last executing test programs:

17.89901169s ago: executing program 0 (id=13453):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x201, 0x20, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x440, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000340)=0x9)

17.469900423s ago: executing program 0 (id=13455):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f00000000c0)=r0, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_subtree(r2, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000200)={[{0x2b, 'cpuset'}]}, 0x8)

17.32483837s ago: executing program 0 (id=13457):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000200000000000000000850000002a0000001801000020786c2500000000002020207b1af8ff00000000bfa1000000000000070100"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000000000000000e300850000009e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10)

17.020631955s ago: executing program 0 (id=13470):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x34000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0xc8, 0xfffffffe, 0x0, 0x9, 0x7, 0x4}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xf, 0x0, &(0x7f00000005c0)="a75f04ebffffff6f2f3534fdb86736", 0x0, 0x400000ff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair(0x11, 0x3, 0x300, &(0x7f0000000000))
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000100)=ANY=[], 0xfdef)

15.910391404s ago: executing program 0 (id=13465):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='/proc/1/\x00\x82q\xee\xe5\xa0\xbd\xc2\x98#YP\xee\x9c2G\xf0\x81x\x97'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x13}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xf101})
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="0004f678ec630000000066"], 0xd)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x8202)

15.008753121s ago: executing program 2 (id=13469):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
close(0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000800000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x4002000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

14.024649273s ago: executing program 2 (id=13472):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x20001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x0, 0x5}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2, 0x241a2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x4, @perf_config_ext={0xba4b, 0x8}, 0x0, 0x2, 0x2, 0x1, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x20000001}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
recvmsg$unix(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000), 0xfdef)

13.772586436s ago: executing program 2 (id=13473):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r0, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000200)={0x0, <r3=>0x0}, 0x8)
r4 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r3, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000500)={r4, r2, 0x0, r1}, 0x10)

13.559086077s ago: executing program 3 (id=13475):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x6, 0x1ff003, 0xe1f, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x50)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000021c0)=ANY=[@ANYBLOB="b70200001000b15cbfa300000000000007030000f8ffffff7a0af0ff0000000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000010000006a0af2fe0000000085000000a3000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87867c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b2314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f86bb47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8dd63d4b77b206000000000000e254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad91935a6ddfa8f90e79321a0574fb30ff0000001989328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f3813e2c25a61ec45c3af9948f17da954aff3fc8c108755f75ca13fb7c8bbd8b6e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ac59dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469600241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7b9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c12e28ef97d9ebd9c77f1774cf4683c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f011000000f27e3c33269c0e153b28b2d4410572bc45b9d3fa02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497a6103876843ee04ed9ff002000000cd1d00000020000000ef19349ee7f31abc11c800000000000000000000000928ee53595a779d243a48cea769470424d28804c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2cf7908b6d7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd1304202274f20675eb781925440578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec780f535e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e9338c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b96508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e25c89b552d7fcd116bce9c764c714c9402c21d1aac59efb28d4f91652f6000000000000000320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a575939206d0c0f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000ff0ffd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0e03280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0e2e9120be61e58c79d497247d278888901d442ad7f8536607a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c525708a13d115b43f8b1894c8fa8a14dc4810f61ae96c18cc7130000000000002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8000000edb3d42c68a27ef6a1296dfff4a979369b0e8ebc62887aa46e820a74f91381dcc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f7f05b47d3e519f1634e8fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7b0976cf2ec447c030931651dd315003b7a6a5433a2bb560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a426a996d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db76cf059f40fa2640b6bfb74dd35391b8fa18479da9f4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac4728288e78980c1184d8223edbccbf9258b7374e79a1f8bf3fb73c8c6dbb7bbdfc399847db97c02461792e3a49dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b252a37ff7e0d45728fc1a6ec566981bc8ccfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f3e34b7524642c248aa813edaa626f0000000000000000000000000000000003ba34b611569a451564d3a5400f9097ffe7a37e765be352be71ee24250d6828562c7e24cb763062d6000c409de6a6135eae8a00000000008d797190a26c933f933aff5c521eeb7a84a62d148a846e74e76b515b6b8be29e8b69310fa130cf6d6b74f33205d3cc218ca554ed8085ae044f5bf2e89a0000bde05c114e7a020fc1a5fd3eeeb822008b2d7d1cc062b51b0aca4956b557e51a1385cc572b0074b0950fb1437de2590bf99ec7ceb69e1fe2465fce099c992d57b804a22e148ae3411523814aee03ee2df877edfabf4aa94f07c6fdd127e57a8bf7975f2e606c25a299980a6e52fcf7849d45bb38573fbba8afef1aa7a24c805f7aee3e39a3000000000000000000000000000000000000878f88c4742ac490951c36c610a0d266588ec6a0bd300cf160b5a5d9e9fafa49ecc8430832d795e727b7fc2b76e7fc4141fdbb82f45d3cdd3fb8d4b443ab4954fdf5c1b9a6ab3e457f098329307ccb0a1989b6c37509692e952e7244f48bc12569ff8eb30d0f887b85b5ef44fb9a7571319190be0c226ed72f346cc4aa071ae0c72fa8bd00d5590c4f4ba65d0c8e1f4870fe3c414681e41b40163eb1aa2a7429a2208cd6e69c7d959e87da3fd0101159a03ab7fe78881ee7a1ee7a2edff75fb18a181e0c54352be2b7a5b5273198291c28d9141deeb3cdba5d414ae4b0000000000000000000000000009eacd83458d8a606be71970497a4fd4ca3b48ca482ab3804e2fac216b3ba613608b1a465456a33fd08491d337d7344c01cfc9e73bf1bca1cbec7614c8c3c76411e61fef6a93da8914490b50bd837d068e9bf8f3348794a44115d163b5ff85629b0a3ad4023448140770de2e5f262b9a50afcc210b8d8ea24b6dd7d068b356f53afaf89acae30935ec92657e37bf0821cbe612ac2aa7baf4d21ab373ea4fea57d0d9ac418862e791df3d1d85bb780fbfa401e09e3745d70174dd9ab52cdcadfd3454916408810090a19fa1cf0df6aa714fbcffbb7d6c7f45237df3296867725fd2bdbcd2f7ab10fea0fe85ce1137e775e4c01a136aed7f1d0d192a95be64bab53144ff3efd87fcb6421483e6a1690408712913dfb10a88201340c96dfd745a84dc177dd7a598ec015daa56eb0924e01df353a9ad69d0a59e40203018c82e74f39f8c4cb8823f0bfdfe170549e305628625f50"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r2, 0x0, 0xe, 0x0, &(0x7f0000000300)="14fd54ab72df97e6256c00000000", 0x0, 0xfeff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

13.558810637s ago: executing program 2 (id=13476):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0x2}, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000200)='tasks\x00', 0x2, 0x0)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x7d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000e80)="b9e403c6631e39495aa05dc7cf1c", 0x0, 0x27ab, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)

13.203851676s ago: executing program 3 (id=13477):
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x9, 0xe1e}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
close(0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000110b0008850000007000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000880)="b9aea252ff030703008cb89e08007b2601b1afb183851802fe004bcf1858c4abf159", 0x0, 0xfe3, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

13.028949676s ago: executing program 2 (id=13478):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f0000000040)}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x1})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8924, &(0x7f0000000080))

12.878677723s ago: executing program 3 (id=13479):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.avg_queue_size\x00', 0x26e1, 0x0)
close(r0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="8f03000000000060007538e486dd630ace2200103a"], 0xcfa4)

11.180518703s ago: executing program 4 (id=13480):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
perf_event_open(&(0x7f0000001340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000140))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0xb, 0x40, 0x3, 0x41}, 0x50)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25}, 0x94)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000)=0x4b)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))

11.128453725s ago: executing program 2 (id=13482):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000001800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x7, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000001000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_bp={0x0, 0x8}, 0x40, 0x0, 0x0, 0x0, 0x7, 0x0, 0xffff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)

11.082669078s ago: executing program 0 (id=13483):
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1}, 0x0, 0x8, 0x9b, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000c00)='GPL\x00'}, 0x75)
r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0xa}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d80)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021"], 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={@map, 0x11, 0x1, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x638c1100, 0x0, 0x0, 0x0, 0x0, 0x0)

7.003995722s ago: executing program 3 (id=13485):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001200)={r3, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f07df33c9f7b986", 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

7.003749072s ago: executing program 4 (id=13486):
perf_event_open(&(0x7f0000000040)={0x5, 0x6c, 0x2, 0x2, 0x8, 0x9, 0x0, 0x6, 0x0, 0xc, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x2000, 0xff, 0x9, 0x0, 0x4, 0x145d, 0x1, 0x0, 0x3f8, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
getpid()
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x8000000000000000, 0x7ff}, 0x110c40, 0x0, 0x0, 0x1, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
write$cgroup_type(r0, &(0x7f0000000180), 0xfffffe51)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40305829, &(0x7f0000000040))

6.180580705s ago: executing program 3 (id=13489):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000030000000200000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000002c0)={'syzkaller0\x00', 0x7101})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000180)=r4)
write$cgroup_devices(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESDEC], 0xffdd)

6.036747423s ago: executing program 4 (id=13490):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
gettid()
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
r3 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000ff07730b6d41000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa1000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x18, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000001b"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_bp={0x0, 0x8}, 0x40, 0x0, 0x0, 0x0, 0x7, 0x0, 0xffff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000", @ANYBLOB], 0x50)
r9 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r9}, 0xc)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000000), 0xfdef)
close(0x3)

5.849448692s ago: executing program 1 (id=13491):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000009b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10)

5.683048211s ago: executing program 1 (id=13492):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8914, &(0x7f0000000080))
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000006c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x18, &(0x7f0000000700)=@raw=[@ringbuf_query, @alu={0xfbd1e06098df63d2, 0x0, 0x0, 0x7, 0x3, 0xc, 0xfffffffffffffffc}, @map_idx={0x18, 0x2, 0x5, 0x0, 0xf}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @ringbuf_query], &(0x7f00000007c0)='syzkaller\x00', 0x5, 0x2f, &(0x7f0000000880)=""/47, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000a00)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000a40)={0x2, 0x0, 0x8000, 0xa}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800}, 0x38)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})

5.196623657s ago: executing program 4 (id=13493):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080))
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x42, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f00000000c0)=r4)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESDEC], 0xffdd)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000002c0)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r5, &(0x7f0000000280)=ANY=[], 0xffdd)

2.646790981s ago: executing program 3 (id=13494):
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000fc0)={0x0, 0x80, 0x2, 0x0, 0x0, 0x4, 0x0, 0x7, 0xf290f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x7, 0x3}, 0x2840, 0x0, 0x0, 0x90cb25926d35f6d2, 0x5, 0x0, 0xffff, 0x0, 0xfffffff7, 0x0, 0x3}, 0x0, 0xe, 0xffffffffffffffff, 0xa)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000005c0), &(0x7f00000000c0), 0xc83}, 0x38)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0xc8, 0x0, 0x0, 0x7, 0x0, 0xce8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fe9cb7907021175f37538e486dd"], 0xfdef)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[], 0xe)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x9, 0x3, &(0x7f0000000000)=@framed={{0x1e, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x8}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x10, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x541b, 0x20000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, 0x0)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180)={0x8, <r4=>0x0}, 0x8)
perf_event_open(0x0, 0x0, 0xfffffffeffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000000)="b9ff0307600339ffa0f408f088a8", 0x0, 0xa3, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
close(r7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f00000004c0)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xe)
ioctl$TUNSETQUEUE(r5, 0x400454d9, &(0x7f00000000c0)={'vxcan1\x00', 0x400})
r8 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000002c0)=r4, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r8, r0, 0x4, r0}, 0x10)

2.627565132s ago: executing program 1 (id=13495):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x2, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x6000, 0xc8, 0x2, 0x7, 0x0, 0x100005, 0xffff, 0x0, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0xfffffffffffffe95}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81ea033c00fc08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)

2.622639902s ago: executing program 4 (id=13496):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.avg_queue_size\x00', 0x26e1, 0x0)
close(r0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="8f03000000000060007538e486dd630ace2200103a"], 0xcfa4)

2.183739255s ago: executing program 1 (id=13497):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000b40)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80000000000200, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25}, 0x94)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080))

134.496253ms ago: executing program 1 (id=13498):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40305839, 0x0)

58.994247ms ago: executing program 1 (id=13499):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000005c0)=""/136, 0x88}], 0x1, &(0x7f0000002f40)=""/244, 0xf4}, 0x0)
sendmsg$inet(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001280)=[{&(0x7f00000006c0)="c5e8f524f988b5047d36e2be06fdd8aa48f58a9de3b9c0bdc47f5e8b9664cf24ee7c3a66ae629f3cffb03d4e1c0c243b8f9a916e814132cd5543c4bc57d6bb2fecec544408b324ce1e9e06f010da0f42329d39f71cb9f4ac8434d7fe42372112d3aca7169d8e39b0d2b58c441574e13ce69b14f31b489e", 0x77}, {&(0x7f0000000740)="c31cea2c90b8cb3be54f514f5cfbf2c59e5a00946c8d4d18580e8a290aa4421df27e05", 0x23}], 0x2}, 0x4000080)
close(r1)

0s ago: executing program 4 (id=13500):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1, r0}, 0xc)

kernel console output (not intermixed with test programs):

