last executing test programs:

12.820415207s ago: executing program 0 (id=1177):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x1})
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(r2, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r3, @ANYBLOB="00f20000"], 0x18, 0x114}, 0x10)
setsockopt$sock_attach_bpf(r3, 0x1, 0x22, &(0x7f00000018c0), 0x4)
recvmsg(r3, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002d00)=""/78, 0x4e}, 0x0)
ioctl$TUNSETLINK(r1, 0x400454cd, 0x6)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000940)={0x0, 0xa, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000580081044e81f782db44b904021d080005000300e8fe55a1180015000600142603600e120900210000000401a80016000a00014006000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1400000017000b63d25a80648c2594f92aa3c92b", 0x14}], 0x1}, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7, <r8=>0xffffffffffffffff}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xa, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000020000007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b704000008000000850000001a00000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r9, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="76389e6a65585578f830e9000000", 0x0, 0x10001, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r10 = socket$kcm(0x29, 0x2, 0x0)
r11 = socket$kcm(0x29, 0x7, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r10, 0x89e2, &(0x7f0000000000)={r11})

11.885220833s ago: executing program 1 (id=1181):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2a040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x2080, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62}, 0x94)
r2 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r1}, 0x8)
r3 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r3, &(0x7f00000031c0)={&(0x7f0000000300)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000540)=[{&(0x7f00000002c0)="b564", 0x2}], 0x1, &(0x7f0000000d80)=[{0x18, 0x29, 0x4, "bf"}], 0x18}, 0x4000004)
r4 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0x23, &(0x7f0000000000)=r7, 0x8)
close(r2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000040095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@map=0x1, r8, 0x2e, 0x0, r8, @void, @value=0x0}, 0x20)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.time\x00', 0x26e1, 0x0)
r10 = bpf$ITER_CREATE(0xb, &(0x7f0000000040)={r9}, 0x8)
close(r10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[], 0x20)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0xcdd, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r11 = socket$kcm(0xa, 0x6, 0x0)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r13 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xb5, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200001, 0x1, @perf_bp={0x0, 0x3}, 0x10781, 0x10, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r14 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c0000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], &(0x7f00000005c0)='GPL\x00'}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r13, 0x40042408, r14)
setsockopt$sock_attach_bpf(r11, 0x10d, 0x2, &(0x7f0000000040)=r12, 0x17)

10.93056864s ago: executing program 2 (id=1183):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0xff, 0x5, 0x0, 0x2, 0x44c04, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xfffffffffffffff8, 0x8}, 0x0, 0xc8, 0x0, 0x5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r2, &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x8c4)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81e6978800fe08000e40000200875a65969ff57b00ff020000000000000000000000000001e2607e15e697ab"], 0xfdef)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
close(r0)
socket$kcm(0x10, 0x3, 0x10)
r4 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r4, 0x84, 0x6b, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x10}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r6=>0xffffffffffffffff})
recvmsg$unix(r6, &(0x7f0000002680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
socketpair(0x15, 0x5, 0x3, &(0x7f0000000680)={<r10=>0xffffffffffffffff})
r11 = getpid()
sendmsg$unix(r6, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000500)="52e356ca5a5753ec009da140fdb022198b1da9db7b86b1ee8166b1ccdf7496fe35d43297bbad2b47e1897e46bbe8112f54b3e300fe61a1aeebdf24a85f1e60a2a75d1d3db67f8c935125934a49ff6819fc0795ac4544ec", 0x57}, {&(0x7f0000000580)="3a5be23acbca3afb2b6bd0", 0xb}, {&(0x7f0000000600)="0dccaff6b8ec8d778724ba55733646e625a0db9ac686f222", 0x18}], 0x3, &(0x7f00000006c0)=[@rights={{0x1c, 0x1, 0x1, [r9, r7, r10]}}, @rights={{0x18, 0x1, 0x1, [r9, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r5]}}, @rights={{0x20, 0x1, 0x1, [r5, r8, r5, r8]}}, @cred={{0x1c, 0x1, 0x2, {r11, 0xee00, 0xffffffffffffffff}}}], 0x90, 0x4}, 0x40000)
r12 = perf_event_open(&(0x7f0000002600)={0x4, 0x80, 0x6, 0x6, 0x3, 0xfa, 0x0, 0x2, 0x5a00, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x2, @perf_config_ext={0x1}, 0xca26, 0x8000, 0x6, 0x3, 0xfffffffffffffffa, 0x5a, 0x2, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000002580)={0x5, 0x80, 0x3, 0x0, 0xa0, 0x12, 0x0, 0x604, 0x14000, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xec2, 0x7}, 0x3000, 0xaa4, 0x7, 0x5, 0x9, 0x100, 0x3ff, 0x0, 0x7, 0x0, 0xe1a}, r11, 0x4, r12, 0x2)

8.901231483s ago: executing program 0 (id=1184):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x31, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0), 0x10, 0x1}, 0x94)
recvmsg$kcm(r0, &(0x7f0000000940)={&(0x7f00000000c0)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000140)=""/176, 0xb0}, {&(0x7f0000000200)=""/190, 0xbe}, {&(0x7f00000002c0)=""/42, 0x2a}, {&(0x7f0000000340)=""/34, 0x22}, {&(0x7f0000000580)=""/68, 0x44}, {&(0x7f0000000600)=""/192, 0xc0}, {&(0x7f00000006c0)=""/131, 0x83}, {&(0x7f0000000780)=""/220, 0xdc}], 0x8, &(0x7f0000000900)=""/33, 0x21}, 0x10041)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000dc0)={&(0x7f0000000080)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000300)="f9", 0x1}], 0x1}, 0x263171b11b81c78f)
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x10, &(0x7f0000000000)=r3, 0x8)

8.187476033s ago: executing program 3 (id=1185):
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8458, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000007c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0x92}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0x27}]}, &(0x7f0000000040)='syzkaller\x00'}, 0x94)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000000c0)='freezer')
sendmsg$inet(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000900)="5490", 0x2}], 0x1}, 0x4048841)
recvmsg(r4, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
recvmsg(r4, &(0x7f0000000000)={0x0, 0x46, &(0x7f0000000440)=[{&(0x7f0000000080)=""/45, 0x23}], 0x1, 0x0, 0xffffffffffffff28}, 0x40008140)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r6)
ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0xfffffffffffffffa)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r7, <r9=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000180)=r8}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r9}, &(0x7f0000000340), &(0x7f0000000380)=r8}, 0x20)
write$cgroup_subtree(r6, &(0x7f0000000080)={[{0x0, 'freezer'}, {0x2b, 'blkio'}, {0x2d, 'rlimit'}, {0x2b, 'cpuacct'}, {0x2b, 'cpuacct'}]}, 0x2a)

7.876812125s ago: executing program 1 (id=1186):
bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="0200000004000000060000000500"], 0x48)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xd, 0xc, 0x0, 0x0, 0x0, 0x8, 0x652a9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x4, @perf_config_ext={0x3, 0x7}, 0x8000, 0x82, 0xffffff7f, 0x7, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x200c}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

7.592571215s ago: executing program 2 (id=1187):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/31], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r3 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x1b, &(0x7f00000001c0)=r2, 0xa1)

7.390842469s ago: executing program 0 (id=1188):
r0 = socket$kcm(0x11, 0x20000000000000a, 0x300)
recvmsg(r0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=""/176, 0xb0}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x28, &(0x7f0000000000), 0x4)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x10140)
socketpair(0x2c, 0x80000, 0x5, &(0x7f0000000580))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x9d, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, 0x0, 0x0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r1, &(0x7f0000000080), 0x0}, 0x20)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000000180)}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000a40)="89000000120081ae08060cdc030ec0007f03e3f7000000", 0x17}], 0x1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="0000f8fffffffffdb60800000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)}, 0x10049014)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x20044050)
r3 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r3, 0x0, 0xfe33)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socket$kcm(0x29, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000006c0)="d800", 0x2}], 0x1, 0x0, 0x0, 0x2663}, 0x0)

6.973456529s ago: executing program 3 (id=1189):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xd, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7a, 0x9c, 0x0, 0x0, 0x2b}, [@call={0x25, 0x0, 0x0, 0x98000000}], {0x95, 0x0, 0xd00}}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x8, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x8000000, 0x10, 0x0, 0xffffffffffffff6c}, 0x3f)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x3d, 0x7, 0x0, 0x0, 0x28040, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, @perf_bp={0x0, 0x4}, 0x180a2, 0x7ff, 0x6, 0x0, 0xb, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000080)=ANY=[@ANYBLOB="180300000000000000000000000000008510000006000000180000002000000000000000000000007f00000000000000180000000000002000000000000000009500000000000000540300000400000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x45}, 0x94)

6.861155896s ago: executing program 2 (id=1190):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)}, 0x9cdc2384056b48b8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="0000186df4b1768c36153d42", @ANYRES32, @ANYBLOB="1c00000000000300000000000000010045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'tunl0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f3, &(0x7f0000000080))
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f0000000700), 0x4)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x702, 0x0, 0x0, &(0x7f0000000540), 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x783}, 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2a040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x4, @perf_bp={0x0, 0x3}, 0x8000, 0x1, 0x43a1bd76, 0x7, 0x10, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)='W', 0x1}], 0x1}, 0x0)
close(r1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'macsec0\x00', @remote})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
unlink(0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x400454d1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_to_bond\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x800, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8914, &(0x7f0000000080))
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r1, 0xc008744c, &(0x7f0000000180))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x210})
ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x0, 0x0, 0x0, 0xee4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0), 0x10, 0x4}, 0x94)

6.794414521s ago: executing program 0 (id=1191):
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000003f01f00810000007f00000001000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000050b9b28c666190bb634c6c6dd898e5f1ae04dc98d01c9dfda08bba2815ef0f83c746351c319c2dd8693bbe0128a0fa35787fd064d4cb8a21da4ca9ce72ade6d244f353d0e828c41ceb", @ANYRES32=0x0, @ANYRES8], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0xffffffff, 0x0, 0xb}, {0x10000002, 0x0, 0x4, 0x2}]}, 0x94)
close(0x3)
r0 = socket$kcm(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000140)=[{&(0x7f00000005c0)="df", 0x1}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0x21, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [@ringbuf_output, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="05000000040000000c0000000b"], 0x50)
close(0x3)

6.705731827s ago: executing program 1 (id=1192):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x80, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x60)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xd, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x0, 0x67e6501f}, 0x1699, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (fail_nth: 7)

6.013295056s ago: executing program 3 (id=1193):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000040)=@generic={0x0}, 0x18)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0xffffffcf, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
r7 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r8)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8921, &(0x7f0000001f40)='lo:\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\xf5\a\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'5\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\x06\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xbf\xe3?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\fr\xf1\xec\xd9CD\x80\xb4^\x8cw;\x87\xea\x8c\x8bJ\x9a\x0ej\x8f\x8e^\xe6\xa6\xaa\x910\fD\xabFU\xa0D;\xd6\xd1\xeer\x9d\x02\xd9\xf7d`\xbfv\x15.\xe4\x82|)K\x99\x98&?\xcd\xe5\xa8\xba~$;g\t\x02\x84+\x90\xab\x816$/\x92\"\xef\xf7\x18\xfaE\xfe\xf7\n\xb2\x7fC\xbb\xbdg#F\n\vu\xe2\xe9\b\xa2\xf1\x94Fb\x92\xc9\xddP\xf0m35+\xdd\xac3\x00\xdd\xfb\b\xc0\x95\xe8\xa5\xec\x9e\xbfA\x7f\xff\xb8\xe2\xe2HNy$\xd4\xc6\x9dd\t\xf6\xed\x10\x15%\r\x1aD\f>\xdcZ\xb9\xd7Z\x88\x9b\xdff[\x90\xfa\x9a{b\xf4Dq')
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af"], 0x6)

6.012763496s ago: executing program 0 (id=1194):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2a040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x2080, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62}, 0x94)
r2 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r1}, 0x8)
r3 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r3, &(0x7f00000031c0)={&(0x7f0000000300)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000540)=[{&(0x7f00000002c0)="b564", 0x2}], 0x1, &(0x7f0000000d80)=[{0x18, 0x29, 0x4, "bf"}], 0x18}, 0x4000004)
r4 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0x23, &(0x7f0000000000)=r7, 0x8)
close(r2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000040095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@map=0x1, r8, 0x2e, 0x0, r8, @void, @value=0x0}, 0x20)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.time\x00', 0x26e1, 0x0)
r10 = bpf$ITER_CREATE(0xb, &(0x7f0000000040)={r9}, 0x8)
close(r10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[], 0x20)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0xcdd, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r11 = socket$kcm(0xa, 0x6, 0x0)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r13 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xb5, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200001, 0x1, @perf_bp={0x0, 0x3}, 0x10781, 0x10, 0x0, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r14 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c0000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], &(0x7f00000005c0)='GPL\x00'}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r13, 0x40042408, r14)
setsockopt$sock_attach_bpf(r11, 0x10d, 0x2, &(0x7f0000000040)=r12, 0x17)

4.217382973s ago: executing program 1 (id=1195):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0xff, 0x5, 0x0, 0x2, 0x44c04, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xfffffffffffffff8, 0x8}, 0x0, 0xc8, 0x0, 0x5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r2, &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x8c4)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81e6978800fe08000e40000200875a65969ff57b00ff020000000000000000000000000001e2607e15e697ab"], 0xfdef)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
close(r0)
socket$kcm(0x10, 0x3, 0x10)
r4 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r4, 0x84, 0x6b, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x10}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r6=>0xffffffffffffffff})
recvmsg$unix(r6, &(0x7f0000002680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
socketpair(0x15, 0x5, 0x3, &(0x7f0000000680)={<r11=>0xffffffffffffffff})
r12 = getpid()
sendmsg$unix(r6, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000500)="52e356ca5a5753ec009da140fdb022198b1da9db7b86b1ee8166b1ccdf7496fe35d43297bbad2b47e1897e46bbe8112f54b3e300fe61a1aeebdf24a85f1e60a2a75d1d3db67f8c935125934a49ff6819fc0795ac4544ec", 0x57}, {&(0x7f0000000580)="3a5be23acbca3afb2b6bd0", 0xb}, {&(0x7f0000000600)="0dccaff6b8ec8d778724ba55733646e625a0db9ac686f222", 0x18}], 0x3, &(0x7f00000006c0)=[@rights={{0x1c, 0x1, 0x1, [r9, r7, r11]}}, @rights={{0x18, 0x1, 0x1, [r9, r10]}}, @rights={{0x14, 0x1, 0x1, [r5]}}, @rights={{0x20, 0x1, 0x1, [r5, r8, r5, r8]}}, @cred={{0x1c, 0x1, 0x2, {r12, 0xee00, 0xffffffffffffffff}}}], 0x90, 0x4}, 0x40000)
r13 = perf_event_open(&(0x7f0000002600)={0x4, 0x80, 0x6, 0x6, 0x3, 0xfa, 0x0, 0x2, 0x5a00, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x2, @perf_config_ext={0x1}, 0xca26, 0x8000, 0x6, 0x3, 0xfffffffffffffffa, 0x5a, 0x2, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000002580)={0x5, 0x80, 0x3, 0x0, 0xa0, 0x12, 0x0, 0x604, 0x14000, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xec2, 0x7}, 0x3000, 0xaa4, 0x7, 0x5, 0x9, 0x100, 0x3ff, 0x0, 0x7, 0x0, 0xe1a}, r12, 0x4, r13, 0x2)

4.11217943s ago: executing program 3 (id=1196):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x700, &(0x7f00000002c0)=[{&(0x7f0000000680)=""/140, 0x8c}], 0x1, &(0x7f0000002f40)=""/229, 0xe5}, 0x40000004)
sendmsg$tipc(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000300)="e9623dfe0f747a9bab1ccbda126d1d347f32978c0fca747cf4e1470f60d8eb0a11e419d1ccdb196b7523065612a6ecdb", 0x30}, {&(0x7f0000000b00)="9b11a80b974e60df4aa8901d6aa0b636089fc5d73337e44e3e6f85e35d8e171720df80bf7bc8cec8d22a71217601d0bf6a41d41817f396df2b01232ac5bcd29f9ec395ede7369b16bf75341485af98788703b3a606acc4209e79c41453aabf395d437222a3f6fe9b3e", 0x69}], 0x2, 0x0, 0x0, 0x400c800}, 0x4000000)
close(r1)

3.895252035s ago: executing program 2 (id=1197):
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8458, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000007c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_config_ext={0x8, 0x92}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0x27}]}, &(0x7f0000000040)='syzkaller\x00'}, 0x94)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000000c0)='freezer')
sendmsg$inet(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000900)="5490", 0x2}], 0x1}, 0x4048841)
recvmsg(r4, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
recvmsg(r4, &(0x7f0000000000)={0x0, 0x46, &(0x7f0000000440)=[{&(0x7f0000000080)=""/45, 0x23}], 0x1, 0x0, 0xffffffffffffff28}, 0x40008140)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r6)
ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0xfffffffffffffffa)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r7, <r9=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000180)=r8}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r9}, &(0x7f0000000340), &(0x7f0000000380)=r8}, 0x20)
write$cgroup_subtree(r6, &(0x7f0000000080)={[{0x0, 'freezer'}, {0x2b, 'blkio'}, {0x2d, 'rlimit'}, {0x2b, 'cpuacct'}, {0x2b, 'cpuacct'}]}, 0x2a)

3.702242329s ago: executing program 3 (id=1198):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r3 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r3, 0x29, 0x1b, &(0x7f00000001c0)=r2, 0xa1)

3.269385309s ago: executing program 0 (id=1199):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000000000000000dff070000000000000100000d"], &(0x7f0000000f40)=""/4089, 0x4a, 0xff9, 0xa, 0x32e}, 0x28)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x825, 0x0, 0x0, 0x0, 0xc}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @printk={@s, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}]}, &(0x7f0000000140)='GPL\x00', 0x1, 0xd3, &(0x7f0000000180)=""/211, 0x40f00, 0xb, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x1, 0x2}, 0x8, 0x10, &(0x7f00000002c0)={0x3, 0x3, 0x2, 0x44d3172d}, 0x10, 0x0, 0xffffffffffffffff, 0x1, &(0x7f0000000300)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000340)=[{0x4, 0x2, 0x5, 0x1}], 0x10, 0x1ff}, 0x94) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r2 = perf_event_open(&(0x7f0000000680)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a1c, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1}, 0x50)
r4 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0x12, &(0x7f00000008c0)=r6, 0x4) (async)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000000)={@cgroup=r6, 0x10, 0x0, 0x363253ea, &(0x7f0000000040)=[0x0], 0x1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r7=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000280)=ANY=[@ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="2e000000200000000000005c5f3e10dc8200", @ANYRES32, @ANYRES64=r7], 0x20) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$unix(r8, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000200)={@fallback=r8, 0xffffffffffffffff, 0x20, 0x18, 0x0, @void, @value, @void, @void, r7}, 0x20)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x4, &(0x7f0000000480)=@raw=[@map_idx_val={0x18, 0xb, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}, @generic={0x2, 0xa, 0x6, 0x7fff, 0x4}, @ldst={0x3, 0x2, 0x0, 0x8, 0xa, 0x18, 0xfffffffffffffff0}], &(0x7f00000004c0)='syzkaller\x00', 0xb6, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000540)={0x1, 0xf, 0x7, 0x7}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000580)=[0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff], &(0x7f00000005c0)=[{0x4, 0x4, 0x3, 0x1}, {0x1, 0x3, 0x5, 0x1}, {0x5, 0x5, 0x7, 0x7}, {0x0, 0x3, 0x6, 0x6}, {0x3, 0x3, 0xb, 0x9}, {0x1, 0x5, 0xa, 0x2}, {0x0, 0x2, 0xf, 0x5}], 0x10, 0x8}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000840)={r3, &(0x7f0000000780)="b25403537b82730b3bf22ebfbc91de4d483a35ba038ad1f1fc0cbc3c4952c58d21b35bcc51fe0ddf7bdeea7661fb8d8c50", &(0x7f00000007c0)=""/103, 0x4}, 0x20) (async)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000440)={@ifindex, 0xffffffffffffffff, 0x37, 0x10, r0, @void, @value=r9, @void, @void, r7}, 0x20) (async)
r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$TUNSETOFFLOAD(r10, 0xc004743e, 0x110c23004a) (async)
r11 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)
ioctl$TUNSETOFFLOAD(r11, 0xc004743e, 0x110c23003f)
close(0x3)

2.262313952s ago: executing program 1 (id=1200):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xd, 0xc, 0x0, 0x0, 0x0, 0x8, 0x652a9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x4, @perf_config_ext={0x3, 0x7}, 0x8000, 0x82, 0xffffff7f, 0x7, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x200c}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000580)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c580000e6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0c440961f182babd18cac1bd4f4390af9a9ceafd0002cab9ccb6159c17d29e1000000870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9957399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda20000000000000000a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400001000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c9994894ee7f8249dc1e3428d2129369ee1b85af6eb2ef414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb90900006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905cbb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d4230328de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf1077d3cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df4028fc2018d07af1491ef060cd4403a099f322d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffabd76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d65a0dd287b84bc21f130be45dbd20c8ce4af2b6ae1fd9e494c7970ff5b152733fc2ef7f4082840705397c0e79727c489adcefac8371225bb1c23a85bb15d4301e16fb4e6247815c43b0c7704d0816349681f100000000000000e01106a76b56a1a434ac969c2498a1fb42495377ec7aa8965df697d907f4bb1ad661172d92a4cb6218205cf3747add0ec76011477872a5e9005b976ba8b88c6185406d9354aeade40f13c4a2127f8e2f65629043732e3478af76b33b06c623069ae78d2c91040fd821f323674d841eff41332d5d856a1d32326bc2bdb980e92cc50d05be774a91dcdfedec1c"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

2.009635579s ago: executing program 3 (id=1201):
perf_event_open(&(0x7f0000000480)={0x1, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, @perf_bp={&(0x7f00000001c0), 0x8}, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = socket$kcm(0x1e, 0x4, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="0000f100"/20, @ANYRES32=0x0, @ANYRES64=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r2}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000001500)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095000000000000003093a5cf9290d9283e25e84b83b68a00c41fab1f2c7be2c90f982f4e431c9a4f"], &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000340)="c274386d178550cb864bd57221bc", 0x0, 0x1200000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r3 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001680)={0x6, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="9500000000000008000000000000"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r4}, 0x7)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000003940)=[{&(0x7f0000000500)=""/4086, 0xff6}], 0x1}, 0x0)
perf_event_open(0x0, 0x0, 0xf, 0xffffffffffffffff, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f020033000b35d25a806c8c6f94f90f24fc60586507000c000321053582c137153e37000c0980fc0b10070300", 0x33fe0}], 0x1}, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r7, 0x0, 0x0)
sendmsg$tipc(r8, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000880)}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x114905, 0x4, 0x9, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.760131086s ago: executing program 2 (id=1202):
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000003f01f00810000007f00000001000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000050b9b28c666190bb634c6c6dd898e5f1ae04dc98d01c9dfda08bba2815ef0f83c746351c319c2dd8693bbe0128a0fa35787fd064d4cb8a21da4ca9ce72ade6d244f353d0e828c41ceb", @ANYRES32=0x0, @ANYRES8], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0xffffffff, 0x0, 0xb}, {0x10000002, 0x0, 0x4, 0x2}]}, 0x94)
close(0x3)
r0 = socket$kcm(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000140)=[{&(0x7f00000005c0)="df", 0x1}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0x21, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [@ringbuf_output, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="05000000040000000c0000000b"], 0x50)
close(0x3)

1.56802064s ago: executing program 1 (id=1203):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r2, &(0x7f0000000700)={&(0x7f0000000280)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="280000000000000000000000070000000717a87f000001ac141400e0000001ac1e0001ac1414bb011c000000000000000000000008000000", @ANYRES64=r2], 0x48}, 0x0)
socketpair(0x10, 0x2, 0xb, &(0x7f0000000000))

0s ago: executing program 2 (id=1204):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$OBJ_PIN_PROG(0x11, &(0x7f0000000040)=@generic={0x0}, 0x18)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0xffffffcf, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000140), 0x2, 0x0)
syz_clone(0x5000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
r7 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r8)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x8921, &(0x7f0000001f40)='lo:\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\xf5\a\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'5\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\x06\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xbf\xe3?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\fr\xf1\xec\xd9CD\x80\xb4^\x8cw;\x87\xea\x8c\x8bJ\x9a\x0ej\x8f\x8e^\xe6\xa6\xaa\x910\fD\xabFU\xa0D;\xd6\xd1\xeer\x9d\x02\xd9\xf7d`\xbfv\x15.\xe4\x82|)K\x99\x98&?\xcd\xe5\xa8\xba~$;g\t\x02\x84+\x90\xab\x816$/\x92\"\xef\xf7\x18\xfaE\xfe\xf7\n\xb2\x7fC\xbb\xbdg#F\n\vu\xe2\xe9\b\xa2\xf1\x94Fb\x92\xc9\xddP\xf0m35+\xdd\xac3\x00\xdd\xfb\b\xc0\x95\xe8\xa5\xec\x9e\xbfA\x7f\xff\xb8\xe2\xe2HNy$\xd4\xc6\x9dd\t\xf6\xed\x10\x15%\r\x1aD\f>\xdcZ\xb9\xd7Z\x88\x9b\xdff[\x90\xfa\x9a{b\xf4Dq')
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="2b70696473206aa4af"], 0x6)

kernel console output (not intermixed with test programs):

