last executing test programs:

2m49.507340838s ago: executing program 4 (id=1238):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000840)=ANY=[@ANYBLOB="58010000100013070000000000000000fc020000000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141417000000000000000000000000000004d533000000e000000100000000000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000220000000000000000000000000000000200000000000000000000005c001400636d616328616573290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000003509fe8fd57fd44aa5074c50bc700e530c001c00", @ANYRES32=0x0, @ANYBLOB='\a'], 0x158}}, 0x0)

2m49.307961843s ago: executing program 4 (id=1239):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000906010800000000000000000600000505000100070000003c0007801800148014000240fc0000000000000000000000000000011800018014de0240ff01000000000000000000000000000105000300070000000900020073797a318186c346e42503626dbb267544e4369450dfec894cdef8877fc6072c6b89a8ba14e6"], 0x64}, 0x1, 0x0, 0x0, 0x4040}, 0x4800)

2m49.268025801s ago: executing program 4 (id=1240):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000000c0)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000140)={'full', 0x20, 0x0, 0x20, 0x8001}, 0x2f)
socket$kcm(0x10, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r3 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000300)={r2, 0xffffffffffffffff, 0x26, 0x0, @val=@netkit}, 0x1c)
close(r3)

2m49.070623129s ago: executing program 4 (id=1245):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)

2m47.100431366s ago: executing program 4 (id=1259):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0) (async)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r1, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x38, 0x1410, 0x100, 0x70bd26, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_STAT_AUTO_MODE_MASK={0x8, 0x4c, 0x1}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x2}, @RDMA_NLDEV_ATTR_STAT_AUTO_MODE_MASK={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4080090}, 0x2040000) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x88, 0x67, &(0x7f00000002c0)=r2, 0x4) (async)
r3 = socket$kcm(0x29, 0x5, 0x0) (async)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r5 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r4) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x50) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94) (async)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xcfa4) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$kcm(0x1e, 0x1, 0x0)
sendmsg$kcm(r7, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0) (async)
sendmsg$nl_generic(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000039000701fcfffffffbdbdf65017c00000c00018006"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x8902, &(0x7f0000000040))
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x8903, 0x0) (async)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000080)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000000)="a100", 0x2}], 0x1, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}}}}], 0x20}, 0x0)
r8 = socket$kcm(0x15, 0x5, 0x0) (async)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000003c00010325bd7000fcff0c000c00000008000300", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x200448d3}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
close(r8)

2m46.594607442s ago: executing program 4 (id=1264):
syz_clone(0x10eb22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x20800000, 0x0, 0x4b, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = getpid()
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x105100, 0x9, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r4, 0x2405, r4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000280)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x10, 0x2, &(0x7f0000000100)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x8, 0x30}, @jmp={0x5, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffe88}], 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000010"], 0x18}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x3a, 0x301, 0x70bd25, 0xfffffffc, {0x7}}, 0x14}}, 0x0)
syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
syz_clone(0xcc10c080, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0)
socketpair(0xa, 0x3, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r7}, &(0x7f0000000580), &(0x7f0000000740)=r0}, 0x47)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x8, 0x8}, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x3, [@var={0xa, 0x0, 0x0, 0xe, 0x5, 0x1}, @volatile={0x10}, @union={0xc, 0x4, 0x0, 0x5, 0x1, 0x7fff, [{0xb, 0x1, 0x40}, {0x2, 0x0, 0x800}, {0x4, 0x3, 0x4}, {0x3, 0x1, 0x4}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0x28000000}}, @typedef={0x1, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x61]}}, &(0x7f00000002c0)=""/68, 0x97, 0x44, 0x1, 0x1a7a}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x11, &(0x7f0000000400)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x2}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x995b}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80000001}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}], &(0x7f00000004c0)='syzkaller\x00', 0x800000, 0x2d, &(0x7f0000000500)=""/45, 0x40f00, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000580)={0x4, 0x5, 0xb3, 0xffffffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[0x1, 0x1, 0x1], &(0x7f0000000600), 0x10, 0x9}, 0x94)

2m31.488210991s ago: executing program 32 (id=1264):
syz_clone(0x10eb22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x20800000, 0x0, 0x4b, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = getpid()
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x105100, 0x9, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r4, 0x2405, r4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000280)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x10, 0x2, &(0x7f0000000100)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x8, 0x30}, @jmp={0x5, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffe88}], 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000010"], 0x18}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x3a, 0x301, 0x70bd25, 0xfffffffc, {0x7}}, 0x14}}, 0x0)
syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
syz_clone(0xcc10c080, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0)
socketpair(0xa, 0x3, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r7}, &(0x7f0000000580), &(0x7f0000000740)=r0}, 0x47)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x8, 0x8}, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x3, [@var={0xa, 0x0, 0x0, 0xe, 0x5, 0x1}, @volatile={0x10}, @union={0xc, 0x4, 0x0, 0x5, 0x1, 0x7fff, [{0xb, 0x1, 0x40}, {0x2, 0x0, 0x800}, {0x4, 0x3, 0x4}, {0x3, 0x1, 0x4}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0x28000000}}, @typedef={0x1, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x61]}}, &(0x7f00000002c0)=""/68, 0x97, 0x44, 0x1, 0x1a7a}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x11, &(0x7f0000000400)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x2}, @map_idx_val={0x18, 0x0, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x995b}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80000001}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}], &(0x7f00000004c0)='syzkaller\x00', 0x800000, 0x2d, &(0x7f0000000500)=""/45, 0x40f00, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000580)={0x4, 0x5, 0xb3, 0xffffffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[0x1, 0x1, 0x1], &(0x7f0000000600), 0x10, 0x9}, 0x94)

3.280093905s ago: executing program 5 (id=2651):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40011)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1000}, 0x80000, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x88e}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x44, 0x0, 0x0)
close(r1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x27, 0x8, 0x0, &(0x7f0000000180)="0005000000000001", 0x0, 0x405, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
recvmsg$unix(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
write$cgroup_subtree(r5, &(0x7f0000000180)=ANY=[@ANYRES8=r1], 0x9a)

2.628262251s ago: executing program 5 (id=2655):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="640000000906010800000000000000000600000505000100070000003c0007801800148014000240fc0000000000000000000000000000011800018014000240ff010000000000ffffeff9000000000105000300070000000900020073797a31"], 0x64}}, 0x4800)

2.434006076s ago: executing program 5 (id=2658):
socket$kcm(0x2, 0xa, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b043900000000000000020000002400048020000180070001006374000014000280080001400000000d080002400000000f0900010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000ab5858462dbaf5eaab0aaf65b241b34a614bb63d330aa95cca41c04f1585bdbc1d0e0a065c4589ba539202df987"], 0x78}}, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffb, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x5, 0x13, 0x0, &(0x7f0000000100)="259a53f271a76d2608fff74588a80a3888ca2f", 0x0, 0xd11, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.839111788s ago: executing program 0 (id=2664):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@getqdisc={0x28, 0x26, 0x201, 0x60bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x6, 0xfff2}, {0x1, 0xffe0}, {0x13, 0xb}}, [{0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000000)

1.741054178s ago: executing program 5 (id=2666):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x200008c0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000140)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=[{0x18, 0x110, 0x1, "dc"}], 0x18}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r4 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r2, r3, 0x26, 0x0, @void}, 0x10)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r4, r2, 0x4, r2}, 0x6) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB], 0x48) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)={0x3c, 0x40, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x18, 0x2, 0x0, 0x1, [@nested={0x12, 0x14, 0x0, 0x1, [@nested={0x4, 0x19}, @generic="8d6d8fbd3227604dc4a7"]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000fcffffff0000000000000000850000004100000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000004000002850000008600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) (async)
r8 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000a, 0x954b, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={0x0, 0xc}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="2e00000010008188e6b62aa73772cc9f1ba1f848010000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x4058880)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r8, 0x40042408, r10) (async)
socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r11=>0xffffffffffffffff})
recvmsg$unix(r11, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) (async)
r12 = socket$kcm(0x29, 0x5, 0x0) (async)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0xd, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000084)
sendmsg$nl_generic(r6, &(0x7f00000006c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000003c0)={&(0x7f0000000a00)={0x194, 0x2a, 0x200, 0x70bd2d, 0x25dfdbfb, {0x1c}, [@generic="2692b262e7dd2dcedde1ab2ee924adc1f9e0225a627264a376f32327a3d960c567f209f5194caeca3256cd3a3c2166a5b38cf83b169ab57f6b211ab9069aad6bb4a90c49f331aa80e8295dec69f26ced04b514125e149ce02784de3c3950aa48e347991bca8bf27abecb35bdb96f8fc01688cd59cd07e92e2d9330e274b1e7085fac8d58e71dc8", @typed={0x8, 0x6c, 0x0, 0x0, @uid}, @nested={0xe7, 0x4b, 0x0, 0x1, [@nested={0x4, 0x2a}, @nested={0x4, 0x61}, @generic="cbc018a8a55ef413768b395a8ab540bcd52acdcb3bc76823b1744fff71726a893a5853dfd5e1073e87a9757bf29d205971585bbf1fddf5d1077a679db9c93060406fda0d776b2c80801ada8e1fb9964f097c44623437b28a5b8cc75b9d58b16989", @nested={0x4, 0xce}, @nested={0x4, 0x17}, @generic="205ba602d11c85135bba9bd6786ceedc16b7a6c5a3bb65c4d4bca07faf2f72d37352c29b7259eb0ed890bf1351c255ed9c734e483372b70bc77fbdac20a7247f1d0120ba4ed65f18904c2ff4ad388ce372620261b6dca48a4cf6a5d7d057d155a7cd0a3940a399262777", @nested={0x4, 0xb7}, @nested={0x4, 0x84}]}, @typed={0x8, 0xf0, 0x0, 0x0, @fd=r12}]}, 0x194}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000940)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r13 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000940)={0x18, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='subflow_check_data_avail\x00', r13, 0x0, 0x4}, 0x18) (async)
r14 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r14, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000081)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1.577183093s ago: executing program 0 (id=2670):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x80f3051602a5e657)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x9, 0x0, 0x4, 0x4, 0x2ec0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x10000000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffaf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x43}, 0x3c)

1.298045967s ago: executing program 2 (id=2672):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))
r0 = socket$kcm(0xa, 0x3, 0x106)
setsockopt$sock_attach_bpf(r0, 0x29, 0x2, 0x0, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef436000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x0)
close(0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000380)='sched_switch\x00'}, 0x10)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x3, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x5, 0x8, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x2160)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)=@generic={&(0x7f0000000040)='./file0\x00', r2}, 0x18)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4000080)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b000000000000000000000000800000000008"], 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0xf, &(0x7f0000000cc0)=@framed={{0x18, 0x2}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}, @printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f0000000500)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x22}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.295044841s ago: executing program 0 (id=2674):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @loopback}}}], 0x20}, 0xe900)
close(r0)

1.228774671s ago: executing program 0 (id=2675):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000e00))
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x82d7)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x7, 0x43ff, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0xffffffff)
recvmsg(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB, @ANYBLOB='\x00\x00\"\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYBLOB], 0x50)
r2 = socket$kcm(0x2, 0x5, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r3, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)={0x4c, 0x0, 0xb, 0x304, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_COMPAT_NAME={0x17, 0x1, 'net_prio.ifpriomap\x00'}, @NFTA_COMPAT_NAME={0x8, 0x1, 'GPL\x00'}, @NFTA_COMPAT_TYPE={0x8}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x2040014)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_ext={0x1c, 0x1c, &(0x7f00000005c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000140)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x80, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x7, 0x2}, 0x8, 0x10, &(0x7f00000007c0)={0x5, 0x0, 0x3, 0x1}, 0x10, 0x20eb, 0xffffffffffffffff, 0x5, &(0x7f0000000800)=[0xffffffffffffffff, r1], &(0x7f0000000840)=[{0x2, 0x4, 0x10, 0x9}, {0x3, 0x3, 0x4, 0x6}, {0x5, 0x3, 0x8, 0x2}, {0x1, 0x4, 0x3, 0x5}, {0x0, 0x3, 0xa}], 0x10, 0x1fbd}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r6 = openat$cgroup_netprio_ifpriomap(r5, &(0x7f0000000080), 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000000c0)="c3", 0x1}, {&(0x7f00000001c0)="c6a6fc581ef928105fe3baddfbaeeb71cea7fde07febd92f2ff634925cbb7e2bfc0f0f4b98fe22bcd36fbd1cb894d2bfd28c75afeb3ddb61a4093d11e8487c2d353b68b8bc8d742696f2e51023", 0x4d}, {&(0x7f0000000280)="4f73c48a7d69a57cd19b7be4a56e54d55d5a074cd58550aa", 0x18}, {&(0x7f00000002c0)="8a9c0ba9109dfb1faca24b296b7f4cbc323c030ad47b40702f938e5de98f1b8738ffe8accc8ea85906c3ef1e9175565fb22e5a94423f17aaccc9", 0x3a}], 0x4}, 0x4044040)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100)={0xffffffff}, 0x8)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_netprio_ifpriomap(r6, &(0x7f00000006c0)=ANY=[@ANYRESOCT], 0x12)

1.214998888s ago: executing program 2 (id=2676):
r0 = socket(0xa, 0x5, 0x0)
sendmsg$inet_sctp(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000100)="db", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="20000000000000008400000008000000fc02000000000000000000000000000120000000000000008400000008000000200100000000000120000000000000011800"], 0x58, 0x4855}, 0x40080c4)

1.102787207s ago: executing program 3 (id=2677):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x7c, 0x4}, 0x2, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0xa00000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x64, 0x1, 0x7, 0x5, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xca3}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xc9}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x1}]}, 0x64}}, 0x40010)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x88}, 0x1, 0x7}, 0x8000)

1.100946084s ago: executing program 2 (id=2679):
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000280)={0x826b6be9b9579a0, 0x80, 0x52, 0x1, 0x3, 0x9, 0x0, 0x7fef, 0x84, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x984}, 0x10630d, 0x9, 0xfffffbfd, 0x3, 0x8000, 0x0, 0xfff7, 0x0, 0x0, 0x0, 0xb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0005000000000000004000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000))
socketpair(0x1, 0x1, 0x800, 0x0)
close(0xffffffffffffffff)
socket$kcm(0xa, 0x922000000003, 0x11)
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0xffff7fffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x8, 0x50, 0x28, 0x6, 0x0, 0x27, 0x2000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0xf0b, 0x0, @perf_bp={&(0x7f0000000340), 0x4}, 0x101, 0xffffffffff7ffffe, 0xb38b, 0x8, 0x4, 0x6, 0x136, 0x0, 0x66989203, 0x0, 0xffffffffffffffff}, 0x0, 0xa, r1, 0xf)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x14, 0x1b, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000009000000000000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000010400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000820000001859000001000000000000000000000027831000080000001861000006000000000000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000967000007b8af8ff00000000bfa200000000000007020000f8ffdc0cd2f70000080000031e89d30002000000850000008200000085200000030000009500000000000000"], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x71, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x8, &(0x7f0000000b00)={0x9, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001000)=[0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x29}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x7, 0xb, &(0x7f0000000180)=ANY=[@ANYRES8], &(0x7f00000000c0)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d32, 0x30, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_open_procfs$namespace(0x0, &(0x7f00000001c0)='ns/mnt\x00')
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
close(r2)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$inet(r3, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1, &(0x7f0000000200)=ANY=[], 0x20}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40050)
recvmsg(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000140)=""/104, 0x68}, {&(0x7f0000000700)=""/71, 0x47}, {&(0x7f0000000600)=""/127, 0x7f}, {&(0x7f00000031c0)=""/4110, 0x100e}, {&(0x7f0000000240)=""/129, 0x81}], 0x5}, 0x10100)
recvmsg(r4, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x12040)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff7)
ioctl$TUNGETVNETLE(r2, 0x40047451, &(0x7f0000000180))

1.04056276s ago: executing program 3 (id=2680):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@getqdisc={0x28, 0x26, 0x201, 0x60bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x6, 0xfff2}, {0x1, 0xffe0}, {0x13, 0xb}}, [{0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000000)

856.179948ms ago: executing program 1 (id=2682):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40011)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1000}, 0x80000, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
close(r1)
recvmsg$unix(r0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x1c0)
write$cgroup_subtree(r2, &(0x7f0000000180)=ANY=[@ANYRES8=r1, @ANYBLOB="3ee901"], 0x9a)

813.657821ms ago: executing program 3 (id=2683):
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) (async)
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x9}, 0x8000, 0x0, 0x0, 0x2, 0x7fff, 0x7fffffff}, r0, 0x1, 0xffffffffffffffff, 0xa) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x1f, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0, 0xf}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r3 = socket$kcm(0x2, 0x1000000000000002, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(r3, 0x88, 0x67, 0x0, 0x0) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(r4, 0x0, 0x2, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) (async)
getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) (async)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r6}, 0x18) (async)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0xe, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc2, 0x0, @perf_config_ext={0x800000000009, 0x401}, 0x114125, 0x2e, 0xfffffbff, 0x2, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10000000000065}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r7 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[], 0x10b8}, 0x106)
socket$kcm(0x1e, 0x4, 0x0)

690.273768ms ago: executing program 5 (id=2684):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socketpair(0x3, 0x1, 0x9, 0x0)
r1 = getpid()
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x401c5820, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a}, 0x94)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, 0x0, 0x8000000)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

683.148045ms ago: executing program 1 (id=2685):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0xe900)
close(r0)

618.665752ms ago: executing program 3 (id=2686):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x80f3051602a5e657)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x9, 0x0, 0x4, 0x4, 0x2ec0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1f000000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffaf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x43}, 0x3c)