ngth: 249 > 9
[ 2291.259202][ T6683] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2291.267229][ T6683] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2291.275069][ T6683] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 2291.282879][ T6683] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2291.556789][ T9552] netdevsim netdevsim2: Direct firmware load for Ö failed with error -2
[ 2291.591614][ T9552] netdevsim netdevsim2: Falling back to sysfs fallback for: Ö
[ 2291.626567][ T9556] netlink: 103 bytes leftover after parsing attributes in process `syz.2.12784'.
[ 2291.899987][ T9545] chnl_net:caif_netlink_parms(): no params data found
[ 2292.196031][ T9545] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2292.203537][ T9545] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2292.212082][ T9545] device bridge_slave_0 entered promiscuous mode
[ 2292.302817][ T9545] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2292.321071][ T9545] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2292.372124][ T9578] FAULT_INJECTION: forcing a failure.
[ 2292.372124][ T9578] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2292.387977][ T9545] device bridge_slave_1 entered promiscuous mode
[ 2292.403601][ T9578] CPU: 0 PID: 9578 Comm: syz.0.12788 Not tainted syzkaller #0
[ 2292.411111][ T9578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2292.421238][ T9578] Call Trace:
[ 2292.424546][ T9578]  <TASK>
[ 2292.427496][ T9578]  dump_stack_lvl+0x188/0x24e
[ 2292.432213][ T9578]  ? show_regs_print_info+0x12/0x12
[ 2292.437446][ T9578]  ? load_image+0x400/0x400
[ 2292.441975][ T9578]  ? __lock_acquire+0x7d10/0x7d10
[ 2292.447030][ T9578]  should_fail_ex+0x399/0x4d0
[ 2292.451709][ T9578]  _copy_from_user+0x2c/0x170
[ 2292.456390][ T9578]  __copy_msghdr+0x3b7/0x580
[ 2292.460985][ T9578]  ___sys_sendmsg+0x210/0x360
[ 2292.465759][ T9578]  ? __sys_sendmsg+0x290/0x290
[ 2292.470539][ T9578]  ? __lock_acquire+0x7d10/0x7d10
[ 2292.475581][ T9578]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2292.480432][ T9578]  ? __x64_sys_sendmsg+0x80/0x80
[ 2292.485383][ T9578]  ? syscall_enter_from_user_mode+0x2a/0x80
[ 2292.491281][ T9578]  do_syscall_64+0x4c/0xa0
[ 2292.495702][ T9578]  ? clear_bhb_loop+0x60/0xb0
[ 2292.500388][ T9578]  ? clear_bhb_loop+0x60/0xb0
[ 2292.505069][ T9578]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2292.510960][ T9578] RIP: 0033:0x7f941f99c819
[ 2292.515373][ T9578] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2292.535007][ T9578] RSP: 002b:00007f94207ce028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2292.543414][ T9578] RAX: ffffffffffffffda RBX: 00007f941fc16180 RCX: 00007f941f99c819
[ 2292.551381][ T9578] RDX: 00000000000080d1 RSI: 0000200000000140 RDI: 000000000000000d
[ 2292.559432][ T9578] RBP: 00007f94207ce090 R08: 0000000000000000 R09: 0000000000000000
[ 2292.567396][ T9578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2292.575366][ T9578] R13: 00007f941fc16218 R14: 00007f941fc16180 R15: 00007ffcf35f1f08
[ 2292.583353][ T9578]  </TASK>
[ 2292.708179][ T9545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2292.782277][ T9545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2292.887456][ T9545] team0: Port device team_slave_0 added
[ 2292.914422][ T9545] team0: Port device team_slave_1 added
[ 2293.089589][ T9545] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2293.123801][ T9545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2293.193347][ T9545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2293.234494][ T9592] FAULT_INJECTION: forcing a failure.
[ 2293.234494][ T9592] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2293.257269][ T9545] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2293.276402][ T9545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2293.308040][ T9592] CPU: 0 PID: 9592 Comm: syz.2.12796 Not tainted syzkaller #0
[ 2293.315553][ T9592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2293.318504][ T9545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2293.325602][ T9592] Call Trace:
[ 2293.325704][ T9592]  <TASK>
[ 2293.325713][ T9592]  dump_stack_lvl+0x188/0x24e
[ 2293.325748][ T9592]  ? show_regs_print_info+0x12/0x12
[ 2293.325773][ T9592]  ? load_image+0x400/0x400
[ 2293.325796][ T9592]  ? __lock_acquire+0x7d10/0x7d10
[ 2293.361874][ T9592]  should_fail_ex+0x399/0x4d0
[ 2293.366574][ T9592]  prepare_alloc_pages+0x1e2/0x5f0
[ 2293.371711][ T9592]  __alloc_pages+0x130/0x4f0
[ 2293.376327][ T9592]  ? zone_statistics+0x170/0x170
[ 2293.381310][ T9592]  __pmd_alloc+0xa6/0x760
[ 2293.385668][ T9592]  ? __lock_acquire+0x7d10/0x7d10
[ 2293.390712][ T9592]  ? do_raw_spin_lock+0x128/0x2f0
[ 2293.395746][ T9592]  ? __pud_alloc+0x150/0x150
[ 2293.400350][ T9592]  ? __rwlock_init+0x140/0x140
[ 2293.405134][ T9592]  ? hugepage_vma_check+0x466/0x540
[ 2293.410358][ T9592]  handle_mm_fault+0xa03/0x3ee0
[ 2293.415217][ T9592]  ? mt_find+0x157/0x830
[ 2293.419471][ T9592]  ? numa_migrate_prep+0x250/0x250
[ 2293.424580][ T9592]  ? lock_chain_count+0x20/0x20
[ 2293.429436][ T9592]  ? lock_mm_and_find_vma+0xae/0x2f0
[ 2293.434753][ T9592]  do_user_addr_fault+0x51f/0xb10
[ 2293.439791][ T9592]  exc_page_fault+0x60/0x100
[ 2293.444380][ T9592]  asm_exc_page_fault+0x22/0x30
[ 2293.449223][ T9592] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 2293.454937][ T9592] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 90 90 90 90 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 48 bb f9 ef ff ff ff 7f
[ 2293.474538][ T9592] RSP: 0018:ffffc90003b57e80 EFLAGS: 00050297
[ 2293.480607][ T9592] RAX: 0000000000000004 RBX: 00007fffffffeffd RCX: 0000200000001400
[ 2293.488569][ T9592] RDX: 0000000000000000 RSI: ffffffff8a8c22a0 RDI: ffffffff8adf13a0
[ 2293.496621][ T9592] RBP: 0000000000000004 R08: ffffffff8e1ff42f R09: 1ffffffff1c3fe85
[ 2293.504586][ T9592] R10: dffffc0000000000 R11: fffffbfff1c3fe86 R12: 0000000000000000
[ 2293.512552][ T9592] R13: 0000200000001400 R14: 0000000000000028 R15: 0000000000000005
[ 2293.520537][ T9592]  __sys_socketpair+0xb4/0x540
[ 2293.525328][ T9592]  __x64_sys_socketpair+0x97/0xb0
[ 2293.530363][ T9592]  do_syscall_64+0x4c/0xa0
[ 2293.534787][ T9592]  ? clear_bhb_loop+0x60/0xb0
[ 2293.539511][ T9592]  ? clear_bhb_loop+0x60/0xb0
[ 2293.544185][ T9592]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2293.550074][ T9592] RIP: 0033:0x7fb650b9c819
[ 2293.554482][ T9592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2293.574120][ T9592] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 2293.582579][ T9592] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2293.590544][ T9592] RDX: 0000000000000028 RSI: 0000000000000005 RDI: 0000000000000028
[ 2293.598942][ T9592] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2293.606912][ T9592] R10: 0000200000001400 R11: 0000000000000246 R12: 0000000000000001
[ 2293.614876][ T9592] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2293.622860][ T9592]  </TASK>
[ 2293.626116][ T6683] Bluetooth: hci1: command 0x0409 tx timeout
[ 2293.926513][ T9598] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.12797'.
[ 2293.931638][ T9602] FAULT_INJECTION: forcing a failure.
[ 2293.931638][ T9602] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2293.983138][ T9602] CPU: 0 PID: 9602 Comm: syz.1.12798 Not tainted syzkaller #0
[ 2293.990667][ T9602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2294.000916][ T9602] Call Trace:
[ 2294.004211][ T9602]  <TASK>
[ 2294.007151][ T9602]  dump_stack_lvl+0x188/0x24e
[ 2294.011862][ T9602]  ? show_regs_print_info+0x12/0x12
[ 2294.017087][ T9602]  ? load_image+0x400/0x400
[ 2294.021613][ T9602]  ? __lock_acquire+0x7d10/0x7d10
[ 2294.026660][ T9602]  should_fail_ex+0x399/0x4d0
[ 2294.031361][ T9602]  _copy_from_user+0x2c/0x170
[ 2294.036058][ T9602]  iovec_from_user+0x143/0x360
[ 2294.040854][ T9602]  __import_iovec+0x6d/0x500
[ 2294.045570][ T9602]  import_iovec+0x6f/0xa0
[ 2294.050174][ T9602]  ___sys_sendmsg+0x252/0x360
[ 2294.054885][ T9602]  ? __sys_sendmsg+0x290/0x290
[ 2294.059701][ T9602]  ? __lock_acquire+0x7d10/0x7d10
[ 2294.064788][ T9602]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2294.069672][ T9602]  ? __x64_sys_sendmsg+0x80/0x80
[ 2294.074745][ T9602]  ? lockdep_hardirqs_on+0x94/0x140
[ 2294.079981][ T9602]  do_syscall_64+0x4c/0xa0
[ 2294.084433][ T9602]  ? clear_bhb_loop+0x60/0xb0
[ 2294.089142][ T9602]  ? clear_bhb_loop+0x60/0xb0
[ 2294.093857][ T9602]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2294.099781][ T9602] RIP: 0033:0x7f29e219c819
[ 2294.104217][ T9602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2294.123854][ T9602] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2294.132296][ T9602] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2294.140379][ T9602] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2294.148380][ T9602] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2294.156369][ T9602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2294.164358][ T9602] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2294.172364][ T9602]  </TASK>
[ 2294.273507][T26679] device hsr_slave_0 left promiscuous mode
[ 2294.323520][T26679] device hsr_slave_1 left promiscuous mode
[ 2294.355676][T26679] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2294.364322][T26679] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2294.414728][T26679] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2294.422200][T26679] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2294.454260][T26679] bridge0: port 2(hsr0) entered disabled state
[ 2294.484160][T26679] device bridge_slave_0 left promiscuous mode
[ 2294.493812][T26679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2294.623493][T26679] device veth1_macvtap left promiscuous mode
[ 2294.629580][T26679] device veth0_macvtap left promiscuous mode
[ 2294.644140][T26679] device veth1_vlan left promiscuous mode
[ 2294.649997][T26679] device veth0_vlan left promiscuous mode
[ 2295.310332][T26679] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2295.320471][T26679] device bond_slave_1 left promiscuous mode
[ 2295.371652][T26679] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2295.380603][T26679] device bond_slave_0 left promiscuous mode
[ 2295.614336][T26679] bond0 (unregistering): (slave bridge0): Releasing backup interface
[ 2295.623151][T26679] bond0 (unregistering): (slave bridge0): last VLAN challenged slave left bond - VLAN blocking is removed
[ 2295.635544][T26679] device bridge0 left promiscuous mode
[ 2295.641563][T26679] bond0 (unregistering): Released all slaves
[ 2295.683423][ T6683] Bluetooth: hci1: command 0x041b tx timeout
[ 2295.748349][ T9545] device hsr_slave_0 entered promiscuous mode
[ 2295.756698][ T9545] device hsr_slave_1 entered promiscuous mode
[ 2295.764583][ T9545] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2295.772475][ T9545] Cannot create hsr debugfs directory
[ 2295.778241][ T9600] netlink: 'syz.2.12799': attribute type 21 has an invalid length.
[ 2295.786561][ T9600] IPv6: NLM_F_CREATE should be specified when creating new route
[ 2295.802446][ T9611] netdevsim netdevsim0: Direct firmware load for Ö failed with error -2
[ 2295.828919][ T9612] netlink: 103 bytes leftover after parsing attributes in process `syz.0.12803'.
[ 2295.838329][ T9597] netlink: 'syz.4.12797': attribute type 2 has an invalid length.
[ 2295.846397][ T9611] netdevsim netdevsim0: Falling back to sysfs fallback for: Ö
[ 2295.886511][ T9597] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.12797'.
[ 2296.170451][ T9628] netlink: 'syz.4.12808': attribute type 2 has an invalid length.
[ 2296.198930][ T9628] netlink: 132 bytes leftover after parsing attributes in process `syz.4.12808'.
[ 2296.326724][ T9630] netlink: 156 bytes leftover after parsing attributes in process `syz.1.12807'.
[ 2296.507224][ T9545] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2296.534396][ T9634] netlink: 40 bytes leftover after parsing attributes in process `syz.0.12809'.
[ 2296.546716][ T9634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12809'.
[ 2296.619256][ T9545] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2296.773735][ T9545] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2296.854487][ T9644] FAULT_INJECTION: forcing a failure.
[ 2296.854487][ T9644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2296.892033][ T9644] CPU: 1 PID: 9644 Comm: syz.0.12814 Not tainted syzkaller #0
[ 2296.899539][ T9644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2296.909590][ T9644] Call Trace:
[ 2296.912854][ T9644]  <TASK>
[ 2296.915768][ T9644]  dump_stack_lvl+0x188/0x24e
[ 2296.920438][ T9644]  ? show_regs_print_info+0x12/0x12
[ 2296.925638][ T9644]  ? load_image+0x400/0x400
[ 2296.930137][ T9644]  ? __lock_acquire+0x7d10/0x7d10
[ 2296.935150][ T9644]  should_fail_ex+0x399/0x4d0
[ 2296.939820][ T9644]  _copy_from_user+0x2c/0x170
[ 2296.944506][ T9644]  iovec_from_user+0x143/0x360
[ 2296.949294][ T9644]  __import_iovec+0x6d/0x500
[ 2296.953903][ T9644]  import_iovec+0x6f/0xa0
[ 2296.958223][ T9644]  ___sys_sendmsg+0x252/0x360
[ 2296.962916][ T9644]  ? __sys_sendmsg+0x290/0x290
[ 2296.967678][ T9644]  ? __lock_acquire+0x7d10/0x7d10
[ 2296.972697][ T9644]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2296.977540][ T9644]  ? __x64_sys_sendmsg+0x80/0x80
[ 2296.982478][ T9644]  ? lockdep_hardirqs_on+0x94/0x140
[ 2296.987828][ T9644]  do_syscall_64+0x4c/0xa0
[ 2296.992354][ T9644]  ? clear_bhb_loop+0x60/0xb0
[ 2296.997036][ T9644]  ? clear_bhb_loop+0x60/0xb0
[ 2297.001802][ T9644]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2297.007708][ T9644] RIP: 0033:0x7f941f99c819
[ 2297.012132][ T9644] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2297.031909][ T9644] RSP: 002b:00007f9420810028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2297.040313][ T9644] RAX: ffffffffffffffda RBX: 00007f941fc15fa0 RCX: 00007f941f99c819
[ 2297.048367][ T9644] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2297.056341][ T9644] RBP: 00007f9420810090 R08: 0000000000000000 R09: 0000000000000000
[ 2297.064332][ T9644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2297.072334][ T9644] R13: 00007f941fc16038 R14: 00007f941fc15fa0 R15: 00007ffcf35f1f08
[ 2297.080352][ T9644]  </TASK>
[ 2297.121331][ T9545] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2297.136818][ T9646] sock: sock_set_timeout: `syz.2.12815' (pid 9646) tries to set negative timeout
[ 2297.321565][ T9657] netlink: 'syz.4.12817': attribute type 10 has an invalid length.
[ 2297.350197][T26679] device 0 left promiscuous mode
[ 2297.474953][ T9545] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2297.690244][T26679] tipc: Left network mode
[ 2297.690311][ T9545] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2297.707872][ T9545] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2297.720128][ T9545] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2297.763675][ T6683] Bluetooth: hci1: command 0x040f tx timeout
[ 2298.169347][ T9676] netlink: 103 bytes leftover after parsing attributes in process `syz.1.12820'.
[ 2298.181065][ T9669] netdevsim netdevsim1: Direct firmware load for Ö failed with error -2
[ 2298.227802][ T9669] netdevsim netdevsim1: Falling back to sysfs fallback for: Ö
[ 2298.428753][ T9683] netlink: 156 bytes leftover after parsing attributes in process `syz.0.12823'.
[ 2298.468365][ T9545] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2298.539408][ T7406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2298.552031][ T7406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2298.579842][ T9545] 8021q: adding VLAN 0 to HW filter on device team0
[ 2298.702681][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2298.712755][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2298.759128][ T4879] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2298.766309][ T4879] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2298.786840][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2298.802132][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2298.838240][ T4879] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2298.845482][ T4879] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2298.854423][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 2299.054048][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2299.081648][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 2299.114324][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 2299.152273][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 2299.184977][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 2299.202806][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 2299.212192][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2299.246628][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2299.269706][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2299.329103][ T9545] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2299.362575][ T9545] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2299.397602][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2299.411654][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2299.843451][ T6683] Bluetooth: hci1: command 0x0419 tx timeout
