998][T13082] veth1_vlan: entered promiscuous mode
[  581.799955][T13082] veth0_macvtap: entered promiscuous mode
[  581.811174][T13082] veth1_macvtap: entered promiscuous mode
[  581.834794][T13082] batman_adv: batadv0: Interface activated: batadv_slave_0
[  581.850096][T13082] batman_adv: batadv0: Interface activated: batadv_slave_1
[  581.861896][T13082] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  581.871287][T13082] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  581.882292][T13082] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  581.892254][T13082] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  581.930885][T13082] ieee80211 phy22: Selected rate control algorithm 'minstrel_ht'
[  581.959784][ T6608] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  581.967665][ T6608] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  581.977468][T13082] ieee80211 phy23: Selected rate control algorithm 'minstrel_ht'
[  582.022976][ T6608] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  582.034675][ T6608] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50