617.106044ms ago: executing program 2 (id=2687):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket$kcm(0x2, 0x3, 0x84)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, 0x0, 0x4040)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x100600, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$NFQNL_MSG_VERDICT(0xffffffffffffffff, 0x0, 0x20000010)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="800000000001010400000000141a000002fff500240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740000000011c00108008000140000000000800024000000000080003"], 0x80}, 0x1, 0x0, 0x0, 0x4000810}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="3800000003010104000000000000000002000053e4d7e7b800240001801400018008000100e000000108000200e00000010c000280050001638f179f3933397f5f1213943b054466dfb33955a2aa8155056f8db553b7a520d54be68ae57a7b2c66d5fba7757648d9f6ec62a1bed0be02db5fc329193dcd14c35b26040000000000000026428957acb3804dad76d2f5ba605dbd747b15004b569066211d4e37b5950eeb2adb9f88d988d3c22a5c6731a71ec05391d8ea29c9105c7f94d207a5aaf95d2e240ea1b845a1feadf01528"], 0x38}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e50200000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r7)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_open_procfs$namespace(r0, &(0x7f0000000200)='ns/user\x00')
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1, 0xffff, 0x5, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r8, &(0x7f0000000080), 0x0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r8, &(0x7f00000004c0)="9d3bb86f6846fea1421c5cfd257db1e6d8224ac6fa460355928561f730d13bad94a4c4e4f5cce27af73aeada980418e33fdf2d54c09768e2dd3c93b84e72a7ec18a8edfa9da1ac8096dc11d7eb79a73c1b6b2631158549c061156d16c4336e630efe1b7750c0b318c08b4453c5aea27c7cfe784c00ea78cd8f848f39a8565fb2d969117e0bce2770dde30f273f16422f61411ec06c4c06ab5feb9982140b0a91b8208cd1e3baf350ad047f4ef5f2e90ad5ebe0162460b87784c9aa6eb2f6d84496fc709c5473bbbbfaca7573eb3bf2c45fb16a0124ce5108bbadaa8dbba3ea2c33fc6739d6b8619c624972bea91dc3e9502fc50f8a8a891f", &(0x7f0000000780)=""/238}, 0x20)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10210, 0xfa8, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB="60c6d8fec3619835ac4e2c00670000000000000000000000000000fc8c247d2b10160e0dcccf15960fc22ef523e489cd4aac484760332a40223b8a6ab64e36d9a0ca3760ca61f5f26f35e1c8bd9ccb6d04279e24fa608f022ee068b70a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)

541.595761ms ago: executing program 3 (id=2688):
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x4, 0x201, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7ff, 0x7fffffff, 0xffff, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x5, 0x5, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xf, 0x830d}, 0x2000, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
socketpair(0x1, 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000fffffffffffffff30018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000007cc38af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000b00000095"], &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

511.524738ms ago: executing program 1 (id=2689):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8164000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000005d00000095"], &(0x7f0000000340)='syzkaller\x00', 0x4}, 0x94)

510.34521ms ago: executing program 5 (id=2690):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x2e}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffff8}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x25}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001680)={0x4, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000100000000000000000000007112bb000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

409.801362ms ago: executing program 2 (id=2691):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7ffffffc, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d34, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2000000008, 0x800}, 0x0, 0x9, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f00000005c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000120000"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xb8}}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x4000010)
r2 = socket$kcm(0x25, 0x1, 0x0)
sendmsg(r2, &(0x7f0000000700)={&(0x7f0000000040)=@l2tp={0x2, 0x0, @private=0xa010101, 0x1}, 0x80, 0x0}, 0x4)
socketpair(0x22, 0x2, 0x24, &(0x7f0000000ac0))
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'erspan0\x00', @random="004023ea1c00"})
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="25390000290003"], 0x33fe0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @sock_ops}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000002c000000030a010800000000000000000100000b0900030073797a32000000000900010073797a300000000060000000060a010400000000000000000100000008000b40000000000900010073797a300000000038000480"], 0xd4}}, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x40804)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = getpid()
r6 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, 0xffffffffffffffff)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001280)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000140)=ANY=[], 0x32600)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'pimreg1\x00', 0x8000})
ioctl$PERF_EVENT_IOC_PERIOD(r7, 0x40305829, &(0x7f0000000040))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='memory.events\x00', 0x100002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)

337.909488ms ago: executing program 3 (id=2692):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x10, 0x0, 0x1, 0x0, 0x0, 0x0, 0x88e}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000), 0x4)
socket$rxrpc(0x21, 0x2, 0x3)
r2 = socket$kcm(0xa, 0x2, 0x3a)
write$cgroup_subtree(r2, 0x0, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYRES32=r1], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYRES32=r1], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x5, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0) (async)
r5 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0)
openat$cgroup_type(r5, &(0x7f00000001c0), 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1b0000001a007f029e", 0x9}, {&(0x7f0000000200)="68cabf2dfb58fc0a01008888ffff0200258f", 0x12}], 0x2}, 0x4000000) (async)
sendmsg$inet(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1b0000001a007f029e", 0x9}, {&(0x7f0000000200)="68cabf2dfb58fc0a01008888ffff0200258f", 0x12}], 0x2}, 0x4000000)
close(r4) (async)
close(r4)

336.833129ms ago: executing program 1 (id=2693):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1, 0xb, &(0x7f0000001580)=ANY=[@ANYBLOB="18000000010000000000000008000000180500002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702006408000020b703000001000000850000006900000095"], &(0x7f0000000000)='syzkaller\x00', 0xe}, 0x94)

272.291109ms ago: executing program 1 (id=2694):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@getqdisc={0x28, 0x26, 0x201, 0x60bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x6, 0xfff2}, {0x1, 0xffe0}, {0x13, 0xb}}, [{0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000000)

136.361962ms ago: executing program 0 (id=2695):
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x80}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4800}, 0x5)
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xffac, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0x1000}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x8, &(0x7f0000001d00)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x6b}, 0x0)

109.97879ms ago: executing program 1 (id=2696):
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xa}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r1 = getpid()
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x400000000000, 0x80, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0xa}, 0x0, 0x0, 0x0, 0x4, 0x7fff, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, 0x0, 0x2000c450)
sendmsg$NFT_BATCH(r6, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0xc220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r7 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r7, 0x29, 0x14, &(0x7f0000000100), 0x120)
setsockopt$sock_attach_bpf(r7, 0x29, 0x15, &(0x7f0000000100), 0x3d)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="b40000000000000061146c000000000005000000000090009500000000000000d2c8e6228b3bb3e9f846dd99223921b5417165c4d803733c9c08aa92b89946838c3964ef2e93198b310b5f4d746c8a36be36fa96"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x3b, 0x10, 0x0, 0x1800}, 0x48)
r8 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r8, &(0x7f0000000080)={&(0x7f0000001240)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r9 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)

