last executing test programs: 925.766472ms ago: executing program 4 (id=21991): perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.self_freezing\x00', 0x26e1, 0x0) ioctl$SIOCSIFHWADDR(r0, 0xc0045878, 0x0) 883.129513ms ago: executing program 2 (id=21994): perf_event_open(&(0x7f0000000d00)={0x2, 0x80, 0x6d, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbd0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0xf, 0x3, 0x2) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)="0209000202000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0) 841.707223ms ago: executing program 3 (id=21996): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x2}) ioctl$TUNSETCARRIER(r0, 0x400454e2, 0x0) 820.419444ms ago: executing program 1 (id=21997): socket$kcm(0x2, 0xa, 0x73) socket$kcm(0x2, 0xa, 0x2) close(0x3) 778.971174ms ago: executing program 4 (id=21998): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'dvmrp0\x00', 0x2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x1, 0xfffff038}, {0x6, 0x4}]}) 777.166564ms ago: executing program 0 (id=21999): perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4080, 0x7fd, 0x7ffe, 0x0, 0x0, 0x7, 0xffff, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 759.582335ms ago: executing program 2 (id=22000): r0 = socket$kcm(0xa, 0x2, 0x73) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb1850, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0xa, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xffac, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0xffa0}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x18, 0x29, 0x36}}, @ip_tos_u8={{0x38, 0x29, 0x3b}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x50}, 0x0) 635.213807ms ago: executing program 3 (id=22001): perf_event_open(&(0x7f0000000680)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x48400, 0x0, 0x0, 0x0, 0x0, 0x0) close(0x3) 632.839128ms ago: executing program 1 (id=22011): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x2}) ioctl$TUNSETCARRIER(r0, 0x400454e2, 0x0) 627.607128ms ago: executing program 2 (id=22012): perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02002200356bd25a806f8c6394f91124fc60040011000a7403004700000037153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 551.171009ms ago: executing program 4 (id=22002): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="06000000040000001810000089"], 0x48) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d2d, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4000, 0x578}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=""/103, &(0x7f0000000600), &(0x7f0000001b40), 0x80, r0, 0x0, 0x7}, 0x38) 534.631349ms ago: executing program 0 (id=22003): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x60, 0x0, 0x0, 0xa00}, {}, {0x2}, {0x6}]}) 468.949541ms ago: executing program 1 (id=22004): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f00000003c0)='cpuacct.stat\x00', 0x275a, 0x0) 447.535461ms ago: executing program 3 (id=22005): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10) 363.478733ms ago: executing program 0 (id=22006): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r0, 0x1, 0x2c, &(0x7f0000000100), 0x4) setsockopt$sock_attach_bpf(r0, 0x1, 0x1b, &(0x7f0000000800), 0x4) 363.328143ms ago: executing program 3 (id=22007): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 363.257713ms ago: executing program 2 (id=22008): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x318, 0x0, 0xdb0, 0xf5ffffff}, 0x0) sendmsg$tipc(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000140)="069621e0a770c2a26f8a3ab5cae26cbd17a6206a017570216b4b28c62348fda9776966cb2684597684fb1441dcb94143a871946e9c58dae45ee075e6e46713d51f8944c6097c43eb1d8e0d5dd07387ddd7ea6cf6ef2d1d2ff78ca5368128b325665a1e7db626453182c857ad589daac286d8f0a95e", 0x75}, {&(0x7f0000000640)="803c76e4b4a9215c8a24a4883331944e44afaa8c16085f2359d1fecf149b195875b04f981c58430ea223efdbf75e04993e3768d0a5bd6d4355e4af400111e6c0ab5070bfd4322221f08be882161cb8418e61deb2dc872a8b2c93eced10254577b8a95950807b67e305fd52353f349e1b81d18983ae7348ca0354dd1d4f94822bb1adfadb87d7584e049944ab957a3ded92d89c7592d380", 0x97}], 0x2}, 0x20044800) 362.904993ms ago: executing program 4 (id=22009): perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0xd18c9b60, &(0x7f0000000080)=[{&(0x7f0000000100)="e03f03002a000b05d25a806c8c6f94f90524fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0) 252.130605ms ago: executing program 2 (id=22010): perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffa}, [@call={0x85, 0x0, 0x0, 0x2c}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1400, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50) 252.031245ms ago: executing program 3 (id=22013): perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x80, 0x800, 0x0, 0x0, 0x0, 0x7, 0xffff, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000900)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000004080)=@base={0x8, 0x4, 0x4, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 246.856805ms ago: executing program 0 (id=22022): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x60ae0}], 0x318, 0x0, 0xdb0, 0xf5ffffff}, 0x0) sendmsg$tipc(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000140)="069621e0a770c2a26f8a3ab5cae26cbd17a6206a017570216b4b28c62348fda9776966cb2684597684fb1441dcb94143a871946e9c58dae45ee075e6e46713d51f8944c6097c43eb1d8e0d5dd07387ddd7ea6cf6ef2d1d2ff78ca5368128b325665a1e7db626453182c857ad589daac286d8f0a95e", 0x75}, {&(0x7f0000000640)="803c76e4b4a9215c8a24a4883331944e44afaa8c16085f2359d1fecf149b195875b04f981c58430ea223efdbf75e04993e3768d0a5bd6d4355e4af400111e6c0ab5070bfd4322221f08be882161cb8418e61deb2dc872a8b2c93eced10254577b8a95950807b67e305fd52353f349e1b81d18983ae7348ca0354dd1d4f94822bb1adfadb87d7584e049944ab957a3ded92d89c7592d380", 0x97}], 0x2}, 0x20044800) 246.375735ms ago: executing program 1 (id=22014): perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80720, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000080)={'batadv0\x00'}) 155.777687ms ago: executing program 4 (id=22015): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r0, 0x1, 0xa, &(0x7f0000000180), 0x4) recvmsg$unix(r0, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x141) 140.587077ms ago: executing program 1 (id=22016): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000050000000400000002"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000002500)={{r1}, &(0x7f0000002480), &(0x7f00000024c0)=r0, 0x2}, 0x20) 113.676987ms ago: executing program 0 (id=22017): r0 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590200000600002fb96dbcf706e10500000086ddffff1144ee162bd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e570000003c21880b000000000000721a5dbb56a3d9e16e7c2179c9b5b24722944820e624fc5b17d0822ca4232c98a9936ba722475ca5", 0x72}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000001400)="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", 0x837}], 0x3}, 0x0) 60.972179ms ago: executing program 1 (id=22018): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f00000001c0)=[{0x25, 0x0, 0x2, 0x80ffffff}, {0x5, 0x0, 0x0, 0xfffffffc}, {}, {0x6}]}) 45.049139ms ago: executing program 3 (id=22019): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0xff, 0x7}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740), &(0x7f0000000840), 0x75, r0}, 0x38) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000080)={r0, &(0x7f0000000340), &(0x7f0000000940)=""/4096}, 0x20) 44.158849ms ago: executing program 2 (id=22020): perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x62, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x10) 31.226849ms ago: executing program 4 (id=22021): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'virt_wifi0\x00', 0x1011}) r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb98}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600) 0s ago: executing program 0 (id=22023): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f00000003c0)='cpuacct.stat\x00', 0x275a, 0x0) kernel console output (not intermixed with test programs): rocess `syz.3.16607'. [ 734.718615][ T6048] netlink: 'syz.4.16597': attribute type 16 has an invalid length. [ 734.836105][ T6054] netlink: 'syz.1.16604': attribute type 1 has an invalid length. [ 734.894928][ T6058] netlink: 'syz.0.16606': attribute type 16 has an invalid length. [ 734.911266][ T6054] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.16604'. [ 735.047448][ T6061] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 735.286267][ T6073] netlink: 'syz.4.16615': attribute type 3 has an invalid length. [ 735.787292][ T6098] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 738.734350][ T6252] validate_nla: 4 callbacks suppressed [ 738.734369][ T6252] netlink: 'syz.3.16701': attribute type 5 has an invalid length. [ 739.051135][ T6271] netlink: 'syz.4.16709': attribute type 41 has an invalid length. [ 739.147909][ T6271] __nla_validate_parse: 8 callbacks suppressed [ 739.147925][ T6271] netlink: 40 bytes leftover after parsing attributes in process `syz.4.16709'. [ 739.151852][ T6276] netlink: 'syz.3.16712': attribute type 9 has an invalid length. [ 739.173053][ T6271] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 739.260570][ T6276] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.16712'. [ 739.286595][T28724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 739.987628][ T6320] netlink: 'syz.2.16733': attribute type 41 has an invalid length. [ 740.037374][ T6320] netlink: 40 bytes leftover after parsing attributes in process `syz.2.16733'. [ 740.090387][ T6326] netlink: 'syz.4.16738': attribute type 9 has an invalid length. [ 740.105066][ T6320] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 740.131332][ T6326] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.16738'. [ 740.152826][T28712] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 740.819391][ T6362] netlink: 'syz.2.16754': attribute type 21 has an invalid length. [ 740.848435][ T6362] netlink: 132 bytes leftover after parsing attributes in process `syz.2.16754'. [ 741.352521][ T6393] netlink: 'syz.2.16768': attribute type 7 has an invalid length. [ 741.425785][ T6399] netlink: 1038 bytes leftover after parsing attributes in process `syz.3.16776'. [ 741.673686][ T6414] netlink: 'syz.0.16783': attribute type 3 has an invalid length. [ 741.727246][ T6414] netlink: 'syz.0.16783': attribute type 1 has an invalid length. [ 741.749398][ T6420] netlink: 'syz.2.16785': attribute type 21 has an invalid length. [ 741.757550][ T6414] netlink: 152 bytes leftover after parsing attributes in process `syz.0.16783'. [ 741.814795][ T6420] netlink: 132 bytes leftover after parsing attributes in process `syz.2.16785'. [ 741.964517][ T6428] netlink: 60 bytes leftover after parsing attributes in process `syz.0.16790'. [ 742.245852][ T6445] netlink: 132 bytes leftover after parsing attributes in process `syz.1.16798'. [ 744.363332][ T6559] __nla_validate_parse: 5 callbacks suppressed [ 744.363351][ T6559] netlink: 60 bytes leftover after parsing attributes in process `syz.3.16854'. [ 744.981291][ T6599] validate_nla: 4 callbacks suppressed [ 744.981312][ T6599] netlink: 'syz.0.16873': attribute type 21 has an invalid length. [ 745.086833][ T6607] netlink: 'syz.2.16876': attribute type 3 has an invalid length. [ 745.088153][ T6606] netlink: 'syz.4.16877': attribute type 6 has an invalid length. [ 745.147996][ T6607] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.16876'. [ 745.223854][ T6613] netlink: 188 bytes leftover after parsing attributes in process `syz.0.16879'. [ 745.288426][ T6616] netlink: 'syz.4.16881': attribute type 2 has an invalid length. [ 745.342396][ T6616] netlink: 'syz.4.16881': attribute type 1 has an invalid length. [ 745.371181][ T6616] netlink: 132 bytes leftover after parsing attributes in process `syz.4.16881'. [ 746.103420][ T6666] netlink: 156 bytes leftover after parsing attributes in process `syz.0.16905'. [ 746.124449][ T6665] netlink: 'syz.1.16906': attribute type 2 has an invalid length. [ 746.175473][ T6667] netlink: 132 bytes leftover after parsing attributes in process `syz.3.16903'. [ 746.484930][ T6688] netlink: 'syz.3.16915': attribute type 4 has an invalid length. [ 746.948910][ T6715] netlink: 40 bytes leftover after parsing attributes in process `syz.1.16930'. [ 747.331226][ T6734] netlink: 'syz.0.16938': attribute type 21 has an invalid length. [ 747.339823][ T1428] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.346250][ T1428] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.401086][ T6734] netlink: 'syz.0.16938': attribute type 20 has an invalid length. [ 747.540747][ T6747] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 748.117145][ T6780] netlink: 'syz.1.16970': attribute type 16 has an invalid length. [ 748.141119][ T6780] netlink: 132 bytes leftover after parsing attributes in process `syz.1.16970'. [ 748.231276][ T6786] netlink: 144 bytes leftover after parsing attributes in process `syz.3.16962'. [ 748.409630][ T6796] netlink: 156 bytes leftover after parsing attributes in process `syz.2.16966'. [ 748.739937][ T6813] delete_channel: no stack [ 749.478521][ T6860] __nla_validate_parse: 2 callbacks suppressed [ 749.478539][ T6860] netlink: 152 bytes leftover after parsing attributes in process `syz.0.16999'. [ 750.007527][ T6882] validate_nla: 5 callbacks suppressed [ 750.007551][ T6882] netlink: 'syz.3.17008': attribute type 21 has an invalid length. [ 750.050641][ T6882] netlink: 'syz.3.17008': attribute type 20 has an invalid length. [ 750.127339][ T6886] netlink: 144 bytes leftover after parsing attributes in process `syz.0.17013'. [ 750.239661][ T6894] netlink: 156 bytes leftover after parsing attributes in process `syz.0.17016'. [ 750.257548][ T6893] netlink: 'syz.3.17015': attribute type 16 has an invalid length. [ 750.357493][ T6893] netlink: 'syz.3.17015': attribute type 3 has an invalid length. [ 750.478257][ T6893] netlink: 132 bytes leftover after parsing attributes in process `syz.3.17015'. [ 751.284911][ T6949] netlink: 'syz.2.17042': attribute type 4 has an invalid length. [ 751.331169][ T6951] netlink: 132 bytes leftover after parsing attributes in process `syz.4.17046'. [ 751.566449][ T6966] netlink: 'syz.2.17054': attribute type 2 has an invalid length. [ 751.748892][ T6974] netlink: 156 bytes leftover after parsing attributes in process `syz.1.17056'. [ 752.233773][ T7009] netlink: 'syz.0.17074': attribute type 6 has an invalid length. [ 752.251389][ T7012] netlink: 'syz.2.17075': attribute type 21 has an invalid length. [ 752.356222][ T7017] netlink: 'syz.0.17077': attribute type 3 has an invalid length. [ 752.404646][ T7017] netlink: 105116 bytes leftover after parsing attributes in process `syz.0.17077'. [ 752.613195][ T7035] netlink: 188 bytes leftover after parsing attributes in process `syz.3.17085'. [ 752.776332][ T7047] netlink: 60 bytes leftover after parsing attributes in process `syz.4.17093'. [ 753.431174][ T7092] netlink: 132 bytes leftover after parsing attributes in process `syz.2.17111'. [ 753.789881][ T7119] netlink: 'syz.1.17129': attribute type 1 has an invalid length. [ 754.826724][ T7194] __nla_validate_parse: 3 callbacks suppressed [ 754.826743][ T7194] netlink: 60 bytes leftover after parsing attributes in process `syz.2.17166'. [ 754.995245][ T7212] netlink: 132 bytes leftover after parsing attributes in process `syz.0.17172'. [ 755.105464][ T7218] validate_nla: 5 callbacks suppressed [ 755.105483][ T7218] netlink: 'syz.4.17177': attribute type 21 has an invalid length. [ 755.155344][ T7218] netlink: 132 bytes leftover after parsing attributes in process `syz.4.17177'. [ 755.364354][ T7240] netlink: 'syz.2.17187': attribute type 3 has an invalid length. [ 755.397813][ T7240] netlink: 'syz.2.17187': attribute type 1 has an invalid length. [ 755.431291][ T7240] netlink: 152 bytes leftover after parsing attributes in process `syz.2.17187'. [ 755.575182][ T7250] netlink: 'syz.4.17191': attribute type 7 has an invalid length. [ 755.608001][ T7252] netlink: 1038 bytes leftover after parsing attributes in process `syz.2.17194'. [ 755.694294][ T7256] netlink: 'syz.1.17208': attribute type 7 has an invalid length. [ 755.839865][ T7268] netlink: 'syz.0.17197': attribute type 21 has an invalid length. [ 755.868318][ T7268] netlink: 132 bytes leftover after parsing attributes in process `syz.0.17197'. [ 755.919272][ T7276] device batadv0 entered promiscuous mode [ 756.019533][ T7282] netlink: 'syz.1.17209': attribute type 3 has an invalid length. [ 756.042162][ T7284] netlink: 1038 bytes leftover after parsing attributes in process `syz.0.17210'. [ 756.061116][ T7282] netlink: 'syz.1.17209': attribute type 1 has an invalid length. [ 756.091167][ T7282] netlink: 152 bytes leftover after parsing attributes in process `syz.1.17209'. [ 756.225962][ T7292] netlink: 'syz.0.17215': attribute type 7 has an invalid length. [ 756.373459][ T7305] netlink: 180 bytes leftover after parsing attributes in process `syz.1.17222'. [ 756.441625][ T7308] netlink: 'syz.0.17233': attribute type 2 has an invalid length. [ 756.449661][ T7308] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.17233'. [ 756.649342][ T7323] bridge0: port 3(batadv0) entered