_fail_ex+0x39d/0x4d0
[  187.347956][ T6932]  should_failslab+0x9/0x20
[  187.352886][ T6932]  slab_pre_alloc_hook+0x59/0x310
[  187.358537][ T6932]  ? kasan_set_track+0x5f/0x70
[  187.363494][ T6932]  ? kasan_set_track+0x4e/0x70
[  187.368681][ T6932]  ? __kasan_kmalloc+0x8f/0xa0
[  187.373501][ T6932]  kmem_cache_alloc_node+0x60/0x320
[  187.378860][ T6932]  ? netlink_sendmsg+0x8d0/0xbf0
[  187.383978][ T6932]  ? __alloc_skb+0x103/0x2c0
[  187.388710][ T6932]  __alloc_skb+0x103/0x2c0
[  187.393623][ T6932]  netlink_dump+0x1ec/0xe50
[  187.399013][ T6932]  ? end_current_label_crit_section+0x170/0x170
[  187.406026][ T6932]  ? end_current_label_crit_section+0x170/0x170
[  187.412713][ T6932]  ? netlink_lookup+0x200/0x200
[  187.417860][ T6932]  ? ns_capable+0x89/0xe0
[  187.422270][ T6932]  ? __inet_diag_dump_start+0x886/0x9f0
[  187.428067][ T6932]  __netlink_dump_start+0x5f1/0x810
[  187.433616][ T6932]  inet_diag_rcv_msg_compat+0x215/0x440
[  187.439678][ T6932]  ? __inet_diag_dump+0x380/0x380
[  187.444769][ T6932]  ? sock_diag_rcv_msg+0xd1/0x600
[  187.450009][ T6932]  ? inet_diag_rcv_msg_compat+0x440/0x440
[  187.455876][ T6932]  ? inet_diag_dump_start_compat+0x20/0x20
[  187.462043][ T6932]  ? inet_diag_dump+0x50/0x50
[  187.466875][ T6932]  ? __inet_diag_dump+0x380/0x380
[  187.472057][ T6932]  sock_diag_rcv_msg+0x3d8/0x600
[  187.477772][ T6932]  netlink_rcv_skb+0x241/0x4d0
[  187.482957][ T6932]  ? sock_diag_bind+0xb0/0xb0
[  187.487784][ T6932]  ? netlink_ack+0x1180/0x1180
[  187.492725][ T6932]  ? __lock_acquire+0x7d40/0x7d40
[  187.497810][ T6932]  ? netlink_deliver_tap+0x2e/0x1b0
[  187.503061][ T6932]  sock_diag_rcv+0x2a/0x40
[  187.507518][ T6932]  netlink_unicast+0x751/0x8d0
[  187.512339][ T6932]  netlink_sendmsg+0x8d0/0xbf0
[  187.517430][ T6932]  ? netlink_getsockopt+0x590/0x590
[  187.522693][ T6932]  ? aa_sock_msg_perm+0x94/0x150
[  187.527669][ T6932]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  187.533164][ T6932]  ? security_socket_sendmsg+0x80/0xa0
[  187.538681][ T6932]  ? netlink_getsockopt+0x590/0x590
[  187.543958][ T6932]  ____sys_sendmsg+0x5ba/0x960
[  187.549077][ T6932]  ? __asan_memset+0x22/0x40
[  187.553813][ T6932]  ? __sys_sendmsg_sock+0x30/0x30
[  187.558966][ T6932]  ? __import_iovec+0x5f2/0x850
[  187.563928][ T6932]  ? import_iovec+0x73/0xa0
[  187.568493][ T6932]  ___sys_sendmsg+0x2a6/0x360
[  187.573491][ T6932]  ? __sys_sendmsg+0x2a0/0x2a0
[  187.578505][ T6932]  ? trace_call_bpf+0xc3/0x6c0
[  187.583446][ T6932]  __se_sys_sendmsg+0x1c2/0x2b0
[  187.588468][ T6932]  ? __x64_sys_sendmsg+0x80/0x80
[  187.593659][ T6932]  ? lockdep_hardirqs_on+0x98/0x150
[  187.598931][ T6932]  do_syscall_64+0x55/0xa0
[  187.603692][ T6932]  ? clear_bhb_loop+0x40/0x90
[  187.608686][ T6932]  ? clear_bhb_loop+0x40/0x90
[  187.613415][ T6932]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  187.619482][ T6932] RIP: 0033:0x7fc263f9c819
[  187.623954][ T6932] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  187.644006][ T6932] RSP: 002b:00007fc264e2e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.652676][ T6932] RAX: ffffffffffffffda RBX: 00007fc264215fa0 RCX: 00007fc263f9c819
[  187.660879][ T6932] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  187.668907][ T6932] RBP: 00007fc264e2e090 R08: 0000000000000000 R09: 0000000000000000
[  187.676995][ T6932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.685135][ T6932] R13: 00007fc264216038 R14: 00007fc264215fa0 R15: 00007ffc6bf26758
[  187.693288][ T6932]  </TASK>
[  188.403024][ T6921] delete_channel: no stack
[  188.784924][ T6946] netlink: 51471 bytes leftover after parsing attributes in process `syz.3.317'.
[  188.931700][ T6949] netlink: 9286 bytes leftover after parsing attributes in process `syz.2.315'.
[  189.198443][ T6956] FAULT_INJECTION: forcing a failure.
[  189.198443][ T6956] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.215282][ T6956] CPU: 1 PID: 6956 Comm: syz.3.318 Not tainted syzkaller #0
[  189.222741][ T6956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  189.233451][ T6956] Call Trace:
[  189.236951][ T6956]  <TASK>
[  189.239946][ T6956]  dump_stack_lvl+0x18c/0x250
[  189.244881][ T6956]  ? show_regs_print_info+0x20/0x20
[  189.250291][ T6956]  ? load_image+0x420/0x420
[  189.255038][ T6956]  ? __might_fault+0xaa/0x120
[  189.259868][ T6956]  ? __lock_acquire+0x7d40/0x7d40
[  189.265342][ T6956]  should_fail_ex+0x39d/0x4d0
[  189.270342][ T6956]  _copy_from_iter+0x1d9/0x12e0
[  189.275346][ T6956]  ? __virt_addr_valid+0x18c/0x540
[  189.280523][ T6956]  ? __lock_acquire+0x7d40/0x7d40
[  189.285808][ T6956]  ? preempt_schedule_common+0x82/0xc0
[  189.291533][ T6956]  ? preempt_schedule+0xc0/0xd0
[  189.296978][ T6956]  ? schedule_preempt_disabled+0x20/0x20
[  189.302937][ T6956]  ? copyout_mc+0x70/0x70
[  189.307748][ T6956]  ? __virt_addr_valid+0x18c/0x540
[  189.313070][ T6956]  ? __virt_addr_valid+0x18c/0x540
[  189.318408][ T6956]  ? __virt_addr_valid+0x469/0x540
[  189.323761][ T6956]  ? __check_object_size+0x506/0xa20
[  189.329084][ T6956]  skb_copy_datagram_from_iter+0xf4/0x6e0
[  189.334835][ T6956]  ? napi_get_frags+0xbb/0x150
[  189.339619][ T6956]  tun_get_user+0x15db/0x3ca0
[  189.344425][ T6956]  ? rcu_read_unlock+0xa0/0xa0
[  189.349220][ T6956]  ? tun_get+0x1c/0x2e0
[  189.353525][ T6956]  ? __lock_acquire+0x7d40/0x7d40
[  189.358776][ T6956]  ? tun_get+0x1c/0x2e0
[  189.363010][ T6956]  tun_chr_write_iter+0x119/0x200
[  189.368155][ T6956]  vfs_write+0x46c/0x990
[  189.372459][ T6956]  ? file_end_write+0x250/0x250
[  189.377336][ T6956]  ? __fget_files+0x43d/0x4b0
[  189.382050][ T6956]  ? __fdget_pos+0x1d8/0x330
[  189.386702][ T6956]  ? ksys_write+0x75/0x260
[  189.391267][ T6956]  ksys_write+0x150/0x260
[  189.395720][ T6956]  ? __ia32_sys_read+0x90/0x90
[  189.400616][ T6956]  ? lockdep_hardirqs_on+0x98/0x150
[  189.405884][ T6956]  do_syscall_64+0x55/0xa0
[  189.410370][ T6956]  ? clear_bhb_loop+0x40/0x90
[  189.415116][ T6956]  ? clear_bhb_loop+0x40/0x90
[  189.419868][ T6956]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  189.426097][ T6956] RIP: 0033:0x7f0a16b9c819
[  189.430638][ T6956] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  189.450723][ T6956] RSP: 002b:00007f0a17aa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  189.459333][ T6956] RAX: ffffffffffffffda RBX: 00007f0a16e16180 RCX: 00007f0a16b9c819
[  189.467546][ T6956] RDX: 0000000000000036 RSI: 0000200000000100 RDI: 000000000000004a
[  189.476245][ T6956] RBP: 00007f0a17aa6090 R08: 0000000000000000 R09: 0000000000000000
[  189.484453][ T6956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.493183][ T6956] R13: 00007f0a16e16218 R14: 00007f0a16e16180 R15: 00007ffe353d5eb8
[  189.501500][ T6956]  </TASK>
[  189.608270][ T6954] syzkaller0: entered promiscuous mode
[  189.634507][ T6954] syzkaller0: entered allmulticast mode
[  189.651977][ T6950] delete_channel: no stack
[  190.669261][ T6959] delete_channel: no stack
[  191.964199][ T6966] syzkaller0: entered promiscuous mode
[  191.970192][ T6966] syzkaller0: entered allmulticast mode
[  193.525414][ T1094] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  194.147150][ T6975] netlink: 51471 bytes leftover after parsing attributes in process `syz.2.326'.
[  194.298168][ T6985] netlink: 51471 bytes leftover after parsing attributes in process `syz.0.336'.
[  194.653873][ T6992] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.329'.
[  194.784160][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  194.793660][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  195.842571][ T7008] netlink: 'syz.1.335': attribute type 21 has an invalid length.
[  196.104556][ T7013] hsr_slave_0: left promiscuous mode
[  196.231944][ T7013] hsr_slave_1: left promiscuous mode
[  196.542464][ T7016] netlink: 51471 bytes leftover after parsing attributes in process `syz.3.340'.
[  196.803803][ T7018] netlink: 'syz.2.341': attribute type 4 has an invalid length.
[  196.852686][ T5084] Bluetooth: hci0: command 0x0406 tx timeout
[  196.860903][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  196.867124][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  196.869562][ T5778] Bluetooth: hci3: command 0x0406 tx timeout
[  196.890487][ T7018] FAULT_INJECTION: forcing a failure.
[  196.890487][ T7018] name failslab, interval 1, probability 0, space 0, times 0
[  197.015235][ T7018] CPU: 1 PID: 7018 Comm: syz.2.341 Not tainted syzkaller #0
[  197.022733][ T7018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  197.032984][ T7018] Call Trace:
[  197.036617][ T7018]  <TASK>
[  197.039768][ T7018]  dump_stack_lvl+0x18c/0x250
[  197.044646][ T7018]  ? show_regs_print_info+0x20/0x20
[  197.049969][ T7018]  ? load_image+0x420/0x420
[  197.054631][ T7018]  ? __might_sleep+0xe0/0xe0
[  197.059356][ T7018]  ? __lock_acquire+0x7d40/0x7d40
[  197.064545][ T7018]  should_fail_ex+0x39d/0x4d0
[  197.069419][ T7018]  should_failslab+0x9/0x20
[  197.074147][ T7018]  slab_pre_alloc_hook+0x59/0x310
[  197.079348][ T7018]  kmem_cache_alloc_node+0x60/0x320
[  197.084703][ T7018]  ? __alloc_skb+0x103/0x2c0
[  197.089450][ T7018]  __alloc_skb+0x103/0x2c0
[  197.094031][ T7018]  rtmsg_fib+0xeb/0x4c0
[  197.098987][ T7018]  fib_table_insert+0xd7f/0x1b20
[  197.104172][ T7018]  ? fib_trie_table+0x138/0x1c0
[  197.109309][ T7018]  ? fib_new_table+0x27f/0x2d0
[  197.114308][ T7018]  inet_rtm_newroute+0x14b/0x240
[  197.119452][ T7018]  ? rcu_read_unlock+0xa0/0xa0
[  197.124814][ T7018]  ? rtnetlink_rcv_msg+0x221/0xfa0
[  197.130123][ T7018]  ? rtnetlink_rcv_msg+0x221/0xfa0
[  197.135314][ T7018]  ? rcu_read_unlock+0xa0/0xa0
[  197.140162][ T7018]  rtnetlink_rcv_msg+0x869/0xfa0
[  197.145294][ T7018]  ? lockdep_hardirqs_on+0x98/0x150
[  197.150656][ T7018]  ? rtnetlink_bind+0x80/0x80
[  197.155729][ T7018]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  197.161894][ T7018]  ? lock_chain_count+0x20/0x20
[  197.166845][ T7018]  ? __local_bh_enable_ip+0x13a/0x1c0
[  197.172375][ T7018]  ? lockdep_hardirqs_on+0x98/0x150
[  197.177647][ T7018]  ? __local_bh_enable_ip+0x13a/0x1c0
[  197.183174][ T7018]  ? _local_bh_enable+0xa0/0xa0
[  197.188328][ T7018]  ? __dev_queue_xmit+0x265/0x3660
[  197.193523][ T7018]  ? __dev_queue_xmit+0x265/0x3660
[  197.198727][ T7018]  ? __dev_queue_xmit+0x1b2c/0x3660
[  197.204083][ T7018]  ? __dev_queue_xmit+0x265/0x3660
[  197.209437][ T7018]  ? ref_tracker_free+0x690/0x840
[  197.214703][ T7018]  netlink_rcv_skb+0x241/0x4d0
[  197.219586][ T7018]  ? rtnetlink_bind+0x80/0x80
[  197.224434][ T7018]  ? netlink_ack+0x1180/0x1180
[  197.229514][ T7018]  ? __lock_acquire+0x7d40/0x7d40
[  197.234828][ T7018]  ? netlink_deliver_tap+0x2e/0x1b0
[  197.240338][ T7018]  netlink_unicast+0x751/0x8d0
[  197.245312][ T7018]  netlink_sendmsg+0x8d0/0xbf0
[  197.250319][ T7018]  ? netlink_getsockopt+0x590/0x590
[  197.255608][ T7018]  ? aa_sock_msg_perm+0x94/0x150
[  197.260626][ T7018]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  197.266005][ T7018]  ? security_socket_sendmsg+0x80/0xa0
[  197.271562][ T7018]  ? netlink_getsockopt+0x590/0x590
[  197.276855][ T7018]  ____sys_sendmsg+0x5ba/0x960
[  197.281723][ T7018]  ? __asan_memset+0x22/0x40
[  197.286479][ T7018]  ? __sys_sendmsg_sock+0x30/0x30
[  197.291681][ T7018]  ? __import_iovec+0x5f2/0x850
[  197.296658][ T7018]  ? import_iovec+0x73/0xa0
[  197.301357][ T7018]  ___sys_sendmsg+0x2a6/0x360
[  197.306321][ T7018]  ? get_pid_task+0x20/0x1e0
[  197.311106][ T7018]  ? __sys_sendmsg+0x2a0/0x2a0
[  197.316044][ T7018]  ? __lock_acquire+0x7d40/0x7d40
[  197.321437][ T7018]  __se_sys_sendmsg+0x1c2/0x2b0
[  197.326367][ T7018]  ? __x64_sys_sendmsg+0x80/0x80
[  197.331630][ T7018]  ? lockdep_hardirqs_on+0x98/0x150
[  197.337710][ T7018]  do_syscall_64+0x55/0xa0
[  197.342425][ T7018]  ? clear_bhb_loop+0x40/0x90
[  197.347434][ T7018]  ? clear_bhb_loop+0x40/0x90
[  197.352327][ T7018]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  197.358309][ T7018] RIP: 0033:0x7fc222d9c819
[  197.362890][ T7018] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  197.383113][ T7018] RSP: 002b:00007fc223cb1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.391891][ T7018] RAX: ffffffffffffffda RBX: 00007fc223015fa0 RCX: 00007fc222d9c819
[  197.400321][ T7018] RDX: 0000000020008040 RSI: 0000200000000040 RDI: 0000000000000003
[  197.408410][ T7018] RBP: 00007fc223cb1090 R08: 0000000000000000 R09: 0000000000000000
[  197.416567][ T7018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.425142][ T7018] R13: 00007fc223016038 R14: 00007fc223015fa0 R15: 00007ffe07fc1958
[  197.433455][ T7018]  </TASK>
[  197.501711][ T7020] netlink: 763 bytes leftover after parsing attributes in process `syz.3.342'.
[  197.692871][ T7029] netlink: 9286 bytes leftover after parsing attributes in process `syz.0.344'.
[  198.355293][ T7044] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.350'.
[  199.197236][ T7062] delete_channel: no stack
[  199.206121][ T7062] delete_channel: no stack
[  199.211536][ T7041] delete_channel: no stack
[  199.250650][ T7062] delete_channel: no stack
[  199.365817][ T7042] syzkaller0: entered promiscuous mode
[  199.371902][ T7042] syzkaller0: entered allmulticast mode
[  199.535290][ T7062] netlink: 'syz.2.355': attribute type 10 has an invalid length.
[  199.638926][ T7061] delete_channel: no stack
[  199.805196][ T7072] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.357'.
[  201.910302][ T7077] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.360'.
[  202.431050][ T7094] netlink: 'syz.1.365': attribute type 2 has an invalid length.
[  202.857179][ T7088] syzkaller0: entered promiscuous mode
[  202.863023][ T7088] syzkaller0: entered allmulticast mode
[  202.921952][ T7103] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  203.111404][ T7108] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.369'.
[  203.254068][ T7110] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.370'.
[  203.449682][ T7112] FAULT_INJECTION: forcing a failure.
[  203.449682][ T7112] name failslab, interval 1, probability 0, space 0, times 0
[  203.497190][ T7112] CPU: 1 PID: 7112 Comm: syz.3.371 Not tainted syzkaller #0
[  203.505171][ T7112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  203.515331][ T7112] Call Trace:
[  203.518676][ T7112]  <TASK>
[  203.521810][ T7112]  dump_stack_lvl+0x18c/0x250
[  203.526616][ T7112]  ? show_regs_print_info+0x20/0x20
[  203.532752][ T7112]  ? load_image+0x420/0x420
[  203.537412][ T7112]  ? __might_sleep+0xe0/0xe0
[  203.543408][ T7112]  ? __lock_acquire+0x7d40/0x7d40
[  203.548769][ T7112]  should_fail_ex+0x39d/0x4d0
[  203.553497][ T7112]  should_failslab+0x9/0x20
[  203.558572][ T7112]  slab_pre_alloc_hook+0x59/0x310
[  203.563650][ T7112]  ? apparmor_sk_alloc_security+0x77/0x100
[  203.569526][ T7112]  __kmem_cache_alloc_node+0x53/0x250
[  203.574986][ T7112]  ? apparmor_sk_alloc_security+0x77/0x100
[  203.581218][ T7112]  kmalloc_trace+0x2a/0xe0
[  203.586135][ T7112]  apparmor_sk_alloc_security+0x77/0x100
[  203.592421][ T7112]  security_sk_alloc+0x6e/0xa0
[  203.597208][ T7112]  sk_prot_alloc+0x101/0x210
[  203.601913][ T7112]  ? sk_alloc+0x24/0x360
[  203.606353][ T7112]  sk_alloc+0x3a/0x360
[  203.610441][ T7112]  ? bpf_ctx_init+0x163/0x1a0
[  203.615143][ T7112]  ? bpf_prog_test_run_skb+0x273/0x12b0
[  203.620711][ T7112]  bpf_prog_test_run_skb+0x3a5/0x12b0
[  203.626190][ T7112]  ? __fget_files+0x28/0x4b0
[  203.630807][ T7112]  ? __fget_files+0x28/0x4b0
[  203.635501][ T7112]  ? __fget_files+0x43d/0x4b0
[  203.640216][ T7112]  ? cpu_online+0x60/0x60
[  203.644561][ T7112]  bpf_prog_test_run+0x321/0x390
[  203.649693][ T7112]  __sys_bpf+0x49d/0x890
[  203.653953][ T7112]  ? bpf_link_show_fdinfo+0x390/0x390
[  203.659356][ T7112]  ? lock_chain_count+0x20/0x20
[  203.664238][ T7112]  __x64_sys_bpf+0x7c/0x90
[  203.668678][ T7112]  do_syscall_64+0x55/0xa0
[  203.673109][ T7112]  ? clear_bhb_loop+0x40/0x90
[  203.677828][ T7112]  ? clear_bhb_loop+0x40/0x90
[  203.682657][ T7112]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  203.688581][ T7112] RIP: 0033:0x7f0a16b9c819
[  203.693023][ T7112] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  203.713012][ T7112] RSP: 002b:00007f0a17ae8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  203.721473][ T7112] RAX: ffffffffffffffda RBX: 00007f0a16e15fa0 RCX: 00007f0a16b9c819
[  203.729704][ T7112] RDX: 0000000000000028 RSI: 00002000000000c0 RDI: 000000000000000a
[  203.738785][ T7112] RBP: 00007f0a17ae8090 R08: 0000000000000000 R09: 0000000000000000
[  203.747170][ T7112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.755374][ T7112] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  203.763490][ T7112]  </TASK>
[  204.257590][ T7113] delete_channel: no stack
[  206.317537][ T7142] FAULT_INJECTION: forcing a failure.
[  206.317537][ T7142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.331054][ T7142] CPU: 0 PID: 7142 Comm: syz.0.380 Not tainted syzkaller #0
[  206.338474][ T7142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  206.348757][ T7142] Call Trace:
[  206.352095][ T7142]  <TASK>
[  206.355105][ T7142]  dump_stack_lvl+0x18c/0x250
[  206.359868][ T7142]  ? show_regs_print_info+0x20/0x20
[  206.365121][ T7142]  ? load_image+0x420/0x420
[  206.369676][ T7142]  should_fail_ex+0x39d/0x4d0
[  206.374400][ T7142]  strncpy_from_user+0x36/0x2d0
[  206.379313][ T7142]  strncpy_from_user_nofault+0x71/0x140
[  206.385156][ T7142]  bpf_probe_read_user_str+0x2a/0x70
[  206.390763][ T7142]  bpf_prog_2d73e6c9f54b8ebe+0x61/0x65
[  206.396770][ T7142]  bpf_test_run+0x2df/0x870
[  206.402037][ T7142]  ? bpf_test_run+0x174/0x870
[  206.406869][ T7142]  ? convert___skb_to_skb+0x590/0x590
[  206.412288][ T7142]  ? eth_get_headlen+0x210/0x210
[  206.417443][ T7142]  ? slab_build_skb+0x25f/0x3f0
[  206.422340][ T7142]  ? convert___skb_to_skb+0x3d/0x590
[  206.427697][ T7142]  bpf_prog_test_run_skb+0xad2/0x12b0
[  206.433235][ T7142]  ? cpu_online+0x60/0x60
[  206.437822][ T7142]  bpf_prog_test_run+0x321/0x390
[  206.443256][ T7142]  __sys_bpf+0x49d/0x890
[  206.447848][ T7142]  ? bpf_link_show_fdinfo+0x390/0x390
[  206.453368][ T7142]  ? lock_chain_count+0x20/0x20
[  206.458338][ T7142]  __x64_sys_bpf+0x7c/0x90
[  206.462781][ T7142]  do_syscall_64+0x55/0xa0
[  206.467211][ T7142]  ? clear_bhb_loop+0x40/0x90
[  206.471918][ T7142]  ? clear_bhb_loop+0x40/0x90
[  206.476717][ T7142]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  206.483526][ T7142] RIP: 0033:0x7f995399c819
[  206.488059][ T7142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  206.507736][ T7142] RSP: 002b:00007f9954935028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  206.516300][ T7142] RAX: ffffffffffffffda RBX: 00007f9953c15fa0 RCX: 00007f995399c819
[  206.524294][ T7142] RDX: 0000000000000028 RSI: 0000200000000580 RDI: 000000000000000a
[  206.532909][ T7142] RBP: 00007f9954935090 R08: 0000000000000000 R09: 0000000000000000
[  206.541035][ T7142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.549086][ T7142] R13: 00007f9953c16038 R14: 00007f9953c15fa0 R15: 00007fff159bf308
[  206.557265][ T7142]  </TASK>
[  206.727728][ T7149] netlink: 64859 bytes leftover after parsing attributes in process `syz.2.383'.
[  206.843304][ T7146] netlink: 16182 bytes leftover after parsing attributes in process `syz.3.382'.
[  207.090859][ T7156] netlink: 199816 bytes leftover after parsing attributes in process `syz.3.382'.
[  207.522614][ T7164] netlink: 'syz.0.387': attribute type 10 has an invalid length.
[  207.558975][ T7164] netlink: 2 bytes leftover after parsing attributes in process `syz.0.387'.
[  207.873908][ T7167] delete_channel: no stack
[  208.172310][ T7176] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.390'.
[  208.471277][ T7184] netlink: 'syz.3.393': attribute type 10 has an invalid length.
[  208.543834][ T7184] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.573366][ T7184] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.692188][ T7186] netlink: 'syz.3.393': attribute type 153 has an invalid length.
[  208.814950][ T7186] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.393'.
[  208.983707][ T7193] netlink: 'syz.1.395': attribute type 3 has an invalid length.
[  209.041305][ T7193] netlink: 'syz.1.395': attribute type 1 has an invalid length.
[  209.056409][ T7184] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.064512][ T7193] netlink: 56163 bytes leftover after parsing attributes in process `syz.1.395'.
[  209.077688][ T7184] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.095771][ T7184] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.108324][ T7184] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.255317][ T7184] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  209.369312][ T7184] syz.3.393 (7184) used greatest stack depth: 19688 bytes left
[  209.392959][ T7206] netlink: 'syz.0.397': attribute type 21 has an invalid length.
[  209.409520][ T7206] netlink: 156 bytes leftover after parsing attributes in process `syz.0.397'.
[  209.822454][ T7217] Driver unsupported XDP return value 0 on prog  (id 344) dev N/A, expect packet loss!
[  210.061685][ T7223] netlink: 16222 bytes leftover after parsing attributes in process `syz.1.403'.
[  210.771452][ T7234] netlink: 'syz.3.408': attribute type 12 has an invalid length.
[  210.788889][ T7234] netlink: 'syz.3.408': attribute type 15 has an invalid length.
[  211.005614][ T7242] netlink: 164 bytes leftover after parsing attributes in process `syz.2.411'.
[  211.852307][ T7257] netlink: 2 bytes leftover after parsing attributes in process `syz.3.416'.
[  211.954487][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.085305][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.164883][ T7257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.249158][ T7257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.920143][ T7279] netlink: 16222 bytes leftover after parsing attributes in process `syz.0.420'.
[  214.058878][ T7299] delete_channel: no stack
[  214.090418][ T7299] delete_channel: no stack
[  214.245510][ T7299] delete_channel: no stack
[  214.483032][ T7299] netlink: 'syz.2.428': attribute type 10 has an invalid length.
[  214.579063][ T7307] netlink: 64 bytes leftover after parsing attributes in process `syz.1.431'.
[  214.593931][ T7297] delete_channel: no stack
[  214.823323][ T7310] delete_channel: no stack
[  216.630894][ T7334] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.436'.
[  216.807313][ T7336] netlink: 164 bytes leftover after parsing attributes in process `syz.1.437'.
[  217.670495][ T7350] netlink: 60 bytes leftover after parsing attributes in process `syz.3.441'.
[  217.773113][ T7350] netlink: 60 bytes leftover after parsing attributes in process `syz.3.441'.
[  218.369096][ T7360] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.445'.
[  218.715598][ T7366] bridge_slave_1: left allmulticast mode
[  218.732975][ T7366] bridge_slave_1: left promiscuous mode
[  218.750038][ T7366] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.002363][ T7366] bridge_slave_0: left allmulticast mode
[  219.019053][ T7366] bridge_slave_0: left promiscuous mode
[  219.041012][ T7366] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.142450][ T7386] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.455'.
[  220.215209][ T7388] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.456'.
[  220.579651][ T7396] FAULT_INJECTION: forcing a failure.
[  220.579651][ T7396] name failslab, interval 1, probability 0, space 0, times 0
[  220.629179][ T7396] CPU: 0 PID: 7396 Comm: syz.3.460 Not tainted syzkaller #0
[  220.637006][ T7396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  220.647212][ T7396] Call Trace:
[  220.650536][ T7396]  <TASK>
[  220.653511][ T7396]  dump_stack_lvl+0x18c/0x250
