last executing test programs:

2m18.518132302s ago: executing program 2 (id=371):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x6, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c40)=[{0x1, 0x5, 0x8, 0x9}, {0x0, 0x5, 0xf}, {0x0, 0x5, 0xd, 0x3}, {0x0, 0x3, 0x7, 0x6}], 0x10, 0x3e5d, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

2m5.534871057s ago: executing program 2 (id=371):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x6, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c40)=[{0x1, 0x5, 0x8, 0x9}, {0x0, 0x5, 0xf}, {0x0, 0x5, 0xd, 0x3}, {0x0, 0x3, 0x7, 0x6}], 0x10, 0x3e5d, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

1m44.06663959s ago: executing program 2 (id=371):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x6, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c40)=[{0x1, 0x5, 0x8, 0x9}, {0x0, 0x5, 0xf}, {0x0, 0x5, 0xd, 0x3}, {0x0, 0x3, 0x7, 0x6}], 0x10, 0x3e5d, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

1m12.826646349s ago: executing program 2 (id=371):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x6, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c40)=[{0x1, 0x5, 0x8, 0x9}, {0x0, 0x5, 0xf}, {0x0, 0x5, 0xd, 0x3}, {0x0, 0x3, 0x7, 0x6}], 0x10, 0x3e5d, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

51.48842184s ago: executing program 2 (id=371):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x6, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c40)=[{0x1, 0x5, 0x8, 0x9}, {0x0, 0x5, 0xf}, {0x0, 0x5, 0xd, 0x3}, {0x0, 0x3, 0x7, 0x6}], 0x10, 0x3e5d, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

25.700187422s ago: executing program 2 (id=371):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x6, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x0, &(0x7f0000000c40)=[{0x1, 0x5, 0x8, 0x9}, {0x0, 0x5, 0xf}, {0x0, 0x5, 0xd, 0x3}, {0x0, 0x3, 0x7, 0x6}], 0x10, 0x3e5d, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)

21.09112701s ago: executing program 1 (id=1077):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000691200000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x10000000000005}, 0x100e64, 0xc78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000195"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='inet_sk_error_report\x00', r0}, 0x10)
r2 = socket$kcm(0xa, 0x1, 0x106)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$ENABLE_STATS(0x20, &(0x7f0000000400), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='inet_sk_error_report\x00', r3}, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x53, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x7, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x2a06, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000880)={r4}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f0000000840), &(0x7f0000000880)}, 0x20)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x8, r5}, 0x38)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1509, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0x5487, 0x0, 0x0, 0x2}, 0x0, 0x0, r1, 0x0)
socketpair(0x29, 0x2, 0x0, &(0x7f0000000440))
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback, 0x4, 0x1, 0x61, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0]}, 0x40)
sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000540)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0x18}, 0x20004080)

21.014187058s ago: executing program 4 (id=1078):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000004c0)={'syzkaller0\x00', @link_local})
r3 = socket$kcm(0x29, 0x2, 0x0)
r4 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x4, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x21, 0x3}, 0x0, 0xffffffffffffffff, r4, 0x0)
r5 = perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x1, 0x7, 0x2, 0x1, 0x0, 0xfffffffffffffffe, 0xf0140, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc1, 0x0, @perf_config_ext={0x13a, 0x100000000}, 0x18000, 0xfffffffffffffffb, 0x81, 0x4, 0x10000, 0x7, 0x7, 0x0, 0x400, 0x0, 0xd1cd}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x1)
r6 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r6, 0x84, 0x7d, &(0x7f0000000000), 0x8)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r4, 0x2405, r5)
ioctl$sock_kcm_SIOCKCMUNATTACH(r3, 0x89e1, &(0x7f0000000000)={r2})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[], 0xe)

20.374646692s ago: executing program 1 (id=1081):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd8073a46b08b94214d816f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb4147000001000000008f2b9000f22425e4097ed62cbc891061017cfa6f6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe68db8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3542646bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&\x00', @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x4000000, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0) (fail_nth: 42)
close(r1)

19.874840906s ago: executing program 1 (id=1084):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x12, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000010000000000000008000000711206000000000095"], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa, @void, @value}, 0x94)

19.606219062s ago: executing program 1 (id=1088):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000400000000000000000085000000bb00000095"], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, 0x8, 0x0, 0x0}}, 0x10)
socket$kcm(0x2, 0x922000000001, 0x106)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080307000000e8fea4a1180015000600142603600e120800110000810401040016000a00104005", 0x39}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000000)="d800000010008104687da3aa7143a0b8c81d080b25", 0x15}], 0x1}, 0x24040894)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33)

18.321508692s ago: executing program 1 (id=1096):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@map=r0, 0x24, 0x0, 0x6, &(0x7f0000000140), 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

18.237477697s ago: executing program 4 (id=1098):
socket$kcm(0x2c, 0x3, 0x0) (async)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000a40)="5c00000014006b030231a6080c000af32c00009d31fc00003197250f03000f00e5aa000017d34460bc24ea08000000251e6182949a2756f475ce36c2d1000000000000ecb8f6ece6652894fda67ac7b7630a6e09e61cd53f2fdf2eed", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000000000000000000000031d0851000000600000018040000", @ANYRES32, @ANYBLOB="0000000000000000660000000000000018000000000000000000000000000000950000000000000018010000202070250000000000202020db1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b502000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x2, &(0x7f0000000340)=""/206, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

18.116494681s ago: executing program 1 (id=1099):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000200)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0xe}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000580)='rcu_utilization\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r5, 0x5, 0x0, 0x0, @void, @value}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xf, &(0x7f0000000380)=ANY=[@ANYBLOB="18ed49fe42237b0e8195f2e000000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r7)
recvmsg$unix(r6, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
r9 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r9, 0x107, 0x12, &(0x7f00000008c0)=r8, 0x4)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r11)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r11, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
write$cgroup_devices(r10, &(0x7f0000000140)=ANY=[@ANYBLOB="1e00800e008c71ef28ff4b"], 0xffdd)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

18.096105268s ago: executing program 0 (id=1100):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYRESOCT], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r0, 0x0, 0x10, 0x0, &(0x7f0000000280)="61dfb0020866c667fc53b9265583e283", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x1c, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000510850000001700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_tracing={0x1a, 0x28, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x52f, 0x0, 0x0, 0x0, 0x6}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x8}, @exit, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x401}}, @alu={0x4, 0x0, 0xc, 0x8, 0xa, 0xfffffffffffffff4, 0x1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x5}]}, &(0x7f0000000200)='GPL\x00', 0x4, 0xbd, &(0x7f00000004c0)=""/189, 0x41100, 0x22, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x9, 0x2}, 0x8, 0x10, &(0x7f00000002c0)={0x2, 0x7, 0x2, 0x4}, 0x10, 0x2fd8c, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=[0xffffffffffffffff], 0x0, 0x10, 0xfffffff8, @void, @value}, 0x94)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d8000000180081064e81f782db44b904021d080006067c09e8fe55a10a0015400500142603600e120800060000001001a8001600a400014003000001000000000000005c0461c1d67f6f94007134cf6ee08008a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r1}, &(0x7f0000000040), &(0x7f0000000400)=r2}, 0x20)

17.986205116s ago: executing program 4 (id=1101):
r0 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x8, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x408, 0xca, 0x0, 0x2, 0xfffffffffffffffc}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r1 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r1, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="39000000140081ae00002c000500015601618575e285af018025408a63a1dfee6fa171b0d8402fdea2000000171300883795c04a75ba377a1b", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
close(0xffffffffffffffff)
r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r4, 0x0, 0x0, 0x4}, 0x20)
close(0x3)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000001c0)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r6}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0xd, 0x0, 0x0, 0xca, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$inet(r2, &(0x7f0000000300)={&(0x7f0000000100)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000200)="6802804af0e945fe000bfeeba169ab93e8f6ae5c", 0x14}, {&(0x7f0000000400)="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", 0x1000}], 0x2, &(0x7f00000002c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xc}}], 0x30}, 0x20000085)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000003680)="5456790889d80a64f9b1a703c252", 0x0, 0x2000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x400})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8922, &(0x7f0000000080))

17.722215501s ago: executing program 4 (id=1103):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000691200000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x10000000000005}, 0x100e64, 0xc78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000195"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='inet_sk_error_report\x00', r0}, 0x10)
r2 = socket$kcm(0xa, 0x1, 0x106)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$ENABLE_STATS(0x20, &(0x7f0000000400), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='inet_sk_error_report\x00', r3}, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x53, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x7, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x2a06, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8000000000000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000880)={r4}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f0000000840), &(0x7f0000000880)}, 0x20)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x8, r5}, 0x38)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1509, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0x5487, 0x0, 0x0, 0x2}, 0x0, 0x0, r1, 0x0)
socketpair(0x29, 0x2, 0x0, &(0x7f0000000440))
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback, 0x4, 0x1, 0x61, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0]}, 0x40)
sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000540)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}], 0x18}, 0x20004080)

17.579968894s ago: executing program 0 (id=1104):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=@base={0x6, 0x4, 0x7, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xd, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x37)

17.409256722s ago: executing program 0 (id=1105):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x3, &(0x7f00000000c0)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0xa8}}, &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x501042, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x12, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r2, 0x5, 0x0, 0x0, @void, @value}, 0x10)
close(r2)
socket$kcm(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r3}, &(0x7f0000000500), &(0x7f0000000540)=r2}, 0x20)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f0000000100), &(0x7f0000000180)=r1}, 0x20)
close(r1)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000380))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r5}, &(0x7f0000000140), &(0x7f0000000280)=r1}, 0x20)
ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)

17.008704927s ago: executing program 0 (id=1106):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xe, 0x3, &(0x7f0000000000)=@framed={{0x3e, 0xa, 0xa, 0x0, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20, @void, @value}, 0x80)

16.882306926s ago: executing program 3 (id=1107):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&\x00', @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x4000000, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0) (fail_nth: 43)
close(r1)

16.851911863s ago: executing program 0 (id=1108):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x7, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x3, 0x0, 0x10000}, {0x10000002, 0x0, 0x0, 0x9}], 0x10, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
close(r0)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, 0x0}, 0x10)
r4 = socket$kcm(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
recvmsg$unix(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0x64, &(0x7f0000000000), 0x10)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x0, 0x8, 0x2, 0xfff}]})
setsockopt$sock_attach_bpf(r0, 0x84, 0x6e, &(0x7f0000000000)=r3, 0x10)

16.740576018s ago: executing program 4 (id=1109):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x8, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

16.594413701s ago: executing program 3 (id=1110):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x12, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000010000000000000020000000711206000000000095"], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa, @void, @value}, 0x94)

16.594018972s ago: executing program 4 (id=1111):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) (async)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="020000000400000006000000060000000000000044797059ca16302029288941063276dbea3bd004f3c02756", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x66) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0xffffffff, r2}, 0x38) (async)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