[ 2300.360868][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2300.402324][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2300.439625][ T9545] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2300.459552][ T9726] netlink: 'syz.0.12836': attribute type 10 has an invalid length.
[ 2300.513437][ T9726] bridge0: port 3(bond0) entered blocking state
[ 2300.520156][ T9726] bridge0: port 3(bond0) entered forwarding state
[ 2300.527631][ T9726] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2300.535138][ T9726] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2300.543183][ T9726] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2300.550830][ T9726] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2300.644438][ T9726] bridge0: port 3(bond0) entered disabled state
[ 2300.651480][ T9726] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2300.659219][ T9726] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2300.762444][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2300.779828][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2300.838771][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2300.870293][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2300.915954][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2300.931995][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2300.947188][ T9737] FAULT_INJECTION: forcing a failure.
[ 2300.947188][ T9737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2300.969082][ T9737] CPU: 0 PID: 9737 Comm: syz.2.12841 Not tainted syzkaller #0
[ 2300.976591][ T9737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2300.986659][ T9737] Call Trace:
[ 2300.989980][ T9737]  <TASK>
[ 2300.992924][ T9737]  dump_stack_lvl+0x188/0x24e
[ 2300.997624][ T9737]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2301.003812][ T9737]  ? show_regs_print_info+0x12/0x12
[ 2301.009032][ T9737]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2301.015392][ T9737]  ? dump_stack+0x5/0x12
[ 2301.019663][ T9737]  should_fail_ex+0x399/0x4d0
[ 2301.024364][ T9737]  _copy_from_user+0x2c/0x170
[ 2301.029059][ T9737]  ___sys_sendmsg+0x1c3/0x360
[ 2301.033757][ T9737]  ? __sys_sendmsg+0x290/0x290
[ 2301.038562][ T9737]  ? ktime_get_real_ts64+0x440/0x440
[ 2301.043886][ T9737]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2301.048764][ T9737]  ? __x64_sys_sendmsg+0x80/0x80
[ 2301.053739][ T9737]  ? lockdep_hardirqs_on+0x94/0x140
[ 2301.058983][ T9737]  do_syscall_64+0x4c/0xa0
[ 2301.063422][ T9737]  ? clear_bhb_loop+0x60/0xb0
[ 2301.068114][ T9737]  ? clear_bhb_loop+0x60/0xb0
[ 2301.072812][ T9737]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2301.078722][ T9737] RIP: 0033:0x7fb650b9c819
[ 2301.083145][ T9737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2301.102771][ T9737] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2301.111209][ T9737] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2301.119198][ T9737] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000007
[ 2301.127182][ T9737] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2301.135181][ T9737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2301.141265][ T9545] device veth0_vlan entered promiscuous mode
[ 2301.143240][ T9737] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2301.143269][ T9737]  </TASK>
[ 2301.329359][ T9545] device veth1_vlan entered promiscuous mode
[ 2301.639789][ T9757] FAULT_INJECTION: forcing a failure.
[ 2301.639789][ T9757] name failslab, interval 1, probability 0, space 0, times 0
[ 2301.669343][ T9757] CPU: 1 PID: 9757 Comm: syz.0.12848 Not tainted syzkaller #0
[ 2301.676853][ T9757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2301.686937][ T9757] Call Trace:
[ 2301.690222][ T9757]  <TASK>
[ 2301.693155][ T9757]  dump_stack_lvl+0x188/0x24e
[ 2301.697858][ T9757]  ? show_regs_print_info+0x12/0x12
[ 2301.703069][ T9757]  ? load_image+0x400/0x400
[ 2301.707628][ T9757]  ? __might_sleep+0xd0/0xd0
[ 2301.712214][ T9757]  ? __lock_acquire+0x7d10/0x7d10
[ 2301.717266][ T9757]  should_fail_ex+0x399/0x4d0
[ 2301.721967][ T9757]  should_failslab+0x5/0x20
[ 2301.726476][ T9757]  slab_pre_alloc_hook+0x59/0x310
[ 2301.731501][ T9757]  ? tomoyo_realpath_from_path+0xdf/0x5d0
[ 2301.737257][ T9757]  __kmem_cache_alloc_node+0x4f/0x260
[ 2301.742639][ T9757]  ? tomoyo_realpath_from_path+0xdf/0x5d0
[ 2301.748363][ T9757]  __kmalloc+0xa0/0x240
[ 2301.752562][ T9757]  tomoyo_realpath_from_path+0xdf/0x5d0
[ 2301.758124][ T9757]  ? tomoyo_path_number_perm+0x205/0x650
[ 2301.763766][ T9757]  tomoyo_path_number_perm+0x22f/0x650
[ 2301.769248][ T9757]  ? trace_event_raw_event_lock_acquire+0x2c0/0x2c0
[ 2301.775853][ T9757]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2301.781316][ T9757]  ? ksys_write+0x1c0/0x250
[ 2301.785911][ T9757]  ? common_file_perm+0x171/0x1c0
[ 2301.791057][ T9757]  ? __fget_files+0x28/0x4b0
[ 2301.795654][ T9757]  ? __fget_files+0x28/0x4b0
[ 2301.800247][ T9757]  security_file_ioctl+0x6c/0xa0
[ 2301.805462][ T9757]  __se_sys_ioctl+0x48/0x170
[ 2301.810060][ T9757]  do_syscall_64+0x4c/0xa0
[ 2301.814494][ T9757]  ? clear_bhb_loop+0x60/0xb0
[ 2301.819194][ T9757]  ? clear_bhb_loop+0x60/0xb0
[ 2301.823873][ T9757]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2301.829942][ T9757] RIP: 0033:0x7f941f99c819
[ 2301.834353][ T9757] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2301.853961][ T9757] RSP: 002b:00007f9420810028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2301.862379][ T9757] RAX: ffffffffffffffda RBX: 00007f941fc15fa0 RCX: 00007f941f99c819
[ 2301.870349][ T9757] RDX: 0000200000000080 RSI: 00000000000089f0 RDI: 0000000000000005
[ 2301.878318][ T9757] RBP: 00007f9420810090 R08: 0000000000000000 R09: 0000000000000000
[ 2301.886287][ T9757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2301.894250][ T9757] R13: 00007f941fc16038 R14: 00007f941fc15fa0 R15: 00007ffcf35f1f08
[ 2301.902235][ T9757]  </TASK>
[ 2301.963404][ T9757] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2302.363486][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2302.372490][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2302.394900][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2302.434109][ T7425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2302.477084][ T9545] device veth0_macvtap entered promiscuous mode
[ 2303.031459][T26679] device hsr_slave_0 left promiscuous mode
[ 2303.045157][T26679] device hsr_slave_1 left promiscuous mode
[ 2303.060870][T26679] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2303.077205][T26679] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2303.089055][T26679] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2303.100240][T26679] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2303.112834][T26679] batman_adv: batadv0: Interface deactivated: virt_wifi0
[ 2303.127188][T26679] batman_adv: batadv0: Removing interface: virt_wifi0
[ 2303.137208][T26679] device batadv0 left promiscuous mode
[ 2303.143044][T26679] bridge0: port 3(batadv0) entered disabled state
[ 2303.158690][T26679] device bridge_slave_1 left promiscuous mode
[ 2303.167475][T26679] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2303.181442][T26679] device bridge_slave_0 left promiscuous mode
[ 2303.190264][T26679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2303.232030][T26679] device veth1_macvtap left promiscuous mode
[ 2303.245946][T26679] device veth0_macvtap left promiscuous mode
[ 2303.252245][T26679] device veth1_vlan left promiscuous mode
[ 2303.269312][T26679] device veth0_vlan left promiscuous mode
[ 2304.112544][T26679] team0 (unregistering): Port device team_slave_1 removed
[ 2304.152130][T26679] team0 (unregistering): Port device team_slave_0 removed
[ 2304.568322][ T9545] device veth1_macvtap entered promiscuous mode
[ 2304.582979][ T7406] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2304.719550][ T9787] device syzkaller0 entered promiscuous mode
[ 2307.033163][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2307.043917][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.054065][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2307.074659][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.093304][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2307.109712][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.119826][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2307.130827][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.142418][ T9545] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2307.159425][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2307.208023][ T4879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2307.230659][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2307.257535][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.283061][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2307.301265][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.333464][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2307.362794][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.379474][ T9545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2307.390336][ T9545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2307.406352][ T9545] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2307.468562][   T34] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2307.480531][   T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2307.495851][ T9545] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2307.511322][ T9545] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2307.520412][ T9545] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2307.529444][ T9545] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2307.734318][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2307.742362][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2307.800902][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2307.883411][   T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2307.891286][   T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2307.941850][   T34] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2307.950026][ T9822] sock: sock_timestamping_bind_phc: sock not bind to device
[ 2307.985886][ T9822] netlink: 48 bytes leftover after parsing attributes in process `syz.4.12866'.
[ 2308.881740][ T9837] mac80211_hwsim hwsim79 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 2309.733892][ T9869] netlink: 'syz.3.12885': attribute type 29 has an invalid length.
[ 2309.770192][ T9869] netlink: 'syz.3.12885': attribute type 29 has an invalid length.
[ 2310.131540][ T9881] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12890'.
[ 2310.366072][ T9886] netlink: 36 bytes leftover after parsing attributes in process `syz.1.12892'.
[ 2310.395897][ T9886] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 2310.803567][ T6683] Bluetooth: hci5: command 0x0406 tx timeout
[ 2311.071496][ T9900] FAULT_INJECTION: forcing a failure.
[ 2311.071496][ T9900] name failslab, interval 1, probability 0, space 0, times 0
[ 2311.131275][ T9900] CPU: 0 PID: 9900 Comm: syz.1.12899 Not tainted syzkaller #0
[ 2311.138789][ T9900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2311.148855][ T9900] Call Trace:
[ 2311.152127][ T9900]  <TASK>
[ 2311.155051][ T9900]  dump_stack_lvl+0x188/0x24e
[ 2311.159744][ T9900]  ? show_regs_print_info+0x12/0x12
[ 2311.164952][ T9900]  ? load_image+0x400/0x400
[ 2311.169463][ T9900]  ? __might_sleep+0xd0/0xd0
[ 2311.174057][ T9900]  ? __lock_acquire+0x7d10/0x7d10
[ 2311.179091][ T9900]  should_fail_ex+0x399/0x4d0
[ 2311.183770][ T9900]  should_failslab+0x5/0x20
[ 2311.188263][ T9900]  slab_pre_alloc_hook+0x59/0x310
[ 2311.193283][ T9900]  ? tomoyo_encode+0x27e/0x540
[ 2311.198052][ T9900]  __kmem_cache_alloc_node+0x4f/0x260
[ 2311.203440][ T9900]  ? tomoyo_encode+0x27e/0x540
[ 2311.208230][ T9900]  __kmalloc+0xa0/0x240
[ 2311.212400][ T9900]  tomoyo_encode+0x27e/0x540
[ 2311.216996][ T9900]  tomoyo_realpath_from_path+0x58e/0x5d0
[ 2311.222636][ T9900]  ? tomoyo_path_number_perm+0x205/0x650
[ 2311.228266][ T9900]  tomoyo_path_number_perm+0x22f/0x650
[ 2311.233724][ T9900]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2311.239213][ T9900]  ? __fget_files+0x28/0x4b0
[ 2311.243800][ T9900]  ? __fget_files+0x28/0x4b0
[ 2311.248394][ T9900]  security_file_ioctl+0x6c/0xa0
[ 2311.253328][ T9900]  __se_sys_ioctl+0x48/0x170
[ 2311.257916][ T9900]  do_syscall_64+0x4c/0xa0
[ 2311.262346][ T9900]  ? clear_bhb_loop+0x60/0xb0
[ 2311.267017][ T9900]  ? clear_bhb_loop+0x60/0xb0
[ 2311.271688][ T9900]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2311.277580][ T9900] RIP: 0033:0x7f29e219c819
[ 2311.281986][ T9900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2311.301589][ T9900] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2311.309996][ T9900] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2311.317957][ T9900] RDX: 0000200000000300 RSI: 0000000000008923 RDI: 0000000000000006
[ 2311.325920][ T9900] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2311.333890][ T9900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2311.341852][ T9900] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2311.349825][ T9900]  </TASK>
[ 2311.420637][ T9900] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2311.480873][ T9900] mac80211_hwsim hwsim74 ªªªªªª: renamed from wlan0
[ 2311.543363][ T9908] mac80211_hwsim hwsim68 ªªªªªª: renamed from wlan0
[ 2311.627192][ T9918] FAULT_INJECTION: forcing a failure.
[ 2311.627192][ T9918] name failslab, interval 1, probability 0, space 0, times 0
[ 2311.675414][ T9918] CPU: 1 PID: 9918 Comm: syz.3.12904 Not tainted syzkaller #0
[ 2311.683190][ T9918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2311.693259][ T9918] Call Trace:
[ 2311.696556][ T9918]  <TASK>
[ 2311.699498][ T9918]  dump_stack_lvl+0x188/0x24e
[ 2311.704201][ T9918]  ? show_regs_print_info+0x12/0x12
[ 2311.709425][ T9918]  ? load_image+0x400/0x400
[ 2311.713948][ T9918]  ? __might_sleep+0xd0/0xd0
[ 2311.718555][ T9918]  ? __lock_acquire+0x7d10/0x7d10
[ 2311.723686][ T9918]  ? mark_lock+0x94/0x320
[ 2311.728042][ T9918]  should_fail_ex+0x399/0x4d0
[ 2311.732747][ T9918]  should_failslab+0x5/0x20
[ 2311.737267][ T9918]  slab_pre_alloc_hook+0x59/0x310
[ 2311.742314][ T9918]  ? __get_vm_area_node+0x122/0x330
[ 2311.747535][ T9918]  __kmem_cache_alloc_node+0x4f/0x260
[ 2311.753014][ T9918]  ? __get_vm_area_node+0x122/0x330
[ 2311.758230][ T9918]  kmalloc_node_trace+0x22/0xe0
[ 2311.763107][ T9918]  __get_vm_area_node+0x122/0x330
[ 2311.768134][ T9918]  __vmalloc_node_range+0x357/0x13b0
[ 2311.773414][ T9918]  ? bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2311.778973][ T9918]  ? free_vm_area+0x50/0x50
[ 2311.783478][ T9918]  ? end_current_label_crit_section+0x170/0x170
[ 2311.789719][ T9918]  ? __lock_acquire+0x7d10/0x7d10
[ 2311.794753][ T9918]  ? bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2311.800298][ T9918]  __vmalloc+0x76/0x80
[ 2311.804373][ T9918]  ? bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2311.809915][ T9918]  bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2311.815285][ T9918]  ? bpf_lsm_capable+0x5/0x10
[ 2311.819965][ T9918]  bpf_prog_alloc+0x1c/0x1b0
[ 2311.824555][ T9918]  bpf_prog_load+0x7c9/0x1560
[ 2311.829235][ T9918]  ? map_freeze+0x390/0x390
[ 2311.833735][ T9918]  ? __might_fault+0xa6/0x120
[ 2311.838413][ T9918]  ? __might_fault+0xa6/0x120
[ 2311.843082][ T9918]  ? __might_fault+0xc2/0x120
[ 2311.847748][ T9918]  ? __might_fault+0xa6/0x120
[ 2311.852416][ T9918]  ? bpf_lsm_bpf+0x5/0x10
[ 2311.856734][ T9918]  ? security_bpf+0x7a/0xa0
[ 2311.861228][ T9918]  __sys_bpf+0x5b8/0x780
[ 2311.865468][ T9918]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2311.870844][ T9918]  ? lock_chain_count+0x20/0x20
[ 2311.875697][ T9918]  __x64_sys_bpf+0x78/0x90
[ 2311.880106][ T9918]  do_syscall_64+0x4c/0xa0
[ 2311.884516][ T9918]  ? clear_bhb_loop+0x60/0xb0
[ 2311.889198][ T9918]  ? clear_bhb_loop+0x60/0xb0
[ 2311.893866][ T9918]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2311.899748][ T9918] RIP: 0033:0x7f224a79c819
[ 2311.904152][ T9918] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2311.923755][ T9918] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2311.932164][ T9918] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2311.940129][ T9918] RDX: 0000000000000094 RSI: 0000200000000340 RDI: 0000000000000005
[ 2311.948102][ T9918] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2311.956067][ T9918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2311.964028][ T9918] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2311.972024][ T9918]  </TASK>
[ 2312.264163][ T9918] syz.3.12904: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[ 2312.287442][ T9928] netlink: 156 bytes leftover after parsing attributes in process `syz.4.12906'.
[ 2312.333477][ T9918] CPU: 1 PID: 9918 Comm: syz.3.12904 Not tainted syzkaller #0
[ 2312.340998][ T9918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2312.351078][ T9918] Call Trace:
[ 2312.354370][ T9918]  <TASK>
[ 2312.357313][ T9918]  dump_stack_lvl+0x188/0x24e
[ 2312.362013][ T9918]  ? cpuset_print_current_mems_allowed+0x1b/0x360
[ 2312.368445][ T9918]  ? show_regs_print_info+0x12/0x12