disabled state [ 759.433354][ T7481] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 760.343921][ T7533] validate_nla: 11 callbacks suppressed [ 760.343938][ T7533] netlink: 'syz.4.17329': attribute type 27 has an invalid length. [ 760.371748][ T7533] __nla_validate_parse: 11 callbacks suppressed [ 760.371765][ T7533] netlink: 164 bytes leftover after parsing attributes in process `syz.4.17329'. [ 760.590200][ T7549] netlink: 'syz.1.17338': attribute type 5 has an invalid length. [ 760.649296][ T7549] netlink: 44 bytes leftover after parsing attributes in process `syz.1.17338'. [ 760.677510][ T7551] netlink: 202920 bytes leftover after parsing attributes in process `syz.3.17339'. [ 760.825573][ T7561] netlink: 'syz.1.17342': attribute type 7 has an invalid length. [ 760.851356][ T7560] netlink: 'syz.3.17356': attribute type 22 has an invalid length. [ 760.859708][ T7560] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17356'. [ 760.968721][ T7569] netlink: 'syz.0.17348': attribute type 7 has an invalid length. [ 760.997696][ T7569] netlink: 140 bytes leftover after parsing attributes in process `syz.0.17348'. [ 761.555588][ T7609] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.17368'. [ 761.706515][ T7620] netlink: 10 bytes leftover after parsing attributes in process `syz.4.17370'. [ 761.776249][ T7623] netlink: 'syz.2.17374': attribute type 23 has an invalid length. [ 761.849355][ T7629] netlink: 'syz.0.17378': attribute type 17 has an invalid length. [ 761.882612][ T7629] netlink: 'syz.0.17378': attribute type 16 has an invalid length. [ 761.910221][ T7629] netlink: 152 bytes leftover after parsing attributes in process `syz.0.17378'. [ 761.973580][ T7635] netlink: 'syz.2.17380': attribute type 3 has an invalid length. [ 762.010547][ T7636] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.17394'. [ 762.042463][ T7635] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.17380'. [ 762.174108][ T7643] netlink: 'syz.1.17386': attribute type 1 has an invalid length. [ 762.369847][ T7656] bridge0: port 3(batadv0) entered disabled state [ 762.394909][ T7656] device bridge_slave_1 left promiscuous mode [ 762.421462][ T7656] bridge0: port 2(bridge_slave_1) entered disabled state [ 762.443340][ T7656] device bridge_slave_0 left promiscuous mode [ 762.461445][ T7656] bridge0: port 1(bridge_slave_0) entered disabled state [ 763.626158][ T7713] openvswitch: netlink: Key type 4112 is out of range max 29 [ 763.716306][ T7717] IPv6: NLM_F_CREATE should be specified when creating new route [ 765.705709][ T7824] validate_nla: 5 callbacks suppressed [ 765.705731][ T7824] netlink: 'syz.1.17476': attribute type 2 has an invalid length. [ 765.796899][ T7824] netlink: 'syz.1.17476': attribute type 1 has an invalid length. [ 765.827694][ T7824] __nla_validate_parse: 10 callbacks suppressed [ 765.827710][ T7824] netlink: 132 bytes leftover after parsing attributes in process `syz.1.17476'. [ 766.020504][ T7841] netlink: 105120 bytes leftover after parsing attributes in process `syz.2.17484'. [ 766.064767][ T7844] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.17485'. [ 766.088978][ T7846] netlink: 'syz.0.17487': attribute type 21 has an invalid length. [ 766.114525][ T7846] netlink: 'syz.0.17487': attribute type 1 has an invalid length. [ 766.117580][ T7844] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 766.201113][ T7844] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 766.291149][ T7854] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.17490'. [ 766.449363][ T7867] netlink: 132 bytes leftover after parsing attributes in process `syz.0.17508'. [ 766.502572][ T7869] netlink: 'syz.2.17496': attribute type 21 has an invalid length. [ 766.537702][ T7873] netlink: 'syz.4.17499': attribute type 2 has an invalid length. [ 766.764765][ T7887] netlink: 'syz.3.17507': attribute type 10 has an invalid length. [ 766.798803][ T7887] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.17507'. [ 767.140020][ T7909] netlink: 'syz.0.17521': attribute type 21 has an invalid length. [ 767.166918][ T7911] netlink: 209820 bytes leftover after parsing attributes in process `syz.2.17517'. [ 767.216059][ T7909] netlink: 128 bytes leftover after parsing attributes in process `syz.0.17521'. [ 767.240518][ T7913] netlink: 'syz.1.17520': attribute type 2 has an invalid length. [ 767.301307][ T7913] netlink: 'syz.1.17520': attribute type 8 has an invalid length. [ 767.340948][ T7913] netlink: 132 bytes leftover after parsing attributes in process `syz.1.17520'. [ 767.995767][ T7938] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 768.069578][ T7944] netlink: 144 bytes leftover after parsing attributes in process `syz.2.17533'. [ 768.937697][ T7996] IPv6: Can't replace route, no match found [ 771.510588][ T8136] delete_channel: no stack [ 771.813586][ T8153] __nla_validate_parse: 10 callbacks suppressed [ 771.813605][ T8153] netlink: 44 bytes leftover after parsing attributes in process `syz.2.17638'. [ 772.016587][ T8161] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.17641'. [ 772.443731][ T8171] validate_nla: 12 callbacks suppressed [ 772.443754][ T8171] netlink: 'syz.3.17648': attribute type 10 has an invalid length. [ 773.016952][ T8206] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.17663'. [ 773.653825][ T8238] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17681'. [ 774.083086][ T8255] netlink: 'syz.0.17691': attribute type 12 has an invalid length. [ 774.111096][ T8255] netlink: 132 bytes leftover after parsing attributes in process `syz.0.17691'. [ 774.326089][ T8272] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17699'. [ 774.381343][ T8277] netlink: 763 bytes leftover after parsing attributes in process `syz.4.17702'. [ 774.638671][ T8291] netlink: 'syz.2.17707': attribute type 12 has an invalid length. [ 774.685034][ T8291] netlink: 132 bytes leftover after parsing attributes in process `syz.2.17707'. [ 775.057249][ T8311] netlink: 144 bytes leftover after parsing attributes in process `syz.1.17716'. [ 775.557302][ T8342] device bridge_slave_1 left promiscuous mode [ 775.601752][ T8342] bridge0: port 2(bridge_slave_1) entered disabled state [ 775.645952][ T8342] device bridge_slave_0 left promiscuous mode [ 775.669378][ T8342] bridge0: port 1(bridge_slave_0) entered disabled state [ 776.351658][ T8389] bridge0: port 3(batadv0) entered disabled state [ 776.364895][ T8389] device bridge_slave_1 left promiscuous mode [ 776.390148][ T8389] bridge0: port 2(bridge_slave_1) entered disabled state [ 776.435604][ T8389] device bridge_slave_0 left promiscuous mode [ 776.482675][ T8389] bridge0: port 1(bridge_slave_0) entered disabled state [ 777.107634][ T8429] netlink: 'syz.4.17771': attribute type 21 has an invalid length. [ 777.278207][ T8441] netlink: 188 bytes leftover after parsing attributes in process `syz.4.17774'. [ 777.774902][ T8473] netlink: 156 bytes leftover after parsing attributes in process `syz.3.17792'. [ 777.830831][ T8475] netlink: 'syz.0.17794': attribute type 2 has an invalid length. [ 777.963015][ T8485] netlink: 132 bytes leftover after parsing attributes in process `syz.0.17798'. [ 779.273408][ T8567] netlink: 144 bytes leftover after parsing attributes in process `syz.4.17837'. [ 779.321460][ T8571] netlink: 40 bytes leftover after parsing attributes in process `syz.3.17840'. [ 779.332819][ T8572] netlink: 156 bytes leftover after parsing attributes in process `syz.1.17839'. [ 779.357007][ T8573] netlink: 'syz.0.17838': attribute type 4 has an invalid length. [ 779.436850][ T8573] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.17838'. [ 779.460391][ T8576] delete_channel: no stack [ 779.556699][ T8581] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 780.017425][ T8607] netlink: 'syz.3.17857': attribute type 4 has an invalid length. [ 780.027625][ T8605] netlink: 144 bytes leftover after parsing attributes in process `syz.2.17853'. [ 780.036842][ T8608] delete_channel: no stack [ 780.059578][ T8607] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.17857'. [ 780.187380][ T8619] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 780.800451][ T8653] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 781.120849][ T8671] netlink: 'syz.3.17889': attribute type 21 has an invalid length. [ 781.181456][ T8671] netlink: 152 bytes leftover after parsing attributes in process `syz.3.17889'. [ 781.748888][ T8691] netlink: 'syz.1.17898': attribute type 5 has an invalid length. [ 782.504037][ T8731] netlink: 1 bytes leftover after parsing attributes in process `syz.1.17916'. [ 783.537155][ T8788] netlink: 144316 bytes leftover after parsing attributes in process `syz.0.17947'. [ 783.605117][ T8788] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17947'. [ 784.466208][ T8827] netlink: 1 bytes leftover after parsing attributes in process `syz.3.17967'. [ 785.144559][ T8853] netlink: 144316 bytes leftover after parsing attributes in process `syz.1.17979'. [ 785.240935][ T8853] netlink: 12 bytes leftover after parsing attributes in process `syz.1.17979'. [ 785.392840][ T8864] netlink: 'syz.2.17984': attribute type 21 has an invalid length. [ 785.443227][ T8864] netlink: 128 bytes leftover after parsing attributes in process `syz.2.17984'. [ 785.531129][ T8864] netlink: 'syz.2.17984': attribute type 5 has an invalid length. [ 785.641128][ T8864] netlink: 3 bytes leftover after parsing attributes in process `syz.2.17984'. [ 785.663326][ T8877] netlink: 184 bytes leftover after parsing attributes in process `syz.1.17991'. [ 786.055842][ T8893] netlink: 2 bytes leftover after parsing attributes in process `syz.2.17998'. [ 786.136869][ T8896] netlink: 'syz.3.18000': attribute type 21 has an invalid length. [ 786.756910][ T8924] netlink: 'syz.1.18013': attribute type 21 has an invalid length. [ 787.335143][ T8945] netlink: 'syz.4.18024': attribute type 21 has an invalid length. [ 787.543548][ T8956] __nla_validate_parse: 7 callbacks suppressed [ 787.543567][ T8956] netlink: 2 bytes leftover after parsing attributes in process `syz.3.18030'. [ 788.209666][ T8979] netlink: 'syz.2.18040': attribute type 21 has an invalid length. [ 788.359496][ T8986] netlink: 2 bytes leftover after parsing attributes in process `syz.4.18045'. [ 788.680205][ T8997] netlink: 68 bytes leftover after parsing attributes in process `syz.0.18050'. [ 789.265247][ T9017] netlink: 60 bytes leftover after parsing attributes in process `syz.0.18060'. [ 789.276787][ T9016] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.18059'. [ 789.517687][ T9030] netlink: 68 bytes leftover after parsing attributes in process `syz.1.18065'. [ 789.575861][ T9031] netlink: 1034 bytes leftover after parsing attributes in process `syz.3.18064'. [ 789.765802][ T9037] netlink: 'syz.0.18068': attribute type 3 has an invalid length. [ 789.840346][ T9037] netlink: 105116 bytes leftover after parsing attributes in process `syz.0.18068'. [ 789.953773][ T9048] netlink: 60 bytes leftover after parsing attributes in process `syz.1.18074'. [ 790.010252][ T9050] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.18075'. [ 790.123511][ T9053] netlink: 'syz.0.18076': attribute type 10 has an invalid length. [ 790.676574][ T9072] netlink: 'syz.1.18085': attribute type 9 has an invalid length. [ 790.823977][ T9076] netlink: 'syz.1.18087': attribute type 4 has an invalid length. [ 791.888209][ T9124] netlink: 'syz.1.18109': attribute type 10 has an invalid length. [ 792.339055][ T9138] netlink: 'syz.0.18129': attribute type 3 has an invalid length. [ 793.336092][ T9171] netlink: 'syz.3.18133': attribute type 3 has an invalid length. [ 793.381244][ T9171] __nla_validate_parse: 5 callbacks suppressed [ 793.381274][ T9171] netlink: 118424 bytes leftover after parsing attributes in process `syz.3.18133'. [ 793.710419][ T9180] netlink: 'syz.0.18137': attribute type 10 has an invalid length. [ 793.772044][ T9180] netlink: 55 bytes leftover after parsing attributes in process `syz.0.18137'. [ 794.557527][ T9199] netlink: 'syz.1.18147': attribute type 5 has an invalid length. [ 794.739802][ T9206] netlink: 'syz.4.18151': attribute type 3 has an invalid length. [ 794.781238][ T9206] netlink: 118424 bytes leftover after parsing attributes in process `syz.4.18151'. [ 795.225918][ T9225] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 795.303607][ T9225] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 795.373300][ T9225] batman_adv: batadv0: Removing interface: hsr_slave_1 [ 795.430347][ T9227] netlink: 'syz.4.18162': attribute type 5 has an invalid length. [ 795.900029][ T9252] netlink: 132 bytes leftover after parsing attributes in process `syz.1.18173'. [ 796.783981][ T9294] netlink: 132 bytes leftover after parsing attributes in process `syz.0.18193'. [ 796.804970][ T9292] netlink: 'syz.2.18202': attribute type 10 has an invalid length. [ 796.851121][ T9292] netlink: 55 bytes leftover after parsing attributes in process `syz.2.18202'. [ 797.317023][ T9306] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 797.333961][ T9306] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 797.386969][ T9316] netlink: 160 bytes leftover after parsing attributes in process `syz.3.18205'. [ 797.476935][ T9322] netlink: 132 bytes leftover after parsing attributes in process `syz.3.18207'. [ 797.606563][ T9325] netlink: 126588 bytes leftover after parsing attributes in process `syz.0.18208'. [ 797.900358][ T9343] netlink: 'syz.4.18218': attribute type 13 has an invalid length. [ 797.917118][ T9343] netlink: 160 bytes leftover after parsing attributes in process `syz.4.18218'. [ 797.954684][ T9343] erspan0: refused to change device tx_queue_len [ 797.973856][ T9343] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 798.667689][ T9379] __nla_validate_parse: 1 callbacks suppressed [ 798.667707][ T9379] netlink: 160 bytes leftover after parsing attributes in process `syz.4.18231'. [ 799.038325][ T9394] netlink: 'syz.4.18240': attribute type 21 has an invalid length. [ 799.264969][ T9403] netlink: 'syz.0.18246': attribute type 3 has an invalid length. [ 799.321183][ T9403] netlink: 132 bytes leftover after parsing attributes in process `syz.0.18246'. [ 799.629308][ T9415] netlink: 1057 bytes leftover after parsing attributes in process `syz.1.18251'. [ 799.941253][ T9432] netlink: 'syz.2.18255': attribute type 21 has an invalid length. [ 800.008189][ T9437] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18259'. [ 800.206180][ T9452] netlink: 'syz.0.18265': attribute type 4 has an invalid length. [ 800.313817][ T9456] netlink: 48 bytes leftover after parsing attributes in process `syz.3.18269'. [ 800.344926][ T9460] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.18271'. [ 800.475769][ T9464] netlink: 'syz.1.18272': attribute type 13 has an invalid length. [ 800.522005][ T9464] netlink: 160 bytes leftover after parsing attributes in process `syz.1.18272'. [ 800.600865][ T9464] erspan0: refused to change device tx_queue_len [ 800.641415][ T9464] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 800.706360][ T9472] netlink: 'syz.0.18276': attribute type 21 has an invalid length. [ 800.784746][ T9482] netlink: 'syz.4.18282': attribute type 3 has an invalid length. [ 800.831129][ T9482] netlink: 132 bytes leftover after parsing attributes in process `syz.4.18282'. [ 800.952594][ T9498] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.18286'. [ 801.091790][ T9502] netlink: 1057 bytes leftover after parsing attributes in process `syz.2.18290'. [ 801.335827][ T9516] netlink: 'syz.2.18297': attribute type 13 has an invalid length. [ 801.384171][ T9516] erspan0: refused to change device tx_queue_len [ 801.431608][ T9516] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 802.437962][ T9566] validate_nla: 1 callbacks suppressed [ 802.438001][ T9566] netlink: 'syz.4.18320': attribute type 2 has an invalid length. [ 802.478923][ T9566] netlink: 'syz.4.18320': attribute type 3 has an invalid length. [ 802.614965][ T9576] debugfs: Directory '!!