16.533856035s ago: executing program 3 (id=1112):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0xd, 0x10, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {0x7, 0x1, 0xb, 0x9, 0x0, 0xc00}}, {}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffc0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x18e}}}, &(0x7f0000000000)='syzkaller\x00', 0x6, 0x102, &(0x7f00000008c0)=""/258, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

15.849461845s ago: executing program 0 (id=1113):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x202, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, 0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x21, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x12, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @cgroup_sock_addr=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r3, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair(0x28, 0x5, 0x28, &(0x7f00000002c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8946, &(0x7f0000000080))
r5 = socket$kcm(0x2c, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x11b, 0x6, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r0, 0x0, 0x20, 0x0, &(0x7f0000000280)="61dfb0020866c667fc53b9265583e283d8ddef068c05608ffc45039432154500", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

15.849127009s ago: executing program 3 (id=1114):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000200)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0xe}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000580)='rcu_utilization\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r5, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1f}, 0x3)

15.518353122s ago: executing program 3 (id=1115):
socket$kcm(0xa, 0x2, 0x73) (async)
r0 = socket$kcm(0xa, 0x2, 0x73)
close(r0)
sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xffac, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0x1000}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x8, &(0x7f0000001d00)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x6b}, 0x0)
recvmsg$kcm(r0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000012c0)=""/35, 0x23}, 0x2140)

15.471239646s ago: executing program 3 (id=1116):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040), 0x4)
bpf$ITER_CREATE(0x21, &(0x7f0000000080)={r0}, 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, 0x8, 0x0, 0x0}}, 0x10)
socket$kcm(0x2, 0x922000000001, 0x106)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080307000000e8fea4a1180015000600142603600e120800110000810401040016000a00104005", 0x39}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000000)="d800000010008104687da3aa7143a0b8c81d080b25", 0x15}], 0x1}, 0x24040894)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)

2.08663938s ago: executing program 32 (id=1099):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000200)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0xe}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000580)='rcu_utilization\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r5, 0x5, 0x0, 0x0, @void, @value}, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xf, &(0x7f0000000380)=ANY=[@ANYBLOB="18ed49fe42237b0e8195f2e000000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r7)
recvmsg$unix(r6, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
r9 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r9, 0x107, 0x12, &(0x7f00000008c0)=r8, 0x4)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r11)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r11, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
write$cgroup_devices(r10, &(0x7f0000000140)=ANY=[@ANYBLOB="1e00800e008c71ef28ff4b"], 0xffdd)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

1.006497666s ago: executing program 33 (id=1111):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) (async)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="020000000400000006000000060000000000000044797059ca16302029288941063276dbea3bd004f3c02756", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x66) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0xffffffff, r2}, 0x38) (async)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

77.312875ms ago: executing program 34 (id=1113):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x202, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, 0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x21, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x12, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @cgroup_sock_addr=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r3, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair(0x28, 0x5, 0x28, &(0x7f00000002c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8946, &(0x7f0000000080))
r5 = socket$kcm(0x2c, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x11b, 0x6, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r0, 0x0, 0x20, 0x0, &(0x7f0000000280)="61dfb0020866c667fc53b9265583e283d8ddef068c05608ffc45039432154500", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 35 (id=1116):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040), 0x4)
bpf$ITER_CREATE(0x21, &(0x7f0000000080)={r0}, 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, 0x8, 0x0, 0x0}}, 0x10)
socket$kcm(0x2, 0x922000000001, 0x106)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080307000000e8fea4a1180015000600142603600e120800110000810401040016000a00104005", 0x39}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000000)="d800000010008104687da3aa7143a0b8c81d080b25", 0x15}], 0x1}, 0x24040894)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe33)

kernel console output (not intermixed with test programs):

