last executing test programs:

18m17.99377922s ago: executing program 32 (id=66):
perf_event_open(&(0x7f0000000400)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001700)={0x6, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000fcffffff850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r2}, &(0x7f0000000080), &(0x7f00000000c0)=r1}, 0x20)

18m16.683341805s ago: executing program 33 (id=67):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0xffffffffffffffff, 0x58}, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00'}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8912, &(0x7f0000000080))

18m1.735634863s ago: executing program 34 (id=68):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
ioctl$TUNSETLINK(r1, 0x400454cd, 0x304)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller0\x00', @random="371692e7f7ef"})

16m17.050180379s ago: executing program 6 (id=774):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7bedcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158cf474fec87891f6d76745b686158bbcfe8875afdef00010000000029"], 0x66)

16m14.864269054s ago: executing program 6 (id=779):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x77, 0x0, &(0x7f0000000100)="b9ff030f6044238cb89e14f088a81bff88fbffff4000632f77fbac14142ce934a0a662079f4b4d2f87e56dca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca3", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xf301})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080))
write$cgroup_devices(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="1e032c004d8c71ef2885634a8270e71188"], 0xffdd)

16m14.847966965s ago: executing program 4 (id=782):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @loopback}, 0x10, 0x0}, 0x34004000)
write$cgroup_type(r0, &(0x7f0000000080), 0x11ffffce1)
recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x10002)

16m14.220744946s ago: executing program 4 (id=789):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1f00000004000000060000000700000080130000", @ANYRES32, @ANYBLOB="0000000000000000008000"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000001"], 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b904021d080225000000040000a118000200fcffffff00000e1208000f0100810401a80016ea1f0006", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b9040a", 0x11}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000580)=ANY=[], 0xfe33)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000580)=ANY=[], 0xfe33)

16m13.987823864s ago: executing program 1 (id=792):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x14, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000ff7f00007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e030023000b02d25a806f8c6394f91d24fc60040f03", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

16m12.106187195s ago: executing program 4 (id=794):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x3}, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x13, 0x2, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff220, 0x0, @perf_config_ext={0x3, 0x4000000}, 0x0, 0x8, 0x3, 0x0, 0x0, 0x7fff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000feffffff00000000000000008500000053000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70600000000000085000000170000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, 0x81)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000000c0)="c1b9545dd30a1d31677b2d0bfa91", 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

16m11.984466305s ago: executing program 1 (id=796):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @loopback}, 0x10, 0x0}, 0x34004000)
write$cgroup_type(r0, &(0x7f0000000080), 0x11ffffce1)
recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x10002)

16m11.984214385s ago: executing program 6 (id=797):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0xc40, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000006c0)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[], 0xe)

16m11.499177554s ago: executing program 1 (id=798):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x20f42, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000), 0xfe3a)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@fwd={0x2}, @typedef={0x1}, @union={0x0, 0x1, 0x0, 0x5, 0x1, 0x0, [{0x2, 0x2}]}]}, {0x0, [0x5f, 0x4f]}}, 0x0, 0x4c, 0x0, 0xa}, 0x28)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x420d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000210081044e81f782db44b90402000000000000000000000510", 0x1d}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x33fe0)

16m7.345604167s ago: executing program 6 (id=803):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)=r3}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r2}, &(0x7f0000000000), &(0x7f00000000c0)=r3}, 0x20)

16m7.345432527s ago: executing program 1 (id=804):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90224fc602f1a99000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

16m7.323095318s ago: executing program 4 (id=806):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x204, 0x20, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
gettid()
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x9, 0x7, 0x8, 0x0, 0xffffffffffffffff, 0xcb02}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000300), 0xb0b, r0}, 0x38)

16m7.118154085s ago: executing program 1 (id=807):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @loopback}, 0x10, 0x0}, 0x34004000)
write$cgroup_type(r0, &(0x7f0000000080), 0x11ffffce1)
recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x10002)

16m7.032309742s ago: executing program 4 (id=808):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffe}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x5, 0x4, 0x6, 0x4, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))

16m7.031822261s ago: executing program 6 (id=809):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
r2 = perf_event_open$cgroup(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x8, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x189603e4342c0e17, @perf_bp={&(0x7f0000000080)}, 0x4001, 0x0, 0x0, 0xa2ed0d70c7c787cf}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x0, 0x0, 0xf3, 0x6, 0x0, 0x0, 0xd006e1258c48358c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0xc20, 0xc8, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x0, r2, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000fffe80"], 0xfdef)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0xffffffffffffffae}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0xfdef)

16m6.638251033s ago: executing program 4 (id=810):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x8602, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @broadcast})
write$cgroup_subtree(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="8fedcb5d07081196f37638e40806"], 0x66)

16m6.638039813s ago: executing program 6 (id=811):
r0 = socket$kcm(0x21, 0x2, 0xa)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x8a, 0x7, 0x0, 0x3, 0x0, 0x10000000000, 0x8880, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x4, @perf_bp={0x0, 0x6}, 0x0, 0x3, 0x0, 0x6, 0x7, 0x4, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x4b, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x3, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x4047c00)

16m6.30441047s ago: executing program 35 (id=810):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x8602, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @broadcast})
write$cgroup_subtree(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="8fedcb5d07081196f37638e40806"], 0x66)

16m6.135760854s ago: executing program 36 (id=811):
r0 = socket$kcm(0x21, 0x2, 0xa)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x8a, 0x7, 0x0, 0x3, 0x0, 0x10000000000, 0x8880, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x4, @perf_bp={0x0, 0x6}, 0x0, 0x3, 0x0, 0x6, 0x7, 0x4, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x4b, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x3, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x4047c00)

16m6.124574174s ago: executing program 1 (id=814):
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x100000000002, 0x4)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0e00009bd029ef8020ab070011000523a608463a", @ANYRES16=r1], 0xfe33)

16m5.92673191s ago: executing program 37 (id=814):
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x100000000002, 0x4)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0e00009bd029ef8020ab070011000523a608463a", @ANYRES16=r1], 0xfe33)

15m58.348358987s ago: executing program 7 (id=815):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x3}, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x13, 0x2, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff220, 0x0, @perf_config_ext={0x3, 0x4000000}, 0x0, 0x8, 0x3, 0x0, 0x0, 0x7fff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000feffffff00000000000000008500000053000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70600000000000085000000170000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, 0x81)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000000c0)="c1b9545dd30a1d31677b2d0bfa91", 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

15m57.101551347s ago: executing program 7 (id=820):
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x1e, 0x1, 0x0)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x127)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
close(r2)

15m57.037284182s ago: executing program 8 (id=813):
close(0x3)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2105, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x4}, 0x828, 0x0, 0x0, 0x6, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0x4008744b, 0x0)

15m56.81687377s ago: executing program 7 (id=821):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0x400c78, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1, 0x42, 0x6, 0x8, 0x0, 0x1}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x16, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c252500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1ad8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000080000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0xfffffffffffffffd, &(0x7f00000001c0)="186bf7ffffffffffffffef0a3254", 0x0, 0xff, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)

15m56.673608062s ago: executing program 8 (id=823):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907003675f37538e486dd6317ce623900fe800000002000e0865a6596af"], 0xfe1b)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xf1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
close(0x3)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58}, 0x10)

15m56.43500584s ago: executing program 7 (id=825):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff, 0x4, r0}, 0x10)

15m56.351439457s ago: executing program 8 (id=827):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1206"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1313f, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000), 0x10, 0x749}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0x4010744d, &(0x7f0000000180))

15m53.402347244s ago: executing program 8 (id=830):
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x1e, 0x1, 0x0)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x127)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
close(r2)

15m53.402105494s ago: executing program 7 (id=831):
close(0x3)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2105, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x4}, 0x828, 0x0, 0x0, 0x6, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0x4008744b, 0x0)

15m50.800792972s ago: executing program 7 (id=836):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7902})
write$cgroup_devices(r2, &(0x7f0000000000)=ANY=[@ANYRESDEC=r2], 0xffdd)

15m50.792132523s ago: executing program 8 (id=843):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0xc44a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000003}, 0x48)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907a56675f37538ec86dd6317ce22667f1100db5b686158bbcfe8875a65969ff57b03000000000000000000000000ac1414aa"], 0xfdef)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0xfdef)

15m50.346572768s ago: executing program 38 (id=843):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0xc44a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000003}, 0x48)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907a56675f37538ec86dd6317ce22667f1100db5b686158bbcfe8875a65969ff57b03000000000000000000000000ac1414aa"], 0xfdef)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0xfdef)

15m50.175472302s ago: executing program 39 (id=836):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7902})
write$cgroup_devices(r2, &(0x7f0000000000)=ANY=[@ANYRESDEC=r2], 0xffdd)

10m58.414649086s ago: executing program 2 (id=2425):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x8202, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%\xf8\xff\xff\xff\xff\xff\xff\xff=\x11\xc8\xdd\x15\xcc\xd2\xf1d\'%\x11c\x91l,'}, 0x30)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socket$kcm(0x2, 0x1, 0x84)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="b3ffe14e4d56"})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="05edcb5d07081196f37538e486dd6372ce22667f2b00dbf6e97158b33d4fec09001b6d76745b686158bbcfe8875afdef001e580000002c"], 0x66)

10m52.945354734s ago: executing program 2 (id=2437):
socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x200000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0e00009bd029ef8020ab070011000523a608463a3f", @ANYRES16=r0], 0xfe33)

10m52.785566937s ago: executing program 2 (id=2440):
socket$kcm(0xa, 0x3, 0x73)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030036000b05d25a806c8c6f94f90224fc60100005000a0002", 0x1b}], 0x1}, 0x0)
socket$kcm(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={&(0x7f0000000100)=@in={0x2, 0x4e21, @remote}, 0x80, &(0x7f0000000000)=[{&(0x7f00000006c0)='@', 0x1}], 0x1, &(0x7f0000000040)=[{0x18, 0x84, 0x0, 'r'}], 0x18}, 0x41)

10m52.459357333s ago: executing program 2 (id=2442):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x7, 0x10400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x2000000000000}, 0x0, 0x0, 0x400, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d2f, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x8a, 0x3, 0x0, 0x3, 0x0, 0x10000000000, 0x8880, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={0x0, 0x6}, 0x4108, 0x3, 0x0, 0x6, 0x7, 0x4, 0x2, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x4b, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)

10m52.053504656s ago: executing program 2 (id=2446):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$ITER_CREATE(0x21, &(0x7f00000002c0), 0x8)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0x220104, 0xb, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2000000, 0x180}, 0x48)

10m49.38224227s ago: executing program 2 (id=2453):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='ext4_writepages_result\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xd3ab, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

10m49.076283414s ago: executing program 40 (id=2453):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='ext4_writepages_result\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xd3ab, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

19.241002282s ago: executing program 9 (id=5661):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
close(r0)

18.998405161s ago: executing program 3 (id=5664):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000080000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='jbd2_run_stats\x00', r0, 0x0, 0x7}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000001c0)='percpu_destroy_chunk\x00'}, 0x18)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x10020, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xe3}, 0x0, 0xdf, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, r2, 0x0)
r3 = gettid()
syz_open_procfs$namespace(r3, &(0x7f0000000680)='ns/cgroup\x00')
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89a0, &(0x7f00000000c0)='%d\xf1\xfa\xbc$j\xfef;q1\x95\xf4\xe4\x13\x95k#Jz.F\xce\xfb\x9c\x19\xf3v\x88\x91\xbct\xb0\x1bLq\x15\x00\xad\t\x13\xf5U\x02\xc9d6q\xc3\xa5\xcf\x01t\r%\xad-\x13\xb0 U\xaaC\xc388\x13\xc6H\x0f \x03\x9e\xa98\xa1\xc3\xe9\x06C\xd4\xb5\x18}4\xa9yA8\x1fQ\xdfN\x8e\xd7m\xee\xb8N\x98\xef\xff\xddR\xec~c\xcb\x93\x84\x7f\\x6\xedZ\x82\xa0\x1by\x17\x1a\xc8\x98\x99\x0f')

18.870316971s ago: executing program 9 (id=5665):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='devices.list\x00', 0x26e1, 0x0)
close(r0)
socket$kcm(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
recvmsg(r0, &(0x7f0000000dc0)={0x0, 0x0, 0x0}, 0x102)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000600)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8000ef, 0x1af1ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

18.328912235s ago: executing program 3 (id=5667):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x6}, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
close(r4)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

18.243339582s ago: executing program 0 (id=5668):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
socket$kcm(0x10, 0x2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$kcm(0xf, 0x3, 0x2)
r1 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0xfe, &(0x7f0000000000)=[{&(0x7f0000000040)="0207000902000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)

18.093166474s ago: executing program 5 (id=5669):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2f}, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f2, &(0x7f0000000080))

17.682618557s ago: executing program 5 (id=5670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1200000004000000080000000280"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x10049014)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, 0x0, 0x0}, 0x20)

17.682300547s ago: executing program 3 (id=5671):
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xbe)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

17.661579439s ago: executing program 9 (id=5672):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f00000002c0)={'macvlan1\x00', @random="0100061f8145"})
mkdir(0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0100000008001000040000000700000001"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001940), 0x2000cc0, r3}, 0x38)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'xfrm0\x00', 0x2000})

17.335990295s ago: executing program 0 (id=5673):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
close(r0)

17.080481666s ago: executing program 9 (id=5674):
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4020940d, 0x0)
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @empty}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa6820000}, 0xafe6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="1800000004000000020000000000000c"], 0x0, 0x34}, 0x28)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="183000000100000000000000030000009500000000000000d249bee676ee9a88075002e7fd31e52deef50dce8081900e9e235a8e63"], 0x0, 0x8, 0x0, 0x0, 0x41000}, 0x94)
gettid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f00000002c0)={0x0, 0x6000, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000010008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x67}], 0x1}, 0x0)

17.080127596s ago: executing program 3 (id=5675):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000800)={0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000740)=""/130}, 0x20)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000a00)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000690000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001cb4d0d6850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x212842b0ce508c73}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb4, 0x7f}, 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

17.079379636s ago: executing program 5 (id=5682):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
socket$kcm(0x10, 0x2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$kcm(0xf, 0x3, 0x2)
r1 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0xfe, &(0x7f0000000000)=[{&(0x7f0000000040)="0207000902000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)

17.005556152s ago: executing program 0 (id=5676):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000080000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='jbd2_run_stats\x00', r0, 0x0, 0x7}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000001c0)='percpu_destroy_chunk\x00'}, 0x18)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x10020, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xe3}, 0x0, 0xdf, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, r2, 0x0)
r3 = gettid()
syz_open_procfs$namespace(r3, &(0x7f0000000680)='ns/cgroup\x00')
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89a0, &(0x7f00000000c0)='%d\xf1\xfa\xbc$j\xfef;q1\x95\xf4\xe4\x13\x95k#Jz.F\xce\xfb\x9c\x19\xf3v\x88\x91\xbct\xb0\x1bLq\x15\x00\xad\t\x13\xf5U\x02\xc9d6q\xc3\xa5\xcf\x01t\r%\xad-\x13\xb0 U\xaaC\xc388\x13\xc6H\x0f \x03\x9e\xa98\xa1\xc3\xe9\x06C\xd4\xb5\x18}4\xa9yA8\x1fQ\xdfN\x8e\xd7m\xee\xb8N\x98\xef\xff\xddR\xec~c\xcb\x93\x84\x7f\\x6\xedZ\x82\xa0\x1by\x17\x1a\xc8\x98\x99\x0f')

16.760287891s ago: executing program 3 (id=5677):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000001, 0x0, @perf_config_ext={0x3, 0x8000000000000000}, 0x5460, 0x0, 0x5, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x11, 0x200000000000002, 0x300)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(r2, 0x107, 0x12, &(0x7f00000008c0), 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e086dd200000006006000aac14140ce0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

16.52249534s ago: executing program 0 (id=5678):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x400000000004, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0xc001, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x10222000, &(0x7f0000000200)="1d5b1aa2b5345c5d73f0a66a57e157b4c130a20da7e24a6f7d5b25430260384302da0e545e74e736a7453ff0f7", 0x2d, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000340)="ec81178d76e1554846228ba0c5e7bf418f22e61086e1a0c647351ec305d39674dea9d0d6baa71cd6baba7c1dd1e9668c3b939a69e085b218488c1a4d4b061f1267911c5f2ca6844b6e35ff75df369ae1befb1b539adc3e9b36c85ca3d435513b8badfe89ab8030411781b6e290f55f675612da4ca83003c47fc924957ac4be87ee15d0")
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r5=>0x0, 0x0})
close(r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x1a, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @map_fd={0x18, 0x1, 0x1, 0x0, r6}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xed41d0969ec4053c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r7}, 0x10)
sendmsg$unix(r5, &(0x7f0000000bc0)={&(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000a40), 0x0, &(0x7f0000000b00)=[@rights={{0x2c, 0x1, 0x1, [r3, r0, 0xffffffffffffffff, r3, r3, r1, r3]}}, @rights={{0x28, 0x1, 0x1, [r7, r2, r2, r1, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {r4, 0xffffffffffffffff, 0xffffffffffffffff}}}], 0x78, 0x80}, 0x40800)

16.516331381s ago: executing program 5 (id=5687):
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x100002, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0x1, 0x84)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002d000b12d25a80648c2594f90124fc60100c020000040000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602ab1100000e000a000f000000028000001294", 0x2e}], 0x1}, 0x300)

16.40173375s ago: executing program 9 (id=5679):
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40532, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x0, 0x0, 0x80, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x8, 0x2008, 0x0, 0x1, 0x5}, 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002f000b12d25a80648c2594f90324fc601000084002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

16.335600385s ago: executing program 0 (id=5680):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2f}, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f2, &(0x7f0000000080))

16.295955819s ago: executing program 5 (id=5681):
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xbe)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

16.205718746s ago: executing program 9 (id=5683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1200000004000000080000000280"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x10049014)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, 0x0, 0x0}, 0x20)

16.205558496s ago: executing program 3 (id=5684):
r0 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x14, &(0x7f0000000000), 0x4)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x9, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610414000000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740))
sendmsg$sock(0xffffffffffffffff, 0x0, 0x4004)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x2e}], 0x1}, 0x0)

16.03528708s ago: executing program 0 (id=5685):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x113905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, 0x0)
recvmsg(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x40002002)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f00000000c0)=0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703380000001f00000000000000040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

16.03313598s ago: executing program 5 (id=5694):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1900000004000000040000000a"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r0}, 0x0, 0x0}, 0x20)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(0xffffffffffffffff)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x3}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000002c0)='net_dev_start_xmit\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0x2f9, 0xffffca88, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000638877fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="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"}, 0x28)