ô' with parent 'ieee80211' already present! [ 803.208337][ T9601] netlink: 'syz.0.18337': attribute type 2 has an invalid length. [ 803.344338][ T9604] netlink: 'syz.3.18338': attribute type 21 has an invalid length. [ 803.404671][ T9604] netlink: 'syz.3.18338': attribute type 4 has an invalid length. [ 803.443672][ T9604] netlink: 'syz.3.18338': attribute type 5 has an invalid length. [ 803.753748][ T9622] netlink: 'syz.2.18346': attribute type 4 has an invalid length. [ 804.013441][ T9637] __nla_validate_parse: 10 callbacks suppressed [ 804.013461][ T9637] netlink: 48 bytes leftover after parsing attributes in process `syz.1.18364'. [ 804.278078][ T9651] netlink: 'syz.2.18356': attribute type 2 has an invalid length. [ 804.288194][ T9652] netlink: 144316 bytes leftover after parsing attributes in process `syz.1.18359'. [ 804.308117][ T9651] netlink: 'syz.2.18356': attribute type 3 has an invalid length. [ 804.346975][ T9651] netlink: 132 bytes leftover after parsing attributes in process `syz.2.18356'. [ 804.397690][ T9657] netlink: 'syz.3.18362': attribute type 4 has an invalid length. [ 805.005037][ T9686] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.18376'. [ 805.566175][ T9686] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 805.588360][ T9686] CPU: 1 PID: 9686 Comm: syz.1.18376 Not tainted syzkaller #0 [ 805.596428][ T9686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 805.606935][ T9686] Call Trace: [ 805.610386][ T9686] [ 805.613382][ T9686] dump_stack_lvl+0x168/0x230 [ 805.618155][ T9686] ? show_regs_print_info+0x20/0x20 [ 805.623445][ T9686] ? load_image+0x3b0/0x3b0 [ 805.628033][ T9686] sysfs_warn_dup+0x8a/0xa0 [ 805.632592][ T9686] sysfs_do_create_link_sd+0xc0/0x110 [ 805.638021][ T9686] device_add+0x7ed/0xfb0 [ 805.642560][ T9686] wiphy_register+0x1d67/0x2b20 [ 805.647513][ T9686] ? cfg80211_event_work+0x40/0x40 [ 805.652677][ T9686] ? minstrel_ht_alloc+0x808/0x980 [ 805.657855][ T9686] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 805.664099][ T9686] ieee80211_register_hw+0x29b1/0x39d0 [ 805.669656][ T9686] ? ieee80211_tasklet_handler+0x20/0x20 [ 805.675369][ T9686] ? rcu_is_watching+0x11/0xa0 [ 805.680303][ T9686] ? memset+0x1e/0x40 [ 805.684447][ T9686] ? hrtimer_init+0x10c/0x220 [ 805.689191][ T9686] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 805.695302][ T9686] hwsim_new_radio_nl+0xa6f/0xc40 [ 805.700419][ T9686] genl_rcv_msg+0xbc6/0xf40 [ 805.705204][ T9686] ? genl_bind+0x370/0x370 [ 805.709774][ T9686] ? verify_lock_unused+0x140/0x140 [ 805.715117][ T9686] ? __dev_queue_xmit+0x1bc5/0x2ed0 [ 805.720379][ T9686] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 805.726168][ T9686] ? perf_trace_lock+0x2ec/0x370 [ 805.731171][ T9686] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 805.737882][ T9686] netlink_rcv_skb+0x1e0/0x430 [ 805.742702][ T9686] ? genl_bind+0x370/0x370 [ 805.747300][ T9686] ? netlink_ack+0xb60/0xb60 [ 805.751956][ T9686] ? __lock_acquire+0x7c60/0x7c60 [ 805.757041][ T9686] ? preempt_count_add+0x8d/0x190 [ 805.762120][ T9686] ? down_read+0x1aa/0x2e0 [ 805.766695][ T9686] genl_rcv+0x24/0x40 [ 805.770819][ T9686] netlink_unicast+0x774/0x920 [ 805.775734][ T9686] netlink_sendmsg+0x8ab/0xbc0 [ 805.780664][ T9686] ? netlink_getsockopt+0x560/0x560 [ 805.785930][ T9686] ? aa_sock_msg_perm+0x94/0x150 [ 805.791295][ T9686] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 805.796619][ T9686] ? security_socket_sendmsg+0x7c/0xa0 [ 805.802111][ T9686] ? netlink_getsockopt+0x560/0x560 [ 805.807365][ T9686] ____sys_sendmsg+0x5a2/0x8c0 [ 805.812306][ T9686] ? memset+0x1e/0x40 [ 805.816317][ T9686] ? __sys_sendmsg_sock+0x30/0x30 [ 805.821452][ T9686] ? import_iovec+0x6f/0xa0 [ 805.826097][ T9686] ___sys_sendmsg+0x1f0/0x260 [ 805.830824][ T9686] ? __sys_sendmsg+0x250/0x250 [ 805.835657][ T9686] ? trace_event_raw_event_lock+0x250/0x250 [ 805.841619][ T9686] ? __fdget+0x18b/0x210 [ 805.845922][ T9686] __se_sys_sendmsg+0x190/0x250 [ 805.850802][ T9686] ? __x64_sys_sendmsg+0x80/0x80 [ 805.855755][ T9686] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 805.861868][ T9686] ? lockdep_hardirqs_on+0x94/0x140 [ 805.867096][ T9686] do_syscall_64+0x4c/0xa0 [ 805.871523][ T9686] ? clear_bhb_loop+0x30/0x80 [ 805.876331][ T9686] ? clear_bhb_loop+0x30/0x80 [ 805.881096][ T9686] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 805.887046][ T9686] RIP: 0033:0x7fbd3c7b2c29 [ 805.891519][ T9686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.911740][ T9686] RSP: 002b:00007fbd3aa1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 805.920471][ T9686] RAX: ffffffffffffffda RBX: 00007fbd3c9f9fa0 RCX: 00007fbd3c7b2c29 [ 805.928482][ T9686] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 805.936489][ T9686] RBP: 00007fbd3c835e41 R08: 0000000000000000 R09: 0000000000000000 [ 805.944489][ T9686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 805.952762][ T9686] R13: 00007fbd3c9fa038 R14: 00007fbd3c9f9fa0 R15: 00007fff76dd7de8 [ 805.960797][ T9686] [ 806.460241][ T9711] netlink: 128 bytes leftover after parsing attributes in process `syz.2.18388'. [ 806.487782][ T9711] netlink: 3 bytes leftover after parsing attributes in process `syz.2.18388'. [ 806.680943][ T9716] netlink: 132 bytes leftover after parsing attributes in process `syz.2.18391'. [ 807.164541][ T9737] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.18402'. [ 807.232904][ T9737] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 807.252791][ T9737] CPU: 1 PID: 9737 Comm: syz.4.18402 Not tainted syzkaller #0 [ 807.260436][ T9737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 807.270761][ T9737] Call Trace: [ 807.274085][ T9737] [ 807.277043][ T9737] dump_stack_lvl+0x168/0x230 [ 807.281758][ T9737] ? show_regs_print_info+0x20/0x20 [ 807.287153][ T9737] ? load_image+0x3b0/0x3b0 [ 807.291756][ T9737] sysfs_warn_dup+0x8a/0xa0 [ 807.296304][ T9737] sysfs_do_create_link_sd+0xc0/0x110 [ 807.301755][ T9737] device_add+0x7ed/0xfb0 [ 807.306184][ T9737] wiphy_register+0x1d67/0x2b20 [ 807.311211][ T9737] ? cfg80211_event_work+0x40/0x40 [ 807.316343][ T9737] ? minstrel_ht_alloc+0x808/0x980 [ 807.321586][ T9737] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 807.327704][ T9737] ieee80211_register_hw+0x29b1/0x39d0 [ 807.333198][ T9737] ? lockdep_hardirqs_on+0x94/0x140 [ 807.338448][ T9737] ? ieee80211_tasklet_handler+0x20/0x20 [ 807.344439][ T9737] ? rcu_is_watching+0x11/0xa0 [ 807.349369][ T9737] ? memset+0x1e/0x40 [ 807.353474][ T9737] ? hrtimer_init+0x10c/0x220 [ 807.358181][ T9737] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 807.363958][ T9737] hwsim_new_radio_nl+0xa6f/0xc40 [ 807.369036][ T9737] genl_rcv_msg+0xbc6/0xf40 [ 807.373736][ T9737] ? genl_bind+0x370/0x370 [ 807.378266][ T9737] ? perf_trace_lock_acquire+0xe3/0x3c0 [ 807.383960][ T9737] ? verify_lock_unused+0x140/0x140 [ 807.389312][ T9737] ? perf_trace_lock_acquire+0xe3/0x3c0 [ 807.395096][ T9737] ? perf_trace_lock_acquire+0xe3/0x3c0 [ 807.400749][ T9737] ? trace_event_raw_event_lock_acquire+0x2b0/0x2b0 [ 807.407378][ T9737] ? trace_event_raw_event_lock_acquire+0x2b0/0x2b0 [ 807.414010][ T9737] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 807.420565][ T9737] netlink_rcv_skb+0x1e0/0x430 [ 807.425382][ T9737] ? genl_bind+0x370/0x370 [ 807.429833][ T9737] ? netlink_ack+0xb60/0xb60 [ 807.434461][ T9737] ? __lock_acquire+0x7c60/0x7c60 [ 807.439523][ T9737] ? preempt_count_add+0x8d/0x190 [ 807.444565][ T9737] ? down_read+0x1aa/0x2e0 [ 807.449253][ T9737] genl_rcv+0x24/0x40 [ 807.453414][ T9737] netlink_unicast+0x774/0x920 [ 807.458218][ T9737] netlink_sendmsg+0x8ab/0xbc0 [ 807.463015][ T9737] ? netlink_getsockopt+0x560/0x560 [ 807.468358][ T9737] ? aa_sock_msg_perm+0x94/0x150 [ 807.473352][ T9737] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 807.478670][ T9737] ? security_socket_sendmsg+0x7c/0xa0 [ 807.484537][ T9737] ? netlink_getsockopt+0x560/0x560 [ 807.489910][ T9737] ____sys_sendmsg+0x5a2/0x8c0 [ 807.494727][ T9737] ? memset+0x1e/0x40 [ 807.498753][ T9737] ? __sys_sendmsg_sock+0x30/0x30 [ 807.503816][ T9737] ? import_iovec+0x6f/0xa0 [ 807.508363][ T9737] ___sys_sendmsg+0x1f0/0x260 [ 807.513126][ T9737] ? __sys_sendmsg+0x250/0x250 [ 807.518035][ T9737] ? sock_setsockopt+0x1502/0x2270 [ 807.523522][ T9737] ? __fdget+0x18b/0x210 [ 807.528034][ T9737] __se_sys_sendmsg+0x190/0x250 [ 807.532933][ T9737] ? __x64_sys_sendmsg+0x80/0x80 [ 807.537904][ T9737] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 807.544139][ T9737] ? lockdep_hardirqs_on+0x94/0x140 [ 807.549658][ T9737] do_syscall_64+0x4c/0xa0 [ 807.554113][ T9737] ? clear_bhb_loop+0x30/0x80 [ 807.558819][ T9737] ? clear_bhb_loop+0x30/0x80 [ 807.564097][ T9737] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 807.570023][ T9737] RIP: 0033:0x7fa95b408c29 [ 807.574470][ T9737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 807.594881][ T9737] RSP: 002b:00007fa959670038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 807.603777][ T9737] RAX: ffffffffffffffda RBX: 00007fa95b64ffa0 RCX: 00007fa95b408c29 [ 807.611772][ T9737] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 807.619760][ T9737] RBP: 00007fa95b48be41 R08: 0000000000000000 R09: 0000000000000000 [ 807.627745][ T9737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 807.635740][ T9737] R13: 00007fa95b650038 R14: 00007fa95b64ffa0 R15: 00007ffd239ab5e8 [ 807.643755][ T9737] [ 808.773607][ T1428] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.779943][ T1428] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.004115][ T9761] validate_nla: 6 callbacks suppressed [ 810.004134][ T9761] netlink: 'syz.4.18411': attribute type 21 has an invalid length. [ 810.026348][ T9761] netlink: 128 bytes leftover after parsing attributes in process `syz.4.18411'. [ 810.036140][ T9761] netlink: 'syz.4.18411': attribute type 4 has an invalid length. [ 810.060209][ T9761] netlink: 'syz.4.18411': attribute type 5 has an invalid length. [ 810.074956][ T9761] netlink: 3 bytes leftover after parsing attributes in process `syz.4.18411'. [ 810.114493][ T9768] netlink: 'syz.2.18415': attribute type 3 has an invalid length. [ 810.305690][ T9777] netlink: 'syz.3.18420': attribute type 21 has an invalid length. [ 811.347948][ T9794] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.18425'. [ 811.364973][ T9794] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 811.376418][ T9794] CPU: 1 PID: 9794 Comm: syz.2.18425 Not tainted syzkaller #0 [ 811.384089][ T9794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 811.394561][ T9794] Call Trace: [ 811.397879][ T9794] [ 811.400858][ T9794] dump_stack_lvl+0x168/0x230 [ 811.405751][ T9794] ? show_regs_print_info+0x20/0x20 [ 811.411382][ T9794] ? load_image+0x3b0/0x3b0 [ 811.415980][ T9794] sysfs_warn_dup+0x8a/0xa0 [ 811.420547][ T9794] sysfs_do_create_link_sd+0xc0/0x110 [ 811.425979][ T9794] device_add+0x7ed/0xfb0 [ 811.430394][ T9794] wiphy_register+0x1d67/0x2b20 [ 811.435359][ T9794] ? cfg80211_event_work+0x40/0x40 [ 811.440523][ T9794] ? minstrel_ht_alloc+0x808/0x980 [ 811.445720][ T9794] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 811.451873][ T9794] ieee80211_register_hw+0x29b1/0x39d0 [ 811.457665][ T9794] ? ieee80211_tasklet_handler+0x20/0x20 [ 811.463663][ T9794] ? rcu_is_watching+0x11/0xa0 [ 811.468495][ T9794] ? memset+0x1e/0x40 [ 811.472697][ T9794] ? hrtimer_init+0x10c/0x220 [ 811.477443][ T9794] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 811.483242][ T9794] hwsim_new_radio_nl+0xa6f/0xc40 [ 811.488631][ T9794] genl_rcv_msg+0xbc6/0xf40 [ 811.493291][ T9794] ? genl_bind+0x370/0x370 [ 811.497983][ T9794] ? verify_lock_unused+0x140/0x140 [ 811.503576][ T9794] ? __dev_queue_xmit+0x1bc5/0x2ed0 [ 811.509385][ T9794] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 811.515266][ T9794] ? perf_trace_lock+0x2ec/0x370 [ 811.520314][ T9794] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 811.526873][ T9794] netlink_rcv_skb+0x1e0/0x430 [ 811.531687][ T9794] ? genl_bind+0x370/0x370 [ 811.536134][ T9794] ? netlink_ack+0xb60/0xb60 [ 811.540759][ T9794] ? __lock_acquire+0x7c60/0x7c60 [ 811.545948][ T9794] ? preempt_count_add+0x8d/0x190 [ 811.551236][ T9794] ? down_read+0x1aa/0x2e0 [ 811.555780][ T9794] genl_rcv+0x24/0x40 [ 811.560407][ T9794] netlink_unicast+0x774/0x920 [ 811.565243][ T9794] netlink_sendmsg+0x8ab/0xbc0 [ 811.570085][ T9794] ? netlink_getsockopt+0x560/0x560 [ 811.577042][ T9794] ? aa_sock_msg_perm+0x94/0x150 [ 811.582573][ T9794] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 811.588303][ T9794] ? security_socket_sendmsg+0x7c/0xa0 [ 811.594356][ T9794] ? netlink_getsockopt+0x560/0x560 [ 811.599768][ T9794] ____sys_sendmsg+0x5a2/0x8c0 [ 811.604893][ T9794] ? memset+0x1e/0x40 [ 811.608935][ T9794] ? __sys_sendmsg_sock+0x30/0x30 [ 811.614218][ T9794] ? import_iovec+0x6f/0xa0 [ 811.619009][ T9794] ___sys_sendmsg+0x1f0/0x260 [ 811.623963][ T9794] ? __sys_sendmsg+0x250/0x250 [ 811.628790][ T9794] ? trace_event_raw_event_lock+0x250/0x250 [ 811.634748][ T9794] ? __fdget+0x18b/0x210 [ 811.639019][ T9794] __se_sys_sendmsg+0x190/0x250 [ 811.644019][ T9794] ? __x64_sys_sendmsg+0x80/0x80 [ 811.648982][ T9794] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 811.655006][ T9794] ? lockdep_hardirqs_on+0x94/0x140 [ 811.660258][ T9794] do_syscall_64+0x4c/0xa0 [ 811.665097][ T9794] ? clear_bhb_loop+0x30/0x80 [ 811.669898][ T9794] ? clear_bhb_loop+0x30/0x80 [ 811.674727][ T9794] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 811.681528][ T9794] RIP: 0033:0x7f9693b20c29 [ 811.686510][ T9794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 811.707424][ T9794] RSP: 002b:00007f9691d88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 811.716189][ T9794] RAX: ffffffffffffffda RBX: 00007f9693d67fa0 RCX: 00007f9693b20c29 [ 811.724291][ T9794] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 811.732938][ T9794] RBP: 00007f9693ba3e41 R08: 0000000000000000 R09: 0000000000000000 [ 811.741091][ T9794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 811.749274][ T9794] R13: 00007f9693d68038 R14: 00007f9693d67fa0 R15: 00007ffc9d54a0a8 [ 811.757298][ T9794] [ 811.766828][ T9803] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.18438'. [ 811.787689][ T9800] netlink: 'syz.1.18427': attribute type 3 has an invalid length. [ 812.144358][ T9825] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.18450'. [ 812.157636][ T9825] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 812.170275][ T9825] CPU: 0 PID: 9825 Comm: syz.4.18450 Not tainted syzkaller #0 [ 812.177826][ T9825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 812.188260][ T9825] Call Trace: [ 812.191836][ T9825] [ 812.194818][ T9825] dump_stack_lvl+0x168/0x230 [ 812.199563][ T9825] ? show_regs_print_info+0x20/0x20 [ 812.204960][ T9825] ? load_image+0x3b0/0x3b0 [ 812.209797][ T9825] sysfs_warn_dup+0x8a/0xa0 [ 812.214487][ T9825] sysfs_do_create_link_sd+0xc0/0x110 [ 812.219913][ T9825] device_add+0x7ed/0xfb0 [ 812.224313][ T9825] wiphy_register+0x1d67/0x2b20 [ 812.229618][ T9825] ? cfg80211_event_work+0x40/0x40 [ 812.234774][ T9825] ? minstrel_ht_alloc+0x808/0x980 [ 812.239944][ T9825] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 812.246095][ T9825] ieee80211_register_hw+0x29b1/0x39d0 [ 812.251841][ T9825] ? ieee80211_tasklet_handler+0x20/0x20 [ 812.257552][ T9825] ? rcu_is_watching+0x11/0xa0 [ 812.262364][ T9825] ? memset+0x1e/0x40 [ 812.266397][ T9825] ? hrtimer_init+0x10c/0x220 [ 812.271483][ T9825] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 812.277301][ T9825] hwsim_new_radio_nl+0xa6f/0xc40 [ 812.282415][ T9825] genl_rcv_msg+0xbc6/0xf40 [ 812.286998][ T9825] ? genl_bind+0x370/0x370 [ 812.291482][ T9825] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 812.297369][ T9825] ? verify_lock_unused+0x140/0x140 [ 812.302632][ T9825] ? perf_trace_lock_acquire+0xe3/0x3c0 [ 812.308250][ T9825] ? trace_event_raw_event_lock_acquire+0x2b0/0x2b0 [ 812.314900][ T9825] ? perf_trace_lock+0x2ec/0x370 [ 812.320244][ T9825] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 812.326828][ T9825] netlink_rcv_skb+0x1e0/0x430 [ 812.332198][ T9825] ? genl_bind+0x370/0x370 [ 812.336686][ T9825] ? netlink_ack+0xb60/0xb60 [ 812.341599][ T9825] ? __lock_acquire+0x7c60/0x7c60 [ 812.346678][ T9825] ? preempt_count_add+0x8d/0x190 [ 812.351947][ T9825] ? down_read+0x1aa/0x2e0 [ 812.356431][ T9825] genl_rcv+0x24/0x40 [ 812.360696][ T9825] netlink_unicast+0x774/0x920 [ 812.365810][ T9825] netlink_sendmsg+0x8ab/0xbc0 [ 812.370903][ T9825] ? netlink_getsockopt+0x560/0x560 [ 812.376836][ T9825] ? aa_sock_msg_perm+0x94/0x150 [ 812.381983][ T9825] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 812.387812][ T9825] ? security_socket_sendmsg+0x7c/0xa0 [ 812.393330][ T9825] ? netlink_getsockopt+0x560/0x560 [ 812.398681][ T9825] ____sys_sendmsg+0x5a2/0x8c0 [ 812.403628][ T9825] ? memset+0x1e/0x40 [ 812.407668][ T9825] ? __sys_sendmsg_sock+0x30/0x30 [ 812.412767][ T9825] ? import_iovec+0x6f/0xa0 [ 812.417345][ T9825] ___sys_sendmsg+0x1f0/0x260 [ 812.422120][ T9825] ? __sys_sendmsg+0x250/0x250 [ 812.426960][ T9825] ? trace_event_raw_event_lock+0x250/0x250 [ 812.432942][ T9825] ? __fdget+0x18b/0x210 [ 812.437236][ T9825] __se_sys_sendmsg+0x190/0x250 [ 812.442161][ T9825] ? __x64_sys_sendmsg+0x80/0x80 [ 812.447226][ T9825] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 812.453475][ T9825] ? lockdep_hardirqs_on+0x94/0x140 [ 812.458771][ T9825] do_syscall_64+0x4c/0xa0 [ 812.463249][ T9825] ? clear_bhb_loop+0x30/0x80 [ 812.467995][ T9825] ? clear_bhb_loop+0x30/0x80 [ 812.472752][ T9825] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 812.479217][ T9825] RIP: 0033:0x7fa95b408c29 [ 812.484365][ T9825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 812.504110][ T9825] RSP: 002b:00007fa959670038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 812.512667][ T9825] RAX: ffffffffffffffda RBX: 00007fa95b64ffa0 RCX: 00007fa95b408c29 [ 812.520804][ T9825] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 812.529095][ T9825] RBP: 00007fa95b48be41 R08: 0000000000000000 R09: 0000000000000000 [ 812.537113][ T9825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 812.545255][ T9825] R13: 00007fa95b650038 R14: 00007fa95b64ffa0 R15: 00007ffd239ab5e8 [ 812.553567][ T9825] [ 812.936654][ T9840] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.18446'. [ 813.072630][ T9843] netlink: 14546 bytes leftover after parsing attributes in process `syz.4.18448'. [ 813.432636][ T9855] netlink: 'syz.4.18454': attribute type 25 has an invalid length. [ 813.440877][ T9855] netlink: 2418 bytes leftover after parsing attributes in process `syz.4.18454'. [ 813.486259][ T9859] netlink: 'syz.3.18456': attribute type 2 has an invalid length. [ 813.518889][ T9859] netlink: 'syz.3.18456': attribute type 3 has an invalid length. [ 813.541327][ T9859] netlink: 132 bytes leftover after parsing attributes in process `syz.3.18456'. [ 813.976556][ T9866] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.18457'. [ 814.020837][ T9866] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 814.080412][ T9866] CPU: 1 PID: 9866 Comm: syz.0.18457 Not tainted syzkaller #0 [ 814.088191][ T9866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 814.098818][ T9866] Call Trace: [ 814.102328][ T9866] [ 814.105300][ T9866] dump_stack_lvl+0x168/0x230 [ 814.110053][ T9866] ? show_regs_print_info+0x20/0x20 [ 814.115497][ T9866] ? load_image+0x3b0/0x3b0 [ 814.120140][ T9866] sysfs_warn_dup+0x8a/0xa0 [ 814.124800][ T9866] sysfs_do_create_link_sd+0xc0/0x110 [ 814.130273][ T9866] device_add+0x7ed/0xfb0 [ 814.134785][ T9866] wiphy_register+0x1d67/0x2b20 [ 814.139740][ T9866] ? cfg80211_event_work+0x40/0x40 [ 814.145013][ T9866] ? minstrel_ht_alloc+0x808/0x980 [ 814.150444][ T9866] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 814.156563][ T9866] ieee80211_register_hw+0x29b1/0x39d0 [ 814.162102][ T9866] ? ieee80211_tasklet_handler+0x20/0x20 [ 814.167786][ T9866] ? rcu_is_watching+0x11/0xa0 [ 814.172580][ T9866] ? memset+0x1e/0x40 [ 814.176611][ T9866] ? hrtimer_init+0x10c/0x220 [ 814.181344][ T9866] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 814.187238][ T9866] hwsim_new_radio_nl+0xa6f/0xc40 [ 814.192349][ T9866] genl_rcv_msg+0xbc6/0xf40 [ 814.196907][ T9866] ? genl_bind+0x370/0x370 [ 814.201530][ T9866] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 814.207351][ T9866] ? verify_lock_unused+0x140/0x140 [ 814.212608][ T9866] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 814.218384][ T9866] ? perf_trace_lock+0x2ec/0x370 [ 814.223447][ T9866] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 814.232572][ T9866] netlink_rcv_skb+0x1e0/0x430 [ 814.238369][ T9866] ? genl_bind+0x370/0x370 [ 814.243063][ T9866] ? netlink_ack+0xb60/0xb60 [ 814.247844][ T9866] ? __lock_acquire+0x7c60/0x7c60 [ 814.253039][ T9866] ? preempt_count_add+0x8d/0x190 [ 814.258098][ T9866] ? down_read+0x1aa/0x2e0 [ 814.262547][ T9866] genl_rcv+0x24/0x40 [ 814.266571][ T9866] netlink_unicast+0x774/0x920 [ 814.272278][ T9866] netlink_sendmsg+0x8ab/0xbc0 [ 814.277108][ T9866] ? netlink_getsockopt+0x560/0x560 [ 814.282992][ T9866] ? aa_sock_msg_perm+0x94/0x150 [ 814.290530][ T9866] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 814.298292][ T9866] ? security_socket_sendmsg+0x7c/0xa0 [ 814.304679][ T9866] ? netlink_getsockopt+0x560/0x560 [ 814.310249][ T9866] ____sys_sendmsg+0x5a2/0x8c0 [ 814.315228][ T9866] ? memset+0x1e/0x40 [ 814.319251][ T9866] ? __sys_sendmsg_sock+0x30/0x30 [ 814.324338][ T9866] ? import_iovec+0x6f/0xa0 [ 814.329025][ T9866] ___sys_sendmsg+0x1f0/0x260 [ 814.333851][ T9866] ? __sys_sendmsg+0x250/0x250 [ 814.338689][ T9866] ? trace_event_raw_event_lock+0x250/0x250 [ 814.344682][ T9866] ? __fdget+0x18b/0x210 [ 814.348986][ T9866] __se_sys_sendmsg+0x190/0x250 [ 814.353880][ T9866] ? __x64_sys_sendmsg+0x80/0x80 [ 814.358853][ T9866] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 814.365187][ T9866] ? lockdep_hardirqs_on+0x94/0x140 [ 814.371690][ T9866] do_syscall_64+0x4c/0xa0 [ 814.377678][ T9866] ? clear_bhb_loop+0x30/0x80 [ 814.383215][ T9866] ? clear_bhb_loop+0x30/0x80 [ 814.388431][ T9866] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 814.395901][ T9866] RIP: 0033:0x7ff0ddaafc29 [ 814.400634][ T9866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 814.422541][ T9866] RSP: 002b:00007ff0dbd17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 814.431018][ T9866] RAX: ffffffffffffffda RBX: 00007ff0ddcf6fa0 RCX: 00007ff0ddaafc29 [ 814.439202][ T9866] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 814.447230][ T9866] RBP: 00007ff0ddb32e41 R08: 0000000000000000 R09: 0000000000000000 [ 814.455501][ T9866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 814.463814][ T9866] R13: 00007ff0ddcf7038 R14: 00007ff0ddcf6fa0 R15: 00007ffdce5416b8 [ 814.474385][ T9866] [ 814.773954][ T9896] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 814.801565][ T9896] CPU: 0 PID: 9896 Comm: syz.1.18483 Not tainted syzkaller #0 [ 814.811895][ T9896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 814.823561][ T9896] Call Trace: [ 814.826900][ T9896] [ 814.830059][ T9896] dump_stack_lvl+0x168/0x230 [ 814.834890][ T9896] ? show_regs_print_info+0x20/0x20 [ 814.840954][ T9896] ? load_image+0x3b0/0x3b0 [ 814.845907][ T9896] sysfs_warn_dup+0x8a/0xa0 [ 814.850487][ T9896] sysfs_do_create_link_sd+0xc0/0x110 [ 814.855908][ T9896] device_add+0x7ed/0xfb0 [ 814.860290][ T9896] wiphy_register+0x1d67/0x2b20 [ 814.865430][ T9896] ? cfg80211_event_work+0x40/0x40 [ 814.870670][ T9896] ? minstrel_ht_alloc+0x808/0x980 [ 814.876025][ T9896] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 814.882633][ T9896] ieee80211_register_hw+0x29b1/0x39d0 [ 814.888459][ T9896] ? ieee80211_tasklet_handler+0x20/0x20 [ 814.894196][ T9896] ? rcu_is_watching+0x11/0xa0 [ 814.899588][ T9896] ? memset+0x1e/0x40 [ 814.903624][ T9896] ? hrtimer_init+0x10c/0x220 [ 814.908510][ T9896] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 814.914378][ T9896] hwsim_new_radio_nl+0xa6f/0xc40 [ 814.919470][ T9896] genl_rcv_msg+0xbc6/0xf40 [ 814.924024][ T9896] ? genl_bind+0x370/0x370 [ 814.928503][ T9896] ? verify_lock_unused+0x140/0x140 [ 814.933858][ T9896] ? __dev_queue_xmit+0x1bc5/0x2ed0 [ 814.939122][ T9896] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 814.944973][ T9896] ? perf_trace_lock+0x2ec/0x370 [ 814.950216][ T9896] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 814.956773][ T9896] netlink_rcv_skb+0x1e0/0x430 [ 814.961597][ T9896] ? genl_bind+0x370/0x370 [ 814.966450][ T9896] ? netlink_ack+0xb60/0xb60 [ 814.971257][ T9896] ? __lock_acquire+0x7c60/0x7c60 [ 814.976453][ T9896] ? preempt_count_add+0x8d/0x190 [ 814.981693][ T9896] ? down_read+0x1aa/0x2e0 [ 814.986153][ T9896] genl_rcv+0x24/0x40 [ 814.990340][ T9896] netlink_unicast+0x774/0x920 [ 814.995155][ T9896] netlink_sendmsg+0x8ab/0xbc0 [ 814.999976][ T9896] ? netlink_getsockopt+0x560/0x560 [ 815.005590][ T9896] ? aa_sock_msg_perm+0x94/0x150 [ 815.010729][ T9896] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 815.016199][ T9896] ? security_socket_sendmsg+0x7c/0xa0 [ 815.021773][ T9896] ? netlink_getsockopt+0x560/0x560 [ 815.027184][ T9896] ____sys_sendmsg+0x5a2/0x8c0 [ 815.032000][ T9896] ? memset+0x1e/0x40 [ 815.036033][ T9896] ? __sys_sendmsg_sock+0x30/0x30 [ 815.041107][ T9896] ? import_iovec+0x6f/0xa0 [ 815.045726][ T9896] ___sys_sendmsg+0x1f0/0x260 [ 815.050436][ T9896] ? __sys_sendmsg+0x250/0x250 [ 815.055232][ T9896] ? trace_event_raw_event_lock+0x250/0x250 [ 815.061366][ T9896] ? __fdget+0x18b/0x210 [ 815.065631][ T9896] __se_sys_sendmsg+0x190/0x250 [ 815.070852][ T9896] ? __x64_sys_sendmsg+0x80/0x80 [ 815.075819][ T9896] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 815.082202][ T9896] ? lockdep_hardirqs_on+0x94/0x140 [ 815.087823][ T9896] do_syscall_64+0x4c/0xa0 [ 815.092410][ T9896] ? clear_bhb_loop+0x30/0x80 [ 815.097133][ T9896] ? clear_bhb_loop+0x30/0x80 [ 815.101836][ T9896] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 815.108004][ T9896] RIP: 0033:0x7fbd3c7b2c29 [ 815.112563][ T9896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 815.132213][ T9896] RSP: 002b:00007fbd3aa1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 815.140661][ T9896] RAX: ffffffffffffffda RBX: 00007fbd3c9f9fa0 RCX: 00007fbd3c7b2c29 [ 815.148861][ T9896] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 815.157062][ T9896] RBP: 00007fbd3c835e41 R08: 0000000000000000 R09: 0000000000000000 [ 815.165146][ T9896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 815.173654][ T9896] R13: 00007fbd3c9fa038 R14: 00007fbd3c9f9fa0 R15: 00007fff76dd7de8 [ 815.181895][ T9896] [ 815.680627][ T9932] netlink: 'syz.3.18489': attribute type 25 has an invalid length. [ 815.716083][ T9932] __nla_validate_parse: 2 callbacks suppressed [ 815.716100][ T9932] netlink: 2418 bytes leftover after parsing attributes in process `syz.3.18489'. [ 815.770378][ T9934] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.18491'. [ 815.789186][ T9936] netlink: 14546 bytes leftover after parsing attributes in process `syz.0.18492'. [ 815.845351][ T9934] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 815.901603][ T9934] CPU: 0 PID: 9934 Comm: syz.2.18491 Not tainted syzkaller #0 [ 815.911865][ T9934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 815.923390][ T9934] Call Trace: [ 815.923407][ T9934] [ 815.923426][ T9934] dump_stack_lvl+0x168/0x230 [ 815.923469][ T9934] ? show_regs_print_info+0x20/0x20 [ 815.923498][ T9934] ? load_image+0x3b0/0x3b0 [ 815.923552][ T9934] sysfs_warn_dup+0x8a/0xa0 [ 815.923582][ T9934] sysfs_do_create_link_sd+0xc0/0x110 [ 815.923617][ T9934] device_add+0x7ed/0xfb0 [ 815.960743][ T9934] wiphy_register+0x1d67/0x2b20 [ 815.966124][ T9934] ? cfg80211_event_work+0x40/0x40 [ 815.971661][ T9934] ? minstrel_ht_alloc+0x808/0x980 [ 815.977059][ T9934] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 815.983742][ T9934] ieee80211_register_hw+0x29b1/0x39d0 [ 815.989802][ T9934] ? ieee80211_tasklet_handler+0x20/0x20 [ 815.995838][ T9934] ? rcu_is_watching+0x11/0xa0 [ 816.001030][ T9934] ? memset+0x1e/0x40 [ 816.005864][ T9934] ? hrtimer_init+0x10c/0x220 [ 816.010638][ T9934] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 816.016580][ T9934] hwsim_new_radio_nl+0xa6f/0xc40 [ 816.021916][ T9934] genl_rcv_msg+0xbc6/0xf40 [ 816.026765][ T9934] ? genl_bind+0x370/0x370 [ 816.031484][ T9934] ? verify_lock_unused+0x140/0x140 [ 816.036916][ T9934] ? __dev_queue_xmit+0x1bc5/0x2ed0 [ 816.042558][ T9934] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 816.049286][ T9934] ? perf_trace_lock+0x2ec/0x370 [ 816.054286][ T9934] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 816.060998][ T9934] netlink_rcv_skb+0x1e0/0x430 [ 816.065925][ T9934] ? genl_bind+0x370/0x370 [ 816.070414][ T9934] ? netlink_ack+0xb60/0xb60 [ 816.075081][ T9934] ? __lock_acquire+0x7c60/0x7c60 [ 816.080170][ T9934] ? preempt_count_add+0x8d/0x190 [ 816.085477][ T9934] ? down_read+0x1aa/0x2e0 [ 816.090189][ T9934] genl_rcv+0x24/0x40 [ 816.094226][ T9934] netlink_unicast+0x774/0x920 [ 816.099059][ T9934] netlink_sendmsg+0x8ab/0xbc0 [ 816.104196][ T9934] ? netlink_getsockopt+0x560/0x560 [ 816.109450][ T9934] ? aa_sock_msg_perm+0x94/0x150 [ 816.114634][ T9934] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 816.119987][ T9934] ? security_socket_sendmsg+0x7c/0xa0 [ 816.125609][ T9934] ? netlink_getsockopt+0x560/0x560 [ 816.131067][ T9934] ____sys_sendmsg+0x5a2/0x8c0 [ 816.136022][ T9934] ? memset+0x1e/0x40 [ 816.140146][ T9934] ? __sys_sendmsg_sock+0x30/0x30 [ 816.145230][ T9934] ? import_iovec+0x6f/0xa0 [ 816.149915][ T9934] ___sys_sendmsg+0x1f0/0x260 [ 816.154905][ T9934] ? __sys_sendmsg+0x250/0x250 [ 816.160324][ T9934] ? trace_event_raw_event_lock+0x250/0x250 [ 816.166679][ T9934] ? __fdget+0x18b/0x210 [ 816.171261][ T9934] __se_sys_sendmsg+0x190/0x250 [ 816.176256][ T9934] ? __x64_sys_sendmsg+0x80/0x80 [ 816.181568][ T9934] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 816.188170][ T9934] ? lockdep_hardirqs_on+0x94/0x140 [ 816.193733][ T9934] do_syscall_64+0x4c/0xa0 [ 816.198640][ T9934] ? clear_bhb_loop+0x30/0x80 [ 816.203858][ T9934] ? clear_bhb_loop+0x30/0x80 [ 816.208942][ T9934] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 816.215183][ T9934] RIP: 0033:0x7f9693b20c29 [ 816.220239][ T9934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 816.240344][ T9934] RSP: 002b:00007f9691d88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 816.249742][ T9934] RAX: ffffffffffffffda RBX: 00007f9693d67fa0 RCX: 00007f9693b20c29 [ 816.258392][ T9934] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 816.266594][ T9934] RBP: 00007f9693ba3e41 R08: 0000000000000000 R09: 0000000000000000 [ 816.274879][ T9934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 816.283235][ T9934] R13: 00007f9693d68038 R14: 00007f9693d67fa0 R15: 00007ffc9d54a0a8 [ 816.291540][ T9934] [ 816.973871][ T9988] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.18516'. [ 817.004559][ T9988] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 817.017509][ T9988] CPU: 1 PID: 9988 Comm: syz.1.18516 Not tainted syzkaller #0 [ 817.025143][ T9988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 817.035414][ T9988] Call Trace: [ 817.038820][ T9988] [ 817.042229][ T9988] dump_stack_lvl+0x168/0x230 [ 817.047075][ T9988] ? show_regs_print_info+0x20/0x20 [ 817.052358][ T9988] ? load_image+0x3b0/0x3b0 [ 817.056922][ T9988] sysfs_warn_dup+0x8a/0xa0 [ 817.061465][ T9988] sysfs_do_create_link_sd+0xc0/0x110 [ 817.066883][ T9988] device_add+0x7ed/0xfb0 [ 817.071697][ T9988] wiphy_register+0x1d67/0x2b20 [ 817.076662][ T9988] ? cfg80211_event_work+0x40/0x40 [ 817.082125][ T9988] ? minstrel_ht_alloc+0x808/0x980 [ 817.087435][ T9988] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 817.093562][ T9988] ieee80211_register_hw+0x29b1/0x39d0 [ 817.099678][ T9988] ? ieee80211_tasklet_handler+0x20/0x20 [ 817.105960][ T9988] ? rcu_is_watching+0x11/0xa0 [ 817.110783][ T9988] ? memset+0x1e/0x40 [ 817.114795][ T9988] ? hrtimer_init+0x10c/0x220 [ 817.119498][ T9988] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 817.125280][ T9988] hwsim_new_radio_nl+0xa6f/0xc40 [ 817.130552][ T9988] genl_rcv_msg+0xbc6/0xf40 [ 817.135647][ T9988] ? genl_bind+0x370/0x370 [ 817.140109][ T9988] ? verify_lock_unused+0x140/0x140 [ 817.145333][ T9988] ? __dev_queue_xmit+0x1bc5/0x2ed0 [ 817.150566][ T9988] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 817.156599][ T9988] ? perf_trace_lock+0x2ec/0x370 [ 817.161605][ T9988] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 817.168179][ T9988] netlink_rcv_skb+0x1e0/0x430 [ 817.172987][ T9988] ? genl_bind+0x370/0x370 [ 817.177450][ T9988] ? netlink_ack+0xb60/0xb60 [ 817.182319][ T9988] ? __lock_acquire+0x7c60/0x7c60 [ 817.187699][ T9988] ? preempt_count_add+0x8d/0x190 [ 817.192794][ T9988] ? down_read+0x1aa/0x2e0 [ 817.197252][ T9988] genl_rcv+0x24/0x40 [ 817.201604][ T9988] netlink_unicast+0x774/0x920 [ 817.206790][ T9988] netlink_sendmsg+0x8ab/0xbc0 [ 817.211789][ T9988] ? netlink_getsockopt+0x560/0x560 [ 817.217117][ T9988] ? aa_sock_msg_perm+0x94/0x150 [ 817.222312][ T9988] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 817.227681][ T9988] ? security_socket_sendmsg+0x7c/0xa0 [ 817.233168][ T9988] ? netlink_getsockopt+0x560/0x560 [ 817.238541][ T9988] ____sys_sendmsg+0x5a2/0x8c0 [ 817.243365][ T9988] ? memset+0x1e/0x40 [ 817.247373][ T9988] ? __sys_sendmsg_sock+0x30/0x30 [ 817.252714][ T9988] ? import_iovec+0x6f/0xa0 [ 817.257258][ T9988] ___sys_sendmsg+0x1f0/0x260 [ 817.262108][ T9988] ? __sys_sendmsg+0x250/0x250 [ 817.266926][ T9988] ? trace_event_raw_event_lock+0x250/0x250 [ 817.272999][ T9988] ? __fdget+0x18b/0x210 [ 817.277283][ T9988] __se_sys_sendmsg+0x190/0x250 [ 817.282210][ T9988] ? __x64_sys_sendmsg+0x80/0x80 [ 817.287475][ T9988] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 817.293678][ T9988] ? lockdep_hardirqs_on+0x94/0x140 [ 817.298943][ T9988] do_syscall_64+0x4c/0xa0 [ 817.303503][ T9988] ? clear_bhb_loop+0x30/0x80 [ 817.308305][ T9988] ? clear_bhb_loop+0x30/0x80 [ 817.313003][ T9988] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 817.318951][ T9988] RIP: 0033:0x7fbd3c7b2c29 [ 817.323663][ T9988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 817.344290][ T9988] RSP: 002b:00007fbd3aa1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 817.352919][ T9988] RAX: ffffffffffffffda RBX: 00007fbd3c9f9fa0 RCX: 00007fbd3c7b2c29 [ 817.361066][ T9988] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 817.369332][ T9988] RBP: 00007fbd3c835e41 R08: 0000000000000000 R09: 0000000000000000 [ 817.377528][ T9988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 817.385774][ T9988] R13: 00007fbd3c9fa038 R14: 00007fbd3c9f9fa0 R15: 00007fff76dd7de8 [ 817.394539][ T9988] [ 818.986303][T10057] netlink: 'syz.1.18548': attribute type 13 has an invalid length. [ 819.001796][T10057] netlink: 160 bytes leftover after parsing attributes in process `syz.1.18548'. [ 819.044884][T10057] erspan0: refused to change device tx_queue_len [ 819.062314][T10057] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 819.503167][T10082] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.18559'. [ 819.602264][T10082] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 819.631162][T10082] CPU: 0 PID: 10082 Comm: syz.0.18559 Not tainted syzkaller #0 [ 819.638797][T10082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 819.648900][T10082] Call Trace: [ 819.652227][T10082] [ 819.655199][T10082] dump_stack_lvl+0x168/0x230 [ 819.659943][T10082] ? show_regs_print_info+0x20/0x20 [ 819.665409][T10082] ? load_image+0x3b0/0x3b0 [ 819.670016][T10082] sysfs_warn_dup+0x8a/0xa0 [ 