793.791µs ago: executing program 2 (id=2697):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7ffffffc, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, 0x0, &(0x7f0000000740), 0x75}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
unlink(&(0x7f0000000340)='./file0\x00')
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYBLOB="00000000000000000000000000001700000000", @ANYRES32], 0x48)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x80044, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x4, @perf_bp={0x0, 0x6}, 0x0, 0x2, 0x9, 0x7, 0x0, 0x0, 0x2}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x13, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c250000000000202020630af8ff00000000bda100000000048026010000f8ffffffb702000008000000b703000000000000850000000800000018010000202070250000000000202020dd00f5ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 0 (id=2698):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$kcm(0x11, 0x200000000000002, 0x300)
close(0x3)
socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)}, 0x40)
setsockopt$sock_attach_bpf(r1, 0x107, 0x16, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001340)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8b26, &(0x7f0000000140)={'wlan1\x00', @random="00100009ff60"})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x8, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff274, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0x2, 0xffffffffffffffff, 0x2)
r5 = socket$kcm(0x23, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f0000000940))
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)=@generic={&(0x7f0000000380)='./file0\x00', 0x0, 0x18}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x16, &(0x7f0000000c40)=ANY=[@ANYBLOB="180000005090a51a000000000400000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018120000", @ANYRES32=r6, @ANYBLOB="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"], &(0x7f0000000100)='syzkaller\x00', 0x6, 0x37, &(0x7f0000000400)=""/55, 0x40f00, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000180)={0x3, 0x2, 0x8323, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[r5, r6, 0xffffffffffffffff, r6, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000280), 0x10, 0x7fff}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0xa000, 0x0, 0x0, 0x4, 0x3fe, 0x7ffffffc, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r7 = socket$kcm(0x23, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f00000003c0)={&(0x7f0000000000)=@phonet={0x23, 0x0, 0xfc}, 0x80, 0x0}, 0x0)
r8 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$sock(r8, 0x0, 0x0)
setsockopt$sock_attach_bpf(r8, 0x84, 0x24, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ocess `syz.2.574'.
[  185.505354][ T7857] ipvlan1: entered promiscuous mode
[  185.511917][ T7857] ipvlan1: entered allmulticast mode
[  185.520788][ T7857] veth0_vlan: entered allmulticast mode
[  185.540532][ T7857] bridge0: port 4(ipvlan1) entered blocking state
[  185.587008][ T7857] bridge0: port 4(ipvlan1) entered disabled state
[  185.640297][ T7857] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  186.743496][ T5152] Bluetooth: hci2: command 0x2016 tx timeout
[  186.755150][ T7902] netlink: 8 bytes leftover after parsing attributes in process `syz.2.587'.
[  186.801415][ T7902] netlink: 'syz.2.587': attribute type 10 has an invalid length.
[  186.884093][ T7902] netlink: 40 bytes leftover after parsing attributes in process `syz.2.587'.
[  186.904001][ T7902] batman_adv: batadv0: Adding interface: virt_wifi0
[  186.911122][ T7902] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  186.939790][ T7902] batman_adv: batadv0: Interface activated: virt_wifi0
[  187.131208][ T7908] netlink: 'syz.0.591': attribute type 21 has an invalid length.
[  187.139710][ T7908] netlink: 128 bytes leftover after parsing attributes in process `syz.0.591'.
[  187.151186][ T7908] netlink: 3 bytes leftover after parsing attributes in process `syz.0.591'.
[  188.106440][ T7930] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  188.291059][ T7935] delete_channel: no stack
[  188.295664][ T7935] delete_channel: no stack
[  188.563792][ T7942] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  188.672930][ T7947] netlink: 28 bytes leftover after parsing attributes in process `syz.1.604'.
[  188.697025][ T7947] netlink: 28 bytes leftover after parsing attributes in process `syz.1.604'.
[  188.728152][ T7947] netlink: 24 bytes leftover after parsing attributes in process `syz.1.604'.
[  188.842556][ T7955] netlink: 12 bytes leftover after parsing attributes in process `syz.4.607'.
[  189.377082][ T7970] netlink: 8 bytes leftover after parsing attributes in process `syz.1.610'.
[  189.824464][ T7974] sctp: [Deprecated]: syz.2.611 (pid 7974) Use of int in maxseg socket option.
[  189.824464][ T7974] Use struct sctp_assoc_value instead
[  190.094212][ T7984] netlink: 124 bytes leftover after parsing attributes in process `syz.0.613'.
[  190.179001][ T7986] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  190.778654][ T7990] syzkaller0: entered promiscuous mode
[  190.784431][ T7990] syzkaller0: entered allmulticast mode
[  190.925200][ T8007] netlink: 'syz.1.623': attribute type 1 has an invalid length.
[  192.076458][ T8023] netlink: 24 bytes leftover after parsing attributes in process `syz.1.628'.
[  192.952201][ T8011] ������: renamed from veth0_to_bond (while UP)
[  193.283489][ T8040] netlink: 8 bytes leftover after parsing attributes in process `syz.0.632'.
[  193.327013][ T8040] netlink: 300 bytes leftover after parsing attributes in process `syz.0.632'.
[  193.585765][ T8053] �]��X: renamed from veth0_vlan (while UP)
[  193.934431][ T8063] netlink: 12 bytes leftover after parsing attributes in process `syz.4.641'.
[  194.129352][ T8065] netlink: 'syz.1.642': attribute type 1 has an invalid length.
[  194.407320][ T5152] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  195.116792][ T8097] netlink: 'syz.1.654': attribute type 10 has an invalid length.
[  195.183130][ T8084] netlink: 4068 bytes leftover after parsing attributes in process `syz.4.649'.
[  195.215104][ T8097] team0: Device ipvlan1 failed to register rx_handler
[  195.479908][ T8114] sctp: [Deprecated]: syz.4.658 (pid 8114) Use of int in maxseg socket option.
[  195.479908][ T8114] Use struct sctp_assoc_value instead
[  195.936164][ T8125] syzkaller0: entered promiscuous mode
[  195.943274][ T8125] syzkaller0: entered allmulticast mode
[  196.073076][ T8137] netlink: 104 bytes leftover after parsing attributes in process `syz.1.668'.
[  196.371330][ T8147] netlink: 48 bytes leftover after parsing attributes in process `syz.3.671'.
[  196.492100][ T5152] Bluetooth: hci1: command 0x2016 tx timeout
[  196.772998][   T72] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  196.950891][ T8155] sctp: [Deprecated]: syz.1.675 (pid 8155) Use of int in maxseg socket option.
[  196.950891][ T8155] Use struct sctp_assoc_value instead
[  197.814627][ T8147] ������: renamed from veth0 (while UP)
[  198.275248][ T8178] netlink: 52 bytes leftover after parsing attributes in process `syz.4.683'.
[  198.286263][ T8184] netlink: 'syz.1.686': attribute type 2 has an invalid length.
[  198.444973][ T8189] netlink: 'syz.3.687': attribute type 1 has an invalid length.
[  198.505595][ T8191] netlink: 'syz.4.689': attribute type 10 has an invalid length.
[  198.719873][ T5152] Bluetooth: hci1: command 0x2016 tx timeout
[  199.407824][ T8222] netlink: 52 bytes leftover after parsing attributes in process `syz.2.699'.
[  199.542964][ T8227] netlink: 7064 bytes leftover after parsing attributes in process `syz.0.700'.
[  199.587939][ T8227] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  199.836856][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  199.860404][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  200.723129][ T8237] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.730628][ T8237] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.960002][ T8237] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.006674][ T8237] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.199178][ T8240] netlink: 4595 bytes leftover after parsing attributes in process `syz.4.703'.
[  201.242985][ T1006] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.349012][ T3794] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.436014][ T3794] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.490872][ T3794] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  202.775524][ T8297] netlink: 24 bytes leftover after parsing attributes in process `syz.0.719'.
[  203.578288][ T5838] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  204.440979][ T8319] netlink: 12 bytes leftover after parsing attributes in process `syz.2.728'.
[  204.490569][ T8319] netlink: 12 bytes leftover after parsing attributes in process `syz.2.728'.
[  205.212562][ T8336] netlink: 5320 bytes leftover after parsing attributes in process `syz.2.734'.
[  205.273066][ T8336] netlink: 8 bytes leftover after parsing attributes in process `syz.2.734'.
[  205.983681][ T8339] sctp: [Deprecated]: syz.4.735 (pid 8339) Use of int in maxseg socket option.
[  205.983681][ T8339] Use struct sctp_assoc_value instead
[  206.504797][ T8353] delete_channel: no stack
[  206.552785][ T8353] delete_channel: no stack
[  206.719654][ T8353] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  210.863475][ T8402] netlink: 4068 bytes leftover after parsing attributes in process `syz.2.756'.
[  210.936463][ T8414] wg2: entered promiscuous mode
[  210.952620][ T8414] wg2: entered allmulticast mode
[  211.187713][ T8420] netlink: 'syz.3.762': attribute type 10 has an invalid length.
[  211.367505][ T8420] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  211.447462][ T8427] netlink: 8 bytes leftover after parsing attributes in process `syz.4.765'.
[  211.468978][ T8425] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  211.850600][ T5837] Bluetooth: hci0: command 0x0406 tx timeout
[  211.856927][ T5837] Bluetooth: hci2: command 0x2016 tx timeout
[  211.863091][ T5837] Bluetooth: hci1: command 0x2016 tx timeout
[  211.870129][ T5837] Bluetooth: hci3: command 0x0406 tx timeout
[  212.561083][ T5835] Bluetooth: hci4: unexpected subevent 0x01 length: 150 > 18
[  212.568633][ T5835] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  212.640234][ T8451] netlink: 52 bytes leftover after parsing attributes in process `syz.4.769'.
[  212.795022][ T8460] netlink: 80 bytes leftover after parsing attributes in process `syz.0.772'.
[  212.907981][ T8459] netlink: 116 bytes leftover after parsing attributes in process `syz.2.774'.
[  213.795371][ T8479] netlink: 56 bytes leftover after parsing attributes in process `syz.1.780'.
[  213.863300][ T8479] netlink: 124 bytes leftover after parsing attributes in process `syz.1.780'.
[  214.144713][ T8494] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  214.174544][ T8495] netlink: 52 bytes leftover after parsing attributes in process `syz.4.784'.
[  214.541621][ T5835] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  214.553381][ T5835] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  214.580669][ T8505] netlink: 4 bytes leftover after parsing attributes in process `syz.1.789'.
[  214.674805][ T8512] netlink: 80 bytes leftover after parsing attributes in process `syz.3.787'.
[  214.812385][ T8507] netlink: 'syz.0.790': attribute type 1 has an invalid length.
[  215.394466][ T8531] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  216.128556][ T8556] __nla_validate_parse: 2 callbacks suppressed
[  216.128574][ T8556] netlink: 16 bytes leftover after parsing attributes in process `syz.2.805'.
[  216.242097][ T8557] netlink: 80 bytes leftover after parsing attributes in process `syz.0.806'.
[  216.321496][ T8564] netlink: 56 bytes leftover after parsing attributes in process `syz.3.808'.
[  216.630953][ T8569] netlink: 52 bytes leftover after parsing attributes in process `syz.4.810'.
[  216.827304][ T8576] netlink: 4 bytes leftover after parsing attributes in process `syz.3.812'.
[  216.924398][ T8576] netlink: 14568 bytes leftover after parsing attributes in process `syz.3.812'.
[  217.094440][ T8588] netlink: 56 bytes leftover after parsing attributes in process `syz.1.817'.
[  217.118068][ T8586] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  217.173135][ T8588] netlink: 124 bytes leftover after parsing attributes in process `syz.1.817'.
[  217.201465][ T8590] pim6reg1: entered promiscuous mode
[  217.207268][ T8590] pim6reg1: entered allmulticast mode
[  217.424996][ T8601] netlink: 28 bytes leftover after parsing attributes in process `syz.3.819'.
[  217.442446][ T8601] netlink: 8 bytes leftover after parsing attributes in process `syz.3.819'.
[  217.948778][ T8629] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  219.045525][ T8668] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  219.074343][ T8663] netlink: zone id is out of range
[  219.090457][ T8663] netlink: zone id is out of range
[  219.106113][ T8663] netlink: zone id is out of range
[  219.890921][ T8704] netlink: 'syz.0.855': attribute type 4 has an invalid length.
[  219.909787][ T8702] sctp: [Deprecated]: syz.4.854 (pid 8702) Use of int in maxseg socket option.
[  219.909787][ T8702] Use struct sctp_assoc_value instead
[  219.967994][ T8706] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  220.085486][ T8711] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  220.437663][ T8724] netlink: 'syz.1.861': attribute type 4 has an invalid length.
[  221.176841][ T8748] netlink: 'syz.2.869': attribute type 1 has an invalid length.
[  221.185003][ T8748] __nla_validate_parse: 12 callbacks suppressed
[  221.185043][ T8748] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.869'.
[  221.454702][ T8765] netlink: 4068 bytes leftover after parsing attributes in process `syz.3.874'.
[  221.996920][ T8773] delete_channel: no stack
[  222.257227][ T8803] netlink: 52 bytes leftover after parsing attributes in process `syz.2.887'.
[  222.340325][ T8802] netlink: 8 bytes leftover after parsing attributes in process `syz.4.884'.
[  222.411095][ T8808] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  223.130519][ T8827] netlink: 132 bytes leftover after parsing attributes in process `syz.1.895'.
[  223.150814][ T8827] netlink: 'syz.1.895': attribute type 10 has an invalid length.
[  223.497459][ T8827] netlink: 72 bytes leftover after parsing attributes in process `syz.1.895'.
[  223.548417][ T8827] netlink: 72 bytes leftover after parsing attributes in process `syz.1.895'.
[  223.929587][ T8845] netlink: 52 bytes leftover after parsing attributes in process `syz.3.901'.
[  224.467198][ T8856] netlink: 'syz.4.906': attribute type 10 has an invalid length.
[  224.531802][ T8858] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  224.554876][ T8856] 8021q: adding VLAN 0 to HW filter on device batadv0
[  224.587191][ T8860] netlink: 8 bytes leftover after parsing attributes in process `syz.0.903'.
[  224.636365][ T8856] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  225.445734][ T8886] netlink: 52 bytes leftover after parsing attributes in process `syz.0.914'.
[  225.681698][ T8891] delete_channel: no stack
[  225.784489][ T8898] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  226.790561][ T8932] __nla_validate_parse: 3 callbacks suppressed
[  226.790582][ T8932] netlink: 132 bytes leftover after parsing attributes in process `syz.0.929'.
[  226.841816][ T8931] netlink: 'syz.0.929': attribute type 10 has an invalid length.
[  226.865556][ T8931] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.876242][ T8931] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.096063][ T8931] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.104118][ T8931] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.113586][ T8931] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.121777][ T8931] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.176221][ T8940] netlink: 52 bytes leftover after parsing attributes in process `syz.3.931'.
[  227.234221][ T8931] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  227.383310][ T8949] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  227.441133][ T8953] bridge_slave_1: left allmulticast mode
[  227.476508][ T8953] bridge_slave_1: left promiscuous mode
[  227.482512][ T8953] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.767368][ T8953] bridge_slave_0: left allmulticast mode
[  227.773129][ T8953] bridge_slave_0: left promiscuous mode
[  227.801345][ T3431] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  227.849154][ T8953] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.869865][ T8963] netlink: 12 bytes leftover after parsing attributes in process `syz.2.940'.
[  227.913504][ T8963] netlink: 12 bytes leftover after parsing attributes in process `syz.2.940'.
[  228.040178][ T8953] bond0: (slave bridge0): Releasing backup interface
[  228.099007][ T8970] netlink: 20 bytes leftover after parsing attributes in process `syz.1.942'.
[  228.309134][ T8980] netlink: 56 bytes leftover after parsing attributes in process `syz.4.947'.
[  228.441726][ T8984] netlink: 24 bytes leftover after parsing attributes in process `syz.0.948'.
[  228.586140][ T8990] netlink: 52 bytes leftover after parsing attributes in process `syz.4.949'.
[  228.735338][ T8974] netlink: 'syz.1.944': attribute type 10 has an invalid length.
[  228.753075][ T8974] team0: Device ipvlan1 failed to register rx_handler
[  229.265026][ T9015] netlink: 12 bytes leftover after parsing attributes in process `syz.1.955'.
[  229.312992][ T9015] netlink: 12 bytes leftover after parsing attributes in process `syz.1.955'.
[  229.539411][ T9025] netlink: 'syz.4.961': attribute type 39 has an invalid length.
[  229.611039][ T9028] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  232.593807][ T9097] netlink: 'syz.4.988': attribute type 21 has an invalid length.
[  232.643248][ T9097] __nla_validate_parse: 7 callbacks suppressed
[  232.643339][ T9097] netlink: 14548 bytes leftover after parsing attributes in process `syz.4.988'.
[  233.614967][ T9115] netlink: 'syz.0.998': attribute type 39 has an invalid length.
[  233.731936][ T9126] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.1001'.
[  233.784788][ T9126] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  233.802866][ T9115] hsr_slave_1 (unregistering): left promiscuous mode
[  234.177118][ T9135] bpf: Bad value for 'gid'
[  234.750132][ T5835] Bluetooth: hci4: unexpected subevent 0x01 length: 150 > 18
[  234.758523][ T5835] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  234.948602][ T9157] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1010'.
[  235.071100][ T9164] netlink: 830 bytes leftover after parsing attributes in process `syz.4.1012'.
[  235.084742][ T9164] bond_slave_0: entered promiscuous mode
[  235.090715][ T9164] bond_slave_1: entered promiscuous mode
[  235.096527][ T9164] batadv0: entered promiscuous mode
[  237.436190][   T52] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  237.443988][   T52] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  238.596747][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  239.461451][ T9281] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1053'.
[  240.173668][ T9304] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1060'.
[  240.203344][ T9304] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1060'.
[  240.787747][ T9331] veth1_macvtap: left promiscuous mode
[  240.815620][ T9331] macsec0: entered allmulticast mode
[  240.853895][ T9334] netlink: 'syz.0.1070': attribute type 6 has an invalid length.
[  240.898337][ T9334] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1070'.
[  240.974613][ T9340] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1071'.
[  241.053693][ T9344] netlink: 'syz.0.1074': attribute type 21 has an invalid length.
[  241.061775][ T9344] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1074'.
[  241.070976][ T9344] netlink: 'syz.0.1074': attribute type 4 has an invalid length.
[  241.078944][ T9344] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1074'.
[  241.212847][ T9348] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1075'.
[  241.514666][ T9356] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  241.782766][ T9364] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1080'.
[  241.817015][ T9368] openvswitch: netlink: Missing valid actions attribute.
[  241.827922][ T9364] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1080'.
[  241.846698][ T9368] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  243.068390][ T9391] sctp: [Deprecated]: syz.1.1089 (pid 9391) Use of int in maxseg socket option.
[  243.068390][ T9391] Use struct sctp_assoc_value instead
[  244.154286][ T9417] netlink: 'syz.0.1100': attribute type 1 has an invalid length.
[  244.599855][ T9429] __nla_validate_parse: 7 callbacks suppressed
[  244.599876][ T9429] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1104'.
[  244.747829][ T9434] sctp: [Deprecated]: syz.0.1107 (pid 9434) Use of int in maxseg socket option.
[  244.747829][ T9434] Use struct sctp_assoc_value instead
[  245.498290][ T9447] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1111'.
[  245.555988][ T9447] netlink: 11 bytes leftover after parsing attributes in process `syz.4.1111'.
[  246.140510][ T9461] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1115'.
[  246.150008][ T9461] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1115'.