663.616297ms ago: executing program 41 (id=5683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1200000004000000080000000280"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x10049014)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, 0x0, 0x0}, 0x20)

342.764203ms ago: executing program 42 (id=5685):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x113905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, 0x0)
recvmsg(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x40002002)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f00000000c0)=0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703380000001f00000000000000040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

0s ago: executing program 43 (id=5684):
r0 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x14, &(0x7f0000000000), 0x4)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x9, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610414000000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740))
sendmsg$sock(0xffffffffffffffff, 0x0, 0x4004)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x2e}], 0x1}, 0x0)

kernel console output (not intermixed with test programs):

ng later): interface not active
[  719.727768][T13959] netlink: 'syz.0.3224': attribute type 10 has an invalid length.
[  719.762391][T13959] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3224'.
[  719.784890][T13959] team0: entered promiscuous mode
[  719.804276][T13959] C: entered promiscuous mode
[  719.810436][T13959] team_slave_1: entered promiscuous mode
[  719.823155][T13959] 8021q: adding VLAN 0 to HW filter on device team0
[  719.830902][T13959] batman_adv: batadv0: Interface activated: team0
[  719.849995][T13959] batman_adv: batadv0: Interface deactivated: team0
[  719.868105][T13959] batman_adv: batadv0: Removing interface: team0
[  720.539338][T13984] netlink: 9286 bytes leftover after parsing attributes in process `syz.0.3232'.
[  722.595182][T13978] syzkaller0: entered promiscuous mode
[  722.600974][T13978] syzkaller0: entered allmulticast mode
[  724.710873][T13992] syzkaller0: entered promiscuous mode
[  724.716461][T13992] syzkaller0: entered allmulticast mode
[  726.969163][T14005] syzkaller0: entered promiscuous mode
[  726.974734][T14005] syzkaller0: entered allmulticast mode
[  727.240481][ T5792] Bluetooth: hci3: unexpected event 0x05 length: 151 > 4
[  729.249292][T14016] netlink: 'syz.5.3240': attribute type 10 has an invalid length.
[  729.286600][T14016] batman_adv: batadv0: Adding interface: team0
[  729.292835][T14016] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  729.318923][T14016] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  729.340678][T14018] netlink: 'syz.5.3240': attribute type 10 has an invalid length.
[  729.349762][T14018] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3240'.
[  729.360464][T14018] team0: entered promiscuous mode
[  729.367736][T14018] team_slave_0: entered promiscuous mode
[  729.373724][T14018] team_slave_1: entered promiscuous mode
[  729.382952][T14018] 8021q: adding VLAN 0 to HW filter on device team0
[  729.400824][T14018] batman_adv: batadv0: Interface activated: team0
[  729.415808][T14018] batman_adv: batadv0: Interface deactivated: team0
[  729.431287][T14018] batman_adv: batadv0: Removing interface: team0
[  734.252426][ T5792] Bluetooth: hci0: unexpected event 0x05 length: 151 > 4
[  734.710528][ T5792] Bluetooth: hci1: unexpected event 0x05 length: 151 > 4
[  738.014062][T14117] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3283'.
[  739.004667][ T5792] Bluetooth: hci2: unexpected event 0x05 length: 151 > 4
[  742.289098][T14152] ipvlan1: entered promiscuous mode
[  742.301551][T14152] ipvlan1: entered allmulticast mode
[  742.307390][T14152] veth0_vlan: entered allmulticast mode
[  742.932715][T14178] netlink: 'syz.9.3309': attribute type 29 has an invalid length.
[  742.962221][T14178] netlink: 'syz.9.3309': attribute type 29 has an invalid length.
[  743.243837][ T5792] Bluetooth: hci2: unexpected event 0x05 length: 151 > 4
[  744.021858][T14212] netlink: 'syz.0.3323': attribute type 29 has an invalid length.
[  744.082503][T14212] netlink: 'syz.0.3323': attribute type 29 has an invalid length.
[  744.211739][ T5792] Bluetooth: hci2: unexpected event 0x05 length: 151 > 4
[  746.906541][T14240] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.3330'.
[  747.429042][T14240] syz.0.3330 (14240) used greatest stack depth: 20200 bytes left
[  747.448444][T14252] netlink: 'syz.3.3335': attribute type 29 has an invalid length.
[  747.483077][T14252] netlink: 'syz.3.3335': attribute type 29 has an invalid length.
[  747.630704][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  747.637210][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  748.774595][ T5792] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  749.087890][T14282] netlink: 'syz.5.3348': attribute type 29 has an invalid length.
[  749.113538][T14282] netlink: 'syz.5.3348': attribute type 29 has an invalid length.
[  751.363175][T14328] netlink: 'syz.3.3365': attribute type 29 has an invalid length.
[  751.418132][T14328] netlink: 'syz.3.3365': attribute type 29 has an invalid length.
[  752.570011][T14347] cgroup: fork rejected by pids controller in /syz3
[  753.007155][T14364] netlink: 'syz.5.3382': attribute type 29 has an invalid length.
[  753.068132][T14364] netlink: 'syz.5.3382': attribute type 29 has an invalid length.
[  753.565382][T14370] netlink: 'syz.5.3393': attribute type 29 has an invalid length.
[  753.684207][T14370] netlink: 'syz.5.3393': attribute type 29 has an invalid length.
[  754.229762][T14385] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  754.240765][T14385] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  754.277013][T14385] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  754.289174][T14385] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  754.298274][T14385] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  754.307451][T14385] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  754.798591][T14384] chnl_net:caif_netlink_parms(): no params data found
[  755.009513][T14384] bridge0: port 1(bridge_slave_0) entered blocking state
[  755.053189][T14384] bridge0: port 1(bridge_slave_0) entered disabled state
[  755.064557][T14384] bridge_slave_0: entered allmulticast mode
[  755.079470][T14384] bridge_slave_0: entered promiscuous mode
[  755.136825][T14384] bridge0: port 2(bridge_slave_1) entered blocking state
[  755.144214][T14384] bridge0: port 2(bridge_slave_1) entered disabled state
[  755.161014][T14384] bridge_slave_1: entered allmulticast mode
[  755.170412][T14384] bridge_slave_1: entered promiscuous mode
[  755.242987][T14406] netlink: 'syz.0.3397': attribute type 29 has an invalid length.
[  755.273043][T14406] netlink: 'syz.0.3397': attribute type 29 has an invalid length.
[  755.302626][T14384] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  755.330284][T14384] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  755.375695][T14384] team0: Port device team_slave_0 added
[  755.392656][T14384] team0: Port device team_slave_1 added
[  755.483119][T14384] batman_adv: batadv0: Adding interface: batadv_slave_0
[  755.490425][T14384] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.520116][T14384] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  755.545307][T14384] batman_adv: batadv0: Adding interface: batadv_slave_1
[  755.578603][T14384] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.643271][T14384] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  755.848509][T14384] hsr_slave_0: entered promiscuous mode
[  755.917713][T14384] hsr_slave_1: entered promiscuous mode
[  755.997906][T14384] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  756.065189][T14384] Cannot create hsr debugfs directory
[  756.117517][T14385] Bluetooth: hci2: ACL packet for unknown connection handle 0
[  756.426357][T14385] Bluetooth: hci1: command tx timeout
[  756.709720][T14384] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  756.762282][T14429] netlink: 'syz.9.3407': attribute type 29 has an invalid length.
[  756.777267][T14429] netlink: 'syz.9.3407': attribute type 29 has an invalid length.
[  756.959006][T14384] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  757.166593][T14384] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  757.490494][T14384] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  757.801404][T14384] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  757.814686][T14384] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  757.832461][T14384] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  757.845724][T14384] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  757.947976][T14384] 8021q: adding VLAN 0 to HW filter on device bond0
[  757.971439][T14384] 8021q: adding VLAN 0 to HW filter on device team0
[  757.986831][ T1073] bridge0: port 1(bridge_slave_0) entered blocking state
[  757.994009][ T1073] bridge0: port 1(bridge_slave_0) entered forwarding state
[  758.012735][ T7349] bridge0: port 2(bridge_slave_1) entered blocking state
[  758.019953][ T7349] bridge0: port 2(bridge_slave_1) entered forwarding state
[  758.244206][T14384] 8021q: adding VLAN 0 to HW filter on device batadv0
[  758.293375][T14384] veth0_vlan: entered promiscuous mode
[  758.308963][T14384] veth1_vlan: entered promiscuous mode
[  758.340751][T14384] veth0_macvtap: entered promiscuous mode
[  758.357916][T14384] veth1_macvtap: entered promiscuous mode
[  758.377827][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  758.389110][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.399129][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  758.409726][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.419728][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  758.430436][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.440402][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  758.451572][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.463501][T14384] batman_adv: batadv0: Interface activated: batadv_slave_0
[  758.480194][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  758.490888][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.501269][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  758.512187][T14385] Bluetooth: hci1: command tx timeout
[  758.513491][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.527683][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  758.538720][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.548964][T14384] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  758.559701][T14384] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  758.572132][T14384] batman_adv: batadv0: Interface activated: batadv_slave_1
[  758.584455][T14384] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  758.593806][T14384] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  758.604018][T14384] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  758.613046][T14384] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  758.700999][ T3513] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  758.721144][ T3513] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  758.748516][ T7349] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  758.757682][ T7349] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  759.101423][T14459] netlink: 209844 bytes leftover after parsing attributes in process `syz.5.3422'.
[  759.595395][T14474] netlink: 'syz.0.3418': attribute type 29 has an invalid length.
[  760.586536][T14385] Bluetooth: hci1: command tx timeout
[  761.779433][T14474] netlink: 'syz.0.3418': attribute type 29 has an invalid length.
[  762.319504][T14489] netlink: 'syz.0.3433': attribute type 29 has an invalid length.
[  762.396752][T14489] netlink: 'syz.0.3433': attribute type 29 has an invalid length.
[  762.516109][T14496] cgroup: fork rejected by pids controller in /syz9
[  762.666050][T14385] Bluetooth: hci1: command tx timeout
[  763.725779][T14516] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.3434'.
[  764.728916][ T5792] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  764.738888][ T5792] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  764.748470][ T5792] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  764.757551][ T5792] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  764.765519][ T5792] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  764.773879][ T5792] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  765.202522][T14532] netlink: 'syz.0.3439': attribute type 29 has an invalid length.
[  765.396311][T14532] netlink: 'syz.0.3439': attribute type 29 has an invalid length.
[  765.540474][T14538] cgroup: fork rejected by pids controller in /syz5
[  765.888310][T14546] syzkaller0: entered promiscuous mode
[  765.893958][T14546] syzkaller0: entered allmulticast mode
[  765.905253][T14524] chnl_net:caif_netlink_parms(): no params data found
[  766.749519][T14385] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  766.766130][T14385] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  766.792369][T14385] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  766.800997][T14385] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  766.840647][ T5103] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  766.844677][T14385] Bluetooth: hci2: command tx timeout
[  766.849652][ T5103] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  768.644595][T14524] bridge0: port 1(bridge_slave_0) entered blocking state
[  768.652747][T14524] bridge0: port 1(bridge_slave_0) entered disabled state
[  768.660411][T14524] bridge_slave_0: entered allmulticast mode
[  768.668291][T14524] bridge_slave_0: entered promiscuous mode
[  768.745266][T14524] bridge0: port 2(bridge_slave_1) entered blocking state
[  768.760376][T14524] bridge0: port 2(bridge_slave_1) entered disabled state
[  768.769222][T14524] bridge_slave_1: entered allmulticast mode
[  768.777092][T14524] bridge_slave_1: entered promiscuous mode
[  768.852982][T14524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  768.868071][T14524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  768.909876][ T5103] Bluetooth: hci2: command tx timeout
[  768.986404][ T5103] Bluetooth: hci0: command tx timeout
[  768.995128][T14524] team0: Port device team_slave_0 added
[  769.060952][T14524] team0: Port device team_slave_1 added
[  769.198050][T14524] batman_adv: batadv0: Adding interface: batadv_slave_0
[  769.205053][T14524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  769.234955][T14524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  769.257691][T14524] batman_adv: batadv0: Adding interface: batadv_slave_1
[  769.264816][T14524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  769.301803][T14524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  769.544025][T14524] hsr_slave_0: entered promiscuous mode
[  769.560690][T14524] hsr_slave_1: entered promiscuous mode
[  769.586738][T14524] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  769.594478][T14524] Cannot create hsr debugfs directory
[  769.609214][T14551] chnl_net:caif_netlink_parms(): no params data found
[  769.681200][T14579] netlink: 'syz.3.3453': attribute type 29 has an invalid length.
[  769.774260][T14579] netlink: 'syz.3.3453': attribute type 29 has an invalid length.
[  769.990707][T14551] bridge0: port 1(bridge_slave_0) entered blocking state
[  770.000849][T14551] bridge0: port 1(bridge_slave_0) entered disabled state
[  770.011068][T14551] bridge_slave_0: entered allmulticast mode
[  770.019570][T14551] bridge_slave_0: entered promiscuous mode
[  770.083575][ T7344] hsr_slave_0: left promiscuous mode
[  770.107850][ T7344] hsr_slave_1: left promiscuous mode
[  770.123561][ T7344] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  770.132748][ T7344] batman_adv: batadv0: Removing interface: batadv_slave_0
[  770.150461][ T7344] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  770.165723][ T7344] batman_adv: batadv0: Removing interface: batadv_slave_1
[  770.241914][ T7344] veth1_macvtap: left promiscuous mode
[  770.256158][ T7344] veth0_macvtap: left promiscuous mode
[  770.261866][ T7344] veth1_vlan: left promiscuous mode
[  770.267740][ T7344] veth0_vlan: left promiscuous mode
[  770.991981][ T5103] Bluetooth: hci2: command tx timeout
[  771.069107][ T5103] Bluetooth: hci0: command tx timeout
[  771.075217][ T7344] team_slave_1 (unregistering): left promiscuous mode
[  771.098258][ T7344] team0 (unregistering): Port device team_slave_1 removed
[  771.156809][ T7344] C (unregistering): left promiscuous mode
[  771.164037][ T7344] team0 (unregistering): Port device C removed
[  771.223165][ T7344] bond0 (unregistering): (slave 
4
@0Ù): Releasing backup interface
[  771.280004][ T7344] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  771.917180][ T7344] bond0 (unregistering): Released all slaves
[  771.963888][T14551] bridge0: port 2(bridge_slave_1) entered blocking state
[  771.971668][T14551] bridge0: port 2(bridge_slave_1) entered disabled state
[  771.980844][T14551] bridge_slave_1: entered allmulticast mode
[  771.988788][T14551] bridge_slave_1: entered promiscuous mode
[  772.129127][T14551] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  772.184211][T14551] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  772.281840][T14524] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  772.538145][T14524] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  772.581687][T14551] team0: Port device team_slave_0 added
[  772.678862][T14524] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  772.793345][T14551] team0: Port device team_slave_1 added
[  772.922777][T14524] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.009201][T14551] batman_adv: batadv0: Adding interface: batadv_slave_0
[  773.025997][T14551] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  773.060936][T14551] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  773.086387][ T5103] Bluetooth: hci2: command tx timeout
