last executing test programs:

12m25.610257504s ago: executing program 0 (id=409):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e0ffff200000000021000aac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48) (fail_nth: 11)

12m24.990633024s ago: executing program 0 (id=412):
r0 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$sock(r0, &(0x7f0000003340)={0x0, 0x0, &(0x7f0000003240)=[{&(0x7f0000003100)="a8", 0x1}], 0x1}, 0x40009)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5070000000000000300000000000c00095000000000000002ba728041598d6fbd30cb599e83d24bd8137a3aa81e0ed139a85d36bb3019d13bd2321af3c2bd67ce68f15c0ec71d0e6adfefcf1d8f7faf75e0f226bd917060000007142fa9ea4318123751c0a0e168c1886d0d4d35379bd223ec839bc16ee988e6e0dc8cedf3ceb9fbfbf9b0a49ef42d430f6296b72a83438810720a159cda90363db3d221e152dfca64057ff3c4744aeaccd3641110bec4e9027a0c8055bbfc3a96d2e8910c2c39e4babe802f5ab3e89cf6c662ed40000000022278d00031e5388ee5c867ddd58211d6ece3ccb0cd2b6d3cffd962867a3a2f624f992daa94a6a556f3218ce740068725c37074e468ee207d2f73902ebcfcf49822775985bf31b715f5888b24efa190000000000000000000000000000ddffffff020000000000000000ddffffff0000b27cf3d1848a54d7132be1bfb0adf9deab3323aa9fdfb52faf9cb09c3bfd09000000b91ab219ef00bb7b3de8f67ffcad3f6c3c2b1f03550000000000001cf41ab11f12fb1e0a494034007de7c6592df1a6c64d8f20a67745409e011f1264d43f153b3d34889f40159e800ea2474b540500a30b23bcee46762e2093bcc9eae5ee3e980026c96f80ee1a00000000740750fa4d9aaa705989b8e673e3296e52d337c56abf112874ec51d6fe048ba6866adebab53168770a71ad901ace383e41d277b103923a9d961f7a2591dbe4a912ffaf6f658f3f9cd16286744f83a83f138f8f92efd92239eafcc5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353409e34d3e82279637599f35ad3f7ffffff3cac394c7bbdcd0e0eb52162e0c410ade7000026a4e739c60f03cc4146a77af02c1d4cefd4a2b94c0aed8477dfa8ceefb467f05c6977c78cdbf3f704ec73754910fe050038ec9e47de89298b7bf4d769ccc18eedd9068ca1457870eb30d219e23ccc8e06dddeb61799257ab5000013c86ba99523d61a00000000c270246c878d01160e6c07bf6cf8809c3a0d062357ba2515567230a6f8b2ad1e1f4933545fc3c741374211663f6b63b1dd044dd0a2768e825972fc4300001467c89fa0f82e8440105051e5510a33dcda5e4e202bd622549c4cffffff501d3a5dd7143fbf221fff161c12ca389cbe0000000000000fff2ecf631c6c5fd9c26a54d43fa050b88d1d43a8645bd9109b7e07869bba7131421c0f397073943330baafd243c0c6ffe673bab4113be7664e08bdd7115c61afcb718cf3c4680b2f6c7a8400e378a9b15bc20f49e298727340e87cdefb40e56e9cfad9931b8c552b2c7c503f3d0e7ab0e958adb8629aeec90e6d1857da822e40009995ae166deb9856291a43a6f7eb2e32cefbf463789eaf79b8d4c22be89f44b032dad13007b82e6044f643fc8cd07ae636a5dbe9864a117d27326850a7c3b570863f532c218b10af13d7be94987005088a83880ccab9c9920c2d2af8c5e13d52c83ac3fa7c3ae6c08384865b66d2204c2e4f3ae200f279b512b4dcb5dd9cba16b62040bf8702ae12c77e6e34991af603e3856a346cf708feeb708ab22b560cf8a4a6f31ba6d9b8cb0908000000000000001a342c010000000000e667a7592b33406f1f71c739b55db91d2309dc7ae401005f52053a39e7307c09ff3ac3e820b01c57dd74d4aafc4c383a17bc1de5347bb71ca16dcbbbaa2935ae662082b56cf666e63a759e0ef3ea7af6881513be94b362e15ffca8ec453b3a2a67be70c17b0f9c2eac765816c30c2e7133dca1c7669522e8dff8bc570a93fbdb688c3aef810000007a6ea6b11163392a19d87995b51cb6febd5f34a34998d2010fd5facf68c4f84e2f66e27c81a149d7b331983d3b74444953fc1216dfec10b724be3733c26f12538376e177ffef6fd2020000000000000008e4919a463d5332a2546032a3c06b94f168e8fc4bda0c294723fe306f26c477af4b926644672985fab7cc67bc5b5f5d38cdd8df95147ebe1cd88b0a4c6cde9951be10ba7dfddfefb238fac2303cc8982f1e55b005afcfea5eb037248fefad6bb02c162ce92ab17744c8ec3d2e80cf3205d36699fd381bc81231fb5e12e45f3059f361d08d6a6d019ebf105eaf43083c29512bcedd79ca9bf24e063d0c273ed70a2b70be521ea27dc8cf3c9bdf83b93405db07e82e2db484f8673e0e97dd7e8a872148613c3a04f3d67f4375ba5c7f1b00ffffff7f000000000801f71d79d812ced782646b5f79c8fc08bb5c11020108d702edd2ea9c96cf0d2d48aa5fc0a7bf1b51afd85350ad00b78c598fa8701b000884de790b54e5ab2e8ff0c7ae23e0b6eeac95c4c2eef2e5eb1d019d52099fbd404e8ece970f67856ba7e960bd8b1e4105ce7e31f7c9c3e3fa61aaa967b90087e91d703e98535b107b8f4653be4c46a3a1adb07d226952b8573b417018316fa96e2b8e7370baa16d4122c863709b08d4639a19a46ac90ac48a13ee9bcaa875fc700000000000003b40dc5c745fe2491e8425e600000000000000000000000000000000000000000000000000000000000000250318a44ad31baac0520a913301e630ae540f3289aebde8633f6f450c0738e16df6c7f1e0832a2a16fe6e39959735758248032cdf7320c6dc87b01e3f9a7811b200000000ae189de4b9b25f7c7a9c070000002af1c06315270de4a6605e4b4b58bef76fac54f11b84bd7bcd6b6a485edfb7684c770a39b38b08e18a51a4d4e66ca21c06a4b4198e1bc2ef990c9ba911efed626e5ee341a17bf8132b09000000d31df213c802d74797056fd3bca8b2d6cb134437cba0193ba4360bdcc98aad2560aa48291c4eb9d4e08ad7a9c5f04be1ab597124d84dfc7bd8cca8f68154a0ed356e773a797ca6d66748857b4abbf8830abeea2a46342e6a7378173cb29d5cdcd698a0203f78116b710008000000000000007c2d86b94472807c10eb9a8e2fb8bd79fe3a8316deff3ee641c9a080a2173642e673a672279bae4e7e28055da9497d7edb53be6e80482bd4d9a74b8dd4221fff0f0000705d7257ff7f76c78ba0b44ec0bdfa0d32d7042059b13a079639f14f9032b856d892ad6af5124c9c3130485e9682ff1f3c54e475d5bb496aef4bb537d7e191dfdeba109fdcf7864763f87a6d711cf52e520a6ce30e134c55e0caac037209d2f14fcddd00000000000000000000000000000000e609893bdce015e8ccfb36399844db61f6171b0b0e845e48728450c6ba4f7098f8e000676b59ab9f851f3ab77847ce05c89411277ec69c409b7ec50a3337a78675f38a568612c235ab5f2cd6d035d5f5f6a693c381adbbf7b37e37292783b2c7efe7d3a067906552f76d419e0300000000000000000000008f3a20b49fe7636806867283e35cff8d00e7b251bab3cf6377a24f8e8d4bda7503674bc94bf7f4d2fa6f25944bf0a186436d9f6831995976328a1fdc78492c65c1434855dc35c3cf7cf9610c5387794443c99b304799114132362849c3fa85d6379729ff9094933db0cfbe8887c50b87e1469fdf454cef4cbc5f7bf384000000000000a4e8c1a25f47c440144a9776be6cb40aafdb9d3cc8f6a6050974e1c4000000000000008b753f4e1bef9556efcc087a99dbf231167013a4b2eaf6338a0b100c98a331dffc09"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x4480, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$kcm(0x2a, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x5411, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r4)
ioctl$SIOCSIFHWADDR(r4, 0x8b33, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)=ANY=[], 0x10}, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x3, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000b0ff0000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000a702000014000000b7030000000000008500000005000000bf0900000000000035090100000000009500000000000000b7020000000000007b98f8ff0000000075090000030000007baaf0ff00000000bf2700000000000007080000fffdffffbfa400000000000007040000f0ffffff740200000800000018220000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7050000080000004608f0ff760000006e9800000000000056080000000000008500000005000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(r2, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x20000891)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x644b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x2}, 0x8004, 0xcdd, 0x43a1bd76, 0x4, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r2, r1})
sendmsg$kcm(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)

12m24.16889162s ago: executing program 0 (id=416):
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000300)=@tipc=@name={0x1e, 0x2, 0x0, {{0x43, 0x4}, 0x1}}, 0x80, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x13, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"/1423], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="7c53310100f9ff61efd106939fc1", 0x0, 0x4000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x1000d7, 0x0, 0x0, 0x7, 0x0, 0x1, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x4}, 0x50)
perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x6, 0x1, 0x0, 0x0, 0x0, 0xf, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x4200, 0x35, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x3c, &(0x7f0000000040), 0xcf)
recvmsg$unix(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x41)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x15, 0x3, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000005c0)='GPL\x00'}, 0x94)
setsockopt$sock_attach_bpf(r4, 0x1, 0x34, &(0x7f0000000180)=r5, 0x4)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r6, 0x18000000000002a0, 0xce8, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x4fe, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r7, 0x0, 0x81)

12m22.786310933s ago: executing program 0 (id=425):
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0e000000040000000800000007"], 0x50)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xcb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000001380))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0xa}, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffeffffffff}, 0x0, 0xfffffff7ffffffff, 0xffffffffffffffff, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x6, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x50}, 0x100)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000)=0x4b)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000c80)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8946, &(0x7f0000000080))

12m22.126612274s ago: executing program 0 (id=437):
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0xc9, 0x9, 0x0, 0x0, 0x0, 0x8, 0x94200, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x3}, 0x108000, 0x7fc, 0x0, 0x2, 0x2}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)="272d11a15c048c0a7d63aebc5cea1f81510ff6091475aeec3944e60bc2ad06a619c5f179fb680716faa43414787559be90843c35ab30acad8a6740140e00721abc0000000000", 0x46}], 0x1}, 0xff00)
socket$kcm(0x10, 0x400000002, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x1, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x23, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000240)=r1, 0x4)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x400c015)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x202, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8010, 0x5, 0x43a1bd76, 0x3, 0x9, 0x6, 0x2, 0x0, 0x8, 0x0, 0x2009}, 0x0, 0x8, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, r4, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000280)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080406037c09e8fe55a10a0015400400142603600e122f00160006000600a8000600200002400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0)
r7 = openat$cgroup_pressure(r5, &(0x7f0000000140)='cpu.pressure\x00', 0x2, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x210000, 0x0)
write$cgroup_pressure(r7, &(0x7f00000001c0)={'full', 0x20, 0x7, 0x20, 0xfffda}, 0x2f)
close(r7)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1b000000000000000000050000000000b4c527", @ANYRES32=r3, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000005000000040000000000"], 0x50)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x1, 0x1, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000080), 0x8101000000000000}, 0x5, 0x0, 0x0, 0x0, 0x4, 0xfffffffd, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)

12m21.719553027s ago: executing program 0 (id=433):
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000200)=@raw=[@ldst={0x0, 0x0, 0x4, 0xb, 0x9, 0xfffffffffffffffe, 0xffffffffffffffef}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0xfffffffffffffdc3, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYRES32=r0], 0x128}, 0x44084)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x80000000c8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x3}, 0x100c, 0x7f, 0x0, 0x0, 0x200000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x54)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x4, 0x2, 0x0, 0x0, 0x0, 0x6149, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x10ed22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg$unix(r5, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r7, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63f580fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7ba}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
write$cgroup_subtree(r7, &(0x7f00000004c0)=ANY=[], 0xfdef)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$inet(r11, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r10, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)

12m6.365366613s ago: executing program 32 (id=433):
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000200)=@raw=[@ldst={0x0, 0x0, 0x4, 0xb, 0x9, 0xfffffffffffffffe, 0xffffffffffffffef}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0xfffffffffffffdc3, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYRES32=r0], 0x128}, 0x44084)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x80000000c8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x3}, 0x100c, 0x7f, 0x0, 0x0, 0x200000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x54)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x4, 0x2, 0x0, 0x0, 0x0, 0x6149, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x10ed22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg$unix(r5, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r7, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63f580fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7ba}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
write$cgroup_subtree(r7, &(0x7f00000004c0)=ANY=[], 0xfdef)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmsg$inet(r11, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r10, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)

4.238414329s ago: executing program 1 (id=3467):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000a40)="8900f0ff120081ae08060cdc030ec0007f03e3f700000000001f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e7d4ba3a0093b837dc6cc01e32efaec8c7a6ec081207000000080001400400446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538a7fff4f2cbbe8d5e6dde60978c05a90ed65a6", 0x89}], 0x1}, 0x20)

4.066567825s ago: executing program 1 (id=3470):
socket$kcm(0x29, 0x2, 0x0)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000400)={0xffffffffffffffff, &(0x7f0000000340)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xf}, 0x0, 0x4, 0x310c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000100)=0x1, 0x12)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @fallback=0x15}, 0x94)
close(0xffffffffffffffff)
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)=@generic={0x0, 0x0, 0x18}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x8, &(0x7f0000000000)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x10}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='\t\x00\x00\x00@\x00\x00'], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xc6, 0x830d}, 0x100f00, 0x2, 0xfffffffc, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x2, 0x2, 0x0, 0x0, 0x5c31, 0xf72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1}, 0x1090da, 0x0, 0x0, 0x0, 0x0, 0x4, 0x749, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffebc)
socket$kcm(0x10, 0x2, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001340)={r6, &(0x7f00000002c0)="1db83c", 0x0, 0x4}, 0x20)

3.994181597s ago: executing program 4 (id=3471):
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1000}, 0x50)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xcb, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000001"], 0x50)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0x1c, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000020000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b704000002ec000085000000ae00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000000000008500000008000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000300000000000000c29c18120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, &(0x7f00000001c0), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x9, &(0x7f0000000400)=@raw=[@ldst={0x0, 0x0, 0x4, 0x0, 0x6, 0x50, 0x8}, @map_val={0x18, 0x6, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x7f}, @map_fd={0x18, 0x9, 0x1, 0x0, r0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}], &(0x7f0000000580)='syzkaller\x00', 0x7, 0x9f, &(0x7f0000000a00)=""/159, 0x40f00, 0x35, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000ac0)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000b00)={0x4, 0x2, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000b40)=[r2, r1], 0x0, 0x10, 0xbcd}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d40)={r4, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f00000005c0)=[0x0], &(0x7f00000006c0)=[0x0], 0x0, 0x46, &(0x7f0000000700)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x6a, 0x8, 0x8, &(0x7f0000000940)}}, 0x10)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x1}, 0x28)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89a0, &(0x7f0000000080))
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89a1, &(0x7f0000000080))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000dc0)={0x2, 0x4, 0x8, 0x1, 0x80, r1, 0x3, '\x00', r5, 0xffffffffffffffff, 0x1, 0x1, 0x3}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000280), &(0x7f00000002c0)=r4}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xe, 0x0, &(0x7f0000000000)="43227504001100b32415f73227b2", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3.993737647s ago: executing program 3 (id=3472):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r1)
syz_open_procfs$namespace(0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0xc0189436, &(0x7f0000000000)={'wg0\x00', @local})
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000034c0)}, 0x4044050)

3.229478112s ago: executing program 2 (id=3474):
bpf$MAP_CREATE(0x0, 0x0, 0x6)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x6000, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000010008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x67}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000006c0)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000840), 0x4)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000009c0)={&(0x7f0000000900)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x8, [@const={0x1, 0x0, 0x0, 0xa, 0x5}, @union={0x6, 0x3, 0x0, 0x5, 0x0, 0x7, [{0x3, 0x4, 0x4}, {0xb, 0x1, 0x9}, {0xa, 0x3, 0x4}]}]}, {0x0, [0x61, 0x0, 0x0, 0x61, 0x61, 0x5f]}}, &(0x7f0000000980)=""/18, 0x5c, 0x12, 0x0, 0x200, 0x10000}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@bloom_filter={0x1e, 0x2, 0x2, 0x4, 0x8082, r4, 0x4392, '\x00', 0x0, r5, 0x0, 0x2, 0x2, 0xc, @value=r6}, 0x50)
r7 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r8}, 0xc)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000c00)={0x1, <r9=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0xe, 0xd, &(0x7f0000000ac0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x679e}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @tail_call]}, &(0x7f0000000b40)='syzkaller\x00', 0x1df5, 0x2e, &(0x7f0000000b80)=""/46, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, r5, 0x8, &(0x7f0000000bc0)={0x7, 0x1}, 0x8, 0x10, 0x0, 0x0, r9, r8, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)="d8000000100081046881f782db44b904021d080b01000000e8fe55a1180015000600150000000012080003002e000000a80016000400dfbfdb2d47782a462c9c801f298225c506000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d9308e56539322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3", 0xd8}], 0x1}, 0x8040)

3.126342346s ago: executing program 1 (id=3475):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.freeze\x00', 0x26e1, 0x0)
close(r0)
close(0xffffffffffffffff)
socket$kcm(0x23, 0x2, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.empty_time\x00', 0x26e1, 0x0)
close(r1)
socket$kcm(0x23, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="010000000008"})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008dffff"})

2.954233272s ago: executing program 3 (id=3476):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000440)={'syzkaller0\x00', 0xca58c30f81b6079f})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1, <r3=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000200)=r2}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r3}, &(0x7f0000000500)=0x2000000, &(0x7f0000000540)=r2}, 0x20)
close(r0)

2.817295616s ago: executing program 2 (id=3477):
r0 = socket$kcm(0x11, 0x2, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x3c, 0x9}, 0x2b2, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x1000d7, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002140)=[{&(0x7f0000000180)="1c0000005e007f62f706306a6b9d516707e202f8abc36f1d4000e1ce", 0x1c}], 0x1}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r3, 0x4)
r4 = socket$kcm(0x10, 0x2, 0x4)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={0x0, 0x3}, 0x11efa, 0x4, 0x98, 0x3, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000c00)="1400000037000b0f925a2a22feab3c3d0ea2c2e4", 0x14}], 0x1, 0x0, 0x0, 0x20000000}, 0x4008800)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000001180)=[{&(0x7f0000000040)="cc", 0x1}], 0x1, &(0x7f00000011c0)=[@rights={{0x14, 0x1, 0x1, [r7]}}, @rights={{0x14, 0x1, 0x1, [r7]}}], 0x30, 0x4040040}, 0x4000011)
sendmsg$kcm(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="890000", 0x3}], 0x1}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001100)={r8, 0xe0, &(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0), &(0x7f00000002c0), 0x0, 0x42, &(0x7f00000002c0)=[{}, {}, {}, {}], 0x20, 0x0, 0x0, &(0x7f0000000f80), 0x6, 0x5d, 0x8, 0x8, &(0x7f0000000fc0)}}, 0x10)
r10 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000340)={0x0, r1}, 0x8)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xa0, 0xa0, 0x6, [@restrict={0xb, 0x0, 0x0, 0xb, 0x4}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x4, 0xa}}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x5, 0xa}}, @type_tag={0xb, 0x0, 0x0, 0x12, 0x5}, @int={0x1, 0x0, 0x0, 0x1, 0x0, 0x51, 0x0, 0x0, 0x3}, @union={0x4, 0x2, 0x0, 0x5, 0x0, 0x7fff, [{0xe, 0x4, 0xc}, {0x1, 0x3, 0x7f}]}, @fwd={0x5}, @ptr={0xc, 0x0, 0x0, 0x2, 0x1}, @restrict={0x1, 0x0, 0x0, 0xb, 0x8000004}]}, {0x0, [0x5f, 0x30, 0x2e, 0x61]}}, 0x0, 0xbe, 0x0, 0x1, 0x0, 0x10000, @value=r10}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000006000000000000000300000095000000000000009500000000200000"], &(0x7f0000000080)='GPL\x00', 0x179, 0x0, 0x0, 0x41000, 0x48, '\x00', r9, 0x0, r11, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000001280)=[{0x1, 0x4, 0x1, 0xa}], 0x10, 0x59ec}, 0x94)
sendmsg$inet(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000080), 0x0, &(0x7f00000001c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r9, @multicast2, @private=0xa010101}}}], 0x20}, 0x4000000)

2.755533619s ago: executing program 4 (id=3478):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x404, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair(0x1, 0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)}, 0x0)
r2 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x5411, &(0x7f0000000100))
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x8000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0xaf}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1f, 0x4, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5004dfc6}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000280), 0x4)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x70a, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x8, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020200008500000023000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0xfca804a0, 0xe, 0x0, &(0x7f0000000000)="17724b568c149730350c352f658c", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.71724251s ago: executing program 3 (id=3479):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x404, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x5, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)}, 0x0)
r3 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x5411, &(0x7f0000000100))
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x8000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0xaf}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1f, 0x4, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5004dfc6}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r4)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000001300000000000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000280)={r6}, 0x4)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x70a, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x8, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020200008500000023000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x13, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000080000000000000500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0920000000000035090100000000009500000000070000b7020000000000007b9a00fe0000000066090000ffffffffdbaaf0ff50000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffd50000000800000018220000", @ANYRES32=r7, @ANYBLOB="000000b7050000080000004608f0ff7600005f9800000000000056080000000000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.516159177s ago: executing program 1 (id=3480):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x8, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000210081044e81f782db44b90402", 0x11}], 0x1}, 0x0)
r2 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x10003, 0x0, 0xfffffffc, 0x5}, {0x2, 0x80, 0x0, 0xa}], 0x10, 0xfffffff8}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x84, 0x6e, &(0x7f0000000000)=r5, 0x20)

1.697043994s ago: executing program 2 (id=3481):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001380)={r0, &(0x7f0000000180)}, 0x20)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd3c0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8916, &(0x7f0000000240)={'veth1_vlan\x00', @random="8600ff7fff81"})
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
close(0xffffffffffffffff)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x6c, 0x6c, 0x3, [@typedef={0x9}, @fwd={0x4}, @union={0x1, 0x3, 0x0, 0x5, 0x0, 0x9, [{0x4, 0x5, 0xffff}, {0x8, 0x0, 0x6}, {0x5, 0x5, 0xd}]}, @func={0xf, 0x0, 0x0, 0xc, 0x5}, @ptr={0x1, 0x0, 0x0, 0x2, 0x3}, @volatile={0x4, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x2e]}}, &(0x7f0000000500)=""/243, 0x87, 0xf3, 0x1, 0x7}, 0x28)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0x1ff, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, r2, 0x3, 0x4}, 0x50)
socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000740)="5c00000013006bcc9e3be35c6e17aa33074b876c1d0000007ea60864160af36514000cc0080019000900000006001cc00200bc24eab5008000001e618294ff4051f60a84c9f4d4938037e786a6d00010000400000000000000c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4004004)