[  246.324754][ T9463] netlink: 'syz.2.1118': attribute type 3 has an invalid length.
[  246.332916][ T9463] netlink: 'syz.2.1118': attribute type 1 has an invalid length.
[  246.341999][ T9463] netlink: 60387 bytes leftover after parsing attributes in process `syz.2.1118'.
[  246.391598][ T9463] netlink: 800 bytes leftover after parsing attributes in process `syz.2.1118'.
[  246.450249][ T9463] pim6reg1: entered promiscuous mode
[  246.455900][ T9463] pim6reg1: entered allmulticast mode
[  246.980349][ T9491] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1126'.
[  247.059541][ T9491] netlink: 124 bytes leftover after parsing attributes in process `syz.2.1126'.
[  247.213176][ T9497] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1127'.
[  249.836847][ T9551] FAULT_INJECTION: forcing a failure.
[  249.836847][ T9551] name failslab, interval 1, probability 0, space 0, times 0
[  249.892952][ T9551] CPU: 0 UID: 0 PID: 9551 Comm: syz.3.1142 Not tainted syzkaller #0 PREEMPT(full) 
[  249.892979][ T9551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  249.892992][ T9551] Call Trace:
[  249.893000][ T9551]  <TASK>
[  249.893009][ T9551]  dump_stack_lvl+0xe8/0x150
[  249.893040][ T9551]  should_fail_ex+0x414/0x560
[  249.893074][ T9551]  should_failslab+0xa8/0x100
[  249.893117][ T9551]  __kmalloc_node_track_caller_noprof+0xe2/0x820
[  249.893139][ T9551]  ? xfrm_add_sa+0x1c3c/0x4220
[  249.893176][ T9551]  kmemdup_noprof+0x2b/0x70
[  249.893218][ T9551]  xfrm_add_sa+0x1c3c/0x4220
[  249.893285][ T9551]  ? __pfx_xfrm_add_sa+0x10/0x10
[  249.893308][ T9551]  ? __nla_parse+0x40/0x60
[  249.893332][ T9551]  xfrm_user_rcv_msg+0x7a3/0xab0
[  249.893355][ T9551]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  249.893408][ T9551]  ? __pfx___mutex_trylock_common+0x10/0x10
[  249.893437][ T9551]  ? rcu_is_watching+0x15/0xb0
[  249.893461][ T9551]  ? trace_contention_end+0x39/0x100
[  249.893486][ T9551]  ? __mutex_lock+0x335/0x1350
[  249.893515][ T9551]  netlink_rcv_skb+0x208/0x470
[  249.893541][ T9551]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  249.893570][ T9551]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  249.893609][ T9551]  ? netlink_deliver_tap+0x2e/0x1b0
[  249.893634][ T9551]  ? netlink_deliver_tap+0x2e/0x1b0
[  249.893662][ T9551]  xfrm_netlink_rcv+0x79/0x90
[  249.893681][ T9551]  netlink_unicast+0x82f/0x9e0
[  249.893713][ T9551]  ? __pfx_netlink_unicast+0x10/0x10
[  249.893734][ T9551]  ? __alloc_skb+0x198/0x3a0
[  249.893756][ T9551]  ? netlink_sendmsg+0x642/0xb30
[  249.893779][ T9551]  ? skb_put+0x11b/0x210
[  249.893804][ T9551]  netlink_sendmsg+0x805/0xb30
[  249.893828][ T9551]  ? irqentry_exit+0x5e8/0x670
[  249.893856][ T9551]  ? __pfx_netlink_sendmsg+0x10/0x10
[  249.893893][ T9551]  ? __pfx_netlink_sendmsg+0x10/0x10
[  249.893920][ T9551]  __sock_sendmsg+0x21c/0x270
[  249.893953][ T9551]  ____sys_sendmsg+0x505/0x820
[  249.893982][ T9551]  ? __pfx_____sys_sendmsg+0x10/0x10
[  249.894016][ T9551]  ? import_iovec+0x74/0xa0
[  249.894044][ T9551]  ___sys_sendmsg+0x21f/0x2a0
[  249.894069][ T9551]  ? __pfx____sys_sendmsg+0x10/0x10
[  249.894096][ T9551]  ? perf_trace_preemptirq_template+0xa3/0x340
[  249.894125][ T9551]  ? irqentry_enter+0xbf/0x150
[  249.894158][ T9551]  ? lockdep_hardirqs_on+0x7b/0x110
[  249.894205][ T9551]  __x64_sys_sendmsg+0x19b/0x260
[  249.894231][ T9551]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  249.894265][ T9551]  ? __pfx_ksys_write+0x10/0x10
[  249.894304][ T9551]  do_syscall_64+0xec/0xf80
[  249.894373][ T9551]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.894393][ T9551]  ? clear_bhb_loop+0x60/0xb0
[  249.894418][ T9551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.894437][ T9551] RIP: 0033:0x7f5d3fb8f749
[  249.894455][ T9551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.894472][ T9551] RSP: 002b:00007f5d40986038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  249.894493][ T9551] RAX: ffffffffffffffda RBX: 00007f5d3fde5fa0 RCX: 00007f5d3fb8f749
[  249.894507][ T9551] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  249.894520][ T9551] RBP: 00007f5d40986090 R08: 0000000000000000 R09: 0000000000000000
[  249.894531][ T9551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.894542][ T9551] R13: 00007f5d3fde6038 R14: 00007f5d3fde5fa0 R15: 00007fff97765b38
[  249.894591][ T9551]  </TASK>
[  250.400728][ T9562] __nla_validate_parse: 3 callbacks suppressed
[  250.400746][ T9562] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1145'.
[  250.962839][ T9584] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1154'.
[  251.008868][ T9581] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1152'.
[  252.742549][ T9629] sctp: [Deprecated]: syz.2.1167 (pid 9629) Use of int in maxseg socket option.
[  252.742549][ T9629] Use struct sctp_assoc_value instead
[  254.165505][ T9670] sctp: [Deprecated]: syz.2.1182 (pid 9670) Use of int in maxseg socket option.
[  254.165505][ T9670] Use struct sctp_assoc_value instead
[  254.181792][ T9669] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1181'.
[  254.473249][ T9682] netlink: 'syz.1.1181': attribute type 2 has an invalid length.
[  254.510146][ T9685] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1188'.
[  255.363528][ T9701] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1193'.
[  255.373712][ T9701] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  255.394676][ T9705] sctp: [Deprecated]: syz.2.1195 (pid 9705) Use of int in maxseg socket option.
[  255.394676][ T9705] Use struct sctp_assoc_value instead
[  255.515565][ T9710] ��: renamed from bond_slave_0 (while UP)
[  255.612067][ T9719] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1200'.
[  255.666023][ T9721] netlink: 'syz.1.1201': attribute type 10 has an invalid length.
[  255.674249][ T9721] geneve0: entered promiscuous mode
[  255.712369][ T9721] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  255.721620][   T72] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.733346][   T72] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.742554][   T72] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.779558][   T72] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  256.232345][ T9748] netlink: 7064 bytes leftover after parsing attributes in process `syz.1.1211'.
[  256.286412][ T9748] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  256.298666][ T9750] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1213'.
[  256.422331][ T9753] sctp: [Deprecated]: syz.2.1212 (pid 9753) Use of int in maxseg socket option.
[  256.422331][ T9753] Use struct sctp_assoc_value instead
[  256.883490][ T9772] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1221'.
[  256.924687][ T9774] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1222'.
[  256.949087][ T9777] netlink: 'syz.3.1223': attribute type 4 has an invalid length.
[  256.960278][ T9777] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1223'.
[  257.242222][ T9785] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1228'.
[  257.267218][ T9785] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1228'.
[  257.397647][ T9792] netlink: 'syz.3.1230': attribute type 10 has an invalid length.
[  257.421562][ T9792] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1230'.
[  257.936327][ T5835] Bluetooth: hci4: command 0x0406 tx timeout
[  258.189640][ T9808] netlink: 'syz.0.1235': attribute type 10 has an invalid length.
[  258.241856][ T9808] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1235'.
[  258.307924][ T9808] dummy0: entered promiscuous mode
[  258.313132][ T9808] dummy0: entered allmulticast mode
[  258.337695][ T9808] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  258.827245][ T6085] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  260.190692][ T9863] tmpfs: Bad value for 'gid'
[  260.195538][ T9863] tmpfs: Bad value for 'gid'
[  260.913440][ T9851] __nla_validate_parse: 5 callbacks suppressed
[  260.913460][ T9851] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1251'.
[  260.970926][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  260.979781][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  261.657119][ T9884] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1262'.
[  261.721157][ T9884] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  261.978951][ T5835] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  261.989288][ T5835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  261.997579][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  262.009118][ T5835] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  262.017847][ T5835] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  262.549733][ T9897] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1266'.
[  263.959209][ T9936] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1276'.
[  263.992614][ T9936] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1276'.
[  264.096693][ T5835] Bluetooth: hci0: command tx timeout
[  264.342488][ T9888] chnl_net:caif_netlink_parms(): no params data found
[  264.460539][ T9945] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1279'.
[  264.799172][ T9888] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.811994][ T9888] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.832291][ T9888] bridge_slave_0: entered allmulticast mode
[  264.852512][ T9888] bridge_slave_0: entered promiscuous mode
[  264.866425][ T9888] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.874458][ T9888] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.882131][ T9888] bridge_slave_1: entered allmulticast mode
[  264.912342][ T9888] bridge_slave_1: entered promiscuous mode
[  265.361659][ T9995] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1289'.
[  265.362722][ T9969] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1286'.
[  265.470933][ T9888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  265.634144][ T9888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  265.776479][T10001] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1290'.
[  265.785569][T10001] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1290'.
[  266.164916][ T9888] team0: Port device team_slave_0 added
[  266.176060][ T5835] Bluetooth: hci0: command tx timeout
[  266.183476][T10006] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1293'.
[  266.250564][ T9888] team0: Port device team_slave_1 added
[  266.489565][ T9888] batman_adv: batadv0: Adding interface: batadv_slave_0
[  266.507185][ T9888] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  266.573198][ T9888] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  266.614227][ T9888] batman_adv: batadv0: Adding interface: batadv_slave_1
[  266.628199][ T9888] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  266.686084][ T9888] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  266.698245][T10014] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1296'.
[  267.153939][ T9888] hsr_slave_0: entered promiscuous mode
[  267.177279][ T9888] hsr_slave_1: entered promiscuous mode
[  267.205369][ T9888] debugfs: 'hsr0' already exists in 'hsr'
[  267.226614][ T9888] Cannot create hsr debugfs directory
[  267.773506][T10038] netlink: 'syz.3.1303': attribute type 10 has an invalid length.
[  267.815997][T10038] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1303'.
[  267.833399][T10044] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1306'.
[  268.240277][T10038] batman_adv: batadv0: Adding interface: virt_wifi0
[  268.248286][T10038] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  268.274581][T10038] batman_adv: batadv0: Interface activated: virt_wifi0
[  268.283993][ T5835] Bluetooth: hci0: command tx timeout
[  268.544705][T10057] sctp: [Deprecated]: syz.2.1309 (pid 10057) Use of int in maxseg socket option.
[  268.544705][T10057] Use struct sctp_assoc_value instead
[  268.694609][ T9888] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.868875][ T9888] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  268.954933][T10065] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1313'.
[  269.053655][T10065] netlink: 124 bytes leftover after parsing attributes in process `syz.3.1313'.
[  269.098439][ T9888] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.330707][ T9888] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.607342][T10075] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1317'.
[  269.761684][ T9888] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  269.814737][ T9888] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  269.860589][ T9888] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  269.949987][ T9888] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  270.330490][ T5835] Bluetooth: hci0: command tx timeout
[  270.341200][ T5835] Bluetooth: hci4: unexpected event 0x0f length: 15 > 4
[  270.514136][ T9888] 8021q: adding VLAN 0 to HW filter on device bond0
[  271.327773][T10125] netlink: 'syz.3.1330': attribute type 10 has an invalid length.
[  271.356027][T10125] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1330'.
[  271.475913][T10125] dummy0: entered promiscuous mode
[  271.481723][T10125] dummy0: entered allmulticast mode
[  271.554650][T10125] bond0: (slave dummy0): Releasing backup interface
[  271.573245][T10125] bridge0: port 3(dummy0) entered blocking state
[  271.611655][T10125] bridge0: port 3(dummy0) entered disabled state
[  271.782470][ T9888] 8021q: adding VLAN 0 to HW filter on device team0
[  272.136689][T10131] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1332'.
[  272.171619][ T9986] bridge0: port 1(bridge_slave_0) entered blocking state
[  272.178974][ T9986] bridge0: port 1(bridge_slave_0) entered forwarding state
[  272.308818][ T9986] bridge0: port 2(bridge_slave_1) entered blocking state
[  272.316078][ T9986] bridge0: port 2(bridge_slave_1) entered forwarding state
[  272.950440][T10145] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1336'.
[  273.054021][ T9888] 8021q: adding VLAN 0 to HW filter on device batadv0
[  273.063012][T10145] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1336'.
[  273.110204][T10147] netlink: 16342 bytes leftover after parsing attributes in process `syz.1.1337'.
[  273.242193][ T9888] veth0_vlan: entered promiscuous mode
[  273.441014][ T9888] veth1_vlan: entered promiscuous mode
[  273.905182][ T9888] veth0_macvtap: entered promiscuous mode
[  273.950547][ T9888] veth1_macvtap: entered promiscuous mode
[  274.004566][ T9888] batman_adv: batadv0: Interface activated: batadv_slave_0
[  274.028158][ T9888] batman_adv: batadv0: Interface activated: batadv_slave_1
[  274.136961][ T9986] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  274.146713][ T9986] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  274.183469][ T9986] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  274.236947][ T9986] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  274.407384][ T5835] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  274.416029][ T5835] Bluetooth: hci4: Injecting HCI hardware error event
[  274.424452][ T5835] Bluetooth: hci4: hardware error 0x00
[  275.046526][ T9984] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  275.086572][ T9984] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  275.311222][ T9981] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  275.336325][ T9981] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  275.563068][T10170] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1344'.
[  276.735468][ T5835] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  277.314181][   T52] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  277.325460][   T52] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  277.345212][   T52] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  277.354264][   T52] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  277.371883][   T52] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  277.447359][T10219] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1361'.
[  278.347246][T10232] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1366'.
[  279.446420][ T5835] Bluetooth: hci5: command tx timeout
[  279.748952][T10256] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1372'.
[  279.878779][T10213] chnl_net:caif_netlink_parms(): no params data found
[  280.322001][T10277] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1377'.
[  280.563318][ T9981] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.644815][T10213] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.670578][T10213] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.686246][T10213] bridge_slave_0: entered allmulticast mode
[  280.697228][T10213] bridge_slave_0: entered promiscuous mode
[  280.841195][ T9981] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  280.874776][T10213] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.882593][T10213] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.890465][T10213] bridge_slave_1: entered allmulticast mode
[  280.898782][T10213] bridge_slave_1: entered promiscuous mode
[  281.481545][T10298] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1384'.
[  281.550541][ T5835] Bluetooth: hci5: command tx timeout
[  282.619979][ T9981] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.641878][T10213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  282.655569][T10213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  282.781303][ T9981] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.838226][T10319] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1389'.
[  282.957580][T10320] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1389'.
[  283.025197][T10213] team0: Port device team_slave_0 added
[  283.044450][T10213] team0: Port device team_slave_1 added
[  283.261580][T10213] batman_adv: batadv0: Adding interface: batadv_slave_0
[  283.277201][T10213] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  283.370526][T10213] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  283.495488][T10213] batman_adv: batadv0: Adding interface: batadv_slave_1
[  283.565931][T10213] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  283.606093][ T5835] Bluetooth: hci5: command tx timeout
[  283.723828][T10213] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.046305][T10213] hsr_slave_0: entered promiscuous mode
[  284.058638][T10213] hsr_slave_1: entered promiscuous mode
[  284.070555][T10213] debugfs: 'hsr0' already exists in 'hsr'
[  284.082546][T10213] Cannot create hsr debugfs directory
[  284.118403][ T9981] bridge_slave_1: left allmulticast mode
[  284.136970][ T9981] bridge_slave_1: left promiscuous mode
[  284.144148][ T9981] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.161007][ T9981] bridge_slave_0: left allmulticast mode
[  284.175959][ T9981] bridge_slave_0: left promiscuous mode
[  284.192298][ T9981] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.230847][ T9981] ��: left promiscuous mode
[  284.237680][ T9981] bond_slave_1: left promiscuous mode
[  284.244175][ T9981] batadv0: left promiscuous mode
[  285.038040][ T9981] bond0 (unregistering): (slave 
5��): Releasing backup interface
[  285.050444][ T9981] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  285.062771][ T9981] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  285.073573][ T9981] bond0 (unregistering): Released all slaves
[  285.104387][T10351] netlink: 4068 bytes leftover after parsing attributes in process `syz.1.1399'.
[  285.176388][T10365] netlink: 4068 bytes leftover after parsing attributes in process `syz.0.1403'.
[  285.685908][ T5835] Bluetooth: hci5: command tx timeout
[  286.358291][T10213] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  286.437761][T10213] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  286.563861][T10213] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  286.738699][T10213] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  286.847582][T10421] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1417'.
[  286.895054][T10431] netlink: 'syz.2.1419': attribute type 10 has an invalid length.
[  286.917663][T10428] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1417'.
[  286.952473][T10429] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1419'.
[  286.963441][T10429] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1419'.
[  287.050026][T10415] netlink: 4068 bytes leftover after parsing attributes in process `syz.3.1416'.
[  287.192685][ T9981] hsr_slave_0: left promiscuous mode
[  287.203346][ T9981] hsr_slave_1: left promiscuous mode
[  287.226993][ T9981] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  287.236324][ T9981] batman_adv: batadv0: Removing interface: batadv_slave_0
[  287.247955][ T9981] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  287.255561][ T9981] batman_adv: batadv0: Removing interface: batadv_slave_1
[  287.283181][ T9981] veth1_macvtap: left promiscuous mode
[  287.289534][ T9981] veth0_macvtap: left promiscuous mode
[  287.299067][ T9981] veth1_vlan: left promiscuous mode
[  287.304591][ T9981] �]��X: left promiscuous mode
[  287.503296][T10450] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1423'.
[  287.899788][T10464] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1426'.
[  288.272846][ T9981] team0 (unregistering): Port device team_slave_1 removed
[  288.311282][ T9981] team0 (unregistering): Port device team_slave_0 removed
[  288.342778][ T9988] smc: removing ib device !yz!
[  288.663014][T10474] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1430'.
[  288.749100][T10446] netlink: 'syz.0.1421': attribute type 13 has an invalid length.