[  220.658262][ T7396]  ? show_regs_print_info+0x20/0x20
[  220.663544][ T7396]  ? load_image+0x420/0x420
[  220.668330][ T7396]  ? __might_sleep+0xe0/0xe0
[  220.672988][ T7396]  ? __lock_acquire+0x7d40/0x7d40
[  220.678080][ T7396]  should_fail_ex+0x39d/0x4d0
[  220.682922][ T7396]  should_failslab+0x9/0x20
[  220.687568][ T7396]  slab_pre_alloc_hook+0x59/0x310
[  220.692642][ T7396]  ? __get_vm_area_node+0x125/0x370
[  220.697955][ T7396]  __kmem_cache_alloc_node+0x53/0x250
[  220.703440][ T7396]  ? __get_vm_area_node+0x125/0x370
[  220.708847][ T7396]  kmalloc_node_trace+0x26/0xe0
[  220.713723][ T7396]  __get_vm_area_node+0x125/0x370
[  220.718798][ T7396]  __vmalloc_node_range+0x36e/0x1330
[  220.724581][ T7396]  ? netlink_sendmsg+0x602/0xbf0
[  220.729730][ T7396]  ? netlink_insert+0x109f/0x13a0
[  220.735405][ T7396]  ? netlink_data_ready+0x10/0x10
[  220.740552][ T7396]  ? free_vm_area+0x50/0x50
[  220.745494][ T7396]  ? netlink_sendmsg+0x602/0xbf0
[  220.750545][ T7396]  vmalloc+0x79/0x90
[  220.754642][ T7396]  ? netlink_sendmsg+0x602/0xbf0
[  220.759661][ T7396]  netlink_sendmsg+0x602/0xbf0
[  220.764705][ T7396]  ? netlink_getsockopt+0x590/0x590
[  220.770050][ T7396]  ? aa_sock_msg_perm+0x94/0x150
[  220.775139][ T7396]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  220.780749][ T7396]  ? security_socket_sendmsg+0x80/0xa0
[  220.786254][ T7396]  sock_write_iter+0x2df/0x420
[  220.791057][ T7396]  ? sock_read_iter+0x3e0/0x3e0
[  220.796086][ T7396]  ? common_file_perm+0x198/0x1f0
[  220.801433][ T7396]  vfs_write+0x46c/0x990
[  220.805988][ T7396]  ? file_end_write+0x250/0x250
[  220.811177][ T7396]  ? __fget_files+0x43d/0x4b0
[  220.816114][ T7396]  ? __fdget_pos+0x1d8/0x330
[  220.821007][ T7396]  ? ksys_write+0x75/0x260
[  220.825537][ T7396]  ksys_write+0x150/0x260
[  220.830162][ T7396]  ? __ia32_sys_read+0x90/0x90
[  220.835017][ T7396]  ? lockdep_hardirqs_on+0x98/0x150
[  220.840569][ T7396]  do_syscall_64+0x55/0xa0
[  220.845227][ T7396]  ? clear_bhb_loop+0x40/0x90
[  220.850028][ T7396]  ? clear_bhb_loop+0x40/0x90
[  220.854964][ T7396]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  220.861099][ T7396] RIP: 0033:0x7f0a16b9c819
[  220.866173][ T7396] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  220.887042][ T7396] RSP: 002b:00007f0a17ae8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  220.896160][ T7396] RAX: ffffffffffffffda RBX: 00007f0a16e15fa0 RCX: 00007f0a16b9c819
[  220.904627][ T7396] RDX: 000000000000fe33 RSI: 0000200000000000 RDI: 0000000000000003
[  220.912992][ T7396] RBP: 00007f0a17ae8090 R08: 0000000000000000 R09: 0000000000000000
[  220.921253][ T7396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.930109][ T7396] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  220.938481][ T7396]  </TASK>
[  220.956993][ T7396] syz.3.460: vmalloc error: size 65408, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  220.972537][ T7396] CPU: 1 PID: 7396 Comm: syz.3.460 Not tainted syzkaller #0
[  220.980032][ T7396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  220.991273][ T7396] Call Trace:
[  220.995238][ T7396]  <TASK>
[  220.998376][ T7396]  dump_stack_lvl+0x18c/0x250
[  221.003326][ T7396]  ? show_regs_print_info+0x20/0x20
[  221.008698][ T7396]  ? load_image+0x420/0x420
[  221.014508][ T7396]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  221.021176][ T7396]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[  221.027870][ T7396]  warn_alloc+0x246/0x340
[  221.032313][ T7396]  ? __get_vm_area_node+0x125/0x370
[  221.037552][ T7396]  ? zone_watermark_ok_safe+0x230/0x230
[  221.043345][ T7396]  ? rcu_is_watching+0x15/0xb0
[  221.048324][ T7396]  ? __get_vm_area_node+0x356/0x370
[  221.053580][ T7396]  __vmalloc_node_range+0x393/0x1330
[  221.058906][ T7396]  ? netlink_insert+0x109f/0x13a0
[  221.063992][ T7396]  ? netlink_data_ready+0x10/0x10
[  221.069155][ T7396]  ? free_vm_area+0x50/0x50
[  221.073722][ T7396]  ? netlink_sendmsg+0x602/0xbf0
[  221.078729][ T7396]  vmalloc+0x79/0x90
[  221.082763][ T7396]  ? netlink_sendmsg+0x602/0xbf0
[  221.087754][ T7396]  netlink_sendmsg+0x602/0xbf0
[  221.092596][ T7396]  ? netlink_getsockopt+0x590/0x590
[  221.097867][ T7396]  ? aa_sock_msg_perm+0x94/0x150
[  221.102850][ T7396]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  221.108385][ T7396]  ? security_socket_sendmsg+0x80/0xa0
[  221.114269][ T7396]  sock_write_iter+0x2df/0x420
[  221.119093][ T7396]  ? sock_read_iter+0x3e0/0x3e0
[  221.124454][ T7396]  ? common_file_perm+0x198/0x1f0
[  221.129763][ T7396]  vfs_write+0x46c/0x990
[  221.134515][ T7396]  ? file_end_write+0x250/0x250
[  221.139427][ T7396]  ? __fget_files+0x43d/0x4b0
[  221.144393][ T7396]  ? __fdget_pos+0x1d8/0x330
[  221.149021][ T7396]  ? ksys_write+0x75/0x260
[  221.153544][ T7396]  ksys_write+0x150/0x260
[  221.157959][ T7396]  ? __ia32_sys_read+0x90/0x90
[  221.162862][ T7396]  ? lockdep_hardirqs_on+0x98/0x150
[  221.168181][ T7396]  do_syscall_64+0x55/0xa0
[  221.172719][ T7396]  ? clear_bhb_loop+0x40/0x90
[  221.177568][ T7396]  ? clear_bhb_loop+0x40/0x90
[  221.182317][ T7396]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  221.188252][ T7396] RIP: 0033:0x7f0a16b9c819
[  221.192862][ T7396] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  221.213512][ T7396] RSP: 002b:00007f0a17ae8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  221.222259][ T7396] RAX: ffffffffffffffda RBX: 00007f0a16e15fa0 RCX: 00007f0a16b9c819
[  221.230641][ T7396] RDX: 000000000000fe33 RSI: 0000200000000000 RDI: 0000000000000003
[  221.238991][ T7396] RBP: 00007f0a17ae8090 R08: 0000000000000000 R09: 0000000000000000
[  221.247548][ T7396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  221.255626][ T7396] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  221.263919][ T7396]  </TASK>
[  221.270238][ T7396] Mem-Info:
[  221.273667][ T7400] netlink: 'syz.2.459': attribute type 12 has an invalid length.
[  221.282497][ T7396] active_anon:13216 inactive_anon:0 isolated_anon:0
[  221.282497][ T7396]  active_file:17890 inactive_file:39980 isolated_file:0
[  221.282497][ T7396]  unevictable:768 dirty:239 writeback:0
[  221.282497][ T7396]  slab_reclaimable:10081 slab_unreclaimable:92375
[  221.282497][ T7396]  mapped:24458 shmem:7584 pagetables:569
[  221.282497][ T7396]  sec_pagetables:0 bounce:0
[  221.282497][ T7396]  kernel_misc_reclaimable:0
[  221.282497][ T7396]  free:1333954 free_pcp:14965 free_cma:0
[  221.342662][ T7400] netlink: 'syz.2.459': attribute type 15 has an invalid length.
[  221.352017][ T7396] Node 0 active_anon:52212kB inactive_anon:0kB active_file:71560kB inactive_file:159720kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97832kB dirty:952kB writeback:0kB shmem:28016kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10624kB pagetables:2332kB sec_pagetables:0kB all_unreclaimable? no
[  221.385513][ T7396] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  221.417617][ T7396] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  221.450626][ T7396] lowmem_reserve[]: 0 2521 2522 2522 2522
[  221.457273][ T7396] Node 0 DMA32 free:1433140kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:47376kB inactive_anon:0kB active_file:71560kB inactive_file:158888kB unevictable:1536kB writepending:952kB present:3129332kB managed:2586956kB mlocked:0kB bounce:0kB free_pcp:42008kB local_pcp:20492kB free_cma:0kB
[  221.524084][ T7396] lowmem_reserve[]: 0 0 0 0 0
[  221.532488][ T7396] Node 0 Normal free:4kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  221.588946][ T7396] lowmem_reserve[]: 0 0 0 0 0
[  221.593779][ T7396] Node 1 Normal free:3892496kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:18432kB local_pcp:9632kB free_cma:0kB
[  221.669026][ T7396] lowmem_reserve[]: 0 0 0 0 0
[  221.673945][ T7396] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  221.692653][ T7396] Node 0 DMA32: 1382*4kB (UME) 1602*8kB (UME) 1430*16kB (UME) 750*32kB (UME) 430*64kB (UME) 295*128kB (UM) 113*256kB (UME) 40*512kB (UM) 13*1024kB (UME) 5*2048kB (UME) 304*4096kB (M) = 1448648kB
[  221.726270][ T7396] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  221.742664][ T7396] Node 1 Normal: 224*4kB (UE) 50*8kB (UE) 34*16kB (UE) 59*32kB (UE) 20*64kB (UME) 5*128kB (UME) 3*256kB (UE) 2*512kB (UM) 2*1024kB (UE) 2*2048kB (UE) 947*4096kB (M) = 3892496kB
[  221.788601][ T7396] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  221.833548][ T7396] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  221.843263][ T7396] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  221.858058][ T7396] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  221.868428][ T7396] 59253 total pagecache pages
[  221.877465][ T7396] 0 pages in swap cache
[  221.888950][ T7396] Free swap  = 124996kB
[  221.898896][ T7396] Total swap = 124996kB
[  221.903240][ T7396] 2097051 pages RAM
[  221.907198][ T7396] 0 pages HighMem/MovableOnly
[  221.915894][ T7396] 416926 pages reserved
[  221.924628][ T7396] 0 pages cma reserved
[  222.047164][ T7411] netlink: 14 bytes leftover after parsing attributes in process `syz.3.465'.
[  222.075783][ T7411] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.114399][ T7413] netlink: 64 bytes leftover after parsing attributes in process `syz.0.464'.
[  222.253433][ T7418] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.467'.
[  222.475787][ T7423] netlink: 16222 bytes leftover after parsing attributes in process `syz.1.469'.
[  223.490040][ T7438] netlink: 128 bytes leftover after parsing attributes in process `syz.3.477'.
[  223.767049][ T7442] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  223.822384][ T7444] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.479'.
[  223.925616][ T7447] netlink: 164 bytes leftover after parsing attributes in process `syz.1.480'.
[  224.223684][ T7457] netlink: 16222 bytes leftover after parsing attributes in process `syz.1.483'.
[  224.497284][ T2961] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  224.683745][ T7466] netlink: 128 bytes leftover after parsing attributes in process `syz.0.486'.
[  224.995535][ T7468] FAULT_INJECTION: forcing a failure.
[  224.995535][ T7468] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.011597][ T7468] CPU: 1 PID: 7468 Comm: syz.0.487 Not tainted syzkaller #0
[  225.019146][ T7468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  225.029393][ T7468] Call Trace:
[  225.032720][ T7468]  <TASK>
[  225.035694][ T7468]  dump_stack_lvl+0x18c/0x250
[  225.040494][ T7468]  ? show_regs_print_info+0x20/0x20
[  225.045930][ T7468]  ? load_image+0x420/0x420
[  225.050507][ T7468]  ? __might_fault+0xaa/0x120
[  225.055738][ T7468]  ? __lock_acquire+0x7d40/0x7d40
[  225.061006][ T7468]  should_fail_ex+0x39d/0x4d0
[  225.066563][ T7468]  _copy_from_user+0x2f/0xe0
[  225.071310][ T7468]  ___sys_sendmsg+0x1c7/0x360
[  225.076324][ T7468]  ? get_pid_task+0x20/0x1e0
[  225.080973][ T7468]  ? __sys_sendmsg+0x2a0/0x2a0
[  225.086112][ T7468]  ? __lock_acquire+0x7d40/0x7d40
[  225.091315][ T7468]  __se_sys_sendmsg+0x1c2/0x2b0
[  225.096234][ T7468]  ? __x64_sys_sendmsg+0x80/0x80
[  225.101248][ T7468]  ? lockdep_hardirqs_on+0x98/0x150
[  225.106500][ T7468]  do_syscall_64+0x55/0xa0
[  225.111095][ T7468]  ? clear_bhb_loop+0x40/0x90
[  225.115831][ T7468]  ? clear_bhb_loop+0x40/0x90
[  225.120667][ T7468]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  225.126933][ T7468] RIP: 0033:0x7f995399c819
[  225.131487][ T7468] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  225.151377][ T7468] RSP: 002b:00007f9954935028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  225.160512][ T7468] RAX: ffffffffffffffda RBX: 00007f9953c15fa0 RCX: 00007f995399c819
[  225.168698][ T7468] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 0000000000000003
[  225.176982][ T7468] RBP: 00007f9954935090 R08: 0000000000000000 R09: 0000000000000000
[  225.185058][ T7468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.193258][ T7468] R13: 00007f9953c16038 R14: 00007f9953c15fa0 R15: 00007fff159bf308
[  225.201460][ T7468]  </TASK>
[  225.364524][ T7471] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.489'.
[  225.691910][ T7479] netlink: 'syz.2.493': attribute type 10 has an invalid length.
[  225.725729][ T7479] bridge0: port 3(team0) entered disabled state
[  225.725950][ T5771] Bluetooth: hci0: unexpected event 0x2c length: 151 > 17
[  225.772477][ T7479] team0: left allmulticast mode
[  225.803302][ T7479] team_slave_0: left allmulticast mode
[  225.812522][ T7479] team_slave_1: left allmulticast mode
[  225.827549][ T7479] team0: left promiscuous mode
[  225.834399][ T7479] team_slave_0: left promiscuous mode
[  225.850631][ T7479] team_slave_1: left promiscuous mode
[  225.857837][ T7479] bridge0: port 3(team0) entered disabled state
[  225.920763][ T7479] 8021q: adding VLAN 0 to HW filter on device team0
[  225.930800][ T7479] bond0: (slave team0): Enslaving as an active interface with an up link
[  225.944424][ T7482] netlink: 'syz.1.492': attribute type 12 has an invalid length.
[  225.959296][ T7482] netlink: 'syz.1.492': attribute type 15 has an invalid length.
[  225.978655][ T7487] netlink: 128 bytes leftover after parsing attributes in process `syz.0.495'.
[  226.039529][ T7479] syz.2.493 (7479) used greatest stack depth: 18888 bytes left
[  226.716422][ T7501] netlink: 164 bytes leftover after parsing attributes in process `syz.0.499'.
[  227.107311][ T7506] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.501'.
[  227.440225][ T7516] netlink: 'syz.2.504': attribute type 9 has an invalid length.
[  227.448107][ T7516] netlink: 126588 bytes leftover after parsing attributes in process `syz.2.504'.
[  228.915304][ T7543] __nla_validate_parse: 1 callbacks suppressed
[  228.915323][ T7543] netlink: 164 bytes leftover after parsing attributes in process `syz.1.512'.
[  229.006150][ T7547] netlink: 128 bytes leftover after parsing attributes in process `syz.0.514'.
[  229.037335][ T7548] netlink: 'syz.3.513': attribute type 10 has an invalid length.
[  229.154384][ T7548] 8021q: adding VLAN 0 to HW filter on device team0
[  229.177029][ T7548] bond0: (slave team0): Enslaving as an active interface with an up link
[  229.994288][ T7561] netlink: 'syz.2.519': attribute type 1 has an invalid length.
[  230.011427][ T7561] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.519'.
[  230.057721][ T7561] netlink: 1 bytes leftover after parsing attributes in process `syz.2.519'.
[  230.093065][ T7568] netlink: 'syz.1.520': attribute type 9 has an invalid length.
[  230.107906][ T7570] netlink: 'syz.0.521': attribute type 12 has an invalid length.
[  230.108942][ T7568] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.520'.
[  230.118476][ T7570] netlink: 'syz.0.521': attribute type 15 has an invalid length.
[  230.433570][ T7575] netlink: 164 bytes leftover after parsing attributes in process `syz.1.523'.
[  230.626860][ T7577] netlink: 128 bytes leftover after parsing attributes in process `syz.2.524'.
[  230.662496][ T7579] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.525'.
[  230.916019][ T7583] netlink: 4 bytes leftover after parsing attributes in process `syz.2.526'.
[  231.596009][ T7596] netlink: 'syz.1.531': attribute type 1 has an invalid length.
[  231.638925][ T7596] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.531'.
[  232.370930][ T7617] netlink: 'syz.1.539': attribute type 28 has an invalid length.
[  232.408843][ T7617] netlink: 'syz.1.539': attribute type 29 has an invalid length.
[  233.718101][ T7628] netlink: 'syz.0.542': attribute type 1 has an invalid length.
[  234.120891][ T7634] __nla_validate_parse: 5 callbacks suppressed
[  234.120911][ T7634] netlink: 128 bytes leftover after parsing attributes in process `syz.3.543'.
[  234.582780][ T7638] netlink: 128 bytes leftover after parsing attributes in process `syz.0.554'.
[  237.118259][ T7667] netlink: 128 bytes leftover after parsing attributes in process `syz.1.556'.
[  237.423848][ T7670] netlink: 'syz.3.557': attribute type 1 has an invalid length.
[  237.500490][ T7670] netlink: 191376 bytes leftover after parsing attributes in process `syz.3.557'.
[  239.390335][ T7678] hsr0: entered promiscuous mode
[  239.406041][ T7678] hsr0: entered allmulticast mode
[  239.439041][ T7678] hsr_slave_0: entered allmulticast mode
[  239.445112][ T7678] hsr_slave_1: entered allmulticast mode
[  239.510593][ T7689] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.563'.
[  240.092906][ T7695] netlink: 16222 bytes leftover after parsing attributes in process `syz.2.565'.
[  241.414627][ T7703] netlink: 128 bytes leftover after parsing attributes in process `syz.3.567'.
[  242.410637][ T7715] netlink: 'syz.2.574': attribute type 28 has an invalid length.
[  242.418734][ T7715] netlink: 'syz.2.574': attribute type 29 has an invalid length.
[  242.449366][ T7715] netlink: 132 bytes leftover after parsing attributes in process `syz.2.574'.
[  243.592835][ T7734] netlink: 16222 bytes leftover after parsing attributes in process `syz.3.577'.
[  244.902143][ T7743] netlink: 128 bytes leftover after parsing attributes in process `syz.0.580'.
[  247.231445][ T7761] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.593'.
[  247.261087][ T7761] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.593'.
[  248.020713][ T7772] netlink: 16222 bytes leftover after parsing attributes in process `syz.3.589'.
[  248.392133][ T7774] netlink: 128 bytes leftover after parsing attributes in process `syz.0.590'.
[  249.131899][ T7780] netlink: 4 bytes leftover after parsing attributes in process `syz.1.592'.
[  249.519139][ T7786] netlink: 'syz.0.591': attribute type 28 has an invalid length.
[  249.580682][ T7786] netlink: 'syz.0.591': attribute type 29 has an invalid length.
[  249.588594][ T7786] netlink: 132 bytes leftover after parsing attributes in process `syz.0.591'.
[  250.964630][ T7807] netlink: 'syz.3.599': attribute type 4 has an invalid length.
[  250.974676][ T7807] netlink: 144 bytes leftover after parsing attributes in process `syz.3.599'.
[  250.993718][ T7808] netlink: 'syz.3.599': attribute type 4 has an invalid length.
[  251.009241][ T7807] netlink: 144 bytes leftover after parsing attributes in process `syz.3.599'.
[  251.085944][ T7812] netlink: 128 bytes leftover after parsing attributes in process `syz.1.600'.
[  252.322442][ T7837] netlink: 128 bytes leftover after parsing attributes in process `syz.1.611'.
[  253.035049][ T7851] netlink: 'syz.0.617': attribute type 33 has an invalid length.
[  253.114099][ T7851] netlink: 152 bytes leftover after parsing attributes in process `syz.0.617'.
[  253.185100][ T7851] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  253.587584][ T7865] netlink: 128 bytes leftover after parsing attributes in process `syz.0.623'.
[  254.268506][ T7881] netlink: 'syz.0.629': attribute type 12 has an invalid length.
[  254.278294][ T7881] netlink: 'syz.0.629': attribute type 15 has an invalid length.
[  254.464241][ T7883] netlink: 'syz.2.630': attribute type 33 has an invalid length.
[  254.509147][ T7883] netlink: 152 bytes leftover after parsing attributes in process `syz.2.630'.
[  254.546761][ T7883] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  254.917430][ T7892] netlink: 128 bytes leftover after parsing attributes in process `syz.2.632'.
[  255.199031][ T7896] netlink: 1039 bytes leftover after parsing attributes in process `syz.2.634'.
[  255.232132][ T7896] bridge_slave_1: default FDB implementation only supports local addresses
[  255.275230][ T7899] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.635'.
[  256.224703][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  256.233975][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  256.752362][ T7924] netlink: 128 bytes leftover after parsing attributes in process `syz.1.642'.
[  257.389129][ T7933] netlink: 'syz.3.653': attribute type 12 has an invalid length.
[  257.397164][ T7933] netlink: 'syz.3.653': attribute type 15 has an invalid length.
[  257.872140][ T7942] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.647'.
[  258.964643][ T7959] netlink: 128 bytes leftover after parsing attributes in process `syz.2.652'.
[  259.230471][ T7963] FAULT_INJECTION: forcing a failure.
[  259.230471][ T7963] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.265770][ T7963] CPU: 0 PID: 7963 Comm: syz.0.655 Not tainted syzkaller #0
[  259.273163][ T7963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  259.283269][ T7963] Call Trace:
[  259.286715][ T7963]  <TASK>
[  259.289694][ T7963]  dump_stack_lvl+0x18c/0x250
[  259.294522][ T7963]  ? show_regs_print_info+0x20/0x20
[  259.299882][ T7963]  ? load_image+0x420/0x420
[  259.304634][ T7963]  ? __lock_acquire+0x7d40/0x7d40
[  259.309789][ T7963]  ? __virt_addr_valid+0x18c/0x540
[  259.315101][ T7963]  should_fail_ex+0x39d/0x4d0
[  259.319832][ T7963]  _copy_from_user+0x2f/0xe0
[  259.324446][ T7963]  bpf_test_init+0xde/0x140
[  259.329056][ T7963]  bpf_prog_test_run_xdp+0x4d1/0x10e0
[  259.334457][ T7963]  ? dev_put+0x80/0x80
[  259.338548][ T7963]  ? dev_put+0x80/0x80
[  259.342666][ T7963]  bpf_prog_test_run+0x321/0x390
[  259.347706][ T7963]  __sys_bpf+0x49d/0x890
[  259.351968][ T7963]  ? bpf_link_show_fdinfo+0x390/0x390
[  259.357457][ T7963]  ? lock_chain_count+0x20/0x20
[  259.362579][ T7963]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  259.369206][ T7963]  __x64_sys_bpf+0x7c/0x90
[  259.373643][ T7963]  do_syscall_64+0x55/0xa0
[  259.378068][ T7963]  ? clear_bhb_loop+0x40/0x90
[  259.382762][ T7963]  ? clear_bhb_loop+0x40/0x90
[  259.387459][ T7963]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  259.393424][ T7963] RIP: 0033:0x7f995399c819
[  259.397875][ T7963] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  259.417520][ T7963] RSP: 002b:00007f9954935028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  259.425986][ T7963] RAX: ffffffffffffffda RBX: 00007f9953c15fa0 RCX: 00007f995399c819
[  259.433991][ T7963] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  259.442067][ T7963] RBP: 00007f9954935090 R08: 0000000000000000 R09: 0000000000000000
[  259.450485][ T7963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.458560][ T7963] R13: 00007f9953c16038 R14: 00007f9953c15fa0 R15: 00007fff159bf308
[  259.466736][ T7963]  </TASK>
[  260.344333][ T7981] netlink: 128 bytes leftover after parsing attributes in process `syz.0.662'.
[  260.575480][ T7990] FAULT_INJECTION: forcing a failure.
[  260.575480][ T7990] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  260.589976][ T7990] CPU: 0 PID: 7990 Comm: syz.0.666 Not tainted syzkaller #0
[  260.597334][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  260.607451][ T7990] Call Trace:
[  260.610782][ T7990]  <TASK>
[  260.613752][ T7990]  dump_stack_lvl+0x18c/0x250
[  260.618576][ T7990]  ? show_regs_print_info+0x20/0x20
[  260.624055][ T7990]  ? load_image+0x420/0x420
[  260.628614][ T7990]  ? __might_fault+0xaa/0x120
[  260.633429][ T7990]  ? __lock_acquire+0x7d40/0x7d40
[  260.638498][ T7990]  should_fail_ex+0x39d/0x4d0
[  260.643291][ T7990]  _copy_from_user+0x2f/0xe0
[  260.647933][ T7990]  do_ip_setsockopt+0x3d0/0x2df0
[  260.652950][ T7990]  ? ip_sock_set_pktinfo+0x30/0x30
[  260.658139][ T7990]  ? aa_sk_perm+0x83c/0x970
[  260.662684][ T7990]  ? __fget_files+0x28/0x4b0
[  260.667420][ T7990]  ? aa_af_perm+0x330/0x330
[  260.671980][ T7990]  ? __fget_files+0x28/0x4b0
[  260.676604][ T7990]  ? __fget_files+0x28/0x4b0
[  260.681225][ T7990]  ? aa_sock_opt_perm+0x74/0x100
[  260.686281][ T7990]  ip_setsockopt+0x61/0x110
[  260.690804][ T7990]  ? sock_common_recvmsg+0x190/0x190
[  260.696199][ T7990]  do_sock_setsockopt+0x175/0x1a0
[  260.701292][ T7990]  ? __fdget+0x180/0x210
[  260.705599][ T7990]  __x64_sys_setsockopt+0x182/0x200