819.674602][T10082] sysfs_do_create_link_sd+0xc0/0x110 [ 819.680048][T10082] device_add+0x7ed/0xfb0 [ 819.684456][T10082] wiphy_register+0x1d67/0x2b20 [ 819.689736][T10082] ? cfg80211_event_work+0x40/0x40 [ 819.694915][T10082] ? minstrel_ht_alloc+0x808/0x980 [ 819.700193][T10082] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 819.706339][T10082] ieee80211_register_hw+0x29b1/0x39d0 [ 819.712028][T10082] ? ieee80211_tasklet_handler+0x20/0x20 [ 819.717856][T10082] ? rcu_is_watching+0x11/0xa0 [ 819.722806][T10082] ? memset+0x1e/0x40 [ 819.726860][T10082] ? hrtimer_init+0x10c/0x220 [ 819.731610][T10082] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 819.737432][T10082] hwsim_new_radio_nl+0xa6f/0xc40 [ 819.742545][T10082] genl_rcv_msg+0xbc6/0xf40 [ 819.747233][T10082] ? genl_bind+0x370/0x370 [ 819.751811][T10082] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 819.757584][T10082] ? verify_lock_unused+0x140/0x140 [ 819.762842][T10082] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 819.769012][T10082] ? perf_trace_lock+0x2ec/0x370 [ 819.774185][T10082] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 819.780784][T10082] netlink_rcv_skb+0x1e0/0x430 [ 819.786168][T10082] ? genl_bind+0x370/0x370 [ 819.790885][T10082] ? netlink_ack+0xb60/0xb60 [ 819.795662][T10082] ? __lock_acquire+0x7c60/0x7c60 [ 819.800752][T10082] ? preempt_count_add+0x8d/0x190 [ 819.807018][T10082] ? down_read+0x1aa/0x2e0 [ 819.811603][T10082] genl_rcv+0x24/0x40 [ 819.815671][T10082] netlink_unicast+0x774/0x920 [ 819.820517][T10082] netlink_sendmsg+0x8ab/0xbc0 [ 819.825365][T10082] ? netlink_getsockopt+0x560/0x560 [ 819.830642][T10082] ? aa_sock_msg_perm+0x94/0x150 [ 819.835740][T10082] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 819.841070][T10082] ? security_socket_sendmsg+0x7c/0xa0 [ 819.846719][T10082] ? netlink_getsockopt+0x560/0x560 [ 819.852085][T10082] ____sys_sendmsg+0x5a2/0x8c0 [ 819.856916][T10082] ? memset+0x1e/0x40 [ 819.860962][T10082] ? __sys_sendmsg_sock+0x30/0x30 [ 819.866069][T10082] ? import_iovec+0x6f/0xa0 [ 819.870750][T10082] ___sys_sendmsg+0x1f0/0x260 [ 819.875509][T10082] ? __sys_sendmsg+0x250/0x250 [ 819.880361][T10082] ? trace_event_raw_event_lock+0x250/0x250 [ 819.886354][T10082] ? __fdget+0x18b/0x210 [ 819.890659][T10082] __se_sys_sendmsg+0x190/0x250 [ 819.895571][T10082] ? __x64_sys_sendmsg+0x80/0x80 [ 819.900569][T10082] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 819.906633][T10082] ? lockdep_hardirqs_on+0x94/0x140 [ 819.911893][T10082] do_syscall_64+0x4c/0xa0 [ 819.916351][T10082] ? clear_bhb_loop+0x30/0x80 [ 819.921074][T10082] ? clear_bhb_loop+0x30/0x80 [ 819.925798][T10082] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 819.931733][T10082] RIP: 0033:0x7ff0ddaafc29 [ 819.936271][T10082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 819.956819][T10082] RSP: 002b:00007ff0dbd17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 819.965469][T10082] RAX: ffffffffffffffda RBX: 00007ff0ddcf6fa0 RCX: 00007ff0ddaafc29 [ 819.973598][T10082] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 819.981621][T10082] RBP: 00007ff0ddb32e41 R08: 0000000000000000 R09: 0000000000000000 [ 819.989913][T10082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 819.998126][T10082] R13: 00007ff0ddcf7038 R14: 00007ff0ddcf6fa0 R15: 00007ffdce5416b8 [ 820.006196][T10082] [ 820.828294][T10125] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.18581'. [ 820.873122][T10125] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 820.900290][T10125] CPU: 0 PID: 10125 Comm: syz.1.18581 Not tainted syzkaller #0 [ 820.907922][T10125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 820.918221][T10125] Call Trace: [ 820.921539][T10125] [ 820.924510][T10125] dump_stack_lvl+0x168/0x230 [ 820.929252][T10125] ? show_regs_print_info+0x20/0x20 [ 820.934604][T10125] ? load_image+0x3b0/0x3b0 [ 820.939181][T10125] sysfs_warn_dup+0x8a/0xa0 [ 820.943728][T10125] sysfs_do_create_link_sd+0xc0/0x110 [ 820.949517][T10125] device_add+0x7ed/0xfb0 [ 820.953928][T10125] wiphy_register+0x1d67/0x2b20 [ 820.958885][T10125] ? cfg80211_event_work+0x40/0x40 [ 820.964162][T10125] ? minstrel_ht_alloc+0x808/0x980 [ 820.969495][T10125] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 820.975616][T10125] ieee80211_register_hw+0x29b1/0x39d0 [ 820.981144][T10125] ? ieee80211_tasklet_handler+0x20/0x20 [ 820.986826][T10125] ? rcu_is_watching+0x11/0xa0 [ 820.992081][T10125] ? memset+0x1e/0x40 [ 820.996105][T10125] ? hrtimer_init+0x10c/0x220 [ 821.000819][T10125] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 821.007008][T10125] hwsim_new_radio_nl+0xa6f/0xc40 [ 821.012110][T10125] genl_rcv_msg+0xbc6/0xf40 [ 821.016759][T10125] ? genl_bind+0x370/0x370 [ 821.021222][T10125] ? verify_lock_unused+0x140/0x140 [ 821.026571][T10125] ? __dev_queue_xmit+0x1bc5/0x2ed0 [ 821.031934][T10125] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 821.037849][T10125] ? perf_trace_lock+0x2ec/0x370 [ 821.042831][T10125] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 821.049382][T10125] netlink_rcv_skb+0x1e0/0x430 [ 821.054175][T10125] ? genl_bind+0x370/0x370 [ 821.058611][T10125] ? netlink_ack+0xb60/0xb60 [ 821.063233][T10125] ? __lock_acquire+0x7c60/0x7c60 [ 821.068386][T10125] ? preempt_count_add+0x8d/0x190 [ 821.073460][T10125] ? down_read+0x1aa/0x2e0 [ 821.077925][T10125] genl_rcv+0x24/0x40 [ 821.082060][T10125] netlink_unicast+0x774/0x920 [ 821.086902][T10125] netlink_sendmsg+0x8ab/0xbc0 [ 821.091718][T10125] ? netlink_getsockopt+0x560/0x560 [ 821.097056][T10125] ? aa_sock_msg_perm+0x94/0x150 [ 821.102058][T10125] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 821.107538][T10125] ? security_socket_sendmsg+0x7c/0xa0 [ 821.113059][T10125] ? netlink_getsockopt+0x560/0x560 [ 821.118299][T10125] ____sys_sendmsg+0x5a2/0x8c0 [ 821.123124][T10125] ? memset+0x1e/0x40 [ 821.127146][T10125] ? __sys_sendmsg_sock+0x30/0x30 [ 821.132217][T10125] ? import_iovec+0x6f/0xa0 [ 821.136754][T10125] ___sys_sendmsg+0x1f0/0x260 [ 821.141465][T10125] ? __sys_sendmsg+0x250/0x250 [ 821.146266][T10125] ? trace_event_raw_event_lock+0x250/0x250 [ 821.152223][T10125] ? __fdget+0x18b/0x210 [ 821.156521][T10125] __se_sys_sendmsg+0x190/0x250 [ 821.161454][T10125] ? __x64_sys_sendmsg+0x80/0x80 [ 821.166508][T10125] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 821.172565][T10125] ? lockdep_hardirqs_on+0x94/0x140 [ 821.177844][T10125] do_syscall_64+0x4c/0xa0 [ 821.182295][T10125] ? clear_bhb_loop+0x30/0x80 [ 821.187134][T10125] ? clear_bhb_loop+0x30/0x80 [ 821.192017][T10125] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 821.197949][T10125] RIP: 0033:0x7fbd3c7b2c29 [ 821.202421][T10125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 821.222282][T10125] RSP: 002b:00007fbd3aa1a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 821.230755][T10125] RAX: ffffffffffffffda RBX: 00007fbd3c9f9fa0 RCX: 00007fbd3c7b2c29 [ 821.238767][T10125] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 821.246776][T10125] RBP: 00007fbd3c835e41 R08: 0000000000000000 R09: 0000000000000000 [ 821.254763][T10125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 821.262744][T10125] R13: 00007fbd3c9fa038 R14: 00007fbd3c9f9fa0 R15: 00007fff76dd7de8 [ 821.270757][T10125] [ 821.667764][T10145] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.18599'. [ 821.762935][T10145] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô' [ 821.770907][T10145] CPU: 0 PID: 10145 Comm: syz.0.18599 Not tainted syzkaller #0 [ 821.778765][T10145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 821.789210][T10145] Call Trace: [ 821.792547][T10145] [ 821.795655][T10145] dump_stack_lvl+0x168/0x230 [ 821.800413][T10145] ? show_regs_print_info+0x20/0x20 [ 821.805675][T10145] ? load_image+0x3b0/0x3b0 [ 821.810294][T10145] sysfs_warn_dup+0x8a/0xa0 [ 821.814862][T10145] sysfs_do_create_link_sd+0xc0/0x110 [ 821.820429][T10145] device_add+0x7ed/0xfb0 [ 821.825387][T10145] wiphy_register+0x1d67/0x2b20 [ 821.830598][T10145] ? cfg80211_event_work+0x40/0x40 [ 821.835773][T10145] ? minstrel_ht_alloc+0x808/0x980 [ 821.840965][T10145] ? ieee80211_init_rate_ctrl_alg+0x55e/0x5e0 [ 821.847345][T10145] ieee80211_register_hw+0x29b1/0x39d0 [ 821.852909][T10145] ? ieee80211_tasklet_handler+0x20/0x20 [ 821.858620][T10145] ? rcu_is_watching+0x11/0xa0 [ 821.863566][T10145] ? memset+0x1e/0x40 [ 821.867610][T10145] ? hrtimer_init+0x10c/0x220 [ 821.872515][T10145] mac80211_hwsim_new_radio+0x20d3/0x4080 [ 821.878347][T10145] hwsim_new_radio_nl+0xa6f/0xc40 [ 821.883473][T10145] genl_rcv_msg+0xbc6/0xf40 [ 821.888307][T10145] ? genl_bind+0x370/0x370 [ 821.892824][T10145] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 821.898611][T10145] ? verify_lock_unused+0x140/0x140 [ 821.903907][T10145] ? perf_trace_run_bpf_submit+0xf3/0x1c0 [ 821.909708][T10145] ? perf_trace_lock+0x2ec/0x370 [ 821.914719][T10145] ? hwsim_tx_info_frame_received_nl+0x1010/0x1010 [ 821.921320][T10145] netlink_rcv_skb+0x1e0/0x430 [ 821.926144][T10145] ? genl_bind+0x370/0x370 [ 821.930763][T10145] ? netlink_ack+0xb60/0xb60 [ 821.935507][T10145] ? __lock_acquire+0x7c60/0x7c60 [ 821.940865][T10145] ? preempt_count_add+0x8d/0x190 [ 821.946132][T10145] ? down_read+0x1aa/0x2e0 [ 821.950626][T10145] genl_rcv+0x24/0x40 [ 821.954661][T10145] netlink_unicast+0x774/0x920 [ 821.959506][T10145] netlink_sendmsg+0x8ab/0xbc0 [ 821.964900][T10145] ? netlink_getsockopt+0x560/0x560 [ 821.970167][T10145] ? aa_sock_msg_perm+0x94/0x150 [ 821.975208][T10145] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 821.980824][T10145] ? security_socket_sendmsg+0x7c/0xa0 [ 821.986489][T10145] ? netlink_getsockopt+0x560/0x560 [ 821.991858][T10145] ____sys_sendmsg+0x5a2/0x8c0 [ 821.996829][T10145] ? memset+0x1e/0x40 [ 822.001106][T10145] ? __sys_sendmsg_sock+0x30/0x30 [ 822.007145][T10145] ? import_iovec+0x6f/0xa0 [ 822.011972][T10145] ___sys_sendmsg+0x1f0/0x260 [ 822.016859][T10145] ? __sys_sendmsg+0x250/0x250 [ 822.021719][T10145] ? trace_event_raw_event_lock+0x250/0x250 [ 822.027823][T10145] ? __fdget+0x18b/0x210 [ 822.032274][T10145] __se_sys_sendmsg+0x190/0x250 [ 822.037201][T10145] ? __x64_sys_sendmsg+0x80/0x80 [ 822.042235][T10145] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 822.048319][T10145] ? lockdep_hardirqs_on+0x94/0x140 [ 822.053809][T10145] do_syscall_64+0x4c/0xa0 [ 822.058280][T10145] ? clear_bhb_loop+0x30/0x80 [ 822.063132][T10145] ? clear_bhb_loop+0x30/0x80 [ 822.067907][T10145] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 822.073954][T10145] RIP: 0033:0x7ff0ddaafc29 [ 822.078544][T10145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 822.098933][T10145] RSP: 002b:00007ff0dbd17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 822.108006][T10145] RAX: ffffffffffffffda RBX: 00007ff0ddcf6fa0 RCX: 00007ff0ddaafc29 [ 822.116132][T10145] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004 [ 822.124159][T10145] RBP: 00007ff0ddb32e41 R08: 0000000000000000 R09: 0000000000000000 [ 822.132185][T10145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 822.140203][T10145] R13: 00007ff0ddcf7038 R14: 00007ff0ddcf6fa0 R15: 00007ffdce5416b8 [ 822.148268][T10145] [ 822.182825][T10149] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.18592'. [ 822.302553][T10155] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1 [ 823.001965][T10178] netlink: 'syz.1.18607': attribute type 4 has an invalid length. [ 823.050018][T10178] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.18607'. [ 826.076015][T10241] netlink: 11562 bytes leftover after parsing attributes in process `syz.3.18635'. [ 826.077680][T10239] netlink: 'syz.2.18634': attribute type 4 has an invalid length. [ 826.178086][T10239] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.18634'. [ 826.323314][T10249] netlink: 16255 bytes leftover after parsing attributes in process `syz.3.18638'. [ 828.214072][T10296] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.18661'. [ 828.955598][T10325] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.18674'. [ 830.466610][T10397] netlink: 'syz.0.18708': attribute type 3 has an invalid length. [ 830.611327][T10397] netlink: 105116 bytes leftover after parsing attributes in process `syz.0.18708'. [ 830.872367][T10417] netlink: 64 bytes leftover after parsing attributes in process `syz.4.18717'. [ 833.160394][T10488] netlink: 399 bytes leftover after parsing attributes in process `syz.2.18749'. [ 833.327338][T10495] netlink: 'syz.1.18756': attribute type 1 has an invalid length. [ 833.345785][T10495] netlink: 'syz.1.18756': attribute type 3 has an invalid length. [ 833.365889][T10495] netlink: 132 bytes leftover after parsing attributes in process `syz.1.18756'. [ 833.399825][T10497] netlink: 14601 bytes leftover after parsing attributes in process `syz.4.18757'. [ 833.769483][T10522] netlink: 'syz.3.18766': attribute type 3 has an invalid length. [ 833.801252][T10522] netlink: 'syz.3.18766': attribute type 1 has an invalid length. [ 833.823736][T10522] netlink: 193404 bytes leftover after parsing attributes in process `syz.3.18766'. [ 834.308289][T10540] netlink: 132 bytes leftover after parsing attributes in process `syz.3.18779'. [ 834.745230][T10558] netlink: 'syz.2.18784': attribute type 3 has an invalid length. [ 834.764894][T10558] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.18784'. [ 836.217264][T10596] netlink: 'syz.2.18803': attribute type 3 has an invalid length. [ 836.239765][T10596] netlink: 'syz.2.18803': attribute type 1 has an invalid length. [ 836.259458][T10596] netlink: 193404 bytes leftover after parsing attributes in process `syz.2.18803'. [ 836.339255][T10603] netlink: 132 bytes leftover after parsing attributes in process `syz.4.18808'. [ 836.485111][T10612] netlink: 399 bytes leftover after parsing attributes in process `syz.0.18810'. [ 837.121835][T10627] netlink: 'syz.4.18818': attribute type 1 has an invalid length. [ 837.134285][T10627] netlink: 'syz.4.18818': attribute type 3 has an invalid length. [ 837.143034][T10627] netlink: 132 bytes leftover after parsing attributes in process `syz.4.18818'. [ 837.528543][T10633] netlink: 'syz.4.18821': attribute type 3 has an invalid length. [ 837.537094][T10633] netlink: 'syz.4.18821': attribute type 1 has an invalid length. [ 837.632571][T10639] netlink: 'syz.3.18833': attribute type 6 has an invalid length. [ 837.866197][T10654] netlink: 'syz.4.18828': attribute type 21 has an invalid length. [ 838.806759][T10697] __nla_validate_parse: 7 callbacks suppressed [ 838.806781][T10697] netlink: 2 bytes leftover after parsing attributes in process `syz.2.18851'. [ 838.931379][T10697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 838.991127][T10697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 839.035757][T10697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 839.069145][T10697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 839.133461][T10697] device batadv_slave_1 entered promiscuous mode [ 839.273588][T10712] netlink: 'syz.4.18859': attribute type 6 has an invalid length. [ 839.316006][T10712] netlink: 164 bytes leftover after parsing attributes in process `syz.4.18859'. [ 840.248320][T10740] netlink: 2 bytes leftover after parsing attributes in process `syz.0.18871'. [ 840.345587][T10740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 840.403910][T10740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 840.429075][T10740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 840.440863][T10740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 840.453432][T10740] device batadv_slave_1 entered promiscuous mode [ 840.460248][T10742] netlink: 'syz.3.18872': attribute type 21 has an invalid length. [ 840.471128][T10742] netlink: 16166 bytes leftover after parsing attributes in process `syz.3.18872'. [ 841.425689][T10772] netlink: 'syz.0.18887': attribute type 6 has an invalid length. [ 841.444530][T10772] netlink: 164 bytes leftover after parsing attributes in process `syz.0.18887'. [ 842.041450][T10803] netlink: 'syz.2.18902': attribute type 6 has an invalid length. [ 842.065252][T10803] netlink: 164 bytes leftover after parsing attributes in process `syz.2.18902'. [ 842.657633][T10833] netlink: 'syz.1.18914': attribute type 6 has an invalid length. [ 842.698573][T10833] netlink: 164 bytes leftover after parsing attributes in process `syz.1.18914'. [ 842.876402][T10843] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.18921'. [ 842.959306][T10847] netlink: 'syz.1.18924': attribute type 10 has an invalid length. [ 842.962247][T10843] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 843.051081][T10843] openvswitch: netlink: Message has 1 unknown bytes. [ 843.547061][T10873] netlink: 'syz.1.18934': attribute type 6 has an invalid length. [ 843.580750][T10873] netlink: 164 bytes leftover after parsing attributes in process `syz.1.18934'. [ 843.890411][T10890] netlink: 'syz.3.18946': attribute type 1 has an invalid length. [ 843.944755][T10890] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.18946'. [ 843.985075][T10890] netlink: 'syz.3.18946': attribute type 1 has an invalid length. [ 845.271619][T10926] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.18961'. [ 845.305089][T10926] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 