1.424622013s ago: executing program 1 (id=3482):
bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x10884, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x7c, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000180)="1400000017000b63d25a80648c2594f93da3c92b", 0x14}], 0x1}, 0x0)

1.399107713s ago: executing program 4 (id=3483):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000008000000850000008600000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x10884, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x7c, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000180)="1400000017000b63d25a80648c2594f93da3c92b", 0x14}], 0x1}, 0x0)

1.379960804s ago: executing program 3 (id=3484):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}, 0x828, 0x0, 0x0, 0x0, 0x10000, 0x800000, 0x9, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r1, &(0x7f00000000c0), &(0x7f0000000000)=""/10, 0x11}, 0x20)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000300)='syz0\x00', 0x200002, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000380)='tasks\x00', 0x2, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100904}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

1.322287607s ago: executing program 2 (id=3485):
socket$kcm(0x11, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x2, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0xe5, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x4, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000002240)=@generic={&(0x7f0000001240)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}, 0x18)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYBLOB="7f0000017f00000a0000000800786a00"/28, @ANYRES32=0x0, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r4)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0x18, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000100000000000000010000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701000078ffffffb702000008000000b70300000008000085000000a0000000b7080000000000007b8af8ff00000000b7080000001000007b8af0ff00000000bfa100", @ANYRES32, @ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x8, 0x0, &(0x7f00000006c0)="0000000005000000", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f0000000180)=r0, 0x4)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8948, &(0x7f0000000000)='lo:\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x00 \'Y\x17]\x15c\xcaR\xdd\x98OGK\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb7s\xb0\x00\x00\x00\x00\xf5\a\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'5\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0R\xd3\x8a\xe1n\x97\xea\xf1\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB\x01\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\tb\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18\x00\b\x00\x00Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xbf\xe3?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\fr\xf1\xec\xd9CD\x80\xb4^\x8cw;\x87\xea\x8c\x8bJ\x9a\x0ej\x8f\x8e^\xe6\xa6\xaa\x910\fD\xabFU\xa0D;\xd6\xd1\xeer\x9d\x02\xd9\xf7d`\xbfv\x15.\xe4\x82|)K\x99\x98&?\xcd\xe5\xa8\xba~$;g\t\x02\x84+\x90\xab\x816$/\x92\"\xef\xf7\x18\xfaE\xfe\xf7\n\xb2\x7fC\xbb\xbdg#F\n\vu\xe2\xe9\b\xa2\xf1\x94Fb\x92\xc9\xddP\xf0m35+\xdd\xac3\x00\xdd\xfb\b\xc0\x95\xe8\xa5\xec\x9e\xbfA\x7f\xff\xb8\xe2\xe2HNy$\xd4\xc6\x9dd\t\xf6\xed\x10\x15%\r\x1aD\f>\xdcZ\xb9\xd7Z\x88\x9b\xdff[\x90\xfa\x9a{b\xf4Dq')
sendmsg$inet(r1, &(0x7f0000000140)={&(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="2c000000000000000000000007000000441c0503e0200001", @ANYRES64], 0x30}, 0x40880)

922.09331ms ago: executing program 1 (id=3486):
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1000}, 0x50)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xcb, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000001"], 0x50)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0x1c, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000020000007b8a00fe00000000bfa200000000000007020000f8ffffffb703000008000000b704000002ec000085000000ae00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000000000008500000008000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000300000000000000c29c18120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, &(0x7f00000001c0), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x9, &(0x7f0000000400)=@raw=[@ldst={0x0, 0x0, 0x4, 0x0, 0x6, 0x50, 0x8}, @map_val={0x18, 0x6, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x7f}, @map_fd={0x18, 0x9, 0x1, 0x0, r0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}], &(0x7f0000000580)='syzkaller\x00', 0x7, 0x9f, &(0x7f0000000a00)=""/159, 0x40f00, 0x35, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000ac0)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000b00)={0x4, 0x2, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000b40)=[r2, r1], 0x0, 0x10, 0xbcd}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d40)={r4, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000080)=[0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f00000005c0)=[0x0], &(0x7f00000006c0)=[0x0], 0x0, 0x46, &(0x7f0000000700)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x6a, 0x8, 0x8, &(0x7f0000000940)}}, 0x10)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x0, 0x37, 0x0, 0x0, 0x1}, 0x28)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89a0, &(0x7f0000000080))
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89a1, &(0x7f0000000080))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000dc0)={0x2, 0x4, 0x8, 0x1, 0x80, r1, 0x3, '\x00', r5, 0xffffffffffffffff, 0x1, 0x1, 0x3}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000280), &(0x7f00000002c0)=r4}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xe, 0x0, &(0x7f0000000000)="43227504001100b32415f73227b2", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

753.909795ms ago: executing program 3 (id=3487):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c35, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000001c0), 0xc}, 0x100c, 0x7, 0x0, 0x9, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000008c0)={0x2, 0x80, 0x29, 0x1, 0x40, 0x0, 0x0, 0x40000004, 0xa021, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0xffffffffffffffff, 0x2b4}, 0x0, 0x10000, 0x100, 0x0, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x203, 0x14a0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000a80), 0xa}, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x1a, &(0x7f00000001c0)=[{&(0x7f0000000380)="5c00000012006bab9a3fe3d86e17aa0a076b876c1d0048007ea60864160af36504001a0038001d00e517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb000011d600a0680d4bbd6df1db6f1078bc", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40000d0)
r2 = syz_clone(0x40208900, &(0x7f0000000940)="ee1f55004dba", 0x6, &(0x7f0000000240), &(0x7f0000000040), 0x0)
close(0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000800)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x8000003}, 0x50)
r3 = syz_open_procfs$namespace(r2, 0x0)
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r4, 0x6, 0xd, &(0x7f0000000000), 0x4)
r5 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
perf_event_open$cgroup(&(0x7f0000000580)={0x3, 0x80, 0xf8, 0x0, 0x6, 0x86, 0x0, 0x1, 0x80000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x12, 0x6, @perf_bp={&(0x7f0000000540), 0x8}, 0x100083, 0x6, 0x4, 0x2, 0x0, 0x3, 0x8fb8, 0x0, 0x7, 0x0, 0x720a}, r5, 0x13, 0xffffffffffffffff, 0xa)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000740)={@fallback, 0x0, 0x1, 0xffffffa4, &(0x7f0000000640), 0x0, 0x0, &(0x7f00000006c0), &(0x7f0000000880)=[0x0, 0x0], &(0x7f0000000700)=[0x0]}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000780)=ANY=[@ANYRES32, @ANYRESDEC=0x0, @ANYRES64=r0, @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=r1, @ANYRES16=r1, @ANYRESDEC=r1], 0x20)
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80040, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000004, 0x0, @perf_config_ext={0x0, 0x2000000}, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0xffffffffbfffffff, 0xffffffffffffffff, 0x8)
socket$kcm(0x29, 0x7, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b904021d080207000000040000a118000200e000000000000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843c8802033d0803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b904021d080207000000040000a118000200e020000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843c8802033d0803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

653.838418ms ago: executing program 2 (id=3488):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x8000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b83, 0x2, @perf_bp={0x0, 0x3}, 0x8000, 0x5, 0x43a1bd76, 0x3, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, 0x0, 0x0, 0x4, 0x1000, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x43, &(0x7f0000000100)=r0, 0x120)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x22, &(0x7f0000000080), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x4, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xb}, 0x100000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x891e, &(0x7f0000000cc0)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12tQ\xb16\xe3\xd7\\b\x8b\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d')
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000001540), 0x20)
socket$kcm(0xa, 0x6, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000029c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x800000, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000d000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7"], &(0x7f0000001680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x17, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000218110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB, @ANYBLOB="0000000000000000b7020000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x58, &(0x7f0000000180)}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, &(0x7f0000000940)={r2, r2})

643.842659ms ago: executing program 4 (id=3489):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000440)={'syzkaller0\x00', 0xca58c30f81b6079f})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1, <r3=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000200)=r2}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r3}, &(0x7f0000000500)=0x2000000, &(0x7f0000000540)=r2}, 0x20)
close(r0)

305.79894ms ago: executing program 4 (id=3490):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x8, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000210081044e81f782db44b90402", 0x11}], 0x1}, 0x0)
r2 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x10003, 0x0, 0xfffffffc, 0x5}, {0x2, 0x80, 0x0, 0xa}], 0x10, 0xfffffff8}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x84, 0x6e, &(0x7f0000000000)=r5, 0x20)

302.39118ms ago: executing program 3 (id=3491):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.freeze\x00', 0x26e1, 0x0)
close(r0)
close(0xffffffffffffffff)
socket$kcm(0x23, 0x2, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.empty_time\x00', 0x26e1, 0x0)
close(r1)
socket$kcm(0x23, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="010000000008"})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008dffff"})

84.530247ms ago: executing program 2 (id=3492):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x404, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x5, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)}, 0x0)
r3 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x5411, &(0x7f0000000100))
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x8000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0xaf}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1f, 0x4, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5004dfc6}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r4)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000001300000000000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000280)={r6}, 0x4)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x70a, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x8, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020200008500000023000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x13, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000080000000000000500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0920000000000035090100000000009500000000070000b7020000000000007b9a00fe0000000066090000ffffffffdbaaf0ff50000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffd50000000800000018220000", @ANYRES32=r7, @ANYBLOB="000000b7050000080000004608f0ff7600005f9800000000000056080000000000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 4 (id=3493):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x404, 0x10000, 0x9e4, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair(0x1, 0x5, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)}, 0x0)
r2 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x5411, &(0x7f0000000100))
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x8000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0xaf}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1f, 0x4, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5004dfc6}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b11d25a806c8c6f94f90424fc601000407a0a000600053582c137153e37000c11802f2ff4072f00", 0x33fe0}], 0x1, 0x0, 0x0, 0x35}, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000280), 0x4)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x70a, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x8, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020200008500000023000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0xfca804a0, 0xe, 0x0, &(0x7f0000000000)="17724b568c149730350c352f658c", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