[ 2312.373673][ T9918]  ? load_image+0x400/0x400
[ 2312.378201][ T9918]  ? cpuset_print_current_mems_allowed+0x1b/0x360
[ 2312.384665][ T9918]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 2312.391190][ T9918]  warn_alloc+0x242/0x330
[ 2312.395545][ T9918]  ? __get_vm_area_node+0x122/0x330
[ 2312.400773][ T9918]  ? zone_watermark_ok_safe+0x270/0x270
[ 2312.406336][ T9918]  ? rcu_is_watching+0x11/0xa0
[ 2312.411128][ T9918]  ? __get_vm_area_node+0x318/0x330
[ 2312.416352][ T9918]  __vmalloc_node_range+0x37c/0x13b0
[ 2312.421683][ T9918]  ? free_vm_area+0x50/0x50
[ 2312.426204][ T9918]  ? end_current_label_crit_section+0x170/0x170
[ 2312.432461][ T9918]  ? __lock_acquire+0x7d10/0x7d10
[ 2312.437509][ T9918]  ? bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2312.443086][ T9918]  __vmalloc+0x76/0x80
[ 2312.447176][ T9918]  ? bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2312.452752][ T9918]  bpf_prog_alloc_no_stats+0x3a/0x3a0
[ 2312.458146][ T9918]  ? bpf_lsm_capable+0x5/0x10
[ 2312.462845][ T9918]  bpf_prog_alloc+0x1c/0x1b0
[ 2312.467458][ T9918]  bpf_prog_load+0x7c9/0x1560
[ 2312.472158][ T9918]  ? map_freeze+0x390/0x390
[ 2312.476672][ T9918]  ? __might_fault+0xa6/0x120
[ 2312.481369][ T9918]  ? __might_fault+0xa6/0x120
[ 2312.486053][ T9918]  ? __might_fault+0xc2/0x120
[ 2312.490741][ T9918]  ? __might_fault+0xa6/0x120
[ 2312.495430][ T9918]  ? bpf_lsm_bpf+0x5/0x10
[ 2312.499773][ T9918]  ? security_bpf+0x7a/0xa0
[ 2312.504391][ T9918]  __sys_bpf+0x5b8/0x780
[ 2312.508649][ T9918]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2312.514046][ T9918]  ? lock_chain_count+0x20/0x20
[ 2312.518922][ T9918]  __x64_sys_bpf+0x78/0x90
[ 2312.523358][ T9918]  do_syscall_64+0x4c/0xa0
[ 2312.527789][ T9918]  ? clear_bhb_loop+0x60/0xb0
[ 2312.532491][ T9918]  ? clear_bhb_loop+0x60/0xb0
[ 2312.537229][ T9918]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2312.543144][ T9918] RIP: 0033:0x7f224a79c819
[ 2312.547581][ T9918] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2312.567229][ T9918] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2312.575663][ T9918] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2312.583652][ T9918] RDX: 0000000000000094 RSI: 0000200000000340 RDI: 0000000000000005
[ 2312.591642][ T9918] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2312.599635][ T9918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2312.607623][ T9918] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2312.615639][ T9918]  </TASK>
[ 2312.652831][ T9928] netlink: 132 bytes leftover after parsing attributes in process `syz.4.12906'.
[ 2312.687877][ T9928] netlink: 'syz.4.12906': attribute type 12 has an invalid length.
[ 2312.703041][ T9928] netlink: 132 bytes leftover after parsing attributes in process `syz.4.12906'.
[ 2312.768479][ T9918] Mem-Info:
[ 2312.774485][ T9918] active_anon:27682 inactive_anon:0 isolated_anon:0
[ 2312.774485][ T9918]  active_file:23963 inactive_file:40852 isolated_file:0
[ 2312.774485][ T9918]  unevictable:768 dirty:376 writeback:0
[ 2312.774485][ T9918]  slab_reclaimable:21592 slab_unreclaimable:96365
[ 2312.774485][ T9918]  mapped:41591 shmem:21114 pagetables:691
[ 2312.774485][ T9918]  sec_pagetables:0 bounce:0
[ 2312.774485][ T9918]  kernel_misc_reclaimable:0
[ 2312.774485][ T9918]  free:1294422 free_pcp:3597 free_cma:0
[ 2312.824308][ T7425] wlan1: Trigger new scan to find an IBSS to join
[ 2312.933365][ T9918] Node 0 active_anon:108128kB inactive_anon:0kB active_file:95852kB inactive_file:163204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:164164kB dirty:1500kB writeback:0kB shmem:80620kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:10460kB pagetables:2664kB sec_pagetables:0kB all_unreclaimable? no
[ 2313.000881][ T9918] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 2313.081525][ T9918] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2313.204072][ T9918] lowmem_reserve[]: 0 2527 2528 2528 2528
[ 2313.210655][ T9918] Node 0 DMA32 free:1252112kB boost:0kB min:34692kB low:43364kB high:52036kB reserved_highatomic:0KB active_anon:103028kB inactive_anon:0kB active_file:95852kB inactive_file:163204kB unevictable:1536kB writepending:1500kB present:3129332kB managed:2592964kB mlocked:0kB bounce:0kB free_pcp:14832kB local_pcp:11780kB free_cma:0kB
[ 2313.287983][ T9918] lowmem_reserve[]: 0 0 1 1 1
[ 2313.292787][ T9918] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:4kB free_cma:0kB
[ 2313.353536][ T9918] lowmem_reserve[]: 0 0 0 0 0
[ 2313.358424][ T9918] Node 1 Normal free:3908640kB boost:0kB min:55192kB low:68988kB high:82784kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:7360kB local_pcp:0kB free_cma:0kB
[ 2313.413688][ T9918] lowmem_reserve[]: 0 0 0 0 0
[ 2313.418469][ T9918] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2313.482684][ T9918] Node 0 DMA32: 2452*4kB (UME) 1750*8kB (UME) 451*16kB (UME) 1740*32kB (UME) 1267*64kB (UME) 903*128kB (UME) 310*256kB (UME) 155*512kB (UME) 57*1024kB (UME) 25*2048kB (UM) 171*4096kB (UM) = 1252080kB
[ 2313.587541][ T9918] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 2313.659508][ T9918] Node 1 Normal: 224*4kB (UME) 70*8kB (UME) 39*16kB (UME) 184*32kB (UME) 72*64kB (UE) 16*128kB (UME) 11*256kB (UM) 4*512kB (UME) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3908640kB
[ 2313.754918][ T9918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2313.781198][ T9918] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2313.817233][ T9918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2313.849548][ T9918] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2313.872493][ T9918] 82857 total pagecache pages
[ 2313.889820][ T9918] 0 pages in swap cache
[ 2313.929268][ T9918] Free swap  = 124996kB
[ 2313.934532][ T9918] Total swap = 124996kB
[ 2313.974354][ T9918] 2097051 pages RAM
[ 2313.978232][ T9918] 0 pages HighMem/MovableOnly
[ 2313.982934][ T9918] 415209 pages reserved
[ 2314.030237][ T9918] 0 pages cma reserved
[ 2314.674369][ T9966] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.12917'.
[ 2315.315151][ T9982] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.12925'.
[ 2316.289166][T10006] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.12933'.
[ 2316.436313][T10008] can: request_module (can-proto-0) failed.
[ 2316.616542][T10014] IPv6: Can't replace route, no match found
[ 2316.628675][T10018] mac80211_hwsim hwsim69 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 2316.715942][T10019] mac80211_hwsim hwsim75 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 2317.773952][ T7406] wlan1: Trigger new scan to find an IBSS to join
[ 2318.841573][ T4404] wlan1: Creating new IBSS network, BSSID 6e:4f:75:34:e9:03
[ 2319.332356][T10067] netlink: 'syz.2.12953': attribute type 21 has an invalid length.
[ 2319.516542][T10074] netlink: 'syz.3.12955': attribute type 33 has an invalid length.
[ 2319.533580][T10074] netlink: 152 bytes leftover after parsing attributes in process `syz.3.12955'.
[ 2319.809059][T10082] netlink: 16054 bytes leftover after parsing attributes in process `syz.3.12959'.
[ 2319.869704][T10083] netlink: 'syz.3.12959': attribute type 21 has an invalid length.
[ 2319.959086][T10083] netlink: 'syz.3.12959': attribute type 11 has an invalid length.
[ 2320.004441][T10082] netlink: 'syz.3.12959': attribute type 21 has an invalid length.
[ 2320.013783][T10082] netlink: 'syz.3.12959': attribute type 11 has an invalid length.
[ 2322.975441][T10146] FAULT_INJECTION: forcing a failure.
[ 2322.975441][T10146] name failslab, interval 1, probability 0, space 0, times 0
[ 2323.013332][T10146] CPU: 0 PID: 10146 Comm: syz.3.12982 Not tainted syzkaller #0
[ 2323.020941][T10146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2323.031108][T10146] Call Trace:
[ 2323.034415][T10146]  <TASK>
[ 2323.037465][T10146]  dump_stack_lvl+0x188/0x24e
[ 2323.042171][T10146]  ? show_regs_print_info+0x12/0x12
[ 2323.047425][T10146]  ? load_image+0x400/0x400
[ 2323.051959][T10146]  ? __might_sleep+0xd0/0xd0
[ 2323.056657][T10146]  ? __lock_acquire+0x7d10/0x7d10
[ 2323.061727][T10146]  should_fail_ex+0x399/0x4d0
[ 2323.066430][T10146]  should_failslab+0x5/0x20
[ 2323.070947][T10146]  slab_pre_alloc_hook+0x59/0x310
[ 2323.075997][T10146]  kmem_cache_alloc_node+0x5a/0x320
[ 2323.081211][T10146]  ? __alloc_skb+0xfc/0x7e0
[ 2323.085740][T10146]  __alloc_skb+0xfc/0x7e0
[ 2323.090090][T10146]  ? netlink_autobind+0xda/0x300
[ 2323.095042][T10146]  netlink_sendmsg+0x654/0xbd0
[ 2323.099828][T10146]  ? netlink_getsockopt+0x550/0x550
[ 2323.105030][T10146]  ? aa_sock_msg_perm+0x94/0x150
[ 2323.109976][T10146]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2323.115260][T10146]  ? security_socket_sendmsg+0x7c/0xa0
[ 2323.120739][T10146]  ? netlink_getsockopt+0x550/0x550
[ 2323.125948][T10146]  ____sys_sendmsg+0x5be/0x970
[ 2323.130716][T10146]  ? __sys_sendmsg_sock+0x30/0x30
[ 2323.135734][T10146]  ? __import_iovec+0x315/0x500
[ 2323.140672][T10146]  ? import_iovec+0x6f/0xa0
[ 2323.145172][T10146]  ___sys_sendmsg+0x2a2/0x360
[ 2323.149850][T10146]  ? __sys_sendmsg+0x290/0x290
[ 2323.154624][T10146]  ? __lock_acquire+0x7d10/0x7d10
[ 2323.159660][T10146]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2323.164509][T10146]  ? __x64_sys_sendmsg+0x80/0x80
[ 2323.169450][T10146]  ? lockdep_hardirqs_on+0x94/0x140
[ 2323.174732][T10146]  do_syscall_64+0x4c/0xa0
[ 2323.179144][T10146]  ? clear_bhb_loop+0x60/0xb0
[ 2323.183825][T10146]  ? clear_bhb_loop+0x60/0xb0
[ 2323.188499][T10146]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2323.194387][T10146] RIP: 0033:0x7f224a79c819
[ 2323.198813][T10146] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2323.218424][T10146] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2323.226835][T10146] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2323.234812][T10146] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2323.242796][T10146] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2323.250844][T10146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2323.258805][T10146] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2323.266784][T10146]  </TASK>
[ 2323.301148][T10144] device syzkaller0 entered promiscuous mode
[ 2323.316420][T10150] netlink: 132 bytes leftover after parsing attributes in process `syz.2.12981'.
[ 2327.791741][T10178] netlink: 'syz.0.12990': attribute type 11 has an invalid length.
[ 2327.814083][T10180] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[ 2327.849411][T10178] netlink: 'syz.0.12990': attribute type 6 has an invalid length.
[ 2327.863827][T10180] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[ 2327.904002][T10178] netlink: 125060 bytes leftover after parsing attributes in process `syz.0.12990'.
[ 2327.930218][T10180] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 2328.442986][T10210] netlink: 'syz.4.13000': attribute type 10 has an invalid length.
[ 2328.919026][T10221] netlink: 'syz.0.13005': attribute type 10 has an invalid length.
[ 2328.951499][T10221] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2328.961061][T10221] device batadv0 entered promiscuous mode
[ 2328.975703][T10221] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 2329.152911][T10230] FAULT_INJECTION: forcing a failure.
[ 2329.152911][T10230] name failslab, interval 1, probability 0, space 0, times 0
[ 2329.174707][T10230] CPU: 1 PID: 10230 Comm: syz.2.13010 Not tainted syzkaller #0
[ 2329.182294][T10230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2329.192347][T10230] Call Trace:
[ 2329.195630][T10230]  <TASK>
[ 2329.198553][T10230]  dump_stack_lvl+0x188/0x24e
[ 2329.203247][T10230]  ? show_regs_print_info+0x12/0x12
[ 2329.208441][T10230]  ? load_image+0x400/0x400
[ 2329.212940][T10230]  ? __might_sleep+0xd0/0xd0
[ 2329.217524][T10230]  ? __lock_acquire+0x7d10/0x7d10
[ 2329.222547][T10230]  should_fail_ex+0x399/0x4d0
[ 2329.227232][T10230]  should_failslab+0x5/0x20
[ 2329.231769][T10230]  slab_pre_alloc_hook+0x59/0x310
[ 2329.236799][T10230]  ? tomoyo_encode+0x27e/0x540
[ 2329.241579][T10230]  __kmem_cache_alloc_node+0x4f/0x260
[ 2329.246950][T10230]  ? tomoyo_encode+0x27e/0x540
[ 2329.251722][T10230]  __kmalloc+0xa0/0x240
[ 2329.255888][T10230]  tomoyo_encode+0x27e/0x540
[ 2329.260491][T10230]  tomoyo_realpath_from_path+0x58e/0x5d0
[ 2329.266138][T10230]  ? tomoyo_path_number_perm+0x205/0x650
[ 2329.271774][T10230]  tomoyo_path_number_perm+0x22f/0x650
[ 2329.277242][T10230]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2329.282701][T10230]  ? ksys_write+0x1c0/0x250
[ 2329.287225][T10230]  ? common_file_perm+0x171/0x1c0
[ 2329.292267][T10230]  ? __fget_files+0x28/0x4b0
[ 2329.296852][T10230]  ? __fget_files+0x28/0x4b0
[ 2329.301466][T10230]  security_file_ioctl+0x6c/0xa0
[ 2329.306433][T10230]  __se_sys_ioctl+0x48/0x170
[ 2329.311019][T10230]  do_syscall_64+0x4c/0xa0
[ 2329.315437][T10230]  ? clear_bhb_loop+0x60/0xb0
[ 2329.320178][T10230]  ? clear_bhb_loop+0x60/0xb0
[ 2329.324849][T10230]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2329.330738][T10230] RIP: 0033:0x7fb650b9c819
[ 2329.335155][T10230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2329.354844][T10230] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2329.363277][T10230] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2329.371262][T10230] RDX: 00002000000000c0 RSI: 0000000040082406 RDI: 0000000000000003
[ 2329.379224][T10230] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2329.387188][T10230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2329.395148][T10230] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2329.403120][T10230]  </TASK>
[ 2329.430727][   T34] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 2329.440158][   T34] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 2329.483442][T10230] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2330.382609][T10262] netlink: 'syz.2.13022': attribute type 10 has an invalid length.
[ 2330.692363][T10278] netlink: 'syz.3.13027': attribute type 11 has an invalid length.
[ 2330.701084][T10278] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.13027'.
[ 2330.713744][T10278] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2331.123087][T10295] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 2331.156999][T10295] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 2332.181454][T10324] netlink: 'syz.3.13045': attribute type 10 has an invalid length.
[ 2332.221216][T10324] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2332.228897][T10324] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2332.257788][T10324] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2332.264999][T10324] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2332.272417][T10324] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2332.279628][T10324] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2332.295058][T10324] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 2332.822131][T10348] FAULT_INJECTION: forcing a failure.
[ 2332.822131][T10348] name failslab, interval 1, probability 0, space 0, times 0
[ 2332.835287][T10348] CPU: 1 PID: 10348 Comm: syz.4.13054 Not tainted syzkaller #0
[ 2332.842857][T10348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2332.852935][T10348] Call Trace:
[ 2332.856225][T10348]  <TASK>
[ 2332.859179][T10348]  dump_stack_lvl+0x188/0x24e
[ 2332.863883][T10348]  ? show_regs_print_info+0x12/0x12
[ 2332.869115][T10348]  ? load_image+0x400/0x400
[ 2332.873652][T10348]  should_fail_ex+0x399/0x4d0
[ 2332.878363][T10348]  should_failslab+0x5/0x20
[ 2332.882881][T10348]  slab_pre_alloc_hook+0x59/0x310
[ 2332.887923][T10348]  ? do_raw_spin_lock+0x128/0x2f0
[ 2332.892973][T10348]  ? tipc_nametbl_lookup_group+0x786/0xc10
[ 2332.898803][T10348]  __kmem_cache_alloc_node+0x4f/0x260
[ 2332.904197][T10348]  ? tipc_nametbl_lookup_group+0x786/0xc10
[ 2332.910035][T10348]  kmalloc_trace+0x26/0xe0
[ 2332.914476][T10348]  tipc_nametbl_lookup_group+0x786/0xc10
[ 2332.920136][T10348]  ? tipc_nametbl_lookup_group+0xa8/0xc10
[ 2332.925881][T10348]  __tipc_sendmsg+0x1565/0x2c90
[ 2332.930767][T10348]  ? rht_lock+0x150/0x150
[ 2332.935125][T10348]  ? verify_lock_unused+0x140/0x140
[ 2332.940344][T10348]  ? verify_lock_unused+0x140/0x140
[ 2332.945583][T10348]  ? mark_lock+0x94/0x320
[ 2332.949939][T10348]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2332.955990][T10348]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2332.961377][T10348]  ? lockdep_hardirqs_on+0x94/0x140
[ 2332.966589][T10348]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2332.971978][T10348]  ? _local_bh_enable+0xa0/0xa0
[ 2332.976848][T10348]  tipc_sendmsg+0x51/0x70
[ 2332.981204][T10348]  ? tipc_recvmsg+0x1400/0x1400
[ 2332.986072][T10348]  ____sys_sendmsg+0x5be/0x970
[ 2332.990870][T10348]  ? __sys_sendmsg_sock+0x30/0x30
[ 2332.995918][T10348]  ? __import_iovec+0x315/0x500
[ 2333.000792][T10348]  ? import_iovec+0x6f/0xa0
[ 2333.005315][T10348]  ___sys_sendmsg+0x2a2/0x360
[ 2333.010020][T10348]  ? __sys_sendmsg+0x290/0x290
[ 2333.014820][T10348]  ? __lock_acquire+0x7d10/0x7d10
[ 2333.019886][T10348]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2333.024772][T10348]  ? __x64_sys_sendmsg+0x80/0x80
[ 2333.029758][T10348]  ? lockdep_hardirqs_on+0x94/0x140