845.312277][T10925] netlink: 'syz.2.18962': attribute type 21 has an invalid length. [ 845.320062][T10926] openvswitch: netlink: Message has 1 unknown bytes. [ 845.415925][T10932] netlink: 'syz.0.18964': attribute type 1 has an invalid length. [ 845.453003][T10932] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.18964'. [ 845.475290][T10932] netlink: 'syz.0.18964': attribute type 1 has an invalid length. [ 845.642595][T10949] netlink: 112860 bytes leftover after parsing attributes in process `syz.2.18984'. [ 845.811928][T10963] netlink: 132 bytes leftover after parsing attributes in process `syz.3.18980'. [ 846.207898][T10990] netlink: 164 bytes leftover after parsing attributes in process `syz.2.18995'. [ 846.337521][T10998] netlink: 69544 bytes leftover after parsing attributes in process `syz.2.18998'. [ 846.938226][T11018] validate_nla: 8 callbacks suppressed [ 846.938265][T11018] netlink: 'syz.4.19009': attribute type 6 has an invalid length. [ 846.998255][T11018] netlink: 164 bytes leftover after parsing attributes in process `syz.4.19009'. [ 848.722681][T11077] netlink: 'syz.0.19034': attribute type 1 has an invalid length. [ 848.730562][T11077] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.19034'. [ 848.856871][T11077] netlink: 'syz.0.19034': attribute type 1 has an invalid length. [ 848.989786][T11088] netlink: 56 bytes leftover after parsing attributes in process `syz.1.19038'. [ 850.315032][T11112] netlink: 36 bytes leftover after parsing attributes in process `syz.2.19054'. [ 850.555105][T11121] netlink: 'syz.4.19058': attribute type 1 has an invalid length. [ 850.650441][T11121] netlink: 112860 bytes leftover after parsing attributes in process `syz.4.19058'. [ 850.767092][T11121] netlink: 'syz.4.19058': attribute type 1 has an invalid length. [ 851.140466][T11128] netlink: 56 bytes leftover after parsing attributes in process `syz.3.19060'. [ 851.499807][T11142] netlink: 'syz.2.19077': attribute type 41 has an invalid length. [ 851.516918][T11142] netlink: 40 bytes leftover after parsing attributes in process `syz.2.19077'. [ 851.691758][T11153] netlink: 38831 bytes leftover after parsing attributes in process `syz.3.19071'. [ 852.186654][T11163] netlink: 'syz.3.19079': attribute type 153 has an invalid length. [ 852.238198][T11163] netlink: 69544 bytes leftover after parsing attributes in process `syz.3.19079'. [ 852.567903][T11167] netlink: 56 bytes leftover after parsing attributes in process `syz.4.19081'. [ 852.570309][T11168] netlink: 'syz.2.19080': attribute type 1 has an invalid length. [ 852.606642][T11168] netlink: 112860 bytes leftover after parsing attributes in process `syz.2.19080'. [ 852.618733][T11168] netlink: 'syz.2.19080': attribute type 1 has an invalid length. [ 852.890475][T11186] netlink: 38831 bytes leftover after parsing attributes in process `syz.1.19088'. [ 853.184819][T11198] netlink: 'syz.4.19095': attribute type 153 has an invalid length. [ 853.965682][T11242] netlink: 'syz.0.19112': attribute type 153 has an invalid length. [ 853.997013][T11242] __nla_validate_parse: 4 callbacks suppressed [ 853.997049][T11242] netlink: 69544 bytes leftover after parsing attributes in process `syz.0.19112'. [ 854.438311][T11264] netlink: 'syz.1.19126': attribute type 3 has an invalid length. [ 854.485319][T11264] netlink: 'syz.1.19126': attribute type 1 has an invalid length. [ 854.532460][T11264] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.19126'. [ 855.147275][T11292] netlink: 'syz.1.19134': attribute type 153 has an invalid length. [ 855.230432][T11292] netlink: 69544 bytes leftover after parsing attributes in process `syz.1.19134'. [ 856.537340][T11332] netlink: 'syz.0.19155': attribute type 3 has an invalid length. [ 856.557455][T11332] netlink: 'syz.0.19155': attribute type 1 has an invalid length. [ 856.579026][T11332] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.19155'. [ 856.699781][T11340] netlink: 184 bytes leftover after parsing attributes in process `syz.4.19159'. [ 857.866184][T11376] netlink: 184 bytes leftover after parsing attributes in process `syz.3.19175'. [ 859.286241][T11420] netlink: 'syz.2.19195': attribute type 153 has an invalid length. [ 859.312557][T11420] netlink: 69544 bytes leftover after parsing attributes in process `syz.2.19195'. [ 859.598042][T11439] netlink: 'syz.3.19204': attribute type 29 has an invalid length. [ 859.609762][T11439] netlink: 44 bytes leftover after parsing attributes in process `syz.3.19204'. [ 859.619631][T11439] netlink: 'syz.3.19204': attribute type 29 has an invalid length. [ 859.638860][T11439] netlink: 44 bytes leftover after parsing attributes in process `syz.3.19204'. [ 859.660520][T11434] netlink: 'syz.3.19204': attribute type 29 has an invalid length. [ 859.684733][T11434] netlink: 44 bytes leftover after parsing attributes in process `syz.3.19204'. [ 859.818694][T11454] netlink: 'syz.1.19213': attribute type 153 has an invalid length. [ 859.854060][T11454] netlink: 69544 bytes leftover after parsing attributes in process `syz.1.19213'. [ 860.255922][T11485] netlink: 'syz.1.19224': attribute type 29 has an invalid length. [ 860.268726][T11485] netlink: 44 bytes leftover after parsing attributes in process `syz.1.19224'. [ 860.298744][T11485] netlink: 'syz.1.19224': attribute type 29 has an invalid length. [ 860.318133][T11485] netlink: 44 bytes leftover after parsing attributes in process `syz.1.19224'. [ 860.512034][T11495] netlink: 'syz.4.19228': attribute type 153 has an invalid length. [ 860.543625][T11495] netlink: 69544 bytes leftover after parsing attributes in process `syz.4.19228'. [ 860.784271][T11510] netlink: 'syz.2.19239': attribute type 22 has an invalid length. [ 860.802625][T11510] netlink: 4 bytes leftover after parsing attributes in process `syz.2.19239'. [ 861.165154][T11535] netlink: 'syz.0.19245': attribute type 29 has an invalid length. [ 861.186374][T11535] netlink: 44 bytes leftover after parsing attributes in process `syz.0.19245'. [ 863.457306][T11609] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 864.605360][T11659] __nla_validate_parse: 9 callbacks suppressed [ 864.605378][T11659] netlink: 134268 bytes leftover after parsing attributes in process `syz.3.19305'. [ 864.853927][T11670] netlink: 129384 bytes leftover after parsing attributes in process `syz.4.19311'. [ 864.965063][T11674] validate_nla: 6 callbacks suppressed [ 864.965104][T11674] netlink: 'syz.1.19312': attribute type 1 has an invalid length. [ 865.043564][T11674] netlink: 116376 bytes leftover after parsing attributes in process `syz.1.19312'. [ 865.329714][T11688] netlink: 'syz.3.19320': attribute type 3 has an invalid length. [ 865.358112][T11690] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.19321'. [ 865.397399][T11688] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.19320'. [ 865.918272][T11715] netlink: 'syz.3.19331': attribute type 41 has an invalid length. [ 865.944578][T11715] netlink: 40 bytes leftover after parsing attributes in process `syz.3.19331'. [ 866.016087][T11715] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 866.083824][T28712] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 866.193921][T11724] netlink: 'syz.4.19347': attribute type 7 has an invalid length. [ 867.053301][T11757] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.19350'. [ 867.094162][T11759] netlink: 'syz.0.19349': attribute type 41 has an invalid length. [ 867.122025][T11759] netlink: 40 bytes leftover after parsing attributes in process `syz.0.19349'. [ 867.142804][T11759] batman_adv: batadv0: Interface activated: hsr_slave_1 [ 867.171530][T11759] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 867.196703][T28724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 867.207788][T11763] netlink: 'syz.3.19352': attribute type 7 has an invalid length. [ 867.766481][T11789] netlink: 'syz.4.19367': attribute type 3 has an invalid length. [ 867.794872][T11789] netlink: 199824 bytes leftover after parsing attributes in process `syz.4.19367'. [ 867.979157][T11795] netlink: 'syz.4.19368': attribute type 41 has an invalid length. [ 868.017653][T11795] netlink: 40 bytes leftover after parsing attributes in process `syz.4.19368'. [ 868.057761][T11795] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 868.110862][T11796] netlink: 'syz.2.19369': attribute type 7 has an invalid length. [ 870.213802][ T1428] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.220180][ T1428] ieee802154 phy1 wpan1: encryption failed: -22 [ 870.474338][T11900] netlink: 'syz.1.19413': attribute type 41 has an invalid length. [ 870.496253][T11900] netlink: 40 bytes leftover after parsing attributes in process `syz.1.19413'. [ 870.525340][T11900] batman_adv: batadv0: Interface activated: hsr_slave_1 [ 870.534839][T11900] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 870.569754][T11902] netlink: 'syz.4.19416': attribute type 1 has an invalid length. [ 870.583835][T11902] netlink: 116376 bytes leftover after parsing attributes in process `syz.4.19416'. [ 870.614218][T28728] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 870.641257][T11906] netlink: 'syz.0.19417': attribute type 7 has an invalid length. [ 870.704099][T11909] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.19419'. [ 871.184082][T11934] netlink: 'syz.0.19432': attribute type 41 has an invalid length. [ 871.241568][T11934] netlink: 40 bytes leftover after parsing attributes in process `syz.0.19432'. [ 871.269146][T11934] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 871.882021][T11975] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.19452'. [ 872.891843][T12013] netlink: 'syz.1.19477': attribute type 1 has an invalid length. [ 872.922148][T12013] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.19477'. [ 872.949337][T12016] netlink: 16178 bytes leftover after parsing attributes in process `syz.4.19465'. [ 873.137082][T12026] netlink: 'syz.1.19470': attribute type 41 has an invalid length. [ 873.149063][T12026] netlink: 40 bytes leftover after parsing attributes in process `syz.1.19470'. [ 873.165612][T12026] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 874.507338][T12080] netlink: 'syz.4.19496': attribute type 21 has an invalid length. [ 875.320578][T12125] netlink: 'syz.0.19515': attribute type 1 has an invalid length. [ 875.339192][T12125] netlink: 16098 bytes leftover after parsing attributes in process `syz.0.19515'. [ 875.800654][T12145] netlink: 'syz.0.19525': attribute type 21 has an invalid length. [ 876.530870][T12178] netlink: 'syz.2.19542': attribute type 21 has an invalid length. [ 877.386604][T12225] netlink: 'syz.4.19564': attribute type 41 has an invalid length. [ 877.422902][T12225] netlink: 40 bytes leftover after parsing attributes in process `syz.4.19564'. [ 877.479197][T12225] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 877.728872][T12241] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.19570'. [ 877.779842][T12243] netlink: 'syz.0.19571': attribute type 12 has an invalid length. [ 877.840663][T12243] netlink: 'syz.0.19571': attribute type 11 has an invalid length. [ 877.913119][T12243] netlink: 178840 bytes leftover after parsing attributes in process `syz.0.19571'. [ 878.170654][T12259] netlink: 'syz.0.19578': attribute type 41 has an invalid length. [ 878.199149][T12259] netlink: 40 bytes leftover after parsing attributes in process `syz.0.19578'. [ 878.256338][T12259] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 878.471541][T12270] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.19583'. [ 878.844653][T12288] netlink: 'syz.1.19591': attribute type 12 has an invalid length. [ 878.854654][T12288] netlink: 'syz.1.19591': attribute type 11 has an invalid length. [ 878.864585][T12288] netlink: 178840 bytes leftover after parsing attributes in process `syz.1.19591'. [ 878.953725][T12293] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.19594'. [ 879.592862][T12326] netlink: 'syz.4.19607': attribute type 12 has an invalid length. [ 879.630476][T12330] netlink: 'syz.0.19618': attribute type 41 has an invalid length. [ 879.639305][T12326] netlink: 'syz.4.19607': attribute type 11 has an invalid length. [ 879.652162][T12326] netlink: 178840 bytes leftover after parsing attributes in process `syz.4.19607'. [ 879.652680][T12330] netlink: 40 bytes leftover after parsing attributes in process `syz.0.19618'. [ 879.722097][T12330] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 881.134161][T12370] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.19628'. [ 882.781618][T12433] netlink: 'syz.2.19650': attribute type 2 has an invalid length. [ 882.792720][T12433] netlink: 'syz.2.19650': attribute type 1 has an invalid length. [ 882.802074][T12434] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.19652'. [ 884.252296][T12465] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.19665'. [ 884.266529][T12467] netlink: 'syz.3.19664': attribute type 3 has an invalid length. [ 884.294411][T12467] netlink: 13435 bytes leftover after parsing attributes in process `syz.3.19664'. [ 884.356075][T12474] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.19667'. [ 885.248390][T12506] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.19692'. [ 885.389395][T12516] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.19683'. [ 886.220491][T12524] netlink: 'syz.0.19688': attribute type 3 has an invalid length. [ 886.253072][T12524] netlink: 13435 bytes leftover after parsing attributes in process `syz.0.19688'. [ 886.621247][T12545] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.19699'. [ 886.939944][T12566] netlink: 'syz.1.19708': attribute type 3 has an invalid length. [ 886.972362][T12566] netlink: 13435 bytes leftover after parsing attributes in process `syz.1.19708'. [ 887.549206][T12593] netlink: 16255 bytes leftover after parsing attributes in process `syz.4.19721'. [ 887.715765][T12603] netlink: 'syz.2.19724': attribute type 29 has an invalid length. [ 887.745160][T12603] netlink: 'syz.2.19724': attribute type 29 has an invalid length. [ 887.784680][T12609] netlink: 'syz.2.19724': attribute type 29 has an invalid length. [ 888.381782][T12633] netlink: 16255 bytes leftover after parsing attributes in process `syz.3.19736'. [ 888.558689][T12641] netlink: 'syz.1.19739': attribute type 29 has an invalid length. [ 888.590627][T12641] netlink: 'syz.1.19739': attribute type 29 has an invalid length. [ 888.609566][T12644] netlink: 'syz.1.19739': attribute type 29 has an invalid length. [ 889.336787][T12676] netlink: 'syz.4.19756': attribute type 29 has an invalid length. [ 889.360009][T12679] netlink: 56 bytes leftover after parsing attributes in process `syz.2.19757'. [ 889.369856][T12676] netlink: 'syz.4.19756': attribute type 29 has an invalid length. [ 889.382062][T12679] netlink: 56 bytes leftover after parsing attributes in process `syz.2.19757'. [ 889.394469][T12676] netlink: 'syz.4.19756': attribute type 29 has an invalid length. [ 889.405028][T12679] netlink: 56 bytes leftover after parsing attributes in process `syz.2.19757'. [ 889.543081][T12683] netlink: 'syz.4.19758': attribute type 3 has an invalid length. [ 889.571182][T12683] netlink: 105116 bytes leftover after parsing attributes in process `syz.4.19758'. [ 889.721595][T12688] ref_ctr_offset mismatch. inode: 0x4ced offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x7602 [ 889.880590][T12698] netlink: 'syz.4.19763': attribute type 41 has an invalid length. [ 890.036139][T12710] netlink: 56 bytes leftover after parsing attributes in process `syz.3.19769'. [ 890.091878][T12710] netlink: 56 bytes leftover after parsing attributes in process `syz.3.19769'. [ 890.124636][T12715] netlink: 'syz.2.19771': attribute type 3 has an invalid length. [ 890.145634][T12714] netlink: 56 bytes leftover after parsing attributes in process `syz.3.19769'. [ 890.156086][T12715] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.19771'. [ 890.328611][T12722] netlink: 'syz.0.19775': attribute type 29 has an invalid length. [ 891.376757][T12739] netlink: 164 bytes leftover after parsing attributes in process `syz.1.19793'. [ 893.840502][T12844] __nla_validate_parse: 6 callbacks suppressed [ 893.840520][T12844] netlink: 763 bytes leftover after parsing attributes in process `syz.2.19827'. [ 893.881139][T12841] validate_nla: 8 callbacks suppressed [ 893.881156][T12841] netlink: 'syz.1.19824': attribute type 3 has an invalid length. [ 893.897350][T12841] netlink: 105116 bytes leftover after parsing attributes in process `syz.1.19824'. [ 894.062959][T12853] netlink: 'syz.1.19831': attribute type 29 has an invalid length. [ 894.125048][T12853] netlink: 'syz.1.19831': attribute type 29 has an invalid length. [ 894.158702][T12857] netlink: 'syz.1.19831': attribute type 29 has an invalid length. [ 894.297501][T12868] netlink: 'syz.3.19840': attribute type 4 has an invalid length. [ 894.309589][T12868] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.19840'. [ 894.661607][T12882] sock: sock_set_timeout: `syz.2.19847' (pid 12882) tries to set negative timeout [ 895.786136][T12937] netlink: 'syz.4.19874': attribute type 4 has an invalid length. [ 895.804688][T12937] netlink: 199824 bytes leftover after parsing attributes in process `syz.4.19874'. [ 