0211_event_work+0x40/0x40
[  887.939982][T17565]  ? minstrel_ht_alloc+0x88a/0x990
[  887.945150][T17565]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  887.951376][T17565]  ieee80211_register_hw+0x3464/0x4250
[  887.957112][T17565]  ? ieee80211_tasklet_handler+0x20/0x20
[  887.962881][T17565]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  887.969144][T17565]  ? __debug_object_init+0xec/0x450
[  887.974591][T17565]  ? __asan_memset+0x22/0x40
[  887.979323][T17565]  ? __hrtimer_init+0x186/0x270
[  887.984484][T17565]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  887.990558][T17565]  ? mac80211_hwsim_free+0x220/0x220
[  887.995992][T17565]  ? rcu_is_watching+0x15/0xb0
[  888.000872][T17565]  ? kstrndup+0xbd/0x140
[  888.005274][T17565]  hwsim_new_radio_nl+0xdc9/0x1a90
[  888.011149][T17565]  ? __nla_validate+0x50/0x50
[  888.017691][T17565]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  888.024976][T17565]  ? __nla_parse+0x40/0x50
[  888.029586][T17565]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  888.036393][T17565]  genl_family_rcv_msg_doit+0x211/0x310
[  888.042098][T17565]  ? end_current_label_crit_section+0x170/0x170
[  888.048939][T17565]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  888.055855][T17565]  ? bpf_lsm_capable+0x9/0x10
[  888.060719][T17565]  ? security_capable+0x89/0xb0
[  888.065737][T17565]  genl_rcv_msg+0x619/0x7a0
[  888.070761][T17565]  ? genl_bind+0x360/0x360
[  888.075416][T17565]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  888.082079][T17565]  ? ref_tracker_free+0x690/0x840
[  888.087620][T17565]  netlink_rcv_skb+0x241/0x4d0
[  888.093465][T17565]  ? genl_bind+0x360/0x360
[  888.099847][T17565]  ? netlink_ack+0x1180/0x1180
[  888.105047][T17565]  ? __lock_acquire+0x7d40/0x7d40
[  888.110193][T17565]  ? down_read+0x1ac/0x2e0
[  888.115006][T17565]  genl_rcv+0x28/0x40
[  888.119064][T17565]  netlink_unicast+0x751/0x8d0
[  888.124086][T17565]  netlink_sendmsg+0x8d0/0xbf0
[  888.128934][T17565]  ? netlink_getsockopt+0x590/0x590
[  888.134460][T17565]  ? aa_sock_msg_perm+0x94/0x150
[  888.140581][T17565]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  888.146027][T17565]  ? security_socket_sendmsg+0x80/0xa0
[  888.151875][T17565]  ? netlink_getsockopt+0x590/0x590
[  888.157276][T17565]  ____sys_sendmsg+0x5ba/0x960
[  888.162245][T17565]  ? __asan_memset+0x22/0x40
[  888.167129][T17565]  ? __sys_sendmsg_sock+0x30/0x30
[  888.172227][T17565]  ? __import_iovec+0x5f2/0x850
[  888.177230][T17565]  ? import_iovec+0x73/0xa0
[  888.181993][T17565]  ___sys_sendmsg+0x2a6/0x360
[  888.186858][T17565]  ? __sys_sendmsg+0x2a0/0x2a0
[  888.191791][T17565]  ? debug_mutex_init+0x38/0x70
[  888.197224][T17565]  __se_sys_sendmsg+0x1c2/0x2b0
[  888.202681][T17565]  ? __x64_sys_sendmsg+0x80/0x80
[  888.207778][T17565]  ? lockdep_hardirqs_on+0x98/0x150
[  888.213228][T17565]  do_syscall_64+0x55/0xa0
[  888.218749][T17565]  ? clear_bhb_loop+0x40/0x90
[  888.224479][T17565]  ? clear_bhb_loop+0x40/0x90
[  888.229642][T17565]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  888.236290][T17565] RIP: 0033:0x7fc38bd9ce59
[  888.241283][T17565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  888.263263][T17565] RSP: 002b:00007fc38cbaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  888.271712][T17565] RAX: ffffffffffffffda RBX: 00007fc38c015fa0 RCX: 00007fc38bd9ce59
[  888.279979][T17565] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  888.288268][T17565] RBP: 00007fc38be32d6f R08: 0000000000000000 R09: 0000000000000000
[  888.296806][T17565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  888.305770][T17565] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  888.313998][T17565]  </TASK>
[  888.345242][T17575] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3240'.
[  888.410202][T17575] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  889.012620][T17584] netlink: 65047 bytes leftover after parsing attributes in process `syz.3.3244'.
[  889.138200][T17591] netlink: 'syz.1.3247': attribute type 2 has an invalid length.
[  889.146867][T17591] netlink: 'syz.1.3247': attribute type 8 has an invalid length.
[  889.158822][T17591] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3247'.
[  889.359390][T17596] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.3249'.
[  889.380587][T17596] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  889.399919][T17596] CPU: 1 PID: 17596 Comm: syz.1.3249 Not tainted syzkaller #0
[  889.407918][T17596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  889.419519][T17596] Call Trace:
[  889.423475][T17596]  <TASK>
[  889.426640][T17596]  dump_stack_lvl+0x18c/0x250
[  889.431839][T17596]  ? show_regs_print_info+0x20/0x20
[  889.437271][T17596]  ? load_image+0x420/0x420
[  889.442039][T17596]  sysfs_warn_dup+0x8e/0xa0
[  889.446611][T17596]  sysfs_do_create_link_sd+0xc0/0x110
[  889.452129][T17596]  device_add_class_symlinks+0x1cf/0x240
[  889.458247][T17596]  device_add+0x507/0xc20
[  889.462736][T17596]  wiphy_register+0x1dad/0x2ae0
[  889.467754][T17596]  ? cfg80211_event_work+0x40/0x40
[  889.472921][T17596]  ? minstrel_ht_alloc+0x88a/0x990
[  889.478100][T17596]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  889.484264][T17596]  ieee80211_register_hw+0x3464/0x4250
[  889.489912][T17596]  ? ieee80211_tasklet_handler+0x20/0x20
[  889.495744][T17596]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  889.501715][T17596]  ? __debug_object_init+0xec/0x450
[  889.506996][T17596]  ? __asan_memset+0x22/0x40
[  889.511805][T17596]  ? __hrtimer_init+0x186/0x270
[  889.517001][T17596]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  889.522979][T17596]  ? mac80211_hwsim_free+0x220/0x220
[  889.528377][T17596]  ? rcu_is_watching+0x15/0xb0
[  889.533295][T17596]  ? kstrndup+0xbd/0x140
[  889.537665][T17596]  hwsim_new_radio_nl+0xdc9/0x1a90
[  889.543629][T17596]  ? __nla_validate+0x50/0x50
[  889.548486][T17596]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  889.555041][T17596]  ? __nla_parse+0x40/0x50
[  889.559750][T17596]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  889.566279][T17596]  genl_family_rcv_msg_doit+0x211/0x310
[  889.571880][T17596]  ? end_current_label_crit_section+0x170/0x170
[  889.578262][T17596]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  889.584486][T17596]  ? bpf_lsm_capable+0x9/0x10
[  889.589392][T17596]  ? security_capable+0x89/0xb0
[  889.594295][T17596]  genl_rcv_msg+0x619/0x7a0
[  889.598946][T17596]  ? genl_bind+0x360/0x360
[  889.603393][T17596]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  889.609811][T17596]  netlink_rcv_skb+0x241/0x4d0
[  889.615263][T17596]  ? genl_bind+0x360/0x360
[  889.619926][T17596]  ? netlink_ack+0x1180/0x1180
[  889.625217][T17596]  ? __lock_acquire+0x7d40/0x7d40
[  889.630491][T17596]  ? down_read+0x1ac/0x2e0
[  889.635208][T17596]  genl_rcv+0x28/0x40
[  889.639214][T17596]  netlink_unicast+0x751/0x8d0
[  889.644407][T17596]  netlink_sendmsg+0x8d0/0xbf0
[  889.649495][T17596]  ? netlink_getsockopt+0x590/0x590
[  889.654821][T17596]  ? aa_sock_msg_perm+0x94/0x150
[  889.659961][T17596]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  889.665362][T17596]  ? security_socket_sendmsg+0x80/0xa0
[  889.670857][T17596]  ? netlink_getsockopt+0x590/0x590
[  889.676498][T17596]  ____sys_sendmsg+0x5ba/0x960
[  889.681537][T17596]  ? __asan_memset+0x22/0x40
[  889.686183][T17596]  ? __sys_sendmsg_sock+0x30/0x30
[  889.691597][T17596]  ? __import_iovec+0x5f2/0x850
[  889.697064][T17596]  ? import_iovec+0x73/0xa0
[  889.701705][T17596]  ___sys_sendmsg+0x2a6/0x360
[  889.706773][T17596]  ? __sys_sendmsg+0x2a0/0x2a0
[  889.712161][T17596]  __se_sys_sendmsg+0x1c2/0x2b0
[  889.717146][T17596]  ? __x64_sys_sendmsg+0x80/0x80
[  889.722247][T17596]  ? lockdep_hardirqs_on+0x98/0x150
[  889.727603][T17596]  do_syscall_64+0x55/0xa0
[  889.732329][T17596]  ? clear_bhb_loop+0x40/0x90
[  889.737613][T17596]  ? clear_bhb_loop+0x40/0x90
[  889.742887][T17596]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  889.749489][T17596] RIP: 0033:0x7fc38bd9ce59
[  889.756007][T17596] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  889.778628][T17596] RSP: 002b:00007fc38cbaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  889.787664][T17596] RAX: ffffffffffffffda RBX: 00007fc38c015fa0 RCX: 00007fc38bd9ce59
[  889.796210][T17596] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  889.804545][T17596] RBP: 00007fc38be32d6f R08: 0000000000000000 R09: 0000000000000000
[  889.812661][T17596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  889.821679][T17596] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  889.831638][T17596]  </TASK>
[  890.135919][T17602] netlink: 'syz.2.3251': attribute type 29 has an invalid length.
[  890.163421][T17602] netlink: 'syz.2.3251': attribute type 29 has an invalid length.
[  890.196908][T17605] netlink: 'syz.2.3251': attribute type 29 has an invalid length.
[  890.228164][T17602] netlink: 'syz.2.3251': attribute type 29 has an invalid length.
[  890.248907][T17602] netlink: 'syz.2.3251': attribute type 29 has an invalid length.
[  890.446910][T17615] netlink: 'syz.4.3257': attribute type 2 has an invalid length.
[  890.466551][T17615] netlink: 'syz.4.3257': attribute type 8 has an invalid length.
[  890.497149][T17615] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3257'.
[  890.780272][T17624] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3262'.
[  890.854940][T17624] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  890.884673][T17624] CPU: 1 PID: 17624 Comm: syz.4.3262 Not tainted syzkaller #0
[  890.892325][T17624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  890.902595][T17624] Call Trace:
[  890.905892][T17624]  <TASK>
[  890.908867][T17624]  dump_stack_lvl+0x18c/0x250
[  890.913582][T17624]  ? show_regs_print_info+0x20/0x20
[  890.918819][T17624]  ? load_image+0x420/0x420
[  890.923370][T17624]  sysfs_warn_dup+0x8e/0xa0
[  890.927918][T17624]  sysfs_do_create_link_sd+0xc0/0x110
[  890.933327][T17624]  device_add_class_symlinks+0x1cf/0x240
[  890.938985][T17624]  device_add+0x507/0xc20
[  890.943436][T17624]  wiphy_register+0x1dad/0x2ae0
[  890.948335][T17624]  ? cfg80211_event_work+0x40/0x40
[  890.953464][T17624]  ? minstrel_ht_alloc+0x88a/0x990
[  890.958783][T17624]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  890.964877][T17624]  ieee80211_register_hw+0x3464/0x4250
[  890.970371][T17624]  ? ieee80211_tasklet_handler+0x20/0x20
[  890.976017][T17624]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  890.981944][T17624]  ? __debug_object_init+0xec/0x450
[  890.987916][T17624]  ? __asan_memset+0x22/0x40
[  890.993609][T17624]  ? __hrtimer_init+0x186/0x270
[  890.998795][T17624]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  891.005805][T17624]  ? mac80211_hwsim_free+0x220/0x220
[  891.011536][T17624]  ? rcu_is_watching+0x15/0xb0
[  891.017503][T17624]  ? kstrndup+0xbd/0x140
[  891.022056][T17624]  hwsim_new_radio_nl+0xdc9/0x1a90
[  891.027591][T17624]  ? __nla_validate+0x50/0x50
[  891.032581][T17624]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  891.039603][T17624]  ? __nla_parse+0x40/0x50
[  891.044060][T17624]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  891.050801][T17624]  genl_family_rcv_msg_doit+0x211/0x310
[  891.056657][T17624]  ? end_current_label_crit_section+0x170/0x170
[  891.063384][T17624]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  891.069954][T17624]  ? bpf_lsm_capable+0x9/0x10
[  891.075132][T17624]  ? security_capable+0x89/0xb0
[  891.080475][T17624]  genl_rcv_msg+0x619/0x7a0
[  891.085029][T17624]  ? genl_bind+0x360/0x360
[  891.089590][T17624]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  891.096270][T17624]  ? ref_tracker_free+0x690/0x840
[  891.101542][T17624]  netlink_rcv_skb+0x241/0x4d0
[  891.106628][T17624]  ? genl_bind+0x360/0x360
[  891.111476][T17624]  ? netlink_ack+0x1180/0x1180
[  891.117604][T17624]  ? __lock_acquire+0x7d40/0x7d40
[  891.123419][T17624]  ? down_read+0x1ac/0x2e0
[  891.128242][T17624]  genl_rcv+0x28/0x40
[  891.132440][T17624]  netlink_unicast+0x751/0x8d0
[  891.137517][T17624]  netlink_sendmsg+0x8d0/0xbf0
[  891.143412][T17624]  ? netlink_getsockopt+0x590/0x590
[  891.149198][T17624]  ? aa_sock_msg_perm+0x94/0x150
[  891.154638][T17624]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  891.160084][T17624]  ? security_socket_sendmsg+0x80/0xa0
[  891.165577][T17624]  ? netlink_getsockopt+0x590/0x590
[  891.170983][T17624]  ____sys_sendmsg+0x5ba/0x960
[  891.175778][T17624]  ? __asan_memset+0x22/0x40
[  891.180478][T17624]  ? __sys_sendmsg_sock+0x30/0x30
[  891.185803][T17624]  ? __import_iovec+0x5f2/0x850
[  891.190984][T17624]  ? import_iovec+0x73/0xa0
[  891.195698][T17624]  ___sys_sendmsg+0x2a6/0x360
[  891.200498][T17624]  ? __sys_sendmsg+0x2a0/0x2a0
[  891.205417][T17624]  __se_sys_sendmsg+0x1c2/0x2b0
[  891.210286][T17624]  ? __x64_sys_sendmsg+0x80/0x80
[  891.215270][T17624]  ? lockdep_hardirqs_on+0x98/0x150
[  891.220678][T17624]  do_syscall_64+0x55/0xa0
[  891.225338][T17624]  ? clear_bhb_loop+0x40/0x90
[  891.230221][T17624]  ? clear_bhb_loop+0x40/0x90
[  891.235105][T17624]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  891.241419][T17624] RIP: 0033:0x7f29a199ce59
[  891.246072][T17624] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  891.267031][T17624] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  891.275932][T17624] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  891.284162][T17624] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  891.292356][T17624] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  891.301080][T17624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  891.309161][T17624] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  891.317512][T17624]  </TASK>
[  891.967762][T17644] netlink: 'syz.1.3270': attribute type 2 has an invalid length.
[  891.984451][T17644] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3270'.
[  892.336757][T17653] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3274'.
[  892.435150][T17653] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  892.533121][T17653] CPU: 0 PID: 17653 Comm: syz.4.3274 Not tainted syzkaller #0
[  892.540671][T17653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  892.551010][T17653] Call Trace:
[  892.554309][T17653]  <TASK>
[  892.557369][T17653]  dump_stack_lvl+0x18c/0x250
[  892.562174][T17653]  ? show_regs_print_info+0x20/0x20
[  892.567425][T17653]  ? load_image+0x420/0x420
[  892.571976][T17653]  sysfs_warn_dup+0x8e/0xa0
[  892.576595][T17653]  sysfs_do_create_link_sd+0xc0/0x110
[  892.581988][T17653]  device_add_class_symlinks+0x1cf/0x240
[  892.587663][T17653]  device_add+0x507/0xc20
[  892.592016][T17653]  wiphy_register+0x1dad/0x2ae0
[  892.596916][T17653]  ? cfg80211_event_work+0x40/0x40
[  892.602244][T17653]  ? minstrel_ht_alloc+0x88a/0x990
[  892.608035][T17653]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  892.614583][T17653]  ieee80211_register_hw+0x3464/0x4250
[  892.620321][T17653]  ? ieee80211_tasklet_handler+0x20/0x20
[  892.627167][T17653]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  892.635930][T17653]  ? __debug_object_init+0xec/0x450
[  892.643745][T17653]  ? __asan_memset+0x22/0x40
[  892.648675][T17653]  ? __hrtimer_init+0x186/0x270
[  892.653843][T17653]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  892.659813][T17653]  ? mac80211_hwsim_free+0x220/0x220
[  892.665207][T17653]  ? rcu_is_watching+0x15/0xb0
[  892.669997][T17653]  ? kstrndup+0xbd/0x140
[  892.674560][T17653]  hwsim_new_radio_nl+0xdc9/0x1a90
[  892.679696][T17653]  ? __nla_validate+0x50/0x50
[  892.684409][T17653]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  892.690856][T17653]  ? __nla_parse+0x40/0x50
[  892.695411][T17653]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  892.701768][T17653]  genl_family_rcv_msg_doit+0x211/0x310
[  892.707416][T17653]  ? end_current_label_crit_section+0x170/0x170
[  892.714205][T17653]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  892.720302][T17653]  ? bpf_lsm_capable+0x9/0x10
[  892.725120][T17653]  ? security_capable+0x89/0xb0
[  892.730674][T17653]  genl_rcv_msg+0x619/0x7a0
[  892.735664][T17653]  ? genl_bind+0x360/0x360
[  892.740187][T17653]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  892.746921][T17653]  ? ref_tracker_free+0x690/0x840
[  892.752215][T17653]  netlink_rcv_skb+0x241/0x4d0
[  892.757128][T17653]  ? genl_bind+0x360/0x360
[  892.762015][T17653]  ? netlink_ack+0x1180/0x1180
[  892.767001][T17653]  ? __lock_acquire+0x7d40/0x7d40
[  892.772055][T17653]  ? down_read+0x1ac/0x2e0
[  892.776491][T17653]  genl_rcv+0x28/0x40
[  892.780492][T17653]  netlink_unicast+0x751/0x8d0
[  892.785379][T17653]  netlink_sendmsg+0x8d0/0xbf0
[  892.790179][T17653]  ? netlink_getsockopt+0x590/0x590
[  892.795506][T17653]  ? aa_sock_msg_perm+0x94/0x150
[  892.800560][T17653]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  892.805958][T17653]  ? security_socket_sendmsg+0x80/0xa0
[  892.811631][T17653]  ? netlink_getsockopt+0x590/0x590
[  892.816897][T17653]  ____sys_sendmsg+0x5ba/0x960
[  892.821806][T17653]  ? __asan_memset+0x22/0x40
[  892.827123][T17653]  ? __sys_sendmsg_sock+0x30/0x30
[  892.832932][T17653]  ? __import_iovec+0x5f2/0x850
[  892.838595][T17653]  ? import_iovec+0x73/0xa0
[  892.843671][T17653]  ___sys_sendmsg+0x2a6/0x360
[  892.848686][T17653]  ? __sys_sendmsg+0x2a0/0x2a0
[  892.853545][T17653]  ? debug_mutex_init+0x38/0x70
[  892.858752][T17653]  __se_sys_sendmsg+0x1c2/0x2b0
[  892.863804][T17653]  ? __x64_sys_sendmsg+0x80/0x80
[  892.868976][T17653]  ? lockdep_hardirqs_on+0x98/0x150
[  892.874391][T17653]  do_syscall_64+0x55/0xa0
[  892.878833][T17653]  ? clear_bhb_loop+0x40/0x90
[  892.883623][T17653]  ? clear_bhb_loop+0x40/0x90
[  892.888412][T17653]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  892.894369][T17653] RIP: 0033:0x7f29a199ce59
[  892.898800][T17653] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  892.919061][T17653] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  892.928369][T17653] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  892.937011][T17653] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  892.945303][T17653] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  892.953409][T17653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  892.961406][T17653] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  892.969940][T17653]  </TASK>
[  893.741164][T17664] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3278'.
[  894.059658][T17675] FAULT_INJECTION: forcing a failure.
[  894.059658][T17675] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  894.088182][T17675] CPU: 0 PID: 17675 Comm: syz.1.3281 Not tainted syzkaller #0
[  894.095901][T17675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  894.106037][T17675] Call Trace:
[  894.109624][T17675]  <TASK>
[  894.112677][T17675]  dump_stack_lvl+0x18c/0x250
[  894.117839][T17675]  ? show_regs_print_info+0x20/0x20
[  894.123202][T17675]  ? load_image+0x420/0x420
[  894.127781][T17675]  ? __might_fault+0xaa/0x120
[  894.132769][T17675]  ? __lock_acquire+0x7d40/0x7d40
[  894.137878][T17675]  should_fail_ex+0x39d/0x4d0
[  894.142626][T17675]  _copy_from_iter+0x1d9/0x12e0
[  894.147628][T17675]  ? __virt_addr_valid+0x18c/0x540
[  894.152911][T17675]  ? __lock_acquire+0x7d40/0x7d40
[  894.158011][T17675]  ? copyout_mc+0x70/0x70
[  894.162586][T17675]  ? __virt_addr_valid+0x18c/0x540
[  894.167917][T17675]  ? __virt_addr_valid+0x18c/0x540
[  894.173074][T17675]  ? __virt_addr_valid+0x469/0x540
[  894.178235][T17675]  ? __check_object_size+0x506/0xa20
[  894.183748][T17675]  kcm_sendmsg+0xd95/0x28b0
[  894.188437][T17675]  ? kcm_getsockopt+0x280/0x280
[  894.193511][T17675]  ? perf_trace_preemptirq_template+0x269/0x330
[  894.199797][T17675]  ? aa_sock_msg_perm+0x94/0x150
[  894.199935][T17664] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  894.204851][T17675]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  894.204882][T17675]  ? security_socket_sendmsg+0x80/0xa0
[  894.204904][T17675]  ? kcm_getsockopt+0x280/0x280
[  894.204929][T17675]  ____sys_sendmsg+0x5ba/0x960
[  894.204966][T17675]  ? __asan_memset+0x22/0x40
[  894.204994][T17675]  ? __sys_sendmsg_sock+0x30/0x30
[  894.205014][T17675]  ? __import_iovec+0x5f2/0x850
[  894.205050][T17675]  ? import_iovec+0x73/0xa0
[  894.205076][T17675]  ___sys_sendmsg+0x2a6/0x360
[  894.205109][T17675]  ? __sys_sendmsg+0x2a0/0x2a0
[  894.205173][T17675]  ? seqcount_lockdep_reader_access+0x17b/0x1d0
[  894.205237][T17675]  __se_sys_sendmsg+0x1c2/0x2b0
[  894.205264][T17675]  ? __x64_sys_sendmsg+0x80/0x80
[  894.205311][T17675]  ? lockdep_hardirqs_on+0x98/0x150
[  894.205343][T17675]  do_syscall_64+0x55/0xa0
[  894.205361][T17675]  ? clear_bhb_loop+0x40/0x90
[  894.205387][T17675]  ? clear_bhb_loop+0x40/0x90
[  894.205416][T17675]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  894.205441][T17675] RIP: 0033:0x7fc38bd9ce59
[  894.205464][T17675] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  894.205482][T17675] RSP: 002b:00007fc38cbaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  894.205508][T17675] RAX: ffffffffffffffda RBX: 00007fc38c015fa0 RCX: 00007fc38bd9ce59
[  894.205524][T17675] RDX: 0000000000000000 RSI: 0000200000002080 RDI: 0000000000000003
[  894.205539][T17675] RBP: 00007fc38cbaa090 R08: 0000000000000000 R09: 0000000000000000
[  894.205553][T17675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  894.205567][T17675] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  894.205608][T17675]  </TASK>
[  894.442590][T17673] validate_nla: 1 callbacks suppressed
[  894.442613][T17673] netlink: 'syz.2.3280': attribute type 2 has an invalid length.
[  894.463938][T17673] netlink: 'syz.2.3280': attribute type 8 has an invalid length.
[  894.472151][T17673] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3280'.
[  894.587610][T17679] netlink: 'syz.1.3283': attribute type 4 has an invalid length.
[  894.826008][T17683] netlink: 'syz.4.3285': attribute type 25 has an invalid length.
[  895.194252][T17687] mac80211_hwsim hwsim184 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  895.371051][T17687] netlink: 'syz.1.3287': attribute type 3 has an invalid length.
[  895.396978][T17697] netlink: 'syz.4.3290': attribute type 29 has an invalid length.