[ 2333.034986][T10348]  do_syscall_64+0x4c/0xa0
[ 2333.039439][T10348]  ? clear_bhb_loop+0x60/0xb0
[ 2333.044143][T10348]  ? clear_bhb_loop+0x60/0xb0
[ 2333.048852][T10348]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2333.054775][T10348] RIP: 0033:0x7f6bb379c819
[ 2333.059220][T10348] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2333.078879][T10348] RSP: 002b:00007f6bb4745028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2333.087320][T10348] RAX: ffffffffffffffda RBX: 00007f6bb3a15fa0 RCX: 00007f6bb379c819
[ 2333.095312][T10348] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000008
[ 2333.103385][T10348] RBP: 00007f6bb4745090 R08: 0000000000000000 R09: 0000000000000000
[ 2333.111365][T10348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2333.119353][T10348] R13: 00007f6bb3a16038 R14: 00007f6bb3a15fa0 R15: 00007ffdb2052eb8
[ 2333.127357][T10348]  </TASK>
[ 2333.591283][T21508] Bluetooth: hci0: ISO packet for unknown connection handle 5
[ 2333.737853][T10369] netlink: 14548 bytes leftover after parsing attributes in process `syz.1.13061'.
[ 2333.900259][T10383] netlink: 'syz.4.13066': attribute type 10 has an invalid length.
[ 2334.846581][T10407] FAULT_INJECTION: forcing a failure.
[ 2334.846581][T10407] name failslab, interval 1, probability 0, space 0, times 0
[ 2334.904290][T10407] CPU: 1 PID: 10407 Comm: syz.4.13077 Not tainted syzkaller #0
[ 2334.911897][T10407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2334.921974][T10407] Call Trace:
[ 2334.925268][T10407]  <TASK>
[ 2334.928206][T10407]  dump_stack_lvl+0x188/0x24e
[ 2334.932922][T10407]  ? show_regs_print_info+0x12/0x12
[ 2334.938158][T10407]  ? load_image+0x400/0x400
[ 2334.942702][T10407]  ? __might_sleep+0xd0/0xd0
[ 2334.947399][T10407]  ? __lock_acquire+0x7d10/0x7d10
[ 2334.952453][T10407]  should_fail_ex+0x399/0x4d0
[ 2334.957181][T10407]  should_failslab+0x5/0x20
[ 2334.961700][T10407]  slab_pre_alloc_hook+0x59/0x310
[ 2334.966745][T10407]  ? bpf_prog_test_run_skb+0x234/0x12a0
[ 2334.972315][T10407]  __kmem_cache_alloc_node+0x4f/0x260
[ 2334.977714][T10407]  ? bpf_prog_test_run_skb+0x234/0x12a0
[ 2334.983280][T10407]  __kmalloc+0xa0/0x240
[ 2334.987463][T10407]  bpf_prog_test_run_skb+0x234/0x12a0
[ 2334.992859][T10407]  ? __fget_files+0x28/0x4b0
[ 2334.997468][T10407]  ? __fget_files+0x28/0x4b0
[ 2335.002085][T10407]  ? __fget_files+0x43d/0x4b0
[ 2335.006796][T10407]  ? cpu_online+0xa0/0xa0
[ 2335.011151][T10407]  bpf_prog_test_run+0x31e/0x390
[ 2335.016139][T10407]  __sys_bpf+0x62b/0x780
[ 2335.020422][T10407]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2335.025836][T10407]  ? lock_chain_count+0x20/0x20
[ 2335.030727][T10407]  __x64_sys_bpf+0x78/0x90
[ 2335.035172][T10407]  do_syscall_64+0x4c/0xa0
[ 2335.039637][T10407]  ? clear_bhb_loop+0x60/0xb0
[ 2335.044341][T10407]  ? clear_bhb_loop+0x60/0xb0
[ 2335.049050][T10407]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2335.054967][T10407] RIP: 0033:0x7f6bb379c819
[ 2335.059402][T10407] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2335.079035][T10407] RSP: 002b:00007f6bb4745028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2335.087477][T10407] RAX: ffffffffffffffda RBX: 00007f6bb3a15fa0 RCX: 00007f6bb379c819
[ 2335.095470][T10407] RDX: 000000000000002a RSI: 0000200000000080 RDI: 000000000000000a
[ 2335.103548][T10407] RBP: 00007f6bb4745090 R08: 0000000000000000 R09: 0000000000000000
[ 2335.111537][T10407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2335.119529][T10407] R13: 00007f6bb3a16038 R14: 00007f6bb3a15fa0 R15: 00007ffdb2052eb8
[ 2335.127535][T10407]  </TASK>
[ 2335.837482][T10424] FAULT_INJECTION: forcing a failure.
[ 2335.837482][T10424] name failslab, interval 1, probability 0, space 0, times 0
[ 2335.853360][T10424] CPU: 1 PID: 10424 Comm: syz.1.13083 Not tainted syzkaller #0
[ 2335.860956][T10424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2335.871028][T10424] Call Trace:
[ 2335.874580][T10424]  <TASK>
[ 2335.877523][T10424]  dump_stack_lvl+0x188/0x24e
[ 2335.882228][T10424]  ? show_regs_print_info+0x12/0x12
[ 2335.887449][T10424]  ? load_image+0x400/0x400
[ 2335.891968][T10424]  ? __might_sleep+0xd0/0xd0
[ 2335.896569][T10424]  ? __lock_acquire+0x7d10/0x7d10
[ 2335.901611][T10424]  ? verify_lock_unused+0x140/0x140
[ 2335.906825][T10424]  should_fail_ex+0x399/0x4d0
[ 2335.911516][T10424]  should_failslab+0x5/0x20
[ 2335.916028][T10424]  slab_pre_alloc_hook+0x59/0x310
[ 2335.921096][T10424]  ? __get_vm_area_node+0x122/0x330
[ 2335.926317][T10424]  __kmem_cache_alloc_node+0x4f/0x260
[ 2335.931701][T10424]  ? __get_vm_area_node+0x122/0x330
[ 2335.936911][T10424]  kmalloc_node_trace+0x22/0xe0
[ 2335.941780][T10424]  __get_vm_area_node+0x122/0x330
[ 2335.946823][T10424]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2335.952212][T10424]  __vmalloc_node_range+0x357/0x13b0
[ 2335.957515][T10424]  ? netlink_sendmsg+0x5ec/0xbd0
[ 2335.962473][T10424]  ? netlink_insert+0x1034/0x13c0
[ 2335.967531][T10424]  ? free_vm_area+0x50/0x50
[ 2335.972055][T10424]  ? netlink_sendmsg+0x5ec/0xbd0
[ 2335.977036][T10424]  vmalloc+0x75/0x80
[ 2335.980949][T10424]  ? netlink_sendmsg+0x5ec/0xbd0
[ 2335.985908][T10424]  netlink_sendmsg+0x5ec/0xbd0
[ 2335.990696][T10424]  ? netlink_getsockopt+0x550/0x550
[ 2335.995922][T10424]  ? aa_sock_msg_perm+0x94/0x150
[ 2336.000872][T10424]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2336.006177][T10424]  ? security_socket_sendmsg+0x7c/0xa0
[ 2336.011663][T10424]  ? netlink_getsockopt+0x550/0x550
[ 2336.016891][T10424]  ____sys_sendmsg+0x5be/0x970
[ 2336.021684][T10424]  ? __sys_sendmsg_sock+0x30/0x30
[ 2336.026809][T10424]  ? __import_iovec+0x315/0x500
[ 2336.031677][T10424]  ? import_iovec+0x6f/0xa0
[ 2336.036199][T10424]  ___sys_sendmsg+0x2a2/0x360
[ 2336.040905][T10424]  ? __sys_sendmsg+0x290/0x290
[ 2336.045713][T10424]  ? __lock_acquire+0x7d10/0x7d10
[ 2336.050792][T10424]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2336.055762][T10424]  ? __x64_sys_sendmsg+0x80/0x80
[ 2336.060881][T10424]  ? lockdep_hardirqs_on+0x94/0x140
[ 2336.066279][T10424]  do_syscall_64+0x4c/0xa0
[ 2336.070805][T10424]  ? clear_bhb_loop+0x60/0xb0
[ 2336.075502][T10424]  ? clear_bhb_loop+0x60/0xb0
[ 2336.080198][T10424]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2336.086107][T10424] RIP: 0033:0x7f29e219c819
[ 2336.090540][T10424] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2336.110167][T10424] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2336.118604][T10424] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2336.126594][T10424] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2336.134579][T10424] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2336.142566][T10424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2336.150556][T10424] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2336.158559][T10424]  </TASK>
[ 2336.174070][T10424] syz.1.13083: vmalloc error: size 213312, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[ 2336.198980][T10424] CPU: 0 PID: 10424 Comm: syz.1.13083 Not tainted syzkaller #0
[ 2336.206585][T10424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2336.216646][T10424] Call Trace:
[ 2336.219917][T10424]  <TASK>
[ 2336.222849][T10424]  dump_stack_lvl+0x188/0x24e
[ 2336.227557][T10424]  ? cpuset_print_current_mems_allowed+0x1b/0x360
[ 2336.234000][T10424]  ? show_regs_print_info+0x12/0x12
[ 2336.239230][T10424]  ? load_image+0x400/0x400
[ 2336.243764][T10424]  ? cpuset_print_current_mems_allowed+0x1b/0x360
[ 2336.250284][T10424]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 2336.256896][T10424]  warn_alloc+0x242/0x330
[ 2336.261265][T10424]  ? zone_watermark_ok_safe+0x270/0x270
[ 2336.266931][T10424]  ? __get_vm_area_node+0x318/0x330
[ 2336.272154][T10424]  ? __local_bh_enable_ip+0x136/0x1c0
[ 2336.277550][T10424]  __vmalloc_node_range+0x37c/0x13b0
[ 2336.282879][T10424]  ? netlink_insert+0x1034/0x13c0
[ 2336.287964][T10424]  ? free_vm_area+0x50/0x50
[ 2336.292502][T10424]  ? netlink_sendmsg+0x5ec/0xbd0
[ 2336.297471][T10424]  vmalloc+0x75/0x80
[ 2336.301383][T10424]  ? netlink_sendmsg+0x5ec/0xbd0
[ 2336.306344][T10424]  netlink_sendmsg+0x5ec/0xbd0
[ 2336.311150][T10424]  ? netlink_getsockopt+0x550/0x550
[ 2336.316375][T10424]  ? aa_sock_msg_perm+0x94/0x150
[ 2336.321332][T10424]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2336.326631][T10424]  ? security_socket_sendmsg+0x7c/0xa0
[ 2336.332116][T10424]  ? netlink_getsockopt+0x550/0x550
[ 2336.337336][T10424]  ____sys_sendmsg+0x5be/0x970
[ 2336.342133][T10424]  ? __sys_sendmsg_sock+0x30/0x30
[ 2336.347179][T10424]  ? __import_iovec+0x315/0x500
[ 2336.352052][T10424]  ? import_iovec+0x6f/0xa0
[ 2336.356577][T10424]  ___sys_sendmsg+0x2a2/0x360
[ 2336.361380][T10424]  ? __sys_sendmsg+0x290/0x290
[ 2336.366191][T10424]  ? __lock_acquire+0x7d10/0x7d10
[ 2336.371225][T10424]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2336.376089][T10424]  ? __x64_sys_sendmsg+0x80/0x80
[ 2336.381400][T10424]  ? lockdep_hardirqs_on+0x94/0x140
[ 2336.386621][T10424]  do_syscall_64+0x4c/0xa0
[ 2336.391046][T10424]  ? clear_bhb_loop+0x60/0xb0
[ 2336.395828][T10424]  ? clear_bhb_loop+0x60/0xb0
[ 2336.400516][T10424]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2336.406416][T10424] RIP: 0033:0x7f29e219c819
[ 2336.410829][T10424] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2336.430428][T10424] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2336.438842][T10424] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2336.446829][T10424] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2336.454893][T10424] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2336.462875][T10424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2336.470845][T10424] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2336.479258][T10424]  </TASK>
[ 2336.486631][T10424] Mem-Info:
[ 2336.490769][T21508] Bluetooth: hci2: command 0x0406 tx timeout
[ 2336.512246][T10424] active_anon:7891 inactive_anon:0 isolated_anon:0
[ 2336.512246][T10424]  active_file:23963 inactive_file:40860 isolated_file:0
[ 2336.512246][T10424]  unevictable:768 dirty:254 writeback:0
[ 2336.512246][T10424]  slab_reclaimable:21572 slab_unreclaimable:97146
[ 2336.512246][T10424]  mapped:33157 shmem:1361 pagetables:648
[ 2336.512246][T10424]  sec_pagetables:0 bounce:0
[ 2336.512246][T10424]  kernel_misc_reclaimable:0
[ 2336.512246][T10424]  free:1307198 free_pcp:8491 free_cma:0
[ 2336.707861][T10424] Node 0 active_anon:31364kB inactive_anon:0kB active_file:95852kB inactive_file:163236kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:132628kB dirty:1012kB writeback:0kB shmem:3908kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:10680kB pagetables:2492kB sec_pagetables:0kB all_unreclaimable? no
[ 2336.852225][T10424] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 2336.899240][T10424] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2336.997046][T10424] lowmem_reserve[]: 0 2527 2528 2528 2528
[ 2337.010755][T10424] Node 0 DMA32 free:1327176kB boost:0kB min:34692kB low:43364kB high:52036kB reserved_highatomic:0KB active_anon:31180kB inactive_anon:0kB active_file:95852kB inactive_file:163244kB unevictable:1536kB writepending:1016kB present:3129332kB managed:2592964kB mlocked:0kB bounce:0kB free_pcp:8376kB local_pcp:7132kB free_cma:0kB
[ 2337.028690][T10443] netlink: 60 bytes leftover after parsing attributes in process `syz.4.13091'.
[ 2337.114755][T10424] lowmem_reserve[]: 0 0 1 1 1
[ 2337.123520][T10424] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:12kB free_cma:0kB
[ 2337.236644][T10448] FAULT_INJECTION: forcing a failure.
[ 2337.236644][T10448] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2337.245254][T10424] lowmem_reserve[]:
[ 2337.268724][T10450] netlink: 127868 bytes leftover after parsing attributes in process `syz.0.13094'.
[ 2337.286703][T10424]  0 0 0 0 0
[ 2337.289995][T10424] Node 1 Normal free:3908640kB boost:0kB min:55192kB low:68988kB high:82784kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:7360kB local_pcp:7360kB free_cma:0kB
[ 2337.321722][T10448] CPU: 1 PID: 10448 Comm: syz.2.13093 Not tainted syzkaller #0
[ 2337.329402][T10448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2337.335959][T10424] lowmem_reserve[]:
[ 2337.339459][T10448] Call Trace:
[ 2337.339470][T10448]  <TASK>
[ 2337.339478][T10448]  dump_stack_lvl+0x188/0x24e
[ 2337.343761][T10424]  0
[ 2337.346571][T10448]  ? show_regs_print_info+0x12/0x12
[ 2337.346602][T10448]  ? load_image+0x400/0x400
[ 2337.349610][T10424]  0
[ 2337.354624][T10448]  ? __lock_acquire+0x7d10/0x7d10
[ 2337.354657][T10448]  should_fail_ex+0x399/0x4d0
[ 2337.354680][T10448]  _copy_from_user+0x2c/0x170
[ 2337.354703][T10448]  iovec_from_user+0x143/0x360
[ 2337.357656][T10424]  0
[ 2337.362375][T10448]  __import_iovec+0x6d/0x500
[ 2337.362405][T10448]  import_iovec+0x6f/0xa0
[ 2337.368421][T10424]  0
[ 2337.369375][T10448]  ___sys_sendmsg+0x252/0x360
[ 2337.374706][T10424]  0
[ 2337.379054][T10448]  ? __sys_sendmsg+0x290/0x290
[ 2337.379122][T10448]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2337.385768][T10424] 
[ 2337.388529][T10448]  ? __x64_sys_sendmsg+0x80/0x80
[ 2337.391076][T10424] Node 0 
[ 2337.395606][T10448]  ? lockdep_hardirqs_on+0x94/0x140
[ 2337.395630][T10448]  do_syscall_64+0x4c/0xa0
[ 2337.395653][T10448]  ? clear_bhb_loop+0x60/0xb0
[ 2337.395673][T10448]  ? clear_bhb_loop+0x60/0xb0
[ 2337.395696][T10448]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2337.400807][T10424] DMA: 
[ 2337.402480][T10448] RIP: 0033:0x7fb650b9c819
[ 2337.402501][T10448] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2337.407532][T10424] 0*4kB 
[ 2337.409642][T10448] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2337.409664][T10448] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2337.409678][T10448] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2337.417053][T10424] 0*8kB 
[ 2337.419234][T10448] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2337.419250][T10448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2337.419262][T10448] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2337.421617][T10424] 0*16kB 
[ 2337.426497][T10448]  </TASK>
[ 2337.490245][T10456] netlink: 194236 bytes leftover after parsing attributes in process `syz.3.13095'.
[ 2337.515704][T10424] 0*32kB 
[ 2337.529674][T10456] netlink: zone id is out of range
[ 2337.566008][T10456] netlink: zone id is out of range
[ 2337.571166][T10456] netlink: zone id is out of range
[ 2337.580137][T10456] netlink: zone id is out of range
[ 2337.614685][T10456] netlink: zone id is out of range
[ 2337.620095][T10456] netlink: get zone limit has 8 unknown bytes
[ 2337.627446][T10424] 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2337.682719][T10424] Node 0 DMA32: 2220*4kB (UME) 3079*8kB (UME) 2050*16kB (UME) 2517*32kB (UME) 1514*64kB (UME) 924*128kB (UME) 312*256kB (UME) 160*512kB (UME) 57*1024kB (UME) 25*2048kB (UM) 169*4096kB (UM) = 1325608kB
[ 2337.757133][T10424] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 2337.824054][T10424] Node 1 Normal: 224*4kB (UME) 70*8kB (UME) 39*16kB (UME) 184*32kB (UME) 72*64kB (UE) 16*128kB (UME) 11*256kB (UM) 4*512kB (UME) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3908640kB
[ 2337.883375][T10424] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2337.914517][T10424] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2337.943423][T10424] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2337.981568][T10424] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2337.999336][T10424] 66186 total pagecache pages
[ 2338.030407][T10424] 0 pages in swap cache
[ 2338.042977][T10424] Free swap  = 124996kB
[ 2338.050393][T10424] Total swap = 124996kB
[ 2338.059154][T10424] 2097051 pages RAM
[ 2338.063096][T10424] 0 pages HighMem/MovableOnly
[ 2338.070549][T10424] 415209 pages reserved
[ 2338.083649][T10424] 0 pages cma reserved
[ 2338.202185][T10476] FAULT_INJECTION: forcing a failure.
[ 2338.202185][T10476] name failslab, interval 1, probability 0, space 0, times 0
[ 2338.248372][T10476] CPU: 0 PID: 10476 Comm: syz.1.13104 Not tainted syzkaller #0
[ 2338.255996][T10476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2338.266079][T10476] Call Trace:
[ 2338.269419][T10476]  <TASK>
[ 2338.272374][T10476]  dump_stack_lvl+0x188/0x24e
[ 2338.277139][T10476]  ? show_regs_print_info+0x12/0x12
[ 2338.282468][T10476]  ? load_image+0x400/0x400
[ 2338.287027][T10476]  ? __might_sleep+0xd0/0xd0
[ 2338.291651][T10476]  ? __lock_acquire+0x7d10/0x7d10
[ 2338.296721][T10476]  should_fail_ex+0x399/0x4d0
[ 2338.301721][T10476]  should_failslab+0x5/0x20
[ 2338.306432][T10476]  slab_pre_alloc_hook+0x59/0x310
[ 2338.311480][T10476]  ? tomoyo_realpath_from_path+0xdf/0x5d0
[ 2338.317591][T10476]  __kmem_cache_alloc_node+0x4f/0x260
[ 2338.322981][T10476]  ? tomoyo_realpath_from_path+0xdf/0x5d0
[ 2338.328724][T10476]  __kmalloc+0xa0/0x240
[ 2338.333162][T10476]  tomoyo_realpath_from_path+0xdf/0x5d0
[ 2338.338781][T10476]  ? tomoyo_path_number_perm+0x205/0x650
[ 2338.344523][T10476]  tomoyo_path_number_perm+0x22f/0x650
[ 2338.350001][T10476]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2338.355459][T10476]  ? ksys_write+0x1c0/0x250