[  773.114696][T14551] batman_adv: batadv0: Adding interface: batadv_slave_1
[  773.122015][T14551] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  773.142460][T14612] netlink: 'syz.3.3464': attribute type 29 has an invalid length.
[  773.155922][ T5103] Bluetooth: hci0: command tx timeout
[  773.165330][T14551] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  773.636373][T14612] netlink: 'syz.3.3464': attribute type 29 has an invalid length.
[  773.781859][T14551] hsr_slave_0: entered promiscuous mode
[  773.791473][T14551] hsr_slave_1: entered promiscuous mode
[  773.798145][T14551] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  773.807718][T14551] Cannot create hsr debugfs directory
[  773.839756][ T7344] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.059311][ T7344] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.224955][ T7344] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.284561][T14524] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  774.365224][ T7344] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.408751][T14524] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  774.530630][T14524] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  774.579727][T14524] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  775.274360][ T5103] Bluetooth: hci0: command tx timeout
[  776.104833][T14524] 8021q: adding VLAN 0 to HW filter on device bond0
[  776.656077][T14524] 8021q: adding VLAN 0 to HW filter on device team0
[  776.763947][ T3513] bridge0: port 1(bridge_slave_0) entered blocking state
[  776.771315][ T3513] bridge0: port 1(bridge_slave_0) entered forwarding state
[  776.861879][ T3513] bridge0: port 2(bridge_slave_1) entered blocking state
[  776.869161][ T3513] bridge0: port 2(bridge_slave_1) entered forwarding state
[  777.239204][T14551] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  777.379932][T14551] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  777.395405][T14551] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  777.502433][T14551] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  778.262833][T14551] 8021q: adding VLAN 0 to HW filter on device bond0
[  778.371934][T14551] 8021q: adding VLAN 0 to HW filter on device team0
[  778.399063][T14524] 8021q: adding VLAN 0 to HW filter on device batadv0
[  778.432884][ T3513] bridge0: port 1(bridge_slave_0) entered blocking state
[  778.440128][ T3513] bridge0: port 1(bridge_slave_0) entered forwarding state
[  778.478038][ T3513] bridge0: port 2(bridge_slave_1) entered blocking state
[  778.485275][ T3513] bridge0: port 2(bridge_slave_1) entered forwarding state
[  779.126716][ T7344] hsr_slave_0: left promiscuous mode
[  779.133106][ T7344] hsr_slave_1: left promiscuous mode
[  779.140065][ T7344] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  779.148281][ T7344] batman_adv: batadv0: Removing interface: batadv_slave_0
[  779.157290][ T7344] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  779.164761][ T7344] batman_adv: batadv0: Removing interface: batadv_slave_1
[  779.179465][ T7344] hsr_slave_0: left promiscuous mode
[  779.185515][ T7344] hsr_slave_1: left promiscuous mode
[  779.192271][ T7344] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  779.200167][ T7344] batman_adv: batadv0: Removing interface: batadv_slave_0
[  779.208399][ T7344] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  779.217266][ T7344] batman_adv: batadv0: Removing interface: batadv_slave_1
[  779.257237][ T7344] veth1_macvtap: left promiscuous mode
[  779.263023][ T7344] veth0_macvtap: left promiscuous mode
[  779.269341][ T7344] veth1_vlan: left promiscuous mode
[  779.274681][ T7344] veth0_vlan: left promiscuous mode
[  779.281823][ T7344] veth1_macvtap: left promiscuous mode
[  779.287826][ T7344] veth0_macvtap: left promiscuous mode
[  779.293459][ T7344] veth1_vlan: left promiscuous mode
[  779.299205][ T7344] veth0_vlan: left promiscuous mode
[  780.046198][ T7344] team_slave_1 (unregistering): left promiscuous mode
[  780.057994][ T7344] team0 (unregistering): Port device team_slave_1 removed
[  780.108525][ T7344] team_slave_0 (unregistering): left promiscuous mode
[  780.116784][ T7344] team0 (unregistering): Port device team_slave_0 removed
[  780.168436][ T7344] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  780.226094][ T7344] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  780.754736][ T7344] bond0 (unregistering): Released all slaves
[  781.325332][ T7344] team0 (unregistering): Port device team_slave_1 removed
[  781.372831][ T7344] team0 (unregistering): Port device C removed
[  781.427014][ T7344] bond0 (unregistering): (slave 
4
@0Ù): Releasing backup interface
[  781.478807][ T7344] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  782.024575][ T7344] bond0 (unregistering): Released all slaves
[  782.068230][T14524] veth0_vlan: entered promiscuous mode
[  782.108720][T14524] veth1_vlan: entered promiscuous mode
[  782.129693][T14551] 8021q: adding VLAN 0 to HW filter on device batadv0
[  782.185563][T14524] veth0_macvtap: entered promiscuous mode
[  782.245697][T14524] veth1_macvtap: entered promiscuous mode
[  782.283286][T14524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  782.294856][T14524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  782.312972][T14524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  782.323985][T14524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  782.346893][T14524] batman_adv: batadv0: Interface activated: batadv_slave_0
[  782.358492][T14524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  782.369192][T14524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  782.379146][T14524] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  782.391156][T14524] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  782.423605][T14524] batman_adv: batadv0: Interface activated: batadv_slave_1
[  782.478440][T14524] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  782.490829][T14524] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  782.514361][T14524] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  782.523640][T14524] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  782.682310][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  782.714796][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  782.800119][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  782.816727][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  782.871338][T14551] veth0_vlan: entered promiscuous mode
[  782.907223][T14551] veth1_vlan: entered promiscuous mode
[  782.945139][T14551] veth0_macvtap: entered promiscuous mode
[  782.968047][T14551] veth1_macvtap: entered promiscuous mode
[  783.005336][T14551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  783.031442][T14551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.064085][T14551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  783.095610][T14551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.108992][T14551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  783.122640][T14551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.148566][T14551] batman_adv: batadv0: Interface activated: batadv_slave_0
[  783.280344][T14551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  783.315415][T14551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.333944][T14551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  783.352057][T14551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.370434][T14551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  783.500448][T14551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  783.607561][T14551] batman_adv: batadv0: Interface activated: batadv_slave_1
[  783.673115][T14551] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  783.718127][T14551] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  783.750964][T14551] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  783.806663][T14551] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  784.523477][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  784.537754][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  784.736726][ T3513] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  784.744620][ T3513] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  785.343302][T14721] netlink: 'syz.9.3487': attribute type 29 has an invalid length.
[  785.398196][T14721] netlink: 'syz.9.3487': attribute type 29 has an invalid length.
[  787.685730][T14750] netlink: 'syz.9.3497': attribute type 29 has an invalid length.
[  787.733270][T14750] netlink: 'syz.9.3497': attribute type 29 has an invalid length.
[  789.839113][T14782] netlink: 'syz.0.3509': attribute type 29 has an invalid length.
[  789.886061][T14782] netlink: 'syz.0.3509': attribute type 29 has an invalid length.
[  790.931928][T14812] netlink: 'syz.3.3521': attribute type 4 has an invalid length.
[  790.983536][T14812] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.3521'.
[  792.544685][ T5103] Bluetooth: hci2: unexpected event 0x04 length: 15 > 10
[  792.846730][T14859] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.3540'.
[  793.358053][T14867] netlink: 209844 bytes leftover after parsing attributes in process `syz.9.3542'.
[  793.417330][T14871] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.3544'.
[  794.586451][ T5103] Bluetooth: hci2: command tx timeout
[  795.121109][T14904] netlink: 209844 bytes leftover after parsing attributes in process `syz.9.3559'.
[  796.183080][T14915] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.3563'.
[  797.989098][ T5103] Bluetooth: hci1: unexpected event 0x04 length: 15 > 10
[  798.033838][T14932] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.3571'.
[  799.287473][T14944] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.3575'.
[  800.026015][ T5103] Bluetooth: hci1: command tx timeout
[  801.662225][T14972] netlink: 209844 bytes leftover after parsing attributes in process `syz.9.3584'.
[  801.692813][ T5103] Bluetooth: hci0: unexpected event 0x04 length: 15 > 10
[  802.992619][T14983] netlink: 55631 bytes leftover after parsing attributes in process `syz.9.3587'.
[  803.712786][ T5103] Bluetooth: hci0: command tx timeout
[  804.549653][T15007] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.3599'.
[  806.956633][T15045] netlink: 55631 bytes leftover after parsing attributes in process `syz.9.3611'.
[  808.825378][T15071] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.3626'.
[  809.074119][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  809.080818][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  810.663986][T15101] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.3637'.
[  811.060893][T15111] syz.9.3641[15111] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  811.061160][T15111] syz.9.3641[15111] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  817.460032][T15220] netlink: 'syz.5.3681': attribute type 39 has an invalid length.
[  818.013848][T15220] syz.5.3681 (15220) used greatest stack depth: 19952 bytes left
[  821.245393][T15269] netlink: 'syz.5.3698': attribute type 4 has an invalid length.
[  821.253801][T15269] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.3698'.
[  821.933619][T15250] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.3692'.
[  823.424626][T15294] netlink: 'syz.0.3708': attribute type 4 has an invalid length.
[  823.441037][T15294] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.3708'.
[  823.485293][T15298] netlink: 55631 bytes leftover after parsing attributes in process `syz.9.3709'.
[  824.394807][T15318] netlink: 'syz.5.3716': attribute type 19 has an invalid length.
[  824.431196][T15318] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3716'.
[  825.578008][T15338] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.3720'.
[  827.756388][T15375] netlink: 55631 bytes leftover after parsing attributes in process `syz.9.3735'.
[  827.915229][T15379] netlink: 'syz.3.3737': attribute type 21 has an invalid length.
[  827.928446][T15379] IPv6: NLM_F_CREATE should be specified when creating new route
[  827.941033][T15379] IPv6: Can't replace route, no match found
[  828.944193][T15403] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.3748'.
[  829.443114][T15405] syzkaller0: entered promiscuous mode
[  829.449053][T15405] syzkaller0: entered allmulticast mode
[  830.264123][ T5103] Bluetooth: hci2: unknown advertising packet type: 0xff
[  830.264187][ T5103] Bluetooth: hci2: unknown advertising packet type: 0x80
[  832.149274][T15426] netlink: 55631 bytes leftover after parsing attributes in process `syz.9.3758'.
[  832.386805][T15433] …: port 1(ip6gretap0) entered blocking state
[  832.393633][T15433] …: port 1(ip6gretap0) entered disabled state
[  832.401726][T15433] ip6gretap0: entered allmulticast mode
[  832.419262][T15433] ip6gretap0: entered promiscuous mode
[  832.491533][ T5103] Bluetooth: hci1: unexpected event 0x06 length: 15 > 3
[  832.525163][T15441] netlink: 'syz.5.3765': attribute type 3 has an invalid length.
[  832.541311][T15441] netlink: 'syz.5.3765': attribute type 1 has an invalid length.
[  832.561614][T15441] netlink: 60387 bytes leftover after parsing attributes in process `syz.5.3765'.
[  835.795267][T15481] netlink: 'syz.3.3781': attribute type 19 has an invalid length.
[  835.803372][T15481] netlink: 156 bytes leftover after parsing attributes in process `syz.3.3781'.
[  835.938946][T15493] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  836.306932][ T5103] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  836.320455][ T5103] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  838.591527][ T5792] Bluetooth: hci1: command 0x0406 tx timeout
[  839.178576][T15523] netlink: 'syz.3.3796': attribute type 1 has an invalid length.
[  839.186714][T15523] netlink: 'syz.3.3796': attribute type 4 has an invalid length.
[  839.194529][T15523] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.3796'.
[  839.204546][T15526] lo: entered allmulticast mode
[  839.222082][T15528] lo: entered promiscuous mode
[  839.230650][T15528] lo: left allmulticast mode
[  839.537152][T15537] syzkaller0: entered promiscuous mode
[  839.544844][T15537] syzkaller0: entered allmulticast mode
[  841.853293][T15543] netlink: 'syz.9.3803': attribute type 2 has an invalid length.
[  841.861263][T15543] netlink: 164 bytes leftover after parsing attributes in process `syz.9.3803'.
[  845.384962][T15580] netlink: 'syz.5.3818': attribute type 29 has an invalid length.
[  845.406331][T15580] netlink: 'syz.5.3818': attribute type 29 has an invalid length.
[  845.431053][T15580] netlink: 'syz.5.3818': attribute type 29 has an invalid length.
[  845.621271][T15580] syzkaller0: entered promiscuous mode
[  845.635894][T15580] syzkaller0: entered allmulticast mode
[  851.932487][T15619] syzkaller0: entered promiscuous mode
[  851.940584][T15619] syzkaller0: entered allmulticast mode
[  852.250441][T15639] netlink: 149476 bytes leftover after parsing attributes in process `syz.5.3837'.
[  856.518436][T15697] netlink: 'syz.5.3858': attribute type 2 has an invalid length.
[  856.528200][T15697] netlink: 212408 bytes leftover after parsing attributes in process `syz.5.3858'.
[  856.799180][T15706] syzkaller0: entered promiscuous mode
[  856.804972][T15706] syzkaller0: entered allmulticast mode
[  857.315372][ T5103] Bluetooth: hci0: unexpected event 0x06 length: 15 > 3
[  860.268790][T15730] netlink: 'syz.5.3872': attribute type 33 has an invalid length.
[  860.284357][T15730] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3872'.
[  860.298298][T15730] A link change request failed with some changes committed already. Interface veth1 may have been left with an inconsistent configuration, please check.
[  861.211106][T15786] netlink: 'syz.5.3896': attribute type 15 has an invalid length.
[  861.786732][T15807] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3905'.
[  863.469851][ T5792] Bluetooth: hci0: command 0x0406 tx timeout
[  867.641912][T15845] syzkaller0: entered promiscuous mode
[  867.648157][T15845] syzkaller0: entered allmulticast mode
[  867.894016][T15874] warn_alloc: 1 callbacks suppressed
[  867.894033][T15874] syz.3.3931: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  867.919641][T15874] CPU: 1 PID: 15874 Comm: syz.3.3931 Not tainted 6.6.102-syzkaller #0
[  867.928054][T15874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  867.938213][T15874] Call Trace:
[  867.941556][T15874]  <TASK>
[  867.944543][T15874]  dump_stack_lvl+0x16c/0x230
[  867.949397][T15874]  ? show_regs_print_info+0x20/0x20
[  867.954755][T15874]  ? load_image+0x3b0/0x3b0
[  867.959351][T15874]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  867.965862][T15874]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  867.972507][T15874]  warn_alloc+0x210/0x300
[  867.976941][T15874]  ? stack_trace_save+0x9c/0xe0
[  867.981944][T15874]  ? zone_watermark_ok_safe+0x230/0x230
[  867.987594][T15874]  ? kasan_set_track+0x5f/0x70
[  867.992399][T15874]  ? kasan_set_track+0x4e/0x70
[  867.997222][T15874]  ? __kasan_kmalloc+0x8f/0xa0
[  868.002034][T15874]  ? xsk_init_queue+0xb0/0x110
[  868.006867][T15874]  ? xsk_setsockopt+0x4db/0x6f0
[  868.011798][T15874]  ? do_sock_setsockopt+0x175/0x1a0
[  868.017076][T15874]  ? __x64_sys_setsockopt+0x184/0x200
[  868.022571][T15874]  __vmalloc_node_range+0x126/0x1320
[  868.028070][T15874]  ? free_vm_area+0x50/0x50
[  868.032767][T15874]  vmalloc_user+0x74/0x80
[  868.037461][T15874]  ? xskq_create+0xbf/0x170
[  868.042028][T15874]  xskq_create+0xbf/0x170
[  868.046448][T15874]  xsk_init_queue+0xb0/0x110
[  868.051115][T15874]  xsk_setsockopt+0x4db/0x6f0
[  868.055878][T15874]  ? xsk_poll+0x670/0x670
[  868.060332][T15874]  ? __fget_files+0x28/0x4d0
[  868.065017][T15874]  ? aa_sock_opt_perm+0x74/0x100
[  868.070079][T15874]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  868.075791][T15874]  ? security_socket_setsockopt+0x7e/0xa0
[  868.081609][T15874]  ? xsk_poll+0x670/0x670