[  895.407524][T17687] netlink: 16066 bytes leftover after parsing attributes in process `syz.1.3287'.
[  895.460970][T17699] netlink: 'syz.1.3287': attribute type 12 has an invalid length.
[  895.471594][T17699] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3287'.
[  895.504444][T17697] netlink: 'syz.4.3290': attribute type 29 has an invalid length.
[  895.599764][T17701] netlink: 'syz.4.3290': attribute type 2 has an invalid length.
[  895.620841][T17701] netlink: 'syz.4.3290': attribute type 8 has an invalid length.
[  895.639449][T17701] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3290'.
[  895.650264][T17702] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3290'.
[  895.676467][T17704] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3292'.
[  896.933079][T17739] netlink: 16066 bytes leftover after parsing attributes in process `syz.3.3303'.
[  897.021935][T17742] __nla_validate_parse: 2 callbacks suppressed
[  897.021958][T17742] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3305'.
[  897.074814][T17735] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3303'.
[  897.256992][T15713] wlan1: Trigger new scan to find an IBSS to join
[  897.309140][T17746] netlink: 65047 bytes leftover after parsing attributes in process `syz.1.3307'.
[  897.900265][T17761] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3321'.
[  898.309481][T17761] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  898.319884][T17761] CPU: 1 PID: 17761 Comm: syz.4.3321 Not tainted syzkaller #0
[  898.327767][T17761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  898.337857][T17761] Call Trace:
[  898.341165][T17761]  <TASK>
[  898.344133][T17761]  dump_stack_lvl+0x18c/0x250
[  898.348937][T17761]  ? show_regs_print_info+0x20/0x20
[  898.354346][T17761]  ? load_image+0x420/0x420
[  898.358894][T17761]  sysfs_warn_dup+0x8e/0xa0
[  898.363513][T17761]  sysfs_do_create_link_sd+0xc0/0x110
[  898.369008][T17761]  device_add_class_symlinks+0x1cf/0x240
[  898.374674][T17761]  device_add+0x507/0xc20
[  898.379028][T17761]  wiphy_register+0x1dad/0x2ae0
[  898.383915][T17761]  ? cfg80211_event_work+0x40/0x40
[  898.389134][T17761]  ? minstrel_ht_alloc+0x88a/0x990
[  898.394282][T17761]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  898.400483][T17761]  ieee80211_register_hw+0x3464/0x4250
[  898.405997][T17761]  ? ieee80211_tasklet_handler+0x20/0x20
[  898.411750][T17761]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  898.417842][T17761]  ? __debug_object_init+0xec/0x450
[  898.423084][T17761]  ? __asan_memset+0x22/0x40
[  898.427704][T17761]  ? __hrtimer_init+0x186/0x270
[  898.432583][T17761]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  898.438443][T17761]  ? mac80211_hwsim_free+0x220/0x220
[  898.443829][T17761]  ? rcu_is_watching+0x15/0xb0
[  898.448791][T17761]  ? kstrndup+0xbd/0x140
[  898.453179][T17761]  hwsim_new_radio_nl+0xdc9/0x1a90
[  898.458341][T17761]  ? __nla_validate+0x50/0x50
[  898.463143][T17761]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  898.469506][T17761]  ? __nla_parse+0x40/0x50
[  898.473942][T17761]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  898.480304][T17761]  genl_family_rcv_msg_doit+0x211/0x310
[  898.485898][T17761]  ? end_current_label_crit_section+0x170/0x170
[  898.492198][T17761]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  898.498246][T17761]  ? bpf_lsm_capable+0x9/0x10
[  898.503059][T17761]  ? security_capable+0x89/0xb0
[  898.507988][T17761]  genl_rcv_msg+0x619/0x7a0
[  898.512531][T17761]  ? genl_bind+0x360/0x360
[  898.517169][T17761]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  898.523538][T17761]  ? ref_tracker_free+0x690/0x840
[  898.528715][T17761]  netlink_rcv_skb+0x241/0x4d0
[  898.533516][T17761]  ? genl_bind+0x360/0x360
[  898.538125][T17761]  ? netlink_ack+0x1180/0x1180
[  898.542923][T17761]  ? __lock_acquire+0x7d40/0x7d40
[  898.548070][T17761]  ? down_read+0x1ac/0x2e0
[  898.552688][T17761]  genl_rcv+0x28/0x40
[  898.556788][T17761]  netlink_unicast+0x751/0x8d0
[  898.561681][T17761]  netlink_sendmsg+0x8d0/0xbf0
[  898.566495][T17761]  ? netlink_getsockopt+0x590/0x590
[  898.572002][T17761]  ? aa_sock_msg_perm+0x94/0x150
[  898.576996][T17761]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  898.582317][T17761]  ? security_socket_sendmsg+0x80/0xa0
[  898.587793][T17761]  ? netlink_getsockopt+0x590/0x590
[  898.593208][T17761]  ____sys_sendmsg+0x5ba/0x960
[  898.598173][T17761]  ? __asan_memset+0x22/0x40
[  898.602787][T17761]  ? __sys_sendmsg_sock+0x30/0x30
[  898.607842][T17761]  ? __import_iovec+0x5f2/0x850
[  898.612720][T17761]  ? import_iovec+0x73/0xa0
[  898.617330][T17761]  ___sys_sendmsg+0x2a6/0x360
[  898.622036][T17761]  ? __sys_sendmsg+0x2a0/0x2a0
[  898.626849][T17761]  ? debug_mutex_init+0x38/0x70
[  898.631748][T17761]  __se_sys_sendmsg+0x1c2/0x2b0
[  898.636620][T17761]  ? __x64_sys_sendmsg+0x80/0x80
[  898.641601][T17761]  ? lockdep_hardirqs_on+0x98/0x150
[  898.646854][T17761]  do_syscall_64+0x55/0xa0
[  898.651379][T17761]  ? clear_bhb_loop+0x40/0x90
[  898.656076][T17761]  ? clear_bhb_loop+0x40/0x90
[  898.660967][T17761]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  898.666921][T17761] RIP: 0033:0x7f29a199ce59
[  898.671391][T17761] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  898.691132][T17761] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  898.699584][T17761] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  898.714277][T17761] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  898.722295][T17761] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  898.730282][T17761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  898.738281][T17761] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  898.746301][T17761]  </TASK>
[  898.792905][T17767] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.3314'.
[  898.817383][T17767] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  898.826583][T17767] CPU: 0 PID: 17767 Comm: syz.1.3314 Not tainted syzkaller #0
[  898.834125][T17767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  898.844415][T17767] Call Trace:
[  898.848004][T17767]  <TASK>
[  898.851096][T17767]  dump_stack_lvl+0x18c/0x250
[  898.856123][T17767]  ? show_regs_print_info+0x20/0x20
[  898.861667][T17767]  ? load_image+0x420/0x420
[  898.866340][T17767]  sysfs_warn_dup+0x8e/0xa0
[  898.871046][T17767]  sysfs_do_create_link_sd+0xc0/0x110
[  898.876751][T17767]  device_add_class_symlinks+0x1cf/0x240
[  898.882585][T17767]  device_add+0x507/0xc20
[  898.887186][T17767]  wiphy_register+0x1dad/0x2ae0
[  898.892380][T17767]  ? cfg80211_event_work+0x40/0x40
[  898.897534][T17767]  ? minstrel_ht_alloc+0x88a/0x990
[  898.902725][T17767]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  898.908865][T17767]  ieee80211_register_hw+0x3464/0x4250
[  898.914402][T17767]  ? ieee80211_tasklet_handler+0x20/0x20
[  898.920134][T17767]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  898.926146][T17767]  ? __debug_object_init+0xec/0x450
[  898.931395][T17767]  ? __asan_memset+0x22/0x40
[  898.936107][T17767]  ? __hrtimer_init+0x186/0x270
[  898.941265][T17767]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  898.947133][T17767]  ? mac80211_hwsim_free+0x220/0x220
[  898.952448][T17767]  ? rcu_is_watching+0x15/0xb0
[  898.957235][T17767]  ? kstrndup+0xbd/0x140
[  898.961771][T17767]  hwsim_new_radio_nl+0xdc9/0x1a90
[  898.967093][T17767]  ? __nla_validate+0x50/0x50
[  898.971826][T17767]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  898.978460][T17767]  ? __nla_parse+0x40/0x50
[  898.982986][T17767]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  898.989340][T17767]  genl_family_rcv_msg_doit+0x211/0x310
[  898.994998][T17767]  ? end_current_label_crit_section+0x170/0x170
[  899.001273][T17767]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  899.007292][T17767]  ? bpf_lsm_capable+0x9/0x10
[  899.012012][T17767]  ? security_capable+0x89/0xb0
[  899.016953][T17767]  genl_rcv_msg+0x619/0x7a0
[  899.021515][T17767]  ? genl_bind+0x360/0x360
[  899.026140][T17767]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  899.032784][T17767]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  899.039505][T17767]  ? ref_tracker_free+0x690/0x840
[  899.044684][T17767]  netlink_rcv_skb+0x241/0x4d0
[  899.049560][T17767]  ? genl_bind+0x360/0x360
[  899.054264][T17767]  ? netlink_ack+0x1180/0x1180
[  899.059323][T17767]  ? __lock_acquire+0x7d40/0x7d40
[  899.064660][T17767]  ? down_read+0x1ac/0x2e0
[  899.069149][T17767]  genl_rcv+0x28/0x40
[  899.073263][T17767]  netlink_unicast+0x751/0x8d0
[  899.078084][T17767]  netlink_sendmsg+0x8d0/0xbf0
[  899.082970][T17767]  ? netlink_getsockopt+0x590/0x590
[  899.088312][T17767]  ? aa_sock_msg_perm+0x94/0x150
[  899.093278][T17767]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  899.098615][T17767]  ? security_socket_sendmsg+0x80/0xa0
[  899.104181][T17767]  ? netlink_getsockopt+0x590/0x590
[  899.109404][T17767]  ____sys_sendmsg+0x5ba/0x960
[  899.114236][T17767]  ? __asan_memset+0x22/0x40
[  899.118843][T17767]  ? __sys_sendmsg_sock+0x30/0x30
[  899.124067][T17767]  ? __import_iovec+0x5f2/0x850
[  899.129115][T17767]  ? import_iovec+0x73/0xa0
[  899.133645][T17767]  ___sys_sendmsg+0x2a6/0x360
[  899.138343][T17767]  ? __sys_sendmsg+0x2a0/0x2a0
[  899.143237][T17767]  ? debug_mutex_init+0x38/0x70
[  899.148229][T17767]  __se_sys_sendmsg+0x1c2/0x2b0
[  899.153211][T17767]  ? __x64_sys_sendmsg+0x80/0x80
[  899.158321][T17767]  ? lockdep_hardirqs_on+0x98/0x150
[  899.163919][T17767]  do_syscall_64+0x55/0xa0
[  899.168490][T17767]  ? clear_bhb_loop+0x40/0x90
[  899.173189][T17767]  ? clear_bhb_loop+0x40/0x90
[  899.177920][T17767]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  899.183865][T17767] RIP: 0033:0x7fc38bd9ce59
[  899.188385][T17767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  899.208269][T17767] RSP: 002b:00007fc38cbaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  899.216897][T17767] RAX: ffffffffffffffda RBX: 00007fc38c015fa0 RCX: 00007fc38bd9ce59
[  899.224976][T17767] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  899.232963][T17767] RBP: 00007fc38be32d6f R08: 0000000000000000 R09: 0000000000000000
[  899.241039][T17767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  899.249144][T17767] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  899.257711][T17767]  </TASK>
[  899.507722][T17773] validate_nla: 20 callbacks suppressed
[  899.507759][T17773] netlink: 'syz.4.3316': attribute type 2 has an invalid length.
[  899.537925][T17773] netlink: 'syz.4.3316': attribute type 8 has an invalid length.
[  899.558995][T17773] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3316'.
[  899.578618][T17777] netlink: 'syz.1.3318': attribute type 2 has an invalid length.
[  899.613196][T17777] netlink: 'syz.1.3318': attribute type 8 has an invalid length.
[  899.621441][T17777] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3318'.
[  899.631776][T17778] netlink: 'syz.4.3316': attribute type 2 has an invalid length.
[  899.640004][T17778] netlink: 'syz.4.3316': attribute type 8 has an invalid length.
[  899.649259][T17778] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3316'.
[  900.031379][T17790] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3325'.
[  900.057197][T17790] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  900.100671][T17790] CPU: 1 PID: 17790 Comm: syz.4.3325 Not tainted syzkaller #0
[  900.108568][T17790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  900.119305][T17790] Call Trace:
[  900.122751][T17790]  <TASK>
[  900.125731][T17790]  dump_stack_lvl+0x18c/0x250
[  900.130494][T17790]  ? show_regs_print_info+0x20/0x20
[  900.135751][T17790]  ? load_image+0x420/0x420
[  900.140493][T17790]  sysfs_warn_dup+0x8e/0xa0
[  900.145267][T17790]  sysfs_do_create_link_sd+0xc0/0x110
[  900.150893][T17790]  device_add_class_symlinks+0x1cf/0x240
[  900.156709][T17790]  device_add+0x507/0xc20
[  900.161112][T17790]  wiphy_register+0x1dad/0x2ae0
[  900.166052][T17790]  ? cfg80211_event_work+0x40/0x40
[  900.171486][T17790]  ? minstrel_ht_alloc+0x88a/0x990
[  900.176691][T17790]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  900.182833][T17790]  ieee80211_register_hw+0x3464/0x4250
[  900.188472][T17790]  ? ieee80211_tasklet_handler+0x20/0x20
[  900.194151][T17790]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  900.200107][T17790]  ? __debug_object_init+0xec/0x450
[  900.205366][T17790]  ? __asan_memset+0x22/0x40
[  900.210098][T17790]  ? __hrtimer_init+0x186/0x270
[  900.215008][T17790]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  900.220810][T17790]  ? mac80211_hwsim_free+0x220/0x220
[  900.226242][T17790]  ? rcu_is_watching+0x15/0xb0
[  900.231044][T17790]  ? kstrndup+0xbd/0x140
[  900.235341][T17790]  hwsim_new_radio_nl+0xdc9/0x1a90
[  900.240612][T17790]  ? __nla_validate+0x50/0x50
[  900.245546][T17790]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  900.252664][T17790]  ? __nla_parse+0x40/0x50
[  900.257286][T17790]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  900.263706][T17790]  genl_family_rcv_msg_doit+0x211/0x310
[  900.269493][T17790]  ? end_current_label_crit_section+0x170/0x170
[  900.275913][T17790]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  900.282074][T17790]  ? bpf_lsm_capable+0x9/0x10
[  900.286981][T17790]  ? security_capable+0x89/0xb0
[  900.291879][T17790]  genl_rcv_msg+0x619/0x7a0
[  900.296421][T17790]  ? genl_bind+0x360/0x360
[  900.300869][T17790]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  900.307256][T17790]  ? ref_tracker_free+0x690/0x840
[  900.312362][T17790]  netlink_rcv_skb+0x241/0x4d0
[  900.317154][T17790]  ? genl_bind+0x360/0x360
[  900.321590][T17790]  ? netlink_ack+0x1180/0x1180
[  900.326478][T17790]  ? __lock_acquire+0x7d40/0x7d40
[  900.331664][T17790]  ? down_read+0x1ac/0x2e0
[  900.336577][T17790]  genl_rcv+0x28/0x40
[  900.340594][T17790]  netlink_unicast+0x751/0x8d0
[  900.345394][T17790]  netlink_sendmsg+0x8d0/0xbf0
[  900.350192][T17790]  ? netlink_getsockopt+0x590/0x590
[  900.355442][T17790]  ? aa_sock_msg_perm+0x94/0x150
[  900.360507][T17790]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  900.366188][T17790]  ? security_socket_sendmsg+0x80/0xa0
[  900.371842][T17790]  ? netlink_getsockopt+0x590/0x590
[  900.377102][T17790]  ____sys_sendmsg+0x5ba/0x960
[  900.382064][T17790]  ? __asan_memset+0x22/0x40
[  900.386853][T17790]  ? __sys_sendmsg_sock+0x30/0x30
[  900.391979][T17790]  ? __import_iovec+0x5f2/0x850
[  900.396853][T17790]  ? import_iovec+0x73/0xa0
[  900.401548][T17790]  ___sys_sendmsg+0x2a6/0x360
[  900.406251][T17790]  ? __sys_sendmsg+0x2a0/0x2a0
[  900.411172][T17790]  __se_sys_sendmsg+0x1c2/0x2b0
[  900.416048][T17790]  ? __x64_sys_sendmsg+0x80/0x80
[  900.421041][T17790]  ? lockdep_hardirqs_on+0x98/0x150
[  900.426367][T17790]  do_syscall_64+0x55/0xa0
[  900.430795][T17790]  ? clear_bhb_loop+0x40/0x90
[  900.435509][T17790]  ? clear_bhb_loop+0x40/0x90
[  900.440211][T17790]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  900.446253][T17790] RIP: 0033:0x7f29a199ce59
[  900.450693][T17790] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  900.470574][T17790] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  900.479016][T17790] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  900.487130][T17790] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  900.495205][T17790] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  900.503277][T17790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  900.511611][T17790] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  900.519799][T17790]  </TASK>
[  901.029108][T17804] netlink: 'syz.2.3329': attribute type 29 has an invalid length.
[  901.039741][T17804] netlink: 'syz.2.3329': attribute type 29 has an invalid length.
[  901.074639][T17801] netlink: 'syz.3.3327': attribute type 25 has an invalid length.
[  901.157066][T17809] netlink: 'syz.2.3329': attribute type 2 has an invalid length.
[  901.198850][T17809] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3329'.
[  901.620093][T17817] mac80211_hwsim hwsim233 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  901.684550][T17822] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  901.751402][T17822] CPU: 1 PID: 17822 Comm: syz.1.3336 Not tainted syzkaller #0
[  901.759144][T17822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  901.769688][T17822] Call Trace:
[  901.773464][T17822]  <TASK>
[  901.776539][T17822]  dump_stack_lvl+0x18c/0x250
[  901.781337][T17822]  ? show_regs_print_info+0x20/0x20
[  901.786951][T17822]  ? load_image+0x420/0x420
[  901.791497][T17822]  sysfs_warn_dup+0x8e/0xa0
[  901.796150][T17822]  sysfs_do_create_link_sd+0xc0/0x110
[  901.801720][T17822]  device_add_class_symlinks+0x1cf/0x240
[  901.807377][T17822]  device_add+0x507/0xc20
[  901.811835][T17822]  wiphy_register+0x1dad/0x2ae0
[  901.816744][T17822]  ? cfg80211_event_work+0x40/0x40
[  901.822075][T17822]  ? minstrel_ht_alloc+0x88a/0x990
[  901.827242][T17822]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  901.833389][T17822]  ieee80211_register_hw+0x3464/0x4250
[  901.839642][T17822]  ? ieee80211_tasklet_handler+0x20/0x20
[  901.845826][T17822]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  901.851811][T17822]  ? __debug_object_init+0xec/0x450
[  901.857585][T17822]  ? __asan_memset+0x22/0x40
[  901.862689][T17822]  ? __hrtimer_init+0x186/0x270
[  901.867691][T17822]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  901.874330][T17822]  ? mac80211_hwsim_free+0x220/0x220
[  901.879953][T17822]  ? rcu_is_watching+0x15/0xb0
[  901.884942][T17822]  ? kstrndup+0xbd/0x140
[  901.889528][T17822]  hwsim_new_radio_nl+0xdc9/0x1a90
[  901.895141][T17822]  ? __nla_validate+0x50/0x50
[  901.900591][T17822]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  901.907001][T17822]  ? __nla_parse+0x40/0x50
[  901.911811][T17822]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  901.918566][T17822]  genl_family_rcv_msg_doit+0x211/0x310
[  901.925312][T17822]  ? end_current_label_crit_section+0x170/0x170
[  901.932224][T17822]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  901.938190][T17822]  ? bpf_lsm_capable+0x9/0x10
[  901.943531][T17822]  ? security_capable+0x89/0xb0
[  901.948726][T17822]  genl_rcv_msg+0x619/0x7a0
[  901.953580][T17822]  ? genl_bind+0x360/0x360
[  901.959006][T17822]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  901.966208][T17822]  ? perf_trace_lock+0xfc/0x3b0
[  901.971235][T17822]  netlink_rcv_skb+0x241/0x4d0
[  901.976031][T17822]  ? genl_bind+0x360/0x360
[  901.980643][T17822]  ? netlink_ack+0x1180/0x1180
[  901.985655][T17822]  ? __lock_acquire+0x7d40/0x7d40
[  901.991256][T17822]  ? down_read+0x1ac/0x2e0
[  901.996059][T17822]  genl_rcv+0x28/0x40
[  902.000206][T17822]  netlink_unicast+0x751/0x8d0
[  902.005243][T17822]  netlink_sendmsg+0x8d0/0xbf0
[  902.010209][T17822]  ? netlink_getsockopt+0x590/0x590
[  902.015556][T17822]  ? aa_sock_msg_perm+0x94/0x150
[  902.021293][T17822]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  902.026694][T17822]  ? security_socket_sendmsg+0x80/0xa0
[  902.032258][T17822]  ? netlink_getsockopt+0x590/0x590
[  902.037748][T17822]  ____sys_sendmsg+0x5ba/0x960
[  902.042745][T17822]  ? __asan_memset+0x22/0x40
[  902.047463][T17822]  ? __sys_sendmsg_sock+0x30/0x30
[  902.052948][T17822]  ? __import_iovec+0x5f2/0x850
[  902.058021][T17822]  ? import_iovec+0x73/0xa0
[  902.063069][T17822]  ___sys_sendmsg+0x2a6/0x360
[  902.068256][T17822]  ? __sys_sendmsg+0x2a0/0x2a0
[  902.073642][T17822]  __se_sys_sendmsg+0x1c2/0x2b0
[  902.078721][T17822]  ? __x64_sys_sendmsg+0x80/0x80
[  902.083798][T17822]  ? lockdep_hardirqs_on+0x98/0x150
[  902.089095][T17822]  do_syscall_64+0x55/0xa0
[  902.093657][T17822]  ? clear_bhb_loop+0x40/0x90
[  902.098446][T17822]  ? clear_bhb_loop+0x40/0x90
[  902.103594][T17822]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  902.109631][T17822] RIP: 0033:0x7fc38bd9ce59
[  902.114165][T17822] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  902.134399][T17822] RSP: 002b:00007fc38cbaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  902.143355][T17822] RAX: ffffffffffffffda RBX: 00007fc38c015fa0 RCX: 00007fc38bd9ce59
[  902.151619][T17822] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  902.160143][T17822] RBP: 00007fc38be32d6f R08: 0000000000000000 R09: 0000000000000000
[  902.168422][T17822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  902.176799][T17822] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  902.185257][T17822]  </TASK>
[  902.203378][   T42] wlan1: Trigger new scan to find an IBSS to join
[  902.210947][T17817] __nla_validate_parse: 3 callbacks suppressed
[  902.210994][T17817] netlink: 16066 bytes leftover after parsing attributes in process `syz.4.3332'.
[  902.401324][T17819] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3332'.
[  902.671627][T17838] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3340'.
[  902.709516][T17838] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  902.736520][T17838] CPU: 0 PID: 17838 Comm: syz.4.3340 Not tainted syzkaller #0
[  902.744261][T17838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  902.754459][T17838] Call Trace:
[  902.757882][T17838]  <TASK>
[  902.761000][T17838]  dump_stack_lvl+0x18c/0x250
[  902.765894][T17838]  ? show_regs_print_info+0x20/0x20
[  902.771263][T17838]  ? load_image+0x420/0x420
[  902.775944][T17838]  sysfs_warn_dup+0x8e/0xa0
[  902.780587][T17838]  sysfs_do_create_link_sd+0xc0/0x110
[  902.786178][T17838]  device_add_class_symlinks+0x1cf/0x240
[  902.792736][T17838]  device_add+0x507/0xc20
[  902.797103][T17838]  wiphy_register+0x1dad/0x2ae0
[  902.802088][T17838]  ? cfg80211_event_work+0x40/0x40
[  902.807303][T17838]  ? minstrel_ht_alloc+0x88a/0x990
[  902.812447][T17838]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  902.818551][T17838]  ieee80211_register_hw+0x3464/0x4250
[  902.824232][T17838]  ? ieee80211_tasklet_handler+0x20/0x20
[  902.829969][T17838]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  902.835940][T17838]  ? __debug_object_init+0xec/0x450
[  902.841518][T17838]  ? __asan_memset+0x22/0x40
[  902.846252][T17838]  ? __hrtimer_init+0x186/0x270
[  902.851324][T17838]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  902.857324][T17838]  ? mac80211_hwsim_free+0x220/0x220