895.923480][T12941] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 897.725112][T13029] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 898.469064][T13068] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 899.308507][T13112] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 899.944716][T13150] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 901.232209][T13227] netlink: 14560 bytes leftover after parsing attributes in process `syz.4.20006'. [ 901.629213][T13246] netlink: 'syz.3.20023': attribute type 41 has an invalid length. [ 901.647208][T13246] netlink: 40 bytes leftover after parsing attributes in process `syz.3.20023'. [ 901.705042][T13246] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 902.094220][T13280] netlink: 'syz.0.20029': attribute type 21 has an invalid length. [ 902.106334][T13280] netlink: 176 bytes leftover after parsing attributes in process `syz.0.20029'. [ 902.200107][T13287] netlink: 'syz.0.20032': attribute type 41 has an invalid length. [ 902.217843][T13287] netlink: 40 bytes leftover after parsing attributes in process `syz.0.20032'. [ 902.227929][T13287] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 902.262216][T13289] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.20033'. [ 902.508381][T13303] netlink: 'syz.1.20042': attribute type 3 has an invalid length. [ 902.524021][T13303] netlink: 105116 bytes leftover after parsing attributes in process `syz.1.20042'. [ 902.714589][T13315] netlink: 1057 bytes leftover after parsing attributes in process `syz.1.20049'. [ 902.802938][T13323] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.20061'. [ 902.812668][T13322] netlink: 'syz.2.20051': attribute type 41 has an invalid length. [ 902.835365][T13322] netlink: 40 bytes leftover after parsing attributes in process `syz.2.20051'. [ 902.843067][T13325] netlink: 'syz.3.20062': attribute type 10 has an invalid length. [ 902.850068][T13322] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 902.867471][T13325] netlink: 210880 bytes leftover after parsing attributes in process `syz.3.20062'. [ 903.948305][T13376] netlink: 'syz.2.20071': attribute type 21 has an invalid length. [ 904.199136][T13391] netlink: 'syz.1.20078': attribute type 10 has an invalid length. [ 904.693164][T13411] netlink: 'syz.3.20089': attribute type 21 has an invalid length. [ 904.991857][T13427] netlink: 'syz.2.20095': attribute type 10 has an invalid length. [ 905.234088][T13445] openvswitch: netlink: Tunnel attr 0 has unexpected len 380 expected 8 [ 906.609972][T13477] __nla_validate_parse: 7 callbacks suppressed [ 906.609989][T13477] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.20118'. [ 906.632055][T13479] validate_nla: 1 callbacks suppressed [ 906.632070][T13479] netlink: 'syz.1.20116': attribute type 1 has an invalid length. [ 906.661069][T13479] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.20116'. [ 906.788127][T13490] netlink: 60 bytes leftover after parsing attributes in process `syz.2.20123'. [ 907.395124][T13513] netlink: 'syz.3.20135': attribute type 1 has an invalid length. [ 907.403332][T13513] netlink: 16255 bytes leftover after parsing attributes in process `syz.3.20135'. [ 907.831051][T13523] netlink: 60 bytes leftover after parsing attributes in process `syz.1.20140'. [ 907.840380][T13526] netlink: 10 bytes leftover after parsing attributes in process `syz.0.20141'. [ 908.068181][T13541] netlink: 'syz.2.20148': attribute type 1 has an invalid length. [ 908.083688][T13541] netlink: 16255 bytes leftover after parsing attributes in process `syz.2.20148'. [ 909.208108][T13567] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.20155'. [ 909.219542][T13567] openvswitch: netlink: Tunnel attr 0 has unexpected len 380 expected 8 [ 909.293509][T13569] netlink: 'syz.1.20159': attribute type 9 has an invalid length. [ 914.063933][T13765] netlink: 'syz.2.20252': attribute type 9 has an invalid length. [ 914.312818][T13782] netlink: 'syz.0.20261': attribute type 46 has an invalid length. [ 916.204424][T13855] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.20297'. [ 916.249714][T13855] netlink: del zone limit has 8 unknown bytes [ 916.463793][T13870] netlink: 'syz.1.20303': attribute type 46 has an invalid length. [ 916.779029][T13886] netlink: 'syz.4.20321': attribute type 46 has an invalid length. [ 917.556528][T13916] netlink: 'syz.3.20326': attribute type 46 has an invalid length. [ 918.961257][T13981] netlink: 'syz.1.20354': attribute type 12 has an invalid length. [ 919.000805][T13981] netlink: 132 bytes leftover after parsing attributes in process `syz.1.20354'. [ 919.446252][T14001] netlink: 'syz.2.20365': attribute type 21 has an invalid length. [ 919.822852][T14024] netlink: 'syz.0.20377': attribute type 29 has an invalid length. [ 919.841247][T14024] netlink: 'syz.0.20377': attribute type 29 has an invalid length. [ 919.867074][T14024] netlink: 'syz.0.20377': attribute type 29 has an invalid length. [ 920.325160][T14048] netlink: 'syz.2.20389': attribute type 12 has an invalid length. [ 920.333981][T14048] netlink: 132 bytes leftover after parsing attributes in process `syz.2.20389'. [ 920.670114][T14065] netlink: 16054 bytes leftover after parsing attributes in process `syz.4.20398'. [ 921.009460][T14088] netlink: 'syz.4.20407': attribute type 12 has an invalid length. [ 921.057078][T14088] netlink: 132 bytes leftover after parsing attributes in process `syz.4.20407'. [ 921.260071][T14094] netlink: 'syz.1.20410': attribute type 21 has an invalid length. [ 922.143102][T14141] netlink: 'syz.3.20432': attribute type 29 has an invalid length. [ 922.234694][T14141] netlink: 'syz.3.20432': attribute type 29 has an invalid length. [ 922.265929][T14147] netlink: 'syz.3.20432': attribute type 29 has an invalid length. [ 922.659698][T14171] netlink: 5 bytes leftover after parsing attributes in process `syz.1.20443'. [ 922.703190][T14174] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.20444'. [ 923.121648][T14193] netlink: 132 bytes leftover after parsing attributes in process `syz.0.20452'. [ 923.389518][T14211] netlink: 199824 bytes leftover after parsing attributes in process `syz.4.20464'. [ 923.430769][T14210] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.20463'. [ 923.634241][T14213] wlan1: mtu greater than device maximum [ 924.627216][T14265] wlan1: mtu greater than device maximum [ 924.686449][T14271] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.20493'. [ 924.929437][T14285] validate_nla: 12 callbacks suppressed [ 924.929476][T14285] netlink: 'syz.2.20499': attribute type 1 has an invalid length. [ 924.949461][T14285] netlink: 5 bytes leftover after parsing attributes in process `syz.2.20499'. [ 925.179764][T14303] wlan1: mtu greater than device maximum [ 925.638849][T14325] netlink: 'syz.0.20516': attribute type 21 has an invalid length. [ 925.640500][T14328] netlink: 'syz.4.20517': attribute type 1 has an invalid length. [ 925.671952][T14328] netlink: 5 bytes leftover after parsing attributes in process `syz.4.20517'. [ 925.703951][T14325] netlink: 156 bytes leftover after parsing attributes in process `syz.0.20516'. [ 926.347686][T14363] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.20536'. [ 926.709288][T14370] netlink: 'syz.0.20535': attribute type 1 has an invalid length. [ 926.886436][T14390] netlink: 'syz.1.20546': attribute type 3 has an invalid length. [ 927.365239][T14419] netlink: 'syz.3.20557': attribute type 1 has an invalid length. [ 927.615408][T14435] netlink: 'syz.4.20578': attribute type 1 has an invalid length. [ 927.677326][T14435] __nla_validate_parse: 3 callbacks suppressed [ 927.677363][T14435] netlink: 5 bytes leftover after parsing attributes in process `syz.4.20578'. [ 927.826995][T14449] netlink: 'syz.0.20575': attribute type 10 has an invalid length. [ 927.835218][T14449] netlink: 152 bytes leftover after parsing attributes in process `syz.0.20575'. [ 928.144145][T14469] netlink: 'syz.4.20583': attribute type 3 has an invalid length. [ 928.195079][T14469] netlink: 105116 bytes leftover after parsing attributes in process `syz.4.20583'. [ 928.247798][T14475] netlink: 'syz.1.20588': attribute type 1 has an invalid length. [ 928.274223][T14475] netlink: 5 bytes leftover after parsing attributes in process `syz.1.20588'. [ 928.336560][T14479] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.20589'. [ 928.346312][T14481] netlink: 13435 bytes leftover after parsing attributes in process `syz.3.20591'. [ 928.747415][T14498] netlink: 156 bytes leftover after parsing attributes in process `syz.3.20599'. [ 928.863353][T14504] netlink: 5 bytes leftover after parsing attributes in process `syz.4.20611'. [ 928.900305][T14506] netlink: 105116 bytes leftover after parsing attributes in process `syz.3.20602'. [ 929.540152][T14544] netlink: 13435 bytes leftover after parsing attributes in process `syz.0.20618'. [ 929.915766][T14570] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 929.925173][T14570] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 929.974096][T14577] validate_nla: 8 callbacks suppressed [ 929.974114][T14577] netlink: 'syz.1.20637': attribute type 3 has an invalid length. [ 930.126420][T14581] netlink: 'syz.3.20639': attribute type 29 has an invalid length. [ 930.229875][T14581] netlink: 'syz.3.20639': attribute type 29 has an invalid length. [ 930.258871][T14584] netlink: 'syz.3.20639': attribute type 29 has an invalid length. [ 931.653405][ T1428] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.659735][ T1428] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.787677][T14667] netlink: 'syz.2.20677': attribute type 29 has an invalid length. [ 931.796814][T14667] netlink: 'syz.2.20677': attribute type 29 has an invalid length. [ 931.809731][T14667] netlink: 'syz.2.20677': attribute type 29 has an invalid length. [ 932.604127][T14710] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 932.642060][T14710] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 933.058046][T14732] __nla_validate_parse: 9 callbacks suppressed [ 933.058087][T14732] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.20709'. [ 934.239526][T14786] netlink: 763 bytes leftover after parsing attributes in process `syz.4.20744'. [ 934.970900][T14818] netlink: 'syz.1.20750': attribute type 10 has an invalid length. [ 934.980304][T14818] device macvlan0 entered promiscuous mode [ 936.216331][T14883] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.20780'. [ 936.887355][T14906] netlink: 144316 bytes leftover after parsing attributes in process `syz.0.20801'. [ 937.057475][T14916] netlink: 4093 bytes leftover after parsing attributes in process `syz.4.20796'. [ 937.326415][T14934] netlink: 60 bytes leftover after parsing attributes in process `syz.0.20803'. [ 937.345306][T14934] netlink: 60 bytes leftover after parsing attributes in process `syz.0.20803'. [ 937.409698][T14929] netlink: 60 bytes leftover after parsing attributes in process `syz.0.20803'. [ 937.558824][T14940] netlink: 144316 bytes leftover after parsing attributes in process `syz.2.20806'. [ 937.754823][T14944] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.20808'. [ 938.146543][T14957] netlink: 'syz.2.20815': attribute type 1 has an invalid length. [ 938.235610][T14957] __nla_validate_parse: 1 callbacks suppressed [ 938.235629][T14957] netlink: 161700 bytes leftover after parsing attributes in process `syz.2.20815'. [ 938.532434][T14970] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.20831'. [ 938.609032][T14972] netlink: 'syz.0.20821': attribute type 10 has an invalid length. [ 938.653412][T14974] netlink: 144316 bytes leftover after parsing attributes in process `syz.1.20822'. [ 938.855320][T14984] netlink: 'syz.1.20826': attribute type 3 has an invalid length. [ 938.903803][T14984] netlink: 105116 bytes leftover after parsing attributes in process `syz.1.20826'. [ 940.295439][T15037] netlink: 16098 bytes leftover after parsing attributes in process `syz.4.20854'. [ 940.318650][T15038] netlink: 'syz.1.20852': attribute type 6 has an invalid length. [ 940.332258][T15038] netlink: 168 bytes leftover after parsing attributes in process `syz.1.20852'. [ 940.572431][T15048] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.20868'. [ 941.019239][T15065] netlink: 16098 bytes leftover after parsing attributes in process `syz.0.20867'. [ 941.194548][T15073] netlink: 'syz.2.20872': attribute type 3 has an invalid length. [ 941.251071][T15073] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.20872'. [ 941.915191][T15095] netlink: 'syz.3.20880': attribute type 4 has an invalid length. [ 941.934507][T15093] netlink: 209844 bytes leftover after parsing attributes in process `syz.4.20882'. [ 941.951187][T15095] netlink: 'syz.3.20880': attribute type 8 has an invalid length. [ 942.542587][T15126] netlink: 'syz.0.20895': attribute type 4 has an invalid length. [ 942.561090][T15126] netlink: 'syz.0.20895': attribute type 8 has an invalid length. [ 943.413652][T15153] netlink: set zone limit has 8 unknown bytes [ 943.833747][T15169] __nla_validate_parse: 2 callbacks suppressed [ 943.833766][T15169] netlink: 164 bytes leftover after parsing attributes in process `syz.4.20916'. [ 944.267395][T15189] netlink: set zone limit has 8 unknown bytes [ 944.330535][T15193] netlink: 'syz.2.20929': attribute type 3 has an invalid length. [ 944.343209][T15193] netlink: 1034 bytes leftover after parsing attributes in process `syz.2.20929'. [ 944.554341][T15198] netlink: 207496 bytes leftover after parsing attributes in process `syz.2.20931'. [ 944.616443][T15202] netlink: 164 bytes leftover after parsing attributes in process `syz.1.20933'. [ 944.934912][T15210] netlink: 'syz.1.20947': attribute type 29 has an invalid length. [ 944.989829][T15210] netlink: 'syz.1.20947': attribute type 29 has an invalid length. [ 945.025939][T15214] netlink: 'syz.1.20947': attribute type 29 has an invalid length. [ 945.240775][T15225] netlink: set zone limit has 8 unknown bytes [ 945.779974][T15251] netlink: 'syz.3.20953': attribute type 29 has an invalid length. [ 945.845237][T15251] netlink: 'syz.3.20953': attribute type 29 has an invalid length. [ 945.883490][T15253] netlink: 'syz.3.20953': attribute type 29 has an invalid length. [ 946.549180][T15294] netlink: 'syz.2.20973': attribute type 29 has an invalid length. [ 946.571446][T15294] netlink: 'syz.2.20973': attribute type 29 has an invalid length. [ 946.596714][T15294] netlink: 'syz.2.20973': attribute type 29 has an invalid length. [ 947.025411][T15319] netlink: 148 bytes leftover after parsing attributes in process `syz.1.20998'. [ 947.200849][T15325] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.20991'. [ 947.965055][T15372] netlink: 76 bytes leftover after parsing attributes in process `syz.4.21012'. [ 948.324603][T15394] netlink: 148 bytes leftover after parsing attributes in process `syz.4.21023'. [ 948.725572][T15412] netlink: 76 bytes leftover after parsing attributes in process `syz.1.21031'. [ 949.014406][T15431] netlink: 11562 bytes leftover after parsing attributes in process `syz.3.21042'. [ 949.205395][T15439] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 949.238592][T15441] netlink: 76 bytes leftover after parsing attributes in process `syz.3.21047'. [ 949.606711][T15458] validate_nla: 7 callbacks suppressed [ 949.606731][T15458] netlink: 'syz.2.21053': attribute type 7 has an invalid length. [ 949.639941][T15458] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.21053'. [ 949.811782][T15471] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 950.170670][T15493] netlink: 11562 bytes leftover after parsing attributes in process `syz.1.21070'. [ 950.723091][T15522] netlink: 11562 bytes leftover after parsing attributes in process `syz.4.21085'. [ 953.617911][T15689] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.21166'. [ 954.277886][T15732] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.21188'. [ 954.973859][T15785] netlink: 'syz.3.21215': attribute type 9 has an invalid length. [ 955.004605][T15785] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.21215'. [ 955.109832][T15790] netlink: 'syz.3.21215': attribute type 9 has an invalid length. [ 955.124623][T15790] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.21215'. [ 955.445977][T15813] netlink: 'syz.3.21224': attribute type 33 has an invalid length. [ 955.469472][T15813] netlink: 164 bytes leftover after parsing attributes in process `syz.3.21224'. [ 955.543768][T15816] netlink: 'syz.2.21225': attribute type 21 has an invalid length. [ 955.699489][T15827] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.21232'. [ 955.779737][T15832] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.21238'. [ 955.899989][T15843] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.21250'. [ 956.327653][T15872] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.21253'. [ 956.510254][T15882] netlink: 'syz.3.21260': attribute type 21 has an invalid length. [ 956.653142][T15894] netlink: set zone limit has 8 unknown bytes [ 957.765600][T15921] netlink: 'syz.2.21276': attribute type 33 has an invalid length. [ 957.790742][T15920] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.21277'. [ 957.826111][T15921] netlink: 164 bytes leftover