[  868.086052][T15874]  do_sock_setsockopt+0x175/0x1a0
[  868.091151][T15874]  ? __fdget+0x180/0x210
[  868.095512][T15874]  __x64_sys_setsockopt+0x184/0x200
[  868.100822][T15874]  do_syscall_64+0x55/0xb0
[  868.105309][T15874]  ? clear_bhb_loop+0x40/0x90
[  868.110053][T15874]  ? clear_bhb_loop+0x40/0x90
[  868.114823][T15874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  868.120808][T15874] RIP: 0033:0x7fb00318ebe9
[  868.125347][T15874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  868.145205][T15874] RSP: 002b:00007fb00406e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  868.153750][T15874] RAX: ffffffffffffffda RBX: 00007fb0033b5fa0 RCX: 00007fb00318ebe9
[  868.161813][T15874] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[  868.169952][T15874] RBP: 00007fb003211e19 R08: 0000000000000004 R09: 0000000000000000
[  868.178075][T15874] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  868.186133][T15874] R13: 00007fb0033b6038 R14: 00007fb0033b5fa0 R15: 00007ffcd46e5b38
[  868.194283][T15874]  </TASK>
[  868.213233][T15874] Mem-Info:
[  868.218966][T15874] active_anon:24071 inactive_anon:0 isolated_anon:0
[  868.218966][T15874]  active_file:18560 inactive_file:40144 isolated_file:0
[  868.218966][T15874]  unevictable:768 dirty:115 writeback:0
[  868.218966][T15874]  slab_reclaimable:11260 slab_unreclaimable:102376
[  868.218966][T15874]  mapped:23772 shmem:17730 pagetables:418
[  868.218966][T15874]  sec_pagetables:0 bounce:0
[  868.218966][T15874]  kernel_misc_reclaimable:0
[  868.218966][T15874]  free:1324668 free_pcp:6130 free_cma:0
[  868.265488][T15874] Node 0 active_anon:96284kB inactive_anon:0kB active_file:63628kB inactive_file:160376kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:95032kB dirty:460kB writeback:0kB shmem:69384kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10288kB pagetables:1672kB sec_pagetables:0kB all_unreclaimable? no
[  868.298908][T15874] Node 1 active_anon:0kB inactive_anon:0kB active_file:10612kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:56kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  868.335880][T15874] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  868.378454][T15874] lowmem_reserve[]: 0 2525 2526 2526 2526
[  868.384513][T15874] Node 0 DMA32 free:1395528kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:96324kB inactive_anon:0kB active_file:63628kB inactive_file:159068kB unevictable:1536kB writepending:460kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:4696kB local_pcp:1560kB free_cma:0kB
[  868.421915][T15874] lowmem_reserve[]: 0 0 1 1 1
[  868.427927][T15874] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1308kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  868.461255][T15874] lowmem_reserve[]: 0 0 0 0 0
[  868.466580][T15874] Node 1 Normal free:3887764kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:10612kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:19264kB local_pcp:7904kB free_cma:0kB
[  868.496644][T15874] lowmem_reserve[]: 0 0 0 0 0
[  868.501605][T15874] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  868.521792][T15874] Node 0 DMA32: 1200*4kB (UME) 1531*8kB (UME) 949*16kB (UME) 1609*32kB (UME) 509*64kB (UME) 114*128kB (UME) 48*256kB (UME) 10*512kB (UM) 6*1024kB (UM) 8*2048kB (UME) 299*4096kB (M) = 1395528kB
[  868.543709][T15874] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  868.557205][T15874] Node 1 Normal: 203*4kB (UE) 61*8kB (UME) 42*16kB (UE) 83*32kB (UE) 20*64kB (UME) 5*128kB (UE) 3*256kB (UME) 1*512kB (E) 1*1024kB (U) 2*2048kB (ME) 946*4096kB (M) = 3887764kB
[  868.578912][T15874] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  868.589439][T15874] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  868.599315][T15874] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  868.609395][T15874] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  868.619142][T15874] 76434 total pagecache pages
[  868.624110][T15874] 0 pages in swap cache
[  868.629676][T15874] Free swap  = 124996kB
[  868.633941][T15874] Total swap = 124996kB
[  868.638607][T15874] 2097051 pages RAM
[  868.642504][T15874] 0 pages HighMem/MovableOnly
[  868.647424][T15874] 416138 pages reserved
[  868.651840][T15874] 0 pages cma reserved
[  870.511979][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  870.519669][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  870.836302][T15891] syzkaller0: entered promiscuous mode
[  870.841849][T15891] syzkaller0: entered allmulticast mode
[  870.854214][T15891] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487
[  872.128815][ T5103] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  872.579632][ T5103] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  872.893625][T15938] Zero length message leads to an empty skb
[  872.903615][T15938] netlink: 'syz.0.3956': attribute type 10 has an invalid length.
[  872.936317][T15938] batadv0: left promiscuous mode
[  872.953575][T15938] batadv0: left allmulticast mode
[  873.001162][T15938] 8021q: adding VLAN 0 to HW filter on device batadv0
[  873.019099][T15938] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  873.082905][T15942] netlink: 'syz.0.3956': attribute type 10 has an invalid length.
[  873.109430][T15942] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3956'.
[  873.131827][T15942] batadv0: entered promiscuous mode
[  873.137502][T15942] batadv0: entered allmulticast mode
[  873.158122][T15942] bond0: (slave batadv0): Releasing backup interface
[  873.180193][T15942] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  873.220994][T15947] netlink: 'syz.5.3960': attribute type 7 has an invalid length.
[  873.428035][T15959] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.3964'.
[  873.466293][T15959] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[  876.818575][T15979] netlink: 'syz.5.3973': attribute type 21 has an invalid length.
[  876.827038][T15979] netlink: 'syz.5.3973': attribute type 1 has an invalid length.
[  877.721786][ T5792] Bluetooth: hci1: command 0x0406 tx timeout
[  877.990065][ T5103] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  879.379341][ T5792] Bluetooth: hci1: unexpected event 0x03 length: 15 > 11
[  879.894884][T16075] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.4011'.
[  880.591541][T16080] netlink: 'syz.0.4014': attribute type 4 has an invalid length.
[  880.603670][T16080] netlink: 116 bytes leftover after parsing attributes in process `syz.0.4014'.
[  880.641899][T16085] netlink: 'syz.0.4014': attribute type 2 has an invalid length.
[  880.670160][T16085] netlink: 'syz.0.4014': attribute type 8 has an invalid length.
[  880.689351][T16085] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4014'.
[  881.146963][T16101] syz.3.4021[16101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  881.147109][T16101] syz.3.4021[16101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  881.396360][ T5792] Bluetooth: hci1: command 0x0406 tx timeout
[  882.373256][T16120] netlink: 209588 bytes leftover after parsing attributes in process `syz.5.4029'.
[  882.419659][T16120] netlink: zone id is out of range
[  882.430700][ T5792] Bluetooth: hci1: unexpected subevent 0x0a length: 150 > 30
[  882.438495][ T5792] Bluetooth: hci1: Invalid handle: 0x85b0 > 0x0eff
[  882.446155][T16120] netlink: zone id is out of range
[  882.451757][T16120] netlink: zone id is out of range
[  882.506130][T16120] netlink: zone id is out of range
[  882.511323][T16120] netlink: zone id is out of range
[  882.536161][T16120] netlink: zone id is out of range
[  882.541369][T16120] netlink: zone id is out of range
[  882.572889][T16120] netlink: zone id is out of range
[  882.596908][T16120] netlink: get zone limit has 4 unknown bytes
[  884.166320][T16142] sit0: entered allmulticast mode
[  886.791577][T16154] netlink: 'syz.9.4041': attribute type 10 has an invalid length.
[  887.250040][T16167] netlink: 'syz.0.4045': attribute type 4 has an invalid length.
[  887.266689][T16167] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4045'.
[  887.311125][T16167] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  887.357241][T16170] netlink: 'syz.9.4046': attribute type 2 has an invalid length.
[  887.674500][T16180] netlink: 14 bytes leftover after parsing attributes in process `syz.3.4050'.
[  887.695525][T16180] hsr_slave_0: left promiscuous mode
[  887.697830][ T5792] Bluetooth: hci0: unexpected subevent 0x0a length: 150 > 30
[  887.716055][T16180] hsr_slave_1: left promiscuous mode
[  887.843005][T16184] syzkaller0: entered promiscuous mode
[  887.859256][T16184] syzkaller0: entered allmulticast mode
[  887.958760][ T5792] Bluetooth: hci2: command 0x0406 tx timeout
[  888.502246][T16202] syzkaller0: entered promiscuous mode
[  888.547394][T16202] syzkaller0: entered allmulticast mode
[  888.630741][T16212] netlink: 'syz.5.4063': attribute type 10 has an invalid length.
[  888.646202][T16212] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4063'.
[  888.664364][T16212] batman_adv: batadv0: Adding interface: hsr_slave_1
[  888.680867][T16212] batman_adv: batadv0: The MTU of interface hsr_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  888.713563][T16212] batman_adv: batadv0: Interface activated: hsr_slave_1
[  889.787424][ T5103] Bluetooth: hci0: command 0x0406 tx timeout
[  891.336109][T16220] netlink: 'syz.3.4066': attribute type 4 has an invalid length.
[  891.343917][T16220] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4066'.
[  891.375379][T16220] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  891.437576][T16227] netlink: 'syz.0.4069': attribute type 10 has an invalid length.
[  891.462898][T16227] veth1_macvtap: left promiscuous mode
[  891.808926][T16239] syzkaller0: entered promiscuous mode
[  891.826215][T16239] syzkaller0: entered allmulticast mode
[  893.067896][ T5792] Bluetooth: hci0: command 0x0406 tx timeout
[  894.592350][T16241] syzkaller0: entered promiscuous mode
[  894.599386][T16241] syzkaller0: entered allmulticast mode
[  895.105896][T16280] netlink: 'syz.5.4085': attribute type 10 has an invalid length.
[  895.693134][T16280] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  896.234445][T16301] netlink: 'syz.9.4095': attribute type 10 has an invalid length.
[  896.857204][T16322] __sock_release: fasync list not empty!
[  897.205262][T16334] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.4108'.
[  897.492348][T16343] netlink: 188 bytes leftover after parsing attributes in process `syz.0.4112'.
[  897.918709][T16361] netlink: 'syz.5.4119': attribute type 39 has an invalid length.
[  898.474853][T16371] wg2: entered promiscuous mode
[  898.487108][T16371] wg2: entered allmulticast mode
[  899.179178][T16386] pim6reg1: entered promiscuous mode
[  899.184683][T16386] pim6reg1: entered allmulticast mode
[  899.523276][T16396] C: renamed from team_slave_0 (while UP)
[  899.554368][T16396] netlink: 'syz.9.4135': attribute type 3 has an invalid length.
[  899.562607][T16396] netlink: 152 bytes leftover after parsing attributes in process `syz.9.4135'.
[  899.573812][T16396] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  899.655040][T16400] syzkaller0: entered promiscuous mode
[  899.663611][T16400] syzkaller0: entered allmulticast mode
[  902.441942][T16433] sit0: entered allmulticast mode
[  902.499571][T16433] sit0: entered promiscuous mode
[  902.696757][T16438] syzkaller0: entered promiscuous mode
[  902.703819][T16438] syzkaller0: entered allmulticast mode
[  902.809985][ T5103] Bluetooth: hci1: unexpected event 0x09 length: 15 > 3
[  902.872602][T16449] ÿÿÿÿÿÿ: renamed from vlan1
[  905.255952][T16456] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4152'.
[  905.271583][T16457] syzkaller0: entered allmulticast mode
[  906.895593][ T5103] Bluetooth: hci2: unexpected event 0x08 length: 15 > 4
[  907.713057][T16531] netlink: 194488 bytes leftover after parsing attributes in process `syz.5.4177'.
[  908.087761][T16540] netlink: 'syz.5.4181': attribute type 10 has an invalid length.
[  908.095668][T16540] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4181'.
[  908.147629][T16540] batman_adv: batadv0: Adding interface: vlan1
[  908.154273][T16540] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  908.222681][T16540] batman_adv: batadv0: Interface activated: vlan1
[  908.299934][T16550] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  908.322495][T16550] batman_adv: batadv0: Removing interface: batadv_slave_0
[  908.352100][T16550] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  908.371100][T16550] batman_adv: batadv0: Removing interface: batadv_slave_1
[  908.682051][T16553] syzkaller0: entered promiscuous mode
[  908.687974][T16553] syzkaller0: entered allmulticast mode
[  908.804741][T16555] netlink: 199836 bytes leftover after parsing attributes in process `syz.9.4186'.
[  908.835060][T16555] netlink: 'syz.9.4186': attribute type 10 has an invalid length.
[  908.894653][T16555] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  908.910043][ T5103] Bluetooth: hci2: command 0x0406 tx timeout
[  909.427984][ T5792] Bluetooth: hci3: unexpected event 0x04 length: 15 > 10
[  911.473319][ T5792] Bluetooth: hci3: command 0x0406 tx timeout
[  912.968355][T16589] netlink: 'syz.0.4200': attribute type 27 has an invalid length.
[  913.098121][T16589] bond0: (slave bond_slave_0): Releasing backup interface
[  913.165145][T16593] netlink: 61211 bytes leftover after parsing attributes in process `syz.9.4202'.
[  913.833680][ T5792] Bluetooth: hci3: unexpected event 0x03 length: 15 > 11
[  914.153844][T16624] bond_slave_1: mtu less than device minimum
[  914.732438][T16645] bridge0: port 1(bridge_slave_0) entered disabled state
[  914.787279][T16645] bridge0: port 1(bridge_slave_0) entered blocking state
[  914.794551][T16645] bridge0: port 1(bridge_slave_0) entered forwarding state
[  914.950063][T16653] veth0_vlan: entered allmulticast mode
[  914.976129][T16653] batman_adv: batadv0: Interface deactivated: vlan1
[  915.103477][T16653] veth0_vlan: left promiscuous mode
[  915.150459][T16653] veth0_vlan: entered promiscuous mode
[  915.263411][T16653] batman_adv: batadv0: Interface activated: vlan1
[  915.513762][T16663] netlink: 'syz.9.4233': attribute type 4 has an invalid length.
[  915.538366][T16663] netlink: 152 bytes leftover after parsing attributes in process `syz.9.4233'.
[  915.560760][T16663] wlan1: mtu less than device minimum
[  915.851813][T16669] ±ÿ: renamed from team_slave_1 (while UP)
[  917.203003][T16675] netlink: 'syz.0.4236': attribute type 10 has an invalid length.
[  917.272707][T16675] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  917.639277][ T5792] Bluetooth: hci3: unexpected event 0x06 length: 15 > 3
[  917.837205][ T5792] Bluetooth: hci3: unexpected event 0x3b length: 15 > 10
[  917.953226][T16697] Ÿë
: port 1(veth0_to_bridge) entered blocking state
[  917.972134][T16697] Ÿë
: port 1(veth0_to_bridge) entered disabled state
[  917.981772][T16697] veth0_to_bridge: entered allmulticast mode
[  917.993310][T16697] veth0_to_bridge: entered promiscuous mode
[  918.007719][T16697] Ÿë
: port 2(erspan0) entered blocking state
[  918.022957][T16697] Ÿë
: port 2(erspan0) entered disabled state
[  918.039587][T16697] erspan0: entered allmulticast mode
[  918.049490][T16704] netlink: 'syz.3.4250': attribute type 3 has an invalid length.
[  918.062456][T16697] erspan0: entered promiscuous mode
[  918.075284][T16704] netlink: 'syz.3.4250': attribute type 4 has an invalid length.
[  918.087836][T16704] netlink: 9067 bytes leftover after parsing attributes in process `syz.3.4250'.
[  918.292008][T16711] netlink: 209820 bytes leftover after parsing attributes in process `syz.5.4253'.
[  918.783519][T16733] netlink: 'syz.0.4262': attribute type 29 has an invalid length.
[  918.797222][T16733] netlink: 'syz.0.4262': attribute type 29 has an invalid length.
[  919.081239][T16742] netlink: 'syz.3.4266': attribute type 10 has an invalid length.
[  919.270330][T16744] netlink: 'syz.9.4267': attribute type 10 has an invalid length.
[  919.374404][T16744] bond0: (slave wlan1): Releasing backup interface
[  919.453617][T16744] team0: Port device wlan1 added
[  919.487860][T16743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  919.536856][T16744] syz.9.4267 (16744) used greatest stack depth: 19400 bytes left
[  919.764532][ T5792] Bluetooth: hci3: unexpected event 0x0b length: 15 > 11
[  920.586878][T16771] netlink: 'syz.3.4280': attribute type 4 has an invalid length.
[  920.621632][T16771] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4280'.
[  921.301782][T16793] netlink: 9275 bytes leftover after parsing attributes in process `syz.0.4289'.
[  922.076244][T16801] »»»»»»: renamed from vlan0 (while UP)
[  922.160814][T16803] syzkaller0: entered promiscuous mode
[  922.166665][T16803] syzkaller0: entered allmulticast mode
[  923.794697][ T5103] Bluetooth: hci3: command 0x0406 tx timeout
[  925.263058][T16830] bridge0: port 2(bridge_slave_1) entered disabled state
[  925.270701][T16830] bridge0: port 1(bridge_slave_0) entered disabled state
[  925.289576][T16830] bridge0: entered allmulticast mode
[  925.326447][T16831] bridge_slave_1: left allmulticast mode
[  925.332208][T16831] bridge_slave_1: left promiscuous mode
[  925.367515][T16831] bridge0: port 2(bridge_slave_1) entered disabled state
[  925.402218][T16831] bridge_slave_0: left allmulticast mode
[  925.412416][T16831] bridge_slave_0: left promiscuous mode
[  925.440308][T16831] bridge0: port 1(bridge_slave_0) entered disabled state
[  926.001326][T16853] netlink: 14601 bytes leftover after parsing attributes in process `syz.9.4308'.
[  926.335554][ T5792] Bluetooth: hci3: unexpected event 0x08 length: 15 > 4
[  929.091839][T16863] mac80211_hwsim hwsim69 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  929.112454][T16867] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4312'.
[  929.142380][T16869] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  929.155818][T16869] batman_adv: batadv0: Removing interface: batadv_slave_0