 entered disabled state
[  149.370831][ T7007] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode
[  149.400056][ T7007] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode
[  149.432463][ T7007] bridge0: port 3(netdevsim0) entered disabled state
[  149.514312][ T7007] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.865100][ T7007] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  149.889609][ T7007] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  149.927395][ T7007] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  149.947730][ T7007] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  150.200386][ T7007] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.311583][ T7007] 8021q: adding VLAN 0 to HW filter on device team0
[  150.393773][ T1107] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.401077][ T1107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.437571][ T1107] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.445518][ T1107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.692165][ T7007] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  150.704563][ T7007] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  150.928082][ T7163] netlink: 'syz.0.434': attribute type 6 has an invalid length.
[  150.940038][ T7163] netlink: 'syz.0.434': attribute type 7 has an invalid length.
[  151.195141][ T7175] netlink: 'syz.4.439': attribute type 3 has an invalid length.
[  151.222500][ T5154] Bluetooth: hci1: command tx timeout
[  151.300165][ T7007] 8021q: adding VLAN 0 to HW filter on device batadv0
[  151.471659][ T7185] netlink: 'syz.4.442': attribute type 2 has an invalid length.
[  151.492296][ T7185] netlink: 'syz.4.442': attribute type 1 has an invalid length.
[  151.500636][ T7185] __nla_validate_parse: 59 callbacks suppressed
[  151.500654][ T7185] netlink: 199820 bytes leftover after parsing attributes in process `syz.4.442'.
[  151.523212][ T7185] block nbd5: not configured, cannot reconfigure
[  153.302229][ T5154] Bluetooth: hci1: command tx timeout
[  153.911699][ T7007] veth0_vlan: entered promiscuous mode
[  153.979921][ T7007] veth1_vlan: entered promiscuous mode
[  154.042736][ T7225] netlink: 'syz.0.458': attribute type 17 has an invalid length.
[  154.114774][ T7007] veth0_macvtap: entered promiscuous mode
[  154.122436][ T7225] netlink: 'syz.0.458': attribute type 16 has an invalid length.
[  154.149049][ T7007] veth1_macvtap: entered promiscuous mode
[  154.155263][ T7225] netlink: 152 bytes leftover after parsing attributes in process `syz.0.458'.
[  154.216947][ T7225] FAULT_INJECTION: forcing a failure.
[  154.216947][ T7225] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.263548][ T7007] batman_adv: batadv0: Interface activated: batadv_slave_0
[  154.301750][ T7225] CPU: 0 UID: 0 PID: 7225 Comm: syz.0.458 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  154.301787][ T7225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  154.301801][ T7225] Call Trace:
[  154.301809][ T7225]  <TASK>
[  154.301820][ T7225]  dump_stack_lvl+0x189/0x250
[  154.301862][ T7225]  ? __pfx____ratelimit+0x10/0x10
[  154.301897][ T7225]  ? __pfx_dump_stack_lvl+0x10/0x10
[  154.301932][ T7225]  ? __pfx__printk+0x10/0x10
[  154.301973][ T7225]  should_fail_ex+0x414/0x560
[  154.302009][ T7225]  _copy_to_user+0x31/0xb0
[  154.302037][ T7225]  simple_read_from_buffer+0xe1/0x170
[  154.302067][ T7225]  proc_fail_nth_read+0x1df/0x250
[  154.302098][ T7225]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  154.302129][ T7225]  ? rw_verify_area+0x258/0x650
[  154.302163][ T7225]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  154.302192][ T7225]  vfs_read+0x200/0x980
[  154.302233][ T7225]  ? __pfx___mutex_lock+0x10/0x10
[  154.302256][ T7225]  ? __pfx_vfs_read+0x10/0x10
[  154.302292][ T7225]  ? __fget_files+0x2a/0x420
[  154.302322][ T7225]  ? __fget_files+0x3a0/0x420
[  154.302345][ T7225]  ? __fget_files+0x2a/0x420
[  154.302380][ T7225]  ksys_read+0x145/0x250
[  154.302404][ T7225]  ? __pfx_ksys_read+0x10/0x10
[  154.302435][ T7225]  ? rcu_is_watching+0x15/0xb0
[  154.302476][ T7225]  ? do_syscall_64+0xbe/0x3b0
[  154.302502][ T7225]  do_syscall_64+0xfa/0x3b0
[  154.302522][ T7225]  ? lockdep_hardirqs_on+0x9c/0x150
[  154.302555][ T7225]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.302577][ T7225]  ? clear_bhb_loop+0x60/0xb0
[  154.302622][ T7225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.302643][ T7225] RIP: 0033:0x7fbde5d8d33c
[  154.302664][ T7225] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  154.302683][ T7225] RSP: 002b:00007fbde6b1d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  154.302707][ T7225] RAX: ffffffffffffffda RBX: 00007fbde5fb5fa0 RCX: 00007fbde5d8d33c
[  154.302723][ T7225] RDX: 000000000000000f RSI: 00007fbde6b1d0a0 RDI: 0000000000000005
[  154.302737][ T7225] RBP: 00007fbde6b1d090 R08: 0000000000000000 R09: 0000000000000000
[  154.302751][ T7225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.302763][ T7225] R13: 0000000000000000 R14: 00007fbde5fb5fa0 R15: 00007ffdfd249088
[  154.302798][ T7225]  </TASK>
[  154.590454][ T7007] batman_adv: batadv0: Interface activated: batadv_slave_1
[  154.616963][ T7007] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  154.625982][ T7007] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  154.635971][ T7007] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  154.648333][ T7007] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  154.788221][ T1162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.818986][ T1162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.956176][ T1162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.970868][ T1162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.038015][ T7243] netlink: 'syz.1.466': attribute type 21 has an invalid length.
[  155.050161][ T7243] netlink: 'syz.1.466': attribute type 2 has an invalid length.
[  155.060817][ T7243] netlink: 9062 bytes leftover after parsing attributes in process `syz.1.466'.
[  155.498670][ T7252] netlink: 'syz.0.469': attribute type 21 has an invalid length.
[  155.506893][ T7252] netlink: 168 bytes leftover after parsing attributes in process `syz.0.469'.
[  155.877732][ T7267] FAULT_INJECTION: forcing a failure.
[  155.877732][ T7267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.923600][ T7267] CPU: 0 UID: 0 PID: 7267 Comm: syz.4.475 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  155.923635][ T7267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.923649][ T7267] Call Trace:
[  155.923658][ T7267]  <TASK>
[  155.923668][ T7267]  dump_stack_lvl+0x189/0x250
[  155.923722][ T7267]  ? __pfx____ratelimit+0x10/0x10
[  155.923758][ T7267]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.923793][ T7267]  ? __pfx__printk+0x10/0x10
[  155.923818][ T7267]  ? __might_fault+0xb0/0x130
[  155.923853][ T7267]  should_fail_ex+0x414/0x560
[  155.923889][ T7267]  _copy_from_user+0x2d/0xb0
[  155.923918][ T7267]  __sys_bpf+0x1ed/0x860
[  155.923952][ T7267]  ? __pfx___sys_bpf+0x10/0x10
[  155.923996][ T7267]  ? ksys_write+0x22a/0x250
[  155.924020][ T7267]  ? __pfx_ksys_write+0x10/0x10
[  155.924038][ T7267]  ? rcu_is_watching+0x15/0xb0
[  155.924082][ T7267]  __x64_sys_bpf+0x7c/0x90
[  155.924110][ T7267]  do_syscall_64+0xfa/0x3b0
[  155.924130][ T7267]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.924163][ T7267]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.924185][ T7267]  ? clear_bhb_loop+0x60/0xb0
[  155.924212][ T7267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.924234][ T7267] RIP: 0033:0x7fdb63f8e929
[  155.924253][ T7267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.924273][ T7267] RSP: 002b:00007fdb61df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  155.924296][ T7267] RAX: ffffffffffffffda RBX: 00007fdb641b5fa0 RCX: 00007fdb63f8e929
[  155.924313][ T7267] RDX: 0000000000000050 RSI: 0000200000000440 RDI: 000000000000001c
[  155.924326][ T7267] RBP: 00007fdb61df6090 R08: 0000000000000000 R09: 0000000000000000
[  155.924340][ T7267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.924353][ T7267] R13: 0000000000000000 R14: 00007fdb641b5fa0 R15: 00007ffc28a93cf8
[  155.924388][ T7267]  </TASK>
[  156.413199][   T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.619449][   T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.737097][ T7288] netlink: 'syz.1.481': attribute type 2 has an invalid length.
[  156.775099][ T7288] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.481'.
[  156.807424][ T7287] netlink: 'syz.1.481': attribute type 2 has an invalid length.
[  156.845734][ T7287] netlink: 'syz.1.481': attribute type 8 has an invalid length.
[  156.855685][ T7287] netlink: 132 bytes leftover after parsing attributes in process `syz.1.481'.
[  156.941713][   T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.123756][   T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.340650][ T5854] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  157.351443][ T5854] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  157.364989][ T5854] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  157.373747][ T5854] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  157.385626][ T5854] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  157.473305][   T49] bridge_slave_1: left allmulticast mode
[  157.505222][   T49] bridge_slave_1: left promiscuous mode
[  157.535287][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.779814][ T7317] FAULT_INJECTION: forcing a failure.
[  157.779814][ T7317] name failslab, interval 1, probability 0, space 0, times 0
[  157.850353][ T7317] CPU: 1 UID: 0 PID: 7317 Comm: syz.0.490 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  157.850386][ T7317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.850400][ T7317] Call Trace:
[  157.850408][ T7317]  <TASK>
[  157.850417][ T7317]  dump_stack_lvl+0x189/0x250
[  157.850457][ T7317]  ? __pfx____ratelimit+0x10/0x10
[  157.850491][ T7317]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.850536][ T7317]  ? __pfx__printk+0x10/0x10
[  157.850564][ T7317]  ? __pfx___might_resched+0x10/0x10
[  157.850597][ T7317]  ? fs_reclaim_acquire+0x7d/0x100
[  157.850628][ T7317]  should_fail_ex+0x414/0x560
[  157.850663][ T7317]  should_failslab+0xa8/0x100
[  157.850689][ T7317]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  157.850712][ T7317]  ? __alloc_skb+0x112/0x2d0
[  157.850743][ T7317]  __alloc_skb+0x112/0x2d0
[  157.850774][ T7317]  alloc_skb_with_frags+0xca/0x890
[  157.850820][ T7317]  sock_alloc_send_pskb+0x857/0x990
[  157.850875][ T7317]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  157.850913][ T7317]  ? sk_psock_verdict_data_ready+0xcb/0x390
[  157.850940][ T7317]  ? sk_psock_verdict_data_ready+0xcb/0x390
[  157.850968][ T7317]  ? __pfx_sock_def_readable+0x10/0x10
[  157.850999][ T7317]  ? sk_psock_verdict_data_ready+0x33d/0x390
[  157.851030][ T7317]  unix_stream_sendmsg+0x4c2/0xc90
[  157.851075][ T7317]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  157.851108][ T7317]  ? aa_sock_msg_perm+0x94/0x160
[  157.851161][ T7317]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  157.851189][ T7317]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  157.851216][ T7317]  __sock_sendmsg+0x219/0x270
[  157.851254][ T7317]  ____sys_sendmsg+0x505/0x830
[  157.851291][ T7317]  ? __pfx_____sys_sendmsg+0x10/0x10
[  157.851329][ T7317]  ? import_iovec+0x74/0xa0
[  157.851356][ T7317]  ___sys_sendmsg+0x21f/0x2a0
[  157.851387][ T7317]  ? __pfx____sys_sendmsg+0x10/0x10
[  157.851459][ T7317]  ? __fget_files+0x2a/0x420
[  157.851482][ T7317]  ? __fget_files+0x3a0/0x420
[  157.851529][ T7317]  __x64_sys_sendmsg+0x19b/0x260
[  157.851559][ T7317]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  157.851600][ T7317]  ? __pfx_ksys_write+0x10/0x10
[  157.851628][ T7317]  ? do_syscall_64+0xbe/0x3b0
[  157.851653][ T7317]  do_syscall_64+0xfa/0x3b0
[  157.851671][ T7317]  ? lockdep_hardirqs_on+0x9c/0x150
[  157.851704][ T7317]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.851725][ T7317]  ? clear_bhb_loop+0x60/0xb0