[ 2338.359965][T10476]  ? common_file_perm+0x171/0x1c0
[ 2338.365014][T10476]  ? __fget_files+0x28/0x4b0
[ 2338.369609][T10476]  ? __fget_files+0x28/0x4b0
[ 2338.374206][T10476]  security_file_ioctl+0x6c/0xa0
[ 2338.379144][T10476]  __se_sys_ioctl+0x48/0x170
[ 2338.383735][T10476]  do_syscall_64+0x4c/0xa0
[ 2338.388151][T10476]  ? clear_bhb_loop+0x60/0xb0
[ 2338.392832][T10476]  ? clear_bhb_loop+0x60/0xb0
[ 2338.397522][T10476]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2338.403425][T10476] RIP: 0033:0x7f29e219c819
[ 2338.407843][T10476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2338.427487][T10476] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.435987][T10476] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2338.443954][T10476] RDX: 0000200000000080 RSI: 0000000000008993 RDI: 0000000000000006
[ 2338.452036][T10476] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2338.460118][T10476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2338.468126][T10476] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2338.476126][T10476]  </TASK>
[ 2338.521468][T10476] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2338.584848][T10483] netlink: 60 bytes leftover after parsing attributes in process `syz.0.13107'.
[ 2338.954005][T10492] FAULT_INJECTION: forcing a failure.
[ 2338.954005][T10492] name failslab, interval 1, probability 0, space 0, times 0
[ 2338.983422][T10492] CPU: 1 PID: 10492 Comm: syz.3.13110 Not tainted syzkaller #0
[ 2338.991213][T10492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2339.001472][T10492] Call Trace:
[ 2339.004778][T10492]  <TASK>
[ 2339.007735][T10492]  dump_stack_lvl+0x188/0x24e
[ 2339.012455][T10492]  ? show_regs_print_info+0x12/0x12
[ 2339.017873][T10492]  ? load_image+0x400/0x400
[ 2339.022501][T10492]  ? __might_sleep+0xd0/0xd0
[ 2339.027130][T10492]  ? __lock_acquire+0x7d10/0x7d10
[ 2339.032193][T10492]  ? memset+0x1e/0x40
[ 2339.036389][T10492]  should_fail_ex+0x399/0x4d0
[ 2339.041200][T10492]  should_failslab+0x5/0x20
[ 2339.045836][T10492]  slab_pre_alloc_hook+0x59/0x310
[ 2339.054448][T10492]  kmem_cache_alloc+0x56/0x2f0
[ 2339.059303][T10492]  ? security_inode_alloc+0x30/0x110
[ 2339.065410][T10492]  security_inode_alloc+0x30/0x110
[ 2339.071146][T10492]  inode_init_always+0x8f8/0xc90
[ 2339.076267][T10492]  new_inode_pseudo+0x91/0x1c0
[ 2339.081033][T10492]  __sock_create+0x129/0x940
[ 2339.085624][T10492]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2339.091625][T10492]  __sys_socket+0xc4/0x190
[ 2339.096585][T10492]  __x64_sys_socket+0x76/0x80
[ 2339.101284][T10492]  do_syscall_64+0x4c/0xa0
[ 2339.105843][T10492]  ? clear_bhb_loop+0x60/0xb0
[ 2339.110709][T10492]  ? clear_bhb_loop+0x60/0xb0
[ 2339.115733][T10492]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2339.122517][T10492] RIP: 0033:0x7f224a79c819
[ 2339.127954][T10492] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2339.151092][T10492] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 2339.159563][T10492] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2339.167667][T10492] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000018
[ 2339.175913][T10492] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2339.184730][T10492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2339.193661][T10492] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2339.202431][T10492]  </TASK>
[ 2339.239218][T10492] socket: no more sockets
[ 2339.457266][T10502] netlink: 'syz.1.13115': attribute type 10 has an invalid length.
[ 2339.495270][T10502] netlink: 55 bytes leftover after parsing attributes in process `syz.1.13115'.
[ 2340.877392][T10538] FAULT_INJECTION: forcing a failure.
[ 2340.877392][T10538] name failslab, interval 1, probability 0, space 0, times 0
[ 2340.898501][T10538] CPU: 1 PID: 10538 Comm: syz.2.13128 Not tainted syzkaller #0
[ 2340.906111][T10538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2340.916187][T10538] Call Trace:
[ 2340.919528][T10538]  <TASK>
[ 2340.922481][T10538]  dump_stack_lvl+0x188/0x24e
[ 2340.927267][T10538]  ? show_regs_print_info+0x12/0x12
[ 2340.932495][T10538]  ? load_image+0x400/0x400
[ 2340.937025][T10538]  ? __might_sleep+0xd0/0xd0
[ 2340.941632][T10538]  ? __lock_acquire+0x7d10/0x7d10
[ 2340.946692][T10538]  ? slab_free_freelist_hook+0x131/0x1a0
[ 2340.952360][T10538]  should_fail_ex+0x399/0x4d0
[ 2340.957081][T10538]  should_failslab+0x5/0x20
[ 2340.961614][T10538]  slab_pre_alloc_hook+0x59/0x310
[ 2340.966735][T10538]  ? genl_family_rcv_msg_doit+0x279/0x330
[ 2340.972583][T10538]  kmem_cache_alloc_node+0x5a/0x320
[ 2340.977992][T10538]  ? __alloc_skb+0xfc/0x7e0
[ 2340.982537][T10538]  __alloc_skb+0xfc/0x7e0
[ 2340.986903][T10538]  netlink_ack+0x372/0x1170
[ 2340.991461][T10538]  ? genl_rcv_msg+0x604/0x790
[ 2340.996315][T10538]  ? genl_bind+0x360/0x360
[ 2341.000862][T10538]  ? netlink_dump+0xd00/0xd00
[ 2341.005684][T10538]  netlink_rcv_skb+0x280/0x450
[ 2341.010483][T10538]  ? genl_bind+0x360/0x360
[ 2341.015010][T10538]  ? netlink_ack+0x1170/0x1170
[ 2341.020065][T10538]  ? down_read+0x1a8/0x2d0
[ 2341.024608][T10538]  genl_rcv+0x24/0x40
[ 2341.028636][T10538]  netlink_unicast+0x74d/0x8d0
[ 2341.033442][T10538]  netlink_sendmsg+0x8ad/0xbd0
[ 2341.038326][T10538]  ? netlink_getsockopt+0x550/0x550
[ 2341.043625][T10538]  ? perf_trace_preemptirq_template+0xa8/0x320
[ 2341.049779][T10538]  ? aa_sock_msg_perm+0x94/0x150
[ 2341.054714][T10538]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2341.059993][T10538]  ? security_socket_sendmsg+0x7c/0xa0
[ 2341.065452][T10538]  ? netlink_getsockopt+0x550/0x550
[ 2341.070734][T10538]  ____sys_sendmsg+0x5be/0x970
[ 2341.075504][T10538]  ? __sys_sendmsg_sock+0x30/0x30
[ 2341.080550][T10538]  ? __import_iovec+0x315/0x500
[ 2341.085404][T10538]  ? import_iovec+0x6f/0xa0
[ 2341.089909][T10538]  ___sys_sendmsg+0x2a2/0x360
[ 2341.094589][T10538]  ? __sys_sendmsg+0x290/0x290
[ 2341.099374][T10538]  ? __lock_acquire+0x7d10/0x7d10
[ 2341.104412][T10538]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2341.109264][T10538]  ? __x64_sys_sendmsg+0x80/0x80
[ 2341.114211][T10538]  ? lockdep_hardirqs_on+0x94/0x140
[ 2341.119409][T10538]  do_syscall_64+0x4c/0xa0
[ 2341.123827][T10538]  ? clear_bhb_loop+0x60/0xb0
[ 2341.128522][T10538]  ? clear_bhb_loop+0x60/0xb0
[ 2341.133197][T10538]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2341.139092][T10538] RIP: 0033:0x7fb650b9c819
[ 2341.143504][T10538] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2341.163134][T10538] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2341.171545][T10538] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2341.179530][T10538] RDX: 0000000000600300 RSI: 0000200000000000 RDI: 0000000000000003
[ 2341.187514][T10538] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2341.195485][T10538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2341.203505][T10538] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2341.211577][T10538]  </TASK>
[ 2341.294652][T10544] netlink: 152 bytes leftover after parsing attributes in process `syz.1.13130'.
[ 2341.317413][T10537] netlink: 14548 bytes leftover after parsing attributes in process `syz.3.13127'.
[ 2341.502057][T10553] FAULT_INJECTION: forcing a failure.
[ 2341.502057][T10553] name failslab, interval 1, probability 0, space 0, times 0
[ 2341.633802][T10553] CPU: 1 PID: 10553 Comm: syz.4.13134 Not tainted syzkaller #0
[ 2341.641416][T10553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2341.651482][T10553] Call Trace:
[ 2341.654853][T10553]  <TASK>
[ 2341.658390][T10553]  dump_stack_lvl+0x188/0x24e
[ 2341.663099][T10553]  ? show_regs_print_info+0x12/0x12
[ 2341.668404][T10553]  ? load_image+0x400/0x400
[ 2341.672905][T10553]  ? __might_sleep+0xd0/0xd0
[ 2341.677488][T10553]  ? __lock_acquire+0x7d10/0x7d10
[ 2341.682523][T10553]  should_fail_ex+0x399/0x4d0
[ 2341.687221][T10553]  should_failslab+0x5/0x20
[ 2341.691714][T10553]  slab_pre_alloc_hook+0x59/0x310
[ 2341.696763][T10553]  ? bpf_prog_test_run_skb+0x234/0x12a0
[ 2341.702429][T10553]  __kmem_cache_alloc_node+0x4f/0x260
[ 2341.707820][T10553]  ? bpf_prog_test_run_skb+0x234/0x12a0
[ 2341.713379][T10553]  __kmalloc+0xa0/0x240
[ 2341.717568][T10553]  bpf_prog_test_run_skb+0x234/0x12a0
[ 2341.722940][T10553]  ? lockdep_hardirqs_on+0x94/0x140
[ 2341.728152][T10553]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2341.734381][T10553]  ? cpu_online+0xa0/0xa0
[ 2341.738710][T10553]  bpf_prog_test_run+0x31e/0x390
[ 2341.743759][T10553]  __sys_bpf+0x62b/0x780
[ 2341.748005][T10553]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2341.753398][T10553]  ? lock_chain_count+0x20/0x20
[ 2341.758251][T10553]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2341.764359][T10553]  __x64_sys_bpf+0x78/0x90
[ 2341.768777][T10553]  do_syscall_64+0x4c/0xa0
[ 2341.773192][T10553]  ? clear_bhb_loop+0x60/0xb0
[ 2341.778046][T10553]  ? clear_bhb_loop+0x60/0xb0
[ 2341.782757][T10553]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2341.788667][T10553] RIP: 0033:0x7f6bb379c819
[ 2341.793101][T10553] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2341.812814][T10553] RSP: 002b:00007f6bb4745028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2341.821426][T10553] RAX: ffffffffffffffda RBX: 00007f6bb3a15fa0 RCX: 00007f6bb379c819
[ 2341.829491][T10553] RDX: 000000000000002a RSI: 0000200000000080 RDI: 000000000000000a
[ 2341.837555][T10553] RBP: 00007f6bb4745090 R08: 0000000000000000 R09: 0000000000000000
[ 2341.845524][T10553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2341.853490][T10553] R13: 00007f6bb3a16038 R14: 00007f6bb3a15fa0 R15: 00007ffdb2052eb8
[ 2341.861471][T10553]  </TASK>
[ 2344.583116][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 2344.589852][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 2344.739147][T10562] netlink: 122896 bytes leftover after parsing attributes in process `syz.3.13135'.
[ 2347.305158][T10590] netlink: 'syz.4.13144': attribute type 9 has an invalid length.
[ 2347.432727][T10598] netlink: 60 bytes leftover after parsing attributes in process `syz.3.13147'.
[ 2347.448592][T10598] netlink: 60 bytes leftover after parsing attributes in process `syz.3.13147'.
[ 2347.460242][T10598] netlink: 60 bytes leftover after parsing attributes in process `syz.3.13147'.
[ 2347.821181][T10605] netlink: 'syz.3.13148': attribute type 10 has an invalid length.
[ 2348.189981][T10605] 8021q: adding VLAN 0 to HW filter on device team0
[ 2348.231493][T10605] bond0: (slave team0): Enslaving as an active interface with an up link
[ 2348.904597][ T4404] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2349.977613][T10637] device bridge_slave_1 left promiscuous mode
[ 2350.008681][T10637] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2350.106514][T10637] device bridge_slave_0 left promiscuous mode
[ 2350.145070][T10637] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2350.484493][T10637] bond0: (slave bridge0): Releasing backup interface
[ 2350.907350][T10647] FAULT_INJECTION: forcing a failure.
[ 2350.907350][T10647] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2350.980571][T10647] CPU: 1 PID: 10647 Comm: syz.3.13163 Not tainted syzkaller #0
[ 2350.988177][T10647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2350.998253][T10647] Call Trace:
[ 2351.001544][T10647]  <TASK>
[ 2351.004488][T10647]  dump_stack_lvl+0x188/0x24e
[ 2351.009191][T10647]  ? show_regs_print_info+0x12/0x12
[ 2351.014531][T10647]  ? load_image+0x400/0x400
[ 2351.019054][T10647]  ? __lock_acquire+0x7d10/0x7d10
[ 2351.024109][T10647]  ? trace_call_bpf+0xbf/0x6b0
[ 2351.028894][T10647]  ? trace_call_bpf+0x5d6/0x6b0
[ 2351.033760][T10647]  should_fail_ex+0x399/0x4d0
[ 2351.038902][T10647]  _copy_from_user+0x2c/0x170
[ 2351.043605][T10647]  ___sys_sendmsg+0x1c3/0x360
[ 2351.048303][T10647]  ? __sys_sendmsg+0x290/0x290
[ 2351.053186][T10647]  ? irqentry_enter+0x33/0x50
[ 2351.057904][T10647]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2351.062774][T10647]  ? __x64_sys_sendmsg+0x80/0x80
[ 2351.067749][T10647]  ? lockdep_hardirqs_on+0x94/0x140
[ 2351.072955][T10647]  do_syscall_64+0x4c/0xa0
[ 2351.077401][T10647]  ? clear_bhb_loop+0x60/0xb0
[ 2351.082091][T10647]  ? clear_bhb_loop+0x60/0xb0
[ 2351.086778][T10647]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2351.092687][T10647] RIP: 0033:0x7f224a79c819
[ 2351.097107][T10647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2351.116892][T10647] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2351.125312][T10647] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2351.133288][T10647] RDX: 000000002600c055 RSI: 00002000000000c0 RDI: 0000000000000008
[ 2351.141261][T10647] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2351.149231][T10647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2351.157205][T10647] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2351.165348][T10647]  </TASK>
[ 2351.206231][T10656] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2351.213653][T10656] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2354.347814][T10721] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.13185'.
[ 2354.841090][T10729] netlink: 122896 bytes leftover after parsing attributes in process `syz.2.13197'.
[ 2355.012939][T10729] debugfs: Directory '.!
' with parent 'ieee80211' already present!
[ 2355.882634][T10755] FAULT_INJECTION: forcing a failure.
[ 2355.882634][T10755] name failslab, interval 1, probability 0, space 0, times 0
[ 2355.940243][T10755] CPU: 1 PID: 10755 Comm: syz.3.13194 Not tainted syzkaller #0
[ 2355.947848][T10755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2355.957924][T10755] Call Trace:
[ 2355.961212][T10755]  <TASK>
[ 2355.964159][T10755]  dump_stack_lvl+0x188/0x24e
[ 2355.968863][T10755]  ? show_regs_print_info+0x12/0x12
[ 2355.974089][T10755]  ? load_image+0x400/0x400
[ 2355.978616][T10755]  ? __might_sleep+0xd0/0xd0
[ 2355.983227][T10755]  ? __lock_acquire+0x7d10/0x7d10
[ 2355.988280][T10755]  should_fail_ex+0x399/0x4d0
[ 2355.992974][T10755]  should_failslab+0x5/0x20
[ 2355.997587][T10755]  slab_pre_alloc_hook+0x59/0x310
[ 2356.002693][T10755]  ? bpf_prog_test_run_flow_dissector+0x255/0x640
[ 2356.009136][T10755]  __kmem_cache_alloc_node+0x4f/0x260
[ 2356.014531][T10755]  ? bpf_prog_test_run_flow_dissector+0x255/0x640
[ 2356.020977][T10755]  __kmalloc+0xa0/0x240
[ 2356.025173][T10755]  bpf_prog_test_run_flow_dissector+0x255/0x640
[ 2356.031454][T10755]  ? xdp_convert_buff_to_md+0x200/0x200
[ 2356.037026][T10755]  ? __fget_files+0x28/0x4b0
[ 2356.041657][T10755]  ? __fget_files+0x28/0x4b0
[ 2356.046362][T10755]  ? __fget_files+0x43d/0x4b0
[ 2356.051067][T10755]  ? xdp_convert_buff_to_md+0x200/0x200
[ 2356.056639][T10755]  bpf_prog_test_run+0x31e/0x390
[ 2356.061609][T10755]  __sys_bpf+0x62b/0x780
[ 2356.065895][T10755]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2356.071298][T10755]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2356.077483][T10755]  __x64_sys_bpf+0x78/0x90
[ 2356.081915][T10755]  do_syscall_64+0x4c/0xa0
[ 2356.086343][T10755]  ? clear_bhb_loop+0x60/0xb0
[ 2356.091033][T10755]  ? clear_bhb_loop+0x60/0xb0
[ 2356.095723][T10755]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2356.101632][T10755] RIP: 0033:0x7f224a79c819
[ 2356.106053][T10755] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2356.125679][T10755] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2356.134097][T10755] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2356.142071][T10755] RDX: 0000000000000050 RSI: 0000200000000300 RDI: 000000000000000a
[ 2356.150040][T10755] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2356.158024][T10755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2356.165997][T10755] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2356.173993][T10755]  </TASK>
[ 2356.288617][T10764] netlink: 'syz.0.13198': attribute type 9 has an invalid length.
[ 2356.469249][T10772] netlink: 'syz.4.13201': attribute type 2 has an invalid length.
[ 2356.528358][T10776] netlink: 122896 bytes leftover after parsing attributes in process `syz.0.13203'.
[ 2356.609589][T10776] debugfs: Directory '.!
' with parent 'ieee80211' already present!
[ 2356.883454][T21508] Bluetooth: hci0: command 0x0406 tx timeout
[ 2357.354516][T10787] FAULT_INJECTION: forcing a failure.
[ 2357.354516][T10787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2357.475339][T10787] CPU: 1 PID: 10787 Comm: syz.2.13206 Not tainted syzkaller #0
[ 2357.482970][T10787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2357.493141][T10787] Call Trace:
[ 2357.496463][T10787]  <TASK>
[ 2357.499425][T10787]  dump_stack_lvl+0x188/0x24e
[ 2357.504154][T10787]  ? show_regs_print_info+0x12/0x12
[ 2357.509396][T10787]  ? load_image+0x400/0x400
[ 2357.513954][T10787]  ? __lock_acquire+0x7d10/0x7d10
[ 2357.519034][T10787]  should_fail_ex+0x399/0x4d0
[ 2357.523760][T10787]  _copy_from_user+0x2c/0x170
[ 2357.528488][T10787]  iovec_from_user+0x143/0x360
[ 2357.533292][T10787]  __import_iovec+0x6d/0x500
[ 2357.537946][T10787]  import_iovec+0x6f/0xa0
[ 2357.542341][T10787]  ___sys_sendmsg+0x252/0x360
[ 2357.547078][T10787]  ? __sys_sendmsg+0x290/0x290
[ 2357.551944][T10787]  ? __lock_acquire+0x7d10/0x7d10