[  260.710862][ T7990]  do_syscall_64+0x55/0xa0
[  260.715333][ T7990]  ? clear_bhb_loop+0x40/0x90
[  260.720065][ T7990]  ? clear_bhb_loop+0x40/0x90
[  260.724861][ T7990]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  260.730779][ T7990] RIP: 0033:0x7f995399c819
[  260.735217][ T7990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  260.755411][ T7990] RSP: 002b:00007f9954935028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  260.763952][ T7990] RAX: ffffffffffffffda RBX: 00007f9953c15fa0 RCX: 00007f995399c819
[  260.772039][ T7990] RDX: 0000000000000033 RSI: 0000000000000000 RDI: 0000000000000003
[  260.780222][ T7990] RBP: 00007f9954935090 R08: 0000000000000108 R09: 0000000000000000
[  260.788255][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.796359][ T7990] R13: 00007f9953c16038 R14: 00007f9953c15fa0 R15: 00007fff159bf308
[  260.804757][ T7990]  </TASK>
[  261.612252][ T8007] netlink: 'syz.1.673': attribute type 12 has an invalid length.
[  261.622105][ T8007] netlink: 'syz.1.673': attribute type 15 has an invalid length.
[  268.631982][ T8070] netlink: 132 bytes leftover after parsing attributes in process `syz.1.694'.
[  268.780086][ T8076] netlink: 'syz.3.696': attribute type 12 has an invalid length.
[  268.792795][ T8076] netlink: 'syz.3.696': attribute type 15 has an invalid length.
[  269.415396][ T8085] FAULT_INJECTION: forcing a failure.
[  269.415396][ T8085] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  269.431625][ T8085] CPU: 0 PID: 8085 Comm: syz.2.699 Not tainted syzkaller #0
[  269.438988][ T8085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  269.449086][ T8085] Call Trace:
[  269.452609][ T8085]  <TASK>
[  269.455581][ T8085]  dump_stack_lvl+0x18c/0x250
[  269.460505][ T8085]  ? show_regs_print_info+0x20/0x20
[  269.465870][ T8085]  ? load_image+0x420/0x420
[  269.470582][ T8085]  ? __might_fault+0xaa/0x120
[  269.475473][ T8085]  ? __lock_acquire+0x7d40/0x7d40
[  269.480542][ T8085]  should_fail_ex+0x39d/0x4d0
[  269.485293][ T8085]  _copy_from_user+0x2f/0xe0
[  269.490132][ T8085]  bpf_prog_test_run_skb+0x266/0x12b0
[  269.495646][ T8085]  ? lockdep_hardirqs_on+0x98/0x150
[  269.500993][ T8085]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  269.507186][ T8085]  ? cpu_online+0x60/0x60
[  269.511692][ T8085]  ? cpu_online+0x60/0x60
[  269.516069][ T8085]  bpf_prog_test_run+0x321/0x390
[  269.521069][ T8085]  __sys_bpf+0x49d/0x890
[  269.525537][ T8085]  ? bpf_link_show_fdinfo+0x390/0x390
[  269.530999][ T8085]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  269.537570][ T8085]  __x64_sys_bpf+0x7c/0x90
[  269.542053][ T8085]  do_syscall_64+0x55/0xa0
[  269.546531][ T8085]  ? clear_bhb_loop+0x40/0x90
[  269.551286][ T8085]  ? clear_bhb_loop+0x40/0x90
[  269.556114][ T8085]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  269.562066][ T8085] RIP: 0033:0x7fc222d9c819
[  269.566547][ T8085] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  269.586345][ T8085] RSP: 002b:00007fc223cb1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  269.594801][ T8085] RAX: ffffffffffffffda RBX: 00007fc223015fa0 RCX: 00007fc222d9c819
[  269.602895][ T8085] RDX: 0000000000000050 RSI: 00002000000007c0 RDI: 000000000000000a
[  269.610888][ T8085] RBP: 00007fc223cb1090 R08: 0000000000000000 R09: 0000000000000000
[  269.618883][ T8085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.626862][ T8085] R13: 00007fc223016038 R14: 00007fc223015fa0 R15: 00007ffe07fc1958
[  269.634861][ T8085]  </TASK>
[  269.732250][ T8091] netlink: 'syz.0.701': attribute type 8 has an invalid length.
[  269.759622][ T8091] netlink: 156 bytes leftover after parsing attributes in process `syz.0.701'.
[  269.899216][ T8095] sctp: [Deprecated]: syz.2.703 (pid 8095) Use of struct sctp_assoc_value in delayed_ack socket option.
[  269.899216][ T8095] Use struct sctp_sack_info instead
[  272.382616][ T8132] netlink: 'syz.2.717': attribute type 6 has an invalid length.
[  272.407634][ T8132] netlink: 164 bytes leftover after parsing attributes in process `syz.2.717'.
[  273.541252][ T8144] netlink: 'syz.0.720': attribute type 21 has an invalid length.
[  273.564663][ T8142] netlink: 'syz.0.720': attribute type 21 has an invalid length.
[  273.757222][ T8153] netlink: 116 bytes leftover after parsing attributes in process `syz.2.723'.
[  273.795540][ T8150] sctp: [Deprecated]: syz.1.721 (pid 8150) Use of struct sctp_assoc_value in delayed_ack socket option.
[  273.795540][ T8150] Use struct sctp_sack_info instead
[  274.003036][ T8162] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.726'.
[  274.328278][ T8170] netlink: 14 bytes leftover after parsing attributes in process `syz.1.727'.
[  274.377349][ T8170] veth0_macvtap: left promiscuous mode
[  274.838110][ T8178] FAULT_INJECTION: forcing a failure.
[  274.838110][ T8178] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.869678][ T8178] CPU: 0 PID: 8178 Comm: syz.3.730 Not tainted syzkaller #0
[  274.877054][ T8178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  274.887248][ T8178] Call Trace:
[  274.890571][ T8178]  <TASK>
[  274.893635][ T8178]  dump_stack_lvl+0x18c/0x250
[  274.898483][ T8178]  ? show_regs_print_info+0x20/0x20
[  274.903794][ T8178]  ? load_image+0x420/0x420
[  274.908793][ T8178]  ? __lock_acquire+0x7d40/0x7d40
[  274.913913][ T8178]  ? snprintf+0xe9/0x140
[  274.918219][ T8178]  should_fail_ex+0x39d/0x4d0
[  274.922963][ T8178]  _copy_to_user+0x2f/0xa0
[  274.927528][ T8178]  simple_read_from_buffer+0xe7/0x150
[  274.933130][ T8178]  proc_fail_nth_read+0x1e8/0x260
[  274.938219][ T8178]  ? proc_fault_inject_write+0x360/0x360
[  274.943920][ T8178]  ? fsnotify_perm+0x271/0x5e0
[  274.948736][ T8178]  ? proc_fault_inject_write+0x360/0x360
[  274.954516][ T8178]  vfs_read+0x28b/0x970
[  274.958770][ T8178]  ? kernel_read+0x1e0/0x1e0
[  274.963513][ T8178]  ? __fget_files+0x28/0x4b0
[  274.968177][ T8178]  ? __fget_files+0x28/0x4b0
[  274.972824][ T8178]  ? __fget_files+0x43d/0x4b0
[  274.977743][ T8178]  ? __fdget_pos+0x2a3/0x330
[  274.982426][ T8178]  ? ksys_read+0x75/0x260
[  274.986793][ T8178]  ksys_read+0x150/0x260
[  274.991063][ T8178]  ? vfs_write+0x990/0x990
[  274.995593][ T8178]  ? lockdep_hardirqs_on+0x98/0x150
[  275.000847][ T8178]  do_syscall_64+0x55/0xa0
[  275.005299][ T8178]  ? clear_bhb_loop+0x40/0x90
[  275.010009][ T8178]  ? clear_bhb_loop+0x40/0x90
[  275.014713][ T8178]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  275.020626][ T8178] RIP: 0033:0x7f0a16b5d04e
[  275.025084][ T8178] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  275.044825][ T8178] RSP: 002b:00007f0a17ae7fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  275.053378][ T8178] RAX: ffffffffffffffda RBX: 00007f0a17ae86c0 RCX: 00007f0a16b5d04e
[  275.061377][ T8178] RDX: 000000000000000f RSI: 00007f0a17ae80a0 RDI: 0000000000000004
[  275.069365][ T8178] RBP: 00007f0a17ae8090 R08: 0000000000000000 R09: 0000000000000000
[  275.077378][ T8178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.085396][ T8178] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  275.093425][ T8178]  </TASK>
[  275.126261][ T8182] netlink: 116 bytes leftover after parsing attributes in process `syz.2.732'.
[  275.509638][ T8194] netlink: 65047 bytes leftover after parsing attributes in process `syz.2.736'.
[  275.665334][ T8196] sctp: [Deprecated]: syz.0.735 (pid 8196) Use of struct sctp_assoc_value in delayed_ack socket option.
[  275.665334][ T8196] Use struct sctp_sack_info instead
[  275.827611][ T8203] netlink: 16410 bytes leftover after parsing attributes in process `syz.2.738'.
[  275.957474][ T8207] FAULT_INJECTION: forcing a failure.
[  275.957474][ T8207] name failslab, interval 1, probability 0, space 0, times 0
[  275.989719][ T8207] CPU: 1 PID: 8207 Comm: syz.1.741 Not tainted syzkaller #0
[  275.997116][ T8207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  276.007293][ T8207] Call Trace:
[  276.010598][ T8207]  <TASK>
[  276.013547][ T8207]  dump_stack_lvl+0x18c/0x250
[  276.018266][ T8207]  ? show_regs_print_info+0x20/0x20
[  276.023574][ T8207]  ? load_image+0x420/0x420
[  276.028108][ T8207]  ? __might_sleep+0xe0/0xe0
[  276.032720][ T8207]  ? __lock_acquire+0x7d40/0x7d40
[  276.037761][ T8207]  ? __put_user_ns+0x50/0x50
[  276.042378][ T8207]  should_fail_ex+0x39d/0x4d0
[  276.047091][ T8207]  should_failslab+0x9/0x20
[  276.051728][ T8207]  slab_pre_alloc_hook+0x59/0x310
[  276.056952][ T8207]  ? rxrpc_alloc_bundle+0x78/0x580
[  276.062170][ T8207]  __kmem_cache_alloc_node+0x53/0x250
[  276.067599][ T8207]  ? do_raw_spin_lock+0x11f/0x2c0
[  276.072808][ T8207]  ? rxrpc_alloc_bundle+0x78/0x580
[  276.077979][ T8207]  kmalloc_trace+0x2a/0xe0
[  276.082530][ T8207]  rxrpc_alloc_bundle+0x78/0x580
[  276.087619][ T8207]  rxrpc_look_up_bundle+0x395/0x930
[  276.093065][ T8207]  ? _raw_spin_unlock+0x28/0x40
[  276.098047][ T8207]  rxrpc_new_client_call+0xbcd/0x1410
[  276.103549][ T8207]  rxrpc_do_sendmsg+0xc42/0x1280
[  276.108520][ T8207]  ? rxrpc_propose_abort+0x200/0x200
[  276.113925][ T8207]  ? rxrpc_sendmsg+0x391/0x5b0
[  276.118706][ T8207]  ? rxrpc_getsockopt+0x150/0x150
[  276.123837][ T8207]  ____sys_sendmsg+0x5ba/0x960
[  276.128626][ T8207]  ? __lock_acquire+0x7d40/0x7d40
[  276.133680][ T8207]  ? __sys_sendmsg_sock+0x30/0x30
[  276.138724][ T8207]  ? __import_iovec+0x5f2/0x850
[  276.143687][ T8207]  ? import_iovec+0x73/0xa0
[  276.148209][ T8207]  ___sys_sendmsg+0x2a6/0x360
[  276.152986][ T8207]  ? get_pid_task+0x20/0x1e0
[  276.157687][ T8207]  ? __sys_sendmsg+0x2a0/0x2a0
[  276.162489][ T8207]  ? __lock_acquire+0x7d40/0x7d40
[  276.167553][ T8207]  __se_sys_sendmsg+0x1c2/0x2b0
[  276.172420][ T8207]  ? __x64_sys_sendmsg+0x80/0x80
[  276.177404][ T8207]  ? lockdep_hardirqs_on+0x98/0x150
[  276.182626][ T8207]  do_syscall_64+0x55/0xa0
[  276.187052][ T8207]  ? clear_bhb_loop+0x40/0x90
[  276.192096][ T8207]  ? clear_bhb_loop+0x40/0x90
[  276.196828][ T8207]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  276.202829][ T8207] RIP: 0033:0x7fc263f9c819
[  276.207268][ T8207] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  276.226886][ T8207] RSP: 002b:00007fc264e2e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  276.235318][ T8207] RAX: ffffffffffffffda RBX: 00007fc264215fa0 RCX: 00007fc263f9c819
[  276.243304][ T8207] RDX: 000000000000ff00 RSI: 0000200000000000 RDI: 0000000000000003
[  276.251288][ T8207] RBP: 00007fc264e2e090 R08: 0000000000000000 R09: 0000000000000000
[  276.259273][ T8207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  276.267344][ T8207] R13: 00007fc264216038 R14: 00007fc264215fa0 R15: 00007ffc6bf26758
[  276.275578][ T8207]  </TASK>
[  276.901520][ T8227] netlink: 'syz.3.747': attribute type 6 has an invalid length.
[  276.989056][ T8227] netlink: 164 bytes leftover after parsing attributes in process `syz.3.747'.
[  277.035514][ T8224] netlink: 14 bytes leftover after parsing attributes in process `syz.0.744'.
[  278.733835][ T8262] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.757'.
[  278.868571][ T8265] netlink: 168 bytes leftover after parsing attributes in process `syz.1.758'.
[  279.214810][ T8268] netlink: 'syz.2.760': attribute type 3 has an invalid length.
[  279.241321][ T8268] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.760'.
[  280.560362][ T8282] netlink: 'syz.1.763': attribute type 6 has an invalid length.
[  280.606680][ T8282] netlink: 164 bytes leftover after parsing attributes in process `syz.1.763'.
[  280.677210][ T8293] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.767'.
[  282.113558][ T8309] veth1_macvtap: left promiscuous mode
[  282.127720][ T8309] macsec0: entered allmulticast mode
[  282.170229][ T8309] veth1_to_bond: entered promiscuous mode
[  282.199057][ T8309] veth1_to_bond: entered allmulticast mode
[  282.230408][ T8312] netlink: 'syz.0.771': attribute type 10 has an invalid length.
[  282.742119][ T8335] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.779'.
[  283.091421][ T8340] IPv6: NLM_F_CREATE should be specified when creating new route
[  283.107949][ T8340] netlink: 1 bytes leftover after parsing attributes in process `syz.3.780'.
[  283.467663][ T8347] netlink: 126588 bytes leftover after parsing attributes in process `syz.1.781'.
[  283.559950][ T8346] FAULT_INJECTION: forcing a failure.
[  283.559950][ T8346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.596166][ T8346] CPU: 1 PID: 8346 Comm: syz.2.784 Not tainted syzkaller #0
[  283.603598][ T8346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  283.613830][ T8346] Call Trace:
[  283.617286][ T8346]  <TASK>
[  283.620365][ T8346]  dump_stack_lvl+0x18c/0x250
[  283.625206][ T8346]  ? show_regs_print_info+0x20/0x20
[  283.630533][ T8346]  ? load_image+0x420/0x420
[  283.635283][ T8346]  ? __might_fault+0xaa/0x120
[  283.640122][ T8346]  ? __lock_acquire+0x7d40/0x7d40
[  283.645330][ T8346]  should_fail_ex+0x39d/0x4d0
[  283.650207][ T8346]  _copy_from_user+0x2f/0xe0
[  283.654931][ T8346]  bpf_prog_test_run_skb+0x266/0x12b0
[  283.660447][ T8346]  ? __fget_files+0x28/0x4b0
[  283.665154][ T8346]  ? __fget_files+0x28/0x4b0
[  283.670049][ T8346]  ? __fget_files+0x43d/0x4b0
[  283.674904][ T8346]  ? cpu_online+0x60/0x60
[  283.679428][ T8346]  bpf_prog_test_run+0x321/0x390
[  283.684484][ T8346]  __sys_bpf+0x49d/0x890
[  283.688845][ T8346]  ? bpf_link_show_fdinfo+0x390/0x390
[  283.694594][ T8346]  ? lock_chain_count+0x20/0x20
[  283.699612][ T8346]  __x64_sys_bpf+0x7c/0x90
[  283.704182][ T8346]  do_syscall_64+0x55/0xa0
[  283.708788][ T8346]  ? clear_bhb_loop+0x40/0x90
[  283.713768][ T8346]  ? clear_bhb_loop+0x40/0x90
[  283.718858][ T8346]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  283.724855][ T8346] RIP: 0033:0x7fc222d9c819
[  283.729394][ T8346] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  283.749566][ T8346] RSP: 002b:00007fc223cb1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  283.758319][ T8346] RAX: ffffffffffffffda RBX: 00007fc223015fa0 RCX: 00007fc222d9c819
[  283.766667][ T8346] RDX: 000000000000004c RSI: 0000200000000240 RDI: 000000000000000a
[  283.775204][ T8346] RBP: 00007fc223cb1090 R08: 0000000000000000 R09: 0000000000000000
[  283.783308][ T8346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.791564][ T8346] R13: 00007fc223016038 R14: 00007fc223015fa0 R15: 00007ffe07fc1958
[  283.800170][ T8346]  </TASK>
[  284.800509][ T8372] netlink: 16410 bytes leftover after parsing attributes in process `syz.2.791'.
[  284.846049][ T8374] netlink: 132 bytes leftover after parsing attributes in process `syz.3.792'.
[  285.539416][ T8387] FAULT_INJECTION: forcing a failure.
[  285.539416][ T8387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  285.572776][ T8387] CPU: 0 PID: 8387 Comm: syz.3.798 Not tainted syzkaller #0
[  285.580351][ T8387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  285.591158][ T8387] Call Trace:
[  285.594672][ T8387]  <TASK>
[  285.597734][ T8387]  dump_stack_lvl+0x18c/0x250
[  285.602466][ T8387]  ? show_regs_print_info+0x20/0x20
[  285.607797][ T8387]  ? load_image+0x420/0x420
[  285.612344][ T8387]  ? __might_fault+0xaa/0x120
[  285.617058][ T8387]  ? __lock_acquire+0x7d40/0x7d40
[  285.622123][ T8387]  should_fail_ex+0x39d/0x4d0
[  285.626847][ T8387]  _copy_from_user+0x2f/0xe0
[  285.631487][ T8387]  __sys_bpf+0x23e/0x890
[  285.635969][ T8387]  ? bpf_link_show_fdinfo+0x390/0x390
[  285.641552][ T8387]  ? lock_chain_count+0x20/0x20
[  285.646548][ T8387]  __x64_sys_bpf+0x7c/0x90
[  285.651015][ T8387]  do_syscall_64+0x55/0xa0
[  285.655456][ T8387]  ? clear_bhb_loop+0x40/0x90
[  285.660438][ T8387]  ? clear_bhb_loop+0x40/0x90
[  285.665160][ T8387]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  285.671263][ T8387] RIP: 0033:0x7f0a16b9c819
[  285.675738][ T8387] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  285.695716][ T8387] RSP: 002b:00007f0a17ae8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  285.704241][ T8387] RAX: ffffffffffffffda RBX: 00007f0a16e15fa0 RCX: 00007f0a16b9c819
[  285.712330][ T8387] RDX: 0000000000000020 RSI: 0000200000000080 RDI: 0000000000000003
[  285.720318][ T8387] RBP: 00007f0a17ae8090 R08: 0000000000000000 R09: 0000000000000000
[  285.728739][ T8387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.736915][ T8387] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  285.745011][ T8387]  </TASK>
[  286.700043][ T8411] netlink: 'syz.0.807': attribute type 17 has an invalid length.
[  286.725954][ T8411] netlink: 148 bytes leftover after parsing attributes in process `syz.0.807'.
[  286.765959][ T8412] netlink: 16410 bytes leftover after parsing attributes in process `syz.1.806'.
[  287.222651][ T8424] netlink: 'syz.2.811': attribute type 10 has an invalid length.
[  287.263924][ T8424] team0: Device ipvlan1 failed to register rx_handler
[  287.365533][ T8424] netlink: 'syz.2.811': attribute type 10 has an invalid length.
[  287.374003][ T8424] netlink: 40 bytes leftover after parsing attributes in process `syz.2.811'.
[  287.385438][ T8424] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  288.533237][ T8465] netlink: 16410 bytes leftover after parsing attributes in process `syz.1.825'.
[  289.804898][ T8487] netlink: 'syz.0.835': attribute type 4 has an invalid length.
[  289.816532][ T8487] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.835'.
[  290.825052][ T8498] netlink: 16410 bytes leftover after parsing attributes in process `syz.2.839'.
[  294.241689][ T8532] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.851'.
[  294.606161][ T8544] netlink: 132 bytes leftover after parsing attributes in process `syz.2.857'.
[  295.488926][ T8558] netlink: 'syz.0.861': attribute type 21 has an invalid length.
[  295.874207][ T8573] netlink: 'syz.3.866': attribute type 5 has an invalid length.
[  295.998404][ T8577] FAULT_INJECTION: forcing a failure.
[  295.998404][ T8577] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.020378][ T8577] CPU: 0 PID: 8577 Comm: syz.1.869 Not tainted syzkaller #0
[  296.027782][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  296.037870][ T8577] Call Trace:
[  296.041186][ T8577]  <TASK>
[  296.044157][ T8577]  dump_stack_lvl+0x18c/0x250
[  296.048897][ T8577]  ? show_regs_print_info+0x20/0x20
[  296.054145][ T8577]  ? load_image+0x420/0x420
[  296.058719][ T8577]  ? __might_fault+0xaa/0x120
[  296.063453][ T8577]  ? __lock_acquire+0x7d40/0x7d40
[  296.068534][ T8577]  should_fail_ex+0x39d/0x4d0
[  296.073274][ T8577]  _copy_from_user+0x2f/0xe0
[  296.078055][ T8577]  bpf_prog_test_run_skb+0x266/0x12b0
[  296.083620][ T8577]  ? lockdep_hardirqs_on+0x98/0x150
[  296.088880][ T8577]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  296.095107][ T8577]  ? cpu_online+0x60/0x60
[  296.099535][ T8577]  ? cpu_online+0x60/0x60
[  296.103938][ T8577]  bpf_prog_test_run+0x321/0x390
[  296.109018][ T8577]  __sys_bpf+0x49d/0x890
[  296.113404][ T8577]  ? bpf_link_show_fdinfo+0x390/0x390
[  296.118940][ T8577]  ? lock_chain_count+0x20/0x20
[  296.123955][ T8577]  __x64_sys_bpf+0x7c/0x90
[  296.128680][ T8577]  do_syscall_64+0x55/0xa0
[  296.133187][ T8577]  ? clear_bhb_loop+0x40/0x90
[  296.137898][ T8577]  ? clear_bhb_loop+0x40/0x90
[  296.142609][ T8577]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  296.148621][ T8577] RIP: 0033:0x7fc263f9c819
[  296.153058][ T8577] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.172860][ T8577] RSP: 002b:00007fc264e2e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  296.181294][ T8577] RAX: ffffffffffffffda RBX: 00007fc264215fa0 RCX: 00007fc263f9c819
[  296.189298][ T8577] RDX: 0000000000000050 RSI: 00002000000007c0 RDI: 000000000000000a
[  296.197540][ T8577] RBP: 00007fc264e2e090 R08: 0000000000000000 R09: 0000000000000000
[  296.205832][ T8577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.213905][ T8577] R13: 00007fc264216038 R14: 00007fc264215fa0 R15: 00007ffc6bf26758
[  296.221990][ T8577]  </TASK>
[  296.322608][ T8580] netlink: 16410 bytes leftover after parsing attributes in process `syz.2.870'.
[  297.360334][ T8590] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.882'.
[  298.378322][ T8612] netlink: 'syz.0.879': attribute type 4 has an invalid length.
[  298.389002][ T8614] bridge0: port 3(veth0_to_bridge) entered blocking state
[  298.401924][ T8614] bridge0: port 3(veth0_to_bridge) entered disabled state
[  298.422840][ T8614] veth0_to_bridge: entered allmulticast mode
[  298.439326][ T8614] veth0_to_bridge: entered promiscuous mode
[  298.463563][ T8614] bridge0: port 3(veth0_to_bridge) entered blocking state
[  298.472421][ T8614] bridge0: port 3(veth0_to_bridge) entered forwarding state
[  298.666606][ T8623] netlink: 'syz.3.886': attribute type 2 has an invalid length.
[  298.792439][ T8626] netlink: 184 bytes leftover after parsing attributes in process `syz.3.887'.
[  298.821343][ T8619] netlink: 'syz.0.884': attribute type 5 has an invalid length.
[  299.128614][ T8632] netlink: 16410 bytes leftover after parsing attributes in process `syz.3.888'.
[  300.095650][ T8643] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.894'.
[  300.126308][ T8643] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô'
[  300.142186][ T8643] CPU: 1 PID: 8643 Comm: syz.0.894 Not tainted syzkaller #0
[  300.149559][ T8643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  300.159717][ T8643] Call Trace:
[  300.163044][ T8643]  <TASK>
[  300.166102][ T8643]  dump_stack_lvl+0x18c/0x250
[  300.170834][ T8643]  ? show_regs_print_info+0x20/0x20
[  300.176090][ T8643]  ? load_image+0x420/0x420
[  300.180669][ T8643]  sysfs_warn_dup+0x8e/0xa0
[  300.185227][ T8643]  sysfs_do_create_link_sd+0xc0/0x110
[  300.190848][ T8643]  device_add_class_symlinks+0x1cf/0x240
[  300.196551][ T8643]  device_add+0x507/0xc20
[  300.200937][ T8643]  wiphy_register+0x1dad/0x2ae0
[  300.205862][ T8643]  ? cfg80211_event_work+0x40/0x40
[  300.211141][ T8643]  ? minstrel_ht_alloc+0x88a/0x990
[  300.216286][ T8643]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  300.222383][ T8643]  ieee80211_register_hw+0x3464/0x4250
[  300.227890][ T8643]  ? ieee80211_tasklet_handler+0x20/0x20
[  300.233636][ T8643]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  300.239566][ T8643]  ? __debug_object_init+0xec/0x450
[  300.244794][ T8643]  ? __asan_memset+0x22/0x40
[  300.249408][ T8643]  ? __hrtimer_init+0x186/0x270
[  300.254278][ T8643]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  300.260297][ T8643]  ? mac80211_hwsim_free+0x220/0x220
[  300.265592][ T8643]  ? rcu_is_watching+0x15/0xb0
[  300.270378][ T8643]  ? kstrndup+0xbd/0x140
[  300.274646][ T8643]  hwsim_new_radio_nl+0xdc9/0x1a90
[  300.279791][ T8643]  ? __nla_validate+0x50/0x50
[  300.284677][ T8643]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  300.291034][ T8643]  ? __nla_parse+0x40/0x50
[  300.295554][ T8643]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  300.302085][ T8643]  genl_family_rcv_msg_doit+0x211/0x310
[  300.308159][ T8643]  ? end_current_label_crit_section+0x170/0x170
[  300.314480][ T8643]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  300.320683][ T8643]  ? bpf_lsm_capable+0x9/0x10
[  300.325561][ T8643]  ? security_capable+0x89/0xb0
[  300.330442][ T8643]  genl_rcv_msg+0x619/0x7a0
[  300.335057][ T8643]  ? genl_bind+0x360/0x360
[  300.339584][ T8643]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  300.345971][ T8643]  netlink_rcv_skb+0x241/0x4d0
[  300.350845][ T8643]  ? genl_bind+0x360/0x360
[  300.355286][ T8643]  ? netlink_ack+0x1180/0x1180
[  300.360115][ T8643]  ? __lock_acquire+0x7d40/0x7d40
[  300.365202][ T8643]  ? down_read+0x1ac/0x2e0
[  300.369838][ T8643]  genl_rcv+0x28/0x40
[  300.373963][ T8643]  netlink_unicast+0x751/0x8d0
[  300.379020][ T8643]  netlink_sendmsg+0x8d0/0xbf0