[  902.863014][T17838]  ? rcu_is_watching+0x15/0xb0
[  902.868278][T17838]  ? kstrndup+0xbd/0x140
[  902.873488][T17838]  hwsim_new_radio_nl+0xdc9/0x1a90
[  902.879580][T17838]  ? __nla_validate+0x50/0x50
[  902.885104][T17838]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  902.891911][T17838]  ? __nla_parse+0x40/0x50
[  902.896392][T17838]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  902.902960][T17838]  genl_family_rcv_msg_doit+0x211/0x310
[  902.908650][T17838]  ? end_current_label_crit_section+0x170/0x170
[  902.915005][T17838]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  902.921097][T17838]  ? bpf_lsm_capable+0x9/0x10
[  902.925831][T17838]  ? security_capable+0x89/0xb0
[  902.930746][T17838]  genl_rcv_msg+0x619/0x7a0
[  902.935427][T17838]  ? genl_bind+0x360/0x360
[  902.940068][T17838]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  902.946685][T17838]  ? ref_tracker_free+0x690/0x840
[  902.951841][T17838]  netlink_rcv_skb+0x241/0x4d0
[  902.956678][T17838]  ? genl_bind+0x360/0x360
[  902.961149][T17838]  ? netlink_ack+0x1180/0x1180
[  902.966152][T17838]  ? __lock_acquire+0x7d40/0x7d40
[  902.971584][T17838]  ? down_read+0x1ac/0x2e0
[  902.976414][T17838]  genl_rcv+0x28/0x40
[  902.980628][T17838]  netlink_unicast+0x751/0x8d0
[  902.985550][T17838]  netlink_sendmsg+0x8d0/0xbf0
[  902.990365][T17838]  ? netlink_getsockopt+0x590/0x590
[  902.995750][T17838]  ? aa_sock_msg_perm+0x94/0x150
[  903.000720][T17838]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  903.006202][T17838]  ? security_socket_sendmsg+0x80/0xa0
[  903.011869][T17838]  ? netlink_getsockopt+0x590/0x590
[  903.017297][T17838]  ____sys_sendmsg+0x5ba/0x960
[  903.022278][T17838]  ? __asan_memset+0x22/0x40
[  903.026907][T17838]  ? __sys_sendmsg_sock+0x30/0x30
[  903.032118][T17838]  ? __import_iovec+0x5f2/0x850
[  903.037007][T17838]  ? import_iovec+0x73/0xa0
[  903.041541][T17838]  ___sys_sendmsg+0x2a6/0x360
[  903.046336][T17838]  ? __sys_sendmsg+0x2a0/0x2a0
[  903.051139][T17838]  ? debug_mutex_init+0x38/0x70
[  903.056039][T17838]  __se_sys_sendmsg+0x1c2/0x2b0
[  903.061000][T17838]  ? __x64_sys_sendmsg+0x80/0x80
[  903.066091][T17838]  ? lockdep_hardirqs_on+0x98/0x150
[  903.071673][T17838]  do_syscall_64+0x55/0xa0
[  903.076107][T17838]  ? clear_bhb_loop+0x40/0x90
[  903.081158][T17838]  ? clear_bhb_loop+0x40/0x90
[  903.086119][T17838]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  903.092297][T17838] RIP: 0033:0x7f29a199ce59
[  903.096920][T17838] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  903.116641][T17838] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  903.125438][T17838] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  903.133967][T17838] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  903.142303][T17838] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  903.150554][T17838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  903.159102][T17838] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  903.167370][T17838]  </TASK>
[  903.194097][T17844] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3341'.
[  903.211468][T17845] FAULT_INJECTION: forcing a failure.
[  903.211468][T17845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  903.230809][T17845] CPU: 0 PID: 17845 Comm: syz.2.3343 Not tainted syzkaller #0
[  903.238360][T17845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  903.248536][T17845] Call Trace:
[  903.251930][T17845]  <TASK>
[  903.255072][T17845]  dump_stack_lvl+0x18c/0x250
[  903.259885][T17845]  ? show_regs_print_info+0x20/0x20
[  903.265294][T17845]  ? load_image+0x420/0x420
[  903.270099][T17845]  ? __might_fault+0xaa/0x120
[  903.275171][T17845]  ? __lock_acquire+0x7d40/0x7d40
[  903.280914][T17845]  should_fail_ex+0x39d/0x4d0
[  903.285642][T17845]  _copy_from_iter+0x1d9/0x12e0
[  903.290520][T17845]  ? __virt_addr_valid+0x18c/0x540
[  903.295921][T17845]  ? __lock_acquire+0x7d40/0x7d40
[  903.301162][T17845]  ? rcu_is_watching+0x15/0xb0
[  903.306379][T17845]  ? copyout_mc+0x70/0x70
[  903.311009][T17845]  ? __virt_addr_valid+0x18c/0x540
[  903.316172][T17845]  ? __virt_addr_valid+0x18c/0x540
[  903.321346][T17845]  ? __virt_addr_valid+0x469/0x540
[  903.326623][T17845]  ? __check_object_size+0x506/0xa20
[  903.331956][T17845]  kcm_sendmsg+0xd95/0x28b0
[  903.336557][T17845]  ? kcm_getsockopt+0x280/0x280
[  903.341541][T17845]  ? aa_sock_msg_perm+0x94/0x150
[  903.346594][T17845]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  903.351932][T17845]  ? security_socket_sendmsg+0x80/0xa0
[  903.357845][T17845]  ? kcm_getsockopt+0x280/0x280
[  903.362814][T17845]  ____sys_sendmsg+0x5ba/0x960
[  903.367825][T17845]  ? __asan_memset+0x22/0x40
[  903.372466][T17845]  ? __sys_sendmsg_sock+0x30/0x30
[  903.377709][T17845]  ? __import_iovec+0x5f2/0x850
[  903.382973][T17845]  ? import_iovec+0x73/0xa0
[  903.387884][T17845]  ___sys_sendmsg+0x2a6/0x360
[  903.392771][T17845]  ? get_pid_task+0x20/0x1e0
[  903.397473][T17845]  ? __sys_sendmsg+0x2a0/0x2a0
[  903.402272][T17845]  ? __lock_acquire+0x7d40/0x7d40
[  903.407340][T17845]  __se_sys_sendmsg+0x1c2/0x2b0
[  903.412304][T17845]  ? __x64_sys_sendmsg+0x80/0x80
[  903.417271][T17845]  ? lockdep_hardirqs_on+0x98/0x150
[  903.422521][T17845]  do_syscall_64+0x55/0xa0
[  903.426951][T17845]  ? clear_bhb_loop+0x40/0x90
[  903.431749][T17845]  ? clear_bhb_loop+0x40/0x90
[  903.436448][T17845]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  903.442586][T17845] RIP: 0033:0x7f69be19ce59
[  903.447038][T17845] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  903.466756][T17845] RSP: 002b:00007f69bf117028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  903.475366][T17845] RAX: ffffffffffffffda RBX: 00007f69be416090 RCX: 00007f69be19ce59
[  903.483638][T17845] RDX: 0000000000000000 RSI: 0000200000002080 RDI: 0000000000000003
[  903.491620][T17845] RBP: 00007f69bf117090 R08: 0000000000000000 R09: 0000000000000000
[  903.499616][T17845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  903.508233][T17845] R13: 00007f69be416128 R14: 00007f69be416090 R15: 00007ffc46df7058
[  903.516277][T17845]  </TASK>
[  903.638392][T17847] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3342'.
[  903.654824][T17847] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3342'.
[  903.860365][T17853] tun0: tun_chr_ioctl cmd 1074025677
[  903.909026][T17853] tun0: linktype set to 768
[  903.910066][T17855] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3347'.
[  903.926226][T17853] tun0: tun_chr_ioctl cmd 1074812118
[  903.940505][T17855] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  903.961921][T17855] CPU: 1 PID: 17855 Comm: syz.3.3347 Not tainted syzkaller #0
[  903.969647][T17855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  903.980522][T17855] Call Trace:
[  903.983840][T17855]  <TASK>
[  903.986905][T17855]  dump_stack_lvl+0x18c/0x250
[  903.991711][T17855]  ? show_regs_print_info+0x20/0x20
[  903.997137][T17855]  ? load_image+0x420/0x420
[  904.001687][T17855]  sysfs_warn_dup+0x8e/0xa0
[  904.006209][T17855]  sysfs_do_create_link_sd+0xc0/0x110
[  904.011776][T17855]  device_add_class_symlinks+0x1cf/0x240
[  904.017707][T17855]  device_add+0x507/0xc20
[  904.022087][T17855]  wiphy_register+0x1dad/0x2ae0
[  904.027077][T17855]  ? cfg80211_event_work+0x40/0x40
[  904.032295][T17855]  ? minstrel_ht_alloc+0x88a/0x990
[  904.037447][T17855]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  904.044088][T17855]  ieee80211_register_hw+0x3464/0x4250
[  904.049671][T17855]  ? ieee80211_tasklet_handler+0x20/0x20
[  904.055403][T17855]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  904.061437][T17855]  ? __debug_object_init+0xec/0x450
[  904.066687][T17855]  ? __asan_memset+0x22/0x40
[  904.071402][T17855]  ? __hrtimer_init+0x186/0x270
[  904.076377][T17855]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  904.082242][T17855]  ? mac80211_hwsim_free+0x220/0x220
[  904.087559][T17855]  ? rcu_is_watching+0x15/0xb0
[  904.092535][T17855]  ? kstrndup+0xbd/0x140
[  904.096898][T17855]  hwsim_new_radio_nl+0xdc9/0x1a90
[  904.102213][T17855]  ? __nla_validate+0x50/0x50
[  904.107076][T17855]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  904.113870][T17855]  ? __nla_parse+0x40/0x50
[  904.118392][T17855]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  904.124880][T17855]  genl_family_rcv_msg_doit+0x211/0x310
[  904.130494][T17855]  ? end_current_label_crit_section+0x170/0x170
[  904.136780][T17855]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  904.143081][T17855]  ? bpf_lsm_capable+0x9/0x10
[  904.147890][T17855]  ? security_capable+0x89/0xb0
[  904.152791][T17855]  genl_rcv_msg+0x619/0x7a0
[  904.157445][T17855]  ? genl_bind+0x360/0x360
[  904.162090][T17855]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  904.168567][T17855]  ? ref_tracker_free+0x690/0x840
[  904.173732][T17855]  netlink_rcv_skb+0x241/0x4d0
[  904.178628][T17855]  ? genl_bind+0x360/0x360
[  904.183267][T17855]  ? netlink_ack+0x1180/0x1180
[  904.188249][T17855]  ? __lock_acquire+0x7d40/0x7d40
[  904.193411][T17855]  ? down_read+0x1ac/0x2e0
[  904.197866][T17855]  genl_rcv+0x28/0x40
[  904.201916][T17855]  netlink_unicast+0x751/0x8d0
[  904.206765][T17855]  netlink_sendmsg+0x8d0/0xbf0
[  904.211581][T17855]  ? netlink_getsockopt+0x590/0x590
[  904.216850][T17855]  ? aa_sock_msg_perm+0x94/0x150
[  904.222073][T17855]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  904.227756][T17855]  ? security_socket_sendmsg+0x80/0xa0
[  904.233279][T17855]  ? netlink_getsockopt+0x590/0x590
[  904.238532][T17855]  ____sys_sendmsg+0x5ba/0x960
[  904.243340][T17855]  ? __asan_memset+0x22/0x40
[  904.248134][T17855]  ? __sys_sendmsg_sock+0x30/0x30
[  904.253289][T17855]  ? __import_iovec+0x5f2/0x850
[  904.258178][T17855]  ? import_iovec+0x73/0xa0
[  904.263278][T17855]  ___sys_sendmsg+0x2a6/0x360
[  904.268181][T17855]  ? __sys_sendmsg+0x2a0/0x2a0
[  904.273095][T17855]  __se_sys_sendmsg+0x1c2/0x2b0
[  904.278291][T17855]  ? __x64_sys_sendmsg+0x80/0x80
[  904.283466][T17855]  ? lockdep_hardirqs_on+0x98/0x150
[  904.288930][T17855]  do_syscall_64+0x55/0xa0
[  904.293849][T17855]  ? clear_bhb_loop+0x40/0x90
[  904.298916][T17855]  ? clear_bhb_loop+0x40/0x90
[  904.304623][T17855]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  904.310539][T17855] RIP: 0033:0x7f4f3d99ce59
[  904.314984][T17855] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  904.336105][T17855] RSP: 002b:00007f4f3e88c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  904.344716][T17855] RAX: ffffffffffffffda RBX: 00007f4f3dc15fa0 RCX: 00007f4f3d99ce59
[  904.352948][T17855] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  904.361196][T17855] RBP: 00007f4f3da32d6f R08: 0000000000000000 R09: 0000000000000000
[  904.369832][T17855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  904.377904][T17855] R13: 00007f4f3dc16038 R14: 00007f4f3dc15fa0 R15: 00007ffdece09b28
[  904.385997][T17855]  </TASK>
[  904.395495][T15713] wlan1: Trigger new scan to find an IBSS to join
[  904.458107][T17861] mac80211_hwsim hwsim178 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  904.633853][T17864] veth1_macvtap: left allmulticast mode
[  904.642073][T17864] veth1_macvtap: left promiscuous mode
[  904.650363][T17864] macsec0: left promiscuous mode
[  904.658140][T17864] macsec0: left allmulticast mode
[  904.758298][T17870] validate_nla: 15 callbacks suppressed
[  904.758322][T17870] netlink: 'syz.2.3353': attribute type 10 has an invalid length.
[  905.076975][T17875] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3355'.
[  905.166637][T17872] netlink: 'syz.1.3354': attribute type 2 has an invalid length.
[  905.181122][T17872] netlink: 'syz.1.3354': attribute type 8 has an invalid length.
[  905.189313][T17872] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3354'.
[  905.291819][T17875] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  905.307246][T17875] CPU: 1 PID: 17875 Comm: syz.4.3355 Not tainted syzkaller #0
[  905.314977][T17875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  905.325311][T17875] Call Trace:
[  905.328898][T17875]  <TASK>
[  905.331890][T17875]  dump_stack_lvl+0x18c/0x250
[  905.336654][T17875]  ? show_regs_print_info+0x20/0x20
[  905.342154][T17875]  ? load_image+0x420/0x420
[  905.346939][T17875]  sysfs_warn_dup+0x8e/0xa0
[  905.351653][T17875]  sysfs_do_create_link_sd+0xc0/0x110
[  905.357230][T17875]  device_add_class_symlinks+0x1cf/0x240
[  905.362917][T17875]  device_add+0x507/0xc20
[  905.367589][T17875]  wiphy_register+0x1dad/0x2ae0
[  905.372777][T17875]  ? cfg80211_event_work+0x40/0x40
[  905.377934][T17875]  ? minstrel_ht_alloc+0x88a/0x990
[  905.383794][T17875]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  905.390420][T17875]  ieee80211_register_hw+0x3464/0x4250
[  905.397873][T17875]  ? ieee80211_tasklet_handler+0x20/0x20
[  905.403552][T17875]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  905.409490][T17875]  ? __debug_object_init+0xec/0x450
[  905.414842][T17875]  ? __asan_memset+0x22/0x40
[  905.419551][T17875]  ? __hrtimer_init+0x186/0x270
[  905.424548][T17875]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  905.430799][T17875]  ? mac80211_hwsim_free+0x220/0x220
[  905.436301][T17875]  ? rcu_is_watching+0x15/0xb0
[  905.441207][T17875]  ? kstrndup+0xbd/0x140
[  905.445752][T17875]  hwsim_new_radio_nl+0xdc9/0x1a90
[  905.450917][T17875]  ? __nla_validate+0x50/0x50
[  905.455902][T17875]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  905.462466][T17875]  ? __nla_parse+0x40/0x50
[  905.467202][T17875]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  905.474456][T17875]  genl_family_rcv_msg_doit+0x211/0x310
[  905.480276][T17875]  ? end_current_label_crit_section+0x170/0x170
[  905.487665][T17875]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  905.494184][T17875]  ? bpf_lsm_capable+0x9/0x10
[  905.499017][T17875]  ? security_capable+0x89/0xb0
[  905.504220][T17875]  genl_rcv_msg+0x619/0x7a0
[  905.509262][T17875]  ? genl_bind+0x360/0x360
[  905.514457][T17875]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  905.522101][T17875]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  905.529125][T17875]  ? ref_tracker_free+0x690/0x840
[  905.534240][T17875]  netlink_rcv_skb+0x241/0x4d0
[  905.539228][T17875]  ? genl_bind+0x360/0x360
[  905.543767][T17875]  ? netlink_ack+0x1180/0x1180
[  905.549628][T17875]  ? __lock_acquire+0x7d40/0x7d40
[  905.555008][T17875]  ? down_read+0x1ac/0x2e0
[  905.559662][T17875]  genl_rcv+0x28/0x40
[  905.563771][T17875]  netlink_unicast+0x751/0x8d0
[  905.568905][T17875]  netlink_sendmsg+0x8d0/0xbf0
[  905.574110][T17875]  ? netlink_getsockopt+0x590/0x590
[  905.579468][T17875]  ? aa_sock_msg_perm+0x94/0x150
[  905.584532][T17875]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  905.589872][T17875]  ? security_socket_sendmsg+0x80/0xa0
[  905.596760][T17875]  ? netlink_getsockopt+0x590/0x590
[  905.601984][T17875]  ____sys_sendmsg+0x5ba/0x960
[  905.606900][T17875]  ? __asan_memset+0x22/0x40
[  905.611616][T17875]  ? __sys_sendmsg_sock+0x30/0x30
[  905.616692][T17875]  ? __import_iovec+0x5f2/0x850
[  905.621653][T17875]  ? import_iovec+0x73/0xa0
[  905.626636][T17875]  ___sys_sendmsg+0x2a6/0x360
[  905.631700][T17875]  ? __sys_sendmsg+0x2a0/0x2a0
[  905.636744][T17875]  __se_sys_sendmsg+0x1c2/0x2b0
[  905.641692][T17875]  ? __x64_sys_sendmsg+0x80/0x80
[  905.646932][T17875]  ? lockdep_hardirqs_on+0x98/0x150
[  905.652380][T17875]  do_syscall_64+0x55/0xa0
[  905.656947][T17875]  ? clear_bhb_loop+0x40/0x90
[  905.662092][T17875]  ? clear_bhb_loop+0x40/0x90
[  905.666926][T17875]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  905.673219][T17875] RIP: 0033:0x7f29a199ce59
[  905.678761][T17875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  905.699933][T17875] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  905.709768][T17875] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  905.719811][T17875] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  905.728045][T17875] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  905.737044][T17875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  905.746736][T17875] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  905.755685][T17875]  </TASK>
[  906.113340][T17889] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3358'.
[  906.182001][T17889] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  906.213052][T15712] wlan1: Trigger new scan to find an IBSS to join
[  906.213278][T17892] FAULT_INJECTION: forcing a failure.
[  906.213278][T17892] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  906.235531][T17889] CPU: 1 PID: 17889 Comm: syz.3.3358 Not tainted syzkaller #0
[  906.243205][T17889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  906.253802][T17889] Call Trace:
[  906.257261][T17889]  <TASK>
[  906.260557][T17889]  dump_stack_lvl+0x18c/0x250
[  906.265360][T17889]  ? show_regs_print_info+0x20/0x20
[  906.270676][T17889]  ? load_image+0x420/0x420
[  906.275355][T17889]  sysfs_warn_dup+0x8e/0xa0
[  906.280048][T17889]  sysfs_do_create_link_sd+0xc0/0x110
[  906.285830][T17889]  device_add_class_symlinks+0x1cf/0x240
[  906.291659][T17889]  device_add+0x507/0xc20
[  906.296191][T17889]  wiphy_register+0x1dad/0x2ae0
[  906.301409][T17889]  ? cfg80211_event_work+0x40/0x40
[  906.306604][T17889]  ? minstrel_ht_alloc+0x88a/0x990
[  906.312026][T17889]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  906.318429][T17889]  ieee80211_register_hw+0x3464/0x4250
[  906.324156][T17889]  ? ieee80211_tasklet_handler+0x20/0x20
[  906.330090][T17889]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  906.336259][T17889]  ? __debug_object_init+0xec/0x450
[  906.341831][T17889]  ? __asan_memset+0x22/0x40
[  906.346636][T17889]  ? __hrtimer_init+0x186/0x270
[  906.351751][T17889]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  906.357729][T17889]  ? mac80211_hwsim_free+0x220/0x220
[  906.363294][T17889]  ? rcu_is_watching+0x15/0xb0
[  906.368250][T17889]  ? kstrndup+0xbd/0x140
[  906.372690][T17889]  hwsim_new_radio_nl+0xdc9/0x1a90
[  906.377974][T17889]  ? __nla_validate+0x50/0x50
[  906.383068][T17889]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  906.389665][T17889]  ? __nla_parse+0x40/0x50
[  906.394235][T17889]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  906.400932][T17889]  genl_family_rcv_msg_doit+0x211/0x310
[  906.406771][T17889]  ? end_current_label_crit_section+0x170/0x170
[  906.413127][T17889]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  906.419219][T17889]  ? bpf_lsm_capable+0x9/0x10
[  906.424127][T17889]  ? security_capable+0x89/0xb0
[  906.429145][T17889]  genl_rcv_msg+0x619/0x7a0
[  906.433827][T17889]  ? genl_bind+0x360/0x360
[  906.438408][T17889]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  906.445225][T17889]  ? perf_trace_lock+0x304/0x3b0
[  906.450345][T17889]  netlink_rcv_skb+0x241/0x4d0
[  906.455391][T17889]  ? genl_bind+0x360/0x360
[  906.460515][T17889]  ? netlink_ack+0x1180/0x1180
[  906.465724][T17889]  ? __lock_acquire+0x7d40/0x7d40
[  906.471051][T17889]  ? down_read+0x1ac/0x2e0
[  906.475546][T17889]  genl_rcv+0x28/0x40
[  906.479628][T17889]  netlink_unicast+0x751/0x8d0
[  906.484525][T17889]  netlink_sendmsg+0x8d0/0xbf0
[  906.489712][T17889]  ? perf_trace_lock+0x304/0x3b0
[  906.494735][T17889]  ? netlink_getsockopt+0x590/0x590
[  906.500098][T17889]  ? aa_sock_msg_perm+0x94/0x150
[  906.505124][T17889]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  906.511268][T17889]  ? security_socket_sendmsg+0x80/0xa0
[  906.517106][T17889]  ? netlink_getsockopt+0x590/0x590
[  906.522587][T17889]  ____sys_sendmsg+0x5ba/0x960
[  906.527495][T17889]  ? __asan_memset+0x22/0x40
[  906.532199][T17889]  ? __sys_sendmsg_sock+0x30/0x30
[  906.537389][T17889]  ? __import_iovec+0x5f2/0x850
[  906.542374][T17889]  ? import_iovec+0x73/0xa0
[  906.547106][T17889]  ___sys_sendmsg+0x2a6/0x360
[  906.552521][T17889]  ? __sys_sendmsg+0x2a0/0x2a0
[  906.557702][T17889]  __se_sys_sendmsg+0x1c2/0x2b0
[  906.563100][T17889]  ? __x64_sys_sendmsg+0x80/0x80
[  906.568428][T17889]  ? lockdep_hardirqs_on+0x98/0x150
[  906.574156][T17889]  do_syscall_64+0x55/0xa0
[  906.579183][T17889]  ? clear_bhb_loop+0x40/0x90
[  906.584486][T17889]  ? clear_bhb_loop+0x40/0x90
[  906.589753][T17889]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  906.596033][T17889] RIP: 0033:0x7f4f3d99ce59
[  906.600795][T17889] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  906.621356][T17889] RSP: 002b:00007f4f3e88c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  906.630122][T17889] RAX: ffffffffffffffda RBX: 00007f4f3dc15fa0 RCX: 00007f4f3d99ce59
[  906.639648][T17889] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  906.648529][T17889] RBP: 00007f4f3da32d6f R08: 0000000000000000 R09: 0000000000000000
[  906.657628][T17889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  906.665778][T17889] R13: 00007f4f3dc16038 R14: 00007f4f3dc15fa0 R15: 00007ffdece09b28
[  906.674415][T17889]  </TASK>
[  906.694489][T17892] CPU: 0 PID: 17892 Comm: syz.1.3360 Not tainted syzkaller #0
[  906.698030][T17886] netlink: 'syz.4.3359': attribute type 25 has an invalid length.
[  906.702556][T17892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  906.702584][T17892] Call Trace:
[  906.702600][T17892]  <TASK>
[  906.702618][T17892]  dump_stack_lvl+0x18c/0x250
[  906.702672][T17892]  ? show_regs_print_info+0x20/0x20
[  906.702715][T17892]  ? load_image+0x420/0x420
[  906.702767][T17892]  ? __lock_acquire+0x7d40/0x7d40
[  906.702828][T17892]  should_fail_ex+0x39d/0x4d0
[  906.702885][T17892]  prepare_alloc_pages+0x1e2/0x5f0
[  906.722718][T17886] netlink: 'syz.4.3359': attribute type 28 has an invalid length.
[  906.725232][T17892]  __alloc_pages+0x134/0x460
[  906.725290][T17892]  ? zone_statistics+0x170/0x170
[  906.725347][T17892]  ? mt_find+0x169/0x650
[  906.725390][T17892]  ? handle_mm_fault+0xe7/0x4c00
[  906.725442][T17892]  __folio_alloc+0x10/0x20
[  906.792343][T17892]  vma_alloc_folio+0x47a/0x8f0
[  906.797559][T17892]  handle_mm_fault+0x1b3b/0x4c00
[  906.802775][T17892]  ? handle_mm_fault+0xe7/0x4c00
[  906.807837][T17892]  ? numa_migrate_prep+0x350/0x350