[  929.174249][T16869] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  929.196016][T16869] batman_adv: batadv0: Removing interface: batadv_slave_1
[  930.286997][T16884] syzkaller0: entered promiscuous mode
[  930.301346][T16884] syzkaller0: entered allmulticast mode
[  931.964551][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  931.986064][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  934.877581][ T5792] Bluetooth: hci3: unexpected event 0x09 length: 15 > 3
[  935.397038][ T5792] Bluetooth: hci0: unexpected event 0x3c length: 15 > 7
[  938.091130][T16981] syz.9.4355[16981] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  938.098475][T16981] syz.9.4355[16981] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  938.324085][T16990] netlink: 'syz.9.4360': attribute type 10 has an invalid length.
[  938.370287][T16990] veth0_vlan: entered allmulticast mode
[  938.789599][T16990] veth0_vlan: left promiscuous mode
[  938.935077][T16990] veth0_vlan: entered promiscuous mode
[  939.114044][T16990] team0: Device veth0_vlan failed to register rx_handler
[  939.238509][T16990] syz.9.4360 (16990) used greatest stack depth: 18088 bytes left
[  943.232831][ T5792] Bluetooth: hci2: unexpected event 0x09 length: 15 > 3
[  943.664895][T17042] netlink: 'syz.0.4378': attribute type 11 has an invalid length.
[  943.694016][T17042] netlink: 195824 bytes leftover after parsing attributes in process `syz.0.4378'.
[  947.690705][T17101] netlink: 'syz.0.4401': attribute type 10 has an invalid length.
[  948.112254][T17101] team0: Device hsr_slave_0 failed to register rx_handler
[  949.479482][T17136] netlink: 'syz.3.4414': attribute type 1 has an invalid length.
[  949.487764][T17136] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.4414'.
[  949.500709][T17136] netlink: 9 bytes leftover after parsing attributes in process `syz.3.4414'.
[  951.545080][ T5792] Bluetooth: hci3: unexpected subevent 0x0a length: 150 > 30
[  951.562773][T17146] netlink: 55631 bytes leftover after parsing attributes in process `syz.3.4419'.
[  951.577215][T17146] netlink: 6324 bytes leftover after parsing attributes in process `syz.3.4419'.
[  951.586993][T17146] netlink: 2 bytes leftover after parsing attributes in process `syz.3.4419'.
[  953.087800][T17178] syzkaller0: entered promiscuous mode
[  953.117308][T17178] syzkaller0: entered allmulticast mode
[  953.191847][T17183] syzkaller0: tun_chr_ioctl cmd 1074025677
[  953.280117][T17183] syzkaller0: Linktype set failed because interface is up
[  953.626478][ T5103] Bluetooth: hci3: command 0x0406 tx timeout
[  956.514572][ T1094] syzkaller0: tun_net_xmit 76
[  956.529321][ T1094] syzkaller0: tun_net_xmit 48
[  956.536436][T14642] syzkaller0: tun_net_xmit 76
[  956.536622][T17215] syzkaller0: create flow: hash 2560481044 index 1
[  956.623753][T17214] syzkaller0: delete flow: hash 2560481044 index 1
[  958.891878][T17242] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.4453'.
[  959.045893][T17235] netlink: 'syz.9.4451': attribute type 17 has an invalid length.
[  959.053843][T17235] netlink: 'syz.9.4451': attribute type 16 has an invalid length.
[  959.061906][T17235] netlink: 152 bytes leftover after parsing attributes in process `syz.9.4451'.
[  959.595218][T17260] netlink: 'syz.0.4462': attribute type 2 has an invalid length.
[  959.613135][T17260] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4462'.
[  959.838439][ T5103] Bluetooth: hci1: unexpected event 0x0f length: 151 > 4
[  960.022023][T17275] veth1_macvtap: left promiscuous mode
[  960.069975][T17275] veth1_macvtap: entered promiscuous mode
[  960.078700][T17275] macsec0: entered promiscuous mode
[  960.084217][T17275] macsec0: entered allmulticast mode
[  960.089777][T17275] veth1_macvtap: entered allmulticast mode
[  960.101822][T17277] pim6reg1: entered promiscuous mode
[  960.109178][T17277] pim6reg1: entered allmulticast mode
[  960.824923][ T5103] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  960.901183][T17292] netlink: 'syz.5.4475': attribute type 6 has an invalid length.
[  960.946009][T17292] netlink: 168 bytes leftover after parsing attributes in process `syz.5.4475'.
[  961.257465][T17302] netlink: 'syz.3.4481': attribute type 9 has an invalid length.
[  961.287344][T17302] netlink: 49779 bytes leftover after parsing attributes in process `syz.3.4481'.
[  961.308659][T17303] netlink: 'syz.5.4480': attribute type 21 has an invalid length.
[  961.322988][T17303] netlink: 128 bytes leftover after parsing attributes in process `syz.5.4480'.
[  961.346418][T17303] netlink: 'syz.5.4480': attribute type 4 has an invalid length.
[  962.323299][T17328] syzkaller0: entered promiscuous mode
[  962.330102][T17328] syzkaller0: entered allmulticast mode
[  965.163841][T17345] netlink: 'syz.0.4497': attribute type 21 has an invalid length.
[  965.171832][T17345] IPv6: NLM_F_CREATE should be specified when creating new route
[  965.181128][T17345] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  965.188469][T17345] IPv6: NLM_F_CREATE should be set when creating new route
[  965.195919][T17345] IPv6: NLM_F_CREATE should be set when creating new route
[  965.203177][T17345] IPv6: NLM_F_CREATE should be set when creating new route
[  967.833820][ T5792] Bluetooth: hci0: unexpected subevent 0x0c length: 150 > 5
[  968.763896][T17411] syzkaller0: entered promiscuous mode
[  968.779743][T17411] syzkaller0: entered allmulticast mode
[  971.770141][T17423] netlink: 'syz.3.4529': attribute type 21 has an invalid length.
[  971.952364][ T5792] Bluetooth: hci0: unexpected event 0x09 length: 15 > 3
[  972.130196][T17451] sit0: entered promiscuous mode
[  972.407035][ T5792] Bluetooth: hci2: unexpected subevent 0x0c length: 150 > 5
[  972.891917][T17468] syz.0.4543[17468] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.892062][T17468] syz.0.4543[17468] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.914166][T17468] syz.0.4543[17468] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.929748][T17468] syz.0.4543[17468] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.944680][T17466] netlink: 132 bytes leftover after parsing attributes in process `syz.9.4542'.
[  973.008881][T17466] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4542'.
[  976.734307][T17549] syzkaller0: entered promiscuous mode
[  976.740536][T17549] syzkaller0: entered allmulticast mode
[  979.198606][T17569] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.4584'.
[  980.334080][T17615] syz.0.4605[17615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  980.334340][T17615] syz.0.4605[17615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  981.512125][T17631] syzkaller0: entered promiscuous mode
[  981.530292][T17631] syzkaller0: entered allmulticast mode
[  985.228822][T17693] netlink: 'syz.9.4647': attribute type 39 has an invalid length.
[  985.633542][T17701] netlink: 'syz.3.4642': attribute type 21 has an invalid length.
[  985.644432][T17701] netlink: 128 bytes leftover after parsing attributes in process `syz.3.4642'.
[  985.660397][T17701] netlink: 'syz.3.4642': attribute type 4 has an invalid length.
[  988.873209][T17743] netlink: 'syz.3.4657': attribute type 19 has an invalid length.
[  988.881589][T17743] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4657'.
[  990.362324][T17770] netlink: 'syz.5.4669': attribute type 21 has an invalid length.
[  990.372139][T17770] IPv6: NLM_F_CREATE should be specified when creating new route
[  990.394076][T17770] IPv6: Can't replace route, no match found
[  990.909091][ T5792] Bluetooth: hci0: unknown advertising packet type: 0xff
[  990.909170][ T5792] Bluetooth: hci0: unknown advertising packet type: 0x80
[  991.206491][T17799] syzkaller0: entered promiscuous mode
[  991.237761][T17799] syzkaller0: entered allmulticast mode
[  991.647071][T17812] netlink: 'syz.0.4685': attribute type 3 has an invalid length.
[  991.648091][ T5792] Bluetooth: hci0: unexpected event 0x06 length: 15 > 3
[  991.654895][T17812] netlink: 'syz.0.4685': attribute type 1 has an invalid length.
[  991.654914][T17812] netlink: 60387 bytes leftover after parsing attributes in process `syz.0.4685'.
[  993.393797][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  993.402212][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  993.951356][T17806] …: port 1(ip6gretap0) entered blocking state
[  993.961038][T17806] …: port 1(ip6gretap0) entered disabled state
[  993.968725][T17806] ip6gretap0: entered allmulticast mode
[  993.975590][T17806] ip6gretap0: entered promiscuous mode
[  994.809431][T17849] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  997.655761][T17872] lo: entered allmulticast mode
[  997.669369][T17870] netlink: 'syz.0.4711': attribute type 1 has an invalid length.
[  997.677876][T17870] netlink: 'syz.0.4711': attribute type 4 has an invalid length.
[  997.690605][T17870] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.4711'.
[  997.717277][T17875] lo: entered promiscuous mode
[  997.722129][T17875] lo: left allmulticast mode
[  998.035687][T17883] syzkaller0: entered promiscuous mode
[  998.053019][T17883] syzkaller0: entered allmulticast mode
[ 1000.990830][ T5792] Bluetooth: hci2: Received unexpected HCI Event 0x00
[ 1004.705957][T17935] netlink: 'syz.0.4734': attribute type 29 has an invalid length.
[ 1004.723652][T17935] netlink: 'syz.0.4734': attribute type 29 has an invalid length.
[ 1004.749294][T17935] netlink: 'syz.0.4734': attribute type 29 has an invalid length.
[ 1004.910211][T17935] syzkaller0: entered promiscuous mode
[ 1004.919167][T17935] syzkaller0: entered allmulticast mode
[ 1011.435124][T17966] netlink: 149476 bytes leftover after parsing attributes in process `syz.3.4745'.
[ 1011.773647][T17974] syzkaller0: entered promiscuous mode
[ 1011.782436][T17974] syzkaller0: entered allmulticast mode
[ 1012.858955][T17994] netlink: 'syz.9.4767': attribute type 2 has an invalid length.
[ 1012.867794][T17994] netlink: 212408 bytes leftover after parsing attributes in process `syz.9.4767'.
[ 1016.741700][ T5792] Bluetooth: hci3: unexpected event 0x06 length: 15 > 3
[ 1017.348938][T18054] syzkaller0: entered promiscuous mode
[ 1017.365324][T18054] syzkaller0: entered allmulticast mode
[ 1020.178729][T18061] netlink: 'syz.3.4788': attribute type 33 has an invalid length.
[ 1020.186923][T18061] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4788'.
[ 1020.199131][T18061] A link change request failed with some changes committed already. Interface veth1 may have been left with an inconsistent configuration, please check.
[ 1020.753818][T18087] netlink: 'syz.9.4801': attribute type 15 has an invalid length.
[ 1021.301257][T18108] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4810'.
[ 1022.295034][T18145] netlink: 'syz.5.4824': attribute type 10 has an invalid length.
[ 1022.324423][T18145] veth1_macvtap: left promiscuous mode
[ 1022.718787][T18149] syzkaller0: entered promiscuous mode
[ 1022.724344][T18149] syzkaller0: entered allmulticast mode
[ 1026.659088][T18169] netlink: 14 bytes leftover after parsing attributes in process `syz.9.4834'.
[ 1026.669006][T18169] hsr_slave_0: left promiscuous mode
[ 1026.675439][T18169] hsr_slave_1: left promiscuous mode
[ 1026.814286][T18172] netlink: 'syz.3.4837': attribute type 2 has an invalid length.
[ 1027.001816][T18177] sit0: left promiscuous mode
[ 1028.327858][ T5792] Bluetooth: hci3: unexpected subevent 0x0a length: 150 > 30
[ 1028.335317][ T5792] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[ 1031.066258][ T5103] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[ 1031.074424][ T5103] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[ 1031.084436][ T5103] CPU: 1 PID: 5103 Comm: kworker/u5:1 Not tainted 6.6.102-syzkaller #0
[ 1031.092742][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1031.102851][ T5103] Workqueue: hci1 hci_rx_work
[ 1031.107616][ T5103] Call Trace:
[ 1031.111030][ T5103]  <TASK>
[ 1031.114030][ T5103]  dump_stack_lvl+0x16c/0x230
[ 1031.118866][ T5103]  ? show_regs_print_info+0x20/0x20
[ 1031.124134][ T5103]  ? load_image+0x3b0/0x3b0
[ 1031.128722][ T5103]  sysfs_create_dir_ns+0x256/0x280
[ 1031.133906][ T5103]  ? hci_rx_work+0x43a/0xd80
[ 1031.138567][ T5103]  ? sysfs_warn_dup+0xa0/0xa0
[ 1031.143323][ T5103]  ? do_raw_spin_unlock+0x121/0x230
[ 1031.148703][ T5103]  kobject_add_internal+0x6b8/0xc70
[ 1031.154069][ T5103]  kobject_add+0x156/0x220
[ 1031.158639][ T5103]  ? __rwlock_init+0x150/0x150
[ 1031.163476][ T5103]  ? kobject_init+0x1e0/0x1e0
[ 1031.168231][ T5103]  ? _raw_spin_unlock+0x28/0x40
[ 1031.173153][ T5103]  ? get_device_parent+0x366/0x390
[ 1031.178332][ T5103]  device_add+0x408/0xc20
[ 1031.182851][ T5103]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1031.187856][ T5103]  le_conn_complete_evt+0xc37/0x1220
[ 1031.193223][ T5103]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1031.199642][ T5103]  ? bt_info+0x160/0x160
[ 1031.203945][ T5103]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1031.209646][ T5103]  ? skb_pull_data+0xfb/0x200
[ 1031.214412][ T5103]  hci_le_conn_complete_evt+0x187/0x440
[ 1031.220027][ T5103]  ? hci_remote_host_features_evt+0x160/0x160
[ 1031.226258][ T5103]  hci_event_packet+0x795/0x1210
[ 1031.231313][ T5103]  ? bis_list+0x290/0x290
[ 1031.235804][ T5103]  ? lockdep_hardirqs_on+0x98/0x150
[ 1031.241149][ T5103]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1031.246401][ T5103]  hci_rx_work+0x43a/0xd80
[ 1031.250909][ T5103]  ? process_scheduled_works+0x957/0x15b0
[ 1031.256703][ T5103]  process_scheduled_works+0xa45/0x15b0
[ 1031.262336][ T5103]  ? assign_work+0x400/0x400
[ 1031.267022][ T5103]  ? assign_work+0x39e/0x400
[ 1031.271704][ T5103]  worker_thread+0xa55/0xfc0
[ 1031.276606][ T5103]  kthread+0x2fa/0x390
[ 1031.280703][ T5103]  ? pr_cont_work+0x560/0x560
[ 1031.285470][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1031.290111][ T5103]  ret_from_fork+0x48/0x80
[ 1031.294570][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1031.299234][ T5103]  ret_from_fork_asm+0x11/0x20
[ 1031.304135][ T5103]  </TASK>
[ 1031.312941][ T5103] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1031.327031][ T5103] Bluetooth: hci1: failed to register connection device
[ 1031.496759][ T5792] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[ 1031.699081][T18237] syzkaller0: entered promiscuous mode
[ 1031.705231][T18237] syzkaller0: entered allmulticast mode
[ 1031.945485][T18246] syz.0.4868: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 1031.980260][T18246] CPU: 1 PID: 18246 Comm: syz.0.4868 Not tainted 6.6.102-syzkaller #0
[ 1031.988744][T18246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1031.999013][T18246] Call Trace:
[ 1032.002369][T18246]  <TASK>
[ 1032.005365][T18246]  dump_stack_lvl+0x16c/0x230
[ 1032.010125][T18246]  ? show_regs_print_info+0x20/0x20
[ 1032.015428][T18246]  ? load_image+0x3b0/0x3b0
[ 1032.020041][T18246]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1032.026538][T18246]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 1032.033234][T18246]  warn_alloc+0x210/0x300
[ 1032.037806][T18246]  ? stack_trace_save+0x9c/0xe0
[ 1032.042834][T18246]  ? zone_watermark_ok_safe+0x230/0x230
[ 1032.048606][T18246]  ? kasan_set_track+0x5f/0x70
[ 1032.053559][T18246]  ? kasan_set_track+0x4e/0x70
[ 1032.058541][T18246]  ? __kasan_kmalloc+0x8f/0xa0
[ 1032.063610][T18246]  ? xsk_init_queue+0xb0/0x110
[ 1032.068488][T18246]  ? xsk_setsockopt+0x4db/0x6f0
[ 1032.073471][T18246]  ? do_sock_setsockopt+0x175/0x1a0
[ 1032.078909][T18246]  ? __x64_sys_setsockopt+0x184/0x200
[ 1032.084457][T18246]  __vmalloc_node_range+0x126/0x1320
[ 1032.090177][T18246]  ? free_vm_area+0x50/0x50
[ 1032.094907][T18246]  vmalloc_user+0x74/0x80
[ 1032.099378][T18246]  ? xskq_create+0xbf/0x170
[ 1032.104087][T18246]  xskq_create+0xbf/0x170
[ 1032.108664][T18246]  xsk_init_queue+0xb0/0x110
[ 1032.113421][T18246]  xsk_setsockopt+0x4db/0x6f0
[ 1032.118462][T18246]  ? xsk_poll+0x670/0x670
[ 1032.122988][T18246]  ? __fget_files+0x28/0x4d0
[ 1032.127768][T18246]  ? aa_sock_opt_perm+0x74/0x100
[ 1032.132878][T18246]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 1032.138646][T18246]  ? security_socket_setsockopt+0x7e/0xa0
[ 1032.144605][T18246]  ? xsk_poll+0x670/0x670
[ 1032.149373][T18246]  do_sock_setsockopt+0x175/0x1a0
[ 1032.154527][T18246]  ? __fdget+0x180/0x210
[ 1032.158924][T18246]  __x64_sys_setsockopt+0x184/0x200
[ 1032.164316][T18246]  do_syscall_64+0x55/0xb0
[ 1032.168855][T18246]  ? clear_bhb_loop+0x40/0x90
[ 1032.173646][T18246]  ? clear_bhb_loop+0x40/0x90
[ 1032.178505][T18246]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1032.184685][T18246] RIP: 0033:0x7f2822f8ebe9
[ 1032.189176][T18246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1032.208873][T18246] RSP: 002b:00007f2823e0c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1032.217558][T18246] RAX: ffffffffffffffda RBX: 00007f28231b5fa0 RCX: 00007f2822f8ebe9
[ 1032.225645][T18246] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[ 1032.233699][T18246] RBP: 00007f2823011e19 R08: 0000000000000004 R09: 0000000000000000
[ 1032.241939][T18246] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[ 1032.250005][T18246] R13: 00007f28231b6038 R14: 00007f28231b5fa0 R15: 00007fff449cecf8
[ 1032.258146][T18246]  </TASK>
[ 1032.277197][T18246] Mem-Info:
[ 1032.280468][T18246] active_anon:7751 inactive_anon:0 isolated_anon:0
[ 1032.280468][T18246]  active_file:18560 inactive_file:40204 isolated_file:0
[ 1032.280468][T18246]  unevictable:768 dirty:241 writeback:0
[ 1032.280468][T18246]  slab_reclaimable:11326 slab_unreclaimable:102373
[ 1032.280468][T18246]  mapped:23687 shmem:1385 pagetables:415
[ 1032.280468][T18246]  sec_pagetables:0 bounce:0
[ 1032.280468][T18246]  kernel_misc_reclaimable:0
[ 1032.280468][T18246]  free:1338207 free_pcp:8216 free_cma:0
[ 1032.319701][T18244] syzkaller0: entered promiscuous mode