[  288.758069][T10451] wg2: entered promiscuous mode
[  288.763021][T10451] wg2: entered allmulticast mode
[  288.779447][T10455] macsec0: entered allmulticast mode
[  288.785196][T10460] veth1_macvtap: entered allmulticast mode
[  288.801710][T10460] macsec0: entered promiscuous mode
[  289.187484][T10213] 8021q: adding VLAN 0 to HW filter on device bond0
[  289.311279][T10487] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1434'.
[  289.322386][T10213] 8021q: adding VLAN 0 to HW filter on device team0
[  289.402542][T10485] netlink: 4068 bytes leftover after parsing attributes in process `syz.1.1432'.
[  289.509268][ T9985] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.516525][ T9985] bridge0: port 1(bridge_slave_0) entered forwarding state
[  289.581695][ T9985] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.588950][ T9985] bridge0: port 2(bridge_slave_1) entered forwarding state
[  289.778658][ T9980] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  289.908253][T10500] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1435'.
[  289.979513][T10500] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1435'.
[  290.235234][T10213] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  290.714137][T10519] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1439'.
[  291.430720][T10213] 8021q: adding VLAN 0 to HW filter on device batadv0
[  292.108512][T10539] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1445'.
[  292.178501][T10541] netlink: 4068 bytes leftover after parsing attributes in process `syz.3.1446'.
[  292.733398][T10560] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1451'.
[  293.113249][T10213] veth0_vlan: entered promiscuous mode
[  293.157237][T10213] veth1_vlan: entered promiscuous mode
[  293.389434][T10213] veth0_macvtap: entered promiscuous mode
[  293.411492][T10213] veth1_macvtap: entered promiscuous mode
[  293.477836][T10213] batman_adv: batadv0: Interface activated: batadv_slave_0
[  293.517142][T10213] batman_adv: batadv0: Interface activated: batadv_slave_1
[  293.570827][ T9989] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  293.627856][ T9989] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  293.667689][T10582] netlink: 'syz.2.1455': attribute type 21 has an invalid length.
[  293.688397][T10582] netlink: 164 bytes leftover after parsing attributes in process `syz.2.1455'.
[  293.701993][ T9989] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  293.713198][T10586] netlink: 7064 bytes leftover after parsing attributes in process `syz.1.1456'.
[  293.731099][ T9989] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  293.751433][T10586] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  294.189898][ T9974] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  294.221691][ T9974] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  294.483236][ T9989] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  294.504776][ T9989] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  294.518360][T10603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1460'.
[  294.545939][T10603] openvswitch: netlink: Duplicate key (type 32).
[  294.721303][T10605] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1460'.
[  295.140314][T10614] netlink: 4068 bytes leftover after parsing attributes in process `syz.3.1463'.
[  295.292679][T10633] netlink: 'syz.0.1466': attribute type 3 has an invalid length.
[  295.376224][T10633] netlink: 'syz.0.1466': attribute type 1 has an invalid length.
[  295.436658][T10633] netlink: 60387 bytes leftover after parsing attributes in process `syz.0.1466'.
[  296.072927][T10656] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1472'.
[  296.113795][T10656] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1472'.
[  296.198584][T10659] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1473'.
[  296.290704][T10664] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1475'.
[  298.574007][ T9974] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  298.588454][ T9974] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  298.610463][ T9974] bond0 (unregistering): Released all slaves
[  299.169243][T10740] __nla_validate_parse: 2 callbacks suppressed
[  299.169276][T10740] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.1499'.
[  299.225539][T10740] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  299.725930][T10737] netlink: 4068 bytes leftover after parsing attributes in process `syz.0.1497'.
[  300.529253][T10766] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1507'.
[  300.630006][T10775] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1510'.
[  301.024734][T10766] netlink: 'syz.5.1507': attribute type 46 has an invalid length.
[  301.555940][ T9974] hsr_slave_0: left promiscuous mode
[  301.652607][ T9974] veth1_macvtap: left promiscuous mode
[  301.674511][ T9974] veth0_macvtap: left promiscuous mode
[  301.687379][ T9974] veth1_vlan: left promiscuous mode
[  301.698282][T10796] netlink: 'syz.3.1518': attribute type 22 has an invalid length.
[  301.709272][ T9974] veth0_vlan: left promiscuous mode
[  301.827921][ T5835] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  301.837302][ T5835] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  301.881895][T10810] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1522'.
[  302.226249][T10823] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1525'.
[  302.239769][T10820] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1525'.
[  302.345917][T10829] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1527'.
[  302.784583][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  302.793596][   T52] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  302.864653][ T9974] team0 (unregistering): Port device team_slave_1 removed
[  302.899579][T10849] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1535'.
[  302.924550][ T9974] team0 (unregistering): Port device team_slave_0 removed
[  302.995713][T10849] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1535'.
[  303.533899][T10859] netlink: 'syz.2.1538': attribute type 23 has an invalid length.
[  304.075430][   T52] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  304.289167][T10878] __nla_validate_parse: 5 callbacks suppressed
[  304.289188][T10878] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1547'.
[  304.516172][T10878] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1547'.
[  304.590585][T10896] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1550'.
[  305.607860][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  305.617147][   T52] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  305.642098][T10912] netlink: 4068 bytes leftover after parsing attributes in process `syz.0.1555'.
[  305.858415][T10935] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1562'.
[  305.972636][T10935] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1562'.
[  306.018584][T10942] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1563'.
[  306.051795][T10942] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1563'.
[  306.143221][T10950] netlink: 'syz.0.1566': attribute type 10 has an invalid length.
[  306.162351][T10950] netlink: 55 bytes leftover after parsing attributes in process `syz.0.1566'.
[  306.162439][T10935] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1562'.
[  306.367607][   T52] Bluetooth: hci5: unexpected subevent 0x01 length: 150 > 18
[  306.510768][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  306.518474][   T52] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  308.143985][T11023] netlink: 'syz.1.1590': attribute type 21 has an invalid length.
[  308.788801][   T52] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  308.796599][   T52] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  309.480416][T11076] __nla_validate_parse: 6 callbacks suppressed
[  309.480439][T11076] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1607'.
[  309.709426][   T52] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  309.721603][   T52] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  310.381505][T11120] netlink: 'syz.3.1620': attribute type 10 has an invalid length.
[  310.562852][T11127] netlink: 'syz.1.1621': attribute type 39 has an invalid length.
[  310.753766][T11127] hsr_slave_1 (unregistering): left promiscuous mode
[  310.764712][T11138] netlink: 'syz.3.1623': attribute type 10 has an invalid length.
[  310.805966][T11138] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1623'.
[  310.870924][T11140] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1625'.
[  311.051469][T11146] sctp: [Deprecated]: syz.2.1626 (pid 11146) Use of int in maxseg socket option.
[  311.051469][T11146] Use struct sctp_assoc_value instead
[  311.835345][T11168] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1628'.
[  313.738639][T11212] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1640'.
[  313.991820][   T52] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  313.999481][   T52] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  315.759314][T11270] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1657'.
[  315.823984][T11268] FAULT_INJECTION: forcing a failure.
[  315.823984][T11268] name failslab, interval 1, probability 0, space 0, times 0
[  315.838735][T11268] CPU: 0 UID: 0 PID: 11268 Comm: syz.1.1656 Not tainted syzkaller #0 PREEMPT(full) 
[  315.838762][T11268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  315.838788][T11268] Call Trace:
[  315.838805][T11268]  <TASK>
[  315.838821][T11268]  dump_stack_lvl+0xe8/0x150
[  315.838888][T11268]  should_fail_ex+0x414/0x560
[  315.839005][T11268]  should_failslab+0xa8/0x100
[  315.839071][T11268]  kmem_cache_alloc_node_noprof+0x8c/0x720
[  315.839133][T11268]  ? __alloc_skb+0x198/0x3a0
[  315.839162][T11268]  ? __alloc_skb+0x1dc/0x3a0
[  315.839179][T11268]  ? __local_bh_enable_ip+0xd0/0x130
[  315.839226][T11268]  ? __alloc_skb+0x198/0x3a0
[  315.839283][T11268]  __alloc_skb+0x1dc/0x3a0
[  315.839382][T11268]  ppp_write+0xb1/0x400
[  315.839412][T11268]  ? vfs_write+0x261/0xb30
[  315.839429][T11268]  ? __pfx_ppp_write+0x10/0x10
[  315.839508][T11268]  vfs_write+0x27e/0xb30
[  315.839614][T11268]  ? __fget_files+0x2a/0x420
[  315.839677][T11268]  ? __pfx_vfs_write+0x10/0x10
[  315.839749][T11268]  ? __fget_files+0x2a/0x420
[  315.839830][T11268]  ? __fget_files+0x2a/0x420
[  315.839863][T11268]  ? __fget_files+0x3a0/0x420
[  315.839896][T11268]  ? __fget_files+0x2a/0x420
[  315.840067][T11268]  ksys_write+0x145/0x250
[  315.840143][T11268]  ? __pfx_ksys_write+0x10/0x10
[  315.840315][T11268]  do_syscall_64+0xec/0xf80
[  315.840350][T11268]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.840379][T11268]  ? clear_bhb_loop+0x60/0xb0
[  315.840451][T11268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.840478][T11268] RIP: 0033:0x7fbcc098f749
[  315.840506][T11268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.840520][T11268] RSP: 002b:00007fbcc1809038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  315.840536][T11268] RAX: ffffffffffffffda RBX: 00007fbcc0be5fa0 RCX: 00007fbcc098f749
[  315.840547][T11268] RDX: 0000000000000009 RSI: 0000200000000280 RDI: 0000000000000005
[  315.840556][T11268] RBP: 00007fbcc1809090 R08: 0000000000000000 R09: 0000000000000000
[  315.840565][T11268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.840574][T11268] R13: 00007fbcc0be6038 R14: 00007fbcc0be5fa0 R15: 00007ffe92044728
[  315.840745][T11268]  </TASK>
[  316.472971][T11279] netlink: 4068 bytes leftover after parsing attributes in process `syz.3.1659'.
[  316.703496][T11300] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1669'.
[  316.804189][T11307] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1671'.
[  316.894686][T11309] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1671'.
[  317.262336][T11318] netlink: 'syz.3.1675': attribute type 10 has an invalid length.
[  317.312886][T11318] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.364136][T11318] bridge_slave_1: left allmulticast mode
[  317.389066][T11318] bridge_slave_1: left promiscuous mode
[  317.470608][T11318] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.568790][T11327] bridge0: port 3(bond0) entered blocking state
[  317.588943][T11327] bridge0: port 3(bond0) entered disabled state
[  317.598543][T11327] bond0: entered allmulticast mode
[  317.605069][T11327] bond_slave_0: entered allmulticast mode
[  317.618234][T11327] bond_slave_1: entered allmulticast mode
[  317.628416][T11327] bond0: entered promiscuous mode
[  317.655161][T11327] bond_slave_0: entered promiscuous mode
[  317.668377][T11327] bond_slave_1: entered promiscuous mode
[  317.696951][T11327] bridge0: port 3(bond0) entered blocking state
[  317.703611][T11327] bridge0: port 3(bond0) entered listening state
[  317.975085][T11344] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1685'.
[  318.087903][   T52] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  318.095414][   T52] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  318.202295][T11359] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1691'.
[  318.252442][T11361] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.1692'.
[  318.276590][T11361] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  318.845108][T11386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1700'.
[  319.095914][T11394] sctp: [Deprecated]: syz.1.1704 (pid 11394) Use of int in maxseg socket option.
[  319.095914][T11394] Use struct sctp_assoc_value instead
[  319.145408][T11392] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1703'.
[  320.090485][T11426] sctp: [Deprecated]: syz.3.1715 (pid 11426) Use of int in maxseg socket option.
[  320.090485][T11426] Use struct sctp_assoc_value instead
[  320.353985][T11437] pim6reg1: entered allmulticast mode
[  320.383110][T11437] pim6reg1: left allmulticast mode
[  320.987662][T11460] __nla_validate_parse: 5 callbacks suppressed
[  320.987696][T11460] netlink: 4068 bytes leftover after parsing attributes in process `syz.1.1729'.
[  321.115638][T11468] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1732'.
[  321.238735][T11468] lo speed is unknown, defaulting to 1000
[  321.245296][T11468] lo speed is unknown, defaulting to 1000
[  321.300554][T11474] FAULT_INJECTION: forcing a failure.
[  321.300554][T11474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.329661][T11468] lo speed is unknown, defaulting to 1000
[  321.342101][T11474] CPU: 1 UID: 0 PID: 11474 Comm: syz.0.1734 Not tainted syzkaller #0 PREEMPT(full) 
[  321.342125][T11474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  321.342149][T11474] Call Trace:
[  321.342157][T11474]  <TASK>
[  321.342164][T11474]  dump_stack_lvl+0xe8/0x150
[  321.342193][T11474]  should_fail_ex+0x414/0x560
[  321.342232][T11474]  _copy_from_user+0x2d/0xb0
[  321.342255][T11474]  __sys_bpf+0x1e3/0x860
[  321.342283][T11474]  ? __pfx___sys_bpf+0x10/0x10
[  321.342335][T11474]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  321.342359][T11474]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  321.342383][T11474]  ? __pfx_ksys_write+0x10/0x10
[  321.342417][T11474]  __x64_sys_bpf+0x7c/0x90
[  321.342440][T11474]  do_syscall_64+0xec/0xf80
[  321.342458][T11474]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.342472][T11474]  ? trace_irq_disable+0x37/0x100
[  321.342491][T11474]  ? clear_bhb_loop+0x60/0xb0
[  321.342515][T11474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.342530][T11474] RIP: 0033:0x7fbf3a18f749
[  321.342546][T11474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.342559][T11474] RSP: 002b:00007fbf3b05b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  321.342576][T11474] RAX: ffffffffffffffda RBX: 00007fbf3a3e5fa0 RCX: 00007fbf3a18f749
[  321.342588][T11474] RDX: 0000000000000050 RSI: 0000200000000680 RDI: 0000000000000000
[  321.342597][T11474] RBP: 00007fbf3b05b090 R08: 0000000000000000 R09: 0000000000000000
[  321.342607][T11474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.342616][T11474] R13: 00007fbf3a3e6038 R14: 00007fbf3a3e5fa0 R15: 00007ffdfc5a5528
[  321.342665][T11474]  </TASK>
[  321.520567][T11468] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  321.596032][T11468] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  321.637905][T11478] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1736'.
[  321.673643][T11478] netlink: 124 bytes leftover after parsing attributes in process `syz.2.1736'.
[  321.750199][T11468] lo speed is unknown, defaulting to 1000
[  321.788378][T11468] lo speed is unknown, defaulting to 1000
[  321.839096][T11468] lo speed is unknown, defaulting to 1000
[  321.955946][T11468] lo speed is unknown, defaulting to 1000
[  322.048675][T11468] lo speed is unknown, defaulting to 1000
[  322.200107][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  322.207845][   T52] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  322.269663][T11490] netlink: 'syz.2.1741': attribute type 29 has an invalid length.
[  322.277893][T11490] netlink: 'syz.2.1741': attribute type 3 has an invalid length.
[  322.285656][T11490] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1741'.
[  322.403925][T11495] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1742'.
[  322.418466][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  322.418583][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  322.487856][T11495] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1742'.
[  322.584835][T11503] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.1748'.
[  322.594653][T11503] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  322.766565][T11513] netlink: 4068 bytes leftover after parsing attributes in process `syz.0.1749'.
[  323.193286][T11518] netlink: 'syz.5.1751': attribute type 10 has an invalid length.
[  323.327572][T11518] netlink: 55 bytes leftover after parsing attributes in process `syz.5.1751'.
[  324.138593][T11503] lo speed is unknown, defaulting to 1000
[  324.469799][T11537] netlink: 'syz.5.1757': attribute type 10 has an invalid length.
[  324.497741][   T52] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  324.505311][   T52] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  326.371223][T11605] __nla_validate_parse: 2 callbacks suppressed
[  326.371247][T11605] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1782'.
[  326.409968][T11603] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1780'.
[  326.424870][T11602] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1781'.
[  326.616635][T11602] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1781'.
[  326.696558][T11602] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1781'.
[  327.353060][T11639] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1785'.
[  327.698914][T11656] netlink: 596 bytes leftover after parsing attributes in process `syz.0.1790'.
[  327.772669][T11662] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1793'.
[  328.261659][T11684] IPv6: pim6reg1: Disabled Multicast RS
[  328.452344][T11693] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1807'.
[  328.995941][T11703] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1810'.
[  329.620746][   T52] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  329.628468][   T52] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  332.266885][T11802] __nla_validate_parse: 6 callbacks suppressed
[  332.266906][T11802] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1845'.
[  332.334266][T11804] netlink: 'syz.3.1846': attribute type 10 has an invalid length.
[  332.343799][T11804] netlink: 55 bytes leftover after parsing attributes in process `syz.3.1846'.
[  332.911934][T11807] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1849'.
[  332.925277][T11810] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1849'.
[  333.130839][T11835] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1856'.
[  333.142992][T11835] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1856'.
[  333.153125][T11835] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1856'.
[  333.296693][    C0] bridge0: port 3(bond0) entered learning state
[  333.673079][ T5835] Bluetooth: hci5: unexpected subevent 0x01 length: 150 > 18
[  333.680886][ T5835] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  334.837175][T11878] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1873'.
[  334.877214][T11878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1873'.
[  334.887921][T11883] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1874'.
[  336.648876][ T5835] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  336.656806][ T5835] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  337.299330][T11966] __nla_validate_parse: 10 callbacks suppressed
[  337.299366][T11966] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1906'.
[  338.069645][T12002] netlink: 'syz.2.1915': attribute type 1 has an invalid length.
[  338.584897][T12021] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1920'.
[  338.952169][T12036] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1924'.
[  339.135494][T12043] netlink: 'syz.3.1928': attribute type 10 has an invalid length.
[  339.682683][T12061] netlink: 'syz.5.1933': attribute type 9 has an invalid length.
[  339.716031][T12061] netlink: 'syz.5.1933': attribute type 11 has an invalid length.
[  339.740678][T12061] netlink: 'syz.5.1933': attribute type 12 has an invalid length.
[  339.796832][T12061] netlink: 210020 bytes leftover after parsing attributes in process `syz.5.1933'.
[  339.909270][T12069] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1931'.