[ 2357.557082][T10787]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2357.561991][T10787]  ? __x64_sys_sendmsg+0x80/0x80
[ 2357.567013][T10787]  ? lockdep_hardirqs_on+0x94/0x140
[ 2357.572273][T10787]  do_syscall_64+0x4c/0xa0
[ 2357.576728][T10787]  ? clear_bhb_loop+0x60/0xb0
[ 2357.581432][T10787]  ? clear_bhb_loop+0x60/0xb0
[ 2357.586121][T10787]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2357.592018][T10787] RIP: 0033:0x7fb650b9c819
[ 2357.596448][T10787] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2357.616146][T10787] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2357.624569][T10787] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2357.632541][T10787] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[ 2357.640535][T10787] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2357.648509][T10787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2357.656482][T10787] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2357.664495][T10787]  </TASK>
[ 2357.805047][T10796] netlink: 132 bytes leftover after parsing attributes in process `syz.4.13207'.
[ 2362.193276][T10850] FAULT_INJECTION: forcing a failure.
[ 2362.193276][T10850] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2362.251163][T10850] CPU: 0 PID: 10850 Comm: syz.0.13226 Not tainted syzkaller #0
[ 2362.258796][T10850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2362.268902][T10850] Call Trace:
[ 2362.272249][T10850]  <TASK>
[ 2362.275222][T10850]  dump_stack_lvl+0x188/0x24e
[ 2362.279962][T10850]  ? show_regs_print_info+0x12/0x12
[ 2362.285313][T10850]  ? load_image+0x400/0x400
[ 2362.289887][T10850]  ? __lock_acquire+0x7d10/0x7d10
[ 2362.294978][T10850]  should_fail_ex+0x399/0x4d0
[ 2362.299725][T10850]  _copy_from_user+0x2c/0x170
[ 2362.304557][T10850]  iovec_from_user+0x143/0x360
[ 2362.309379][T10850]  __import_iovec+0x6d/0x500
[ 2362.314035][T10850]  import_iovec+0x6f/0xa0
[ 2362.318404][T10850]  ___sys_sendmsg+0x252/0x360
[ 2362.323141][T10850]  ? __sys_sendmsg+0x290/0x290
[ 2362.328078][T10850]  ? __lock_acquire+0x7d10/0x7d10
[ 2362.333186][T10850]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2362.338159][T10850]  ? __x64_sys_sendmsg+0x80/0x80
[ 2362.343160][T10850]  ? lockdep_hardirqs_on+0x94/0x140
[ 2362.348402][T10850]  do_syscall_64+0x4c/0xa0
[ 2362.352952][T10850]  ? clear_bhb_loop+0x60/0xb0
[ 2362.357645][T10850]  ? clear_bhb_loop+0x60/0xb0
[ 2362.362347][T10850]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2362.368340][T10850] RIP: 0033:0x7f941f99c819
[ 2362.372770][T10850] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2362.392395][T10850] RSP: 002b:00007f94207ef028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2362.400831][T10850] RAX: ffffffffffffffda RBX: 00007f941fc16090 RCX: 00007f941f99c819
[ 2362.408928][T10850] RDX: 00000000000408c4 RSI: 00002000000000c0 RDI: 0000000000000008
[ 2362.416927][T10850] RBP: 00007f94207ef090 R08: 0000000000000000 R09: 0000000000000000
[ 2362.424935][T10850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2362.432981][T10850] R13: 00007f941fc16128 R14: 00007f941fc16090 R15: 00007ffcf35f1f08
[ 2362.441204][T10850]  </TASK>
[ 2363.171873][T10864] netlink: 'syz.1.13232': attribute type 2 has an invalid length.
[ 2363.227429][T10864] device .*! entered promiscuous mode
[ 2364.147067][T10877] netlink: 156 bytes leftover after parsing attributes in process `syz.4.13236'.
[ 2364.422654][T10878] device sit0 entered promiscuous mode
[ 2367.920156][T10918] netlink: 'syz.1.13251': attribute type 27 has an invalid length.
[ 2367.937315][T10918] netlink: 164 bytes leftover after parsing attributes in process `syz.1.13251'.
[ 2368.358637][T10932] netlink: 'syz.2.13256': attribute type 1 has an invalid length.
[ 2368.812845][T10945] FAULT_INJECTION: forcing a failure.
[ 2368.812845][T10945] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2368.943774][T10945] CPU: 1 PID: 10945 Comm: syz.1.13261 Not tainted syzkaller #0
[ 2368.951396][T10945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2368.961473][T10945] Call Trace:
[ 2368.964763][T10945]  <TASK>
[ 2368.967711][T10945]  dump_stack_lvl+0x188/0x24e
[ 2368.972402][T10945]  ? show_regs_print_info+0x12/0x12
[ 2368.977599][T10945]  ? load_image+0x400/0x400
[ 2368.982098][T10945]  ? __lock_acquire+0x7d10/0x7d10
[ 2368.987118][T10945]  ? seqcount_lockdep_reader_access+0x177/0x1d0
[ 2368.993371][T10945]  should_fail_ex+0x399/0x4d0
[ 2368.998052][T10945]  _copy_from_user+0x2c/0x170
[ 2369.002732][T10945]  __sys_bpf+0x2ea/0x780
[ 2369.007012][T10945]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2369.012416][T10945]  ? lock_chain_count+0x20/0x20
[ 2369.017288][T10945]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 2369.023272][T10945]  __x64_sys_bpf+0x78/0x90
[ 2369.027688][T10945]  do_syscall_64+0x4c/0xa0
[ 2369.032099][T10945]  ? clear_bhb_loop+0x60/0xb0
[ 2369.036768][T10945]  ? clear_bhb_loop+0x60/0xb0
[ 2369.041438][T10945]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2369.047325][T10945] RIP: 0033:0x7f29e219c819
[ 2369.051767][T10945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2369.071479][T10945] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2369.079908][T10945] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2369.087882][T10945] RDX: 000000000000002c RSI: 0000200000000080 RDI: 000000000000000a
[ 2369.095866][T10945] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2369.103847][T10945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2369.111843][T10945] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2369.119829][T10945]  </TASK>
[ 2372.139546][T10989] netlink: 40 bytes leftover after parsing attributes in process `syz.3.13276'.
[ 2372.159205][T10987] FAULT_INJECTION: forcing a failure.
[ 2372.159205][T10987] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2372.176868][T10993] FAULT_INJECTION: forcing a failure.
[ 2372.176868][T10993] name failslab, interval 1, probability 0, space 0, times 0
[ 2372.201714][T10987] CPU: 0 PID: 10987 Comm: syz.1.13277 Not tainted syzkaller #0
[ 2372.209322][T10987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2372.219401][T10987] Call Trace:
[ 2372.222692][T10987]  <TASK>
[ 2372.225664][T10987]  dump_stack_lvl+0x188/0x24e
[ 2372.230387][T10987]  ? show_regs_print_info+0x12/0x12
[ 2372.235627][T10987]  ? load_image+0x400/0x400
[ 2372.240443][T10987]  ? __lock_acquire+0x7d10/0x7d10
[ 2372.245623][T10987]  ? snprintf+0xe5/0x140
[ 2372.249995][T10987]  should_fail_ex+0x399/0x4d0
[ 2372.254709][T10987]  _copy_to_user+0x2c/0x130
[ 2372.259252][T10987]  simple_read_from_buffer+0xe3/0x150
[ 2372.264657][T10987]  proc_fail_nth_read+0x1a6/0x220
[ 2372.269711][T10987]  ? proc_fault_inject_write+0x310/0x310
[ 2372.275462][T10987]  ? fsnotify_perm+0x248/0x550
[ 2372.280336][T10987]  ? proc_fault_inject_write+0x310/0x310
[ 2372.286089][T10987]  vfs_read+0x2de/0xa00
[ 2372.290287][T10987]  ? kernel_read+0x1e0/0x1e0
[ 2372.294908][T10987]  ? __fget_files+0x28/0x4b0
[ 2372.299693][T10987]  ? __fget_files+0x28/0x4b0
[ 2372.304391][T10987]  ? __fget_files+0x43d/0x4b0
[ 2372.309188][T10987]  ? __fdget_pos+0x2ae/0x360
[ 2372.314042][T10987]  ? ksys_read+0x71/0x250
[ 2372.318410][T10987]  ksys_read+0x14c/0x250
[ 2372.322781][T10987]  ? vfs_write+0xa30/0xa30
[ 2372.327328][T10987]  ? lockdep_hardirqs_on+0x94/0x140
[ 2372.332654][T10987]  do_syscall_64+0x4c/0xa0
[ 2372.337093][T10987]  ? clear_bhb_loop+0x60/0xb0
[ 2372.341777][T10987]  ? clear_bhb_loop+0x60/0xb0
[ 2372.346461][T10987]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2372.352449][T10987] RIP: 0033:0x7f29e215d04e
[ 2372.356868][T10987] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 2372.376627][T10987] RSP: 002b:00007f29e2f7bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2372.385173][T10987] RAX: ffffffffffffffda RBX: 00007f29e2f7c6c0 RCX: 00007f29e215d04e
[ 2372.393511][T10987] RDX: 000000000000000f RSI: 00007f29e2f7c0a0 RDI: 000000000000000a
[ 2372.401743][T10987] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2372.409743][T10987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2372.417799][T10987] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2372.426047][T10987]  </TASK>
[ 2372.433316][ T6683] Bluetooth: hci3: command 0x0406 tx timeout
[ 2372.439945][T10993] CPU: 0 PID: 10993 Comm: syz.2.13279 Not tainted syzkaller #0
[ 2372.447538][T10993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2372.457631][T10993] Call Trace:
[ 2372.460926][T10993]  <TASK>
[ 2372.463877][T10993]  dump_stack_lvl+0x188/0x24e
[ 2372.468842][T10993]  ? show_regs_print_info+0x12/0x12
[ 2372.474070][T10993]  ? load_image+0x400/0x400
[ 2372.478609][T10993]  ? __might_sleep+0xd0/0xd0
[ 2372.483231][T10993]  ? __lock_acquire+0x7d10/0x7d10
[ 2372.488985][T10993]  should_fail_ex+0x399/0x4d0
[ 2372.493704][T10993]  should_failslab+0x5/0x20
[ 2372.498229][T10993]  slab_pre_alloc_hook+0x59/0x310
[ 2372.503367][T10993]  ? do_syscall_64+0x4c/0xa0
[ 2372.507986][T10993]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2372.514118][T10993]  kmem_cache_alloc_node+0x5a/0x320
[ 2372.519428][T10993]  ? __alloc_skb+0xfc/0x7e0
[ 2372.523973][T10993]  __alloc_skb+0xfc/0x7e0
[ 2372.528428][T10993]  netlink_dump+0x1ee/0xd00
[ 2372.532985][T10993]  ? netlink_lookup+0x200/0x200
[ 2372.537871][T10993]  ? genl_start+0x2e3/0x4a0
[ 2372.542579][T10993]  __netlink_dump_start+0x537/0x6f0
[ 2372.547921][T10993]  genl_family_rcv_msg_dumpit+0x323/0x3c0
[ 2372.553692][T10993]  ? genl_rcv_msg+0x790/0x790
[ 2372.558411][T10993]  ? lockdep_hardirqs_on+0x94/0x140
[ 2372.563819][T10993]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 2372.570024][T10993]  ? genl_family_rcv_msg_doit+0x330/0x330
[ 2372.575778][T10993]  ? devlink_nl_cmd_info_get_doit+0x250/0x250
[ 2372.581925][T10993]  ? genl_lock_done+0xd0/0xd0
[ 2372.586816][T10993]  ? memset+0x1e/0x40
[ 2372.590834][T10993]  ? genl_get_cmd+0x452/0x8b0
[ 2372.595553][T10993]  genl_rcv_msg+0x5cb/0x790
[ 2372.600093][T10993]  ? genl_bind+0x360/0x360
[ 2372.604564][T10993]  ? devlink_nl_cmd_region_read_dumpit+0xe30/0xe30
[ 2372.611107][T10993]  ? devlink_nl_cmd_info_get_doit+0x250/0x250
[ 2372.617228][T10993]  netlink_rcv_skb+0x1fb/0x450
[ 2372.622124][T10993]  ? genl_bind+0x360/0x360
[ 2372.626581][T10993]  ? netlink_ack+0x1170/0x1170
[ 2372.631398][T10993]  ? down_read+0x1a8/0x2d0
[ 2372.635965][T10993]  genl_rcv+0x24/0x40
[ 2372.639983][T10993]  netlink_unicast+0x74d/0x8d0
[ 2372.645027][T10993]  netlink_sendmsg+0x8ad/0xbd0
[ 2372.649837][T10993]  ? netlink_getsockopt+0x550/0x550
[ 2372.655075][T10993]  ? aa_sock_msg_perm+0x94/0x150
[ 2372.660045][T10993]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 2372.665364][T10993]  ? security_socket_sendmsg+0x7c/0xa0
[ 2372.671037][T10993]  ? netlink_getsockopt+0x550/0x550
[ 2372.676268][T10993]  ____sys_sendmsg+0x5be/0x970
[ 2372.681077][T10993]  ? __sys_sendmsg_sock+0x30/0x30
[ 2372.686135][T10993]  ? __import_iovec+0x315/0x500
[ 2372.691016][T10993]  ? import_iovec+0x6f/0xa0
[ 2372.695560][T10993]  ___sys_sendmsg+0x2a2/0x360
[ 2372.700362][T10993]  ? __sys_sendmsg+0x290/0x290
[ 2372.705314][T10993]  ? perf_trace_run_bpf_submit+0xf3/0x1c0
[ 2372.711099][T10993]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2372.716267][T10993]  ? __x64_sys_sendmsg+0x80/0x80
[ 2372.721250][T10993]  ? syscall_enter_from_user_mode+0x2a/0x80
[ 2372.727270][T10993]  do_syscall_64+0x4c/0xa0
[ 2372.731846][T10993]  ? clear_bhb_loop+0x60/0xb0
[ 2372.736647][T10993]  ? clear_bhb_loop+0x60/0xb0
[ 2372.741530][T10993]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2372.747456][T10993] RIP: 0033:0x7fb650b9c819
[ 2372.751941][T10993] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2372.771840][T10993] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2372.780387][T10993] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2372.788380][T10993] RDX: 0000000000004044 RSI: 0000200000000000 RDI: 0000000000000005
[ 2372.796357][T10993] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2372.804330][T10993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2372.812296][T10993] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2372.820279][T10993]  </TASK>
[ 2373.453973][T11017] device syzkaller0 entered promiscuous mode
[ 2374.181250][ T6683] Bluetooth: hci5: unexpected subevent 0x03 length: 150 > 9
[ 2374.428630][T11048] netlink: 'syz.0.13296': attribute type 4 has an invalid length.
[ 2374.458851][T11048] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.13296'.
[ 2377.136754][T11067] FAULT_INJECTION: forcing a failure.
[ 2377.136754][T11067] name failslab, interval 1, probability 0, space 0, times 0
[ 2377.160340][T11067] CPU: 1 PID: 11067 Comm: syz.0.13303 Not tainted syzkaller #0
[ 2377.168068][T11067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2377.178155][T11067] Call Trace:
[ 2377.181439][T11067]  <TASK>
[ 2377.184385][T11067]  dump_stack_lvl+0x188/0x24e
[ 2377.189100][T11067]  ? show_regs_print_info+0x12/0x12
[ 2377.194307][T11067]  ? load_image+0x400/0x400
[ 2377.198812][T11067]  ? __might_sleep+0xd0/0xd0
[ 2377.203482][T11067]  ? __lock_acquire+0x7d10/0x7d10
[ 2377.208550][T11067]  should_fail_ex+0x399/0x4d0
[ 2377.213330][T11067]  should_failslab+0x5/0x20
[ 2377.217835][T11067]  slab_pre_alloc_hook+0x59/0x310
[ 2377.222856][T11067]  ? tomoyo_realpath_from_path+0xdf/0x5d0
[ 2377.228576][T11067]  __kmem_cache_alloc_node+0x4f/0x260
[ 2377.233945][T11067]  ? tomoyo_realpath_from_path+0xdf/0x5d0
[ 2377.239668][T11067]  __kmalloc+0xa0/0x240
[ 2377.243843][T11067]  tomoyo_realpath_from_path+0xdf/0x5d0
[ 2377.249506][T11067]  ? tomoyo_path_number_perm+0x205/0x650
[ 2377.255156][T11067]  tomoyo_path_number_perm+0x22f/0x650
[ 2377.260625][T11067]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 2377.266087][T11067]  ? ksys_write+0x1c0/0x250
[ 2377.270597][T11067]  ? common_file_perm+0x171/0x1c0
[ 2377.275646][T11067]  ? __fget_files+0x28/0x4b0
[ 2377.280239][T11067]  ? __fget_files+0x28/0x4b0
[ 2377.284929][T11067]  security_file_ioctl+0x6c/0xa0
[ 2377.289980][T11067]  __se_sys_ioctl+0x48/0x170
[ 2377.294576][T11067]  do_syscall_64+0x4c/0xa0
[ 2377.298995][T11067]  ? clear_bhb_loop+0x60/0xb0
[ 2377.303683][T11067]  ? clear_bhb_loop+0x60/0xb0
[ 2377.308377][T11067]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2377.314276][T11067] RIP: 0033:0x7f941f99c819
[ 2377.318700][T11067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2377.338321][T11067] RSP: 002b:00007f9420810028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2377.346752][T11067] RAX: ffffffffffffffda RBX: 00007f941fc15fa0 RCX: 00007f941f99c819
[ 2377.354735][T11067] RDX: 0000200000000080 RSI: 00000000000089f1 RDI: 0000000000000004
[ 2377.362718][T11067] RBP: 00007f9420810090 R08: 0000000000000000 R09: 0000000000000000
[ 2377.370703][T11067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2377.378683][T11067] R13: 00007f941fc16038 R14: 00007f941fc15fa0 R15: 00007ffcf35f1f08
[ 2377.386676][T11067]  </TASK>
[ 2377.399633][T11067] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2378.308890][T11099] netlink: 144 bytes leftover after parsing attributes in process `syz.0.13317'.
[ 2379.071188][T11099] team0: Port device team_slave_0 removed
[ 2379.079499][T11099] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[ 2379.796690][T11135] FAULT_INJECTION: forcing a failure.
[ 2379.796690][T11135] name failslab, interval 1, probability 0, space 0, times 0
[ 2379.853351][T11135] CPU: 1 PID: 11135 Comm: syz.1.13337 Not tainted syzkaller #0
[ 2379.860952][T11135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2379.871029][T11135] Call Trace:
[ 2379.874412][T11135]  <TASK>
[ 2379.877361][T11135]  dump_stack_lvl+0x188/0x24e
[ 2379.882069][T11135]  ? show_regs_print_info+0x12/0x12
[ 2379.887307][T11135]  ? load_image+0x400/0x400
[ 2379.891835][T11135]  ? __might_sleep+0xd0/0xd0
[ 2379.896441][T11135]  ? __lock_acquire+0x7d10/0x7d10
[ 2379.901486][T11135]  should_fail_ex+0x399/0x4d0
[ 2379.906179][T11135]  should_failslab+0x5/0x20
[ 2379.910694][T11135]  slab_pre_alloc_hook+0x59/0x310
[ 2379.915730][T11135]  ? sk_prot_alloc+0xe7/0x210
[ 2379.920424][T11135]  __kmem_cache_alloc_node+0x4f/0x260
[ 2379.925812][T11135]  ? sk_prot_alloc+0xe7/0x210
[ 2379.930576][T11135]  __kmalloc+0xa0/0x240
[ 2379.934743][T11135]  sk_prot_alloc+0xe7/0x210
[ 2379.939245][T11135]  ? sk_alloc+0x20/0x340
[ 2379.943506][T11135]  sk_alloc+0x36/0x340
[ 2379.947580][T11135]  ? bpf_ctx_init+0x163/0x1a0
[ 2379.952259][T11135]  ? bpf_prog_test_run_skb+0x26f/0x12a0
[ 2379.957814][T11135]  bpf_prog_test_run_skb+0x35e/0x12a0
[ 2379.963195][T11135]  ? __fget_files+0x28/0x4b0
[ 2379.967803][T11135]  ? __fget_files+0x43d/0x4b0
[ 2379.972492][T11135]  ? cpu_online+0xa0/0xa0
[ 2379.977094][T11135]  bpf_prog_test_run+0x31e/0x390
[ 2379.982042][T11135]  __sys_bpf+0x62b/0x780
[ 2379.986289][T11135]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2379.991757][T11135]  ? lock_chain_count+0x20/0x20
[ 2379.996613][T11135]  __x64_sys_bpf+0x78/0x90
[ 2380.001026][T11135]  do_syscall_64+0x4c/0xa0
[ 2380.005442][T11135]  ? clear_bhb_loop+0x60/0xb0
[ 2380.010113][T11135]  ? clear_bhb_loop+0x60/0xb0
[ 2380.014962][T11135]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2380.020850][T11135] RIP: 0033:0x7f29e219c819