[  300.383853][ T8643]  ? netlink_getsockopt+0x590/0x590
[  300.389271][ T8643]  ? aa_sock_msg_perm+0x94/0x150
[  300.394321][ T8643]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  300.399653][ T8643]  ? security_socket_sendmsg+0x80/0xa0
[  300.405260][ T8643]  ? netlink_getsockopt+0x590/0x590
[  300.410594][ T8643]  ____sys_sendmsg+0x5ba/0x960
[  300.415388][ T8643]  ? __asan_memset+0x22/0x40
[  300.420004][ T8643]  ? __sys_sendmsg_sock+0x30/0x30
[  300.425045][ T8643]  ? __import_iovec+0x5f2/0x850
[  300.430060][ T8643]  ? import_iovec+0x73/0xa0
[  300.434716][ T8643]  ___sys_sendmsg+0x2a6/0x360
[  300.439515][ T8643]  ? __sys_sendmsg+0x2a0/0x2a0
[  300.444440][ T8643]  __se_sys_sendmsg+0x1c2/0x2b0
[  300.449316][ T8643]  ? __x64_sys_sendmsg+0x80/0x80
[  300.454380][ T8643]  ? lockdep_hardirqs_on+0x98/0x150
[  300.459798][ T8643]  do_syscall_64+0x55/0xa0
[  300.464313][ T8643]  ? clear_bhb_loop+0x40/0x90
[  300.469007][ T8643]  ? clear_bhb_loop+0x40/0x90
[  300.473736][ T8643]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  300.479674][ T8643] RIP: 0033:0x7f995399c819
[  300.484151][ T8643] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  300.503950][ T8643] RSP: 002b:00007f9954935028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  300.512996][ T8643] RAX: ffffffffffffffda RBX: 00007f9953c15fa0 RCX: 00007f995399c819
[  300.520982][ T8643] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  300.529058][ T8643] RBP: 00007f9953a32c91 R08: 0000000000000000 R09: 0000000000000000
[  300.537044][ T8643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  300.545204][ T8643] R13: 00007f9953c16038 R14: 00007f9953c15fa0 R15: 00007fff159bf308
[  300.553434][ T8643]  </TASK>
[  300.823107][ T8657] netlink: 184 bytes leftover after parsing attributes in process `syz.3.896'.
[  301.747310][ T8684] delete_channel: no stack
[  301.765829][ T8686] netlink: 184 bytes leftover after parsing attributes in process `syz.1.907'.
[  301.808444][ T8684] FAULT_INJECTION: forcing a failure.
[  301.808444][ T8684] name failslab, interval 1, probability 0, space 0, times 0
[  301.833854][ T8684] CPU: 0 PID: 8684 Comm: syz.0.906 Not tainted syzkaller #0
[  301.841315][ T8684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  301.851604][ T8684] Call Trace:
[  301.854995][ T8684]  <TASK>
[  301.857951][ T8684]  dump_stack_lvl+0x18c/0x250
[  301.862796][ T8684]  ? show_regs_print_info+0x20/0x20
[  301.868116][ T8684]  ? load_image+0x420/0x420
[  301.872726][ T8684]  should_fail_ex+0x39d/0x4d0
[  301.878297][ T8684]  should_failslab+0x9/0x20
[  301.882899][ T8684]  slab_pre_alloc_hook+0x59/0x310
[  301.888695][ T8684]  kmem_cache_alloc+0x5a/0x2d0
[  301.893518][ T8684]  ? skb_clone+0x1eb/0x370
[  301.897994][ T8684]  skb_clone+0x1eb/0x370
[  301.902298][ T8684]  __netlink_deliver_tap+0x41c/0x830
[  301.907819][ T8684]  ? netlink_deliver_tap+0x2e/0x1b0
[  301.913063][ T8684]  netlink_deliver_tap+0x19c/0x1b0
[  301.918223][ T8684]  netlink_dump+0x94b/0xe50
[  301.922807][ T8684]  ? netlink_lookup+0x200/0x200
[  301.927738][ T8684]  ? __asan_memset+0x22/0x40
[  301.932397][ T8684]  ? genl_start+0x493/0x6b0
[  301.936952][ T8684]  __netlink_dump_start+0x5f1/0x810
[  301.942387][ T8684]  genl_family_rcv_msg_dumpit+0x214/0x310
[  301.948144][ T8684]  ? genl_rcv_msg+0x7a0/0x7a0
[  301.952950][ T8684]  ? genl_get_cmd+0x692/0x920
[  301.957669][ T8684]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  301.963867][ T8684]  ? genl_family_rcv_msg_doit+0x310/0x310
[  301.969651][ T8684]  ? genl_start+0x6b0/0x6b0
[  301.974272][ T8684]  ? genl_dumpit+0x1a0/0x1a0
[  301.979338][ T8684]  ? radix_tree_lookup+0x147/0x280
[  301.984490][ T8684]  genl_rcv_msg+0x5e5/0x7a0
[  301.989040][ T8684]  ? genl_bind+0x360/0x360
[  301.993489][ T8684]  ? tipc_nl_node_reset_link_stats+0x770/0x770
[  301.999764][ T8684]  ? kasan_check_range+0xb5/0x290
[  302.004847][ T8684]  netlink_rcv_skb+0x241/0x4d0
[  302.009659][ T8684]  ? genl_bind+0x360/0x360
[  302.014202][ T8684]  ? netlink_ack+0x1180/0x1180
[  302.019106][ T8684]  ? __lock_acquire+0x7d40/0x7d40
[  302.024460][ T8684]  ? down_read+0x1ac/0x2e0
[  302.029011][ T8684]  genl_rcv+0x28/0x40
[  302.033048][ T8684]  netlink_unicast+0x751/0x8d0
[  302.037878][ T8684]  netlink_sendmsg+0x8d0/0xbf0
[  302.043131][ T8684]  ? netlink_getsockopt+0x590/0x590
[  302.048474][ T8684]  ? netlink_getsockopt+0x590/0x590
[  302.053893][ T8684]  ____sys_sendmsg+0x5ba/0x960
[  302.058729][ T8684]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  302.065024][ T8684]  ? __asan_memset+0x22/0x40
[  302.069707][ T8684]  ? __sys_sendmsg_sock+0x30/0x30
[  302.074778][ T8684]  ? __import_iovec+0x5f2/0x850
[  302.079872][ T8684]  ? import_iovec+0x73/0xa0
[  302.084410][ T8684]  ___sys_sendmsg+0x2a6/0x360
[  302.089132][ T8684]  ? __sys_sendmsg+0x2a0/0x2a0
[  302.093996][ T8684]  __se_sys_sendmsg+0x1c2/0x2b0
[  302.098892][ T8684]  ? __x64_sys_sendmsg+0x80/0x80
[  302.103948][ T8684]  ? syscall_enter_from_user_mode+0x2e/0x80
[  302.109886][ T8684]  do_syscall_64+0x55/0xa0
[  302.114327][ T8684]  ? clear_bhb_loop+0x40/0x90
[  302.119200][ T8684]  ? clear_bhb_loop+0x40/0x90
[  302.123925][ T8684]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  302.129857][ T8684] RIP: 0033:0x7f995399c819
[  302.134306][ T8684] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.153968][ T8684] RSP: 002b:00007f9954935028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  302.162444][ T8684] RAX: ffffffffffffffda RBX: 00007f9953c15fa0 RCX: 00007f995399c819
[  302.170467][ T8684] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000006
[  302.178511][ T8684] RBP: 00007f9954935090 R08: 0000000000000000 R09: 0000000000000000
[  302.186636][ T8684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  302.195197][ T8684] R13: 00007f9953c16038 R14: 00007f9953c15fa0 R15: 00007fff159bf308
[  302.203357][ T8684]  </TASK>
[  302.234126][ T8683] delete_channel: no stack
[  303.115286][ T8715] netlink: 112 bytes leftover after parsing attributes in process `syz.3.916'.
[  303.270948][ T8719] netlink: 'syz.1.917': attribute type 5 has an invalid length.
[  303.855804][ T8730] netlink: 152 bytes leftover after parsing attributes in process `syz.0.921'.
[  304.340574][ T8740] netlink: 112 bytes leftover after parsing attributes in process `syz.2.926'.
[  304.422720][ T8742] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.927'.
[  305.411108][ T8762] delete_channel: no stack
[  305.571559][ T8761] delete_channel: no stack
[  305.779709][ T8769] netlink: 112 bytes leftover after parsing attributes in process `syz.3.936'.
[  311.662051][ T8909] netlink: 'syz.0.980': attribute type 23 has an invalid length.
[  312.152099][ T8923] netlink: 10 bytes leftover after parsing attributes in process `syz.1.986'.
[  314.024133][ T8980] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1008'.
[  314.233290][ T8985] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1011'.
[  314.678576][ T9004] netlink: 160 bytes leftover after parsing attributes in process `syz.1.1017'.
[  314.750439][ T9006] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1018'.
[  314.760850][ T9006] FAULT_INJECTION: forcing a failure.
[  314.760850][ T9006] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  314.774983][ T9006] CPU: 1 PID: 9006 Comm: syz.1.1018 Not tainted syzkaller #0
[  314.782438][ T9006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  314.792549][ T9006] Call Trace:
[  314.795870][ T9006]  <TASK>
[  314.798922][ T9006]  dump_stack_lvl+0x18c/0x250
[  314.803740][ T9006]  ? show_regs_print_info+0x20/0x20
[  314.808978][ T9006]  ? load_image+0x420/0x420
[  314.813530][ T9006]  ? __lock_acquire+0x7d40/0x7d40
[  314.818590][ T9006]  ? snprintf+0xe9/0x140
[  314.822902][ T9006]  should_fail_ex+0x39d/0x4d0
[  314.827737][ T9006]  _copy_to_user+0x2f/0xa0
[  314.832294][ T9006]  simple_read_from_buffer+0xe7/0x150
[  314.837716][ T9006]  proc_fail_nth_read+0x1e8/0x260
[  314.842810][ T9006]  ? proc_fault_inject_write+0x360/0x360
[  314.848589][ T9006]  ? fsnotify_perm+0x271/0x5e0
[  314.853419][ T9006]  ? proc_fault_inject_write+0x360/0x360
[  314.859114][ T9006]  vfs_read+0x28b/0x970
[  314.863327][ T9006]  ? kernel_read+0x1e0/0x1e0
[  314.867987][ T9006]  ? __fget_files+0x28/0x4b0
[  314.872610][ T9006]  ? __fget_files+0x28/0x4b0
[  314.877378][ T9006]  ? __fget_files+0x43d/0x4b0
[  314.882238][ T9006]  ? __fdget_pos+0x2a3/0x330
[  314.886893][ T9006]  ? ksys_read+0x75/0x260
[  314.891364][ T9006]  ksys_read+0x150/0x260
[  314.895672][ T9006]  ? vfs_write+0x990/0x990
[  314.900241][ T9006]  ? lockdep_hardirqs_on+0x98/0x150
[  314.905533][ T9006]  do_syscall_64+0x55/0xa0
[  314.910025][ T9006]  ? clear_bhb_loop+0x40/0x90
[  314.914843][ T9006]  ? clear_bhb_loop+0x40/0x90
[  314.919693][ T9006]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  314.925875][ T9006] RIP: 0033:0x7fc263f5d04e
[  314.930424][ T9006] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  314.950160][ T9006] RSP: 002b:00007fc264e2dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  314.958604][ T9006] RAX: ffffffffffffffda RBX: 00007fc264e2e6c0 RCX: 00007fc263f5d04e
[  314.966675][ T9006] RDX: 000000000000000f RSI: 00007fc264e2e0a0 RDI: 0000000000000004
[  314.974660][ T9006] RBP: 00007fc264e2e090 R08: 0000000000000000 R09: 0000000000000000
[  314.982644][ T9006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  314.990728][ T9006] R13: 00007fc264216038 R14: 00007fc264215fa0 R15: 00007ffc6bf26758
[  314.998761][ T9006]  </TASK>
[  316.143941][ T9032] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1026'.
[  317.660242][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  317.667839][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  317.966584][ T9067] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1040'.
[  318.696980][ T9087] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1048'.
[  319.683324][ T9111] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1057'.
[  320.457108][ T9131] tap1: tun_chr_ioctl cmd 1074025677
[  320.467262][ T9131] tap1: linktype set to 778
[  324.043956][ T9216] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1094'.
[  324.079585][ T9216] netlink: 'syz.1.1094': attribute type 10 has an invalid length.
[  324.087952][ T9216] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1094'.
[  325.407964][ T9247] IPv6: NLM_F_CREATE should be specified when creating new route
[  325.427267][ T9247] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1105'.
[  329.213392][ T9325] netlink: 'syz.2.1129': attribute type 8 has an invalid length.
[  329.237156][ T9325] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1129'.
[  330.586319][ T9355] netlink: 'syz.1.1140': attribute type 10 has an invalid length.
[  330.595445][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.604989][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.615296][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.637182][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.650440][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.661139][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.670878][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.679860][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.692995][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.702448][ T9355] netlink: 'syz.1.1140': attribute type 11 has an invalid length.
[  330.712755][ T9355] netlink: 'syz.1.1140': attribute type 4 has an invalid length.
[  330.723472][ T9355] netlink: 'syz.1.1140': attribute type 5 has an invalid length.
[  330.743481][ T9355] netlink: 208556 bytes leftover after parsing attributes in process `syz.1.1140'.
[  332.998011][ T9411] netlink: 'syz.1.1158': attribute type 6 has an invalid length.
[  333.006096][ T9411] netlink: 181396 bytes leftover after parsing attributes in process `syz.1.1158'.
[  333.019767][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.032700][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.045510][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.058209][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.070679][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.083121][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.095681][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.108113][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.120447][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  333.132943][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.028908][    C0] net_ratelimit: 16033 callbacks suppressed
[  338.028928][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.047624][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.060028][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.072500][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.084926][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.097466][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.109904][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.122352][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.134788][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  338.150645][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  339.308011][ T9466] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1173'.
[  341.823763][ T9480] netlink: 'syz.0.1177': attribute type 3 has an invalid length.
[  342.007529][ T9482] sit0: entered promiscuous mode
[  342.039078][ T9482] sit0: entered allmulticast mode
[  342.517318][ T9494] netlink: 'syz.3.1179': attribute type 1 has an invalid length.
[  342.580764][ T9494] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1179'.
[  343.038765][    C0] net_ratelimit: 19288 callbacks suppressed
[  343.038787][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.057269][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.069589][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.081914][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.094445][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.106745][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.119070][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.131579][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.143895][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  343.156203][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  346.001578][ T9509] sctp: [Deprecated]: syz.0.1184 (pid 9509) Use of struct sctp_assoc_value in delayed_ack socket option.
[  346.001578][ T9509] Use struct sctp_sack_info instead
[  347.926765][ T9528] FAULT_INJECTION: forcing a failure.
[  347.926765][ T9528] name failslab, interval 1, probability 0, space 0, times 0
[  348.003528][ T9528] CPU: 1 PID: 9528 Comm: syz.1.1192 Not tainted syzkaller #0
[  348.011069][ T9528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  348.021178][ T9528] Call Trace:
[  348.024501][ T9528]  <TASK>
[  348.027571][ T9528]  dump_stack_lvl+0x18c/0x250
[  348.032315][ T9528]  ? show_regs_print_info+0x20/0x20
[  348.037570][ T9528]  ? load_image+0x420/0x420
[  348.042132][ T9528]  ? __lock_acquire+0x7d40/0x7d40
[  348.047243][ T9528]  should_fail_ex+0x39d/0x4d0
[  348.052423][ T9528]  should_failslab+0x9/0x20
[  348.056975][ T9528]  slab_pre_alloc_hook+0x59/0x310
[  348.060712][    C0] net_ratelimit: 21080 callbacks suppressed
[  348.060749][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.062029][ T9528]  ? __lock_acquire+0x7d40/0x7d40
[  348.062098][ T9528]  kmem_cache_alloc+0x5a/0x2d0
[  348.062125][ T9528]  ? security_file_alloc+0x34/0x120
[  348.062176][ T9528]  security_file_alloc+0x34/0x120
[  348.062215][ T9528]  init_file+0x94/0x1f0
[  348.062254][ T9528]  alloc_empty_file+0xb7/0x1d0
[  348.062289][ T9528]  alloc_file+0x5c/0x600
[  348.062326][ T9528]  alloc_file_pseudo+0x184/0x210
[  348.062365][ T9528]  ? alloc_empty_backing_file+0xe0/0xe0
[  348.062431][ T9528]  anon_inode_getfile+0xc5/0x1a0
[  348.062473][ T9528]  __se_sys_perf_event_open+0xee7/0x1c50
[  348.062529][ T9528]  ? __x64_sys_perf_event_open+0xc0/0xc0
[  348.062588][ T9528]  ? lock_chain_count+0x20/0x20
[  348.062632][ T9528]  ? lockdep_hardirqs_on+0x98/0x150
[  348.062655][ T9528]  ? __x64_sys_perf_event_open+0x20/0xc0
[  348.062691][ T9528]  do_syscall_64+0x55/0xa0
[  348.062710][ T9528]  ? clear_bhb_loop+0x40/0x90
[  348.062734][ T9528]  ? clear_bhb_loop+0x40/0x90
[  348.062764][ T9528]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  348.062789][ T9528] RIP: 0033:0x7fc263f9c819
[  348.062813][ T9528] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.062832][ T9528] RSP: 002b:00007fc264e2e028 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  348.062859][ T9528] RAX: ffffffffffffffda RBX: 00007fc264215fa0 RCX: 00007fc263f9c819
[  348.062876][ T9528] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000140
[  348.062891][ T9528] RBP: 00007fc264e2e090 R08: 0000000000000000 R09: 0000000000000000
[  348.062906][ T9528] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  348.062921][ T9528] R13: 00007fc264216038 R14: 00007fc264215fa0 R15: 00007ffc6bf26758
[  348.062976][ T9528]  </TASK>
[  348.380324][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.402367][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.426325][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.475780][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.532297][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.581753][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.618889][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.664913][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  348.734956][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  349.457031][ T9532] veth1_macvtap: left promiscuous mode
[  349.463337][ T9532] macsec0: entered allmulticast mode
[  352.737637][ T9572] netlink: 121460 bytes leftover after parsing attributes in process `syz.3.1201'.
[  352.911034][ T9572] netlink: 21068 bytes leftover after parsing attributes in process `syz.3.1201'.
[  352.960257][ T9572] tipc: Started in network mode
[  353.068704][    C0] net_ratelimit: 14812 callbacks suppressed
[  353.068724][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.069008][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.069296][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.069596][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.069875][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.070150][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.070439][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.070738][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.071014][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  353.071325][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.086322][    C0] net_ratelimit: 18530 callbacks suppressed
[  358.086342][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.086582][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.086857][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.087141][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.087372][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.087600][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.087928][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.088174][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.088408][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  358.088639][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.088818][    C0] net_ratelimit: 21926 callbacks suppressed
[  363.088839][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.089081][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.089335][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.089563][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.089876][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.090115][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.090344][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.090572][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.090798][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  363.091035][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.098845][    C0] net_ratelimit: 22159 callbacks suppressed
[  368.098866][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.099112][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.099345][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.099621][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.099852][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.100093][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.100323][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.100554][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.100784][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  368.101015][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.108834][    C0] net_ratelimit: 22233 callbacks suppressed
[  373.108854][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.109101][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.109331][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.109590][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.109823][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.110060][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.110297][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.110550][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.110778][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  373.111008][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.118797][    C0] net_ratelimit: 22526 callbacks suppressed
[  378.118817][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.119058][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.119327][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.119554][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.119865][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.120105][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.120340][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.120567][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.120794][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  378.121031][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  380.421771][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  380.435283][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  383.128834][    C0] net_ratelimit: 22466 callbacks suppressed
[  383.128856][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.129090][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.129319][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.129545][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.129834][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.130064][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.130292][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.130556][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.130843][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  383.131072][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.138769][    C0] net_ratelimit: 22445 callbacks suppressed
[  388.138791][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.139029][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.139257][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.139485][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.139723][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.139952][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.140267][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.140497][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.140734][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  388.140964][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.148697][    C0] net_ratelimit: 22335 callbacks suppressed