[  339.918585][T12069] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1931'.
[  340.091670][T12072] netlink: 'syz.2.1936': attribute type 1 has an invalid length.
[  341.751880][T12099] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1947'.
[  341.977510][T12110] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.1952'.
[  342.000178][T12110] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  342.153440][T12108] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1951'.
[  342.221400][T12115] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1953'.
[  342.612429][T12122] __nla_validate_parse: 1 callbacks suppressed
[  342.612463][T12122] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1957'.
[  342.798622][T12128] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1957'.
[  343.472187][T12135] FAULT_INJECTION: forcing a failure.
[  343.472187][T12135] name failslab, interval 1, probability 0, space 0, times 0
[  343.490912][T12135] CPU: 0 UID: 0 PID: 12135 Comm: syz.3.1960 Not tainted syzkaller #0 PREEMPT(full) 
[  343.490939][T12135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  343.490950][T12135] Call Trace:
[  343.490957][T12135]  <TASK>
[  343.490965][T12135]  dump_stack_lvl+0xe8/0x150
[  343.490994][T12135]  should_fail_ex+0x414/0x560
[  343.491028][T12135]  should_failslab+0xa8/0x100
[  343.491051][T12135]  kmem_cache_alloc_node_noprof+0x8c/0x720
[  343.491081][T12135]  ? __alloc_skb+0x198/0x3a0
[  343.491099][T12135]  ? __alloc_skb+0x1dc/0x3a0
[  343.491116][T12135]  ? __local_bh_enable_ip+0xd0/0x130
[  343.491135][T12135]  ? __alloc_skb+0x198/0x3a0
[  343.491154][T12135]  __alloc_skb+0x1dc/0x3a0
[  343.491177][T12135]  alloc_skb_with_frags+0xca/0x890
[  343.491198][T12135]  ? __might_fault+0xb0/0x130
[  343.491238][T12135]  sock_alloc_send_pskb+0x84d/0x980
[  343.491278][T12135]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  343.491306][T12135]  ? dev_get_by_index+0x22/0x2e0
[  343.491332][T12135]  ? dev_get_by_index+0x22/0x2e0
[  343.491364][T12135]  packet_sendmsg+0x33a0/0x5080
[  343.491400][T12135]  ? aa_update_label_name+0x10/0x3d0
[  343.491419][T12135]  ? __lock_acquire+0x6b6/0x2cf0
[  343.491447][T12135]  ? unwind_next_frame+0xa5/0x23d0
[  343.491486][T12135]  ? aa_sk_perm+0x15f/0x920
[  343.491509][T12135]  ? __pfx_packet_sendmsg+0x10/0x10
[  343.491532][T12135]  ? aa_sk_perm+0x7ee/0x920
[  343.491557][T12135]  ? __lock_acquire+0x6b6/0x2cf0
[  343.491576][T12135]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  343.491608][T12135]  ? aa_sock_msg_perm+0xf1/0x1b0
[  343.491633][T12135]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  343.491650][T12135]  ? __pfx_packet_sendmsg+0x10/0x10
[  343.491677][T12135]  __sock_sendmsg+0x21c/0x270
[  343.491707][T12135]  ____sys_sendmsg+0x505/0x820
[  343.491735][T12135]  ? __pfx_____sys_sendmsg+0x10/0x10
[  343.491766][T12135]  ? import_iovec+0x74/0xa0
[  343.491799][T12135]  ___sys_sendmsg+0x21f/0x2a0
[  343.491823][T12135]  ? __pfx____sys_sendmsg+0x10/0x10
[  343.491878][T12135]  ? __fget_files+0x2a/0x420
[  343.491900][T12135]  ? __fget_files+0x3a0/0x420
[  343.491933][T12135]  __x64_sys_sendmsg+0x19b/0x260
[  343.491957][T12135]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  343.491978][T12135]  ? perf_trace_preemptirq_template+0xa3/0x340
[  343.492013][T12135]  ? __pfx_ksys_write+0x10/0x10
[  343.492043][T12135]  do_syscall_64+0xec/0xf80
[  343.492062][T12135]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.492080][T12135]  ? trace_irq_disable+0x37/0x100
[  343.492110][T12135]  ? clear_bhb_loop+0x60/0xb0
[  343.492132][T12135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.492150][T12135] RIP: 0033:0x7f5d3fb8f749
[  343.492167][T12135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.492183][T12135] RSP: 002b:00007f5d40986038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.492204][T12135] RAX: ffffffffffffffda RBX: 00007f5d3fde5fa0 RCX: 00007f5d3fb8f749
[  343.492217][T12135] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  343.492229][T12135] RBP: 00007f5d40986090 R08: 0000000000000000 R09: 0000000000000000
[  343.492240][T12135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.492251][T12135] R13: 00007f5d3fde6038 R14: 00007f5d3fde5fa0 R15: 00007fff97765b38
[  343.492279][T12135]  </TASK>
[  343.852267][T12110] lo speed is unknown, defaulting to 1000
[  343.939406][T12137] sctp: [Deprecated]: syz.3.1961 (pid 12137) Use of int in maxseg socket option.
[  343.939406][T12137] Use struct sctp_assoc_value instead
[  344.223529][T12147] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1965'.
[  344.338106][T12150] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1967'.
[  344.348981][T12150] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1967'.
[  344.361669][T12150] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1967'.
[  344.396929][   T52] Bluetooth: hci5: unexpected subevent 0x01 length: 150 > 18
[  344.404488][   T52] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  345.003515][T12161] netlink: 'syz.2.1971': attribute type 10 has an invalid length.
[  345.054677][T12161] bond0: (slave bond_slave_0): Releasing backup interface
[  345.331534][T12179] netlink: 'syz.0.1977': attribute type 4 has an invalid length.
[  346.347447][T12198] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1983'.
[  346.973052][T12212] sctp: [Deprecated]: syz.2.1989 (pid 12212) Use of int in maxseg socket option.
[  346.973052][T12212] Use struct sctp_assoc_value instead
[  347.044659][T12210] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1988'.
[  347.965477][T12232] netlink: 'syz.2.1995': attribute type 2 has an invalid length.
[  347.975437][T12232] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1995'.
[  348.647076][    C0] bridge0: port 3(bond0) entered forwarding state
[  348.653730][    C0] bridge0: topology change detected, propagating
[  349.504111][T12260] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2000'.
[  349.698330][T12271] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2004'.
[  349.819703][T12281] FAULT_INJECTION: forcing a failure.
[  349.819703][T12281] name failslab, interval 1, probability 0, space 0, times 0
[  349.832823][T12281] CPU: 1 UID: 0 PID: 12281 Comm: syz.0.2007 Not tainted syzkaller #0 PREEMPT(full) 
[  349.832849][T12281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  349.832862][T12281] Call Trace:
[  349.832869][T12281]  <TASK>
[  349.832878][T12281]  dump_stack_lvl+0xe8/0x150
[  349.832908][T12281]  should_fail_ex+0x414/0x560
[  349.832943][T12281]  should_failslab+0xa8/0x100
[  349.832987][T12281]  __kmalloc_noprof+0xdf/0x800
[  349.833013][T12281]  ? tomoyo_encode+0x28b/0x550
[  349.833045][T12281]  tomoyo_encode+0x28b/0x550
[  349.833078][T12281]  tomoyo_realpath_from_path+0x58d/0x5d0
[  349.833119][T12281]  ? tomoyo_domain+0xd8/0x130
[  349.833150][T12281]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  349.833178][T12281]  tomoyo_path_number_perm+0x1e8/0x5a0
[  349.833203][T12281]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  349.833223][T12281]  ? __lock_acquire+0x6b6/0x2cf0
[  349.833274][T12281]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  349.833318][T12281]  ? __fget_files+0x2a/0x420
[  349.833346][T12281]  ? __fget_files+0x2a/0x420
[  349.833371][T12281]  ? __fget_files+0x3a0/0x420
[  349.833393][T12281]  ? __fget_files+0x2a/0x420
[  349.833423][T12281]  security_file_ioctl+0xcb/0x2d0
[  349.833446][T12281]  __se_sys_ioctl+0x47/0x170
[  349.833479][T12281]  do_syscall_64+0xec/0xf80
[  349.833500][T12281]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.833520][T12281]  ? trace_irq_disable+0x37/0x100
[  349.833546][T12281]  ? clear_bhb_loop+0x60/0xb0
[  349.833576][T12281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.833595][T12281] RIP: 0033:0x7fbf3a18f749
[  349.833613][T12281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  349.833630][T12281] RSP: 002b:00007fbf3b05b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  349.833652][T12281] RAX: ffffffffffffffda RBX: 00007fbf3a3e5fa0 RCX: 00007fbf3a18f749
[  349.833667][T12281] RDX: 0000200000000000 RSI: 000000000000890b RDI: 0000000000000004
[  349.833680][T12281] RBP: 00007fbf3b05b090 R08: 0000000000000000 R09: 0000000000000000
[  349.833692][T12281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.833708][T12281] R13: 00007fbf3a3e6038 R14: 00007fbf3a3e5fa0 R15: 00007ffdfc5a5528
[  349.833741][T12281]  </TASK>
[  349.833865][T12281] ERROR: Out of memory at tomoyo_realpath_from_path.
[  350.783262][T12294] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2012'.
[  350.799470][ T5835] Bluetooth: hci5: unexpected subevent 0x01 length: 150 > 18
[  350.813115][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:0'
[  350.823019][ T5835] CPU: 1 UID: 0 PID: 5835 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  350.823045][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  350.823059][ T5835] Workqueue: hci5 hci_rx_work
[  350.823092][ T5835] Call Trace:
[  350.823101][ T5835]  <TASK>
[  350.823109][ T5835]  dump_stack_lvl+0xe8/0x150
[  350.823137][ T5835]  sysfs_create_dir_ns+0x259/0x280
[  350.823163][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  350.823187][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[  350.823221][ T5835]  kobject_add_internal+0x6ab/0xcc0
[  350.823256][ T5835]  kobject_add+0x155/0x220
[  350.823285][ T5835]  ? __pfx_kobject_add+0x10/0x10
[  350.823310][ T5835]  ? _raw_spin_unlock+0x28/0x50
[  350.823344][ T5835]  ? get_device_parent+0x366/0x3a0
[  350.823369][ T5835]  device_add+0x408/0xb80
[  350.823394][ T5835]  hci_conn_add_sysfs+0xd5/0x210
[  350.823418][ T5835]  le_conn_complete_evt+0xf1d/0x1420
[  350.823458][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  350.823484][ T5835]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  350.823513][ T5835]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  350.823533][ T5835]  ? skb_pull_data+0xfb/0x200
[  350.823566][ T5835]  hci_le_conn_complete_evt+0x187/0x480
[  350.823601][ T5835]  hci_event_packet+0x78f/0x1260
[  350.823625][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  350.823654][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[  350.823681][ T5835]  ? kcov_remote_start+0x49b/0x7a0
[  350.823709][ T5835]  ? hci_send_to_monitor+0xe2/0x590
[  350.823740][ T5835]  hci_rx_work+0x3ee/0x1060
[  350.823769][ T5835]  ? process_scheduled_works+0x9ef/0x1770
[  350.823791][ T5835]  process_scheduled_works+0xad1/0x1770
[  350.823844][ T5835]  ? __pfx_process_scheduled_works+0x10/0x10
[  350.823862][ T5835]  ? do_raw_spin_lock+0x121/0x290
[  350.823907][ T5835]  worker_thread+0x8a0/0xda0
[  350.823957][ T5835]  kthread+0x711/0x8a0
[  350.823988][ T5835]  ? __pfx_worker_thread+0x10/0x10
[  350.824008][ T5835]  ? __pfx_kthread+0x10/0x10
[  350.824038][ T5835]  ? _raw_spin_unlock_irq+0x23/0x50
[  350.824067][ T5835]  ? __pfx_kthread+0x10/0x10
[  350.824102][ T5835]  ret_from_fork+0x510/0xa50
[  350.824126][ T5835]  ? __pfx_ret_from_fork+0x10/0x10
[  350.824143][ T5835]  ? __switch_to+0xc9e/0x1480
[  350.824177][ T5835]  ? __pfx_kthread+0x10/0x10
[  350.824205][ T5835]  ret_from_fork_asm+0x1a/0x30
[  350.824254][ T5835]  </TASK>
[  350.824288][ T5835] kobject: kobject_add_internal failed for hci5:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  351.068342][ T5835] Bluetooth: hci5: failed to register connection device
[  351.090676][T12298] ������ytes: renamed from veth0_to_bridge
[  351.215636][T12305] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2017'.
[  351.271280][T12303] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2016'.
[  352.028026][   T30] audit: type=1107 audit(1767750538.867:3): pid=12316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  352.174624][T12323] netlink: 'syz.3.2024': attribute type 10 has an invalid length.
[  352.304776][T12323] netlink: 360 bytes leftover after parsing attributes in process `syz.3.2024'.
[  352.652299][T12345] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2032'.
[  352.852522][T12356] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2037'.
[  352.866461][T12359] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2039'.
[  353.023523][T12367] netlink: 'syz.2.2038': attribute type 10 has an invalid length.
[  353.134268][ T5835] Bluetooth: hci5: command 0x2016 tx timeout
[  353.908703][T12367] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  353.966157][T12368] netdevsim netdevsim1 ������T���Y�^�: renamed from netdevsim0
[  354.065606][T12383] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.2045'.
[  354.088462][T12383] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  354.370529][T12392] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[  354.393806][T12392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2046'.
[  354.402744][T12392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2046'.
[  354.919660][T12408] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2050'.
[  355.206019][ T5835] Bluetooth: hci5: command 0x2016 tx timeout
[  355.436257][T12410] netlink: 352 bytes leftover after parsing attributes in process `syz.0.2052'.
[  355.558573][T12410] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2052'.
[  355.620232][T12383] lo speed is unknown, defaulting to 1000
[  355.701683][T12425] sctp: [Deprecated]: syz.0.2057 (pid 12425) Use of int in maxseg socket option.
[  355.701683][T12425] Use struct sctp_assoc_value instead
[  355.794732][T12424] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2056'.
[  355.808285][ T5835] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  355.816214][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  355.825676][ T5835] CPU: 1 UID: 0 PID: 5835 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  355.825710][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  355.825722][ T5835] Workqueue: hci2 hci_rx_work
[  355.825747][ T5835] Call Trace:
[  355.825755][ T5835]  <TASK>
[  355.825763][ T5835]  dump_stack_lvl+0xe8/0x150
[  355.825790][ T5835]  sysfs_create_dir_ns+0x259/0x280
[  355.825811][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  355.825831][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[  355.825860][ T5835]  kobject_add_internal+0x6ab/0xcc0
[  355.825891][ T5835]  kobject_add+0x155/0x220
[  355.825917][ T5835]  ? __pfx_kobject_add+0x10/0x10
[  355.825939][ T5835]  ? _raw_spin_unlock+0x28/0x50
[  355.825969][ T5835]  ? get_device_parent+0x366/0x3a0
[  355.825992][ T5835]  device_add+0x408/0xb80
[  355.826013][ T5835]  hci_conn_add_sysfs+0xd5/0x210
[  355.826036][ T5835]  le_conn_complete_evt+0xf1d/0x1420
[  355.826077][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  355.826102][ T5835]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  355.826132][ T5835]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  355.826153][ T5835]  ? skb_pull_data+0xfb/0x200
[  355.826188][ T5835]  hci_le_conn_complete_evt+0x187/0x480
[  355.826223][ T5835]  hci_event_packet+0x78f/0x1260
[  355.826249][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  355.826278][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[  355.826306][ T5835]  ? kcov_remote_start+0x49b/0x7a0
[  355.826338][ T5835]  ? hci_send_to_monitor+0xe2/0x590
[  355.826371][ T5835]  hci_rx_work+0x3ee/0x1060
[  355.826409][ T5835]  ? process_scheduled_works+0x9ef/0x1770
[  355.826434][ T5835]  process_scheduled_works+0xad1/0x1770
[  355.826489][ T5835]  ? __pfx_process_scheduled_works+0x10/0x10
[  355.826508][ T5835]  ? do_raw_spin_lock+0x121/0x290
[  355.826556][ T5835]  worker_thread+0x8a0/0xda0
[  355.826619][ T5835]  kthread+0x711/0x8a0
[  355.826668][ T5835]  ? __pfx_worker_thread+0x10/0x10
[  355.826691][ T5835]  ? __pfx_kthread+0x10/0x10
[  355.826723][ T5835]  ? _raw_spin_unlock_irq+0x23/0x50
[  355.826758][ T5835]  ? __pfx_kthread+0x10/0x10
[  355.826788][ T5835]  ret_from_fork+0x510/0xa50
[  355.826813][ T5835]  ? __pfx_ret_from_fork+0x10/0x10
[  355.826832][ T5835]  ? __switch_to+0xc9e/0x1480
[  355.826868][ T5835]  ? __pfx_kthread+0x10/0x10
[  355.826897][ T5835]  ret_from_fork_asm+0x1a/0x30
[  355.826950][ T5835]  </TASK>
[  356.067300][ T5835] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  356.082455][ T5835] Bluetooth: hci2: failed to register connection device
[  356.160183][T12433] netlink: 7064 bytes leftover after parsing attributes in process `syz.0.2060'.
[  356.169992][T12433] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  357.061458][T12433] lo speed is unknown, defaulting to 1000
[  358.165890][ T5835] Bluetooth: hci2: command 0x2016 tx timeout
[  358.996552][T12452] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2065'.
[  360.251778][ T5835] Bluetooth: hci2: command 0x2016 tx timeout
[  360.489689][T12487] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2080'.
[  360.876426][T12481] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2074'.
[  360.895131][T12481] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2074'.
[  361.172588][T12503] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2084'.
[  361.959447][T12525] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2092'.
[  362.678132][T12532] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2095'.
[  363.087310][T12541] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2097'.
[  363.394115][T12550] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2100'.
[  363.521393][ T5835] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  363.529611][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  363.539036][ T5835] CPU: 1 UID: 0 PID: 5835 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  363.539067][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  363.539084][ T5835] Workqueue: hci3 hci_rx_work
[  363.539113][ T5835] Call Trace:
[  363.539122][ T5835]  <TASK>
[  363.539131][ T5835]  dump_stack_lvl+0xe8/0x150
[  363.539160][ T5835]  sysfs_create_dir_ns+0x259/0x280
[  363.539184][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  363.539207][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[  363.539240][ T5835]  kobject_add_internal+0x6ab/0xcc0
[  363.539275][ T5835]  kobject_add+0x155/0x220
[  363.539305][ T5835]  ? __pfx_kobject_add+0x10/0x10
[  363.539330][ T5835]  ? _raw_spin_unlock+0x28/0x50
[  363.539364][ T5835]  ? get_device_parent+0x366/0x3a0
[  363.539389][ T5835]  device_add+0x408/0xb80
[  363.539414][ T5835]  hci_conn_add_sysfs+0xd5/0x210
[  363.539439][ T5835]  le_conn_complete_evt+0xf1d/0x1420
[  363.539478][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  363.539504][ T5835]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  363.539534][ T5835]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  363.539554][ T5835]  ? skb_pull_data+0xfb/0x200
[  363.539587][ T5835]  hci_le_conn_complete_evt+0x187/0x480
[  363.539622][ T5835]  hci_event_packet+0x78f/0x1260
[  363.539647][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  363.539676][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[  363.539703][ T5835]  ? kcov_remote_start+0x49b/0x7a0
[  363.539733][ T5835]  ? hci_send_to_monitor+0xe2/0x590
[  363.539765][ T5835]  hci_rx_work+0x3ee/0x1060
[  363.539794][ T5835]  ? process_scheduled_works+0x9ef/0x1770
[  363.539817][ T5835]  process_scheduled_works+0xad1/0x1770
[  363.539871][ T5835]  ? __pfx_process_scheduled_works+0x10/0x10
[  363.539889][ T5835]  ? do_raw_spin_lock+0x121/0x290
[  363.539943][ T5835]  worker_thread+0x8a0/0xda0
[  363.539996][ T5835]  kthread+0x711/0x8a0
[  363.540025][ T5835]  ? __pfx_worker_thread+0x10/0x10
[  363.540045][ T5835]  ? __pfx_kthread+0x10/0x10
[  363.540075][ T5835]  ? _raw_spin_unlock_irq+0x23/0x50
[  363.540104][ T5835]  ? __pfx_kthread+0x10/0x10
[  363.540131][ T5835]  ret_from_fork+0x510/0xa50
[  363.540153][ T5835]  ? __pfx_ret_from_fork+0x10/0x10
[  363.540170][ T5835]  ? __switch_to+0xc9e/0x1480
[  363.540202][ T5835]  ? __pfx_kthread+0x10/0x10
[  363.540229][ T5835]  ret_from_fork_asm+0x1a/0x30
[  363.540275][ T5835]  </TASK>
[  363.540388][ T5835] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  363.783168][ T5835] Bluetooth: hci3: failed to register connection device
[  364.183208][T12574] pimreg: tun_chr_ioctl cmd 1074025677
[  364.192830][T12574] pimreg: linktype set to 778
[  364.339822][T12585] netlink: 'syz.3.2113': attribute type 1 has an invalid length.
[  365.846021][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  366.300940][T12643] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2128'.
[  366.332808][T12645] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2127'.
[  366.360444][T12643] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2128'.
[  366.916021][T12668] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2135'.
[  366.968984][T12668] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2135'.
[  367.365371][T12684] sctp: [Deprecated]: syz.5.2141 (pid 12684) Use of int in maxseg socket option.
[  367.365371][T12684] Use struct sctp_assoc_value instead
[  367.539600][T12689] netlink: 7064 bytes leftover after parsing attributes in process `syz.1.2143'.
[  367.575939][T12689] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  367.738118][T12695] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2145'.
[  367.884354][T12700] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2147'.
[  367.956248][ T5835] Bluetooth: hci3: command 0x0406 tx timeout
[  368.431125][T12711] netlink: 'syz.5.2151': attribute type 10 has an invalid length.
[  368.439189][T12711] netlink: 55 bytes leftover after parsing attributes in process `syz.5.2151'.