[ 2380.025260][T11135] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2380.044990][T11135] RSP: 002b:00007f29e2f7c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2380.053396][T11135] RAX: ffffffffffffffda RBX: 00007f29e2415fa0 RCX: 00007f29e219c819
[ 2380.061377][T11135] RDX: 0000000000000048 RSI: 0000200000000080 RDI: 000000000000000a
[ 2380.069357][T11135] RBP: 00007f29e2f7c090 R08: 0000000000000000 R09: 0000000000000000
[ 2380.077415][T11135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2380.085407][T11135] R13: 00007f29e2416038 R14: 00007f29e2415fa0 R15: 00007fff704f0788
[ 2380.093395][T11135]  </TASK>
[ 2380.122225][ T4404] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2381.107935][T11157] netlink: 144 bytes leftover after parsing attributes in process `syz.4.13334'.
[ 2382.788042][T11197] netlink: 'syz.4.13346': attribute type 4 has an invalid length.
[ 2382.846448][T11197] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.13346'.
[ 2382.881773][T11199] netlink: 'syz.0.13347': attribute type 10 has an invalid length.
[ 2382.912068][T11199] netlink: 9279 bytes leftover after parsing attributes in process `syz.0.13347'.
[ 2383.084297][T11211] FAULT_INJECTION: forcing a failure.
[ 2383.084297][T11211] name failslab, interval 1, probability 0, space 0, times 0
[ 2383.128638][T11211] CPU: 1 PID: 11211 Comm: syz.3.13350 Not tainted syzkaller #0
[ 2383.136246][T11211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2383.146423][T11211] Call Trace:
[ 2383.149731][T11211]  <TASK>
[ 2383.152689][T11211]  dump_stack_lvl+0x188/0x24e
[ 2383.157416][T11211]  ? trace_event_raw_event_lock+0x250/0x250
[ 2383.163660][T11211]  ? show_regs_print_info+0x12/0x12
[ 2383.168994][T11211]  ? load_image+0x400/0x400
[ 2383.173556][T11211]  should_fail_ex+0x399/0x4d0
[ 2383.178274][T11211]  should_failslab+0x5/0x20
[ 2383.182820][T11211]  slab_pre_alloc_hook+0x59/0x310
[ 2383.187921][T11211]  kmem_cache_alloc+0x56/0x2f0
[ 2383.192721][T11211]  ? __nf_conntrack_alloc+0x99/0x380
[ 2383.198059][T11211]  __nf_conntrack_alloc+0x99/0x380
[ 2383.203213][T11211]  init_conntrack+0x25b/0x11a0
[ 2383.208018][T11211]  ? early_drop+0x870/0x870
[ 2383.212558][T11211]  ? nf_conntrack_find_get+0x670/0x670
[ 2383.218074][T11211]  ? __siphash_unaligned+0x25b/0x3a0
[ 2383.223849][T11211]  nf_conntrack_in+0xd3e/0x17b0
[ 2383.228759][T11211]  ? nf_ct_pernet+0x270/0x270
[ 2383.233571][T11211]  ? ipt_do_table+0x2bd/0x15a0
[ 2383.238350][T11211]  ? get_random_u32+0x4cd/0x910
[ 2383.243203][T11211]  ? read_lock_is_recursive+0x10/0x10
[ 2383.248582][T11211]  ? ipv4_conntrack_defrag+0x284/0x5b0
[ 2383.254135][T11211]  ? get_random_u32+0x16b/0x910
[ 2383.258989][T11211]  ? ipv4_conntrack_local+0x11f/0x200
[ 2383.264360][T11211]  ? ipv4_conntrack_in+0x20/0x20
[ 2383.269301][T11211]  nf_hook_slow+0xb9/0x200
[ 2383.273836][T11211]  ? nf_hook+0x390/0x390
[ 2383.278132][T11211]  nf_hook+0x224/0x390
[ 2383.282219][T11211]  ? nf_hook+0x9e/0x390
[ 2383.286384][T11211]  ? __ip_local_out+0x5d0/0x5d0
[ 2383.291241][T11211]  ? nf_hook+0x390/0x390
[ 2383.295487][T11211]  ? csum_block_add_ext+0x3d/0x50
[ 2383.300533][T11211]  ? ip_fast_csum+0x1ea/0x2b0
[ 2383.305223][T11211]  __ip_local_out+0x49c/0x5d0
[ 2383.309994][T11211]  ? nf_hook+0x390/0x390
[ 2383.314245][T11211]  ip_send_skb+0x48/0x1c0
[ 2383.318943][T11211]  udp_send_skb+0xa88/0x1580
[ 2383.323574][T11211]  udp_sendmsg+0x73f/0x23b0
[ 2383.328112][T11211]  ? udp_sendmsg+0x23b0/0x23b0
[ 2383.332906][T11211]  ? __lock_acquire+0x12f4/0x7d10
[ 2383.337955][T11211]  ? udp_cmsg_send+0x350/0x350
[ 2383.342788][T11211]  ? mark_lock+0x94/0x320
[ 2383.347135][T11211]  ? perf_trace_lock+0xf8/0x390
[ 2383.351985][T11211]  ? aa_label_sk_perm+0x456/0x5b0
[ 2383.357028][T11211]  udpv6_sendmsg+0xa00/0x2420
[ 2383.361726][T11211]  ? udpv6_sendmsg+0x2420/0x2420
[ 2383.366664][T11211]  ? udp_v6_early_demux+0xf80/0xf80
[ 2383.371871][T11211]  ? perf_trace_lock+0xf8/0x390
[ 2383.376721][T11211]  ? trace_event_raw_event_lock+0x250/0x250
[ 2383.382627][T11211]  ? __might_fault+0xa6/0x120
[ 2383.387326][T11211]  ? inet_send_prepare+0x58/0x260
[ 2383.392426][T11211]  ? inet6_sendmsg+0x5b/0xd0
[ 2383.397040][T11211]  ? inet6_compat_ioctl+0x3c0/0x3c0
[ 2383.402245][T11211]  ____sys_sendmsg+0x5be/0x970
[ 2383.407024][T11211]  ? __sys_sendmsg_sock+0x30/0x30
[ 2383.412055][T11211]  ? __import_iovec+0x315/0x500
[ 2383.416939][T11211]  ? import_iovec+0x6f/0xa0
[ 2383.421473][T11211]  ___sys_sendmsg+0x2a2/0x360
[ 2383.426175][T11211]  ? __sys_sendmsg+0x290/0x290
[ 2383.430972][T11211]  ? __lock_acquire+0x7d10/0x7d10
[ 2383.436050][T11211]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2383.440908][T11211]  ? __x64_sys_sendmsg+0x80/0x80
[ 2383.445868][T11211]  ? lockdep_hardirqs_on+0x94/0x140
[ 2383.451164][T11211]  do_syscall_64+0x4c/0xa0
[ 2383.455583][T11211]  ? clear_bhb_loop+0x60/0xb0
[ 2383.460262][T11211]  ? clear_bhb_loop+0x60/0xb0
[ 2383.464952][T11211]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2383.470933][T11211] RIP: 0033:0x7f224a79c819
[ 2383.475347][T11211] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2383.495060][T11211] RSP: 002b:00007f224b723028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2383.503474][T11211] RAX: ffffffffffffffda RBX: 00007f224aa15fa0 RCX: 00007f224a79c819
[ 2383.511622][T11211] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 2383.519679][T11211] RBP: 00007f224b723090 R08: 0000000000000000 R09: 0000000000000000
[ 2383.527653][T11211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2383.535969][T11211] R13: 00007f224aa16038 R14: 00007f224aa15fa0 R15: 00007ffd2de1fe18
[ 2383.543982][T11211]  </TASK>
[ 2383.548831][T11213] netlink: 14 bytes leftover after parsing attributes in process `syz.1.13351'.
[ 2383.769180][T11213] team0: Port device team_slave_0 removed
[ 2384.050684][T11228] FAULT_INJECTION: forcing a failure.
[ 2384.050684][T11228] name failslab, interval 1, probability 0, space 0, times 0
[ 2384.098837][T11228] CPU: 1 PID: 11228 Comm: syz.2.13357 Not tainted syzkaller #0
[ 2384.106608][T11228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2384.116684][T11228] Call Trace:
[ 2384.119986][T11228]  <TASK>
[ 2384.122938][T11228]  dump_stack_lvl+0x188/0x24e
[ 2384.127672][T11228]  ? show_regs_print_info+0x12/0x12
[ 2384.132908][T11228]  ? load_image+0x400/0x400
[ 2384.137526][T11228]  ? __might_sleep+0xd0/0xd0
[ 2384.142141][T11228]  ? __lock_acquire+0x7d10/0x7d10
[ 2384.147202][T11228]  should_fail_ex+0x399/0x4d0
[ 2384.151915][T11228]  should_failslab+0x5/0x20
[ 2384.156531][T11228]  slab_pre_alloc_hook+0x59/0x310
[ 2384.161589][T11228]  ? slhc_init+0x72/0x6f0
[ 2384.165969][T11228]  __kmem_cache_alloc_node+0x4f/0x260
[ 2384.171371][T11228]  ? slhc_init+0x72/0x6f0
[ 2384.175740][T11228]  kmalloc_trace+0x26/0xe0
[ 2384.180275][T11228]  slhc_init+0x72/0x6f0
[ 2384.184481][T11228]  ? __might_fault+0xc2/0x120
[ 2384.189183][T11228]  ? __might_fault+0xa6/0x120
[ 2384.193965][T11228]  ppp_ioctl+0x1426/0x1a50
[ 2384.198430][T11228]  ? ppp_poll+0x250/0x250
[ 2384.202791][T11228]  ? __fget_files+0x28/0x4b0
[ 2384.207441][T11228]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 2384.212501][T11228]  ? security_file_ioctl+0x7c/0xa0
[ 2384.217657][T11228]  ? ppp_poll+0x250/0x250
[ 2384.222022][T11228]  __se_sys_ioctl+0xfa/0x170
[ 2384.226655][T11228]  do_syscall_64+0x4c/0xa0
[ 2384.231108][T11228]  ? clear_bhb_loop+0x60/0xb0
[ 2384.235824][T11228]  ? clear_bhb_loop+0x60/0xb0
[ 2384.240531][T11228]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2384.246455][T11228] RIP: 0033:0x7fb650b9c819
[ 2384.250978][T11228] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2384.270705][T11228] RSP: 002b:00007fb6519df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2384.279165][T11228] RAX: ffffffffffffffda RBX: 00007fb650e15fa0 RCX: 00007fb650b9c819
[ 2384.287180][T11228] RDX: 0000200000000180 RSI: 0000000040047451 RDI: 0000000000000005
[ 2384.295198][T11228] RBP: 00007fb6519df090 R08: 0000000000000000 R09: 0000000000000000
[ 2384.303210][T11228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2384.311213][T11228] R13: 00007fb650e16038 R14: 00007fb650e15fa0 R15: 00007ffd1eb9c1a8
[ 2384.319235][T11228]  </TASK>
[ 2385.528952][T11255] FAULT_INJECTION: forcing a failure.
[ 2385.528952][T11255] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2385.547594][T11255] CPU: 0 PID: 11255 Comm: syz.0.13364 Not tainted syzkaller #0
[ 2385.555198][T11255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2385.561165][T11242] device syzkaller0 entered promiscuous mode
[ 2385.565250][T11255] Call Trace:
[ 2385.565264][T11255]  <TASK>
[ 2385.565271][T11255]  dump_stack_lvl+0x188/0x24e
[ 2385.565311][T11255]  ? show_regs_print_info+0x12/0x12
[ 2385.565334][T11255]  ? load_image+0x400/0x400
[ 2385.565356][T11255]  ? __lock_acquire+0x7d10/0x7d10
[ 2385.565383][T11255]  should_fail_ex+0x399/0x4d0
[ 2385.565405][T11255]  _copy_from_user+0x2c/0x170
[ 2385.565428][T11255]  __sys_bpf+0x2ea/0x780
[ 2385.565452][T11255]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2385.565489][T11255]  ? lock_chain_count+0x20/0x20
[ 2385.565519][T11255]  __x64_sys_bpf+0x78/0x90
[ 2385.625482][T11255]  do_syscall_64+0x4c/0xa0
[ 2385.629911][T11255]  ? clear_bhb_loop+0x60/0xb0
[ 2385.634590][T11255]  ? clear_bhb_loop+0x60/0xb0
[ 2385.639268][T11255]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2385.645176][T11255] RIP: 0033:0x7f941f99c819
[ 2385.649615][T11255] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2385.669319][T11255] RSP: 002b:00007f9420810028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2385.677765][T11255] RAX: ffffffffffffffda RBX: 00007f941fc15fa0 RCX: 00007f941f99c819
[ 2385.685774][T11255] RDX: 0000000000000050 RSI: 0000200000000340 RDI: 000000000000000a
[ 2385.693833][T11255] RBP: 00007f9420810090 R08: 0000000000000000 R09: 0000000000000000
[ 2385.701806][T11255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2385.709772][T11255] R13: 00007f941fc16038 R14: 00007f941fc15fa0 R15: 00007ffcf35f1f08
[ 2385.718059][T11255]  </TASK>
[ 2387.526731][T11276] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.13374'.
[ 2391.960698][T11259] netlink: 'syz.0.13366': attribute type 10 has an invalid length.
[ 2391.969492][T11259] bridge0: port 3(bond0) entered blocking state
[ 2391.976328][T11259] bridge0: port 3(bond0) entered forwarding state
[ 2391.983031][T11259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2391.990191][T11259] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2391.997555][T11259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2392.004698][T11259] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2392.016281][T11259] bridge0: port 3(bond0) entered disabled state
[ 2392.022656][T11259] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2392.029852][T11259] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2392.750516][T11308] netlink: 'syz.4.13386': attribute type 21 has an invalid length.
[ 2393.109690][T11316] device syzkaller0 entered promiscuous mode
[ 2393.878546][T11327] device wlan1 left promiscuous mode
[ 2394.923681][T11345] FAULT_INJECTION: forcing a failure.
[ 2394.923681][T11345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2394.961176][T11345] CPU: 1 PID: 11345 Comm: syz.0.13399 Not tainted syzkaller #0
[ 2394.968788][T11345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2394.978860][T11345] Call Trace:
[ 2394.982158][T11345]  <TASK>
[ 2394.985119][T11345]  dump_stack_lvl+0x188/0x24e
[ 2394.989833][T11345]  ? show_regs_print_info+0x12/0x12
[ 2394.995159][T11345]  ? load_image+0x400/0x400
[ 2394.999700][T11345]  ? __lock_acquire+0x7d10/0x7d10
[ 2395.004763][T11345]  should_fail_ex+0x399/0x4d0
[ 2395.009471][T11345]  _copy_from_user+0x2c/0x170
[ 2395.014175][T11345]  ____sys_sendmsg+0x30a/0x970
[ 2395.019143][T11345]  ? __sys_sendmsg_sock+0x30/0x30
[ 2395.024179][T11345]  ? __import_iovec+0x315/0x500
[ 2395.029100][T11345]  ? import_iovec+0x6f/0xa0
[ 2395.033613][T11345]  ___sys_sendmsg+0x2a2/0x360
[ 2395.038344][T11345]  ? __sys_sendmsg+0x290/0x290
[ 2395.043143][T11345]  ? __lock_acquire+0x7d10/0x7d10
[ 2395.048243][T11345]  __se_sys_sendmsg+0x1bb/0x2a0
[ 2395.053093][T11345]  ? ct_nmi_exit+0x145/0x1c0
[ 2395.057680][T11345]  ? __x64_sys_sendmsg+0x80/0x80
[ 2395.062669][T11345]  ? lockdep_hardirqs_on+0x94/0x140
[ 2395.067875][T11345]  do_syscall_64+0x4c/0xa0
[ 2395.072292][T11345]  ? clear_bhb_loop+0x60/0xb0
[ 2395.076963][T11345]  ? clear_bhb_loop+0x60/0xb0
[ 2395.081639][T11345]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2395.087529][T11345] RIP: 0033:0x7f941f99c819
[ 2395.091940][T11345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2395.111632][T11345] RSP: 002b:00007f9420810028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2395.120046][T11345] RAX: ffffffffffffffda RBX: 00007f941fc15fa0 RCX: 00007f941f99c819
[ 2395.128015][T11345] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 2395.136090][T11345] RBP: 00007f9420810090 R08: 0000000000000000 R09: 0000000000000000
[ 2395.144057][T11345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2395.152018][T11345] R13: 00007f941fc16038 R14: 00007f941fc15fa0 R15: 00007ffcf35f1f08
[ 2395.160003][T11345]  </TASK>
[ 2398.365591][T11376] tap0: tun_chr_ioctl cmd 2148553947
[ 2401.927219][T11429] device wg2 entered promiscuous mode
[ 2405.776659][T11511] device syzkaller0 entered promiscuous mode
[ 2406.005241][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 2406.011663][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 2410.252402][T11548] device syzkaller0 entered promiscuous mode
[ 2416.133543][T11583] device syzkaller0 entered promiscuous mode
[ 2418.327456][T21508] Bluetooth: hci1: command 0x0406 tx timeout
[ 2419.211808][T11616] device syzkaller0 entered promiscuous mode
[ 2421.458501][T11629] 
[ 2421.461313][T11629] =============================
[ 2421.466383][T11629] WARNING: suspicious RCU usage
[ 2421.471268][T11629] syzkaller #0 Not tainted
[ 2421.476072][T11629] -----------------------------
[ 2421.481030][T11629] kernel/events/callchain.c:161 suspicious rcu_dereference_check() usage!
[ 2421.489598][T11629] 
[ 2421.489598][T11629] other info that might help us debug this:
[ 2421.489598][T11629] 
[ 2421.499885][T11629] 
[ 2421.499885][T11629] rcu_scheduler_active = 2, debug_locks = 1
[ 2421.508081][T11629] 1 lock held by syz.4.13500/11629:
[ 2421.513431][T11629]  #0: ffffffff8cb2d760 (rcu_read_lock_trace){....}-{0:0}, at: rcu_read_lock_trace+0x37/0x70
[ 2421.523720][T11629] 
[ 2421.523720][T11629] stack backtrace:
[ 2421.529708][T11629] CPU: 1 PID: 11629 Comm: syz.4.13500 Not tainted syzkaller #0
[ 2421.537275][T11629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 2421.547357][T11629] Call Trace:
[ 2421.550655][T11629]  <TASK>
[ 2421.553602][T11629]  dump_stack_lvl+0x188/0x24e
[ 2421.558313][T11629]  ? show_regs_print_info+0x12/0x12
[ 2421.563537][T11629]  ? load_image+0x400/0x400
[ 2421.568079][T11629]  lockdep_rcu_suspicious+0x1dd/0x300
[ 2421.573572][T11629]  get_callchain_entry+0x2a5/0x3b0
[ 2421.578717][T11629]  get_perf_callchain+0xc4/0x490
[ 2421.583702][T11629]  ? put_callchain_entry+0xb0/0xb0
[ 2421.588939][T11629]  ? preempt_schedule+0xbc/0xd0
[ 2421.593835][T11629]  ? preempt_schedule_common+0xa5/0xd0
[ 2421.599326][T11629]  ? verify_lock_unused+0x140/0x140
[ 2421.604554][T11629]  ? preempt_schedule+0xbc/0xd0
[ 2421.609532][T11629]  __bpf_get_stack+0x2de/0x520
[ 2421.614388][T11629]  ? stack_map_get_build_id_offset+0x970/0x970
[ 2421.620572][T11629]  ? __cant_sleep+0x220/0x220
[ 2421.625270][T11629]  ? bpf_prog_b8a90dd1efcc4ad9+0x3d/0x41
[ 2421.630925][T11629]  bpf_get_stack_raw_tp+0x189/0x1c0
[ 2421.636341][T11629]  bpf_prog_b8a90dd1efcc4ad9+0x3d/0x41
[ 2421.641825][T11629]  bpf_prog_run_pin_on_cpu+0x64/0x150
[ 2421.647237][T11629]  bpf_prog_test_run_syscall+0x313/0x4a0
[ 2421.653012][T11629]  ? sock_gen_cookie+0x60/0x60
[ 2421.657829][T11629]  ? sock_gen_cookie+0x60/0x60
[ 2421.662616][T11629]  bpf_prog_test_run+0x31e/0x390
[ 2421.667583][T11629]  __sys_bpf+0x62b/0x780
[ 2421.671860][T11629]  ? bpf_link_show_fdinfo+0x380/0x380
[ 2421.677346][T11629]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 2421.683286][T11629]  ? lock_chain_count+0x20/0x20
[ 2421.688273][T11629]  __x64_sys_bpf+0x78/0x90
[ 2421.692727][T11629]  do_syscall_64+0x4c/0xa0
[ 2421.697193][T11629]  ? clear_bhb_loop+0x60/0xb0
[ 2421.701897][T11629]  ? clear_bhb_loop+0x60/0xb0
[ 2421.706617][T11629]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2421.712715][T11629] RIP: 0033:0x7f6bb379c819
[ 2421.717150][T11629] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 2421.736873][T11629] RSP: 002b:00007f6bb4745028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2421.745509][T11629] RAX: ffffffffffffffda RBX: 00007f6bb3a15fa0 RCX: 00007f6bb379c819
[ 2421.753512][T11629] RDX: 000000000000000c RSI: 00002000000004c0 RDI: 000000000000000a
[ 2421.761509][T11629] RBP: 00007f6bb3832c91 R08: 0000000000000000 R09: 0000000000000000
[ 2421.769505][T11629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2421.777505][T11629] R13: 00007f6bb3a16038 R14: 00007f6bb3a15fa0 R15: 00007ffdb2052eb8
[ 2421.785518][T11629]  </TASK>