[  157.851750][ T7317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.851770][ T7317] RIP: 0033:0x7fbde5d8e929
[  157.851788][ T7317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.851806][ T7317] RSP: 002b:00007fbde3bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  157.851829][ T7317] RAX: ffffffffffffffda RBX: 00007fbde5fb6080 RCX: 00007fbde5d8e929
[  157.851845][ T7317] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  157.851858][ T7317] RBP: 00007fbde3bf6090 R08: 0000000000000000 R09: 0000000000000000
[  157.851871][ T7317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.851883][ T7317] R13: 0000000000000000 R14: 00007fbde5fb6080 R15: 00007ffdfd249088
[  157.851919][ T7317]  </TASK>
[  158.410269][   T49] bridge_slave_0: left allmulticast mode
[  158.416347][   T49] bridge_slave_0: left promiscuous mode
[  158.427418][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.925529][ T7340] netlink: 'syz.3.495': attribute type 21 has an invalid length.
[  159.131940][ T7346] netlink: 'syz.4.497': attribute type 17 has an invalid length.
[  159.156921][ T7346] netlink: 'syz.4.497': attribute type 16 has an invalid length.
[  159.184366][ T7346] netlink: 152 bytes leftover after parsing attributes in process `syz.4.497'.
[  159.186951][ T7348] netlink: 14 bytes leftover after parsing attributes in process `syz.0.498'.
[  159.299679][ T7350] netlink: 'syz.0.498': attribute type 10 has an invalid length.
[  159.428047][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  159.440179][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  159.451366][   T49] bond0 (unregistering): Released all slaves
[  159.463032][ T5154] Bluetooth: hci1: command tx timeout
[  159.605030][ T7350] bond0: (slave bond_slave_0): Releasing backup interface
[  160.007812][ T7361] netlink: 'syz.4.502': attribute type 10 has an invalid length.
[  160.540926][   T49] hsr_slave_0: left promiscuous mode
[  160.685502][   T49] hsr_slave_1: left promiscuous mode
[  160.726317][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.766324][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.808899][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.840450][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.038291][   T49] veth1_macvtap: left promiscuous mode
[  161.061814][   T49] veth0_macvtap: left promiscuous mode
[  161.081777][   T49] veth1_vlan: left promiscuous mode
[  161.098383][   T49] veth0_vlan: left promiscuous mode
[  161.112620][ T7395] netlink: 'syz.0.510': attribute type 1 has an invalid length.
[  161.132655][ T7395] netlink: 17 bytes leftover after parsing attributes in process `syz.0.510'.
[  161.562010][ T5154] Bluetooth: hci1: command tx timeout
[  162.401083][   T49] team0 (unregistering): Port device team_slave_1 removed
[  162.461737][   T49] team0 (unregistering): Port device team_slave_0 removed
[  163.624739][ T5154] Bluetooth: hci1: command tx timeout
[  163.638074][ T7304] chnl_net:caif_netlink_parms(): no params data found
[  164.174005][ T7304] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.187100][ T7304] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.202766][ T7304] bridge_slave_0: entered allmulticast mode
[  164.212856][ T7304] bridge_slave_0: entered promiscuous mode
[  164.380441][ T7304] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.411612][ T7304] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.442389][ T7304] bridge_slave_1: entered allmulticast mode
[  164.460694][ T7304] bridge_slave_1: entered promiscuous mode
[  165.702921][ T5154] Bluetooth: hci1: command tx timeout
[  165.780049][ T7482] netlink: 188 bytes leftover after parsing attributes in process `syz.3.533'.
[  167.187707][ T7304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  167.236844][ T7493] netlink: 830 bytes leftover after parsing attributes in process `syz.0.538'.
[  167.264042][ T7493] netlink: 'syz.0.538': attribute type 2 has an invalid length.
[  167.478703][ T7304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  167.549254][ T7503] FAULT_INJECTION: forcing a failure.
[  167.549254][ T7503] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.567989][ T7503] CPU: 0 UID: 0 PID: 7503 Comm: syz.0.541 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  167.568023][ T7503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.568038][ T7503] Call Trace:
[  167.568049][ T7503]  <TASK>
[  167.568059][ T7503]  dump_stack_lvl+0x189/0x250
[  167.568104][ T7503]  ? __pfx____ratelimit+0x10/0x10
[  167.568141][ T7503]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.568180][ T7503]  ? __pfx__printk+0x10/0x10
[  167.568223][ T7503]  should_fail_ex+0x414/0x560
[  167.568262][ T7503]  _copy_to_user+0x31/0xb0
[  167.568290][ T7503]  simple_read_from_buffer+0xe1/0x170
[  167.568323][ T7503]  proc_fail_nth_read+0x1df/0x250
[  167.568370][ T7503]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.568405][ T7503]  ? rw_verify_area+0x258/0x650
[  167.568441][ T7503]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.568473][ T7503]  vfs_read+0x200/0x980
[  167.568517][ T7503]  ? __pfx___mutex_lock+0x10/0x10
[  167.568542][ T7503]  ? __pfx_vfs_read+0x10/0x10
[  167.568582][ T7503]  ? __fget_files+0x2a/0x420
[  167.568615][ T7503]  ? __fget_files+0x3a0/0x420
[  167.568646][ T7503]  ? __fget_files+0x2a/0x420
[  167.568685][ T7503]  ksys_read+0x145/0x250
[  167.568711][ T7503]  ? __pfx_ksys_read+0x10/0x10
[  167.568745][ T7503]  ? rcu_is_watching+0x15/0xb0
[  167.568790][ T7503]  ? do_syscall_64+0xbe/0x3b0
[  167.568819][ T7503]  do_syscall_64+0xfa/0x3b0
[  167.568840][ T7503]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.568876][ T7503]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.568900][ T7503]  ? clear_bhb_loop+0x60/0xb0
[  167.568930][ T7503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.568953][ T7503] RIP: 0033:0x7fbde5d8d33c
[  167.568975][ T7503] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  167.568995][ T7503] RSP: 002b:00007fbde6b1d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  167.569020][ T7503] RAX: ffffffffffffffda RBX: 00007fbde5fb5fa0 RCX: 00007fbde5d8d33c
[  167.569038][ T7503] RDX: 000000000000000f RSI: 00007fbde6b1d0a0 RDI: 0000000000000004
[  167.569053][ T7503] RBP: 00007fbde6b1d090 R08: 0000000000000000 R09: 0000000000000000
[  167.569068][ T7503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.569082][ T7503] R13: 0000000000000000 R14: 00007fbde5fb5fa0 R15: 00007ffdfd249088
[  167.569121][ T7503]  </TASK>
[  167.883919][ T7304] team0: Port device team_slave_0 added
[  168.006176][ T7304] team0: Port device team_slave_1 added
[  168.211413][ T7304] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.227334][ T7304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.260618][ T7304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  168.296814][ T7304] batman_adv: batadv0: Adding interface: batadv_slave_1
[  168.307004][ T7304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.334239][ T7304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  168.384051][ T7526] sctp: [Deprecated]: syz.3.547 (pid 7526) Use of struct sctp_assoc_value in delayed_ack socket option.
[  168.384051][ T7526] Use struct sctp_sack_info instead
[  168.396913][ T7525] 
€Â0: renamed from pim6reg1
[  168.442673][ T7520] netlink: 61211 bytes leftover after parsing attributes in process `syz.1.549'.
[  168.503843][ T7304] hsr_slave_0: entered promiscuous mode
[  168.510844][ T7304] hsr_slave_1: entered promiscuous mode
[  168.533501][ T7304] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  168.541170][ T7304] Cannot create hsr debugfs directory
[  168.776893][ T7536] netlink: 'syz.1.553': attribute type 2 has an invalid length.
[  168.786099][ T7536] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.553'.
[  168.796917][ T7536] nbd: must specify at least one socket
[  170.533740][ T7585] netlink: 'syz.4.566': attribute type 3 has an invalid length.
[  170.551583][ T7585] netlink: 199752 bytes leftover after parsing attributes in process `syz.4.566'.
[  171.169466][ T7304] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  171.228478][ T7304] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  171.356968][ T7304] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  171.448316][ T7304] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  171.899698][ T7632] netlink: 'syz.0.577': attribute type 10 has an invalid length.
[  171.937784][ T7632] netlink: 40 bytes leftover after parsing attributes in process `syz.0.577'.
[  171.960060][ T7304] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.005372][ T7632] team0: entered promiscuous mode
[  172.022159][ T7632] team_slave_0: entered promiscuous mode
[  172.029802][ T7632] team_slave_1: entered promiscuous mode
[  172.039379][ T7632] team0: entered allmulticast mode
[  172.045503][ T7632] team_slave_0: entered allmulticast mode
[  172.051695][ T7632] team_slave_1: entered allmulticast mode
[  172.063753][ T7632] bridge0: port 3(team0) entered blocking state
[  172.074421][ T7632] bridge0: port 3(team0) entered disabled state
[  172.088955][ T7632] bridge0: port 3(team0) entered blocking state
[  172.095771][ T7632] bridge0: port 3(team0) entered forwarding state
[  172.218257][ T7304] 8021q: adding VLAN 0 to HW filter on device team0
[  172.280071][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.287496][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.313047][ T7647] netlink: 64 bytes leftover after parsing attributes in process `syz.4.582'.
[  172.338124][ T1107] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.345384][ T1107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.029705][ T7666] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.589'.
[  173.042708][ T7667] netlink: 144 bytes leftover after parsing attributes in process `syz.3.588'.
[  173.684772][ T7304] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.883612][ T7304] veth0_vlan: entered promiscuous mode
[  173.950279][ T7304] veth1_vlan: entered promiscuous mode
[  174.071175][ T7304] veth0_macvtap: entered promiscuous mode
[  174.133142][ T7691] netlink: 'syz.1.594': attribute type 21 has an invalid length.
[  174.172238][ T7691] netlink: 168 bytes leftover after parsing attributes in process `syz.1.594'.
[  174.264844][ T7304] veth1_macvtap: entered promiscuous mode
[  174.365779][ T7304] batman_adv: batadv0: Interface activated: batadv_slave_0
[  174.447294][ T7304] batman_adv: batadv0: Interface activated: batadv_slave_1
[  174.471825][ T7304] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.482369][ T7304] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.494689][ T7304] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.509281][ T7304] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.631002][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  176.688184][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  176.856976][ T1162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  176.913077][ T1162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  177.134009][ T7750] FAULT_INJECTION: forcing a failure.
[  177.134009][ T7750] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.167649][ T7750] CPU: 1 UID: 0 PID: 7750 Comm: syz.3.612 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  177.167681][ T7750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  177.167693][ T7750] Call Trace:
[  177.167702][ T7750]  <TASK>
[  177.167713][ T7750]  dump_stack_lvl+0x189/0x250
[  177.167763][ T7750]  ? __pfx____ratelimit+0x10/0x10
[  177.167801][ T7750]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.167838][ T7750]  ? __pfx__printk+0x10/0x10
[  177.167873][ T7750]  ? __might_fault+0xb0/0x130
[  177.167905][ T7750]  ? __might_fault+0xb0/0x130
[  177.167945][ T7750]  should_fail_ex+0x414/0x560
[  177.167992][ T7750]  _copy_from_iter+0x1db/0x16f0
[  177.168038][ T7750]  ? sock_alloc_send_pskb+0x875/0x990
[  177.168093][ T7750]  ? __pfx__copy_from_iter+0x10/0x10
[  177.168157][ T7750]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  177.168203][ T7750]  skb_copy_datagram_from_iter+0xf5/0x720
[  177.168242][ T7750]  ? sk_psock_verdict_data_ready+0xcb/0x390