[  368.885350][T12717] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2154'.
[  369.223519][T12689] lo speed is unknown, defaulting to 1000
[  369.307662][ T5835] Bluetooth: hci5: unexpected subevent 0x01 length: 150 > 18
[  369.315244][ T5835] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  369.658768][T12747] netlink: 'syz.3.2166': attribute type 10 has an invalid length.
[  371.189043][T12785] netlink: 'syz.1.2179': attribute type 10 has an invalid length.
[  371.438974][T12795] netlink: 'syz.5.2182': attribute type 1 has an invalid length.
[  372.210359][T12816] __nla_validate_parse: 10 callbacks suppressed
[  372.210428][T12816] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2193'.
[  372.257395][T12818] netlink: 'syz.0.2192': attribute type 2 has an invalid length.
[  372.267057][T12818] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2192'.
[  372.323261][T12811] netlink: 212 bytes leftover after parsing attributes in process `syz.1.2190'.
[  372.451272][ T5835] Bluetooth: hci5: unexpected subevent 0x01 length: 150 > 18
[  372.459619][ T5835] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  372.535215][T12825] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2196'.
[  372.675396][T12832] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2198'.
[  372.756009][T12836] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2200'.
[  372.993948][T12844] sctp: [Deprecated]: syz.0.2203 (pid 12844) Use of int in maxseg socket option.
[  372.993948][T12844] Use struct sctp_assoc_value instead
[  373.142065][T12848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2206'.
[  373.637583][T12872] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2214'.
[  374.307280][T12892] netlink: 344 bytes leftover after parsing attributes in process `syz.5.2223'.
[  374.750320][T12908] netlink: 'syz.3.2230': attribute type 10 has an invalid length.
[  374.815304][T12908] netlink: 55 bytes leftover after parsing attributes in process `syz.3.2230'.
[  375.916178][T12927] netlink: 'syz.5.2238': attribute type 13 has an invalid length.
[  376.017803][T12927] gretap0: refused to change device tx_queue_len
[  376.042522][T12927] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  376.107506][ T6041] lo speed is unknown, defaulting to 1000
[  376.127599][ T6041] syz1: Port: 1 Link DOWN
[  376.370832][ T5835] Bluetooth: hci3: unexpected subevent 0x01 length: 150 > 18
[  376.386523][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  376.396034][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  376.396064][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  376.396079][ T5835] Workqueue: hci3 hci_rx_work
[  376.396106][ T5835] Call Trace:
[  376.396119][ T5835]  <TASK>
[  376.396130][ T5835]  dump_stack_lvl+0xe8/0x150
[  376.396176][ T5835]  sysfs_create_dir_ns+0x259/0x280
[  376.396222][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  376.396265][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[  376.396336][ T5835]  kobject_add_internal+0x6ab/0xcc0
[  376.396427][ T5835]  kobject_add+0x155/0x220
[  376.396489][ T5835]  ? __pfx_kobject_add+0x10/0x10
[  376.396541][ T5835]  ? _raw_spin_unlock+0x28/0x50
[  376.396599][ T5835]  ? get_device_parent+0x366/0x3a0
[  376.396683][ T5835]  device_add+0x408/0xb80
[  376.396742][ T5835]  hci_conn_add_sysfs+0xd5/0x210
[  376.396794][ T5835]  le_conn_complete_evt+0xf1d/0x1420
[  376.396886][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  376.396915][ T5835]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  376.396980][ T5835]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  376.397003][ T5835]  ? skb_pull_data+0xfb/0x200
[  376.397083][ T5835]  hci_le_conn_complete_evt+0x187/0x480
[  376.397164][ T5835]  hci_event_packet+0x78f/0x1260
[  376.397219][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  376.397274][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[  376.397336][ T5835]  ? kcov_remote_start+0x49b/0x7a0
[  376.397390][ T5835]  ? hci_send_to_monitor+0xe2/0x590
[  376.397468][ T5835]  hci_rx_work+0x3ee/0x1060
[  376.397544][ T5835]  ? process_scheduled_works+0x9ef/0x1770
[  376.397588][ T5835]  process_scheduled_works+0xad1/0x1770
[  376.397795][ T5835]  ? __pfx_process_scheduled_works+0x10/0x10
[  376.397815][ T5835]  ? do_raw_spin_lock+0x121/0x290
[  376.397946][ T5835]  worker_thread+0x8a0/0xda0
[  376.398096][ T5835]  kthread+0x711/0x8a0
[  376.398165][ T5835]  ? __pfx_worker_thread+0x10/0x10
[  376.398193][ T5835]  ? __pfx_kthread+0x10/0x10
[  376.398255][ T5835]  ? _raw_spin_unlock_irq+0x23/0x50
[  376.398289][ T5835]  ? __pfx_kthread+0x10/0x10
[  376.398343][ T5835]  ret_from_fork+0x510/0xa50
[  376.398402][ T5835]  ? __pfx_ret_from_fork+0x10/0x10
[  376.398423][ T5835]  ? __switch_to+0xc9e/0x1480
[  376.398484][ T5835]  ? __pfx_kthread+0x10/0x10
[  376.398527][ T5835]  ret_from_fork_asm+0x1a/0x30
[  376.398662][ T5835]  </TASK>
[  376.398725][ T5835] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  376.645433][ T5835] Bluetooth: hci3: failed to register connection device
[  376.934645][T12959] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  377.633668][ T5835] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  377.641555][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  377.650985][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  377.651012][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  377.651025][ T5835] Workqueue: hci2 hci_rx_work
[  377.651050][ T5835] Call Trace:
[  377.651058][ T5835]  <TASK>
[  377.651066][ T5835]  dump_stack_lvl+0xe8/0x150
[  377.651095][ T5835]  sysfs_create_dir_ns+0x259/0x280
[  377.651122][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  377.651146][ T5835]  ? do_raw_spin_unlock+0x122/0x240
[  377.651182][ T5835]  kobject_add_internal+0x6ab/0xcc0
[  377.651220][ T5835]  kobject_add+0x155/0x220
[  377.651252][ T5835]  ? __pfx_kobject_add+0x10/0x10
[  377.651277][ T5835]  ? _raw_spin_unlock+0x28/0x50
[  377.651312][ T5835]  ? get_device_parent+0x366/0x3a0
[  377.651339][ T5835]  device_add+0x408/0xb80
[  377.651367][ T5835]  hci_conn_add_sysfs+0xd5/0x210
[  377.651393][ T5835]  le_conn_complete_evt+0xf1d/0x1420
[  377.651436][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  377.651460][ T5835]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  377.651492][ T5835]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  377.651511][ T5835]  ? skb_pull_data+0xfb/0x200
[  377.651555][ T5835]  hci_le_conn_complete_evt+0x187/0x480
[  377.651594][ T5835]  hci_event_packet+0x78f/0x1260
[  377.651622][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  377.651652][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[  377.651681][ T5835]  ? kcov_remote_start+0x49b/0x7a0
[  377.651712][ T5835]  ? hci_send_to_monitor+0xe2/0x590
[  377.651746][ T5835]  hci_rx_work+0x3ee/0x1060
[  377.651780][ T5835]  ? process_scheduled_works+0x9ef/0x1770
[  377.651804][ T5835]  process_scheduled_works+0xad1/0x1770
[  377.651871][ T5835]  ? __pfx_process_scheduled_works+0x10/0x10
[  377.651888][ T5835]  ? do_raw_spin_lock+0x121/0x290
[  377.651942][ T5835]  worker_thread+0x8a0/0xda0
[  377.652006][ T5835]  kthread+0x711/0x8a0
[  377.652037][ T5835]  ? __pfx_worker_thread+0x10/0x10
[  377.652057][ T5835]  ? __pfx_kthread+0x10/0x10
[  377.652088][ T5835]  ? _raw_spin_unlock_irq+0x23/0x50
[  377.652116][ T5835]  ? __pfx_kthread+0x10/0x10
[  377.652143][ T5835]  ret_from_fork+0x510/0xa50
[  377.652167][ T5835]  ? __pfx_ret_from_fork+0x10/0x10
[  377.652183][ T5835]  ? __switch_to+0xc9e/0x1480
[  377.652217][ T5835]  ? __pfx_kthread+0x10/0x10
[  377.652244][ T5835]  ret_from_fork_asm+0x1a/0x30
[  377.652298][ T5835]  </TASK>
[  377.652330][ T5835] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  377.899232][ T5835] Bluetooth: hci2: failed to register connection device
[  378.161770][T12959] lo speed is unknown, defaulting to 1000
[  378.726666][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  378.912505][T13004] __nla_validate_parse: 3 callbacks suppressed
[  378.912525][T13004] netlink: 200 bytes leftover after parsing attributes in process `syz.2.2262'.
[  378.948463][T13003] netlink: 4068 bytes leftover after parsing attributes in process `syz.3.2264'.
[  379.270524][T13008] sctp: [Deprecated]: syz.5.2265 (pid 13008) Use of int in maxseg socket option.
[  379.270524][T13008] Use struct sctp_assoc_value instead
[  379.934964][ T5845] Bluetooth: hci2: command 0x2016 tx timeout
[  380.550841][T13017] sctp: [Deprecated]: syz.5.2269 (pid 13017) Use of int in maxseg socket option.
[  380.550841][T13017] Use struct sctp_assoc_value instead
[  380.806261][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  380.960694][T13045] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2278'.
[  381.745569][T13066] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2286'.
[  381.983439][T13080] netlink: 'syz.3.2290': attribute type 2 has an invalid length.
[  382.006020][ T5845] Bluetooth: hci2: command 0x2016 tx timeout
[  382.068319][T13080] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2290'.
[  382.199106][T13084] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2295'.
[  382.263192][T13084] netlink: 124 bytes leftover after parsing attributes in process `syz.0.2295'.
[  382.605341][T13098] netlink: 212 bytes leftover after parsing attributes in process `syz.2.2298'.
[  382.675379][T13099] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2299'.
[  382.710216][T13099] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2299'.
[  383.851127][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  383.857760][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  384.061147][T13129] __nla_validate_parse: 1 callbacks suppressed
[  384.061192][T13129] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2311'.
[  384.119416][T13129] netlink: 124 bytes leftover after parsing attributes in process `syz.0.2311'.
[  384.361386][T13138] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2314'.
[  384.373157][T13137] netlink: 7064 bytes leftover after parsing attributes in process `syz.1.2316'.
[  384.392666][T13137] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  384.407977][T13138] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  384.708896][T13146] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2317'.
[  385.190616][T13154] netlink: 'syz.0.2320': attribute type 6 has an invalid length.
[  385.221896][T13154] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2320'.
[  385.293883][T13154] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2320'.
[  385.657017][T13137] lo speed is unknown, defaulting to 1000
[  385.944035][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  385.960707][T13175] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2325'.
[  386.586385][T13180] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2327'.
[  386.658315][T13180] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2327'.
[  387.001686][T13186] FAULT_INJECTION: forcing a failure.
[  387.001686][T13186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  387.046693][T13186] CPU: 0 UID: 0 PID: 13186 Comm: syz.3.2332 Not tainted syzkaller #0 PREEMPT(full) 
[  387.046724][T13186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  387.046738][T13186] Call Trace:
[  387.046746][T13186]  <TASK>
[  387.046756][T13186]  dump_stack_lvl+0xe8/0x150
[  387.046788][T13186]  should_fail_ex+0x414/0x560
[  387.046828][T13186]  _copy_from_user+0x2d/0xb0
[  387.046855][T13186]  ___sys_sendmsg+0x158/0x2a0
[  387.046885][T13186]  ? __pfx____sys_sendmsg+0x10/0x10
[  387.046948][T13186]  ? __fget_files+0x2a/0x420
[  387.046974][T13186]  ? __fget_files+0x3a0/0x420
[  387.047012][T13186]  __x64_sys_sendmsg+0x19b/0x260
[  387.047041][T13186]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  387.047064][T13186]  ? perf_trace_preemptirq_template+0xa3/0x340
[  387.047111][T13186]  ? __pfx_ksys_write+0x10/0x10
[  387.047144][T13186]  do_syscall_64+0xec/0xf80
[  387.047167][T13186]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.047187][T13186]  ? trace_irq_disable+0x37/0x100
[  387.047215][T13186]  ? clear_bhb_loop+0x60/0xb0
[  387.047240][T13186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.047275][T13186] RIP: 0033:0x7f5d3fb8f749
[  387.047295][T13186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.047313][T13186] RSP: 002b:00007f5d40986038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  387.047336][T13186] RAX: ffffffffffffffda RBX: 00007f5d3fde5fa0 RCX: 00007f5d3fb8f749
[  387.047352][T13186] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  387.047366][T13186] RBP: 00007f5d40986090 R08: 0000000000000000 R09: 0000000000000000
[  387.047379][T13186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.047392][T13186] R13: 00007f5d3fde6038 R14: 00007f5d3fde5fa0 R15: 00007fff97765b38
[  387.047427][T13186]  </TASK>
[  387.766503][   T30] audit: type=1107 audit(1767750574.557:4): pid=13197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  388.784077][T13215] delete_channel: no stack
[  388.816592][T13215] delete_channel: no stack
[  388.821302][T13215] delete_channel: no stack
[  388.826658][T13215] delete_channel: no stack
[  388.831285][T13215] delete_channel: no stack
[  388.840940][T13215] delete_channel: no stack
[  388.851053][T13215] delete_channel: no stack
[  388.861048][T13215] delete_channel: no stack
[  388.871219][T13215] delete_channel: no stack
[  388.881525][T13215] delete_channel: no stack
[  388.889184][T13215] delete_channel: no stack
[  388.901262][T13215] delete_channel: no stack
[  388.915947][T13215] delete_channel: no stack
[  388.944443][T13215] delete_channel: no stack
[  388.954529][T13215] delete_channel: no stack
[  388.984672][T13215] delete_channel: no stack
[  388.993528][T13215] delete_channel: no stack
[  389.005491][T13215] delete_channel: no stack
[  389.020946][T13215] delete_channel: no stack
[  389.029335][T13215] delete_channel: no stack
[  389.034088][T13215] delete_channel: no stack
[  389.044265][T13215] delete_channel: no stack
[  389.055642][T13215] delete_channel: no stack
[  389.060975][T13215] delete_channel: no stack
[  389.071088][T13215] delete_channel: no stack
[  389.076035][T13215] delete_channel: no stack
[  389.085930][T13215] delete_channel: no stack
[  389.101741][T13215] delete_channel: no stack
[  389.314739][T13222] delete_channel: no stack
[  389.324895][T13222] delete_channel: no stack
[  389.334939][T13222] delete_channel: no stack
[  389.361742][T13222] delete_channel: no stack
[  389.380654][T13222] delete_channel: no stack
[  389.391032][T13222] delete_channel: no stack
[  389.409129][T13222] delete_channel: no stack
[  389.415964][T13222] delete_channel: no stack
[  389.424202][T13222] delete_channel: no stack
[  389.428934][T13222] delete_channel: no stack
[  389.433547][T13222] delete_channel: no stack
[  389.460933][T13239] __nla_validate_parse: 1 callbacks suppressed
[  389.460984][T13239] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.2351'.
[  389.462358][T13222] delete_channel: no stack
[  389.482304][T13239] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  389.519996][T13222] delete_channel: no stack
[  389.524686][T13222] delete_channel: no stack
[  389.549990][T13222] delete_channel: no stack
[  389.554648][T13222] delete_channel: no stack
[  389.570289][T13222] delete_channel: no stack
[  389.574938][T13222] delete_channel: no stack
[  389.595981][T13222] delete_channel: no stack
[  389.692308][T13222] delete_channel: no stack
[  389.698107][T13222] delete_channel: no stack
[  389.710728][T13222] delete_channel: no stack
[  389.726158][T13222] delete_channel: no stack
[  389.741063][T13222] delete_channel: no stack
[  389.753685][T13222] delete_channel: no stack
[  389.763097][T13222] delete_channel: no stack
[  389.792944][T13222] delete_channel: no stack
[  389.810976][T13222] delete_channel: no stack
[  389.827713][T13222] delete_channel: no stack
[  389.842685][T13222] delete_channel: no stack
[  389.860530][T13222] delete_channel: no stack
[  389.878078][T13222] delete_channel: no stack
[  389.895494][T13222] delete_channel: no stack
[  389.912328][T13222] delete_channel: no stack
[  389.943328][T13222] delete_channel: no stack
[  389.967560][T13249] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2355'.
[  389.987637][T13222] delete_channel: no stack
[  390.001076][T13222] delete_channel: no stack
[  390.089193][T13249] netlink: 124 bytes leftover after parsing attributes in process `syz.1.2355'.
[  390.235284][T13256] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2358'.
[  390.605801][T13239] lo speed is unknown, defaulting to 1000
[  390.824121][T13270] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2362'.
[  391.991491][T13303] netlink: 212 bytes leftover after parsing attributes in process `syz.0.2371'.
[  392.454162][T13309] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2375'.
[  392.509950][T13309] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2375'.
[  392.851986][T13327] syzkaller0: entered promiscuous mode
[  392.899394][T13327] syzkaller0: entered allmulticast mode
[  393.221539][T13340] netlink: 'syz.1.2384': attribute type 6 has an invalid length.
[  393.255184][T13340] netlink: 360 bytes leftover after parsing attributes in process `syz.1.2384'.
[  393.839626][T13357] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2392'.
[  394.171300][T13376] nr0: tun_chr_ioctl cmd 1074025673
[  394.599074][T13391] __nla_validate_parse: 2 callbacks suppressed
[  394.599098][T13391] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2404'.
[  394.748587][T13391] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2404'.
[  394.961179][T13399] mac80211_hwsim hwsim26 wlan1: entered promiscuous mode
[  394.970068][T13400] netlink: 4416 bytes leftover after parsing attributes in process `syz.2.2406'.
[  394.994178][T13399] mac80211_hwsim hwsim26 wlan1: entered allmulticast mode
[  395.277873][ T5845] Bluetooth: hci0: unexpected subevent 0x01 length: 150 > 18
[  395.287096][ T5845] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[  395.298128][ T5845] CPU: 1 UID: 0 PID: 5845 Comm: kworker/u9:5 Not tainted syzkaller #0 PREEMPT(full) 
[  395.298171][ T5845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  395.298187][ T5845] Workqueue: hci0 hci_rx_work
[  395.298215][ T5845] Call Trace:
[  395.298227][ T5845]  <TASK>
[  395.298239][ T5845]  dump_stack_lvl+0xe8/0x150
[  395.298284][ T5845]  sysfs_create_dir_ns+0x259/0x280
[  395.298330][ T5845]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  395.298373][ T5845]  ? do_raw_spin_unlock+0x122/0x240
[  395.298433][ T5845]  kobject_add_internal+0x6ab/0xcc0
[  395.298507][ T5845]  kobject_add+0x155/0x220
[  395.298571][ T5845]  ? __pfx_kobject_add+0x10/0x10
[  395.298612][ T5845]  ? _raw_spin_unlock+0x28/0x50
[  395.298670][ T5845]  ? get_device_parent+0x366/0x3a0
[  395.298719][ T5845]  device_add+0x408/0xb80
[  395.298774][ T5845]  hci_conn_add_sysfs+0xd5/0x210
[  395.298829][ T5845]  le_conn_complete_evt+0xf1d/0x1420
[  395.298925][ T5845]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  395.298969][ T5845]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  395.299031][ T5845]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  395.299054][ T5845]  ? skb_pull_data+0xfb/0x200
[  395.299119][ T5845]  hci_le_conn_complete_evt+0x187/0x480
[  395.299194][ T5845]  hci_event_packet+0x78f/0x1260
[  395.299244][ T5845]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  395.299296][ T5845]  ? __pfx_hci_event_packet+0x10/0x10
[  395.299356][ T5845]  ? kcov_remote_start+0x49b/0x7a0
[  395.299406][ T5845]  ? hci_send_to_monitor+0xe2/0x590
[  395.299463][ T5845]  hci_rx_work+0x3ee/0x1060
[  395.299531][ T5845]  ? process_scheduled_works+0x9ef/0x1770
[  395.299572][ T5845]  process_scheduled_works+0xad1/0x1770
[  395.299741][ T5845]  ? __pfx_process_scheduled_works+0x10/0x10
[  395.299761][ T5845]  ? do_raw_spin_lock+0x121/0x290
[  395.299884][ T5845]  worker_thread+0x8a0/0xda0
[  395.299980][ T5845]  ? __kthread_parkme+0x7b/0x200
[  395.300060][ T5845]  kthread+0x711/0x8a0
[  395.300114][ T5845]  ? __pfx_worker_thread+0x10/0x10
[  395.300142][ T5845]  ? __pfx_kthread+0x10/0x10
[  395.300198][ T5845]  ? _raw_spin_unlock_irq+0x23/0x50
[  395.300232][ T5845]  ? __pfx_kthread+0x10/0x10
[  395.300276][ T5845]  ret_from_fork+0x510/0xa50
[  395.300319][ T5845]  ? __pfx_ret_from_fork+0x10/0x10
[  395.300341][ T5845]  ? __switch_to+0xc9e/0x1480
[  395.300402][ T5845]  ? __pfx_kthread+0x10/0x10
[  395.300445][ T5845]  ret_from_fork_asm+0x1a/0x30
[  395.300563][ T5845]  </TASK>
[  395.300629][ T5845] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  395.551290][ T5845] Bluetooth: hci0: failed to register connection device
[  395.636594][T13408] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2409'.
[  395.645675][T13408] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2409'.
[  395.944140][T13410] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2412'.
[  396.079130][T13415] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2413'.
[  396.101339][T13419] netlink: 4068 bytes leftover after parsing attributes in process `syz.2.2416'.
[  396.129977][T13417] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2415'.
[  396.139479][T13417] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2415'.
[  397.606201][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  398.890580][T13495] netlink: 'syz.3.2441': attribute type 1 has an invalid length.