[  393.148718][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.148956][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.149184][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.149471][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.149701][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.149931][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.150158][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.150396][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.150632][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  393.150860][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.158757][    C0] net_ratelimit: 22423 callbacks suppressed
[  398.158779][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.159030][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.159348][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.159591][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.159927][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.160169][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.160467][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.160716][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.160952][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  398.161188][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.168729][    C0] net_ratelimit: 22565 callbacks suppressed
[  403.168751][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.168983][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.169207][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.169441][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.169666][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.169891][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.170117][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.170394][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.170621][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  403.170884][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.178717][    C0] net_ratelimit: 22762 callbacks suppressed
[  408.178737][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.178971][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.179195][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.179421][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.179654][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.179879][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.180103][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.180376][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.180610][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  408.180835][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.188720][    C0] net_ratelimit: 22788 callbacks suppressed
[  413.188741][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.188973][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.189199][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.189472][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.189699][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.189923][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.190146][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.190377][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.190652][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  413.190877][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.198752][    C0] net_ratelimit: 22698 callbacks suppressed
[  418.198772][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.199004][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.199237][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.199463][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.199687][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.199911][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.200245][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.200471][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.200697][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  418.200963][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.208725][    C0] net_ratelimit: 23101 callbacks suppressed
[  423.208746][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.208977][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.209211][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.209434][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.209662][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.209909][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.210146][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.210394][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.210618][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  423.210841][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.218679][    C0] net_ratelimit: 23233 callbacks suppressed
[  428.218700][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.218931][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.219168][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.219394][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.219643][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.219892][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.220124][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.220350][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.220576][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  428.220799][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.228880][    C0] net_ratelimit: 23120 callbacks suppressed
[  433.228901][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.229137][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.229369][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.229595][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.229818][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.230065][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.230303][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.230528][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.230776][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  433.231002][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.238661][    C0] net_ratelimit: 23148 callbacks suppressed
[  438.238682][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.238918][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.239152][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.239378][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.239600][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.239824][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.240048][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.240315][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.240540][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  438.240764][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.248855][    C0] net_ratelimit: 23282 callbacks suppressed
[  443.248877][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.249110][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.249337][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.249563][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.249796][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.250046][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.250271][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.250495][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.250718][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  443.250972][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  446.466210][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  446.480088][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  448.258869][    C0] net_ratelimit: 23247 callbacks suppressed
[  448.258890][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.259152][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.259402][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.259649][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.259902][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.260140][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.260497][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.260790][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.261093][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  448.261344][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.268666][    C0] net_ratelimit: 23287 callbacks suppressed
[  453.268688][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.268923][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.269170][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.269396][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.269626][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.269852][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.270099][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.270325][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.270548][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  453.270779][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.278657][    C0] net_ratelimit: 23216 callbacks suppressed
[  458.278678][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.278912][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.279137][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.279362][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.279593][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.279820][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.280089][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.280320][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.280553][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.280775][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  458.838637][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  458.838659][    C1] rcu: 	1-....: (10402 ticks this GP) idle=37fc/1/0x4000000000000000 softirq=29059/29067 fqs=231
[  458.839232][    C1] rcu: 	         hardirqs   softirqs   csw/system
[  458.839243][    C1] rcu: 	 number:  2096553         44            0
[  458.839258][    C1] rcu: 	cputime:    43706       8148           14   ==> 51860(ms)
[  458.839275][    C1] rcu: 	(t=10500 jiffies g=35797 q=205 ncpus=2)
[  458.839290][    C1] rcu: rcu_preempt kthread starved for 290 jiffies! g35797 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  458.839312][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  458.839322][    C1] rcu: RCU grace-period kthread stack dump:
[  458.839330][    C1] task:rcu_preempt     state:R  running task     stack:26984 pid:17    ppid:2      flags:0x00004000
[  458.839379][    C1] Call Trace:
[  458.839387][    C1]  <TASK>
[  458.839402][    C1]  __schedule+0x1553/0x45a0
[  458.839458][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  458.839489][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  458.839509][    C1]  ? asan.module_dtor+0x20/0x20
[  458.839540][    C1]  ? enqueue_timer+0x23d/0x550
[  458.839568][    C1]  ? __mod_timer+0x984/0xdb0
[  458.839606][    C1]  schedule+0xbd/0x170
[  458.839633][    C1]  schedule_timeout+0x188/0x2d0
[  458.839656][    C1]  ? console_conditional_schedule+0x40/0x40
[  458.839681][    C1]  ? update_process_times+0x1b0/0x1b0
[  458.839710][    C1]  ? prepare_to_swait_event+0x339/0x360
[  458.839741][    C1]  rcu_gp_fqs_loop+0x313/0x1590
[  458.839787][    C1]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[  458.839809][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  458.839833][    C1]  ? rcu_gp_init+0x1560/0x1560
[  458.839850][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  458.839880][    C1]  ? finish_swait+0xc7/0x1d0
[  458.839906][    C1]  rcu_gp_kthread+0x9d/0x3b0
[  458.839930][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  458.839953][    C1]  ? __kthread_parkme+0x7a/0x1c0
[  458.839973][    C1]  ? __kthread_parkme+0x162/0x1c0
[  458.840001][    C1]  kthread+0x2fa/0x390
[  458.840020][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  458.840040][    C1]  ? kthread_blkcg+0xd0/0xd0
[  458.840059][    C1]  ret_from_fork+0x48/0x80
[  458.840081][    C1]  ? kthread_blkcg+0xd0/0xd0
[  458.840101][    C1]  ret_from_fork_asm+0x11/0x20
[  458.840145][    C1]  </TASK>
[  458.840153][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  458.840162][    C1] Sending NMI from CPU 1 to CPUs 0:
[  458.840191][    C0] NMI backtrace for cpu 0
[  458.840206][    C0] CPU: 0 PID: 3382 Comm: kworker/R-bat_e Not tainted syzkaller #0
[  458.840221][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  458.840229][    C0] Workqueue: bat_events batadv_dat_purge
[  458.840250][    C0] RIP: 0010:kasan_check_range+0x52/0x290
[  458.840269][    C0] Code: f9 49 c1 e9 2f 41 81 f9 ff ff 01 00 0f 82 ff 01 00 00 49 89 ff 49 c1 ef 03 49 ba 00 00 00 00 00 fc ff df 4f 8d 1c 17 49 ff c8 <4d> 89 c1 49 c1 e9 03 48 bb 01 00 00 00 00 fc ff df 4d 8d 34 19 4d
[  458.840282][    C0] RSP: 0018:ffffc90000006828 EFLAGS: 00000082
[  458.840293][    C0] RAX: 0000000000000001 RBX: 0000000000000021 RCX: ffffffff81683d13
[  458.840304][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff911c4500
[  458.840313][    C0] RBP: ffffc90000006aa8 R08: ffffffff911c4507 R09: 000000000001ffff
[  458.840323][    C0] R10: dffffc0000000000 R11: fffffbfff22388a0 R12: 0000000000000002
[  458.840333][    C0] R13: ffff88802d599e00 R14: ffff88802d59a980 R15: 1ffffffff22388a0
[  458.840344][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  458.840357][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  458.840367][    C0] CR2: 00005555596c94e8 CR3: 000000000cf32000 CR4: 00000000003506f0
[  458.840382][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  458.840391][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  458.840400][    C0] Call Trace:
[  458.840405][    C0]  <IRQ>
[  458.840413][    C0]  __lock_acquire+0xdb3/0x7d40
[  458.840440][    C0]  ? verify_lock_unused+0x140/0x140
[  458.840457][    C0]  ? perf_trace_lock_acquire+0x104/0x410
[  458.840478][    C0]  ? verify_lock_unused+0x140/0x140
[  458.840495][    C0]  ? perf_trace_lock_acquire+0x104/0x410
[  458.840526][    C0]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  458.840546][    C0]  ? stack_trace_save+0xaa/0x100
[  458.840563][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  458.840584][    C0]  lock_acquire+0x19e/0x420
[  458.840599][    C0]  ? page_ext_get+0x22/0x2b0
[  458.840621][    C0]  ? read_lock_is_recursive+0x20/0x20
[  458.840637][    C0]  ? page_ext_put+0x9c/0xb0
[  458.840654][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  458.840671][    C0]  ? page_ext_get+0x22/0x2b0
[  458.840688][    C0]  page_ext_get+0x3e/0x2b0
[  458.840704][    C0]  ? page_ext_get+0x22/0x2b0
[  458.840721][    C0]  __page_table_check_zero+0x138/0x4b0
[  458.840742][    C0]  get_page_from_freelist+0x1951/0x19e0
[  458.840759][    C0]  ? rescuer_thread+0x74e/0x10d0
[  458.840780][    C0]  ? perf_trace_lock_acquire+0x104/0x410
[  458.840805][    C0]  ? prepare_alloc_pages+0x1e2/0x5f0
[  458.840823][    C0]  __alloc_pages+0x1f0/0x460
[  458.840838][    C0]  ? zone_statistics+0x170/0x170
[  458.840856][    C0]  ? alloc_pages+0x4dc/0x740
[  458.840870][    C0]  ? lock_chain_count+0x20/0x20
[  458.840887][    C0]  alloc_slab_page+0x5d/0x160
[  458.840900][    C0]  ? mempolicy_slab_node+0x41/0x430
[  458.840914][    C0]  new_slab+0x87/0x2d0
[  458.840928][    C0]  ___slab_alloc+0xc5d/0x12f0
[  458.840951][    C0]  ? skb_ext_add+0x1b3/0x8e0
[  458.840973][    C0]  kmem_cache_alloc+0x1b3/0x2d0
[  458.840991][    C0]  ? skb_ext_add+0x1b3/0x8e0
[  458.841011][    C0]  skb_ext_add+0x1b3/0x8e0
[  458.841029][    C0]  ? nf_ct_bridge_refrag_post+0x4e0/0x4e0
[  458.841049][    C0]  br_nf_forward_ip+0xc6/0x1110
[  458.841065][    C0]  ? read_lock_is_recursive+0x20/0x20
[  458.841082][    C0]  ? br_nf_local_in+0x460/0x460
[  458.841097][    C0]  nf_hook_slow+0xbd/0x200
[  458.841115][    C0]  ? br_dev_queue_push_xmit+0x870/0x870
[  458.841132][    C0]  ? br_dev_queue_push_xmit+0x870/0x870
[  458.841149][    C0]  NF_HOOK+0x23e/0x3e0
[  458.841168][    C0]  ? NF_HOOK+0xa3/0x3e0
[  458.841184][    C0]  ? br_forward_finish+0x130/0x130
[  458.841203][    C0]  ? br_dev_queue_push_xmit+0x870/0x870
[  458.841226][    C0]  __br_forward+0x433/0x610
[  458.841242][    C0]  ? br_dev_queue_push_xmit+0x870/0x870
[  458.841260][    C0]  ? skb_clone+0x21f/0x370
[  458.841276][    C0]  ? should_deliver+0x380/0x380
[  458.841298][    C0]  br_handle_frame_finish+0x13c5/0x18f0
[  458.841323][    C0]  ? brport_get_ownership+0x80/0x80
[  458.841346][    C0]  ? ip6t_do_table+0x1d9/0x1510
[  458.841366][    C0]  ? nf_hook_slow+0x16c/0x200
[  458.841383][    C0]  ? brport_get_ownership+0x80/0x80
[  458.841401][    C0]  br_nf_hook_thresh+0x3cd/0x4a0
[  458.841420][    C0]  ? brnf_get_logical_dev+0x270/0x270
[  458.841436][    C0]  ? brport_get_ownership+0x80/0x80
[  458.841460][    C0]  br_nf_pre_routing_finish_ipv6+0x9dc/0xd00
[  458.841476][    C0]  ? brport_get_ownership+0x80/0x80
[  458.841507][    C0]  br_nf_pre_routing_ipv6+0x349/0x6b0
[  458.841523][    C0]  ? br_nf_pre_routing_ipv6+0x3f2/0x6b0
[  458.841538][    C0]  ? br_validate_ipv6+0x730/0x730
[  458.841555][    C0]  ? br_nf_pre_routing_ipv6+0x6b0/0x6b0
[  458.841570][    C0]  ? br_nf_pre_routing+0x70f/0x1420
[  458.841588][    C0]  ? br_nf_hook_thresh+0x4a0/0x4a0
[  458.841604][    C0]  br_handle_frame+0x1245/0x14d0
[  458.841629][    C0]  ? br_handle_frame_dummy+0x10/0x10
[  458.841646][    C0]  ? rcu_lockdep_current_cpu_online+0x37/0x120
[  458.841668][    C0]  ? brport_get_ownership+0x80/0x80
[  458.841685][    C0]  ? rcu_read_lock_held+0x40/0x40
[  458.841705][    C0]  ? br_handle_frame_dummy+0x10/0x10
[  458.841724][    C0]  __netif_receive_skb_core+0xfab/0x3af0
[  458.841753][    C0]  ? qdisc_run+0x230/0x230
[  458.841772][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  458.841790][    C0]  ? read_lock_is_recursive+0x20/0x20
[  458.841805][    C0]  ? _raw_spin_lock_irq+0xbb/0xf0
[  458.841823][    C0]  ? process_backlog+0x2cf/0x6f0
[  458.841838][    C0]  __netif_receive_skb+0x74/0x290
[  458.841857][    C0]  ? process_backlog+0x2cf/0x6f0
[  458.841871][    C0]  process_backlog+0x391/0x6f0
[  458.841896][    C0]  ? trigger_rx_softirq+0x60/0x60
[  458.841911][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  458.841928][    C0]  ? lock_chain_count+0x20/0x20
[  458.841946][    C0]  __napi_poll+0xc0/0x460
[  458.841959][    C0]  ? net_rx_action+0x3a0/0xc40
[  458.841976][    C0]  net_rx_action+0x616/0xc40
[  458.841999][    C0]  ? net_tx_action+0x980/0x980
[  458.842015][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  458.842033][    C0]  ? lock_chain_count+0x20/0x20
[  458.842054][    C0]  handle_softirqs+0x280/0x820
[  458.842072][    C0]  ? do_softirq+0xfa/0x1a0
[  458.842089][    C0]  ? do_softirq+0x1a0/0x1a0
[  458.842107][    C0]  ? batadv_dat_purge+0x2da/0x3c0
[  458.842125][    C0]  do_softirq+0xfa/0x1a0
[  458.842138][    C0]  </IRQ>
[  458.842143][    C0]  <TASK>
[  458.842148][    C0]  ? __local_bh_enable_ip+0x1c0/0x1c0
[  458.842163][    C0]  ? lockdep_hardirqs_on_prepare+0x770/0x770
[  458.842182][    C0]  ? rcu_is_watching+0x15/0xb0
[  458.842202][    C0]  __local_bh_enable_ip+0x184/0x1c0
[  458.842216][    C0]  ? _local_bh_enable+0xa0/0xa0
[  458.842232][    C0]  ? do_raw_spin_unlock+0x121/0x230
[  458.842250][    C0]  ? batadv_dat_purge+0x2da/0x3c0
[  458.842269][    C0]  batadv_dat_purge+0x2da/0x3c0
[  458.842290][    C0]  ? process_scheduled_works+0x96f/0x15d0
[  458.842307][    C0]  process_scheduled_works+0xa5d/0x15d0
[  458.842342][    C0]  ? worker_attach_to_pool+0x380/0x380
[  458.842371][    C0]  rescuer_thread+0x74e/0x10d0
[  458.842393][    C0]  ? rescuer_thread+0xbb/0x10d0
[  458.842423][    C0]  kthread+0x2fa/0x390
[  458.842436][    C0]  ? install_unbound_pwq+0x480/0x480
[  458.842454][    C0]  ? kthread_blkcg+0xd0/0xd0
[  458.842468][    C0]  ret_from_fork+0x48/0x80
[  458.842484][    C0]  ? kthread_blkcg+0xd0/0xd0
[  458.842498][    C0]  ret_from_fork_asm+0x11/0x20
[  458.842529][    C0]  </TASK>
[  458.843190][    C1] CPU: 1 PID: 9572 Comm: syz.3.1201 Not tainted syzkaller #0
[  458.843211][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  458.843221][    C1] RIP: 0010:unwind_next_frame+0x1622/0x2970
[  458.843244][    C1] Code: 00 49 89 c6 48 8b 44 24 40 42 80 3c 28 00 48 8b 5c 24 20 74 08 48 89 df e8 7b 0b a4 00 4c 89 33 48 8b 44 24 68 42 80 3c 28 00 <48> 8b 5c 24 60 74 08 48 89 df e8 5f 0b a4 00 48 8b 44 24 08 48 89
[  458.843260][    C1] RSP: 0018:ffffc900001f0118 EFLAGS: 00000246
[  458.843279][    C1] RAX: 1ffff9200003e044 RBX: ffffc900001f0230 RCX: ffff88807bef0000
[  458.843293][    C1] RDX: 0000000000000100 RSI: 0000000000000001 RDI: ffffc90004a77590
[  458.843305][    C1] RBP: ffffc900001f0238 R08: ffff88807bef0000 R09: 0000000000000003
[  458.843319][    C1] R10: 0000000000000004 R11: 0000000000000100 R12: ffffc900001f01e8
[  458.843333][    C1] R13: dffffc0000000000 R14: ffffffff88b52689 R15: ffffffff8f8e4eb0
[  458.843347][    C1] FS:  00007f0a17ae86c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  458.843365][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  458.843379][    C1] CR2: 000000110c330042 CR3: 00000000764da000 CR4: 00000000003506e0
[  458.843399][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  458.843411][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  458.843424][    C1] Call Trace:
[  458.843431][    C1]  <IRQ>
[  458.843454][    C1]  ? genl_family_rcv_msg_doit+0x211/0x310
[  458.843480][    C1]  ? genl_family_rcv_msg_doit+0x211/0x310
[  458.843500][    C1]  ? stack_trace_save+0x100/0x100
[  458.843521][    C1]  arch_stack_walk+0x144/0x190
[  458.843548][    C1]  ? genl_rcv_msg+0x619/0x7a0
[  458.843574][    C1]  stack_trace_save+0xaa/0x100
[  458.843597][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  458.843633][    C1]  kasan_set_track+0x4e/0x70
[  458.843652][    C1]  ? kasan_set_track+0x4e/0x70
[  458.843671][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  458.843691][    C1]  ? slab_post_alloc_hook+0x6e/0x4b0
[  458.843716][    C1]  ? kmem_cache_alloc+0x11a/0x2d0
[  458.843740][    C1]  ? skb_ext_add+0x145/0x8e0
[  458.843770][    C1]  ? br_nf_pre_routing_ipv6+0x131/0x6b0
[  458.843789][    C1]  ? br_handle_frame+0x1245/0x14d0
[  458.843812][    C1]  ? __netif_receive_skb_core+0xfab/0x3af0
[  458.843832][    C1]  ? __netif_receive_skb+0x74/0x290
[  458.843851][    C1]  ? process_backlog+0x391/0x6f0
[  458.843870][    C1]  ? __napi_poll+0xc0/0x460
[  458.843888][    C1]  ? net_rx_action+0x616/0xc40
[  458.843907][    C1]  ? handle_softirqs+0x280/0x820
[  458.843925][    C1]  ? __irq_exit_rcu+0xd3/0x190
[  458.843942][    C1]  ? irq_exit_rcu+0x9/0x20
[  458.843959][    C1]  ? sysvec_apic_timer_interrupt+0xa4/0xc0
[  458.843979][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  458.844002][    C1]  ? vsscanf+0x2540/0x2540
[  458.844025][    C1]  ? format_decode+0x8c4/0x1400
[  458.844045][    C1]  ? vsnprintf+0xeb/0x1ba0
[  458.844066][    C1]  ? sprintf+0xe8/0x140
[  458.844087][    C1]  ? info_print_prefix+0x16c/0x360
[  458.844109][    C1]  ? record_print_text+0x177/0x450
[  458.844131][    C1]  ? printk_get_next_message+0x2ab/0x980
[  458.844154][    C1]  ? console_flush_all+0x3a8/0xd20
[  458.844175][    C1]  ? console_unlock+0xad/0x350
[  458.844194][    C1]  ? vprintk_emit+0x497/0x610
[  458.844214][    C1]  ? _printk+0xde/0x130
[  458.844236][    C1]  ? tipc_net_init+0xb2/0x170
[  458.844259][    C1]  ? __tipc_nl_net_set+0x3e4/0x610
[  458.844292][    C1]  ? tipc_nl_net_set+0x22/0x30
[  458.844314][    C1]  ? genl_family_rcv_msg_doit+0x211/0x310
[  458.844367][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  458.844391][    C1]  __kasan_slab_alloc+0x6c/0x80
[  458.844416][    C1]  slab_post_alloc_hook+0x6e/0x4b0
[  458.844450][    C1]  kmem_cache_alloc+0x11a/0x2d0