[  177.168275][ T7750]  ? skb_put+0x11b/0x210
[  177.168315][ T7750]  unix_stream_sendmsg+0x5a1/0xc90
[  177.168393][ T7750]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  177.168434][ T7750]  ? perf_trace_run_bpf_submit+0xee/0x170
[  177.168467][ T7750]  ? aa_sock_msg_perm+0x94/0x160
[  177.168505][ T7750]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  177.168535][ T7750]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  177.168568][ T7750]  __sock_sendmsg+0x219/0x270
[  177.168619][ T7750]  ____sys_sendmsg+0x505/0x830
[  177.168669][ T7750]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.168731][ T7750]  ? import_iovec+0x74/0xa0
[  177.168777][ T7750]  ___sys_sendmsg+0x21f/0x2a0
[  177.168819][ T7750]  ? __pfx____sys_sendmsg+0x10/0x10
[  177.168919][ T7750]  ? __fget_files+0x2a/0x420
[  177.168985][ T7750]  ? __fget_files+0x2a/0x420
[  177.169010][ T7750]  ? __fget_files+0x3a0/0x420
[  177.169070][ T7750]  __x64_sys_sendmsg+0x19b/0x260
[  177.169111][ T7750]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  177.169175][ T7750]  ? __pfx_ksys_write+0x10/0x10
[  177.169218][ T7750]  ? do_syscall_64+0xbe/0x3b0
[  177.169256][ T7750]  do_syscall_64+0xfa/0x3b0
[  177.169276][ T7750]  ? lockdep_hardirqs_on+0x9c/0x150
[  177.169313][ T7750]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.169358][ T7750]  ? clear_bhb_loop+0x60/0xb0
[  177.169393][ T7750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.169431][ T7750] RIP: 0033:0x7f2ad0f8e929
[  177.169455][ T7750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.169473][ T7750] RSP: 002b:00007f2ad1dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.169497][ T7750] RAX: ffffffffffffffda RBX: 00007f2ad11b5fa0 RCX: 00007f2ad0f8e929
[  177.169513][ T7750] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  177.169527][ T7750] RBP: 00007f2ad1dde090 R08: 0000000000000000 R09: 0000000000000000
[  177.169541][ T7750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  177.169553][ T7750] R13: 0000000000000000 R14: 00007f2ad11b5fa0 R15: 00007ffe004a68a8
[  177.169619][ T7750]  </TASK>
[  177.897555][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.336768][ T7784] netlink: 'syz.0.616': attribute type 21 has an invalid length.
[  178.350395][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.667834][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.055422][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.882785][ T7820] netlink: 'syz.3.627': attribute type 21 has an invalid length.
[  180.066427][ T7820] netlink: 144 bytes leftover after parsing attributes in process `syz.3.627'.
[  180.409411][ T5854] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  180.422800][ T5854] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  180.431604][ T5854] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  180.452546][ T5854] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  180.461345][ T5854] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  180.512366][   T13] bridge_slave_1: left allmulticast mode
[  180.534834][   T13] bridge_slave_1: left promiscuous mode
[  180.540724][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.627828][   T13] bridge_slave_0: left allmulticast mode
[  180.648862][   T13] bridge_slave_0: left promiscuous mode
[  180.661813][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.667220][ T7840] openvswitch: netlink: Flow key attr not present in new flow.
[  182.353191][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  182.382757][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  182.410128][   T13] bond0 (unregistering): Released all slaves
[  182.502796][ T5154] Bluetooth: hci1: command tx timeout
[  182.566663][ T7844] veth1_macvtap: left promiscuous mode
[  182.611451][ T7844] macsec0: entered promiscuous mode
[  182.623920][ T7844] macsec0: entered allmulticast mode
[  182.878018][ T7891] netlink: 25 bytes leftover after parsing attributes in process `syz.3.641'.
[  182.949851][ T7891] netlink: zone id is out of range
[  182.956857][ T7891] netlink: zone id is out of range
[  182.967550][ T7891] netlink: zone id is out of range
[  182.973684][ T7891] netlink: zone id is out of range
[  182.978847][ T7891] netlink: zone id is out of range
[  182.989021][ T7891] netlink: zone id is out of range
[  182.998384][ T7891] netlink: zone id is out of range
[  183.008147][ T7891] netlink: zone id is out of range
[  183.035768][ T7891] netlink: zone id is out of range
[  183.726861][   T13] hsr_slave_0: left promiscuous mode
[  183.756383][   T13] hsr_slave_1: left promiscuous mode
[  183.762899][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  183.770386][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  183.807664][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  183.815272][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  183.870542][   T13] veth1_macvtap: left promiscuous mode
[  183.914200][   T13] veth0_macvtap: left promiscuous mode
[  183.923217][   T13] veth1_vlan: left promiscuous mode
[  183.937254][   T13] veth0_vlan: left promiscuous mode
[  184.534766][ T7934] netlink: 'syz.3.652': attribute type 21 has an invalid length.
[  184.586743][ T7934] netlink: 168 bytes leftover after parsing attributes in process `syz.3.652'.
[  184.596892][ T5154] Bluetooth: hci1: command tx timeout
[  185.776016][ T7960] netlink: 'syz.1.656': attribute type 21 has an invalid length.
[  188.253344][ T5154] Bluetooth: hci1: command tx timeout
[  190.263383][ T5154] Bluetooth: hci1: command tx timeout
[  190.405082][   T13] team0 (unregistering): Port device team_slave_1 removed
[  190.458050][   T13] team0 (unregistering): Port device team_slave_0 removed
[  190.520763][ T7980] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.660'.
[  192.640773][ T7999] FAULT_INJECTION: forcing a failure.
[  192.640773][ T7999] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.659746][ T7999] CPU: 0 UID: 0 PID: 7999 Comm: syz.3.665 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  192.659774][ T7999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.659785][ T7999] Call Trace:
[  192.659795][ T7999]  <TASK>
[  192.659804][ T7999]  dump_stack_lvl+0x189/0x250
[  192.659856][ T7999]  ? __pfx____ratelimit+0x10/0x10
[  192.659889][ T7999]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.659922][ T7999]  ? __pfx__printk+0x10/0x10
[  192.659948][ T7999]  ? __might_fault+0xb0/0x130
[  192.659977][ T7999]  ? __might_fault+0xb0/0x130
[  192.660013][ T7999]  should_fail_ex+0x414/0x560
[  192.660056][ T7999]  _copy_from_iter+0x1db/0x16f0
[  192.660098][ T7999]  ? sock_alloc_send_pskb+0x875/0x990
[  192.660145][ T7999]  ? __pfx__copy_from_iter+0x10/0x10
[  192.660202][ T7999]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  192.660243][ T7999]  skb_copy_datagram_from_iter+0xf5/0x720
[  192.660285][ T7999]  ? sk_psock_verdict_data_ready+0xcb/0x390
[  192.660314][ T7999]  ? skb_put+0x11b/0x210
[  192.660351][ T7999]  unix_stream_sendmsg+0x5a1/0xc90
[  192.660428][ T7999]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  192.660465][ T7999]  ? perf_trace_run_bpf_submit+0xee/0x170
[  192.660494][ T7999]  ? aa_sock_msg_perm+0x94/0x160
[  192.660527][ T7999]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  192.660552][ T7999]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  192.660583][ T7999]  __sock_sendmsg+0x219/0x270
[  192.660627][ T7999]  ____sys_sendmsg+0x505/0x830
[  192.660672][ T7999]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.660727][ T7999]  ? import_iovec+0x74/0xa0
[  192.660761][ T7999]  ___sys_sendmsg+0x21f/0x2a0
[  192.660798][ T7999]  ? __pfx____sys_sendmsg+0x10/0x10
[  192.660884][ T7999]  ? __fget_files+0x2a/0x420
[  192.660943][ T7999]  ? __fget_files+0x2a/0x420
[  192.660964][ T7999]  ? __fget_files+0x3a0/0x420
[  192.661018][ T7999]  __x64_sys_sendmsg+0x19b/0x260
[  192.661075][ T7999]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  192.661098][ T7999]  ? perf_trace_preemptirq_template+0xa3/0x340
[  192.661154][ T7999]  ? __pfx_ksys_write+0x10/0x10
[  192.661169][ T7999]  ? rcu_is_watching+0x15/0xb0
[  192.661216][ T7999]  ? do_syscall_64+0xbe/0x3b0
[  192.661249][ T7999]  do_syscall_64+0xfa/0x3b0
[  192.661267][ T7999]  ? lockdep_hardirqs_on+0x9c/0x150
[  192.661308][ T7999]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.661328][ T7999]  ? clear_bhb_loop+0x60/0xb0
[  192.661367][ T7999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.661388][ T7999] RIP: 0033:0x7f2ad0f8e929
[  192.661417][ T7999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.661434][ T7999] RSP: 002b:00007f2ad1dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  192.661462][ T7999] RAX: ffffffffffffffda RBX: 00007f2ad11b5fa0 RCX: 00007f2ad0f8e929
[  192.661477][ T7999] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  192.661489][ T7999] RBP: 00007f2ad1dde090 R08: 0000000000000000 R09: 0000000000000000
[  192.661501][ T7999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  192.661512][ T7999] R13: 0000000000000000 R14: 00007f2ad11b5fa0 R15: 00007ffe004a68a8
[  192.661572][ T7999]  </TASK>
[  193.819893][ T8011] netlink: 4 bytes leftover after parsing attributes in process `syz.3.671'.
[  194.408798][ T8016] netlink: 809 bytes leftover after parsing attributes in process `syz.1.672'.
[  194.453181][ T8016] netlink: 130160 bytes leftover after parsing attributes in process `syz.1.672'.
[  194.509293][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  194.516319][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  194.746782][ T7826] chnl_net:caif_netlink_parms(): no params data found
[  195.252907][ T8045] netlink: 'syz.1.678': attribute type 17 has an invalid length.
[  195.296037][ T7826] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.305290][ T8045] netlink: 'syz.1.678': attribute type 16 has an invalid length.
[  195.326042][ T7826] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.326713][ T8045] netlink: 152 bytes leftover after parsing attributes in process `syz.1.678'.
[  195.340326][ T7826] bridge_slave_0: entered allmulticast mode
[  195.383011][ T7826] bridge_slave_0: entered promiscuous mode
[  195.419621][ T7826] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.446098][ T7826] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.469753][ T7826] bridge_slave_1: entered allmulticast mode
[  195.506845][ T7826] bridge_slave_1: entered promiscuous mode
[  195.651015][ T7826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.701790][ T7826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.930587][ T8062] netlink: 'syz.4.682': attribute type 10 has an invalid length.
[  195.950193][ T8062] netlink: 2 bytes leftover after parsing attributes in process `syz.4.682'.
[  195.980235][ T8060] netlink: 60 bytes leftover after parsing attributes in process `syz.4.682'.
[  196.392226][ T8062] bond0: entered promiscuous mode
[  196.430798][ T8062] bond_slave_0: entered promiscuous mode
[  196.532778][ T8062] bond_slave_1: entered promiscuous mode
[  196.539172][ T8062] bridge0: port 3(bond0) entered blocking state
[  196.602947][ T8062] bridge0: port 3(bond0) entered disabled state
[  196.797426][ T8062] bond0: entered allmulticast mode
[  196.847073][ T8062] bond_slave_0: entered allmulticast mode
[  196.966858][ T8062] bond_slave_1: entered allmulticast mode
[  197.043390][ T8062] bridge0: port 3(bond0) entered blocking state
[  197.049930][ T8062] bridge0: port 3(bond0) entered forwarding state
[  197.131692][ T7826] team0: Port device team_slave_0 added
[  197.304517][ T7826] team0: Port device team_slave_1 added
[  197.465187][ T7826] batman_adv: batadv0: Adding interface: batadv_slave_0
[  197.498738][ T7826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.563474][ T7826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  197.586805][ T7826] batman_adv: batadv0: Adding interface: batadv_slave_1
[  197.599843][ T7826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.634336][ T7826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.980493][ T8110] netlink: 10 bytes leftover after parsing attributes in process `syz.1.697'.