[  906.813592][T17892]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  906.819070][T17892]  do_user_addr_fault+0x730/0x12c0
[  906.824364][T17892]  exc_page_fault+0x64/0x100
[  906.829425][T17892]  asm_exc_page_fault+0x26/0x30
[  906.834603][T17892] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  906.840579][T17892] Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 29 f8 48 01
[  906.861502][T17892] RSP: 0018:ffffc9000b5d7630 EFLAGS: 00050206
[  906.868143][T17892] RAX: ffffffff8427c801 RBX: 0000000000000128 RCX: 0000000000000128
[  906.878668][T17892] RDX: 0000000000000000 RSI: ffff88805b79c000 RDI: 00002000000032c0
[  906.888006][T17892] RBP: ffffc9000b5d77c0 R08: ffff88805b79c127 R09: 1ffff1100b6f3824
[  906.897347][T17892] R10: dffffc0000000000 R11: ffffed100b6f3825 R12: 00002000000033e8
[  906.905533][T17892] R13: ffffc9000b5d7e40 R14: 00002000000032c0 R15: ffff88805b79c000
[  906.913656][T17892]  ? _copy_to_iter+0x1081/0x1120
[  906.918794][T17892]  copyout+0x70/0x90
[  906.922950][T17892]  _copy_to_iter+0x432/0x1120
[  906.927943][T17892]  ? iov_iter_init+0x1e0/0x1e0
[  906.932785][T17892]  ? __virt_addr_valid+0x18c/0x540
[  906.938136][T17892]  ? __virt_addr_valid+0x469/0x540
[  906.943425][T17892]  ? __phys_addr_symbol+0x2f/0x70
[  906.948916][T17892]  __skb_datagram_iter+0xdb/0x780
[  906.954385][T17892]  ? skb_copy_datagram_iter+0x200/0x200
[  906.960016][T17892]  skb_copy_datagram_iter+0xb1/0x200
[  906.965837][T17892]  netlink_recvmsg+0x2d4/0xe60
[  906.970859][T17892]  ? __bpf_trace_bpf_trace_printk+0x100/0x100
[  906.977110][T17892]  ? netlink_sendmsg+0xbf0/0xbf0
[  906.982145][T17892]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  906.988826][T17892]  ? aa_af_perm+0x330/0x330
[  906.993867][T17892]  ? trace_call_bpf+0xc3/0x6c0
[  906.999111][T17892]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  907.004556][T17892]  ? security_socket_recvmsg+0x89/0xb0
[  907.010603][T17892]  ? netlink_sendmsg+0xbf0/0xbf0
[  907.015998][T17892]  ____sys_recvmsg+0x2ce/0x5e0
[  907.020943][T17892]  ? __sys_recvmsg_sock+0x50/0x50
[  907.026162][T17892]  ? import_iovec+0x73/0xa0
[  907.030803][T17892]  ___sys_recvmsg+0x216/0x590
[  907.035798][T17892]  ? __sys_recvmsg+0x2a0/0x2a0
[  907.040874][T17892]  ? ksys_write+0x1c4/0x260
[  907.046383][T17892]  ? __fget_files+0x43d/0x4b0
[  907.052477][T17892]  __x64_sys_recvmsg+0x20c/0x2e0
[  907.057567][T17892]  ? ___sys_recvmsg+0x590/0x590
[  907.063142][T17892]  ? lockdep_hardirqs_on+0x98/0x150
[  907.068642][T17892]  do_syscall_64+0x55/0xa0
[  907.073113][T17892]  ? clear_bhb_loop+0x40/0x90
[  907.078839][T17892]  ? clear_bhb_loop+0x40/0x90
[  907.084567][T17892]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  907.091305][T17892] RIP: 0033:0x7fc38bd9ce59
[  907.096498][T17892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  907.117215][T17892] RSP: 002b:00007fc38cb89028 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  907.126320][T17892] RAX: ffffffffffffffda RBX: 00007fc38c016090 RCX: 00007fc38bd9ce59
[  907.135205][T17892] RDX: 0000000000000020 RSI: 0000200000000240 RDI: 0000000000000006
[  907.144134][T17892] RBP: 00007fc38cb89090 R08: 0000000000000000 R09: 0000000000000000
[  907.153831][T17892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  907.162484][T17892] R13: 00007fc38c016128 R14: 00007fc38c016090 R15: 00007ffe7ea6e628
[  907.170726][T17892]  </TASK>
[  907.515730][T17905] netlink: 'syz.3.3367': attribute type 29 has an invalid length.
[  907.524256][T17901] netlink: 'syz.4.3364': attribute type 10 has an invalid length.
[  907.600624][T17901] 8021q: adding VLAN 0 to HW filter on device batadv0
[  907.630232][T17901] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  907.670420][T17908] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3368'.
[  907.683793][T17905] netlink: 'syz.3.3367': attribute type 29 has an invalid length.
[  907.693864][T17909] netlink: 'syz.3.3367': attribute type 2 has an invalid length.
[  907.702047][T17909] netlink: 'syz.3.3367': attribute type 8 has an invalid length.
[  907.718631][T17909] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3367'.
[  907.735264][T17908] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  907.744571][T17908] CPU: 0 PID: 17908 Comm: syz.2.3368 Not tainted syzkaller #0
[  907.752116][T17908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  907.762354][T17908] Call Trace:
[  907.765839][T17908]  <TASK>
[  907.768836][T17908]  dump_stack_lvl+0x18c/0x250
[  907.773671][T17908]  ? show_regs_print_info+0x20/0x20
[  907.779110][T17908]  ? load_image+0x420/0x420
[  907.783667][T17908]  sysfs_warn_dup+0x8e/0xa0
[  907.788765][T17908]  sysfs_do_create_link_sd+0xc0/0x110
[  907.794581][T17908]  device_add_class_symlinks+0x1cf/0x240
[  907.800734][T17908]  device_add+0x507/0xc20
[  907.805222][T17908]  wiphy_register+0x1dad/0x2ae0
[  907.810942][T17908]  ? cfg80211_event_work+0x40/0x40
[  907.816923][T17908]  ? minstrel_ht_alloc+0x88a/0x990
[  907.823293][T17908]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  907.829617][T17908]  ieee80211_register_hw+0x3464/0x4250
[  907.836118][T17908]  ? ieee80211_tasklet_handler+0x20/0x20
[  907.842444][T17908]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  907.849127][T17908]  ? __debug_object_init+0xec/0x450
[  907.854853][T17908]  ? __asan_memset+0x22/0x40
[  907.859854][T17908]  ? __hrtimer_init+0x186/0x270
[  907.865043][T17908]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  907.871109][T17908]  ? mac80211_hwsim_free+0x220/0x220
[  907.877001][T17908]  ? rcu_is_watching+0x15/0xb0
[  907.882536][T17908]  ? kstrndup+0xbd/0x140
[  907.887765][T17908]  hwsim_new_radio_nl+0xdc9/0x1a90
[  907.894957][T17908]  ? __nla_validate+0x50/0x50
[  907.899887][T17908]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  907.906889][T17908]  ? __nla_parse+0x40/0x50
[  907.911462][T17908]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  907.918205][T17908]  genl_family_rcv_msg_doit+0x211/0x310
[  907.924044][T17908]  ? end_current_label_crit_section+0x170/0x170
[  907.930516][T17908]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  907.936541][T17908]  ? bpf_lsm_capable+0x9/0x10
[  907.941330][T17908]  ? security_capable+0x89/0xb0
[  907.946557][T17908]  genl_rcv_msg+0x619/0x7a0
[  907.951097][T17908]  ? genl_bind+0x360/0x360
[  907.955749][T17908]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  907.963057][T17908]  ? perf_trace_lock+0xfc/0x3b0
[  907.968082][T17908]  netlink_rcv_skb+0x241/0x4d0
[  907.974503][T17908]  ? genl_bind+0x360/0x360
[  907.979237][T17908]  ? netlink_ack+0x1180/0x1180
[  907.984659][T17908]  ? __lock_acquire+0x7d40/0x7d40
[  907.989912][T17908]  ? down_read+0x1ac/0x2e0
[  907.994367][T17908]  genl_rcv+0x28/0x40
[  907.998655][T17908]  netlink_unicast+0x751/0x8d0
[  908.004008][T17908]  netlink_sendmsg+0x8d0/0xbf0
[  908.009072][T17908]  ? netlink_getsockopt+0x590/0x590
[  908.014932][T17908]  ? aa_sock_msg_perm+0x94/0x150
[  908.020024][T17908]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  908.025871][T17908]  ? security_socket_sendmsg+0x80/0xa0
[  908.032075][T17908]  ? netlink_getsockopt+0x590/0x590
[  908.037777][T17908]  ____sys_sendmsg+0x5ba/0x960
[  908.042576][T17908]  ? __asan_memset+0x22/0x40
[  908.047573][T17908]  ? __sys_sendmsg_sock+0x30/0x30
[  908.052739][T17908]  ? __import_iovec+0x5f2/0x850
[  908.057664][T17908]  ? import_iovec+0x73/0xa0
[  908.062196][T17908]  ___sys_sendmsg+0x2a6/0x360
[  908.066931][T17908]  ? __sys_sendmsg+0x2a0/0x2a0
[  908.071825][T17908]  ? trace_call_bpf+0xc3/0x6c0
[  908.076759][T17908]  __se_sys_sendmsg+0x1c2/0x2b0
[  908.081656][T17908]  ? __x64_sys_sendmsg+0x80/0x80
[  908.086800][T17908]  ? lockdep_hardirqs_on+0x98/0x150
[  908.092243][T17908]  do_syscall_64+0x55/0xa0
[  908.097162][T17908]  ? clear_bhb_loop+0x40/0x90
[  908.101885][T17908]  ? clear_bhb_loop+0x40/0x90
[  908.106787][T17908]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  908.112719][T17908] RIP: 0033:0x7f69be19ce59
[  908.117401][T17908] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  908.137662][T17908] RSP: 002b:00007f69bf138028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  908.146314][T17908] RAX: ffffffffffffffda RBX: 00007f69be415fa0 RCX: 00007f69be19ce59
[  908.154322][T17908] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  908.162335][T17908] RBP: 00007f69be232d6f R08: 0000000000000000 R09: 0000000000000000
[  908.172087][T17908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  908.180814][T17908] R13: 00007f69be416038 R14: 00007f69be415fa0 R15: 00007ffc46df7058
[  908.188967][T17908]  </TASK>
[  908.202582][   T42] wlan1: Trigger new scan to find an IBSS to join
[  908.207822][T17905] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3367'.
[  908.210589][   T42] wlan1: Trigger new scan to find an IBSS to join
[  908.624781][T17918] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3370'.
[  908.655681][T17918] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3370'.
[  908.988162][T17930] veth1_to_bond: entered allmulticast mode
[  909.173834][T15714] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  909.294396][T17934] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3376'.
[  909.316354][T17934] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  909.368531][T17934] CPU: 0 PID: 17934 Comm: syz.2.3376 Not tainted syzkaller #0
[  909.377485][T17934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  909.388300][T17934] Call Trace:
[  909.391730][T17934]  <TASK>
[  909.394716][T17934]  dump_stack_lvl+0x18c/0x250
[  909.399783][T17934]  ? show_regs_print_info+0x20/0x20
[  909.405037][T17934]  ? load_image+0x420/0x420
[  909.410442][T17934]  sysfs_warn_dup+0x8e/0xa0
[  909.415466][T17934]  sysfs_do_create_link_sd+0xc0/0x110
[  909.421270][T17934]  device_add_class_symlinks+0x1cf/0x240
[  909.428321][T17934]  device_add+0x507/0xc20
[  909.432993][T17934]  wiphy_register+0x1dad/0x2ae0
[  909.438280][T17934]  ? cfg80211_event_work+0x40/0x40
[  909.443861][T17934]  ? minstrel_ht_alloc+0x88a/0x990
[  909.449337][T17934]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  909.455580][T17934]  ieee80211_register_hw+0x3464/0x4250
[  909.461656][T17934]  ? ieee80211_tasklet_handler+0x20/0x20
[  909.467648][T17934]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  909.473708][T17934]  ? __debug_object_init+0xec/0x450
[  909.478987][T17934]  ? __asan_memset+0x22/0x40
[  909.483600][T17934]  ? __hrtimer_init+0x186/0x270
[  909.489274][T17934]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  909.495939][T17934]  ? mac80211_hwsim_free+0x220/0x220
[  909.502341][T17934]  ? rcu_is_watching+0x15/0xb0
[  909.507583][T17934]  ? kstrndup+0xbd/0x140
[  909.512172][T17934]  hwsim_new_radio_nl+0xdc9/0x1a90
[  909.517552][T17934]  ? __nla_validate+0x50/0x50
[  909.522497][T17934]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  909.529117][T17934]  ? __nla_parse+0x40/0x50
[  909.533681][T17934]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  909.540259][T17934]  genl_family_rcv_msg_doit+0x211/0x310
[  909.546045][T17934]  ? end_current_label_crit_section+0x170/0x170
[  909.552517][T17934]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  909.558663][T17934]  ? bpf_lsm_capable+0x9/0x10
[  909.563464][T17934]  ? security_capable+0x89/0xb0
[  909.568535][T17934]  genl_rcv_msg+0x619/0x7a0
[  909.573131][T17934]  ? genl_bind+0x360/0x360
[  909.577724][T17934]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  909.584259][T17934]  ? ref_tracker_free+0x690/0x840
[  909.590197][T17934]  netlink_rcv_skb+0x241/0x4d0
[  909.594992][T17934]  ? genl_bind+0x360/0x360
[  909.599422][T17934]  ? netlink_ack+0x1180/0x1180
[  909.604262][T17934]  ? __lock_acquire+0x7d40/0x7d40
[  909.609597][T17934]  ? down_read+0x1ac/0x2e0
[  909.614068][T17934]  genl_rcv+0x28/0x40
[  909.618701][T17934]  netlink_unicast+0x751/0x8d0
[  909.624053][T17934]  netlink_sendmsg+0x8d0/0xbf0
[  909.629003][T17934]  ? netlink_getsockopt+0x590/0x590
[  909.634382][T17934]  ? aa_sock_msg_perm+0x94/0x150
[  909.639485][T17934]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  909.644956][T17934]  ? security_socket_sendmsg+0x80/0xa0
[  909.650631][T17934]  ? netlink_getsockopt+0x590/0x590
[  909.655918][T17934]  ____sys_sendmsg+0x5ba/0x960
[  909.660724][T17934]  ? __asan_memset+0x22/0x40
[  909.665341][T17934]  ? __sys_sendmsg_sock+0x30/0x30
[  909.670417][T17934]  ? __import_iovec+0x5f2/0x850
[  909.675391][T17934]  ? import_iovec+0x73/0xa0
[  909.680054][T17934]  ___sys_sendmsg+0x2a6/0x360
[  909.685002][T17934]  ? __sys_sendmsg+0x2a0/0x2a0
[  909.689942][T17934]  __se_sys_sendmsg+0x1c2/0x2b0
[  909.694954][T17934]  ? __x64_sys_sendmsg+0x80/0x80
[  909.700039][T17934]  ? lockdep_hardirqs_on+0x98/0x150
[  909.705629][T17934]  do_syscall_64+0x55/0xa0
[  909.710205][T17934]  ? clear_bhb_loop+0x40/0x90
[  909.714916][T17934]  ? clear_bhb_loop+0x40/0x90
[  909.719610][T17934]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  909.725538][T17934] RIP: 0033:0x7f69be19ce59
[  909.729994][T17934] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  909.750060][T17934] RSP: 002b:00007f69bf138028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  909.758642][T17934] RAX: ffffffffffffffda RBX: 00007f69be415fa0 RCX: 00007f69be19ce59
[  909.766821][T17934] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  909.774938][T17934] RBP: 00007f69be232d6f R08: 0000000000000000 R09: 0000000000000000
[  909.783219][T17934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  909.791571][T17934] R13: 00007f69be416038 R14: 00007f69be415fa0 R15: 00007ffc46df7058
[  909.799934][T17934]  </TASK>
[  909.846423][T17937] validate_nla: 10 callbacks suppressed
[  909.846447][T17937] netlink: 'syz.3.3377': attribute type 10 has an invalid length.
[  910.006905][T17942] netlink: 'syz.4.3379': attribute type 29 has an invalid length.
[  910.015647][T17942] netlink: 'syz.4.3379': attribute type 29 has an invalid length.
[  910.035771][T17942] netlink: 'syz.4.3379': attribute type 2 has an invalid length.
[  910.061108][T17942] netlink: 'syz.4.3379': attribute type 8 has an invalid length.
[  910.080431][T17942] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3379'.
[  910.103061][T17948] netlink: 'syz.4.3379': attribute type 2 has an invalid length.
[  910.132963][T17948] netlink: 'syz.4.3379': attribute type 8 has an invalid length.
[  910.141198][T17948] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3379'.
[  910.295037][T17953] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3382'.
[  910.316022][T17953] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  910.329179][T17953] CPU: 0 PID: 17953 Comm: syz.3.3382 Not tainted syzkaller #0
[  910.337885][T17953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  910.348868][T17953] Call Trace:
[  910.352204][T17953]  <TASK>
[  910.355374][T17953]  dump_stack_lvl+0x18c/0x250
[  910.360322][T17953]  ? show_regs_print_info+0x20/0x20
[  910.365799][T17953]  ? load_image+0x420/0x420
[  910.370570][T17953]  sysfs_warn_dup+0x8e/0xa0
[  910.375247][T17953]  sysfs_do_create_link_sd+0xc0/0x110
[  910.380899][T17953]  device_add_class_symlinks+0x1cf/0x240
[  910.386616][T17953]  device_add+0x507/0xc20
[  910.391091][T17953]  wiphy_register+0x1dad/0x2ae0
[  910.396037][T17953]  ? cfg80211_event_work+0x40/0x40
[  910.401342][T17953]  ? minstrel_ht_alloc+0x88a/0x990
[  910.406744][T17953]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  910.413294][T17953]  ieee80211_register_hw+0x3464/0x4250
[  910.418838][T17953]  ? ieee80211_tasklet_handler+0x20/0x20
[  910.424503][T17953]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  910.430422][T17953]  ? __debug_object_init+0xec/0x450
[  910.435735][T17953]  ? __asan_memset+0x22/0x40
[  910.440430][T17953]  ? __hrtimer_init+0x186/0x270
[  910.446447][T17953]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  910.452242][T17953]  ? mac80211_hwsim_free+0x220/0x220
[  910.457576][T17953]  ? rcu_is_watching+0x15/0xb0
[  910.462365][T17953]  ? kstrndup+0xbd/0x140
[  910.466648][T17953]  hwsim_new_radio_nl+0xdc9/0x1a90
[  910.472255][T17953]  ? __nla_validate+0x50/0x50
[  910.477339][T17953]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  910.483787][T17953]  ? __nla_parse+0x40/0x50
[  910.488326][T17953]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  910.494688][T17953]  genl_family_rcv_msg_doit+0x211/0x310
[  910.500549][T17953]  ? end_current_label_crit_section+0x170/0x170
[  910.507026][T17953]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  910.513053][T17953]  ? bpf_lsm_capable+0x9/0x10
[  910.517855][T17953]  ? security_capable+0x89/0xb0
[  910.523018][T17953]  genl_rcv_msg+0x619/0x7a0
[  910.527785][T17953]  ? genl_bind+0x360/0x360
[  910.532257][T17953]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  910.539186][T17953]  ? ref_tracker_free+0x690/0x840
[  910.544401][T17953]  netlink_rcv_skb+0x241/0x4d0
[  910.549445][T17953]  ? genl_bind+0x360/0x360
[  910.553967][T17953]  ? netlink_ack+0x1180/0x1180
[  910.558778][T17953]  ? __lock_acquire+0x7d40/0x7d40
[  910.563859][T17953]  ? down_read+0x1ac/0x2e0
[  910.568337][T17953]  genl_rcv+0x28/0x40
[  910.572352][T17953]  netlink_unicast+0x751/0x8d0
[  910.577151][T17953]  netlink_sendmsg+0x8d0/0xbf0
[  910.582119][T17953]  ? netlink_getsockopt+0x590/0x590
[  910.587370][T17953]  ? aa_sock_msg_perm+0x94/0x150
[  910.592369][T17953]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  910.597956][T17953]  ? security_socket_sendmsg+0x80/0xa0
[  910.603474][T17953]  ? netlink_getsockopt+0x590/0x590
[  910.608777][T17953]  ____sys_sendmsg+0x5ba/0x960
[  910.613608][T17953]  ? __asan_memset+0x22/0x40
[  910.618239][T17953]  ? __sys_sendmsg_sock+0x30/0x30
[  910.623411][T17953]  ? __import_iovec+0x5f2/0x850
[  910.628412][T17953]  ? import_iovec+0x73/0xa0
[  910.633750][T17953]  ___sys_sendmsg+0x2a6/0x360
[  910.638478][T17953]  ? __sys_sendmsg+0x2a0/0x2a0
[  910.643335][T17953]  __se_sys_sendmsg+0x1c2/0x2b0
[  910.648317][T17953]  ? __x64_sys_sendmsg+0x80/0x80
[  910.653305][T17953]  ? lockdep_hardirqs_on+0x98/0x150
[  910.658852][T17953]  do_syscall_64+0x55/0xa0
[  910.663398][T17953]  ? clear_bhb_loop+0x40/0x90
[  910.668210][T17953]  ? clear_bhb_loop+0x40/0x90
[  910.672919][T17953]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  910.678838][T17953] RIP: 0033:0x7f4f3d99ce59
[  910.683271][T17953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  910.702895][T17953] RSP: 002b:00007f4f3e88c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  910.711336][T17953] RAX: ffffffffffffffda RBX: 00007f4f3dc15fa0 RCX: 00007f4f3d99ce59
[  910.719342][T17953] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  910.727329][T17953] RBP: 00007f4f3da32d6f R08: 0000000000000000 R09: 0000000000000000
[  910.735551][T17953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  910.744019][T17953] R13: 00007f4f3dc16038 R14: 00007f4f3dc15fa0 R15: 00007ffdece09b28
[  910.752467][T17953]  </TASK>
[  911.002446][T17960] netlink: 'syz.1.3383': attribute type 29 has an invalid length.
[  911.013850][T17960] netlink: 'syz.1.3383': attribute type 29 has an invalid length.
[  911.038482][T17958] netlink: 'syz.1.3383': attribute type 2 has an invalid length.
[  911.060625][T17958] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3383'.
[  911.248345][T15713] wlan1: Trigger new scan to find an IBSS to join
[  912.227061][T15714] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  912.979796][T17995] __nla_validate_parse: 4 callbacks suppressed
[  912.979816][T17995] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3396'.
[  913.014136][T17996] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3396'.
[  913.167616][   T42] wlan1: Trigger new scan to find an IBSS to join
[  913.664020][T18018] netlink: 55631 bytes leftover after parsing attributes in process `syz.4.3406'.
[  914.524914][T18029] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3411'.
[  914.536360][T18037] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3411'.
[  914.585246][T18038] 8021q: adding VLAN 0 to HW filter on device batadv0
[  914.619423][T18038] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  914.741862][T18041] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3423'.
[  914.757988][T18041] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  914.771352][T18041] CPU: 0 PID: 18041 Comm: syz.4.3423 Not tainted syzkaller #0
[  914.779156][T18041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  914.789268][T18041] Call Trace:
[  914.792733][T18041]  <TASK>
[  914.795682][T18041]  dump_stack_lvl+0x18c/0x250
[  914.800654][T18041]  ? show_regs_print_info+0x20/0x20
[  914.805969][T18041]  ? load_image+0x420/0x420
[  914.810715][T18041]  sysfs_warn_dup+0x8e/0xa0
[  914.815441][T18041]  sysfs_do_create_link_sd+0xc0/0x110
[  914.820882][T18041]  device_add_class_symlinks+0x1cf/0x240
[  914.826645][T18041]  device_add+0x507/0xc20
[  914.831886][T18041]  wiphy_register+0x1dad/0x2ae0
[  914.836828][T18041]  ? cfg80211_event_work+0x40/0x40
[  914.842083][T18041]  ? minstrel_ht_alloc+0x88a/0x990
[  914.847331][T18041]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  914.853426][T18041]  ieee80211_register_hw+0x3464/0x4250
[  914.859028][T18041]  ? ieee80211_tasklet_handler+0x20/0x20
[  914.864797][T18041]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  914.871021][T18041]  ? __debug_object_init+0xec/0x450
[  914.876271][T18041]  ? __asan_memset+0x22/0x40
[  914.881003][T18041]  ? __hrtimer_init+0x186/0x270
[  914.885968][T18041]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  914.891730][T18041]  ? mac80211_hwsim_free+0x220/0x220
[  914.897054][T18041]  ? rcu_is_watching+0x15/0xb0
[  914.901891][T18041]  ? kstrndup+0xbd/0x140
[  914.906196][T18041]  hwsim_new_radio_nl+0xdc9/0x1a90
[  914.911718][T18041]  ? __nla_validate+0x50/0x50
[  914.916715][T18041]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  914.923262][T18041]  ? __nla_parse+0x40/0x50
[  914.927705][T18041]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  914.934160][T18041]  genl_family_rcv_msg_doit+0x211/0x310
[  914.939737][T18041]  ? end_current_label_crit_section+0x170/0x170
[  914.946006][T18041]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  914.952012][T18041]  ? bpf_lsm_capable+0x9/0x10
[  914.956714][T18041]  ? security_capable+0x89/0xb0
[  914.961787][T18041]  genl_rcv_msg+0x619/0x7a0