after parsing attributes in process `syz.2.21276'. [ 957.852352][T15923] netlink: 'syz.1.21275': attribute type 21 has an invalid length. [ 958.216192][T15947] netlink: 'syz.4.21290': attribute type 33 has an invalid length. [ 958.466577][T15953] netlink: 'syz.4.21293': attribute type 21 has an invalid length. [ 958.649671][T15963] netlink: set zone limit has 8 unknown bytes [ 959.455091][T15986] netlink: 'syz.3.21319': attribute type 1 has an invalid length. [ 959.482949][T15987] __nla_validate_parse: 3 callbacks suppressed [ 959.482970][T15987] netlink: 152 bytes leftover after parsing attributes in process `syz.4.21306'. [ 959.905505][T15995] netlink: set zone limit has 8 unknown bytes [ 960.778741][T16007] netlink: 14593 bytes leftover after parsing attributes in process `syz.0.21328'. [ 960.908510][T16018] netlink: 4595 bytes leftover after parsing attributes in process `syz.4.21318'. [ 960.958220][T16016] validate_nla: 3 callbacks suppressed [ 960.958237][T16016] netlink: 'syz.0.21322': attribute type 1 has an invalid length. [ 960.997349][T16020] netlink: 'syz.1.21324': attribute type 10 has an invalid length. [ 961.030887][T16023] netlink: 'syz.3.21325': attribute type 29 has an invalid length. [ 961.057999][T16020] netlink: 55 bytes leftover after parsing attributes in process `syz.1.21324'. [ 961.243502][T16023] netlink: 'syz.3.21325': attribute type 29 has an invalid length. [ 961.262237][T16032] netlink: 'syz.2.21331': attribute type 17 has an invalid length. [ 961.280199][T16032] netlink: 'syz.2.21331': attribute type 16 has an invalid length. [ 961.301288][T16032] netlink: 152 bytes leftover after parsing attributes in process `syz.2.21331'. [ 961.343619][T16026] netlink: 'syz.3.21325': attribute type 29 has an invalid length. [ 961.527058][T16049] netlink: 'syz.2.21339': attribute type 1 has an invalid length. [ 961.539530][T16047] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.21338'. [ 961.819273][T16068] netlink: 'syz.2.21347': attribute type 4 has an invalid length. [ 961.832042][T16068] netlink: 'syz.2.21347': attribute type 1 has an invalid length. [ 961.841186][T16068] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.21347'. [ 961.868125][T16071] netlink: 128124 bytes leftover after parsing attributes in process `syz.4.21348'. [ 961.885361][T16073] netlink: 152 bytes leftover after parsing attributes in process `syz.0.21350'. [ 962.412206][T16104] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21367'. [ 964.725678][T16197] __nla_validate_parse: 7 callbacks suppressed [ 964.725695][T16197] netlink: 40 bytes leftover after parsing attributes in process `syz.0.21419'. [ 964.782712][T16197] netlink: 40 bytes leftover after parsing attributes in process `syz.0.21419'. [ 965.051459][T16217] netlink: 55 bytes leftover after parsing attributes in process `syz.2.21418'. [ 965.951145][T16229] netlink: 40 bytes leftover after parsing attributes in process `syz.1.21424'. [ 965.960365][T16229] netlink: 40 bytes leftover after parsing attributes in process `syz.1.21424'. [ 966.122546][T16245] validate_nla: 22 callbacks suppressed [ 966.122567][T16245] netlink: 'syz.0.21432': attribute type 29 has an invalid length. [ 966.218271][T16245] netlink: 'syz.0.21432': attribute type 29 has an invalid length. [ 966.230391][T16248] netlink: 'syz.1.21435': attribute type 17 has an invalid length. [ 966.248747][T16248] netlink: 168 bytes leftover after parsing attributes in process `syz.1.21435'. [ 966.265462][T16249] netlink: 'syz.0.21432': attribute type 29 has an invalid length. [ 966.408553][T16265] netlink: 'syz.0.21440': attribute type 10 has an invalid length. [ 966.421664][T16265] netlink: 55 bytes leftover after parsing attributes in process `syz.0.21440'. [ 966.586898][T16271] netlink: 'syz.3.21446': attribute type 10 has an invalid length. [ 966.609306][T16271] netlink: 40 bytes leftover after parsing attributes in process `syz.3.21446'. [ 966.638565][T16275] netlink: 60 bytes leftover after parsing attributes in process `syz.4.21448'. [ 966.642263][T16271] netlink: 'syz.3.21446': attribute type 10 has an invalid length. [ 966.689747][T16271] netlink: 40 bytes leftover after parsing attributes in process `syz.3.21446'. [ 966.741566][T16283] netlink: 'syz.0.21450': attribute type 17 has an invalid length. [ 967.268291][T16321] netlink: 'syz.3.21469': attribute type 17 has an invalid length. [ 967.728738][T16357] netlink: 'syz.2.21484': attribute type 29 has an invalid length. [ 970.307243][T16464] __nla_validate_parse: 17 callbacks suppressed [ 970.307260][T16464] netlink: 55 bytes leftover after parsing attributes in process `syz.1.21536'. [ 972.225410][T16587] netlink: 163260 bytes leftover after parsing attributes in process `syz.4.21597'. [ 972.622873][T16601] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.21615'. [ 974.316899][T16700] netlink: 209844 bytes leftover after parsing attributes in process `syz.4.21652'. [ 975.788996][T16726] netlink: 163260 bytes leftover after parsing attributes in process `syz.2.21664'. [ 977.314316][T16767] netlink: 163260 bytes leftover after parsing attributes in process `syz.0.21680'. [ 978.268751][T16822] validate_nla: 8 callbacks suppressed [ 978.268772][T16822] netlink: 'syz.1.21710': attribute type 9 has an invalid length. [ 978.307290][T16822] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.21710'. [ 979.114318][T16850] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.21723'. [ 979.226642][T16858] netlink: 'syz.2.21728': attribute type 3 has an invalid length. [ 979.249174][T16858] netlink: 132 bytes leftover after parsing attributes in process `syz.2.21728'. [ 979.345621][T16866] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.21732'. [ 979.524034][T16877] netlink: 'syz.4.21737': attribute type 9 has an invalid length. [ 979.560714][T16877] netlink: 126588 bytes leftover after parsing attributes in process `syz.4.21737'. [ 980.120672][T16915] netlink: 'syz.0.21755': attribute type 9 has an invalid length. [ 980.139307][T16915] netlink: 126588 bytes leftover after parsing attributes in process `syz.0.21755'. [ 983.106437][T16997] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.21794'. [ 983.280192][T17010] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.21801'. [ 983.307110][T17010] netlink: 3064 bytes leftover after parsing attributes in process `syz.2.21801'. [ 983.318941][T17013] netlink: 203516 bytes leftover after parsing attributes in process `syz.1.21809'. [ 983.330095][T17013] netlink: 6332 bytes leftover after parsing attributes in process `syz.1.21809'. [ 984.473453][T17029] netlink: 'syz.2.21811': attribute type 3 has an invalid length. [ 984.611095][T17042] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.21816'. [ 984.627259][T17042] netlink: 6332 bytes leftover after parsing attributes in process `syz.3.21816'. [ 986.763302][T17181] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.21880'. [ 986.799675][T17181] netlink: 3064 bytes leftover after parsing attributes in process `syz.3.21880'. [ 987.399627][T17222] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.21900'. [ 987.576146][T17230] netlink: 'syz.4.21904': attribute type 3 has an invalid length. [ 988.534021][T17268] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 989.558910][T17321] netlink: 'syz.0.21949': attribute type 3 has an invalid length. [ 991.026429][T17402] __nla_validate_parse: 2 callbacks suppressed [ 991.026451][T17402] netlink: 144316 bytes leftover after parsing attributes in process `syz.2.21987'. [ 991.450160][T17427] netlink: 'syz.2.22012': attribute type 3 has an invalid length. [ 991.499748][T17427] netlink: 105116 bytes leftover after parsing attributes in process `syz.2.22012'. [ 991.717241][T17444] netlink: 'syz.4.22009': attribute type 9 has an invalid length. [ 991.743294][T17444] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.22009'. [ 992.070195][ C1] ------------[ cut here ]------------ [ 992.075904][ C1] WARNING: CPU: 1 PID: 17473 at mm/maccess.c:226 copy_from_user_nofault+0x160/0x1c0 [ 992.085523][ C1] Modules linked in: [ 992.089998][ C1] CPU: 1 PID: 17473 Comm: syz.0.22023 Not tainted syzkaller #0 [ 992.097568][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 992.107770][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0 [ 992.113953][ C1] Code: 24 45 31 f6 31 ff 89 de e8 3d f7 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 c0 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe [ 992.133595][ C1] RSP: 0000:ffffc90000dd0cf8 EFLAGS: 00010006 [ 992.139888][ C1] RAX: ffffffff819ed760 RBX: 0000000000000008 RCX: ffff88805c1a8000 [ 992.148069][ C1] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000 [ 992.156069][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed100b835001 [ 992.164069][ C1] R10: ffffed100b835001 R11: 1ffff1100b835000 R12: ffff88805c1a9788 [ 992.172091][ C1] R13: 00007ffffffff000 R14: ffffc90000dd0d68 R15: 0000000000000000 [ 992.180297][ C1] FS: 00007ff0dbd176c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000 [ 992.189399][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 992.196150][ C1] CR2: 0000000020000000 CR3: 00000000649d4000 CR4: 00000000003506e0 [ 992.204307][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 992.212441][ C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 992.220434][ C1] Call Trace: [ 992.223858][ C1] [ 992.226726][ C1] bpf_probe_read_compat+0xdd/0x170 [ 992.231950][ C1] bpf_prog_1ccb8ba97563bf77+0x59/0x79c [ 992.237524][ C1] bpf_trace_run2+0x15b/0x2d0 [ 992.242234][ C1] ? trace_event_raw_event_tlb_flush+0x240/0x240 [ 992.248582][ C1] ? bpf_trace_run1+0x2d0/0x2d0 [ 992.253544][ C1] ? perf_trace_tlb_flush+0x340/0x340 [ 992.258946][ C1] __traceiter_tlb_flush+0x69/0xb0 [ 992.264190][ C1] trace_tlb_flush+0xe6/0x110 [ 992.269152][ C1] flush_tlb_func+0x43f/0x510 [ 992.273848][ C1] ? kvm_sched_clock_read+0x14/0x40 [ 992.279076][ C1] ? sched_clock_cpu+0x15/0x3c0 [ 992.283959][ C1] ? native_flush_tlb_multi+0xd0/0xd0 [ 992.289446][ C1] ? kvm_sched_clock_read+0x14/0x40 [ 992.294658][ C1] ? native_flush_tlb_multi+0xd0/0xd0 [ 992.300064][ C1] flush_smp_call_function_queue+0x2a9/0x760 [ 992.306083][ C1] __sysvec_call_function_single+0x98/0x240 [ 992.312008][ C1] sysvec_call_function_single+0x98/0xc0 [ 992.317662][ C1] [ 992.320602][ C1] [ 992.323548][ C1] asm_sysvec_call_function_single+0x16/0x20 [ 992.329539][ C1] RIP: 0010:xas_start+0x294/0x770 [ 992.334571][ C1] Code: 85 ed 0f 84 6b 02 00 00 e8 29 56 78 fd e9 37 04 00 00 e8 1f 56 78 fd eb 27 e8 18 56 78 fd e9 6a 01 00 00 e8 4e 8a 63 fd 89 c5 <31> ff 89 c6 e8 63 59 78 fd 85 ed 0f 84 7c 02 00 00 e8 f6 55 78 fd [ 992.354712][ C1] RSP: 0000:ffffc9000314fa90 EFLAGS: 00000282 [ 992.360986][ C1] RAX: 0000000000000001 RBX: ffff888016ca5082 RCX: 48c33913ec335000 [ 992.369191][ C1] RDX: 0000000000000000 RSI: ffffffff8a0b2ac0 RDI: ffffffff8a59a480 [ 992.377204][ C1] RBP: 0000000000000001 R08: ffff88805c1a8000 R09: 0000000000000002 [ 992.385223][ C1] R10: 0000000000000003 R11: 0000000000000000 R12: ffff888074f104e8 [ 992.393477][ C1] R13: ffffc9000314fc18 R14: ffffc9000314fc00 R15: 1ffff92000629f83 [ 992.401618][ C1] xas_find+0x154/0xab0 [ 992.406060][ C1] filemap_map_pages+0x203/0x1390 [ 992.411224][ C1] ? __lock_acquire+0x7c60/0x7c60 [ 992.416302][ C1] ? filemap_read_page+0x4c0/0x4c0 [ 992.421456][ C1] ? count_memcg_event_mm+0x311/0x360 [ 992.427095][ C1] handle_mm_fault+0x2580/0x43c0 [ 992.432443][ C1] ? get_page+0xe0/0xe0 [ 992.436649][ C1] ? vmacache_find+0x4f0/0x590 [ 992.441439][ C1] ? vmacache_update+0xa0/0x100 [ 992.446346][ C1] ? find_vma+0x1df/0x230 [ 992.450718][ C1] do_user_addr_fault+0x489/0xc80 [ 992.455798][ C1] ? rcu_is_watching+0x11/0xa0 [ 992.460630][ C1] exc_page_fault+0x60/0x100 [ 992.465442][ C1] ? clear_bhb_loop+0x30/0x80 [ 992.470146][ C1] asm_exc_page_fault+0x22/0x30 [ 992.475137][ C1] RIP: 0033:0x7ff0dd97fd10 [ 992.479592][ C1] Code: Unable to access opcode bytes at RIP 0x7ff0dd97fce6. [ 992.487422][ C1] RSP: 002b:00007ff0dbd17118 EFLAGS: 00010246 [ 992.493830][ C1] RAX: 00007ff0dbd176c0 RBX: 00007ff0dbd176c0 RCX: 00007ff0dda66996 [ 992.502323][ C1] RDX: 0000000000000000 RSI: 00007ff0dbd17fb0 RDI: 00007ff0ddcf6fa0 [ 992.510402][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffdce5416b7 [ 992.518403][ C1] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffa8 [ 992.526547][ C1] R13: 000000000000004d R14: 00007ffdce5415d0 R15: 00007ffdce5416b8 [ 992.534567][ C1] [ 992.537610][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 992.545061][ C1] CPU: 1 PID: 17473 Comm: syz.0.22023 Not tainted syzkaller #0 [ 992.553190][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 992.563521][ C1] Call Trace: [ 992.566844][ C1] [ 992.569719][ C1] dump_stack_lvl+0x168/0x230 [ 992.574555][ C1] ? show_regs_print_info+0x20/0x20 [ 992.579971][ C1] ? load_image+0x3b0/0x3b0 [ 992.584624][ C1] panic+0x2c9/0x7f0 [ 992.588549][ C1] ? bpf_jit_dump+0xd0/0xd0 [ 992.593088][ C1] ? copy_from_user_nofault+0x160/0x1c0 [ 992.598662][ C1] __warn+0x248/0x2b0 [ 992.602676][ C1] ? copy_from_user_nofault+0x160/0x1c0 [ 992.608378][ C1] report_bug+0x1b7/0x2e0 [ 992.612768][ C1] handle_bug+0x3a/0x70 [ 992.617038][ C1] exc_invalid_op+0x16/0x40 [ 992.621729][ C1] asm_exc_invalid_op+0x16/0x20 [ 992.626727][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0 [ 992.632924][ C1] Code: 24 45 31 f6 31 ff 89 de e8 3d f7 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 c0 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe [ 992.652558][ C1] RSP: 0000:ffffc90000dd0cf8 EFLAGS: 00010006 [ 992.658767][ C1] RAX: ffffffff819ed760 RBX: 0000000000000008 RCX: ffff88805c1a8000 [ 992.666761][ C1] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000 [ 992.675022][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed100b835001 [ 992.683030][ C1] R10: ffffed100b835001 R11: 1ffff1100b835000 R12: ffff88805c1a9788 [ 992.691140][ C1] R13: 00007ffffffff000 R14: ffffc90000dd0d68 R15: 0000000000000000 [ 992.699161][ C1] ? copy_from_user_nofault+0x160/0x1c0 [ 992.704776][ C1] ? copy_from_user_nofault+0x160/0x1c0 [ 992.710354][ C1] bpf_probe_read_compat+0xdd/0x170 [ 992.715686][ C1] bpf_prog_1ccb8ba97563bf77+0x59/0x79c [ 992.721278][ C1] bpf_trace_run2+0x15b/0x2d0 [ 992.725985][ C1] ? trace_event_raw_event_tlb_flush+0x240/0x240 [ 992.732445][ C1] ? bpf_trace_run1+0x2d0/0x2d0 [ 992.737349][ C1] ? perf_trace_tlb_flush+0x340/0x340 [ 992.742940][ C1] __traceiter_tlb_flush+0x69/0xb0 [ 992.748078][ C1] trace_tlb_flush+0xe6/0x110 [ 992.752777][ C1] flush_tlb_func+0x43f/0x510 [ 992.757488][ C1] ? kvm_sched_clock_read+0x14/0x40 [ 992.762838][ C1] ? sched_clock_cpu+0x15/0x3c0 [ 992.768111][ C1] ? native_flush_tlb_multi+0xd0/0xd0 [ 992.773974][ C1] ? kvm_sched_clock_read+0x14/0x40 [ 992.779278][ C1] ? native_flush_tlb_multi+0xd0/0xd0 [ 992.784821][ C1] flush_smp_call_function_queue+0x2a9/0x760 [ 992.790946][ C1] __sysvec_call_function_single+0x98/0x240 [ 992.797049][ C1] sysvec_call_function_single+0x98/0xc0 [ 992.802902][ C1] [ 992.805851][ C1] [ 992.808792][ C1] asm_sysvec_call_function_single+0x16/0x20 [ 992.814827][ C1] RIP: 0010:xas_start+0x294/0x770 [ 992.819883][ C1] Code: 85 ed 0f 84 6b 02 00 00 e8 29 56 78 fd e9 37 04 00 00 e8 1f 56 78 fd eb 27 e8 18 56 78 fd e9 6a 01 00 00 e8 4e 8a 63 fd 89 c5 <31> ff 89 c6 e8 63 59 78 fd 85 ed 0f 84 7c 02 00 00 e8 f6 55 78 fd [ 992.839704][ C1] RSP: 0000:ffffc9000314fa90 EFLAGS: 00000282 [ 992.846157][ C1] RAX: 0000000000000001 RBX: ffff888016ca5082 RCX: 48c33913ec335000 [ 992.854353][ C1] RDX: 0000000000000000 RSI: ffffffff8a0b2ac0 RDI: ffffffff8a59a480 [ 992.862361][ C1] RBP: 0000000000000001 R08: ffff88805c1a8000 R09: 0000000000000002 [ 992.870353][ C1] R10: 0000000000000003 R11: 0000000000000000 R12: ffff888074f104e8 [ 992.878523][ C1] R13: ffffc9000314fc18 R14: ffffc9000314fc00 R15: 1ffff92000629f83 [ 992.886856][ C1] xas_find+0x154/0xab0 [ 992.891046][ C1] filemap_map_pages+0x203/0x1390 [ 992.896090][ C1] ? __lock_acquire+0x7c60/0x7c60 [ 992.901159][ C1] ? filemap_read_page+0x4c0/0x4c0 [ 992.906557][ C1] ? count_memcg_event_mm+0x311/0x360 [ 992.912043][ C1] handle_mm_fault+0x2580/0x43c0 [ 992.917124][ C1] ? get_page+0xe0/0xe0 [ 992.921354][ C1] ? vmacache_find+0x4f0/0x590 [ 992.926388][ C1] ? vmacache_update+0xa0/0x100 [ 992.931426][ C1] ? find_vma+0x1df/0x230 [ 992.935802][ C1] do_user_addr_fault+0x489/0xc80 [ 992.940871][ C1] ? rcu_is_watching+0x11/0xa0 [ 992.946309][ C1] exc_page_fault+0x60/0x100 [ 992.950947][ C1] ? clear_bhb_loop+0x30/0x80 [ 992.955691][ C1] asm_exc_page_fault+0x22/0x30 [ 992.960594][ C1] RIP: 0033:0x7ff0dd97fd10 [ 992.965051][ C1] Code: Unable to access opcode bytes at RIP 0x7ff0dd97fce6. [ 992.972467][ C1] RSP: 002b:00007ff0dbd17118 EFLAGS: 00010246 [ 992.978658][ C1] RAX: 00007ff0dbd176c0 RBX: 00007ff0dbd176c0 RCX: 00007ff0dda66996 [ 992.986744][ C1] RDX: 0000000000000000 RSI: 00007ff0dbd17fb0 RDI: 00007ff0ddcf6fa0 [ 992.994754][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffdce5416b7 [ 993.002895][ C1] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffa8 [ 993.011098][ C1] R13: 000000000000004d R14: 00007ffdce5415d0 R15: 00007ffdce5416b8 [ 993.019119][ C1] [ 993.022384][ C1] Kernel Offset: disabled [ 993.026734][ C1] Rebooting in 86400 seconds..