[ 1032.354522][T18246] Node 0 active_anon:31004kB inactive_anon:0kB active_file:63628kB inactive_file:160616kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:94692kB dirty:964kB writeback:0kB shmem:4004kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10472kB pagetables:1660kB sec_pagetables:0kB all_unreclaimable? no
[ 1032.357934][T18244] syzkaller0: entered allmulticast mode
[ 1032.401698][T18246] Node 1 active_anon:0kB inactive_anon:0kB active_file:10612kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:56kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1032.445019][T18246] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1032.503865][T18246] lowmem_reserve[]: 0 2525 2526 2526 2526
[ 1032.515195][T18246] Node 0 DMA32 free:1449396kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:31116kB inactive_anon:0kB active_file:63628kB inactive_file:159308kB unevictable:1536kB writepending:964kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:12400kB local_pcp:1672kB free_cma:0kB
[ 1032.551445][T18246] lowmem_reserve[]: 0 0 1 1 1
[ 1032.557226][T18246] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1308kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1032.592063][T18246] lowmem_reserve[]: 0 0 0 0 0
[ 1032.600218][T18246] Node 1 Normal free:3887764kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:10612kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:19264kB local_pcp:11360kB free_cma:0kB
[ 1032.685927][T18246] lowmem_reserve[]: 0 0 0 0 0
[ 1032.691195][T18246] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1032.704933][T18246] Node 0 DMA32: 1377*4kB (UM) 1134*8kB (UM) 692*16kB (UME) 2167*32kB (UME) 751*64kB (UME) 130*128kB (UME) 49*256kB (UME) 26*512kB (UM) 14*1024kB (UM) 12*2048kB (UME) 299*4096kB (M) = 1449172kB
[ 1032.746410][T18246] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1032.798194][T18246] Node 1 Normal: 203*4kB (UE) 61*8kB (UME) 42*16kB (UE) 83*32kB (UE) 20*64kB (UME) 5*128kB (UE) 3*256kB (UME) 1*512kB (E) 1*1024kB (U) 2*2048kB (ME) 946*4096kB (M) = 3887764kB
[ 1032.865972][T18246] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1032.916164][T18246] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1032.947534][T18246] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1032.988239][T18246] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1032.998136][T18246] 60149 total pagecache pages
[ 1033.002875][T18246] 0 pages in swap cache
[ 1033.008012][T18246] Free swap  = 124996kB
[ 1033.012356][T18246] Total swap = 124996kB
[ 1033.022941][T18246] 2097051 pages RAM
[ 1033.027184][T18246] 0 pages HighMem/MovableOnly
[ 1033.032094][T18246] 416138 pages reserved
[ 1033.036794][T18246] 0 pages cma reserved
[ 1035.733702][T18280] syzkaller0: entered promiscuous mode
[ 1035.739605][T18280] syzkaller0: entered allmulticast mode
[ 1038.175655][T18298] netlink: 194488 bytes leftover after parsing attributes in process `syz.0.4892'.
[ 1038.272669][T18302] netlink: 'syz.5.4886': attribute type 10 has an invalid length.
[ 1038.545567][T18308] syzkaller0: entered promiscuous mode
[ 1038.555424][T18308] syzkaller0: entered allmulticast mode
[ 1038.739802][T18316] sit0: entered allmulticast mode
[ 1039.803885][ T5103] Bluetooth: hci2: unexpected event 0x04 length: 15 > 10
[ 1041.866092][ T5103] Bluetooth: hci2: command 0x0406 tx timeout
[ 1041.943614][T18316] sit0: entered promiscuous mode
[ 1042.165566][T18343] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.4899'.
[ 1042.435891][T18355] bond_slave_1: mtu less than device minimum
[ 1042.914047][T18373] syz.5.4910[18373] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1042.914312][T18373] syz.5.4910[18373] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1050.457441][T18454] netlink: 'syz.0.4950': attribute type 10 has an invalid length.
[ 1050.480522][T18454] veth0_vlan: left promiscuous mode
[ 1050.502044][T18454] veth0_vlan: entered promiscuous mode
[ 1050.551752][T18454] team0: Device veth0_vlan failed to register rx_handler
[ 1051.516108][T18469] netlink: 'syz.5.4955': attribute type 11 has an invalid length.
[ 1051.552079][T18469] netlink: 195824 bytes leftover after parsing attributes in process `syz.5.4955'.
[ 1053.977613][T18497] netlink: 'syz.9.4967': attribute type 1 has an invalid length.
[ 1053.985604][T18497] netlink: 112860 bytes leftover after parsing attributes in process `syz.9.4967'.
[ 1054.017995][T18497] netlink: 9 bytes leftover after parsing attributes in process `syz.9.4967'.
[ 1054.044776][T18501] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.4968'.
[ 1054.064571][T18501] netlink: 6324 bytes leftover after parsing attributes in process `syz.5.4968'.
[ 1054.080983][T18501] netlink: 2 bytes leftover after parsing attributes in process `syz.5.4968'.
[ 1054.399122][ T5103] Bluetooth: hci1: unexpected subevent 0x0a length: 150 > 30
[ 1054.407329][ T5103] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[ 1054.416911][ T5103] CPU: 1 PID: 5103 Comm: kworker/u5:1 Not tainted 6.6.102-syzkaller #0
[ 1054.425380][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1054.435588][ T5103] Workqueue: hci1 hci_rx_work
[ 1054.440314][ T5103] Call Trace:
[ 1054.443617][ T5103]  <TASK>
[ 1054.446570][ T5103]  dump_stack_lvl+0x16c/0x230
[ 1054.451543][ T5103]  ? show_regs_print_info+0x20/0x20
[ 1054.456785][ T5103]  ? load_image+0x3b0/0x3b0
[ 1054.461343][ T5103]  sysfs_create_dir_ns+0x256/0x280
[ 1054.466492][ T5103]  ? hci_rx_work+0x43a/0xd80
[ 1054.471202][ T5103]  ? sysfs_warn_dup+0xa0/0xa0
[ 1054.476006][ T5103]  ? do_raw_spin_unlock+0x121/0x230
[ 1054.481243][ T5103]  kobject_add_internal+0x6b8/0xc70
[ 1054.486486][ T5103]  kobject_add+0x156/0x220
[ 1054.490967][ T5103]  ? __rwlock_init+0x150/0x150
[ 1054.495760][ T5103]  ? kobject_init+0x1e0/0x1e0
[ 1054.500487][ T5103]  ? _raw_spin_unlock+0x28/0x40
[ 1054.505376][ T5103]  ? get_device_parent+0x366/0x390
[ 1054.510521][ T5103]  device_add+0x408/0xc20
[ 1054.514891][ T5103]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1054.519860][ T5103]  le_conn_complete_evt+0xc37/0x1220
[ 1054.525207][ T5103]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1054.531500][ T5103]  ? bt_info+0x160/0x160
[ 1054.535775][ T5103]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1054.541526][ T5103]  ? skb_pull_data+0xfb/0x200
[ 1054.546244][ T5103]  hci_le_enh_conn_complete_evt+0x189/0x460
[ 1054.552170][ T5103]  ? hci_le_remote_conn_param_req_evt+0xcc0/0xcc0
[ 1054.558614][ T5103]  ? hci_remote_host_features_evt+0x160/0x160
[ 1054.564721][ T5103]  hci_event_packet+0x795/0x1210
[ 1054.569741][ T5103]  ? bis_list+0x290/0x290
[ 1054.574102][ T5103]  ? lockdep_hardirqs_on+0x98/0x150
[ 1054.579343][ T5103]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1054.584578][ T5103]  hci_rx_work+0x43a/0xd80
[ 1054.589048][ T5103]  ? process_scheduled_works+0x957/0x15b0
[ 1054.594814][ T5103]  process_scheduled_works+0xa45/0x15b0
[ 1054.600531][ T5103]  ? assign_work+0x400/0x400
[ 1054.605153][ T5103]  ? assign_work+0x39e/0x400
[ 1054.609770][ T5103]  worker_thread+0xa55/0xfc0
[ 1054.614499][ T5103]  kthread+0x2fa/0x390
[ 1054.618581][ T5103]  ? pr_cont_work+0x560/0x560
[ 1054.623315][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1054.627921][ T5103]  ret_from_fork+0x48/0x80
[ 1054.632358][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1054.636969][ T5103]  ret_from_fork_asm+0x11/0x20
[ 1054.641774][ T5103]  </TASK>
[ 1054.646958][ T5103] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1054.663548][ T5103] Bluetooth: hci1: failed to register connection device
[ 1054.859840][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.866484][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.218401][T18525] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:0603:0000:0023 with DS=0x31
[ 1058.300392][T18575] netlink: 'syz.3.5007': attribute type 6 has an invalid length.
[ 1058.316394][T18575] netlink: 168 bytes leftover after parsing attributes in process `syz.3.5007'.
[ 1058.511220][T18586] netlink: 'syz.5.5010': attribute type 9 has an invalid length.
[ 1058.521759][T18586] netlink: 49779 bytes leftover after parsing attributes in process `syz.5.5010'.
[ 1058.837194][ T5103] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[ 1058.845241][ T5103] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[ 1058.854684][ T5103] CPU: 1 PID: 5103 Comm: kworker/u5:1 Not tainted 6.6.102-syzkaller #0
[ 1058.862980][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1058.873113][ T5103] Workqueue: hci3 hci_rx_work
[ 1058.877861][ T5103] Call Trace:
[ 1058.881184][ T5103]  <TASK>
[ 1058.884316][ T5103]  dump_stack_lvl+0x16c/0x230
[ 1058.889694][ T5103]  ? show_regs_print_info+0x20/0x20
[ 1058.895000][ T5103]  ? load_image+0x3b0/0x3b0
[ 1058.899601][ T5103]  sysfs_create_dir_ns+0x256/0x280
[ 1058.904955][ T5103]  ? hci_rx_work+0x43a/0xd80
[ 1058.909779][ T5103]  ? sysfs_warn_dup+0xa0/0xa0
[ 1058.914526][ T5103]  ? do_raw_spin_unlock+0x121/0x230
[ 1058.919794][ T5103]  kobject_add_internal+0x6b8/0xc70
[ 1058.925099][ T5103]  kobject_add+0x156/0x220
[ 1058.929590][ T5103]  ? __rwlock_init+0x150/0x150
[ 1058.934426][ T5103]  ? kobject_init+0x1e0/0x1e0
[ 1058.939254][ T5103]  ? _raw_spin_unlock+0x28/0x40
[ 1058.944177][ T5103]  ? get_device_parent+0x366/0x390
[ 1058.949352][ T5103]  device_add+0x408/0xc20
[ 1058.953729][ T5103]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1058.958709][ T5103]  le_conn_complete_evt+0xc37/0x1220
[ 1058.964057][ T5103]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1058.970348][ T5103]  ? bt_info+0x160/0x160
[ 1058.974641][ T5103]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1058.980363][ T5103]  ? skb_pull_data+0xfb/0x200
[ 1058.985117][ T5103]  hci_le_conn_complete_evt+0x187/0x440
[ 1058.990702][ T5103]  ? hci_remote_host_features_evt+0x160/0x160
[ 1058.996839][ T5103]  hci_event_packet+0x795/0x1210
[ 1059.001842][ T5103]  ? bis_list+0x290/0x290
[ 1059.006217][ T5103]  ? lockdep_hardirqs_on+0x98/0x150
[ 1059.011449][ T5103]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1059.016684][ T5103]  hci_rx_work+0x43a/0xd80
[ 1059.021136][ T5103]  ? process_scheduled_works+0x957/0x15b0
[ 1059.026884][ T5103]  process_scheduled_works+0xa45/0x15b0
[ 1059.032491][ T5103]  ? assign_work+0x400/0x400
[ 1059.037115][ T5103]  ? assign_work+0x39e/0x400
[ 1059.041736][ T5103]  worker_thread+0xa55/0xfc0
[ 1059.046463][ T5103]  kthread+0x2fa/0x390
[ 1059.050545][ T5103]  ? pr_cont_work+0x560/0x560
[ 1059.055502][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1059.060112][ T5103]  ret_from_fork+0x48/0x80
[ 1059.064549][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1059.069162][ T5103]  ret_from_fork_asm+0x11/0x20
[ 1059.073967][ T5103]  </TASK>
[ 1059.085784][ T5103] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1059.100172][ T5103] Bluetooth: hci3: failed to register connection device
[ 1062.533486][ T5792] Bluetooth: hci3: unexpected subevent 0x0c length: 150 > 5
[ 1062.577654][ T5792] Bluetooth: hci2: unexpected event 0x09 length: 15 > 3
[ 1066.242444][T18713] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5049'.
[ 1066.268070][T18713] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5049'.
[ 1069.750499][T18747] netlink: 'syz.9.5062': attribute type 19 has an invalid length.
[ 1069.760195][T18747] netlink: 40 bytes leftover after parsing attributes in process `syz.9.5062'.
[ 1071.811116][T18771] netlink: 'syz.0.5071': attribute type 21 has an invalid length.
[ 1071.836375][T18771] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1071.856301][T18771] IPv6: Can't replace route, no match found
[ 1072.491971][T18782] netlink: 'syz.0.5075': attribute type 19 has an invalid length.
[ 1072.506319][T18782] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5075'.
[ 1073.659386][T18817] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.5089'.
[ 1073.722374][T18820] netlink: 'syz.3.5090': attribute type 19 has an invalid length.
[ 1073.736369][T18820] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5090'.
[ 1075.242996][T18855] netlink: 'syz.9.5101': attribute type 21 has an invalid length.
[ 1075.262278][T18855] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1075.279728][T18855] IPv6: Can't replace route, no match found
[ 1077.300819][T18915] netlink: 'syz.0.5130': attribute type 21 has an invalid length.
[ 1077.318443][T18915] IPv6: Can't replace route, no match found
[ 1077.471222][ T5792] Bluetooth: hci3: unknown advertising packet type: 0xff
[ 1077.471260][ T5792] Bluetooth: hci3: unknown advertising packet type: 0x80
[ 1077.574878][T18925] syzkaller0: entered promiscuous mode
[ 1077.608287][T18925] syzkaller0: entered allmulticast mode
[ 1080.076937][ T5792] Bluetooth: hci2: unexpected event 0x06 length: 15 > 3
[ 1080.161660][T18938] …: port 1(ip6gretap0) entered blocking state
[ 1080.181188][T18938] …: port 1(ip6gretap0) entered disabled state
[ 1080.189317][T18938] ip6gretap0: entered allmulticast mode
[ 1080.199911][T18938] ip6gretap0: entered promiscuous mode
[ 1080.371270][T18945] netlink: 'syz.9.5141': attribute type 3 has an invalid length.
[ 1080.406334][T18945] netlink: 'syz.9.5141': attribute type 1 has an invalid length.
[ 1080.414143][T18945] netlink: 60387 bytes leftover after parsing attributes in process `syz.9.5141'.
[ 1081.625189][T18980] …: port 1(ip6gretap0) entered blocking state
[ 1081.642569][T18980] …: port 1(ip6gretap0) entered disabled state
[ 1081.666256][T18980] ip6gretap0: entered allmulticast mode
[ 1081.683473][T18980] ip6gretap0: entered promiscuous mode
[ 1081.733314][T18984] netlink: 'syz.3.5157': attribute type 3 has an invalid length.
[ 1081.745818][T18984] netlink: 'syz.3.5157': attribute type 1 has an invalid length.
[ 1081.771596][T18984] netlink: 60387 bytes leftover after parsing attributes in process `syz.3.5157'.
[ 1084.079583][T19038] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1086.188473][ T5103] Bluetooth: hci2: command 0x0406 tx timeout
[ 1090.984896][T19075] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1090.996398][T19085] netlink: 'syz.9.5197': attribute type 1 has an invalid length.
[ 1091.004199][T19085] netlink: 'syz.9.5197': attribute type 4 has an invalid length.
[ 1091.015925][T19085] netlink: 9462 bytes leftover after parsing attributes in process `syz.9.5197'.
[ 1094.977020][ T5792] Bluetooth: hci3: Received unexpected HCI Event 0x00
[ 1098.533695][T19140] netlink: 'syz.3.5217': attribute type 29 has an invalid length.
[ 1098.606162][T19140] netlink: 'syz.3.5217': attribute type 29 has an invalid length.
[ 1098.624742][T19143] netlink: 'syz.3.5217': attribute type 29 has an invalid length.
[ 1098.744544][T19140] syzkaller0: entered promiscuous mode
[ 1098.765933][T19140] syzkaller0: entered allmulticast mode
[ 1103.575908][ T5792] Bluetooth: hci1: Received unexpected HCI Event 0x00
[ 1103.749082][T19157] syzkaller0: entered promiscuous mode
[ 1103.765038][T19157] syzkaller0: entered allmulticast mode
[ 1107.188933][T19187] netlink: 'syz.5.5242': attribute type 29 has an invalid length.
[ 1107.197561][T19187] netlink: 'syz.5.5242': attribute type 29 has an invalid length.
[ 1107.219518][T19187] netlink: 'syz.5.5242': attribute type 29 has an invalid length.
[ 1107.367334][T19187] syzkaller0: entered promiscuous mode
[ 1107.391818][T19187] syzkaller0: entered allmulticast mode
[ 1108.530556][ T5792] Bluetooth: hci2: Received unexpected HCI Event 0x00
[ 1112.564984][ T5792] Bluetooth: hci1: unexpected event 0x06 length: 15 > 3
[ 1112.923556][T19215] netlink: 'syz.3.5244': attribute type 2 has an invalid length.
[ 1112.989087][T19215] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.5244'.
[ 1116.004559][T19260] netlink: 'syz.0.5259': attribute type 2 has an invalid length.
[ 1116.080938][T19260] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.5259'.
[ 1116.314800][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.336807][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.803347][T19265] netlink: 'syz.0.5276': attribute type 2 has an invalid length.
[ 1116.865874][T19265] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.5276'.
[ 1118.121859][T19278] syzkaller0: entered promiscuous mode
[ 1118.134638][T19278] syzkaller0: entered allmulticast mode
[ 1121.402760][T19300] netlink: 'syz.3.5282': attribute type 2 has an invalid length.
[ 1121.478412][T19300] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.5282'.
[ 1125.653942][T19350] syzkaller0: entered promiscuous mode
[ 1125.661171][T19350] syzkaller0: entered allmulticast mode
[ 1127.613545][T19373] syz.9.5308: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz9,mems_allowed=0-1
[ 1127.639976][T19373] CPU: 0 PID: 19373 Comm: syz.9.5308 Not tainted 6.6.102-syzkaller #0
[ 1127.648276][T19373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1127.658458][T19373] Call Trace:
[ 1127.661861][T19373]  <TASK>
[ 1127.664899][T19373]  dump_stack_lvl+0x16c/0x230
[ 1127.669730][T19373]  ? show_regs_print_info+0x20/0x20
[ 1127.675077][T19373]  ? load_image+0x3b0/0x3b0
[ 1127.679771][T19373]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1127.686325][T19373]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 1127.692986][T19373]  warn_alloc+0x210/0x300
[ 1127.697559][T19373]  ? stack_trace_save+0x9c/0xe0
[ 1127.702586][T19373]  ? zone_watermark_ok_safe+0x230/0x230
[ 1127.708429][T19373]  ? kasan_set_track+0x5f/0x70
[ 1127.713320][T19373]  ? kasan_set_track+0x4e/0x70
[ 1127.718214][T19373]  ? __kasan_kmalloc+0x8f/0xa0
[ 1127.723103][T19373]  ? xsk_init_queue+0xb0/0x110
[ 1127.728055][T19373]  ? xsk_setsockopt+0x4db/0x6f0
[ 1127.732986][T19373]  ? do_sock_setsockopt+0x175/0x1a0
[ 1127.738275][T19373]  ? __x64_sys_setsockopt+0x184/0x200
[ 1127.743770][T19373]  __vmalloc_node_range+0x126/0x1320
[ 1127.749286][T19373]  ? free_vm_area+0x50/0x50
[ 1127.753924][T19373]  vmalloc_user+0x74/0x80
[ 1127.758332][T19373]  ? xskq_create+0xbf/0x170
[ 1127.762899][T19373]  xskq_create+0xbf/0x170
[ 1127.767483][T19373]  xsk_init_queue+0xb0/0x110
[ 1127.772452][T19373]  xsk_setsockopt+0x4db/0x6f0
[ 1127.777396][T19373]  ? xsk_poll+0x670/0x670
[ 1127.781827][T19373]  ? __fget_files+0x28/0x4d0