[  458.844476][    C1]  ? skb_ext_add+0x145/0x8e0
[  458.844512][    C1]  skb_ext_add+0x145/0x8e0
[  458.844547][    C1]  br_nf_pre_routing_ipv6+0x131/0x6b0
[  458.844574][    C1]  ? br_validate_ipv6+0x730/0x730
[  458.844600][    C1]  ? br_nf_pre_routing+0x70f/0x1420
[  458.844629][    C1]  ? br_nf_hook_thresh+0x4a0/0x4a0
[  458.844652][    C1]  br_handle_frame+0x1245/0x14d0
[  458.844688][    C1]  ? br_handle_frame_dummy+0x10/0x10
[  458.844718][    C1]  ? brport_get_ownership+0x80/0x80
[  458.844746][    C1]  ? __netif_receive_skb_core+0xda1/0x3af0
[  458.844780][    C1]  ? br_handle_frame_dummy+0x10/0x10
[  458.844806][    C1]  __netif_receive_skb_core+0xfab/0x3af0
[  458.844841][    C1]  ? mark_lock+0x94/0x320
[  458.844867][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  458.844892][    C1]  ? qdisc_run+0x230/0x230
[  458.844929][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  458.844965][    C1]  ? read_lock_is_recursive+0x20/0x20
[  458.844991][    C1]  ? process_backlog+0x2cf/0x6f0
[  458.845010][    C1]  __netif_receive_skb+0x74/0x290
[  458.845039][    C1]  ? process_backlog+0x2cf/0x6f0
[  458.845058][    C1]  process_backlog+0x391/0x6f0
[  458.845099][    C1]  ? trigger_rx_softirq+0x60/0x60
[  458.845120][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  458.845160][    C1]  __napi_poll+0xc0/0x460
[  458.845187][    C1]  net_rx_action+0x616/0xc40
[  458.845224][    C1]  ? net_tx_action+0x980/0x980
[  458.845246][    C1]  ? detach_timer+0x2b0/0x2b0
[  458.845288][    C1]  handle_softirqs+0x280/0x820
[  458.845315][    C1]  ? __irq_exit_rcu+0xd3/0x190
[  458.845340][    C1]  ? do_softirq+0x1a0/0x1a0
[  458.845366][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  458.845395][    C1]  __irq_exit_rcu+0xd3/0x190
[  458.845415][    C1]  ? irq_exit_rcu+0x20/0x20
[  458.845446][    C1]  irq_exit_rcu+0x9/0x20
[  458.845463][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  458.845485][    C1]  </IRQ>
[  458.845493][    C1]  <TASK>
[  458.845501][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  458.845523][    C1] RIP: 0010:skip_atoi+0x0/0xe0
[  458.845546][    C1] Code: 41 5d 41 5e 41 5f 5d c3 44 89 e1 80 e1 07 38 c1 0f 8c 82 db ff ff 4c 89 e7 e8 1c 1f 68 f7 e9 75 db ff ff e8 22 eb 0e 00 66 90 <55> 41 57 41 56 41 55 41 54 53 50 48 89 fb 49 bc 00 00 00 00 00 fc
[  458.845562][    C1] RSP: 0018:ffffc90004a76850 EFLAGS: 00000283
[  458.845580][    C1] RAX: ffffffff8a76b64a RBX: dffffc0000000000 RCX: 0000000000080000
[  458.845593][    C1] RDX: ffffc9000d30b000 RSI: 0000000000034c0a RDI: ffffc90004a76890
[  458.845607][    C1] RBP: 00000000000000fb R08: ffff88807bef0000 R09: 0000000000000005
[  458.845620][    C1] R10: 0000000000000030 R11: 0000000000000002 R12: 0000000000000035
[  458.845633][    C1] R13: 1ffffffff1597168 R14: ffffffff8acb8b42 R15: 0000000000000000
[  458.845657][    C1]  ? format_decode+0x8ba/0x1400
[  458.845689][    C1]  format_decode+0x8c4/0x1400
[  458.845716][    C1]  ? vsnprintf+0x85c/0x1ba0
[  458.845745][    C1]  vsnprintf+0xeb/0x1ba0
[  458.845790][    C1]  sprintf+0xe8/0x140
[  458.845813][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  458.845842][    C1]  ? vsprintf+0x30/0x30
[  458.845882][    C1]  info_print_prefix+0x16c/0x360
[  458.845912][    C1]  ? msg_add_dict_text+0x3d0/0x3d0
[  458.845950][    C1]  record_print_text+0x177/0x450
[  458.845986][    C1]  ? kmsg_dump_get_line+0x3e0/0x3e0
[  458.846015][    C1]  ? verify_lock_unused+0x140/0x140
[  458.846050][    C1]  printk_get_next_message+0x2ab/0x980
[  458.846088][    C1]  ? trace_raw_output_console+0xd0/0xd0
[  458.846133][    C1]  ? read_lock_is_recursive+0x20/0x20
[  458.846163][    C1]  ? console_flush_all+0x355/0xd20
[  458.846193][    C1]  console_flush_all+0x3a8/0xd20
[  458.846218][    C1]  ? console_flush_all+0x951/0xd20
[  458.846240][    C1]  ? console_flush_all+0x10a/0xd20
[  458.846279][    C1]  ? is_console_locked+0x20/0x20
[  458.846302][    C1]  ? lock_chain_count+0x20/0x20
[  458.846329][    C1]  ? __down_trylock_console_sem+0xf6/0x1f0
[  458.846358][    C1]  console_unlock+0xad/0x350
[  458.846385][    C1]  ? other_cpu_in_panic+0xf0/0xf0
[  458.846409][    C1]  ? perf_trace_lock_acquire+0x104/0x410
[  458.846449][    C1]  vprintk_emit+0x497/0x610
[  458.846476][    C1]  ? printk_sprint+0x460/0x460
[  458.846517][    C1]  _printk+0xde/0x130
[  458.846548][    C1]  ? load_image+0x420/0x420
[  458.846577][    C1]  ? net_generic+0x1e/0x240
[  458.846611][    C1]  tipc_net_init+0xb2/0x170
[  458.846639][    C1]  __tipc_nl_net_set+0x3e4/0x610
[  458.846668][    C1]  ? tipc_nl_net_dump+0x790/0x790
[  458.846696][    C1]  ? tipc_nl_net_set+0x17/0x30
[  458.846730][    C1]  ? __nla_parse+0x40/0x50
[  458.846764][    C1]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  458.846783][    C1]  ? genl_family_rcv_msg_attrs_parse+0x20a/0x290
[  458.846810][    C1]  tipc_nl_net_set+0x22/0x30
[  458.846836][    C1]  genl_family_rcv_msg_doit+0x211/0x310
[  458.846866][    C1]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  458.846914][    C1]  genl_rcv_msg+0x619/0x7a0
[  458.846944][    C1]  ? genl_bind+0x360/0x360
[  458.846962][    C1]  ? __tipc_nl_net_set+0x610/0x610
[  458.847008][    C1]  netlink_rcv_skb+0x241/0x4d0
[  458.847032][    C1]  ? genl_bind+0x360/0x360
[  458.847051][    C1]  ? netlink_ack+0x1180/0x1180
[  458.847091][    C1]  ? __lock_acquire+0x7d40/0x7d40
[  458.847122][    C1]  ? down_read+0x1ac/0x2e0
[  458.847146][    C1]  genl_rcv+0x28/0x40
[  458.847165][    C1]  netlink_unicast+0x751/0x8d0
[  458.847207][    C1]  netlink_sendmsg+0x8d0/0xbf0
[  458.847248][    C1]  ? netlink_getsockopt+0x590/0x590
[  458.847278][    C1]  ? aa_sock_msg_perm+0x94/0x150
[  458.847306][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  458.847328][    C1]  ? security_socket_sendmsg+0x80/0xa0
[  458.847349][    C1]  ? netlink_getsockopt+0x590/0x590
[  458.847378][    C1]  ____sys_sendmsg+0x5ba/0x960
[  458.847409][    C1]  ? __asan_memset+0x22/0x40
[  458.847434][    C1]  ? __sys_sendmsg_sock+0x30/0x30
[  458.847451][    C1]  ? __import_iovec+0x5f2/0x850
[  458.847483][    C1]  ? import_iovec+0x73/0xa0
[  458.847506][    C1]  ___sys_sendmsg+0x2a6/0x360
[  458.847535][    C1]  ? __sys_sendmsg+0x2a0/0x2a0
[  458.847613][    C1]  ? __se_sys_sendmsg+0xd9/0x2b0
[  458.847643][    C1]  __se_sys_sendmsg+0x1c2/0x2b0
[  458.847668][    C1]  ? __x64_sys_sendmsg+0x80/0x80
[  458.847712][    C1]  ? syscall_enter_from_user_mode+0x2e/0x80
[  458.847740][    C1]  do_syscall_64+0x55/0xa0
[  458.847766][    C1]  ? clear_bhb_loop+0x40/0x90
[  458.847788][    C1]  ? clear_bhb_loop+0x40/0x90
[  458.847813][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  458.847835][    C1] RIP: 0033:0x7f0a16b9c819
[  458.847855][    C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  458.847882][    C1] RSP: 002b:00007f0a17ae8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  458.847904][    C1] RAX: ffffffffffffffda RBX: 00007f0a16e15fa0 RCX: 00007f0a16b9c819
[  458.847918][    C1] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  458.847931][    C1] RBP: 00007f0a16c32c91 R08: 0000000000000000 R09: 0000000000000000
[  458.847943][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.847955][    C1] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  458.847991][    C1]  </TASK>
[  463.288771][    C0] net_ratelimit: 22975 callbacks suppressed
[  463.288792][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.289030][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.289260][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.289497][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.289729][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.289958][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.290214][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.290471][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.290704][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  463.290934][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.298678][    C0] net_ratelimit: 22885 callbacks suppressed
[  468.298699][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.298934][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.299187][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.299425][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.299653][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.299908][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.300137][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.300364][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.300600][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  468.300831][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.308646][    C0] net_ratelimit: 22965 callbacks suppressed
[  473.308667][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.308906][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.309135][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.309364][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.309602][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.309853][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.310103][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.310338][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.310570][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.310806][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.318695][    C0] net_ratelimit: 23181 callbacks suppressed
[  478.318717][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.318972][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.319200][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.319436][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.319664][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.319888][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.320135][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.320373][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.320599][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  478.320822][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.328734][    C0] net_ratelimit: 23271 callbacks suppressed
[  483.328755][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.329011][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.329236][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.329471][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.329696][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.329931][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.330180][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.330414][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.330647][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  483.330872][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.338811][    C0] net_ratelimit: 23254 callbacks suppressed
[  488.338833][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.339075][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.339344][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.339600][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.339827][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.340055][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.340355][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.340586][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.340813][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  488.341040][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.348786][    C0] net_ratelimit: 22989 callbacks suppressed
[  493.348805][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.349048][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.349278][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.349507][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.349735][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.349963][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.350201][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.350454][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.350681][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  493.350910][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.358817][    C0] net_ratelimit: 22996 callbacks suppressed
[  498.358839][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.359083][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.359312][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.359564][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.359793][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.360028][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.360265][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.360493][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.360720][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  498.360949][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.368819][    C0] net_ratelimit: 22943 callbacks suppressed
[  503.368841][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.369083][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.369337][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.369567][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.369796][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.370031][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.370261][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.370489][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.370717][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  503.370956][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  505.442068][   T29] INFO: task kworker/u4:4:59 blocked for more than 142 seconds.
[  505.442098][   T29]       Not tainted syzkaller #0
[  505.442110][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  505.442127][   T29] task:kworker/u4:4    state:D stack:22120 pid:59    ppid:2      flags:0x00004000
[  505.442170][   T29] Workqueue: ipv6_addrconf addrconf_verify_work
[  505.442200][   T29] Call Trace:
[  505.442208][   T29]  <TASK>
[  505.442224][   T29]  __schedule+0x1553/0x45a0
[  505.442265][   T29]  ? lock_chain_count+0x20/0x20
[  505.442309][   T29]  ? asan.module_dtor+0x20/0x20
[  505.442341][   T29]  ? __mutex_lock+0x6a4/0xcc0
[  505.442364][   T29]  ? __mutex_trylock_common+0x8a/0x260
[  505.442388][   T29]  ? kthread_data+0x4f/0xc0
[  505.442409][   T29]  ? wq_worker_sleeping+0x63/0x240
[  505.442435][   T29]  schedule+0xbd/0x170
[  505.442465][   T29]  schedule_preempt_disabled+0x13/0x20
[  505.442492][   T29]  __mutex_lock+0x6a9/0xcc0
[  505.442514][   T29]  ? __mutex_lock+0x4f9/0xcc0
[  505.442539][   T29]  ? addrconf_verify_work+0x19/0x30
[  505.442563][   T29]  ? mutex_lock_nested+0x20/0x20
[  505.442581][   T29]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  505.442609][   T29]  ? read_lock_is_recursive+0x20/0x20
[  505.442640][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  505.442664][   T29]  ? process_scheduled_works+0x96f/0x15d0
[  505.442689][   T29]  addrconf_verify_work+0x19/0x30
[  505.442708][   T29]  process_scheduled_works+0xa5d/0x15d0
[  505.442768][   T29]  ? worker_attach_to_pool+0x380/0x380
[  505.442802][   T29]  ? assign_work+0x3d2/0x5d0
[  505.442833][   T29]  worker_thread+0xa55/0xfc0
[  505.442893][   T29]  kthread+0x2fa/0x390
[  505.442911][   T29]  ? pr_cont_work+0x560/0x560
[  505.442936][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.442956][   T29]  ret_from_fork+0x48/0x80
[  505.442979][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.443000][   T29]  ret_from_fork_asm+0x11/0x20
[  505.443045][   T29]  </TASK>
[  505.443106][   T29] INFO: task jbd2/sda1-8:5101 blocked for more than 142 seconds.
[  505.443128][   T29]       Not tainted syzkaller #0
[  505.443138][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  505.443147][   T29] task:jbd2/sda1-8     state:D stack:25672 pid:5101  ppid:2      flags:0x00004000
[  505.443184][   T29] Call Trace:
[  505.443191][   T29]  <TASK>
[  505.443205][   T29]  __schedule+0x1553/0x45a0
[  505.443234][   T29]  ? blk_mq_plug_issue_direct+0x590/0x590
[  505.443286][   T29]  ? asan.module_dtor+0x20/0x20
[  505.443332][   T29]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  505.443356][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  505.443385][   T29]  schedule+0xbd/0x170
[  505.443414][   T29]  io_schedule+0x80/0xd0
[  505.443436][   T29]  bit_wait_io+0x11/0xd0
[  505.443458][   T29]  __wait_on_bit+0xac/0x2d0
[  505.443481][   T29]  ? bit_wait+0xd0/0xd0
[  505.443503][   T29]  out_of_line_wait_on_bit+0x13c/0x190
[  505.443525][   T29]  ? bit_wait+0xd0/0xd0
[  505.443544][   T29]  ? __wait_on_bit+0x2d0/0x2d0
[  505.443567][   T29]  ? bit_waitqueue+0x30/0x30
[  505.443603][   T29]  jbd2_journal_commit_transaction+0x3650/0x5b20
[  505.443676][   T29]  ? jbd2_journal_finish_inode_data_buffers+0xb0/0xb0
[  505.443703][   T29]  ? lock_chain_count+0x20/0x20
[  505.443741][   T29]  ? _raw_spin_unlock+0x40/0x40
[  505.443776][   T29]  ? __try_to_del_timer_sync+0x1c2/0x280
[  505.443805][   T29]  ? __timer_delete_sync+0x23d/0x2e0
[  505.443824][   T29]  ? __lock_acquire+0x7d40/0x7d40
[  505.443849][   T29]  ? timer_delete_sync+0x20/0x20
[  505.443865][   T29]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  505.443891][   T29]  ? _raw_spin_unlock+0x40/0x40
[  505.443918][   T29]  ? finish_wait+0xc7/0x1d0
[  505.443946][   T29]  kjournald2+0x42b/0x830
[  505.443991][   T29]  ? jbd2_seq_info_show+0x5c0/0x5c0
[  505.444013][   T29]  ? wake_bit_function+0x200/0x200
[  505.444038][   T29]  ? __kthread_parkme+0x7a/0x1c0
[  505.444070][   T29]  kthread+0x2fa/0x390
[  505.444089][   T29]  ? jbd2_seq_info_show+0x5c0/0x5c0
[  505.444112][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.444141][   T29]  ret_from_fork+0x48/0x80
[  505.444163][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.444184][   T29]  ret_from_fork_asm+0x11/0x20
[  505.444228][   T29]  </TASK>
[  505.444256][   T29] INFO: task syz.0.1199:9568 blocked for more than 142 seconds.
[  505.444268][   T29]       Not tainted syzkaller #0
[  505.444279][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  505.444287][   T29] task:syz.0.1199      state:D stack:25640 pid:9568  ppid:5772   flags:0x00004002
[  505.444323][   T29] Call Trace:
[  505.444329][   T29]  <TASK>
[  505.444343][   T29]  __schedule+0x1553/0x45a0
[  505.444379][   T29]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  505.444430][   T29]  ? asan.module_dtor+0x20/0x20
[  505.444461][   T29]  ? __mutex_lock+0x6a4/0xcc0
[  505.444483][   T29]  ? __mutex_trylock_common+0x8a/0x260
[  505.444507][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  505.444537][   T29]  schedule+0xbd/0x170
[  505.444566][   T29]  schedule_preempt_disabled+0x13/0x20
[  505.444593][   T29]  __mutex_lock+0x6a9/0xcc0
[  505.444616][   T29]  ? __mutex_lock+0x4f9/0xcc0
[  505.444640][   T29]  ? synchronize_rcu_expedited+0x3da/0x880
[  505.444671][   T29]  ? mutex_lock_nested+0x20/0x20
[  505.444690][   T29]  ? do_raw_spin_lock+0x11f/0x2c0
[  505.444719][   T29]  ? __rwlock_init+0x150/0x150
[  505.444749][   T29]  ? do_raw_spin_unlock+0x121/0x230
[  505.444780][   T29]  synchronize_rcu_expedited+0x3da/0x880
[  505.444811][   T29]  ? schedule_delayed_monitor_work+0x40/0x40
[  505.444855][   T29]  ? packet_release+0xa2f/0xd30
[  505.444905][   T29]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  505.444926][   T29]  ? __might_sleep+0xe0/0xe0
[  505.444951][   T29]  ? mutex_unlock+0x10/0x10
[  505.444972][   T29]  ? __local_bh_enable_ip+0x13a/0x1c0
[  505.444994][   T29]  ? _local_bh_enable+0xa0/0xa0
[  505.445027][   T29]  packet_release+0xa34/0xd30
[  505.445063][   T29]  ? packet_rcv_spkt+0x5a0/0x5a0
[  505.445089][   T29]  ? down_write+0x16e/0x200
[  505.445133][   T29]  sock_close+0xbd/0x230
[  505.445159][   T29]  ? sock_mmap+0xa0/0xa0
[  505.445182][   T29]  __fput+0x234/0x970
[  505.445219][   T29]  task_work_run+0x1d4/0x260
[  505.445251][   T29]  ? task_work_cancel+0x220/0x220
[  505.445291][   T29]  do_exit+0x95a/0x2460
[  505.445337][   T29]  ? put_task_struct+0xc0/0xc0
[  505.445371][   T29]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  505.445393][   T29]  ? get_signal+0x1068/0x13f0
[  505.445415][   T29]  ? lock_chain_count+0x20/0x20
[  505.445440][   T29]  ? _raw_spin_lock_irq+0xbb/0xf0
[  505.445468][   T29]  do_group_exit+0x21b/0x2d0
[  505.445496][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  505.445524][   T29]  get_signal+0x12fc/0x13f0
[  505.445574][   T29]  arch_do_signal_or_restart+0xc2/0x800
[  505.445606][   T29]  ? ppp_ioctl+0x1651/0x1a90
[  505.445630][   T29]  ? get_sigframe_size+0x20/0x20
[  505.445684][   T29]  ? exit_to_user_mode_loop+0x3b/0x110
[  505.445716][   T29]  exit_to_user_mode_loop+0x70/0x110
[  505.445744][   T29]  exit_to_user_mode_prepare+0xee/0x180
[  505.445773][   T29]  syscall_exit_to_user_mode+0x1a/0x50
[  505.445797][   T29]  do_syscall_64+0x61/0xa0
[  505.445814][   T29]  ? clear_bhb_loop+0x40/0x90
[  505.445837][   T29]  ? clear_bhb_loop+0x40/0x90
[  505.445863][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  505.445887][   T29] RIP: 0033:0x7f995399c819
[  505.445906][   T29] RSP: 002b:00007f99548f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  505.445930][   T29] RAX: fffffffffffffff2 RBX: 00007f9953c16180 RCX: 00007f995399c819
[  505.445946][   T29] RDX: 000000110c23003f RSI: 00000000c004743e RDI: 000000000000000a
[  505.445960][   T29] RBP: 00007f9953a32c91 R08: 0000000000000000 R09: 0000000000000000
[  505.445974][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.445987][   T29] R13: 00007f9953c16218 R14: 00007f9953c16180 R15: 00007fff159bf308
[  505.446022][   T29]  </TASK>
[  505.446030][   T29] INFO: task syz.3.1201:9571 blocked for more than 142 seconds.
[  505.446044][   T29]       Not tainted syzkaller #0
[  505.446053][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  505.446063][   T29] task:syz.3.1201      state:D stack:27016 pid:9571  ppid:5769   flags:0x00004006
[  505.446099][   T29] Call Trace:
[  505.446106][   T29]  <TASK>
[  505.446127][   T29]  __schedule+0x1553/0x45a0
[  505.446165][   T29]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  505.446215][   T29]  ? asan.module_dtor+0x20/0x20
[  505.446245][   T29]  ? __mutex_lock+0x6a4/0xcc0
[  505.446268][   T29]  ? __mutex_trylock_common+0x8a/0x260
[  505.446291][   T29]  ? trace_raw_output_contention_end+0xd0/0xd0
[  505.446321][   T29]  schedule+0xbd/0x170
[  505.446350][   T29]  schedule_preempt_disabled+0x13/0x20
[  505.446378][   T29]  __mutex_lock+0x6a9/0xcc0
[  505.446400][   T29]  ? __mutex_lock+0x4f9/0xcc0
[  505.446424][   T29]  ? perf_trace_destroy+0x2e/0x140
[  505.446452][   T29]  ? mutex_lock_nested+0x20/0x20
[  505.446471][   T29]  ? __mutex_lock+0x315/0xcc0
[  505.446499][   T29]  ? __mutex_unlock_slowpath+0x1b4/0x6c0
[  505.446520][   T29]  ? perf_detach_cgroup+0x310/0x310
[  505.446548][   T29]  ? perf_swevent_read+0x10/0x10
[  505.446576][   T29]  perf_trace_destroy+0x2e/0x140
[  505.446598][   T29]  ? perf_swevent_read+0x10/0x10
[  505.446626][   T29]  _free_event+0xb73/0xf30
[  505.446662][   T29]  perf_event_release_kernel+0x842/0x8d0
[  505.446688][   T29]  ? __might_sleep+0xe0/0xe0
[  505.446713][   T29]  ? calc_timer_values+0x400/0x400
[  505.446739][   T29]  ? __fput+0x61c/0x970
[  505.446761][   T29]  ? perf_mmap+0x15c0/0x15c0
[  505.446789][   T29]  perf_release+0x3b/0x40
[  505.446816][   T29]  __fput+0x234/0x970
[  505.446851][   T29]  task_work_run+0x1d4/0x260
[  505.446881][   T29]  ? task_work_cancel+0x220/0x220
[  505.446915][   T29]  ? exit_to_user_mode_loop+0x3b/0x110
[  505.446947][   T29]  exit_to_user_mode_loop+0xe6/0x110
[  505.446975][   T29]  exit_to_user_mode_prepare+0xee/0x180
[  505.447004][   T29]  syscall_exit_to_user_mode+0x1a/0x50
[  505.447027][   T29]  do_syscall_64+0x61/0xa0
[  505.447045][   T29]  ? clear_bhb_loop+0x40/0x90