[  198.026194][ T7826] hsr_slave_0: entered promiscuous mode
[  198.049138][ T7826] hsr_slave_1: entered promiscuous mode
[  198.058574][ T7826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  198.088380][ T7826] Cannot create hsr debugfs directory
[  198.121602][ T8121] net_ratelimit: 77 callbacks suppressed
[  198.121626][ T8121] bond_slave_1: mtu less than device minimum
[  199.585658][ T8167] netlink: 'syz.3.710': attribute type 33 has an invalid length.
[  199.625276][ T8167] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.710'.
[  203.368363][ T8229] nr0: tun_chr_ioctl cmd 1074025677
[  203.377742][ T8229] nr0: linktype set to 768
[  203.378640][ T8230] netlink: 'syz.1.725': attribute type 10 has an invalid length.
[  203.430433][ T8234] netlink: 'syz.1.725': attribute type 17 has an invalid length.
[  203.443612][ T8234] netlink: 'syz.1.725': attribute type 16 has an invalid length.
[  203.444101][ T8235] netlink: 'syz.3.724': attribute type 39 has an invalid length.
[  203.470189][ T8234] netlink: 152 bytes leftover after parsing attributes in process `syz.1.725'.
[  203.480060][ T8229] nr0: tun_chr_ioctl cmd 1074025680
[  203.508926][ T8230] batman_adv: batadv0: Adding interface: team0
[  203.515504][ T8230] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  203.548789][ T8230] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  203.616947][ T7826] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  203.640392][ T7826] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  203.657125][ T7826] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  203.669398][ T7826] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  203.970310][ T7826] 8021q: adding VLAN 0 to HW filter on device bond0
[  204.078370][ T7826] 8021q: adding VLAN 0 to HW filter on device team0
[  204.142936][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.150233][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.238648][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.246008][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.586814][ T8269] netlink: 15231 bytes leftover after parsing attributes in process `syz.0.733'.
[  204.756314][ T8276] netlink: 'syz.1.735': attribute type 19 has an invalid length.
[  204.783392][ T8276] netlink: 55 bytes leftover after parsing attributes in process `syz.1.735'.
[  205.426843][ T8294] netlink: 60 bytes leftover after parsing attributes in process `syz.0.738'.
[  205.454606][ T8293] netlink: 'syz.3.739': attribute type 29 has an invalid length.
[  205.482266][ T8291] netlink: 60 bytes leftover after parsing attributes in process `syz.0.738'.
[  205.508894][ T8293] netlink: 'syz.3.739': attribute type 29 has an invalid length.
[  205.541675][ T8294] netlink: 60 bytes leftover after parsing attributes in process `syz.0.738'.
[  205.812672][ T7826] 8021q: adding VLAN 0 to HW filter on device batadv0
[  206.072244][ T7826] veth0_vlan: entered promiscuous mode
[  206.119457][ T7826] veth1_vlan: entered promiscuous mode
[  206.266723][ T7826] veth0_macvtap: entered promiscuous mode
[  206.312778][ T7826] veth1_macvtap: entered promiscuous mode
[  206.369434][ T7826] batman_adv: batadv0: Interface activated: batadv_slave_0
[  206.445733][ T7826] batman_adv: batadv0: Interface activated: batadv_slave_1
[  206.503518][ T7826] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.536778][ T7826] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.562033][ T7826] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.601584][ T7826] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  207.618724][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.655682][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  207.793829][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.832812][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  208.338582][ T8359] FAULT_INJECTION: forcing a failure.
[  208.338582][ T8359] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.419486][ T8359] CPU: 0 UID: 0 PID: 8359 Comm: syz.4.759 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  208.419517][ T8359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.419531][ T8359] Call Trace:
[  208.419541][ T8359]  <TASK>
[  208.419553][ T8359]  dump_stack_lvl+0x189/0x250
[  208.419606][ T8359]  ? __pfx____ratelimit+0x10/0x10
[  208.419644][ T8359]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.419683][ T8359]  ? __pfx__printk+0x10/0x10
[  208.419718][ T8359]  ? __might_fault+0xb0/0x130
[  208.419752][ T8359]  ? __might_fault+0xb0/0x130
[  208.419794][ T8359]  should_fail_ex+0x414/0x560
[  208.419843][ T8359]  _copy_from_iter+0x1db/0x16f0
[  208.419887][ T8359]  ? rep_movs_alternative+0x4a/0x90
[  208.419942][ T8359]  ? __pfx__copy_from_iter+0x10/0x10
[  208.419972][ T8359]  ? sock_alloc_send_pskb+0x875/0x990
[  208.420026][ T8359]  ? __pfx__copy_from_iter+0x10/0x10
[  208.420071][ T8359]  ? page_copy_sane+0x16a/0x280
[  208.420116][ T8359]  copy_page_from_iter+0xdd/0x170
[  208.420167][ T8359]  skb_copy_datagram_from_iter+0x306/0x720
[  208.420240][ T8359]  unix_stream_sendmsg+0x5a1/0xc90
[  208.420322][ T8359]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  208.420364][ T8359]  ? perf_trace_run_bpf_submit+0xee/0x170
[  208.420398][ T8359]  ? aa_sock_msg_perm+0x94/0x160
[  208.420436][ T8359]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  208.420465][ T8359]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  208.420500][ T8359]  __sock_sendmsg+0x219/0x270
[  208.420550][ T8359]  ____sys_sendmsg+0x505/0x830
[  208.420609][ T8359]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.420671][ T8359]  ? import_iovec+0x74/0xa0
[  208.420710][ T8359]  ___sys_sendmsg+0x21f/0x2a0
[  208.420752][ T8359]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.420851][ T8359]  ? __fget_files+0x2a/0x420
[  208.420913][ T8359]  ? __fget_files+0x2a/0x420
[  208.420936][ T8359]  ? __fget_files+0x3a0/0x420
[  208.420996][ T8359]  __x64_sys_sendmsg+0x19b/0x260
[  208.421036][ T8359]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  208.421098][ T8359]  ? __pfx_ksys_write+0x10/0x10
[  208.421116][ T8359]  ? rcu_is_watching+0x15/0xb0
[  208.421170][ T8359]  ? do_syscall_64+0xbe/0x3b0
[  208.421206][ T8359]  do_syscall_64+0xfa/0x3b0
[  208.421226][ T8359]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.421261][ T8359]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.421284][ T8359]  ? clear_bhb_loop+0x60/0xb0
[  208.421320][ T8359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.421342][ T8359] RIP: 0033:0x7fdb63f8e929
[  208.421365][ T8359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.421384][ T8359] RSP: 002b:00007fdb61df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.421407][ T8359] RAX: ffffffffffffffda RBX: 00007fdb641b5fa0 RCX: 00007fdb63f8e929
[  208.421423][ T8359] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  208.421437][ T8359] RBP: 00007fdb61df6090 R08: 0000000000000000 R09: 0000000000000000
[  208.421450][ T8359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  208.421462][ T8359] R13: 0000000000000000 R14: 00007fdb641b5fa0 R15: 00007ffc28a93cf8
[  208.421527][ T8359]  </TASK>
[  208.508301][ T8362] netlink: 'syz.3.762': attribute type 21 has an invalid length.
[  208.753453][ T8362] netlink: 168 bytes leftover after parsing attributes in process `syz.3.762'.
[  209.328406][ T1162] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.376154][ T8376] netlink: 22 bytes leftover after parsing attributes in process `syz.1.764'.
[  209.476920][ T1162] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.588717][ T1162] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.638761][ T1162] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.804381][ T1162] bridge_slave_1: left allmulticast mode
[  209.810125][ T1162] bridge_slave_1: left promiscuous mode
[  209.816115][ T1162] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.827272][ T1162] bridge_slave_0: left allmulticast mode
[  209.833753][ T1162] bridge_slave_0: left promiscuous mode
[  209.839514][ T1162] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.584456][ T8400] netlink: 'syz.0.773': attribute type 7 has an invalid length.
[  210.614879][ T8400] netlink: 85 bytes leftover after parsing attributes in process `syz.0.773'.
[  210.638930][ T8400] netlink: 130160 bytes leftover after parsing attributes in process `syz.0.773'.
[  210.677182][ T8400] netlink: 'syz.0.773': attribute type 7 has an invalid length.
[  210.693630][ T8400] netlink: 85 bytes leftover after parsing attributes in process `syz.0.773'.
[  210.788237][ T8402] netlink: 'syz.1.772': attribute type 17 has an invalid length.
[  210.802005][ T8402] netlink: 'syz.1.772': attribute type 16 has an invalid length.
[  210.809830][ T8402] netlink: 152 bytes leftover after parsing attributes in process `syz.1.772'.
[  210.935470][ T5854] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  210.950834][ T5854] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  210.973072][ T5854] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  210.987839][ T5854] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  210.992900][ T1162] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  210.998144][ T5854] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  211.015106][ T1162] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  211.031515][ T1162] bond0 (unregistering): Released all slaves
[  212.544578][ T8455] netlink: 'syz.3.789': attribute type 10 has an invalid length.
[  212.553483][ T1162] hsr_slave_0: left promiscuous mode
[  212.564859][ T1162] hsr_slave_1: left promiscuous mode
[  212.575622][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  212.594113][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_0
[  212.617819][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  212.628581][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_1
[  212.675354][ T1162] veth1_macvtap: left promiscuous mode
[  212.689554][ T1162] veth0_macvtap: left promiscuous mode
[  212.707036][ T1162] veth1_vlan: left promiscuous mode
[  212.718454][ T1162] veth0_vlan: left promiscuous mode
[  213.073479][ T5854] Bluetooth: hci1: command tx timeout
[  213.720393][ T1162] team0 (unregistering): Port device team_slave_1 removed
[  213.797217][ T1162] team0 (unregistering): Port device team_slave_0 removed
[  214.420805][ T8493] FAULT_INJECTION: forcing a failure.
[  214.420805][ T8493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.435318][ T8493] CPU: 1 UID: 0 PID: 8493 Comm: syz.3.801 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  214.435347][ T8493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  214.435362][ T8493] Call Trace:
[  214.435373][ T8493]  <TASK>
[  214.435383][ T8493]  dump_stack_lvl+0x189/0x250
[  214.435427][ T8493]  ? __pfx____ratelimit+0x10/0x10
[  214.435466][ T8493]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.435506][ T8493]  ? __pfx__printk+0x10/0x10
[  214.435536][ T8493]  ? __might_fault+0xb0/0x130
[  214.435570][ T8493]  ? __might_fault+0xb0/0x130
[  214.435612][ T8493]  should_fail_ex+0x414/0x560
[  214.435661][ T8493]  _copy_from_iter+0x1db/0x16f0
[  214.435706][ T8493]  ? rep_movs_alternative+0x4a/0x90
[  214.435761][ T8493]  ? __pfx__copy_from_iter+0x10/0x10
[  214.435790][ T8493]  ? sock_alloc_send_pskb+0x875/0x990
[  214.435845][ T8493]  ? __pfx__copy_from_iter+0x10/0x10
[  214.435893][ T8493]  ? page_copy_sane+0x16a/0x280
[  214.435937][ T8493]  copy_page_from_iter+0xdd/0x170
[  214.435989][ T8493]  skb_copy_datagram_from_iter+0x306/0x720
[  214.436060][ T8493]  unix_stream_sendmsg+0x5a1/0xc90
[  214.436143][ T8493]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  214.436186][ T8493]  ? perf_trace_run_bpf_submit+0xee/0x170
[  214.436219][ T8493]  ? aa_sock_msg_perm+0x94/0x160
[  214.436258][ T8493]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  214.436298][ T8493]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  214.436333][ T8493]  __sock_sendmsg+0x219/0x270
[  214.436382][ T8493]  ____sys_sendmsg+0x505/0x830
[  214.436434][ T8493]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.436497][ T8493]  ? import_iovec+0x74/0xa0