[ 1127.786499][T19373]  ? aa_sock_opt_perm+0x74/0x100
[ 1127.791611][T19373]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 1127.797225][T19373]  ? security_socket_setsockopt+0x7e/0xa0
[ 1127.803006][T19373]  ? xsk_poll+0x670/0x670
[ 1127.807430][T19373]  do_sock_setsockopt+0x175/0x1a0
[ 1127.812560][T19373]  ? __fdget+0x180/0x210
[ 1127.816894][T19373]  __x64_sys_setsockopt+0x184/0x200
[ 1127.822206][T19373]  do_syscall_64+0x55/0xb0
[ 1127.826686][T19373]  ? clear_bhb_loop+0x40/0x90
[ 1127.831427][T19373]  ? clear_bhb_loop+0x40/0x90
[ 1127.836177][T19373]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1127.842146][T19373] RIP: 0033:0x7fb9b6f8ebe9
[ 1127.846630][T19373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1127.866644][T19373] RSP: 002b:00007fb9b7e83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1127.875247][T19373] RAX: ffffffffffffffda RBX: 00007fb9b71b5fa0 RCX: 00007fb9b6f8ebe9
[ 1127.883311][T19373] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005
[ 1127.891414][T19373] RBP: 00007fb9b7011e19 R08: 0000000000000004 R09: 0000000000000000
[ 1127.899572][T19373] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[ 1127.907657][T19373] R13: 00007fb9b71b6038 R14: 00007fb9b71b5fa0 R15: 00007ffd4fbc47f8
[ 1127.915907][T19373]  </TASK>
[ 1127.987553][T19373] Mem-Info:
[ 1127.993266][T19373] active_anon:34968 inactive_anon:0 isolated_anon:0
[ 1127.993266][T19373]  active_file:18560 inactive_file:40238 isolated_file:0
[ 1127.993266][T19373]  unevictable:768 dirty:153 writeback:0
[ 1127.993266][T19373]  slab_reclaimable:11181 slab_unreclaimable:107337
[ 1127.993266][T19373]  mapped:35012 shmem:26638 pagetables:512
[ 1127.993266][T19373]  sec_pagetables:0 bounce:0
[ 1127.993266][T19373]  kernel_misc_reclaimable:0
[ 1127.993266][T19373]  free:1300062 free_pcp:11780 free_cma:0
[ 1128.065537][T19373] Node 0 active_anon:143872kB inactive_anon:0kB active_file:63628kB inactive_file:160752kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:139280kB dirty:612kB writeback:0kB shmem:109016kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10420kB pagetables:2048kB sec_pagetables:0kB all_unreclaimable? no
[ 1128.099990][T19373] Node 1 active_anon:0kB inactive_anon:0kB active_file:10612kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:768kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1128.163018][T19373] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1128.207418][T19373] lowmem_reserve[]: 0 2525 2526 2526 2526
[ 1128.239725][T19373] Node 0 DMA32 free:1287528kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:149224kB inactive_anon:0kB active_file:63628kB inactive_file:159444kB unevictable:1536kB writepending:612kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:28764kB local_pcp:16260kB free_cma:0kB
[ 1128.311645][T19373] lowmem_reserve[]: 0 0 1 1 1
[ 1128.319628][T19373] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1308kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1128.348547][T19373] lowmem_reserve[]: 0 0 0 0 0
[ 1128.361152][T19373] Node 1 Normal free:3887764kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:10612kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:19264kB local_pcp:11360kB free_cma:0kB
[ 1128.413027][T19373] lowmem_reserve[]: 0 0 0 0 0
[ 1128.435842][T19373] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1128.475807][T19373] Node 0 DMA32: 1203*4kB (UM) 807*8kB (UME) 312*16kB (UE) 108*32kB (UE) 362*64kB (UE) 71*128kB (UE) 34*256kB (UME) 11*512kB (UM) 5*1024kB (UM) 3*2048kB (UE) 293*4096kB (M) = 1277700kB
[ 1128.517651][T19373] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1128.535786][T19373] Node 1 Normal: 203*4kB (UE) 61*8kB (UME) 42*16kB (UE) 83*32kB (UE) 20*64kB (UME) 5*128kB (UE) 3*256kB (UME) 1*512kB (E) 1*1024kB (U) 2*2048kB (ME) 946*4096kB (M) = 3887764kB
[ 1128.564287][T19373] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1128.576036][T19373] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1128.596631][T19373] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1128.616428][T19373] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1128.626363][T19373] 91828 total pagecache pages
[ 1128.631190][T19373] 0 pages in swap cache
[ 1128.641352][T19373] Free swap  = 124996kB
[ 1128.646496][T19373] Total swap = 124996kB
[ 1128.650713][T19373] 2097051 pages RAM
[ 1128.664986][T19373] 0 pages HighMem/MovableOnly
[ 1128.675741][T19373] 416138 pages reserved
[ 1128.679971][T19373] 0 pages cma reserved
[ 1131.371677][T19406] netlink: 'syz.3.5319': attribute type 10 has an invalid length.
[ 1131.413882][ T5792] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[ 1131.434463][T19406] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1131.464140][T19406] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 1131.581775][T19406] netlink: 'syz.3.5319': attribute type 10 has an invalid length.
[ 1131.616651][T19406] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5319'.
[ 1131.645857][T19406] batadv0: entered promiscuous mode
[ 1131.660227][T19406] batadv0: entered allmulticast mode
[ 1131.715875][T19406] bond0: (slave batadv0): Releasing backup interface
[ 1131.818243][T19406] bridge0: port 3(batadv0) entered blocking state
[ 1131.824850][T19406] bridge0: port 3(batadv0) entered disabled state
[ 1132.038361][ T3513] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1132.047720][ T3513] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1132.540045][T19430] syzkaller0: entered promiscuous mode
[ 1132.545584][T19430] syzkaller0: entered allmulticast mode
[ 1134.898111][T19437] netlink: 209852 bytes leftover after parsing attributes in process `syz.9.5330'.
[ 1134.926323][T19437] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[ 1135.408984][T19456] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.5348'.
[ 1135.438873][T19456] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[ 1135.478426][T19449] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[ 1135.610828][T19460] syzkaller0: entered promiscuous mode
[ 1135.640805][T19460] syzkaller0: entered allmulticast mode
[ 1138.241433][ T5103] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[ 1139.531634][T19519] netlink: 'syz.9.5363': attribute type 10 has an invalid length.
[ 1139.542901][T19519] netlink: 'syz.9.5363': attribute type 10 has an invalid length.
[ 1139.554028][T19519] netlink: 40 bytes leftover after parsing attributes in process `syz.9.5363'.
[ 1140.254387][ T5792] Bluetooth: hci3: unexpected event 0x03 length: 15 > 11
[ 1141.504050][T19560] netlink: 9286 bytes leftover after parsing attributes in process `syz.5.5386'.
[ 1142.196090][ T5792] Bluetooth: hci0: unexpected event 0x03 length: 15 > 11
[ 1142.196654][ T5792] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[ 1142.214881][ T5792] CPU: 1 PID: 5792 Comm: kworker/u5:3 Not tainted 6.6.102-syzkaller #0
[ 1142.223188][ T5792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1142.233270][ T5792] Workqueue: hci0 hci_rx_work
[ 1142.238019][ T5792] Call Trace:
[ 1142.241353][ T5792]  <TASK>
[ 1142.244307][ T5792]  dump_stack_lvl+0x16c/0x230
[ 1142.249019][ T5792]  ? show_regs_print_info+0x20/0x20
[ 1142.254237][ T5792]  ? load_image+0x3b0/0x3b0
[ 1142.258778][ T5792]  sysfs_create_dir_ns+0x256/0x280
[ 1142.263919][ T5792]  ? process_scheduled_works+0xa45/0x15b0
[ 1142.269669][ T5792]  ? sysfs_warn_dup+0xa0/0xa0
[ 1142.274384][ T5792]  ? do_raw_spin_unlock+0x121/0x230
[ 1142.279643][ T5792]  kobject_add_internal+0x6b8/0xc70
[ 1142.284887][ T5792]  kobject_add+0x156/0x220
[ 1142.289329][ T5792]  ? __rwlock_init+0x150/0x150
[ 1142.294119][ T5792]  ? kobject_init+0x1e0/0x1e0
[ 1142.298827][ T5792]  ? _raw_spin_unlock+0x28/0x40
[ 1142.303711][ T5792]  ? get_device_parent+0x366/0x390
[ 1142.308939][ T5792]  device_add+0x408/0xc20
[ 1142.313331][ T5792]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1142.318300][ T5792]  hci_conn_complete_evt+0x719/0x12b0
[ 1142.323712][ T5792]  ? hci_inquiry_result_evt+0x530/0x530
[ 1142.329323][ T5792]  ? hci_inquiry_result_evt+0x530/0x530
[ 1142.334895][ T5792]  hci_event_packet+0x7ed/0x1210
[ 1142.339878][ T5792]  ? bis_list+0x290/0x290
[ 1142.344250][ T5792]  ? lockdep_hardirqs_on+0x98/0x150
[ 1142.349494][ T5792]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1142.354741][ T5792]  hci_rx_work+0x43a/0xd80
[ 1142.359206][ T5792]  ? process_scheduled_works+0x957/0x15b0
[ 1142.364978][ T5792]  process_scheduled_works+0xa45/0x15b0
[ 1142.370598][ T5792]  ? assign_work+0x400/0x400
[ 1142.375250][ T5792]  ? assign_work+0x39e/0x400
[ 1142.379890][ T5792]  worker_thread+0xa55/0xfc0
[ 1142.384565][ T5792]  kthread+0x2fa/0x390
[ 1142.388699][ T5792]  ? pr_cont_work+0x560/0x560
[ 1142.393422][ T5792]  ? kthread_blkcg+0xd0/0xd0
[ 1142.398217][ T5792]  ret_from_fork+0x48/0x80
[ 1142.402658][ T5792]  ? kthread_blkcg+0xd0/0xd0
[ 1142.407287][ T5792]  ret_from_fork_asm+0x11/0x20
[ 1142.412090][ T5792]  </TASK>
[ 1142.417001][ T5792] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1142.431715][ T5792] Bluetooth: hci0: failed to register connection device
[ 1143.168564][T19591] netlink: 9286 bytes leftover after parsing attributes in process `syz.9.5391'.
[ 1143.986813][T19610] netlink: 'syz.3.5399': attribute type 4 has an invalid length.
[ 1144.006067][T19610] netlink: 116 bytes leftover after parsing attributes in process `syz.3.5399'.
[ 1144.097411][T19610] netlink: 'syz.3.5399': attribute type 2 has an invalid length.
[ 1144.126725][T19610] netlink: 'syz.3.5399': attribute type 8 has an invalid length.
[ 1144.162548][T19610] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5399'.
[ 1144.179901][ T5792] Bluetooth: hci2: unexpected event 0x03 length: 15 > 11
[ 1144.186030][ T5792] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[ 1144.202842][ T5792] CPU: 1 PID: 5792 Comm: kworker/u5:3 Not tainted 6.6.102-syzkaller #0
[ 1144.211136][ T5792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1144.221260][ T5792] Workqueue: hci2 hci_rx_work
[ 1144.226038][ T5792] Call Trace:
[ 1144.229361][ T5792]  <TASK>
[ 1144.232433][ T5792]  dump_stack_lvl+0x16c/0x230
[ 1144.237177][ T5792]  ? show_regs_print_info+0x20/0x20
[ 1144.242438][ T5792]  ? load_image+0x3b0/0x3b0
[ 1144.247022][ T5792]  sysfs_create_dir_ns+0x256/0x280
[ 1144.252208][ T5792]  ? process_scheduled_works+0xa45/0x15b0
[ 1144.258038][ T5792]  ? sysfs_warn_dup+0xa0/0xa0
[ 1144.262801][ T5792]  ? do_raw_spin_unlock+0x121/0x230
[ 1144.268058][ T5792]  kobject_add_internal+0x6b8/0xc70
[ 1144.273349][ T5792]  kobject_add+0x156/0x220
[ 1144.277808][ T5792]  ? __rwlock_init+0x150/0x150
[ 1144.282603][ T5792]  ? kobject_init+0x1e0/0x1e0
[ 1144.287361][ T5792]  ? _raw_spin_unlock+0x28/0x40
[ 1144.292254][ T5792]  ? get_device_parent+0x366/0x390
[ 1144.297488][ T5792]  device_add+0x408/0xc20
[ 1144.301971][ T5792]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1144.306947][ T5792]  hci_conn_complete_evt+0x719/0x12b0
[ 1144.312548][ T5792]  ? hci_inquiry_result_evt+0x530/0x530
[ 1144.318221][ T5792]  ? hci_inquiry_result_evt+0x530/0x530
[ 1144.323810][ T5792]  hci_event_packet+0x7ed/0x1210
[ 1144.328790][ T5792]  ? bis_list+0x290/0x290
[ 1144.333180][ T5792]  ? lockdep_hardirqs_on+0x98/0x150
[ 1144.338425][ T5792]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1144.343665][ T5792]  hci_rx_work+0x43a/0xd80
[ 1144.348155][ T5792]  ? process_scheduled_works+0x957/0x15b0
[ 1144.353907][ T5792]  process_scheduled_works+0xa45/0x15b0
[ 1144.359599][ T5792]  ? assign_work+0x400/0x400
[ 1144.364310][ T5792]  ? assign_work+0x39e/0x400
[ 1144.368928][ T5792]  worker_thread+0xa55/0xfc0
[ 1144.373579][ T5792]  kthread+0x2fa/0x390
[ 1144.377670][ T5792]  ? pr_cont_work+0x560/0x560
[ 1144.382377][ T5792]  ? kthread_blkcg+0xd0/0xd0
[ 1144.386989][ T5792]  ret_from_fork+0x48/0x80
[ 1144.391437][ T5792]  ? kthread_blkcg+0xd0/0xd0
[ 1144.396054][ T5792]  ret_from_fork_asm+0x11/0x20
[ 1144.400954][ T5792]  </TASK>
[ 1144.406319][ T5792] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1144.420551][ T5792] Bluetooth: hci2: failed to register connection device
[ 1144.505917][ T5792] Bluetooth: hci0: command 0x0406 tx timeout
[ 1145.671658][T19639] netlink: 209588 bytes leftover after parsing attributes in process `syz.3.5409'.
[ 1145.683884][T19639] netlink: zone id is out of range
[ 1145.689819][T19639] netlink: zone id is out of range
[ 1145.695144][T19639] netlink: zone id is out of range
[ 1145.704441][T19639] netlink: zone id is out of range
[ 1145.710786][T19639] netlink: zone id is out of range
[ 1145.719281][T19639] netlink: zone id is out of range
[ 1145.724655][T19639] netlink: zone id is out of range
[ 1145.729968][T19639] netlink: zone id is out of range
[ 1145.735354][T19639] netlink: get zone limit has 4 unknown bytes
[ 1145.751906][T19640] netlink: 'syz.9.5411': attribute type 4 has an invalid length.
[ 1145.760160][T19640] netlink: 116 bytes leftover after parsing attributes in process `syz.9.5411'.
[ 1145.801728][T19640] netlink: 'syz.9.5411': attribute type 2 has an invalid length.
[ 1145.816092][T19640] netlink: 'syz.9.5411': attribute type 8 has an invalid length.
[ 1145.828066][T19640] netlink: 132 bytes leftover after parsing attributes in process `syz.9.5411'.
[ 1145.900799][ T5792] Bluetooth: hci3: unexpected event 0x03 length: 15 > 11
[ 1146.118845][ T5792] Bluetooth: hci2: unexpected subevent 0x0a length: 150 > 30
[ 1146.133950][ T5792] Bluetooth: hci2: Invalid handle: 0x85b0 > 0x0eff
[ 1146.518255][ T5103] Bluetooth: hci2: command 0x0406 tx timeout
[ 1147.463848][T19676] netlink: 209588 bytes leftover after parsing attributes in process `syz.9.5424'.
[ 1147.485949][T19676] netlink: zone id is out of range
[ 1149.830983][T19706] netlink: 'syz.5.5439': attribute type 4 has an invalid length.
[ 1149.883246][T19706] netlink: 152 bytes leftover after parsing attributes in process `syz.5.5439'.
[ 1149.926558][T19706] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[ 1150.654295][ T5103] Bluetooth: hci3: unexpected subevent 0x0a length: 150 > 30
[ 1150.662379][ T5103] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[ 1150.671997][ T5103] CPU: 1 PID: 5103 Comm: kworker/u5:1 Not tainted 6.6.102-syzkaller #0
[ 1150.680294][ T5103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1150.690409][ T5103] Workqueue: hci3 hci_rx_work
[ 1150.695173][ T5103] Call Trace:
[ 1150.698492][ T5103]  <TASK>
[ 1150.701448][ T5103]  dump_stack_lvl+0x16c/0x230
[ 1150.706161][ T5103]  ? show_regs_print_info+0x20/0x20
[ 1150.711392][ T5103]  ? load_image+0x3b0/0x3b0
[ 1150.715950][ T5103]  sysfs_create_dir_ns+0x256/0x280
[ 1150.721211][ T5103]  ? hci_rx_work+0x43a/0xd80
[ 1150.725841][ T5103]  ? sysfs_warn_dup+0xa0/0xa0
[ 1150.730566][ T5103]  ? do_raw_spin_unlock+0x121/0x230
[ 1150.735890][ T5103]  kobject_add_internal+0x6b8/0xc70
[ 1150.741128][ T5103]  kobject_add+0x156/0x220
[ 1150.745617][ T5103]  ? __rwlock_init+0x150/0x150
[ 1150.750425][ T5103]  ? kobject_init+0x1e0/0x1e0
[ 1150.755391][ T5103]  ? _raw_spin_unlock+0x28/0x40
[ 1150.760392][ T5103]  ? get_device_parent+0x366/0x390
[ 1150.765623][ T5103]  device_add+0x408/0xc20
[ 1150.769992][ T5103]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1150.774989][ T5103]  le_conn_complete_evt+0xc37/0x1220
[ 1150.780311][ T5103]  ? bt_warn+0x10c/0x160
[ 1150.784611][ T5103]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1150.790909][ T5103]  ? bt_info+0x160/0x160
[ 1150.795172][ T5103]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1150.800849][ T5103]  ? skb_pull_data+0xfb/0x200
[ 1150.805576][ T5103]  hci_le_enh_conn_complete_evt+0x189/0x460
[ 1150.811502][ T5103]  ? hci_le_remote_conn_param_req_evt+0xcc0/0xcc0
[ 1150.817938][ T5103]  ? hci_remote_host_features_evt+0x160/0x160
[ 1150.824056][ T5103]  hci_event_packet+0x795/0x1210
[ 1150.829062][ T5103]  ? bis_list+0x290/0x290
[ 1150.833438][ T5103]  ? lockdep_hardirqs_on+0x98/0x150
[ 1150.838670][ T5103]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1150.843991][ T5103]  hci_rx_work+0x43a/0xd80
[ 1150.848575][ T5103]  ? process_scheduled_works+0x957/0x15b0
[ 1150.854372][ T5103]  process_scheduled_works+0xa45/0x15b0
[ 1150.860021][ T5103]  ? assign_work+0x400/0x400
[ 1150.864672][ T5103]  ? assign_work+0x39e/0x400
[ 1150.869310][ T5103]  worker_thread+0xa55/0xfc0
[ 1150.873983][ T5103]  kthread+0x2fa/0x390
[ 1150.878143][ T5103]  ? pr_cont_work+0x560/0x560
[ 1150.882946][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1150.887594][ T5103]  ret_from_fork+0x48/0x80
[ 1150.892061][ T5103]  ? kthread_blkcg+0xd0/0xd0
[ 1150.896680][ T5103]  ret_from_fork_asm+0x11/0x20
[ 1150.901664][ T5103]  </TASK>
[ 1150.906861][ T5103] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1150.921024][ T5103] Bluetooth: hci3: failed to register connection device
[ 1152.987542][ T5792] Bluetooth: hci3: command 0x0406 tx timeout
[ 1153.436384][T19746] syzkaller0: entered promiscuous mode
[ 1153.442003][T19746] syzkaller0: entered allmulticast mode
[ 1153.618585][T19749] netlink: 'syz.3.5452': attribute type 4 has an invalid length.
[ 1153.685290][T19749] netlink: 152 bytes leftover after parsing attributes in process `syz.3.5452'.
[ 1153.745914][T19749] net_ratelimit: 9 callbacks suppressed
[ 1153.745932][T19749] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1156.734121][T19762] netlink: 14 bytes leftover after parsing attributes in process `syz.0.5460'.
[ 1156.743379][T19762] hsr_slave_0: left promiscuous mode
[ 1156.753665][T19762] hsr_slave_1: left promiscuous mode
[ 1156.887467][T19764] netlink: 'syz.3.5464': attribute type 10 has an invalid length.
[ 1156.895556][T19764] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5464'.
[ 1156.906534][T19764] batman_adv: batadv0: Adding interface: hsr_slave_1
[ 1156.913276][T19764] batman_adv: batadv0: Interface activated: hsr_slave_1
[ 1157.316712][T19776] sit0: entered allmulticast mode
[ 1157.597923][T19779] netlink: 'syz.9.5467': attribute type 4 has an invalid length.
[ 1157.606427][T19779] netlink: 152 bytes leftover after parsing attributes in process `syz.9.5467'.