[  505.447068][   T29]  ? clear_bhb_loop+0x40/0x90
[  505.447095][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  505.447124][   T29] RIP: 0033:0x7f0a16b9c819
[  505.447142][   T29] RSP: 002b:00007ffe353d6018 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  505.447163][   T29] RAX: 0000000000000000 RBX: 00007f0a16e17da0 RCX: 00007f0a16b9c819
[  505.447177][   T29] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  505.447191][   T29] RBP: 00007f0a16e17da0 R08: 0000000000000006 R09: 0000000000000000
[  505.447204][   T29] R10: 00007f0a16e17cb0 R11: 0000000000000246 R12: 00000000000563a6
[  505.447219][   T29] R13: 00007f0a16e1609c R14: 00000000000561f4 R15: 00007f0a16e16090
[  505.447256][   T29]  </TASK>
[  505.447265][   T29] INFO: task syz.1.1203:9577 blocked for more than 142 seconds.
[  505.447278][   T29]       Not tainted syzkaller #0
[  505.447288][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  505.447297][   T29] task:syz.1.1203      state:D stack:25736 pid:9577  ppid:5776   flags:0x00004004
[  505.447330][   T29] Call Trace:
[  505.447338][   T29]  <TASK>
[  505.447352][   T29]  __schedule+0x1553/0x45a0
[  505.447393][   T29]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  505.447421][   T29]  ? lock_chain_count+0x20/0x20
[  505.447450][   T29]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  505.447474][   T29]  ? asan.module_dtor+0x20/0x20
[  505.447506][   T29]  ? _raw_spin_unlock+0x40/0x40
[  505.447527][   T29]  ? queue_work_on+0x19a/0x1f0
[  505.447555][   T29]  ? prepare_to_wait_event+0x3db/0x470
[  505.447581][   T29]  ? prepare_to_wait_event+0x434/0x470
[  505.447611][   T29]  schedule+0xbd/0x170
[  505.447639][   T29]  synchronize_rcu_expedited+0x6d8/0x880
[  505.447672][   T29]  ? schedule_delayed_monitor_work+0x40/0x40
[  505.447701][   T29]  ? __free_object+0x21c/0xa70
[  505.447729][   T29]  ? lockdep_hardirqs_on+0x98/0x150
[  505.447766][   T29]  ? sync_rcu_exp_done_unlocked+0x140/0x140
[  505.447815][   T29]  ? __might_sleep+0xe0/0xe0
[  505.447841][   T29]  ? wake_bit_function+0x200/0x200
[  505.447879][   T29]  synchronize_rcu+0x142/0x3e0
[  505.447907][   T29]  ? __schedule_delayed_monitor_work+0x200/0x200
[  505.447936][   T29]  ? __synchronize_srcu+0x33c/0x3e0
[  505.447962][   T29]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  505.447986][   T29]  ? synchronize_srcu_expedited+0x20/0x20
[  505.448012][   T29]  ? rcu_read_lock_any_held+0x140/0x140
[  505.448046][   T29]  ? read_tsc+0x9/0x20
[  505.448066][   T29]  ? ktime_get_mono_fast_ns+0x19d/0x1c0
[  505.448094][   T29]  ? synchronize_srcu+0x27d/0x2a0
[  505.448130][   T29]  perf_trace_event_unreg+0xc4/0x1b0
[  505.448156][   T29]  perf_trace_destroy+0x9e/0x140
[  505.448178][   T29]  ? perf_swevent_read+0x10/0x10
[  505.448207][   T29]  _free_event+0xb73/0xf30
[  505.448241][   T29]  perf_event_release_kernel+0x842/0x8d0
[  505.448267][   T29]  ? __might_sleep+0xe0/0xe0
[  505.448293][   T29]  ? calc_timer_values+0x400/0x400
[  505.448318][   T29]  ? __fput+0x61c/0x970
[  505.448340][   T29]  ? perf_mmap+0x15c0/0x15c0
[  505.448367][   T29]  perf_release+0x3b/0x40
[  505.448394][   T29]  __fput+0x234/0x970
[  505.448430][   T29]  task_work_run+0x1d4/0x260
[  505.448460][   T29]  ? task_work_cancel+0x220/0x220
[  505.448494][   T29]  ? exit_to_user_mode_loop+0x3b/0x110
[  505.448527][   T29]  exit_to_user_mode_loop+0xe6/0x110
[  505.448554][   T29]  exit_to_user_mode_prepare+0xee/0x180
[  505.448581][   T29]  syscall_exit_to_user_mode+0x1a/0x50
[  505.463495][   T29]  do_syscall_64+0x61/0xa0
[  505.463520][   T29]  ? clear_bhb_loop+0x40/0x90
[  505.463543][   T29]  ? clear_bhb_loop+0x40/0x90
[  505.463569][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  505.463593][   T29] RIP: 0033:0x7fc263f9c819
[  505.463610][   T29] RSP: 002b:00007ffc6bf268b8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  505.463634][   T29] RAX: 0000000000000000 RBX: 00007ffc6bf269a0 RCX: 00007fc263f9c819
[  505.463649][   T29] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  505.463661][   T29] RBP: 000000000005622e R08: 0000000000000001 R09: 0000000000000000
[  505.463675][   T29] R10: 0000001b2c620000 R11: 0000000000000246 R12: 00007ffc6bf269e0
[  505.463689][   T29] R13: 00007fc264215fac R14: 0000000000056273 R15: 00007fc264215fa0
[  505.463724][   T29]  </TASK>
[  505.463732][   T29] 
[  505.463732][   T29] Showing all locks held in the system:
[  505.463743][   T29] 2 locks held by kthreadd/2:
[  505.463756][   T29] 3 locks held by kworker/0:0/8:
[  505.463769][   T29] 2 locks held by kworker/u4:0/11:
[  505.463780][   T29] 2 locks held by kworker/u4:1/12:
[  505.463795][   T29] 1 lock held by khungtaskd/29:
[  505.463806][   T29]  #0: ffffffff8d1320a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  505.463870][   T29] 2 locks held by kworker/u4:2/33:
[  505.463886][   T29] 3 locks held by kworker/u4:4/59:
[  505.463897][   T29]  #0: ffff88802c4a7138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  505.463959][   T29]  #1: ffffc900015a7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[  505.464019][   T29]  #2: ffffffff8e3c21c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  505.464082][   T29] 3 locks held by kworker/u4:5/1005:
[  505.464095][   T29] 4 locks held by kworker/u4:6/1094:
[  505.464108][   T29] 3 locks held by kworker/u4:7/1125:
[  505.464142][   T29] 3 locks held by kworker/u4:8/2961:
[  505.464155][   T29] 2 locks held by kworker/R-bat_e/3382:
[  505.464168][   T29] 3 locks held by kworker/u4:11/4495:
[  505.464181][   T29] 1 lock held by klogd/5128:
[  505.464193][   T29] 3 locks held by udevd/5139:
[  505.464205][   T29] 2 locks held by dhcpcd/5433:
[  505.464218][   T29] 2 locks held by getty/5532:
[  505.464229][   T29]  #0: ffff888031a720a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  505.464286][   T29]  #1: ffffc9000326e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x433/0x1390
[  505.464343][   T29] 4 locks held by kworker/0:3/5759:
[  505.464355][   T29] 1 lock held by syz-executor/5765:
[  505.464368][   T29] 2 locks held by syz-executor/5773:
[  505.464382][   T29] 2 locks held by kworker/1:5/5826:
[  505.464395][   T29] 2 locks held by syz.0.1199/9568:
[  505.464406][   T29]  #0: ffff88805ee55020 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x9b/0x230
[  505.464469][   T29]  #1: ffffffff8d137a78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3da/0x880
[  505.464532][   T29] 1 lock held by syz.3.1201/9571:
[  505.464543][   T29]  #0: ffffffff8d1880e8 (event_mutex){+.+.}-{3:3}, at: perf_trace_destroy+0x2e/0x140
[  505.464600][   T29] 8 locks held by syz.3.1201/9572:
[  505.464612][   T29] 2 locks held by syz.1.1203/9577:
[  505.464623][   T29]  #0: ffffffff8d1880e8 (event_mutex){+.+.}-{3:3}, at: perf_trace_destroy+0x2e/0x140
[  505.464680][   T29]  #1: ffffffff8d137a78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3da/0x880
[  505.464741][   T29] 
[  505.464747][   T29] =============================================
[  505.464747][   T29] 
[  505.464755][   T29] NMI backtrace for cpu 0
[  505.464765][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  505.464783][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  505.464795][   T29] Call Trace:
[  505.464802][   T29]  <TASK>
[  505.464810][   T29]  dump_stack_lvl+0x18c/0x250
[  505.464837][   T29]  ? preempt_count_add+0x91/0x1a0
[  505.464865][   T29]  ? show_regs_print_info+0x20/0x20
[  505.464894][   T29]  ? load_image+0x420/0x420
[  505.464932][   T29]  nmi_cpu_backtrace+0x3a6/0x3e0
[  505.464956][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  505.464975][   T29]  ? _printk+0xde/0x130
[  505.464998][   T29]  ? load_image+0x420/0x420
[  505.465025][   T29]  ? load_image+0x420/0x420
[  505.465054][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  505.465084][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  505.465107][   T29]  watchdog+0xf3d/0xf80
[  505.465142][   T29]  ? watchdog+0x1e1/0xf80
[  505.465176][   T29]  kthread+0x2fa/0x390
[  505.465193][   T29]  ? hungtask_pm_notify+0x90/0x90
[  505.465218][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.465237][   T29]  ret_from_fork+0x48/0x80
[  505.465257][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.465277][   T29]  ret_from_fork_asm+0x11/0x20
[  505.465318][   T29]  </TASK>
[  505.465325][   T29] Sending NMI from CPU 0 to CPUs 1:
[  505.465354][    C1] NMI backtrace for cpu 1
[  505.465364][    C1] CPU: 1 PID: 9572 Comm: syz.3.1201 Not tainted syzkaller #0
[  505.465379][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  505.465387][    C1] RIP: 0010:perf_trace_lock_acquire+0xb3/0x410
[  505.465412][    C1] Code: 00 00 00 00 43 c6 44 34 08 04 c7 84 24 80 00 00 00 00 00 00 00 48 89 74 24 38 48 8d 5e 18 48 89 d8 48 c1 e8 03 48 89 44 24 28 <42> 80 3c 30 00 74 08 48 89 df e8 3e 03 78 00 48 89 5c 24 30 48 8b
[  505.465425][    C1] RSP: 0018:ffffc900001ef3c0 EFLAGS: 00000806
[  505.465438][    C1] RAX: 1ffffffff1a2976c RBX: ffffffff8d14bb60 RCX: 0000000000000000
[  505.465449][    C1] RDX: 0000000000000000 RSI: ffffffff8d14bb48 RDI: ffffffff8cffd240
[  505.465459][    C1] RBP: ffffc900001ef4c0 R08: 0000000000000002 R09: 0000000000000001
[  505.465468][    C1] R10: dffffc0000000000 R11: fffffbfff1d16186 R12: 1ffff9200003de80
[  505.465478][    C1] R13: ffffffff8d14bb48 R14: dffffc0000000000 R15: ffffffff8cffd240
[  505.465489][    C1] FS:  00007f0a17ae86c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  505.465503][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  505.465513][    C1] CR2: 000000110c330042 CR3: 00000000764da000 CR4: 00000000003506e0
[  505.465529][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  505.465538][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  505.465547][    C1] Call Trace:
[  505.465552][    C1]  <IRQ>
[  505.465558][    C1]  ? __lock_acquire+0x7d40/0x7d40
[  505.465576][    C1]  ? __rwlock_init+0x150/0x150
[  505.465594][    C1]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  505.465620][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  505.465638][    C1]  ? _raw_spin_unlock+0x40/0x40
[  505.465655][    C1]  lock_acquire+0x3ef/0x420
[  505.465671][    C1]  ? ktime_get+0x35/0x280
[  505.465692][    C1]  ? read_lock_is_recursive+0x20/0x20
[  505.465713][    C1]  ? hrtimer_interrupt+0x597/0x9c0
[  505.465728][    C1]  ? ktime_get+0x35/0x280
[  505.465745][    C1]  seqcount_lockdep_reader_access+0xd1/0x1d0
[  505.465762][    C1]  ? ktime_get+0x35/0x280
[  505.465777][    C1]  ? ktime_get_real_ts64+0x440/0x440
[  505.465799][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  505.465817][    C1]  ktime_get+0x35/0x280
[  505.465831][    C1]  ? clockevents_program_event+0xd7/0x310
[  505.465851][    C1]  clockevents_program_event+0xe6/0x310
[  505.465878][    C1]  hrtimer_interrupt+0x5a1/0x9c0
[  505.465911][    C1]  __sysvec_apic_timer_interrupt+0xfb/0x3b0
[  505.465930][    C1]  sysvec_apic_timer_interrupt+0x51/0xc0
[  505.465947][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  505.465965][    C1] RIP: 0010:slab_free_freelist_hook+0x99/0x1a0
[  505.465981][    C1] Code: 31 c9 e8 ea 27 00 00 b0 01 e9 13 01 00 00 49 89 d5 49 89 f7 48 c7 06 00 00 00 00 48 c7 02 00 00 00 00 eb 11 48 8b 04 24 ff 08 <48> 3b 6c 24 10 0f 84 d2 00 00 00 4c 89 f5 8b 43 28 4e 8b 34 30 0f
[  505.465992][    C1] RSP: 0018:ffffc900001ef940 EFLAGS: 00000246
[  505.466004][    C1] RAX: ffffc900001ef99c RBX: ffff88801ee56a00 RCX: 97bbff60211ceb00
[  505.466014][    C1] RDX: dffffc0000000000 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c8de0
[  505.466024][    C1] RBP: ffff888082e0a100 R08: ffffffff911c4507 R09: 1ffffffff22388a0
[  505.466035][    C1] R10: dffffc0000000000 R11: fffffbfff22388a1 R12: 0000000000000000
[  505.466044][    C1] R13: ffffc900001ef9a0 R14: 0000000000000000 R15: ffffc900001ef9a8
[  505.466069][    C1]  ? br_nf_dev_queue_xmit+0x492/0x1b80
[  505.466085][    C1]  kmem_cache_free+0xf8/0x270
[  505.466109][    C1]  br_nf_dev_queue_xmit+0x492/0x1b80
[  505.466131][    C1]  ? NF_HOOK+0xa7/0x700
[  505.466145][    C1]  NF_HOOK+0x66e/0x700
[  505.466158][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  505.466178][    C1]  ? br_validate_ipv4+0x810/0x810
[  505.466194][    C1]  ? br_nf_forward_finish+0xe80/0xe80
[  505.466211][    C1]  ? net_generic+0x1e/0x240
[  505.466224][    C1]  ? net_generic+0x1e/0x240
[  505.466237][    C1]  ? skb_pull+0xc1/0x1d0
[  505.466254][    C1]  br_nf_post_routing+0xb41/0xfb0
[  505.466269][    C1]  ? br_nf_forward_finish+0xe80/0xe80
[  505.466290][    C1]  ? br_nf_forward_arp+0xc10/0xc10
[  505.466304][    C1]  nf_hook_slow+0xbd/0x200
[  505.466323][    C1]  ? nla_nest_cancel+0x90/0x90
[  505.466340][    C1]  ? nla_nest_cancel+0x90/0x90
[  505.466357][    C1]  NF_HOOK+0x23e/0x3e0
[  505.466376][    C1]  ? NF_HOOK+0xa3/0x3e0
[  505.466392][    C1]  ? br_forward_finish+0x130/0x130
[  505.466411][    C1]  ? nla_nest_cancel+0x90/0x90
[  505.466427][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  505.466445][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  505.466466][    C1]  br_forward_finish+0xd3/0x130
[  505.466482][    C1]  ? nla_nest_cancel+0x90/0x90
[  505.466501][    C1]  br_nf_forward_finish+0xa51/0xe80
[  505.466522][    C1]  ? nf_bridge_pull_encap_header+0xc0/0xc0
[  505.466540][    C1]  ? br_dev_queue_push_xmit+0x870/0x870
[  505.466561][    C1]  ? nf_hook_slow+0x1b4/0x200
[  505.466578][    C1]  ? NF_HOOK+0xa7/0x700
[  505.466592][    C1]  NF_HOOK+0x66e/0x700
[  505.466610][    C1]  ? br_validate_ipv4+0x810/0x810
[  505.466623][    C1]  ? lock_is_held_type+0x13e/0x190
[  505.466641][    C1]  ? nf_bridge_pull_encap_header+0xc0/0xc0
[  505.466664][    C1]  br_nf_forward_ip+0xcc1/0x1110
[  505.466678][    C1]  ? nf_bridge_pull_encap_header+0xc0/0xc0
[  505.466699][    C1]  ? br_nf_local_in+0x460/0x460
[  505.466713][    C1]  nf_hook_slow+0xbd/0x200
[  505.466731][    C1]  ? br_dev_queue_push_xmit+0x870/0x870
[  505.466748][    C1]  ? br_dev_queue_push_xmit+0x870/0x870
[  505.466765][    C1]  NF_HOOK+0x23e/0x3e0
[  505.466785][    C1]  ? NF_HOOK+0xa3/0x3e0
[  505.466801][    C1]  ? br_forward_finish+0x130/0x130
[  505.466820][    C1]  ? br_dev_queue_push_xmit+0x870/0x870
[  505.466845][    C1]  __br_forward+0x433/0x610
[  505.466861][    C1]  ? br_dev_queue_push_xmit+0x870/0x870
[  505.466886][    C1]  ? skb_clone+0x21f/0x370
[  505.466902][    C1]  ? should_deliver+0x380/0x380
[  505.466926][    C1]  br_handle_frame_finish+0x13c5/0x18f0
[  505.466954][    C1]  ? brport_get_ownership+0x80/0x80
[  505.466975][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  505.466992][    C1]  ? __static_call_text_end+0xf8c00/0xf8c00
[  505.467009][    C1]  ? brport_get_ownership+0x33/0x80
[  505.467031][    C1]  ? nf_hook_slow+0x16c/0x200
[  505.467049][    C1]  ? brport_get_ownership+0x80/0x80
[  505.467068][    C1]  br_nf_hook_thresh+0x3cd/0x4a0
[  505.467089][    C1]  ? brnf_get_logical_dev+0x270/0x270
[  505.467106][    C1]  ? brport_get_ownership+0x80/0x80
[  505.467128][    C1]  ? nf_bridge_update_protocol+0x91/0x170
[  505.467146][    C1]  br_nf_pre_routing_finish_ipv6+0x9dc/0xd00
[  505.467162][    C1]  ? brport_get_ownership+0x80/0x80
[  505.467188][    C1]  br_nf_pre_routing_ipv6+0x349/0x6b0
[  505.467204][    C1]  ? br_nf_pre_routing_ipv6+0x3f2/0x6b0
[  505.467220][    C1]  ? br_validate_ipv6+0x730/0x730
[  505.467237][    C1]  ? br_nf_pre_routing_ipv6+0x6b0/0x6b0
[  505.467251][    C1]  ? br_nf_pre_routing+0x70f/0x1420
[  505.467270][    C1]  ? br_nf_hook_thresh+0x4a0/0x4a0
[  505.467286][    C1]  br_handle_frame+0x1245/0x14d0
[  505.467310][    C1]  ? br_handle_frame_dummy+0x10/0x10
[  505.467331][    C1]  ? brport_get_ownership+0x80/0x80
[  505.467354][    C1]  ? br_handle_frame_dummy+0x10/0x10
[  505.467373][    C1]  __netif_receive_skb_core+0xfab/0x3af0
[  505.467392][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  505.467409][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  505.467434][    C1]  ? qdisc_run+0x230/0x230
[  505.467447][    C1]  ? lock_acquire+0x208/0x420
[  505.467466][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  505.467485][    C1]  ? read_lock_is_recursive+0x20/0x20
[  505.467500][    C1]  ? _raw_spin_lock_irq+0xbb/0xf0
[  505.467517][    C1]  ? process_backlog+0x2cf/0x6f0
[  505.467532][    C1]  __netif_receive_skb+0x74/0x290
[  505.467551][    C1]  ? process_backlog+0x2cf/0x6f0
[  505.467565][    C1]  process_backlog+0x391/0x6f0
[  505.467591][    C1]  ? trigger_rx_softirq+0x60/0x60
[  505.467613][    C1]  __napi_poll+0xc0/0x460
[  505.467630][    C1]  net_rx_action+0x616/0xc40
[  505.467653][    C1]  ? net_tx_action+0x980/0x980
[  505.467669][    C1]  ? detach_timer+0x2b0/0x2b0
[  505.467694][    C1]  handle_softirqs+0x280/0x820
[  505.467712][    C1]  ? __irq_exit_rcu+0xd3/0x190
[  505.467729][    C1]  ? do_softirq+0x1a0/0x1a0
[  505.467747][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  505.467767][    C1]  __irq_exit_rcu+0xd3/0x190
[  505.467781][    C1]  ? irq_exit_rcu+0x20/0x20
[  505.467801][    C1]  irq_exit_rcu+0x9/0x20
[  505.467814][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  505.467830][    C1]  </IRQ>
[  505.467834][    C1]  <TASK>
[  505.467840][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  505.467856][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x30/0x60
[  505.467880][    C1] Code: 04 24 65 48 8b 0d e0 93 7c 7e 65 8b 15 e1 93 7c 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 1c 16 00 00 00 74 2c <8b> 91 f8 15 00 00 83 fa 02 75 21 48 8b 91 00 16 00 00 48 8b 32 48
[  505.467891][    C1] RSP: 0018:ffffc90004a767b8 EFLAGS: 00000246
[  505.467902][    C1] RAX: ffffffff8a76e150 RBX: 0000000000000032 RCX: ffff88807bef0000
[  505.467913][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000018
[  505.467921][    C1] RBP: ffffc90004a768c8 R08: ffffc90004a76857 R09: 0000000000000000
[  505.467931][    C1] R10: ffffc90004a76840 R11: fffff5200094ed0b R12: ffffc90004a76bac
[  505.467941][    C1] R13: dffffc0000000000 R14: ffffc90004a76bac R15: 0000000000000000
[  505.467956][    C1]  ? number+0xbb0/0xf60
[  505.467978][    C1]  number+0xbb0/0xf60
[  505.468001][    C1]  ? pointer+0x1160/0x1160
[  505.468026][    C1]  vsnprintf+0x14c6/0x1ba0
[  505.468050][    C1]  sprintf+0xe8/0x140
[  505.468067][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  505.468087][    C1]  ? vsprintf+0x30/0x30
[  505.468113][    C1]  info_print_prefix+0x16c/0x360
[  505.468133][    C1]  ? msg_add_dict_text+0x3d0/0x3d0
[  505.468158][    C1]  record_print_text+0x177/0x450
[  505.468181][    C1]  ? kmsg_dump_get_line+0x3e0/0x3e0
[  505.468201][    C1]  ? verify_lock_unused+0x140/0x140
[  505.468224][    C1]  printk_get_next_message+0x2ab/0x980
[  505.468249][    C1]  ? trace_raw_output_console+0xd0/0xd0
[  505.468277][    C1]  ? read_lock_is_recursive+0x20/0x20
[  505.468297][    C1]  ? console_flush_all+0x355/0xd20
[  505.468318][    C1]  console_flush_all+0x3a8/0xd20
[  505.468336][    C1]  ? console_flush_all+0x951/0xd20
[  505.468352][    C1]  ? console_flush_all+0x10a/0xd20
[  505.468377][    C1]  ? is_console_locked+0x20/0x20
[  505.468395][    C1]  ? lock_chain_count+0x20/0x20
[  505.468413][    C1]  ? __down_trylock_console_sem+0xf6/0x1f0
[  505.468433][    C1]  console_unlock+0xad/0x350
[  505.468451][    C1]  ? other_cpu_in_panic+0xf0/0xf0
[  505.468468][    C1]  ? perf_trace_lock_acquire+0x104/0x410
[  505.468495][    C1]  vprintk_emit+0x497/0x610
[  505.468514][    C1]  ? printk_sprint+0x460/0x460
[  505.468540][    C1]  _printk+0xde/0x130
[  505.468562][    C1]  ? load_image+0x420/0x420
[  505.468582][    C1]  ? net_generic+0x1e/0x240
[  505.468606][    C1]  tipc_net_init+0xb2/0x170
[  505.468627][    C1]  __tipc_nl_net_set+0x3e4/0x610
[  505.468649][    C1]  ? tipc_nl_net_dump+0x790/0x790
[  505.468671][    C1]  ? tipc_nl_net_set+0x17/0x30
[  505.468699][    C1]  ? __nla_parse+0x40/0x50
[  505.468720][    C1]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  505.468738][    C1]  ? genl_family_rcv_msg_attrs_parse+0x20a/0x290
[  505.468760][    C1]  tipc_nl_net_set+0x22/0x30
[  505.468782][    C1]  genl_family_rcv_msg_doit+0x211/0x310
[  505.468805][    C1]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  505.468837][    C1]  genl_rcv_msg+0x619/0x7a0
[  505.468858][    C1]  ? genl_bind+0x360/0x360
[  505.468881][    C1]  ? __tipc_nl_net_set+0x610/0x610
[  505.468914][    C1]  netlink_rcv_skb+0x241/0x4d0
[  505.468938][    C1]  ? genl_bind+0x360/0x360
[  505.468956][    C1]  ? netlink_ack+0x1180/0x1180
[  505.468988][    C1]  ? __lock_acquire+0x7d40/0x7d40
[  505.469014][    C1]  ? down_read+0x1ac/0x2e0
[  505.469033][    C1]  genl_rcv+0x28/0x40
[  505.469049][    C1]  netlink_unicast+0x751/0x8d0
[  505.469080][    C1]  netlink_sendmsg+0x8d0/0xbf0
[  505.469111][    C1]  ? netlink_getsockopt+0x590/0x590
[  505.469135][    C1]  ? aa_sock_msg_perm+0x94/0x150
[  505.469158][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  505.469179][    C1]  ? security_socket_sendmsg+0x80/0xa0
[  505.469197][    C1]  ? netlink_getsockopt+0x590/0x590
[  505.469223][    C1]  ____sys_sendmsg+0x5ba/0x960
[  505.469246][    C1]  ? __asan_memset+0x22/0x40
[  505.469267][    C1]  ? __sys_sendmsg_sock+0x30/0x30
[  505.469282][    C1]  ? __import_iovec+0x5f2/0x850
[  505.469306][    C1]  ? import_iovec+0x73/0xa0
[  505.469325][    C1]  ___sys_sendmsg+0x2a6/0x360
[  505.469346][    C1]  ? __sys_sendmsg+0x2a0/0x2a0
[  505.469394][    C1]  ? __se_sys_sendmsg+0xd9/0x2b0
[  505.469416][    C1]  __se_sys_sendmsg+0x1c2/0x2b0
[  505.469435][    C1]  ? __x64_sys_sendmsg+0x80/0x80
[  505.469465][    C1]  ? syscall_enter_from_user_mode+0x2e/0x80
[  505.469489][    C1]  do_syscall_64+0x55/0xa0
[  505.469503][    C1]  ? clear_bhb_loop+0x40/0x90
[  505.469523][    C1]  ? clear_bhb_loop+0x40/0x90
[  505.469544][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  505.469563][    C1] RIP: 0033:0x7f0a16b9c819
[  505.469578][    C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  505.469593][    C1] RSP: 002b:00007f0a17ae8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  505.469610][    C1] RAX: ffffffffffffffda RBX: 00007f0a16e15fa0 RCX: 00007f0a16b9c819
[  505.469623][    C1] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  505.469633][    C1] RBP: 00007f0a16c32c91 R08: 0000000000000000 R09: 0000000000000000
[  505.469644][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.469654][    C1] R13: 00007f0a16e16038 R14: 00007f0a16e15fa0 R15: 00007ffe353d5eb8
[  505.469678][    C1]  </TASK>
[  505.483008][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  505.483026][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0
[  505.483046][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  505.483056][   T29] Call Trace:
[  505.483064][   T29]  <TASK>
[  505.483073][   T29]  dump_stack_lvl+0x18c/0x250
[  505.483108][   T29]  ? show_regs_print_info+0x20/0x20
[  505.483136][   T29]  ? load_image+0x420/0x420
[  505.483193][   T29]  panic+0x2dc/0x730
[  505.483216][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  505.483248][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  505.483270][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  505.483298][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  505.483326][   T29]  watchdog+0xf7c/0xf80
[  505.483352][   T29]  ? watchdog+0x1e1/0xf80
[  505.483384][   T29]  kthread+0x2fa/0x390
[  505.483401][   T29]  ? hungtask_pm_notify+0x90/0x90
[  505.483425][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.483443][   T29]  ret_from_fork+0x48/0x80
[  505.483465][   T29]  ? kthread_blkcg+0xd0/0xd0
[  505.483483][   T29]  ret_from_fork_asm+0x11/0x20
[  505.483524][   T29]  </TASK>
[  505.484111][   T29] Kernel Offset: disabled