[  914.966417][T18041]  ? genl_bind+0x360/0x360
[  914.970860][T18041]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  914.977236][T18041]  ? ref_tracker_free+0x690/0x840
[  914.982314][T18041]  netlink_rcv_skb+0x241/0x4d0
[  914.987138][T18041]  ? genl_bind+0x360/0x360
[  914.991753][T18041]  ? netlink_ack+0x1180/0x1180
[  914.996552][T18041]  ? __lock_acquire+0x7d40/0x7d40
[  915.001689][T18041]  ? down_read+0x1ac/0x2e0
[  915.006299][T18041]  genl_rcv+0x28/0x40
[  915.010407][T18041]  netlink_unicast+0x751/0x8d0
[  915.015323][T18041]  netlink_sendmsg+0x8d0/0xbf0
[  915.020161][T18041]  ? netlink_getsockopt+0x590/0x590
[  915.025396][T18041]  ? aa_sock_msg_perm+0x94/0x150
[  915.030667][T18041]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  915.036528][T18041]  ? security_socket_sendmsg+0x80/0xa0
[  915.042215][T18041]  ? netlink_getsockopt+0x590/0x590
[  915.047666][T18041]  ____sys_sendmsg+0x5ba/0x960
[  915.052472][T18041]  ? __asan_memset+0x22/0x40
[  915.057085][T18041]  ? __sys_sendmsg_sock+0x30/0x30
[  915.062125][T18041]  ? __import_iovec+0x5f2/0x850
[  915.067015][T18041]  ? import_iovec+0x73/0xa0
[  915.071541][T18041]  ___sys_sendmsg+0x2a6/0x360
[  915.076367][T18041]  ? __sys_sendmsg+0x2a0/0x2a0
[  915.081231][T18041]  __se_sys_sendmsg+0x1c2/0x2b0
[  915.086161][T18041]  ? __x64_sys_sendmsg+0x80/0x80
[  915.091139][T18041]  ? lockdep_hardirqs_on+0x98/0x150
[  915.096628][T18041]  do_syscall_64+0x55/0xa0
[  915.101188][T18041]  ? clear_bhb_loop+0x40/0x90
[  915.105886][T18041]  ? clear_bhb_loop+0x40/0x90
[  915.110616][T18041]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  915.116981][T18041] RIP: 0033:0x7f29a199ce59
[  915.121416][T18041] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  915.141741][T18041] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  915.150367][T18041] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  915.158378][T18041] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  915.166635][T18041] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  915.174637][T18041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  915.182621][T18041] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  915.190622][T18041]  </TASK>
[  915.448408][T18049] FAULT_INJECTION: forcing a failure.
[  915.448408][T18049] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  915.475127][T18049] CPU: 0 PID: 18049 Comm: syz.1.3415 Not tainted syzkaller #0
[  915.482820][T18049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  915.493016][T18049] Call Trace:
[  915.496432][T18049]  <TASK>
[  915.499694][T18049]  dump_stack_lvl+0x18c/0x250
[  915.504450][T18049]  ? show_regs_print_info+0x20/0x20
[  915.509842][T18049]  ? load_image+0x420/0x420
[  915.514461][T18049]  ? __lock_acquire+0x7d40/0x7d40
[  915.519578][T18049]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  915.525938][T18049]  should_fail_ex+0x39d/0x4d0
[  915.530653][T18049]  _copy_to_user+0x2f/0xa0
[  915.535265][T18049]  simple_read_from_buffer+0xe7/0x150
[  915.540680][T18049]  proc_fail_nth_read+0x1e8/0x260
[  915.546782][T18049]  ? proc_fault_inject_write+0x360/0x360
[  915.552542][T18049]  ? fsnotify_perm+0x271/0x5e0
[  915.557372][T18049]  ? proc_fault_inject_write+0x360/0x360
[  915.563297][T18049]  vfs_read+0x28b/0x970
[  915.567866][T18049]  ? kernel_read+0x1e0/0x1e0
[  915.572585][T18049]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  915.578881][T18049]  ? lockdep_hardirqs_on+0x98/0x150
[  915.584115][T18049]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  915.590505][T18049]  ksys_read+0x150/0x260
[  915.594880][T18049]  ? vfs_write+0x990/0x990
[  915.599329][T18049]  ? syscall_enter_from_user_mode+0x2e/0x80
[  915.605327][T18049]  do_syscall_64+0x55/0xa0
[  915.609840][T18049]  ? clear_bhb_loop+0x40/0x90
[  915.614859][T18049]  ? clear_bhb_loop+0x40/0x90
[  915.619610][T18049]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  915.625703][T18049] RIP: 0033:0x7fc38bd5d68e
[  915.630324][T18049] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  915.650305][T18049] RSP: 002b:00007fc38cba9fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  915.658825][T18049] RAX: ffffffffffffffda RBX: 00007fc38cbaa6c0 RCX: 00007fc38bd5d68e
[  915.666844][T18049] RDX: 000000000000000f RSI: 00007fc38cbaa0a0 RDI: 0000000000000007
[  915.675004][T18049] RBP: 00007fc38cbaa090 R08: 0000000000000000 R09: 0000000000000000
[  915.683256][T18049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  915.691324][T18049] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  915.699331][T18049]  </TASK>
[  916.019565][T18060] mac80211_hwsim hwsim178 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  916.085473][T18063] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.3424'.
[  916.100902][T18063] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  916.153340][T18063] CPU: 1 PID: 18063 Comm: syz.1.3424 Not tainted syzkaller #0
[  916.161175][T18063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  916.171379][T18063] Call Trace:
[  916.174801][T18063]  <TASK>
[  916.177928][T18063]  dump_stack_lvl+0x18c/0x250
[  916.183159][T18063]  ? show_regs_print_info+0x20/0x20
[  916.188788][T18063]  ? load_image+0x420/0x420
[  916.193772][T18063]  sysfs_warn_dup+0x8e/0xa0
[  916.199148][T18063]  sysfs_do_create_link_sd+0xc0/0x110
[  916.204700][T18063]  device_add_class_symlinks+0x1cf/0x240
[  916.211114][T18063]  device_add+0x507/0xc20
[  916.215902][T18063]  wiphy_register+0x1dad/0x2ae0
[  916.221187][T18063]  ? cfg80211_event_work+0x40/0x40
[  916.226456][T18063]  ? minstrel_ht_alloc+0x88a/0x990
[  916.232082][T18063]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  916.238400][T18063]  ieee80211_register_hw+0x3464/0x4250
[  916.244148][T18063]  ? ieee80211_tasklet_handler+0x20/0x20
[  916.250007][T18063]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  916.256324][T18063]  ? __debug_object_init+0xec/0x450
[  916.261604][T18063]  ? __asan_memset+0x22/0x40
[  916.266338][T18063]  ? __hrtimer_init+0x186/0x270
[  916.271346][T18063]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  916.277148][T18063]  ? mac80211_hwsim_free+0x220/0x220
[  916.282484][T18063]  ? rcu_is_watching+0x15/0xb0
[  916.287299][T18063]  ? kstrndup+0xbd/0x140
[  916.291616][T18063]  hwsim_new_radio_nl+0xdc9/0x1a90
[  916.296879][T18063]  ? __nla_validate+0x50/0x50
[  916.301644][T18063]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  916.308068][T18063]  ? __nla_parse+0x40/0x50
[  916.312707][T18063]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  916.319302][T18063]  genl_family_rcv_msg_doit+0x211/0x310
[  916.324920][T18063]  ? end_current_label_crit_section+0x170/0x170
[  916.332056][T18063]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  916.338384][T18063]  ? bpf_lsm_capable+0x9/0x10
[  916.343138][T18063]  ? security_capable+0x89/0xb0
[  916.348281][T18063]  genl_rcv_msg+0x619/0x7a0
[  916.352947][T18063]  ? genl_bind+0x360/0x360
[  916.357511][T18063]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  916.363650][T18063]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  916.370227][T18063]  ? perf_trace_lock+0xfc/0x3b0
[  916.375288][T18063]  netlink_rcv_skb+0x241/0x4d0
[  916.380314][T18063]  ? genl_bind+0x360/0x360
[  916.384971][T18063]  ? netlink_ack+0x1180/0x1180
[  916.390298][T18063]  ? __lock_acquire+0x7d40/0x7d40
[  916.395396][T18063]  ? down_read+0x1ac/0x2e0
[  916.399923][T18063]  genl_rcv+0x28/0x40
[  916.403973][T18063]  netlink_unicast+0x751/0x8d0
[  916.408902][T18063]  netlink_sendmsg+0x8d0/0xbf0
[  916.414019][T18063]  ? netlink_getsockopt+0x590/0x590
[  916.419747][T18063]  ? aa_sock_msg_perm+0x94/0x150
[  916.425375][T18063]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  916.431085][T18063]  ? security_socket_sendmsg+0x80/0xa0
[  916.436630][T18063]  ? netlink_getsockopt+0x590/0x590
[  916.442001][T18063]  ____sys_sendmsg+0x5ba/0x960
[  916.446947][T18063]  ? __asan_memset+0x22/0x40
[  916.451639][T18063]  ? __sys_sendmsg_sock+0x30/0x30
[  916.456811][T18063]  ? __import_iovec+0x5f2/0x850
[  916.461727][T18063]  ? import_iovec+0x73/0xa0
[  916.466286][T18063]  ___sys_sendmsg+0x2a6/0x360
[  916.471026][T18063]  ? __sys_sendmsg+0x2a0/0x2a0
[  916.476082][T18063]  __se_sys_sendmsg+0x1c2/0x2b0
[  916.481011][T18063]  ? __x64_sys_sendmsg+0x80/0x80
[  916.486293][T18063]  ? lockdep_hardirqs_on+0x98/0x150
[  916.491578][T18063]  do_syscall_64+0x55/0xa0
[  916.496093][T18063]  ? clear_bhb_loop+0x40/0x90
[  916.500992][T18063]  ? clear_bhb_loop+0x40/0x90
[  916.505825][T18063]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  916.511806][T18063] RIP: 0033:0x7fc38bd9ce59
[  916.516283][T18063] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  916.538739][T18063] RSP: 002b:00007fc38cbaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  916.547499][T18063] RAX: ffffffffffffffda RBX: 00007fc38c015fa0 RCX: 00007fc38bd9ce59
[  916.555762][T18063] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  916.563838][T18063] RBP: 00007fc38be32d6f R08: 0000000000000000 R09: 0000000000000000
[  916.571967][T18063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  916.580098][T18063] R13: 00007fc38c016038 R14: 00007fc38c015fa0 R15: 00007ffe7ea6e628
[  916.588144][T18063]  </TASK>
[  916.631103][T18068] validate_nla: 18 callbacks suppressed
[  916.631125][T18068] netlink: 'syz.3.3426': attribute type 27 has an invalid length.
[  916.647169][T18068] netlink: 'syz.3.3426': attribute type 4 has an invalid length.
[  916.657407][T18068] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3426'.
[  916.929202][T18076] netlink: 'syz.4.3428': attribute type 29 has an invalid length.
[  917.015551][T18076] netlink: 'syz.4.3428': attribute type 29 has an invalid length.
[  917.031261][T18077] netlink: 'syz.4.3428': attribute type 2 has an invalid length.
[  917.048542][T18077] netlink: 'syz.4.3428': attribute type 8 has an invalid length.
[  917.072519][T18077] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3428'.
[  917.099016][T18076] netlink: 'syz.4.3428': attribute type 2 has an invalid length.
[  917.117546][T18076] netlink: 'syz.4.3428': attribute type 8 has an invalid length.
[  917.128555][T18076] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3428'.
[  917.338165][T18089] FAULT_INJECTION: forcing a failure.
[  917.338165][T18089] name failslab, interval 1, probability 0, space 0, times 0
[  917.355978][T18089] CPU: 1 PID: 18089 Comm: syz.2.3432 Not tainted syzkaller #0
[  917.364138][T18089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  917.374429][T18089] Call Trace:
[  917.377793][T18089]  <TASK>
[  917.380941][T18089]  dump_stack_lvl+0x18c/0x250
[  917.385788][T18089]  ? show_regs_print_info+0x20/0x20
[  917.391315][T18089]  ? load_image+0x420/0x420
[  917.395964][T18089]  ? verify_lock_unused+0x140/0x140
[  917.401217][T18089]  ? perf_trace_lock+0xfc/0x3b0
[  917.406126][T18089]  should_fail_ex+0x39d/0x4d0
[  917.410882][T18089]  should_failslab+0x9/0x20
[  917.415939][T18089]  slab_pre_alloc_hook+0x59/0x310
[  917.421686][T18089]  kmem_cache_alloc+0x5a/0x2d0
[  917.426872][T18089]  ? skb_clone+0x1eb/0x370
[  917.432090][T18089]  skb_clone+0x1eb/0x370
[  917.437523][T18089]  __netlink_deliver_tap+0x41c/0x830
[  917.442989][T18089]  ? netlink_deliver_tap+0x2e/0x1b0
[  917.448340][T18089]  netlink_deliver_tap+0x19c/0x1b0
[  917.453612][T18089]  netlink_unicast+0x72c/0x8d0
[  917.458550][T18089]  netlink_sendmsg+0x8d0/0xbf0
[  917.463407][T18089]  ? netlink_getsockopt+0x590/0x590
[  917.468860][T18089]  ? aa_sock_msg_perm+0x94/0x150
[  917.474237][T18089]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  917.479968][T18089]  ? security_socket_sendmsg+0x80/0xa0
[  917.486195][T18089]  ? netlink_getsockopt+0x590/0x590
[  917.491472][T18089]  ____sys_sendmsg+0x5ba/0x960
[  917.496406][T18089]  ? __asan_memset+0x22/0x40
[  917.501052][T18089]  ? __sys_sendmsg_sock+0x30/0x30
[  917.506124][T18089]  ? __import_iovec+0x5f2/0x850
[  917.511135][T18089]  ? import_iovec+0x73/0xa0
[  917.516077][T18089]  ___sys_sendmsg+0x2a6/0x360
[  917.521117][T18089]  ? __sys_sendmsg+0x2a0/0x2a0
[  917.527734][T18089]  ? __lock_acquire+0x7d40/0x7d40
[  917.533585][T18089]  __se_sys_sendmsg+0x1c2/0x2b0
[  917.539557][T18089]  ? __x64_sys_sendmsg+0x80/0x80
[  917.544780][T18089]  ? lockdep_hardirqs_on+0x98/0x150
[  917.550035][T18089]  do_syscall_64+0x55/0xa0
[  917.554587][T18089]  ? clear_bhb_loop+0x40/0x90
[  917.559444][T18089]  ? clear_bhb_loop+0x40/0x90
[  917.565284][T18089]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  917.571579][T18089] RIP: 0033:0x7f69be19ce59
[  917.576094][T18089] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  917.597657][T18089] RSP: 002b:00007f69bf138028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  917.606800][T18089] RAX: ffffffffffffffda RBX: 00007f69be415fa0 RCX: 00007f69be19ce59
[  917.615263][T18089] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[  917.623631][T18089] RBP: 00007f69bf138090 R08: 0000000000000000 R09: 0000000000000000
[  917.631843][T18089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  917.639923][T18089] R13: 00007f69be416038 R14: 00007f69be415fa0 R15: 00007ffc46df7058
[  917.648036][T18089]  </TASK>
[  917.664130][T18088] mac80211_hwsim hwsim233 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  917.684537][T18089] netlink: 'syz.2.3432': attribute type 17 has an invalid length.
[  917.933796][T18093] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  917.949631][T18093] CPU: 1 PID: 18093 Comm: syz.4.3436 Not tainted syzkaller #0
[  917.957185][T18093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  917.967322][T18093] Call Trace:
[  917.970846][T18093]  <TASK>
[  917.973918][T18093]  dump_stack_lvl+0x18c/0x250
[  917.978664][T18093]  ? show_regs_print_info+0x20/0x20
[  917.983998][T18093]  ? load_image+0x420/0x420
[  917.988624][T18093]  sysfs_warn_dup+0x8e/0xa0
[  917.993304][T18093]  sysfs_do_create_link_sd+0xc0/0x110
[  917.998833][T18093]  device_add_class_symlinks+0x1cf/0x240
[  918.004565][T18093]  device_add+0x507/0xc20
[  918.009371][T18093]  wiphy_register+0x1dad/0x2ae0
[  918.014686][T18093]  ? cfg80211_event_work+0x40/0x40
[  918.020312][T18093]  ? minstrel_ht_alloc+0x88a/0x990
[  918.025578][T18093]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  918.032091][T18093]  ieee80211_register_hw+0x3464/0x4250
[  918.037746][T18093]  ? ieee80211_tasklet_handler+0x20/0x20
[  918.043532][T18093]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  918.050056][T18093]  ? __debug_object_init+0xec/0x450
[  918.055907][T18093]  ? __asan_memset+0x22/0x40
[  918.060824][T18093]  ? __hrtimer_init+0x186/0x270
[  918.065841][T18093]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  918.071667][T18093]  ? mac80211_hwsim_free+0x220/0x220
[  918.077001][T18093]  ? rcu_is_watching+0x15/0xb0
[  918.081819][T18093]  ? kstrndup+0xbd/0x140
[  918.086124][T18093]  hwsim_new_radio_nl+0xdc9/0x1a90
[  918.091386][T18093]  ? __nla_validate+0x50/0x50
[  918.096415][T18093]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  918.102840][T18093]  ? __nla_parse+0x40/0x50
[  918.107401][T18093]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  918.113822][T18093]  genl_family_rcv_msg_doit+0x211/0x310
[  918.119606][T18093]  ? end_current_label_crit_section+0x170/0x170
[  918.126704][T18093]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  918.132906][T18093]  ? bpf_lsm_capable+0x9/0x10
[  918.137893][T18093]  ? security_capable+0x89/0xb0
[  918.143174][T18093]  genl_rcv_msg+0x619/0x7a0
[  918.147850][T18093]  ? genl_bind+0x360/0x360
[  918.152401][T18093]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  918.158796][T18093]  ? perf_trace_lock+0xfc/0x3b0
[  918.163709][T18093]  netlink_rcv_skb+0x241/0x4d0
[  918.168741][T18093]  ? genl_bind+0x360/0x360
[  918.173653][T18093]  ? netlink_ack+0x1180/0x1180
[  918.178600][T18093]  ? __lock_acquire+0x7d40/0x7d40
[  918.183795][T18093]  ? down_read+0x1ac/0x2e0
[  918.188406][T18093]  genl_rcv+0x28/0x40
[  918.192557][T18093]  netlink_unicast+0x751/0x8d0
[  918.197502][T18093]  netlink_sendmsg+0x8d0/0xbf0
[  918.202449][T18093]  ? netlink_getsockopt+0x590/0x590
[  918.208003][T18093]  ? aa_sock_msg_perm+0x94/0x150
[  918.213111][T18093]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  918.218737][T18093]  ? security_socket_sendmsg+0x80/0xa0
[  918.224346][T18093]  ? netlink_getsockopt+0x590/0x590
[  918.229711][T18093]  ____sys_sendmsg+0x5ba/0x960
[  918.234830][T18093]  ? __asan_memset+0x22/0x40
[  918.239856][T18093]  ? __sys_sendmsg_sock+0x30/0x30
[  918.244951][T18093]  ? __import_iovec+0x5f2/0x850
[  918.250064][T18093]  ? import_iovec+0x73/0xa0
[  918.254730][T18093]  ___sys_sendmsg+0x2a6/0x360
[  918.259481][T18093]  ? __sys_sendmsg+0x2a0/0x2a0
[  918.264387][T18093]  __se_sys_sendmsg+0x1c2/0x2b0
[  918.269418][T18093]  ? __x64_sys_sendmsg+0x80/0x80
[  918.274631][T18093]  ? lockdep_hardirqs_on+0x98/0x150
[  918.280140][T18093]  do_syscall_64+0x55/0xa0
[  918.284884][T18093]  ? clear_bhb_loop+0x40/0x90
[  918.290227][T18093]  ? clear_bhb_loop+0x40/0x90
[  918.295298][T18093]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  918.301524][T18093] RIP: 0033:0x7f29a199ce59
[  918.306090][T18093] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  918.327114][T18093] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  918.336452][T18093] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  918.344975][T18093] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  918.354051][T18093] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  918.362253][T18093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  918.370790][T18093] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  918.379286][T18093]  </TASK>
[  918.400724][T15716] wlan1: Trigger new scan to find an IBSS to join
[  918.573900][T18102] mac80211_hwsim hwsim184 ..ãc¤±: renamed from wlan1 (while UP)
[  918.682445][ T5086] Bluetooth: hci3: command 0x0406 tx timeout
[  919.303853][T18114] netlink: 'syz.4.3442': attribute type 29 has an invalid length.
[  919.526164][T18114] __nla_validate_parse: 2 callbacks suppressed
[  919.526185][T18114] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3442'.
[  919.613008][T18112] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3442'.
[  919.895097][T18119] mac80211_hwsim hwsim191 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  919.895106][T15712] wlan1: Created IBSS using preconfigured BSSID 00:8d:ff:ff:00:00
[  919.932331][T15712] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  920.202516][ T3504] wlan1: Trigger new scan to find an IBSS to join
[  920.364774][T18136] netlink: 148 bytes leftover after parsing attributes in process `syz.2.3450'.
[  920.664663][T18138] syzkaller0: entered promiscuous mode
[  920.670674][T18138] syzkaller0: entered allmulticast mode
[  920.743202][T18142] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3451'.
[  920.785266][T18142] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  920.851433][T18142] CPU: 1 PID: 18142 Comm: syz.2.3451 Not tainted syzkaller #0
[  920.859782][T18142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  920.870438][T18142] Call Trace:
[  920.873881][T18142]  <TASK>
[  920.877020][T18142]  dump_stack_lvl+0x18c/0x250
[  920.881768][T18142]  ? show_regs_print_info+0x20/0x20
[  920.887216][T18142]  ? load_image+0x420/0x420
[  920.892048][T18142]  sysfs_warn_dup+0x8e/0xa0
[  920.896685][T18142]  sysfs_do_create_link_sd+0xc0/0x110
[  920.902295][T18142]  device_add_class_symlinks+0x1cf/0x240
[  920.908206][T18142]  device_add+0x507/0xc20
[  920.912601][T18142]  wiphy_register+0x1dad/0x2ae0
[  920.917531][T18142]  ? cfg80211_event_work+0x40/0x40
[  920.923126][T18142]  ? minstrel_ht_alloc+0x88a/0x990
[  920.928353][T18142]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  920.934797][T18142]  ieee80211_register_hw+0x3464/0x4250
[  920.940423][T18142]  ? ieee80211_tasklet_handler+0x20/0x20
[  920.946193][T18142]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  920.952170][T18142]  ? __debug_object_init+0xec/0x450
[  920.957437][T18142]  ? __asan_memset+0x22/0x40
[  920.962105][T18142]  ? __hrtimer_init+0x186/0x270
[  920.967022][T18142]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  920.972844][T18142]  ? mac80211_hwsim_free+0x220/0x220
[  920.978281][T18142]  ? rcu_is_watching+0x15/0xb0
[  920.983228][T18142]  ? kstrndup+0xbd/0x140
[  920.987654][T18142]  hwsim_new_radio_nl+0xdc9/0x1a90
[  920.993703][T18142]  ? __nla_validate+0x50/0x50
[  920.998633][T18142]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  921.005264][T18142]  ? __nla_parse+0x40/0x50
[  921.010373][T18142]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  921.017232][T18142]  genl_family_rcv_msg_doit+0x211/0x310
[  921.022941][T18142]  ? end_current_label_crit_section+0x170/0x170
[  921.029972][T18142]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  921.036428][T18142]  ? bpf_lsm_capable+0x9/0x10
[  921.041527][T18142]  ? security_capable+0x89/0xb0
[  921.046717][T18142]  genl_rcv_msg+0x619/0x7a0
[  921.051669][T18142]  ? genl_bind+0x360/0x360
[  921.056159][T18142]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  921.062730][T18142]  ? perf_trace_lock+0xfc/0x3b0
[  921.067733][T18142]  netlink_rcv_skb+0x241/0x4d0
[  921.072830][T18142]  ? genl_bind+0x360/0x360
[  921.077480][T18142]  ? netlink_ack+0x1180/0x1180
[  921.082600][T18142]  ? __lock_acquire+0x7d40/0x7d40
[  921.087874][T18142]  ? down_read+0x1ac/0x2e0
[  921.092510][T18142]  genl_rcv+0x28/0x40
[  921.096870][T18142]  netlink_unicast+0x751/0x8d0
[  921.101693][T18142]  netlink_sendmsg+0x8d0/0xbf0
[  921.106550][T18142]  ? netlink_getsockopt+0x590/0x590
[  921.112430][T18142]  ? aa_sock_msg_perm+0x94/0x150
[  921.117677][T18142]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  921.123732][T18142]  ? security_socket_sendmsg+0x80/0xa0
[  921.129349][T18142]  ? netlink_getsockopt+0x590/0x590
[  921.135073][T18142]  ____sys_sendmsg+0x5ba/0x960
[  921.140086][T18142]  ? __asan_memset+0x22/0x40
[  921.145106][T18142]  ? __sys_sendmsg_sock+0x30/0x30
[  921.150456][T18142]  ? __import_iovec+0x5f2/0x850
[  921.155676][T18142]  ? import_iovec+0x73/0xa0
[  921.160320][T18142]  ___sys_sendmsg+0x2a6/0x360
[  921.165050][T18142]  ? __sys_sendmsg+0x2a0/0x2a0