[ 1157.627345][T19779] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1158.004737][T19786] netlink: 'syz.9.5478': attribute type 4 has an invalid length.
[ 1158.035825][T19786] netlink: 152 bytes leftover after parsing attributes in process `syz.9.5478'.
[ 1158.058771][T19786] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1160.688852][T19803] netlink: 'syz.9.5475': attribute type 10 has an invalid length.
[ 1160.696852][T19803] netlink: 40 bytes leftover after parsing attributes in process `syz.9.5475'.
[ 1160.708959][T19803] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[ 1160.756317][T19805] sit0: left promiscuous mode
[ 1168.247335][T19891] netlink: 'syz.3.5509': attribute type 10 has an invalid length.
[ 1168.280824][T19891] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1170.921156][T19933] netlink: 'syz.9.5522': attribute type 10 has an invalid length.
[ 1170.960420][T19933] team0: Port device wlan1 removed
[ 1170.986732][T19933] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1171.175974][T19938] syzkaller0: entered promiscuous mode
[ 1171.183997][T19938] syzkaller0: entered allmulticast mode
[ 1176.113719][T19984] netlink: 'syz.0.5536': attribute type 10 has an invalid length.
[ 1176.177825][T19984] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1176.232092][T19979] __sock_release: fasync list not empty!
[ 1177.747360][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.753743][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.051930][T20007] netlink: 'syz.0.5550': attribute type 10 has an invalid length.
[ 1178.536541][T20011] netlink: 'syz.9.5554': attribute type 10 has an invalid length.
[ 1178.637656][T20012] __sock_release: fasync list not empty!
[ 1180.336916][T20041] __sock_release: fasync list not empty!
[ 1182.224648][T20073] netlink: 209852 bytes leftover after parsing attributes in process `syz.9.5576'.
[ 1182.397876][T20073] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[ 1182.703708][T20082] netlink: 'syz.3.5581': attribute type 39 has an invalid length.
[ 1183.715226][T20098] pim6reg1: entered promiscuous mode
[ 1183.721665][T20098] pim6reg1: entered allmulticast mode
[ 1184.762296][T20115] netlink: 'syz.3.5593': attribute type 10 has an invalid length.
[ 1185.213555][T20120] netlink: 'syz.9.5597': attribute type 39 has an invalid length.
[ 1185.734360][T20125] C: renamed from team_slave_0
[ 1185.787444][T20125] netlink: 'syz.3.5599': attribute type 3 has an invalid length.
[ 1185.809882][T20125] netlink: 152 bytes leftover after parsing attributes in process `syz.3.5599'.
[ 1185.823864][T20125] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1185.987141][T20131] pim6reg1: entered promiscuous mode
[ 1185.993973][T20131] pim6reg1: entered allmulticast mode
[ 1187.300200][T20157] C: renamed from team_slave_0 (while UP)
[ 1187.346685][T20157] netlink: 'syz.5.5612': attribute type 3 has an invalid length.
[ 1187.355055][T20157] netlink: 152 bytes leftover after parsing attributes in process `syz.5.5612'.
[ 1187.376390][T20157] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1187.621120][T20164] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.5613'.
[ 1187.635117][T20164] debugfs: Directory '!!ô' with parent 'ieee80211' already present!
[ 1188.038351][ T5792] Bluetooth: hci3: unexpected event 0x09 length: 15 > 3
[ 1188.921665][T20184] netlink: 'syz.0.5625': attribute type 3 has an invalid length.
[ 1188.942260][T20184] netlink: 152 bytes leftover after parsing attributes in process `syz.0.5625'.
[ 1188.951891][T20184] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1190.242074][T20201] veth0_vlan: entered allmulticast mode
[ 1190.424670][ T5792] Bluetooth: hci2: unexpected event 0x09 length: 15 > 3
[ 1190.489496][T20203] ÿÿÿÿÿÿ: renamed from vlan1
[ 1191.444677][T20219] syzkaller0: entered promiscuous mode
[ 1191.462867][T20219] syzkaller0: entered allmulticast mode
[ 1191.590259][T20220] netlink: 'syz.9.5636': attribute type 3 has an invalid length.
[ 1191.603165][T20220] netlink: 152 bytes leftover after parsing attributes in process `syz.9.5636'.
[ 1191.614728][T20220] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1194.398852][T20235] sit0: entered promiscuous mode
[ 1194.441072][T20237] batman_adv: batadv0: Interface deactivated: vlan1
[ 1194.502788][T20238] ÿÿÿÿÿÿ: renamed from vlan1
[ 1195.978283][T20267] syzkaller0: entered promiscuous mode
[ 1195.990351][T20267] syzkaller0: entered allmulticast mode
[ 1196.094494][ T5792] Bluetooth: hci1: unexpected event 0x08 length: 15 > 4
[ 1198.112160][ T5103] Bluetooth: hci1: command 0x0406 tx timeout
[ 1198.480429][T20279] bridge0: port 3(batadv0) entered blocking state
[ 1198.487239][T20279] bridge0: port 3(batadv0) entered forwarding state
[ 1198.505885][T20279] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1201.194962][T20332] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.5687'.
[ 1201.224908][T20332] netlink: 'syz.5.5687': attribute type 10 has an invalid length.
[ 1201.366728][T20334] netlink: 194488 bytes leftover after parsing attributes in process `syz.9.5679'.
[ 1201.518765][T20342] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1201.542387][T20342] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1201.609493][T20342] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1201.637889][T20342] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1201.668809][T20342] batman_adv: batadv0: Interface deactivated: hsr_slave_1
[ 1201.677284][T20342] batman_adv: batadv0: Removing interface: hsr_slave_1
[ 1201.733712][T20342] bridge0: port 3(batadv0) entered disabled state
[ 1201.823893][T20342] batadv0 (unregistering): left allmulticast mode
[ 1201.846196][T20342] bridge0: port 3(batadv0) entered disabled state
[ 1220.302896][ T5103] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1220.314524][ T5103] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1220.324838][ T5103] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1220.335755][ T5103] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1220.352664][ T5103] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1220.361148][ T5103] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1220.627221][ T5792] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1220.639470][ T5792] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1220.655111][ T5792] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1220.668491][ T5792] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1220.678255][ T5792] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1220.688091][ T5792] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1220.854371][ T5103] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1220.865257][ T5103] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1220.885967][ T5103] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1220.906832][ T5103] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1220.928295][ T5103] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1220.954455][ T5103] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1222.426412][ T5103] Bluetooth: hci4: command tx timeout
[ 1222.745986][ T5103] Bluetooth: hci5: command tx timeout
[ 1222.994790][ T5103] Bluetooth: hci6: command tx timeout
[ 1224.506294][ T5103] Bluetooth: hci4: command tx timeout
[ 1224.826193][ T5103] Bluetooth: hci5: command tx timeout
[ 1225.081327][ T5103] Bluetooth: hci6: command tx timeout
[ 1226.586396][ T5103] Bluetooth: hci4: command tx timeout
[ 1226.906505][ T5103] Bluetooth: hci5: command tx timeout
[ 1227.154753][ T5103] Bluetooth: hci6: command tx timeout
[ 1228.666392][ T5103] Bluetooth: hci4: command tx timeout
[ 1228.986058][ T5103] Bluetooth: hci5: command tx timeout
[ 1229.227201][ T5103] Bluetooth: hci6: command tx timeout
[ 1239.176548][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.182973][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1280.878400][T20365] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1280.898857][T20365] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1280.908076][T20365] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1280.920348][T20365] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1280.929998][T20365] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1280.939786][T20365] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1280.986788][T20365] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1281.008206][T20365] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1281.018376][T20365] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1281.028539][T20365] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1281.037787][T20365] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1281.048158][T20365] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1281.172673][ T5792] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1281.192882][ T5792] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1281.203162][ T5792] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1281.223756][ T5792] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1281.244718][ T5792] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1281.262073][ T5792] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1282.986605][T20365] Bluetooth: hci7: command tx timeout
[ 1283.153889][T20365] Bluetooth: hci8: command tx timeout
[ 1283.306923][T20365] Bluetooth: hci9: command tx timeout
[ 1285.066235][T20365] Bluetooth: hci7: command tx timeout
[ 1285.229762][T20365] Bluetooth: hci8: command tx timeout
[ 1285.386396][T20365] Bluetooth: hci9: command tx timeout
[ 1287.146239][T20365] Bluetooth: hci7: command tx timeout
[ 1287.306519][T20365] Bluetooth: hci8: command tx timeout
[ 1287.466560][T20365] Bluetooth: hci9: command tx timeout
[ 1289.226088][T20365] Bluetooth: hci7: command tx timeout
[ 1289.393958][T20365] Bluetooth: hci8: command tx timeout
[ 1289.546370][T20365] Bluetooth: hci9: command tx timeout
[ 1300.599612][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.606294][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1306.935633][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1306.942859][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P20339
[ 1306.950999][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=197205, q=749 ncpus=2)
[ 1306.958848][    C1] task:syz.9.5683      state:R  running task     stack:26088 pid:20339 ppid:14524  flags:0x0000400e
[ 1306.970754][    C1] Call Trace:
[ 1306.974102][    C1]  <IRQ>
[ 1306.976999][    C1]  sched_show_task+0x481/0x5a0
[ 1306.981822][    C1]  ? __ia32_sys_sched_rr_get_interval_time32+0x110/0x110
[ 1306.988909][    C1]  ? wq_watchdog_touch+0xef/0x170
[ 1306.994097][    C1]  print_other_cpu_stall+0xfa7/0x1340
[ 1306.999511][    C1]  ? bpf_put_raw_tracepoint+0x60/0x60
[ 1307.004996][    C1]  ? print_cpu_stall+0x5a0/0x5a0
[ 1307.010070][    C1]  ? __bpf_trace_rcu_utilization+0xa2/0xe0
[ 1307.015926][    C1]  ? perf_trace_rcu_stall_warning+0x2d0/0x2d0
[ 1307.022071][    C1]  rcu_sched_clock_irq+0x87c/0x1220
[ 1307.027338][    C1]  ? rcu_gp_set_torture_wait+0x10/0x10
[ 1307.032865][    C1]  ? acct_account_cputime+0xd4/0x210
[ 1307.038247][    C1]  update_process_times+0x147/0x1b0
[ 1307.043536][    C1]  tick_sched_timer+0x3a2/0x580
[ 1307.048454][    C1]  __hrtimer_run_queues+0x4df/0xc40
[ 1307.053697][    C1]  ? tick_setup_sched_timer+0x2d0/0x2d0
[ 1307.059334][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1307.064520][    C1]  ? read_tsc+0x9/0x20
[ 1307.068625][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 1307.074754][    C1]  hrtimer_interrupt+0x3c9/0x9c0
[ 1307.079802][    C1]  __sysvec_apic_timer_interrupt+0xfb/0x3b0
[ 1307.085819][    C1]  sysvec_apic_timer_interrupt+0x51/0xc0
[ 1307.091664][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1307.097693][    C1] RIP: 0010:__sanitizer_cov_trace_switch+0x96/0x120
[ 1307.104413][    C1] Code: 41 54 53 48 8b 54 24 20 65 4c 8b 05 a4 29 7e 7e 45 31 c9 eb 08 49 ff c1 4c 39 c8 74 77 4e 8b 54 ce 10 65 44 8b 1d 92 29 7e 7e <41> 81 e3 00 01 ff 00 74 13 41 81 fb 00 01 00 00 75 d9 41 83 b8 1c
[ 1307.124055][    C1] RSP: 0018:ffffc900001f0448 EFLAGS: 00000202
[ 1307.130188][    C1] RAX: 0000000000000020 RBX: 0000000000000004 RCX: 0000000000000005
[ 1307.138196][    C1] RDX: ffffffff818755b5 RSI: ffffffff8cd79180 RDI: 0000000000000004
[ 1307.146290][    C1] RBP: 0000000000000f00 R08: ffff88802a28bc00 R09: 0000000000000010
[ 1307.154297][    C1] R10: 0000000000000010 R11: 0000000000000105 R12: dffffc0000000000
[ 1307.162316][    C1] R13: f800000000000000 R14: ffff88801ce499fc R15: 00000000000d6a04
[ 1307.170340][    C1]  ? rb_event_length+0x45/0x3f0
[ 1307.175244][    C1]  rb_event_length+0x45/0x3f0
[ 1307.180389][    C1]  check_buffer+0x542/0x950
[ 1307.184938][    C1]  __rb_reserve_next+0x511/0xd50
[ 1307.190259][    C1]  ring_buffer_lock_reserve+0xae1/0xed0
[ 1307.195845][    C1]  ? __lock_acquire+0x7c80/0x7c80
[ 1307.200904][    C1]  ? mark_lock+0x94/0x320
[ 1307.205314][    C1]  trace_event_buffer_lock_reserve+0x1d0/0x6e0
[ 1307.211515][    C1]  trace_event_buffer_reserve+0x29b/0x3c0
[ 1307.217268][    C1]  ? trace_event_ignore_this_pid+0x130/0x130
[ 1307.223295][    C1]  trace_event_raw_event_bpf_trace_printk+0x101/0x210
[ 1307.230096][    C1]  ? __probestub_bpf_trace_printk+0x10/0x10
[ 1307.236042][    C1]  ? __asan_memcpy+0x40/0x70
[ 1307.240705][    C1]  trace_bpf_trace_printk+0x142/0x1a0
[ 1307.246127][    C1]  bpf_trace_printk+0x11f/0x190
[ 1307.251075][    C1]  ? bpf_probe_write_user+0xe0/0xe0
[ 1307.256314][    C1]  ? bpf_trace_run1+0xd6/0x3b0
[ 1307.261156][    C1]  ? trace_call_bpf+0x5ba/0x690
[ 1307.266049][    C1]  ? verify_lock_unused+0x140/0x140
[ 1307.271302][    C1]  bpf_prog_9e1c00255e17e72e+0x38/0x3a
[ 1307.276793][    C1]  bpf_trace_run1+0x1c9/0x3b0
[ 1307.281494][    C1]  ? bpf_trace_run1+0xd6/0x3b0
[ 1307.286371][    C1]  ? bpf_put_raw_tracepoint+0x60/0x60
[ 1307.291773][    C1]  ? __bpf_trace_rcu_utilization+0x95/0xe0
[ 1307.297621][    C1]  __bpf_trace_rcu_utilization+0xa2/0xe0
[ 1307.303290][    C1]  ? perf_trace_rcu_stall_warning+0x2d0/0x2d0
[ 1307.309388][    C1]  ? rcu_leak_callback+0x10/0x10
[ 1307.314366][    C1]  ? trace_event_raw_event_lock+0x230/0x230
[ 1307.320313][    C1]  trace_rcu_utilization+0x179/0x1a0
[ 1307.325642][    C1]  rcu_core+0x1341/0x1720
[ 1307.330026][    C1]  ? try_to_wake_up+0x454/0x1140
[ 1307.335090][    C1]  ? __lock_acquire+0x7c80/0x7c80
[ 1307.340142][    C1]  ? __rwlock_init+0x150/0x150
[ 1307.344938][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[ 1307.350175][    C1]  ? kvm_sched_clock_read+0x11/0x20
[ 1307.355406][    C1]  ? sched_clock+0x3f/0x60
[ 1307.359885][    C1]  ? mark_lock+0x94/0x320
[ 1307.364255][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1307.370276][    C1]  ? lock_chain_count+0x20/0x20
[ 1307.375150][    C1]  ? try_to_wake_up+0x724/0x1140
[ 1307.380151][    C1]  handle_softirqs+0x280/0x820
[ 1307.385060][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1307.389865][    C1]  ? do_softirq+0x180/0x180
[ 1307.394394][    C1]  ? irq_work_single+0x199/0x230
[ 1307.399373][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1307.404725][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1307.409361][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1307.413955][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1307.418761][    C1]  irq_exit_rcu+0x9/0x20
[ 1307.423031][    C1]  sysvec_irq_work+0xa1/0xc0
[ 1307.427654][    C1]  </IRQ>
[ 1307.430610][    C1]  <TASK>
[ 1307.433628][    C1]  asm_sysvec_irq_work+0x1a/0x20
[ 1307.438621][    C1] RIP: 0010:rcu_read_unlock_special+0x88/0x4c0
[ 1307.444841][    C1] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 39 58 93 7e 41 f7 c6 00 00 f0 00 74 45 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[ 1307.464600][    C1] RSP: 0018:ffffc9000be4fc00 EFLAGS: 00000206
[ 1307.470727][    C1] RAX: 4769b9dc4c5e0a00 RBX: 1ffff920017c9f88 RCX: 4769b9dc4c5e0a00
[ 1307.478749][    C1] RDX: dffffc0000000000 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0
[ 1307.486749][    C1] RBP: ffffc9000be4fcf0 R08: ffffffff90da3517 R09: 1ffffffff21b46a2
[ 1307.494747][    C1] R10: dffffc0000000000 R11: fffffbfff21b46a3 R12: 0000000000000000
[ 1307.502754][    C1] R13: dffffc0000000000 R14: 0000000000000246 R15: ffffffff8cd35518
[ 1307.510832][    C1]  ? do_raw_spin_lock+0x121/0x2c0
[ 1307.516026][    C1]  ? __rcu_read_unlock+0xd0/0xd0
[ 1307.521030][    C1]  ? __rwlock_init+0x150/0x150
[ 1307.525861][    C1]  ? read_lock_is_recursive+0x20/0x20
[ 1307.531302][    C1]  __rcu_read_unlock+0x7c/0xd0
[ 1307.536117][    C1]  rcu_read_unlock+0x85/0xa0
[ 1307.540739][    C1]  ? dput+0x3b/0x1e0
[ 1307.544686][    C1]  dput+0xe6/0x1e0
[ 1307.548462][    C1]  __fput+0x5e5/0x970
[ 1307.552513][    C1]  task_work_run+0x1ce/0x250
[ 1307.557145][    C1]  ? task_work_cancel+0x240/0x240
[ 1307.562224][    C1]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1307.567727][    C1]  exit_to_user_mode_loop+0xe6/0x110
[ 1307.573062][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[ 1307.578652][    C1]  syscall_exit_to_user_mode+0x1a/0x50
[ 1307.584246][    C1]  do_syscall_64+0x61/0xb0
[ 1307.588689][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1307.593393][    C1]  ? clear_bhb_loop+0x40/0x90
[ 1307.598099][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1307.604027][    C1] RIP: 0033:0x7fb9b6f8ebe9
[ 1307.608470][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1307.628453][    C1] RSP: 002b:00007ffd4fbc4958 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1307.636948][    C1] RAX: 0000000000000000 RBX: 00007fb9b71b7da0 RCX: 00007fb9b6f8ebe9
[ 1307.644975][    C1] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1307.652987][    C1] RBP: 00007fb9b71b7da0 R08: 0000000000008694 R09: 0000000b4fbc4c4f
[ 1307.661000][    C1] R10: 00000000005f6b04 R11: 0000000000000246 R12: 000000000012584b
[ 1307.669005][    C1] R13: 00007fb9b71b6090 R14: ffffffffffffffff R15: 00007ffd4fbc4a70
[ 1307.677045][    C1]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)