[  398.930602][T13495] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  399.688087][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  399.916005][T13516] __nla_validate_parse: 7 callbacks suppressed
[  399.916027][T13516] netlink: 4068 bytes leftover after parsing attributes in process `syz.0.2449'.
[  400.027067][T13507] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2448'.
[  400.046381][T13507] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2448'.
[  400.162636][T13526] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2451'.
[  400.522605][T13543] netlink: 1236 bytes leftover after parsing attributes in process `syz.0.2456'.
[  400.709771][T13549] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2461'.
[  400.892682][T13559] dvmrp1: tun_chr_ioctl cmd 2148553947
[  400.900126][T13559] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2461'.
[  401.184507][T13558] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2465'.
[  401.276717][T13567] netlink: 4068 bytes leftover after parsing attributes in process `syz.5.2466'.
[  401.282586][T13558] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2465'.
[  401.305496][   T52] Bluetooth: hci5: command 0x2016 tx timeout
[  402.881188][T13580] netlink: 'syz.2.2471': attribute type 10 has an invalid length.
[  402.957721][T13580] veth0_macvtap: left promiscuous mode
[  403.059606][T13580] batman_adv: batadv0: Adding interface: macvtap0
[  403.081119][T13580] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  403.158773][T13580] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active
[  404.716090][T13635] openvswitch: netlink: Missing valid actions attribute.
[  404.723642][T13635] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  406.627454][T13682] __nla_validate_parse: 6 callbacks suppressed
[  406.627478][T13682] netlink: 1236 bytes leftover after parsing attributes in process `syz.3.2501'.
[  407.033123][T13697] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2508'.
[  407.107949][T13697] netlink: 124 bytes leftover after parsing attributes in process `syz.0.2508'.
[  407.449701][T13701] bridge0: port 3(dummy0) entered disabled state
[  408.462169][T13701] bridge_slave_0: left allmulticast mode
[  408.468135][T13701] bridge_slave_0: left promiscuous mode
[  408.474106][T13701] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.689361][T13725] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2518'.
[  408.922406][ T9981] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.004927][T13731] netlink: 1236 bytes leftover after parsing attributes in process `syz.2.2521'.
[  409.050657][ T9981] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.163799][ T9981] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.294854][ T9981] netdevsim netdevsim1 ������T���Y�^� (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.368324][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  409.378144][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  409.397465][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  409.406334][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  409.416591][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  410.013547][T13744] lo speed is unknown, defaulting to 1000
[  410.151714][T13764] delete_channel: no stack
[  410.164238][T13764] delete_channel: no stack
[  410.501136][T13744] chnl_net:caif_netlink_parms(): no params data found
[  410.580918][ T9981] bridge_slave_1: left allmulticast mode
[  410.596970][ T9981] bridge_slave_1: left promiscuous mode
[  410.602995][ T9981] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.688914][ T9981] bridge_slave_0: left allmulticast mode
[  410.707571][ T9981] bridge_slave_0: left promiscuous mode
[  410.723075][ T9981] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.297938][ T9981] bond0 (unregistering): (slave geneve0): Releasing backup interface
[  411.319264][ T9981] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  411.448186][ T5845] Bluetooth: hci1: command tx timeout
[  411.493591][ T9981] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  411.517803][ T9981] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  411.528871][ T9981] bond0 (unregistering): Released all slaves
[  411.598135][T13794] netlink: 1236 bytes leftover after parsing attributes in process `syz.0.2534'.
[  411.616037][T13795] netlink: 4068 bytes leftover after parsing attributes in process `syz.2.2537'.
[  411.949960][T13819] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2544'.
[  412.029105][T13744] bridge0: port 1(bridge_slave_0) entered blocking state
[  412.082279][T13744] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.106346][T13744] bridge_slave_0: entered allmulticast mode
[  412.114320][T13744] bridge_slave_0: entered promiscuous mode
[  412.173836][T13744] bridge0: port 2(bridge_slave_1) entered blocking state
[  412.193952][T13744] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.214104][T13744] bridge_slave_1: entered allmulticast mode
[  412.238106][T13744] bridge_slave_1: entered promiscuous mode
[  412.373508][T13744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  412.399958][T13744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  412.649421][T13744] team0: Port device team_slave_0 added
[  412.959050][T13744] team0: Port device team_slave_1 added
[  413.011522][T13860] netlink: 1236 bytes leftover after parsing attributes in process `syz.5.2553'.
[  413.235985][T13744] batman_adv: batadv0: Adding interface: batadv_slave_0
[  413.257254][T13744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  413.319414][T13744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  413.359733][T13744] batman_adv: batadv0: Adding interface: batadv_slave_1
[  413.392867][T13744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  413.443660][T13744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  413.528514][ T5845] Bluetooth: hci1: command tx timeout
[  413.742507][ T9981] hsr_slave_0: left promiscuous mode
[  413.776717][ T9981] batman_adv: batadv0: Removing interface: batadv_slave_0
[  413.910365][ T9981] batman_adv: batadv0: Removing interface: batadv_slave_1
[  413.934927][ T9981] veth1_macvtap: left allmulticast mode
[  414.278691][T13906] openvswitch: netlink: Message has 1 unknown bytes.
[  414.285626][T13906] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  414.318501][T13908] netlink: 'syz.0.2573': attribute type 3 has an invalid length.
[  414.343234][T13903] netlink: set zone limit has 4 unknown bytes
[  415.340868][ T9981] team0 (unregistering): Port device team_slave_1 removed
[  415.382537][ T9981] team0 (unregistering): Port device team_slave_0 removed
[  415.616256][ T5845] Bluetooth: hci1: command tx timeout
[  415.787099][T13927] netlink: 1236 bytes leftover after parsing attributes in process `syz.5.2576'.
[  415.808546][T13744] hsr_slave_0: entered promiscuous mode
[  415.828878][T13744] hsr_slave_1: entered promiscuous mode
[  416.388487][T13959] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2586'.
[  416.637216][T13959] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2586'.
[  416.782586][T13974] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2590'.
[  417.686226][ T5845] Bluetooth: hci1: command tx timeout
[  417.827697][T13744] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  417.869155][T13744] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  417.890001][T14011] netlink: 'syz.0.2600': attribute type 21 has an invalid length.
[  417.933531][T13744] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  417.953647][T14011] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2600'.
[  418.003150][T13744] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  418.060396][T14011] netlink: 'syz.0.2600': attribute type 4 has an invalid length.
[  418.077367][T14011] netlink: 'syz.0.2600': attribute type 3 has an invalid length.
[  418.102191][T14011] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2600'.
[  418.273700][T13744] 8021q: adding VLAN 0 to HW filter on device bond0
[  418.352862][T13744] 8021q: adding VLAN 0 to HW filter on device team0
[  418.411329][ T9985] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.418535][ T9985] bridge0: port 1(bridge_slave_0) entered forwarding state
[  418.468053][ T9985] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.475274][ T9985] bridge0: port 2(bridge_slave_1) entered forwarding state
[  419.281262][T14038] delete_channel: no stack
[  420.323860][T13744] 8021q: adding VLAN 0 to HW filter on device batadv0
[  420.746594][T13744] veth0_vlan: entered promiscuous mode
[  420.809995][T13744] veth1_vlan: entered promiscuous mode
[  420.956465][T13744] veth0_macvtap: entered promiscuous mode
[  420.984841][T13744] veth1_macvtap: entered promiscuous mode
[  421.061834][T13744] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.123219][T14089] netlink: 14581 bytes leftover after parsing attributes in process `syz.3.2616'.
[  421.148862][T13744] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.191266][ T3794] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.220067][ T3794] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.261540][ T3794] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.290411][ T3794] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.433893][T14098] netlink: 80 bytes leftover after parsing attributes in process `syz.5.2618'.
[  421.460301][T14098] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2618'.
[  421.561384][T14098] netlink: 'syz.5.2618': attribute type 2 has an invalid length.
[  421.601300][T14098] netlink: 164 bytes leftover after parsing attributes in process `syz.5.2618'.
[  421.694097][ T3794] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.728388][ T3794] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.775484][ T3794] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.800838][ T3794] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.945592][T14112] netlink: 'syz.2.2621': attribute type 21 has an invalid length.
[  421.982790][T14112] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2621'.
[  422.668677][T14140] nft_compat: unsupported protocol 0
[  422.684203][T14140] netlink: 'syz.5.2627': attribute type 2 has an invalid length.
[  422.692136][T14140] netlink: 'syz.5.2627': attribute type 1 has an invalid length.
[  422.700003][T14140] netlink: 'syz.5.2627': attribute type 1 has an invalid length.
[  423.048343][T14122] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2624'.
[  423.124198][T14122] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2624'.
[  423.206712][T14152] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2630'.
[  423.619211][ T5845] Bluetooth: hci0: unexpected event 0x05 length: 151 > 4
[  423.662993][T14171] rdma_rxe: rxe_newlink: failed to add lo
[  423.725994][T14179] rdma_rxe: rxe_newlink: failed to add lo
[  424.003579][T14191] netlink: 'syz.1.2639': attribute type 1 has an invalid length.
[  424.639816][T14206] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2646'.
[  424.991742][T14228] netlink: 1236 bytes leftover after parsing attributes in process `syz.3.2648'.
[  425.105357][ T5845] Bluetooth: hci5: unexpected event 0x05 length: 151 > 4
[  426.047939][ T5845] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  426.347196][ T5845] Bluetooth: hci2: unexpected event 0x05 length: 151 > 4
[  426.479974][T14267] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  426.571100][T14267] netlink: 'syz.5.2666': attribute type 10 has an invalid length.
[  426.584464][T14267] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  426.741955][ T5845] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[  426.855194][T14290] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2673'.
[  427.053989][T14301] netlink: 'syz.1.2678': attribute type 9 has an invalid length.
[  427.177324][ T5845] Bluetooth: hci1: unexpected event 0x05 length: 151 > 4
[  427.359312][ T5845] Bluetooth: hci1: unexpected subevent 0x01 length: 150 > 18
[  427.551272][T14321] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2687'.
[  427.758660][T14331] delete_channel: no stack
[  427.763950][T14331] delete_channel: no stack
[  427.782803][T14331] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.2691'.
[  428.086207][   T52] ==================================================================
[  428.094341][   T52] BUG: KASAN: slab-use-after-free in hci_conn_drop+0x34/0x2b0
[  428.101849][   T52] Write of size 4 at addr ffff888077a38010 by task kworker/u9:0/52
[  428.109762][   T52] 
[  428.112112][   T52] CPU: 0 UID: 0 PID: 52 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT(full) 
[  428.112136][   T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  428.112151][   T52] Workqueue: hci1 hci_cmd_sync_work
[  428.112175][   T52] Call Trace:
[  428.112184][   T52]  <TASK>
[  428.112191][   T52]  dump_stack_lvl+0xe8/0x150
[  428.112219][   T52]  print_report+0xca/0x240
[  428.112239][   T52]  ? hci_conn_drop+0x34/0x2b0
[  428.112262][   T52]  kasan_report+0x118/0x150
[  428.112284][   T52]  ? hci_conn_valid+0x21/0x230
[  428.112308][   T52]  ? hci_conn_drop+0x34/0x2b0
[  428.112336][   T52]  kasan_check_range+0x2b0/0x2c0
[  428.112362][   T52]  hci_conn_drop+0x34/0x2b0
[  428.112384][   T52]  ? __pfx_le_read_features_complete+0x10/0x10
[  428.112411][   T52]  hci_cmd_sync_work+0x262/0x400
[  428.112434][   T52]  ? process_scheduled_works+0x9ef/0x1770
[  428.112455][   T52]  process_scheduled_works+0xad1/0x1770
[  428.112490][   T52]  ? __pfx_process_scheduled_works+0x10/0x10
[  428.112509][   T52]  ? do_raw_spin_lock+0x121/0x290
[  428.112544][   T52]  worker_thread+0x8a0/0xda0
[  428.112578][   T52]  kthread+0x711/0x8a0
[  428.112604][   T52]  ? __pfx_worker_thread+0x10/0x10
[  428.112624][   T52]  ? __pfx_kthread+0x10/0x10
[  428.112650][   T52]  ? _raw_spin_unlock_irq+0x23/0x50
[  428.112681][   T52]  ? __pfx_kthread+0x10/0x10
[  428.112706][   T52]  ret_from_fork+0x510/0xa50
[  428.112726][   T52]  ? __pfx_ret_from_fork+0x10/0x10
[  428.112743][   T52]  ? __switch_to+0xc9e/0x1480
[  428.112772][   T52]  ? __pfx_kthread+0x10/0x10
[  428.112797][   T52]  ret_from_fork_asm+0x1a/0x30
[  428.112833][   T52]  </TASK>
[  428.112839][   T52] 
[  428.147154][ T5845] Bluetooth: hci1: command 0x2016 tx timeout
[  428.148226][   T52] Allocated by task 5845:
[  428.281751][   T52]  kasan_save_track+0x3e/0x80
[  428.286453][   T52]  __kasan_kmalloc+0x93/0xb0
[  428.291070][   T52]  __kmalloc_cache_noprof+0x3e2/0x700
[  428.296472][   T52]  __hci_conn_add+0x3c5/0x1b30
[  428.301288][   T52]  le_conn_complete_evt+0x6f6/0x1420
[  428.306613][   T52]  hci_le_conn_complete_evt+0x187/0x480
[  428.312207][   T52]  hci_event_packet+0x78f/0x1260
[  428.317171][   T52]  hci_rx_work+0x3ee/0x1060
[  428.321705][   T52]  process_scheduled_works+0xad1/0x1770
[  428.327279][   T52]  worker_thread+0x8a0/0xda0
[  428.331901][   T52]  kthread+0x711/0x8a0
[  428.335996][   T52]  ret_from_fork+0x510/0xa50
[  428.340609][   T52]  ret_from_fork_asm+0x1a/0x30
[  428.345404][   T52] 
[  428.347748][   T52] Freed by task 5845:
[  428.351751][   T52]  kasan_save_track+0x3e/0x80
[  428.356494][   T52]  kasan_save_free_info+0x46/0x50
[  428.361563][   T52]  __kasan_slab_free+0x5c/0x80
[  428.366359][   T52]  kfree+0x1c0/0x660
[  428.370302][   T52]  device_release+0x9e/0x1d0
[  428.374929][   T52]  kobject_put+0x228/0x570
[  428.379378][   T52]  hci_conn_del+0xc36/0x1240
[  428.384000][   T52]  hci_disconn_complete_evt+0x64e/0x950
[  428.389565][   T52]  hci_event_packet+0x7e3/0x1260
[  428.394538][   T52]  hci_rx_work+0x3ee/0x1060
[  428.399075][   T52]  process_scheduled_works+0xad1/0x1770
[  428.404644][   T52]  worker_thread+0x8a0/0xda0
[  428.409263][   T52]  kthread+0x711/0x8a0
[  428.413363][   T52]  ret_from_fork+0x510/0xa50
[  428.417980][   T52]  ret_from_fork_asm+0x1a/0x30
[  428.422773][   T52] 
[  428.425111][   T52] The buggy address belongs to the object at ffff888077a38000
[  428.425111][   T52]  which belongs to the cache kmalloc-8k of size 8192
[  428.439185][   T52] The buggy address is located 16 bytes inside of
[  428.439185][   T52]  freed 8192-byte region [ffff888077a38000, ffff888077a3a000)
[  428.453020][   T52] 
[  428.455379][   T52] The buggy address belongs to the physical page:
[  428.461828][   T52] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77a38
[  428.470632][   T52] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  428.479161][   T52] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  428.486756][   T52] page_type: f5(slab)
[  428.490771][   T52] raw: 00fff00000000040 ffff88813ffa7280 ffffea0001d75200 0000000000000002
[  428.499413][   T52] raw: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  428.508022][   T52] head: 00fff00000000040 ffff88813ffa7280 ffffea0001d75200 0000000000000002
[  428.516715][   T52] head: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  428.525393][   T52] head: 00fff00000000003 ffffea0001de8e01 00000000ffffffff 00000000ffffffff
[  428.534093][   T52] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  428.542776][   T52] page dumped because: kasan: bad access detected
[  428.549205][   T52] page_owner tracks the page as allocated
[  428.554918][   T52] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 13921, tgid 13918 (syz.2.2575), ts 414551907414, free_ts 414551394559
[  428.577902][   T52]  post_alloc_hook+0x234/0x290
[  428.582683][   T52]  get_page_from_freelist+0x24e0/0x2580
[  428.588231][   T52]  __alloc_frozen_pages_noprof+0x181/0x370
[  428.594047][   T52]  alloc_pages_mpol+0x232/0x4a0
[  428.598904][   T52]  allocate_slab+0x86/0x3b0
[  428.603424][   T52]  ___slab_alloc+0xe53/0x1820
[  428.608106][   T52]  __slab_alloc+0x65/0x100
[  428.612529][   T52]  __kmalloc_noprof+0x47d/0x800
[  428.617396][   T52]  bpf_test_init+0x9f/0x150
[  428.621922][   T52]  bpf_prog_test_run_xdp+0x4de/0x1100
[  428.627322][   T52]  bpf_prog_test_run+0x2c7/0x340
[  428.632274][   T52]  __sys_bpf+0x562/0x860
[  428.636533][   T52]  __x64_sys_bpf+0x7c/0x90
[  428.640956][   T52]  do_syscall_64+0xec/0xf80
[  428.645455][   T52]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.651406][   T52] page last free pid 13752 tgid 13752 stack trace:
[  428.657907][   T52]  __free_frozen_pages+0xbc8/0xd30
[  428.663024][   T52]  __slab_free+0x2ce/0x320
[  428.667645][   T52]  qlist_free_all+0x97/0x100
[  428.672247][   T52]  kasan_quarantine_reduce+0x148/0x160
[  428.677713][   T52]  __kasan_slab_alloc+0x22/0x80
[  428.682577][   T52]  __kmalloc_noprof+0x3cf/0x800
[  428.687453][   T52]  tomoyo_realpath_from_path+0xe3/0x5d0
[  428.693015][   T52]  tomoyo_path_number_perm+0x1e8/0x5a0
[  428.698474][   T52]  security_file_ioctl+0xcb/0x2d0
[  428.703505][   T52]  __se_sys_ioctl+0x47/0x170
[  428.708108][   T52]  do_syscall_64+0xec/0xf80
[  428.712655][   T52]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.718547][   T52] 
[  428.720876][   T52] Memory state around the buggy address:
[  428.726713][   T52]  ffff888077a37f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  428.734787][   T52]  ffff888077a37f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  428.742940][   T52] >ffff888077a38000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  428.751007][   T52]                          ^
[  428.755618][   T52]  ffff888077a38080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  428.763691][   T52]  ffff888077a38100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  428.771755][   T52] ==================================================================
[  428.788064][   T52] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  428.795338][   T52] CPU: 0 UID: 0 PID: 52 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT(full) 
[  428.804633][   T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  428.814700][   T52] Workqueue: hci1 hci_cmd_sync_work
[  428.819927][   T52] Call Trace:
[  428.823230][   T52]  <TASK>
[  428.826203][   T52]  vpanic+0x1e0/0x670
[  428.830264][   T52]  panic+0xb9/0xc0
[  428.834016][   T52]  ? __pfx_panic+0x10/0x10
[  428.838458][   T52]  ? preempt_schedule_common+0x83/0xd0
[  428.843926][   T52]  ? hci_conn_drop+0x34/0x2b0
[  428.848613][   T52]  check_panic_on_warn+0x89/0xb0
[  428.853602][   T52]  ? hci_conn_drop+0x34/0x2b0
[  428.858290][   T52]  end_report+0x6f/0x140
[  428.862555][   T52]  kasan_report+0x129/0x150
[  428.867069][   T52]  ? hci_conn_valid+0x21/0x230
[  428.871855][   T52]  ? hci_conn_drop+0x34/0x2b0
[  428.876547][   T52]  kasan_check_range+0x2b0/0x2c0
[  428.881498][   T52]  hci_conn_drop+0x34/0x2b0
[  428.886026][   T52]  ? __pfx_le_read_features_complete+0x10/0x10
[  428.892187][   T52]  hci_cmd_sync_work+0x262/0x400
[  428.897133][   T52]  ? process_scheduled_works+0x9ef/0x1770
[  428.902863][   T52]  process_scheduled_works+0xad1/0x1770
[  428.908421][   T52]  ? __pfx_process_scheduled_works+0x10/0x10
[  428.914409][   T52]  ? do_raw_spin_lock+0x121/0x290
[  428.919460][   T52]  worker_thread+0x8a0/0xda0
[  428.924073][   T52]  kthread+0x711/0x8a0
[  428.928239][   T52]  ? __pfx_worker_thread+0x10/0x10
[  428.933374][   T52]  ? __pfx_kthread+0x10/0x10
[  428.937996][   T52]  ? _raw_spin_unlock_irq+0x23/0x50
[  428.943208][   T52]  ? __pfx_kthread+0x10/0x10
[  428.947814][   T52]  ret_from_fork+0x510/0xa50
[  428.952422][   T52]  ? __pfx_ret_from_fork+0x10/0x10
[  428.957536][   T52]  ? __switch_to+0xc9e/0x1480
[  428.962262][   T52]  ? __pfx_kthread+0x10/0x10
[  428.966879][   T52]  ret_from_fork_asm+0x1a/0x30
[  428.971674][   T52]  </TASK>
[  428.975323][   T52] Kernel Offset: disabled
[  428.979651][   T52] Rebooting in 86400 seconds..