[  921.169899][T18142]  ? debug_mutex_init+0x38/0x70
[  921.175090][T18142]  __se_sys_sendmsg+0x1c2/0x2b0
[  921.180452][T18142]  ? __x64_sys_sendmsg+0x80/0x80
[  921.185474][T18142]  ? lockdep_hardirqs_on+0x98/0x150
[  921.190843][T18142]  do_syscall_64+0x55/0xa0
[  921.195304][T18142]  ? clear_bhb_loop+0x40/0x90
[  921.200361][T18142]  ? clear_bhb_loop+0x40/0x90
[  921.205371][T18142]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  921.211397][T18142] RIP: 0033:0x7f69be19ce59
[  921.215864][T18142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  921.236489][T18142] RSP: 002b:00007f69bf138028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  921.245080][T18142] RAX: ffffffffffffffda RBX: 00007f69be415fa0 RCX: 00007f69be19ce59
[  921.253321][T18142] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  921.261343][T18142] RBP: 00007f69be232d6f R08: 0000000000000000 R09: 0000000000000000
[  921.269559][T18142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  921.278065][T18142] R13: 00007f69be416038 R14: 00007f69be415fa0 R15: 00007ffc46df7058
[  921.286197][T18142]  </TASK>
[  924.203292][T15710] wlan1: Trigger new scan to find an IBSS to join
[  924.894255][T18150] validate_nla: 8 callbacks suppressed
[  924.894275][T18150] netlink: 'syz.1.3453': attribute type 2 has an invalid length.
[  924.909022][T18150] netlink: 'syz.1.3453': attribute type 8 has an invalid length.
[  924.917684][T18150] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3453'.
[  924.929032][T18149] netlink: 'syz.1.3453': attribute type 2 has an invalid length.
[  924.943407][T18149] netlink: 'syz.1.3453': attribute type 8 has an invalid length.
[  924.951516][T18149] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3453'.
[  925.009598][T18168] netlink: 65051 bytes leftover after parsing attributes in process `syz.2.3459'.
[  925.149841][T15714] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00
[  926.154727][T18194] netlink: 'syz.3.3468': attribute type 29 has an invalid length.
[  926.172838][T18194] netlink: 'syz.3.3468': attribute type 29 has an invalid length.
[  926.191900][T18194] netlink: 'syz.3.3468': attribute type 2 has an invalid length.
[  926.201111][T18194] netlink: 'syz.3.3468': attribute type 8 has an invalid length.
[  926.219083][T18194] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3468'.
[  926.235832][T18194] netlink: 'syz.3.3468': attribute type 2 has an invalid length.
[  926.261340][T18194] netlink: 'syz.3.3468': attribute type 8 has an invalid length.
[  926.273974][T18194] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3468'.
[  927.301869][T18214] 8021q: adding VLAN 0 to HW filter on device batadv0
[  927.772099][T18230] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3479'.
[  927.810410][T18230] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  927.849155][T18230] CPU: 1 PID: 18230 Comm: syz.3.3479 Not tainted syzkaller #0
[  927.857144][T18230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  927.867786][T18230] Call Trace:
[  927.871515][T18230]  <TASK>
[  927.874688][T18230]  dump_stack_lvl+0x18c/0x250
[  927.879622][T18230]  ? show_regs_print_info+0x20/0x20
[  927.886205][T18230]  ? load_image+0x420/0x420
[  927.891208][T18230]  sysfs_warn_dup+0x8e/0xa0
[  927.895874][T18230]  sysfs_do_create_link_sd+0xc0/0x110
[  927.901466][T18230]  device_add_class_symlinks+0x1cf/0x240
[  927.907396][T18230]  device_add+0x507/0xc20
[  927.911769][T18230]  wiphy_register+0x1dad/0x2ae0
[  927.916748][T18230]  ? cfg80211_event_work+0x40/0x40
[  927.922424][T18230]  ? minstrel_ht_alloc+0x88a/0x990
[  927.927582][T18230]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  927.933943][T18230]  ieee80211_register_hw+0x3464/0x4250
[  927.939556][T18230]  ? ieee80211_tasklet_handler+0x20/0x20
[  927.945320][T18230]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  927.951364][T18230]  ? __debug_object_init+0xec/0x450
[  927.956982][T18230]  ? __asan_memset+0x22/0x40
[  927.961743][T18230]  ? __hrtimer_init+0x186/0x270
[  927.967614][T18230]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  927.974496][T18230]  ? mac80211_hwsim_free+0x220/0x220
[  927.981380][T18230]  ? rcu_is_watching+0x15/0xb0
[  927.986541][T18230]  ? kstrndup+0xbd/0x140
[  927.990835][T18230]  hwsim_new_radio_nl+0xdc9/0x1a90
[  927.996439][T18230]  ? __nla_validate+0x50/0x50
[  928.001327][T18230]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  928.008415][T18230]  ? __nla_parse+0x40/0x50
[  928.013339][T18230]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  928.020688][T18230]  genl_family_rcv_msg_doit+0x211/0x310
[  928.027174][T18230]  ? end_current_label_crit_section+0x170/0x170
[  928.034008][T18230]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  928.040503][T18230]  ? bpf_lsm_capable+0x9/0x10
[  928.045958][T18230]  ? security_capable+0x89/0xb0
[  928.051479][T18230]  genl_rcv_msg+0x619/0x7a0
[  928.056719][T18230]  ? genl_bind+0x360/0x360
[  928.061394][T18230]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  928.068255][T18230]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  928.075365][T18230]  netlink_rcv_skb+0x241/0x4d0
[  928.080273][T18230]  ? genl_bind+0x360/0x360
[  928.084780][T18230]  ? netlink_ack+0x1180/0x1180
[  928.090615][T18230]  ? __lock_acquire+0x7d40/0x7d40
[  928.095793][T18230]  ? down_read+0x1ac/0x2e0
[  928.100363][T18230]  genl_rcv+0x28/0x40
[  928.104545][T18230]  netlink_unicast+0x751/0x8d0
[  928.109872][T18230]  netlink_sendmsg+0x8d0/0xbf0
[  928.115088][T18230]  ? netlink_getsockopt+0x590/0x590
[  928.120406][T18230]  ? aa_sock_msg_perm+0x94/0x150
[  928.125703][T18230]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  928.131051][T18230]  ? security_socket_sendmsg+0x80/0xa0
[  928.136629][T18230]  ? netlink_getsockopt+0x590/0x590
[  928.141955][T18230]  ____sys_sendmsg+0x5ba/0x960
[  928.146981][T18230]  ? __asan_memset+0x22/0x40
[  928.151912][T18230]  ? __sys_sendmsg_sock+0x30/0x30
[  928.157333][T18230]  ? __import_iovec+0x5f2/0x850
[  928.162504][T18230]  ? import_iovec+0x73/0xa0
[  928.167211][T18230]  ___sys_sendmsg+0x2a6/0x360
[  928.172130][T18230]  ? __sys_sendmsg+0x2a0/0x2a0
[  928.177094][T18230]  __se_sys_sendmsg+0x1c2/0x2b0
[  928.182183][T18230]  ? __x64_sys_sendmsg+0x80/0x80
[  928.187481][T18230]  ? lockdep_hardirqs_on+0x98/0x150
[  928.193449][T18230]  do_syscall_64+0x55/0xa0
[  928.198180][T18230]  ? clear_bhb_loop+0x40/0x90
[  928.202977][T18230]  ? clear_bhb_loop+0x40/0x90
[  928.207708][T18230]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  928.213710][T18230] RIP: 0033:0x7f4f3d99ce59
[  928.218443][T18230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  928.238280][T18230] RSP: 002b:00007f4f3e88c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  928.246913][T18230] RAX: ffffffffffffffda RBX: 00007f4f3dc15fa0 RCX: 00007f4f3d99ce59
[  928.255273][T18230] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  928.263990][T18230] RBP: 00007f4f3da32d6f R08: 0000000000000000 R09: 0000000000000000
[  928.272966][T18230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  928.281256][T18230] R13: 00007f4f3dc16038 R14: 00007f4f3dc15fa0 R15: 00007ffdece09b28
[  928.289395][T18230]  </TASK>
[  928.332852][T18231] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3478'.
[  928.368348][T18231] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  928.385655][T18231] CPU: 1 PID: 18231 Comm: syz.4.3478 Not tainted syzkaller #0
[  928.393327][T18231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  928.403520][T18231] Call Trace:
[  928.406846][T18231]  <TASK>
[  928.410095][T18231]  dump_stack_lvl+0x18c/0x250
[  928.414854][T18231]  ? show_regs_print_info+0x20/0x20
[  928.420555][T18231]  ? load_image+0x420/0x420
[  928.425141][T18231]  sysfs_warn_dup+0x8e/0xa0
[  928.429790][T18231]  sysfs_do_create_link_sd+0xc0/0x110
[  928.435529][T18231]  device_add_class_symlinks+0x1cf/0x240
[  928.441398][T18231]  device_add+0x507/0xc20
[  928.445771][T18231]  wiphy_register+0x1dad/0x2ae0
[  928.450834][T18231]  ? cfg80211_event_work+0x40/0x40
[  928.456190][T18231]  ? minstrel_ht_alloc+0x88a/0x990
[  928.461510][T18231]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  928.467617][T18231]  ieee80211_register_hw+0x3464/0x4250
[  928.473135][T18231]  ? ieee80211_tasklet_handler+0x20/0x20
[  928.478795][T18231]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  928.484884][T18231]  ? __debug_object_init+0xec/0x450
[  928.490112][T18231]  ? __asan_memset+0x22/0x40
[  928.494778][T18231]  ? __hrtimer_init+0x186/0x270
[  928.499908][T18231]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  928.505717][T18231]  ? mac80211_hwsim_free+0x220/0x220
[  928.511222][T18231]  ? rcu_is_watching+0x15/0xb0
[  928.516018][T18231]  ? kstrndup+0xbd/0x140
[  928.520370][T18231]  hwsim_new_radio_nl+0xdc9/0x1a90
[  928.525612][T18231]  ? __nla_validate+0x50/0x50
[  928.530334][T18231]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  928.536689][T18231]  ? __nla_parse+0x40/0x50
[  928.541220][T18231]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  928.547821][T18231]  genl_family_rcv_msg_doit+0x211/0x310
[  928.553430][T18231]  ? end_current_label_crit_section+0x170/0x170
[  928.559788][T18231]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  928.565948][T18231]  ? bpf_lsm_capable+0x9/0x10
[  928.570752][T18231]  ? security_capable+0x89/0xb0
[  928.575653][T18231]  genl_rcv_msg+0x619/0x7a0
[  928.580183][T18231]  ? genl_bind+0x360/0x360
[  928.584606][T18231]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  928.591057][T18231]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[  928.597708][T18231]  ? ref_tracker_free+0x690/0x840
[  928.602751][T18231]  netlink_rcv_skb+0x241/0x4d0
[  928.607587][T18231]  ? genl_bind+0x360/0x360
[  928.612106][T18231]  ? netlink_ack+0x1180/0x1180
[  928.617049][T18231]  ? __lock_acquire+0x7d40/0x7d40
[  928.622236][T18231]  ? down_read+0x1ac/0x2e0
[  928.626875][T18231]  genl_rcv+0x28/0x40
[  928.631052][T18231]  netlink_unicast+0x751/0x8d0
[  928.635974][T18231]  netlink_sendmsg+0x8d0/0xbf0
[  928.640941][T18231]  ? netlink_getsockopt+0x590/0x590
[  928.646219][T18231]  ? aa_sock_msg_perm+0x94/0x150
[  928.651278][T18231]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  928.656780][T18231]  ? security_socket_sendmsg+0x80/0xa0
[  928.662305][T18231]  ? netlink_getsockopt+0x590/0x590
[  928.667727][T18231]  ____sys_sendmsg+0x5ba/0x960
[  928.672520][T18231]  ? __asan_memset+0x22/0x40
[  928.677137][T18231]  ? __sys_sendmsg_sock+0x30/0x30
[  928.682279][T18231]  ? __import_iovec+0x5f2/0x850
[  928.687166][T18231]  ? import_iovec+0x73/0xa0
[  928.691730][T18231]  ___sys_sendmsg+0x2a6/0x360
[  928.696467][T18231]  ? __sys_sendmsg+0x2a0/0x2a0
[  928.701285][T18231]  ? debug_mutex_init+0x38/0x70
[  928.706423][T18231]  __se_sys_sendmsg+0x1c2/0x2b0
[  928.711855][T18231]  ? __x64_sys_sendmsg+0x80/0x80
[  928.717253][T18231]  ? lockdep_hardirqs_on+0x98/0x150
[  928.722658][T18231]  do_syscall_64+0x55/0xa0
[  928.727097][T18231]  ? clear_bhb_loop+0x40/0x90
[  928.731976][T18231]  ? clear_bhb_loop+0x40/0x90
[  928.736699][T18231]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  928.742660][T18231] RIP: 0033:0x7f29a199ce59
[  928.747212][T18231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  928.767521][T18231] RSP: 002b:00007f29a28d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  928.776313][T18231] RAX: ffffffffffffffda RBX: 00007f29a1c15fa0 RCX: 00007f29a199ce59
[  928.784547][T18231] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  928.792875][T18231] RBP: 00007f29a1a32d6f R08: 0000000000000000 R09: 0000000000000000
[  928.801009][T18231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  928.809477][T18231] R13: 00007f29a1c16038 R14: 00007f29a1c15fa0 R15: 00007fff20e47098
[  928.817564][T18231]  </TASK>
[  929.741113][T18253] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3487'.
[  929.803330][T18253] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3487'.
[  930.283095][   T42] wlan1: Created IBSS using preconfigured BSSID 00:00:00:08:00:00
[  930.290998][   T42] wlan1: Creating new IBSS network, BSSID 00:00:00:08:00:00
[  930.297718][T18266] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3492'.
[  930.319713][   T42] ------------[ cut here ]------------
[  930.327017][   T42] WARNING: CPU: 0 PID: 42 at net/wireless/ibss.c:37 __cfg80211_ibss_joined+0x3d2/0x440
[  930.337076][   T42] Modules linked in:
[  930.337144][   T42] CPU: 0 PID: 42 Comm: kworker/u4:2 Not tainted syzkaller #0
[  930.337172][   T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  930.337187][   T42] Workqueue: cfg80211 cfg80211_event_work
[  930.337222][   T42] RIP: 0010:__cfg80211_ibss_joined+0x3d2/0x440
[  930.337256][   T42] Code: 00 00 00 48 3b 84 24 80 00 00 00 75 5c 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 e7 98 a0 f7 0f 0b eb bb e8 de 98 a0 f7 <0f> 0b 4c 8b 6c 24 18 eb ad e8 d0 98 a0 f7 0f 0b e9 e0 fd ff ff e8
[  930.337277][   T42] RSP: 0018:ffffc90000b2fa20 EFLAGS: 00010293
[  930.337299][   T42] RAX: ffffffff89e68922 RBX: dffffc0000000000 RCX: ffff888018a9bc00
[  930.337317][   T42] RDX: 0000000000000000 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c8fa0
[  930.337335][   T42] RBP: ffffc90000b2faf8 R08: ffffffff911c656f R09: 1ffffffff2238cad
[  930.337351][   T42] R10: dffffc0000000000 R11: fffffbfff2238cae R12: ffff88807b994c90
[  930.337370][   T42] R13: 1ffff92000165f4c R14: ffff88802c48b5f8 R15: 000000000000001f
[  930.337387][   T42] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  930.337420][   T42] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  930.361570][T18266] sysfs: cannot create duplicate filename '/class/ieee80211/!!ô!'
[  930.366699][   T42] CR2: 00007f4f3d9ea540 CR3: 0000000075055000 CR4: 00000000003506f0
[  930.366737][   T42] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  930.366753][   T42] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  930.366771][   T42] Call Trace:
[  930.366783][   T42]  <TASK>
[  930.366796][   T42]  ? mutex_lock_nested+0x20/0x20
[  930.366831][   T42]  ? trace_rdev_return_void+0x1c0/0x1c0
[  930.366877][   T42]  cfg80211_process_wdev_events+0x3bc/0x550
[  930.366916][   T42]  cfg80211_process_rdev_events+0xa1/0x110
[  930.366945][   T42]  cfg80211_event_work+0x2f/0x40
[  930.366967][   T42]  ? process_scheduled_works+0x96f/0x15d0
[  930.366994][   T42]  process_scheduled_works+0xa5d/0x15d0
[  930.392879][T18266] CPU: 1 PID: 18266 Comm: syz.2.3492 Not tainted syzkaller #0
[  930.396829][   T42]  ? worker_attach_to_pool+0x380/0x380
[  930.403202][T18266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  930.403220][T18266] Call Trace:
[  930.403230][T18266]  <TASK>
[  930.403241][T18266]  dump_stack_lvl+0x18c/0x250
[  930.403282][T18266]  ? show_regs_print_info+0x20/0x20
[  930.412373][   T42]  ? assign_work+0x3d2/0x5d0
[  930.420403][T18266]  ? load_image+0x420/0x420
[  930.428834][   T42]  worker_thread+0xa55/0xfc0
[  930.437000][T18266]  sysfs_warn_dup+0x8e/0xa0
[  930.437032][T18266]  sysfs_do_create_link_sd+0xc0/0x110
[  930.445421][   T42]  kthread+0x2fa/0x390
[  930.454970][T18266]  device_add_class_symlinks+0x1cf/0x240
[  930.455021][T18266]  device_add+0x507/0xc20
[  930.455054][T18266]  wiphy_register+0x1dad/0x2ae0
[  930.455101][T18266]  ? cfg80211_event_work+0x40/0x40
[  930.461944][   T42]  ? pr_cont_work+0x560/0x560
[  930.470132][T18266]  ? minstrel_ht_alloc+0x88a/0x990
[  930.470188][T18266]  ? ieee80211_init_rate_ctrl_alg+0x562/0x5e0
[  930.470223][T18266]  ieee80211_register_hw+0x3464/0x4250
[  930.478772][   T42]  ? kthread_blkcg+0xd0/0xd0
[  930.486739][T18266]  ? ieee80211_tasklet_handler+0x20/0x20
[  930.486764][T18266]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  930.486794][T18266]  ? __debug_object_init+0xec/0x450
[  930.486829][T18266]  ? __asan_memset+0x22/0x40
[  930.486861][T18266]  ? __hrtimer_init+0x186/0x270
[  930.486891][T18266]  mac80211_hwsim_new_radio+0x2a00/0x4d10
[  930.494906][   T42]  ret_from_fork+0x48/0x80
[  930.498540][T18266]  ? mac80211_hwsim_free+0x220/0x220
[  930.501812][   T42]  ? kthread_blkcg+0xd0/0xd0
[  930.507013][T18266]  ? rcu_is_watching+0x15/0xb0
[  930.507059][T18266]  ? kstrndup+0xbd/0x140
[  930.507098][T18266]  hwsim_new_radio_nl+0xdc9/0x1a90
[  930.513005][   T42]  ret_from_fork_asm+0x11/0x20
[  930.519028][T18266]  ? __nla_validate+0x50/0x50
[  930.525931][   T42]  </TASK>
[  930.530988][T18266]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  930.536893][   T42] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  930.542415][T18266]  ? __nla_parse+0x40/0x50
[  930.542456][T18266]  ? genl_family_rcv_msg_attrs_parse+0x1c6/0x290
[  930.542485][T18266]  genl_family_rcv_msg_doit+0x211/0x310
[  930.542506][T18266]  ? end_current_label_crit_section+0x170/0x170
[  930.542534][T18266]  ? genl_family_rcv_msg_dumpit+0x310/0x310
[  930.542560][T18266]  ? bpf_lsm_capable+0x9/0x10
[  930.542582][T18266]  ? security_capable+0x89/0xb0
[  930.542611][T18266]  genl_rcv_msg+0x619/0x7a0
[  930.542636][T18266]  ? genl_bind+0x360/0x360
[  930.542652][T18266]  ? hwsim_tx_info_frame_received_nl+0xd60/0xd60
[  930.542673][T18266]  ? perf_trace_lock+0xfc/0x3b0
[  930.542700][T18266]  netlink_rcv_skb+0x241/0x4d0
[  930.542733][T18266]  ? genl_bind+0x360/0x360
[  930.542751][T18266]  ? netlink_ack+0x1180/0x1180
[  930.542787][T18266]  ? __lock_acquire+0x7d40/0x7d40
[  930.542814][T18266]  ? down_read+0x1ac/0x2e0
[  930.542836][T18266]  genl_rcv+0x28/0x40
[  930.542851][T18266]  netlink_unicast+0x751/0x8d0
[  930.542886][T18266]  netlink_sendmsg+0x8d0/0xbf0
[  930.542919][T18266]  ? netlink_getsockopt+0x590/0x590
[  930.542953][T18266]  ? aa_sock_msg_perm+0x94/0x150
[  930.542975][T18266]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  930.542994][T18266]  ? security_socket_sendmsg+0x80/0xa0
[  930.543011][T18266]  ? netlink_getsockopt+0x590/0x590
[  930.543037][T18266]  ____sys_sendmsg+0x5ba/0x960
[  930.543062][T18266]  ? __asan_memset+0x22/0x40
[  930.543084][T18266]  ? __sys_sendmsg_sock+0x30/0x30
[  930.543098][T18266]  ? __import_iovec+0x5f2/0x850
[  930.543124][T18266]  ? import_iovec+0x73/0xa0
[  930.543145][T18266]  ___sys_sendmsg+0x2a6/0x360
[  930.543168][T18266]  ? __sys_sendmsg+0x2a0/0x2a0
[  930.543239][T18266]  __se_sys_sendmsg+0x1c2/0x2b0
[  930.543258][T18266]  ? __x64_sys_sendmsg+0x80/0x80
[  930.543293][T18266]  ? lockdep_hardirqs_on+0x98/0x150
[  930.543318][T18266]  do_syscall_64+0x55/0xa0
[  930.543363][T18266]  ? clear_bhb_loop+0x40/0x90
[  930.543383][T18266]  ? clear_bhb_loop+0x40/0x90
[  930.543404][T18266]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  930.543431][T18266] RIP: 0033:0x7f69be19ce59
[  930.543449][T18266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  930.543464][T18266] RSP: 002b:00007f69bf138028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  930.543483][T18266] RAX: ffffffffffffffda RBX: 00007f69be415fa0 RCX: 00007f69be19ce59
[  930.543495][T18266] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000008
[  930.543512][T18266] RBP: 00007f69be232d6f R08: 0000000000000000 R09: 0000000000000000
[  930.543523][T18266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  930.543532][T18266] R13: 00007f69be416038 R14: 00007f69be415fa0 R15: 00007ffc46df7058
[  930.543561][T18266]  </TASK>
[  930.543570][   T42] CPU: 0 PID: 42 Comm: kworker/u4:2 Not tainted syzkaller #0
[  931.048168][   T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  931.058963][   T42] Workqueue: cfg80211 cfg80211_event_work
[  931.064948][   T42] Call Trace:
[  931.068345][   T42]  <TASK>
[  931.071403][   T42]  dump_stack_lvl+0x18c/0x250
[  931.076208][   T42]  ? show_regs_print_info+0x20/0x20
[  931.081779][   T42]  ? load_image+0x420/0x420
[  931.086580][   T42]  panic+0x2dc/0x730
[  931.090651][   T42]  ? bpf_jit_dump+0xd0/0xd0
[  931.095299][   T42]  ? ret_from_fork_asm+0x11/0x20
[  931.100395][   T42]  __warn+0x2e0/0x470
[  931.104486][   T42]  ? __cfg80211_ibss_joined+0x3d2/0x440
[  931.110057][   T42]  ? __cfg80211_ibss_joined+0x3d2/0x440
[  931.115705][   T42]  report_bug+0x2be/0x4f0
[  931.120137][   T42]  ? __cfg80211_ibss_joined+0x3d2/0x440
[  931.126124][   T42]  ? __cfg80211_ibss_joined+0x3d2/0x440
[  931.131700][   T42]  ? __cfg80211_ibss_joined+0x3d4/0x440
[  931.137266][   T42]  handle_bug+0xcf/0x120
[  931.141625][   T42]  exc_invalid_op+0x1a/0x50
[  931.146264][   T42]  asm_exc_invalid_op+0x1a/0x20
[  931.151326][   T42] RIP: 0010:__cfg80211_ibss_joined+0x3d2/0x440
[  931.158127][   T42] Code: 00 00 00 48 3b 84 24 80 00 00 00 75 5c 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 e7 98 a0 f7 0f 0b eb bb e8 de 98 a0 f7 <0f> 0b 4c 8b 6c 24 18 eb ad e8 d0 98 a0 f7 0f 0b e9 e0 fd ff ff e8
[  931.179330][   T42] RSP: 0018:ffffc90000b2fa20 EFLAGS: 00010293
[  931.185710][   T42] RAX: ffffffff89e68922 RBX: dffffc0000000000 RCX: ffff888018a9bc00
[  931.193713][   T42] RDX: 0000000000000000 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c8fa0
[  931.201972][   T42] RBP: ffffc90000b2faf8 R08: ffffffff911c656f R09: 1ffffffff2238cad
[  931.210047][   T42] R10: dffffc0000000000 R11: fffffbfff2238cae R12: ffff88807b994c90
[  931.218104][   T42] R13: 1ffff92000165f4c R14: ffff88802c48b5f8 R15: 000000000000001f
[  931.226301][   T42]  ? __cfg80211_ibss_joined+0x3d2/0x440
[  931.231910][   T42]  ? mutex_lock_nested+0x20/0x20
[  931.237174][   T42]  ? trace_rdev_return_void+0x1c0/0x1c0
[  931.243058][   T42]  cfg80211_process_wdev_events+0x3bc/0x550
[  931.249029][   T42]  cfg80211_process_rdev_events+0xa1/0x110
[  931.254965][   T42]  cfg80211_event_work+0x2f/0x40
[  931.259927][   T42]  ? process_scheduled_works+0x96f/0x15d0
[  931.266140][   T42]  process_scheduled_works+0xa5d/0x15d0
[  931.272344][   T42]  ? worker_attach_to_pool+0x380/0x380
[  931.278593][   T42]  ? assign_work+0x3d2/0x5d0
[  931.283481][   T42]  worker_thread+0xa55/0xfc0
[  931.288292][   T42]  kthread+0x2fa/0x390
[  931.292485][   T42]  ? pr_cont_work+0x560/0x560
[  931.297194][   T42]  ? kthread_blkcg+0xd0/0xd0
[  931.301986][   T42]  ret_from_fork+0x48/0x80
[  931.306486][   T42]  ? kthread_blkcg+0xd0/0xd0
[  931.311301][   T42]  ret_from_fork_asm+0x11/0x20
[  931.316681][   T42]  </TASK>
[  931.320394][   T42] Kernel Offset: disabled
[  931.325217][   T42] Rebooting in 86400 seconds..