[  214.436536][ T8493]  ___sys_sendmsg+0x21f/0x2a0
[  214.436577][ T8493]  ? __pfx____sys_sendmsg+0x10/0x10
[  214.436677][ T8493]  ? __fget_files+0x2a/0x420
[  214.436760][ T8493]  ? __fget_files+0x2a/0x420
[  214.436784][ T8493]  ? __fget_files+0x3a0/0x420
[  214.436846][ T8493]  __x64_sys_sendmsg+0x19b/0x260
[  214.436888][ T8493]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  214.436953][ T8493]  ? __pfx_ksys_write+0x10/0x10
[  214.436971][ T8493]  ? rcu_is_watching+0x15/0xb0
[  214.437024][ T8493]  ? do_syscall_64+0xbe/0x3b0
[  214.437061][ T8493]  do_syscall_64+0xfa/0x3b0
[  214.437080][ T8493]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.437116][ T8493]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.437139][ T8493]  ? clear_bhb_loop+0x60/0xb0
[  214.437175][ T8493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.437197][ T8493] RIP: 0033:0x7f2ad0f8e929
[  214.437219][ T8493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.437238][ T8493] RSP: 002b:00007f2ad1dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.437262][ T8493] RAX: ffffffffffffffda RBX: 00007f2ad11b5fa0 RCX: 00007f2ad0f8e929
[  214.437287][ T8493] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  214.437301][ T8493] RBP: 00007f2ad1dde090 R08: 0000000000000000 R09: 0000000000000000
[  214.437314][ T8493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  214.437327][ T8493] R13: 0000000000000000 R14: 00007f2ad11b5fa0 R15: 00007ffe004a68a8
[  214.437394][ T8493]  </TASK>
[  215.019803][ T8502] IPv6: Can't replace route, no match found
[  215.169005][ T5848] Bluetooth: hci1: command tx timeout
[  215.169666][ T8404] chnl_net:caif_netlink_parms(): no params data found
[  215.282605][ T8514] netlink: 'syz.4.803': attribute type 21 has an invalid length.
[  215.358784][ T8514] netlink: 168 bytes leftover after parsing attributes in process `syz.4.803'.
[  217.064338][ T8404] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.065249][ T5848] Bluetooth: hci0: command 0x0406 tx timeout
[  217.071613][ T8404] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.078194][ T5844] Bluetooth: hci3: command 0x0406 tx timeout
[  217.091299][ T5848] Bluetooth: hci4: command 0x0406 tx timeout
[  217.092657][   T51] Bluetooth: hci2: command 0x0406 tx timeout
[  217.156245][ T8404] bridge_slave_0: entered allmulticast mode
[  217.164718][ T8404] bridge_slave_0: entered promiscuous mode
[  217.179942][ T8404] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.191152][ T8404] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.198749][ T8404] bridge_slave_1: entered allmulticast mode
[  217.207083][ T8404] bridge_slave_1: entered promiscuous mode
[  217.228396][ T5849] Bluetooth: hci1: command tx timeout
[  217.360796][ T8584] netlink: 'syz.1.812': attribute type 10 has an invalid length.
[  217.390016][ T8404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  217.409680][ T8584] batman_adv: batadv0: Removing interface: team0
[  217.425322][ T8584] bridge0: port 3(team0) entered blocking state
[  217.440045][ T8584] bridge0: port 3(team0) entered disabled state
[  217.478592][ T8584] team0: entered allmulticast mode
[  217.498063][ T8581] netlink: 'syz.3.811': attribute type 17 has an invalid length.
[  217.510618][ T8584] team_slave_0: entered allmulticast mode
[  217.536500][ T8581] netlink: 'syz.3.811': attribute type 16 has an invalid length.
[  217.541180][ T8584] team_slave_1: entered allmulticast mode
[  217.548779][ T8581] netlink: 152 bytes leftover after parsing attributes in process `syz.3.811'.
[  217.606119][ T8584] team0: entered promiscuous mode
[  217.630747][ T8584] team_slave_0: entered promiscuous mode
[  217.659917][ T8584] team_slave_1: entered promiscuous mode
[  217.696479][ T8404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  218.166853][ T8404] team0: Port device team_slave_0 added
[  218.212822][ T8404] team0: Port device team_slave_1 added
[  218.277004][ T8598] netlink: 152 bytes leftover after parsing attributes in process `syz.4.818'.
[  218.306979][ T8598] tc_dump_action: action bad kind
[  218.335938][ T8608] netlink: 'syz.3.820': attribute type 3 has an invalid length.
[  218.363688][ T8608] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.820'.
[  218.436839][ T8600] syzkaller0: entered promiscuous mode
[  218.442557][ T8600] syzkaller0: entered allmulticast mode
[  219.308636][ T5839] Bluetooth: hci1: command tx timeout
[  220.924646][ T8404] batman_adv: batadv0: Adding interface: batadv_slave_0
[  220.932326][ T8404] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.972124][ T8404] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  221.053134][ T8627] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  221.082467][ T8627] batman_adv: batadv0: Removing interface: batadv_slave_0
[  221.098156][ T8627] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  221.109411][ T8630] netlink: 'syz.4.829': attribute type 4 has an invalid length.
[  221.118355][ T8627] batman_adv: batadv0: Removing interface: batadv_slave_1
[  221.133809][ T8630] netlink: 14345 bytes leftover after parsing attributes in process `syz.4.829'.
[  221.209522][ T8404] batman_adv: batadv0: Adding interface: batadv_slave_1
[  221.230705][ T8404] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.271071][ T8404] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  221.762202][ T8404] hsr_slave_0: entered promiscuous mode
[  221.791195][ T8404] hsr_slave_1: entered promiscuous mode
[  221.826363][ T8404] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  221.864528][ T8404] Cannot create hsr debugfs directory
[  221.962252][ T8661] netlink: 'syz.4.838': attribute type 21 has an invalid length.
[  222.003235][ T8661] netlink: 128 bytes leftover after parsing attributes in process `syz.4.838'.
[  222.043456][ T8659] delete_channel: no stack
[  222.128428][ T8661] netlink: 'syz.4.838': attribute type 5 has an invalid length.
[  222.178292][ T8661] netlink: 'syz.4.838': attribute type 6 has an invalid length.
[  222.204610][ T8661] netlink: 3 bytes leftover after parsing attributes in process `syz.4.838'.
[  222.364243][ T8673] FAULT_INJECTION: forcing a failure.
[  222.364243][ T8673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  222.383002][ T8673] CPU: 0 UID: 0 PID: 8673 Comm: syz.3.842 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  222.383034][ T8673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  222.383048][ T8673] Call Trace:
[  222.383057][ T8673]  <TASK>
[  222.383066][ T8673]  dump_stack_lvl+0x189/0x250
[  222.383107][ T8673]  ? __pfx____ratelimit+0x10/0x10
[  222.383142][ T8673]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.383177][ T8673]  ? __pfx__printk+0x10/0x10
[  222.383203][ T8673]  ? __might_fault+0xb0/0x130
[  222.383242][ T8673]  should_fail_ex+0x414/0x560
[  222.383279][ T8673]  _copy_from_iter+0x1db/0x16f0
[  222.383316][ T8673]  ? rep_movs_alternative+0x4a/0x90
[  222.383356][ T8673]  ? __pfx__copy_from_iter+0x10/0x10
[  222.383387][ T8673]  ? sock_alloc_send_pskb+0x875/0x990
[  222.383428][ T8673]  ? __pfx__copy_from_iter+0x10/0x10
[  222.383467][ T8673]  ? page_copy_sane+0x16a/0x280
[  222.383504][ T8673]  copy_page_from_iter+0xdd/0x170
[  222.383554][ T8673]  skb_copy_datagram_from_iter+0x306/0x720
[  222.383606][ T8673]  unix_stream_sendmsg+0x5a1/0xc90
[  222.383661][ T8673]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  222.383700][ T8673]  ? aa_sock_msg_perm+0x94/0x160
[  222.383732][ T8673]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  222.383761][ T8673]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  222.383792][ T8673]  __sock_sendmsg+0x219/0x270
[  222.383833][ T8673]  ____sys_sendmsg+0x505/0x830
[  222.383872][ T8673]  ? __pfx_____sys_sendmsg+0x10/0x10
[  222.383915][ T8673]  ? import_iovec+0x74/0xa0
[  222.383944][ T8673]  ___sys_sendmsg+0x21f/0x2a0
[  222.383978][ T8673]  ? __pfx____sys_sendmsg+0x10/0x10
[  222.384060][ T8673]  ? __fget_files+0x2a/0x420
[  222.384085][ T8673]  ? __fget_files+0x3a0/0x420
[  222.384126][ T8673]  __x64_sys_sendmsg+0x19b/0x260
[  222.384160][ T8673]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  222.384188][ T8673]  ? perf_trace_preemptirq_template+0xa3/0x340
[  222.384233][ T8673]  ? __pfx_ksys_write+0x10/0x10
[  222.384251][ T8673]  ? rcu_is_watching+0x15/0xb0
[  222.384294][ T8673]  ? do_syscall_64+0xbe/0x3b0
[  222.384322][ T8673]  do_syscall_64+0xfa/0x3b0
[  222.384342][ T8673]  ? lockdep_hardirqs_on+0x9c/0x150
[  222.384377][ T8673]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.384399][ T8673]  ? clear_bhb_loop+0x60/0xb0
[  222.384428][ T8673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.384450][ T8673] RIP: 0033:0x7f2ad0f8e929
[  222.384469][ T8673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.384489][ T8673] RSP: 002b:00007f2ad1dbd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  222.384513][ T8673] RAX: ffffffffffffffda RBX: 00007f2ad11b6080 RCX: 00007f2ad0f8e929
[  222.384529][ T8673] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  222.384550][ T8673] RBP: 00007f2ad1dbd090 R08: 0000000000000000 R09: 0000000000000000
[  222.384564][ T8673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  222.384577][ T8673] R13: 0000000000000000 R14: 00007f2ad11b6080 R15: 00007ffe004a68a8
[  222.384616][ T8673]  </TASK>
[  224.811752][ T8732] netlink: 'syz.3.861': attribute type 17 has an invalid length.
[  224.849928][ T8732] netlink: 'syz.3.861': attribute type 16 has an invalid length.
[  224.896237][ T8732] netlink: 152 bytes leftover after parsing attributes in process `syz.3.861'.
[  225.156726][ T8404] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  225.179150][ T8404] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  225.214316][ T8404] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  225.280453][ T8404] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  225.765390][ T8404] 8021q: adding VLAN 0 to HW filter on device bond0
[  225.823802][ T8404] 8021q: adding VLAN 0 to HW filter on device team0
[  225.884040][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.891385][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.945391][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.952675][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.174290][ T8404] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  226.926971][ T8404] 8021q: adding VLAN 0 to HW filter on device batadv0
[  226.958107][ T8802] netlink: 152 bytes leftover after parsing attributes in process `syz.4.874'.
[  226.981716][ T8802] netlink: 6 bytes leftover after parsing attributes in process `syz.4.874'.
[  227.156943][ T8404] veth0_vlan: entered promiscuous mode
[  227.229355][ T8404] veth1_vlan: entered promiscuous mode
[  227.343850][ T8404] veth0_macvtap: entered promiscuous mode
[  227.380854][ T8404] veth1_macvtap: entered promiscuous mode
[  227.537398][ T8404] batman_adv: batadv0: Interface activated: batadv_slave_0
[  227.611519][ T8404] batman_adv: batadv0: Interface activated: batadv_slave_1
[  227.660668][ T8404] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.706535][ T8404] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.727550][ T8404] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.759478][ T8404] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.063875][ T8839] netlink: 'syz.3.886': attribute type 64 has an invalid length.
[  228.172817][ T8565] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  228.180976][ T8565] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  228.386510][ T8559] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  228.426321][ T8559] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  228.681276][ T8858] FAULT_INJECTION: forcing a failure.
[  228.681276][ T8858] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  228.713690][ T8858] CPU: 1 UID: 0 PID: 8858 Comm: syz.4.893 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  228.713723][ T8858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  228.713738][ T8858] Call Trace:
[  228.713749][ T8858]  <TASK>
[  228.713761][ T8858]  dump_stack_lvl+0x189/0x250
[  228.713806][ T8858]  ? __pfx____ratelimit+0x10/0x10
[  228.713846][ T8858]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.713886][ T8858]  ? __pfx__printk+0x10/0x10
[  228.713918][ T8858]  ? __might_fault+0xb0/0x130
[  228.713962][ T8858]  ? __might_fault+0xb0/0x130
[  228.714006][ T8858]  should_fail_ex+0x414/0x560
[  228.714061][ T8858]  _copy_from_iter+0x1db/0x16f0
[  228.714106][ T8858]  ? rep_movs_alternative+0x4a/0x90
[  228.714161][ T8858]  ? __pfx__copy_from_iter+0x10/0x10
[  228.714192][ T8858]  ? sock_alloc_send_pskb+0x875/0x990
[  228.714247][ T8858]  ? __pfx__copy_from_iter+0x10/0x10
[  228.714295][ T8858]  ? page_copy_sane+0x16a/0x280
[  228.714342][ T8858]  copy_page_from_iter+0xdd/0x170
[  228.714395][ T8858]  skb_copy_datagram_from_iter+0x306/0x720
[  228.714469][ T8858]  unix_stream_sendmsg+0x5a1/0xc90
[  228.714552][ T8858]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  228.714596][ T8858]  ? perf_trace_run_bpf_submit+0xee/0x170
[  228.714631][ T8858]  ? aa_sock_msg_perm+0x94/0x160
[  228.714671][ T8858]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  228.714700][ T8858]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  228.714737][ T8858]  __sock_sendmsg+0x219/0x270
[  228.714789][ T8858]  ____sys_sendmsg+0x505/0x830
[  228.714844][ T8858]  ? __pfx_____sys_sendmsg+0x10/0x10
[  228.714910][ T8858]  ? import_iovec+0x74/0xa0
[  228.714957][ T8858]  ___sys_sendmsg+0x21f/0x2a0
[  228.715001][ T8858]  ? __pfx____sys_sendmsg+0x10/0x10
[  228.715104][ T8858]  ? __fget_files+0x2a/0x420
[  228.715174][ T8858]  ? __fget_files+0x2a/0x420
[  228.715199][ T8858]  ? __fget_files+0x3a0/0x420
[  228.715257][ T8858]  __x64_sys_sendmsg+0x19b/0x260
[  228.715300][ T8858]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  228.715362][ T8858]  ? __pfx_ksys_write+0x10/0x10
[  228.715380][ T8858]  ? rcu_is_watching+0x15/0xb0
[  228.715434][ T8858]  ? do_syscall_64+0xbe/0x3b0
[  228.715470][ T8858]  do_syscall_64+0xfa/0x3b0
[  228.715490][ T8858]  ? lockdep_hardirqs_on+0x9c/0x150
[  228.715527][ T8858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.715551][ T8858]  ? clear_bhb_loop+0x60/0xb0
[  228.715588][ T8858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.715611][ T8858] RIP: 0033:0x7fdb63f8e929
[  228.715634][ T8858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.715654][ T8858] RSP: 002b:00007fdb61df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  228.715678][ T8858] RAX: ffffffffffffffda RBX: 00007fdb641b5fa0 RCX: 00007fdb63f8e929
[  228.715695][ T8858] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  228.715710][ T8858] RBP: 00007fdb61df6090 R08: 0000000000000000 R09: 0000000000000000
[  228.715724][ T8858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  228.715737][ T8858] R13: 0000000000000000 R14: 00007fdb641b5fa0 R15: 00007ffc28a93cf8
[  228.715801][ T8858]  </TASK>
[  229.688275][ T8877] netlink: 'syz.0.898': attribute type 21 has an invalid length.
[  229.696923][ T8877] netlink: 168 bytes leftover after parsing attributes in process `syz.0.898'.
[  230.997003][ T1162] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.362867][ T1162] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.474210][ T1162] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.534784][ T1162] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.718557][ T1162] bridge_slave_1: left allmulticast mode
[  231.731128][ T1162] bridge_slave_1: left promiscuous mode
[  231.737519][ T1162] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.751909][ T1162] bridge_slave_0: left allmulticast mode
[  231.758090][ T1162] bridge_slave_0: left promiscuous mode
[  231.770756][ T1162] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.209614][ T8944] netlink: 14 bytes leftover after parsing attributes in process `syz.0.905'.
[  232.928110][ T5154] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  232.948686][ T5154] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  232.964368][ T5154] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  232.992124][ T5154] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  233.009145][ T5154] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  233.084337][ T1162] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  233.096041][ T1162] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  233.108433][ T1162] bond0 (unregistering): Released all slaves
[  233.150663][ T8948] netlink: 'syz.3.911': attribute type 29 has an invalid length.
[  234.009074][ T8994] netlink: 'syz.3.922': attribute type 21 has an invalid length.
[  234.380484][ T8994] netlink: 152 bytes leftover after parsing attributes in process `syz.3.922'.
[  234.540869][ T9016] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.928'.
[  234.728174][ T9020] FAULT_INJECTION: forcing a failure.
[  234.728174][ T9020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.763295][ T9020] CPU: 0 UID: 0 PID: 9020 Comm: syz.4.929 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  234.763328][ T9020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  234.763342][ T9020] Call Trace:
[  234.763350][ T9020]  <TASK>
[  234.763361][ T9020]  dump_stack_lvl+0x189/0x250
[  234.763403][ T9020]  ? __pfx____ratelimit+0x10/0x10
[  234.763438][ T9020]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.763473][ T9020]  ? __pfx__printk+0x10/0x10
[  234.763497][ T9020]  ? __might_fault+0xb0/0x130
[  234.763534][ T9020]  should_fail_ex+0x414/0x560
[  234.763569][ T9020]  _copy_from_user+0x2d/0xb0
[  234.763594][ T9020]  __sys_bpf+0x1ed/0x860
[  234.763628][ T9020]  ? __pfx___sys_bpf+0x10/0x10
[  234.763672][ T9020]  ? ksys_write+0x22a/0x250
[  234.763696][ T9020]  ? __pfx_ksys_write+0x10/0x10
[  234.763713][ T9020]  ? rcu_is_watching+0x15/0xb0
[  234.763758][ T9020]  __x64_sys_bpf+0x7c/0x90
[  234.763787][ T9020]  do_syscall_64+0xfa/0x3b0
[  234.763809][ T9020]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.763841][ T9020]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.763865][ T9020]  ? clear_bhb_loop+0x60/0xb0
[  234.763893][ T9020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.763914][ T9020] RIP: 0033:0x7fdb63f8e929
[  234.763936][ T9020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.763956][ T9020] RSP: 002b:00007fdb61df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  234.764004][ T9020] RAX: ffffffffffffffda RBX: 00007fdb641b5fa0 RCX: 00007fdb63f8e929
[  234.764021][ T9020] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  234.764034][ T9020] RBP: 00007fdb61df6090 R08: 0000000000000000 R09: 0000000000000000
[  234.764048][ T9020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.764060][ T9020] R13: 0000000000000001 R14: 00007fdb641b5fa0 R15: 00007ffc28a93cf8
[  234.764096][ T9020]  </TASK>
[  235.077038][ T5154] Bluetooth: hci1: command tx timeout
[  235.178617][ T1162] hsr_slave_0: left promiscuous mode
[  235.272167][ T1162] hsr_slave_1: left promiscuous mode
[  235.278576][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  235.298405][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_0
[  235.307287][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  235.316380][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_1
[  235.352824][ T1162] veth1_macvtap: left promiscuous mode
[  235.363153][ T1162] veth0_macvtap: left promiscuous mode
[  235.373256][ T1162] veth1_vlan: left promiscuous mode
[  235.390107][ T1162] veth0_vlan: left promiscuous mode
[  236.290320][ T1162] team0 (unregistering): Port device team_slave_1 removed
[  236.336332][ T1162] team0 (unregistering): Port device team_slave_0 removed
[  236.807309][ T8965] chnl_net:caif_netlink_parms(): no params data found
[  237.142460][ T5154] Bluetooth: hci1: command tx timeout
[  237.553770][ T9060] FAULT_INJECTION: forcing a failure.
[  237.553770][ T9060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.608315][ T8965] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.625863][ T9060] CPU: 0 UID: 0 PID: 9060 Comm: syz.3.939 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  237.625912][ T9060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  237.625926][ T9060] Call Trace:
[  237.625935][ T9060]  <TASK>
[  237.625945][ T9060]  dump_stack_lvl+0x189/0x250
[  237.625985][ T9060]  ? __pfx____ratelimit+0x10/0x10
[  237.626020][ T9060]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.626055][ T9060]  ? __pfx__printk+0x10/0x10
[  237.626080][ T9060]  ? __might_fault+0xb0/0x130
[  237.626115][ T9060]  should_fail_ex+0x414/0x560
[  237.626151][ T9060]  _copy_from_iter+0x1db/0x16f0
[  237.626187][ T9060]  ? rep_movs_alternative+0x4a/0x90
[  237.626225][ T9060]  ? __pfx__copy_from_iter+0x10/0x10
[  237.626255][ T9060]  ? sock_alloc_send_pskb+0x875/0x990
[  237.626296][ T9060]  ? __pfx__copy_from_iter+0x10/0x10
[  237.626334][ T9060]  ? page_copy_sane+0x16a/0x280
[  237.626370][ T9060]  copy_page_from_iter+0xdd/0x170
[  237.626410][ T9060]  skb_copy_datagram_from_iter+0x306/0x720
[  237.626459][ T9060]  unix_stream_sendmsg+0x5a1/0xc90
[  237.626507][ T9060]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  237.626543][ T9060]  ? aa_sock_msg_perm+0x94/0x160
[  237.626575][ T9060]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  237.626603][ T9060]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  237.626632][ T9060]  __sock_sendmsg+0x219/0x270
[  237.626669][ T9060]  ____sys_sendmsg+0x505/0x830
[  237.626704][ T9060]  ? __pfx_____sys_sendmsg+0x10/0x10
[  237.626742][ T9060]  ? import_iovec+0x74/0xa0
[  237.626769][ T9060]  ___sys_sendmsg+0x21f/0x2a0
[  237.626806][ T9060]  ? __pfx____sys_sendmsg+0x10/0x10
[  237.626888][ T9060]  ? __fget_files+0x2a/0x420
[  237.626912][ T9060]  ? __fget_files+0x3a0/0x420
[  237.626950][ T9060]  __x64_sys_sendmsg+0x19b/0x260
[  237.626984][ T9060]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  237.627025][ T9060]  ? __pfx_ksys_write+0x10/0x10
[  237.627043][ T9060]  ? rcu_is_watching+0x15/0xb0
[  237.627084][ T9060]  ? do_syscall_64+0xbe/0x3b0
[  237.627110][ T9060]  do_syscall_64+0xfa/0x3b0
[  237.627131][ T9060]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.627164][ T9060]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.627186][ T9060]  ? clear_bhb_loop+0x60/0xb0
[  237.627213][ T9060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.627235][ T9060] RIP: 0033:0x7f2ad0f8e929
[  237.627255][ T9060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.627275][ T9060] RSP: 002b:00007f2ad1dbd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.627299][ T9060] RAX: ffffffffffffffda RBX: 00007f2ad11b6080 RCX: 00007f2ad0f8e929
[  237.627316][ T9060] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  237.627329][ T9060] RBP: 00007f2ad1dbd090 R08: 0000000000000000 R09: 0000000000000000
[  237.627342][ T9060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  237.627355][ T9060] R13: 0000000000000000 R14: 00007f2ad11b6080 R15: 00007ffe004a68a8
[  237.627387][ T9060]  </TASK>
[  237.627524][ T8965] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.987146][ T8965] bridge_slave_0: entered allmulticast mode
[  238.007534][ T8965] bridge_slave_0: entered promiscuous mode
[  238.018432][ T8965] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.030514][ T8965] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.075077][ T8965] bridge_slave_1: entered allmulticast mode
[  238.124578][ T8965] bridge_slave_1: entered promiscuous mode
[  238.359061][ T9077] netlink: 'syz.0.943': attribute type 37 has an invalid length.
[  238.571550][ T8965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.724957][ T8965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  239.227832][ T5154] Bluetooth: hci1: command tx timeout
[  239.735783][ T9107] netlink: 'syz.1.953': attribute type 17 has an invalid length.
[  239.758202][ T9107] netlink: 'syz.1.953': attribute type 16 has an invalid length.
[  239.786760][ T9107] netlink: 152 bytes leftover after parsing attributes in process `syz.1.953'.
[  239.838584][ T8965] team0: Port device team_slave_0 added
[  239.897332][ T8965] team0: Port device team_slave_1 added
[  240.093412][ T1162] bridge_slave_1: left allmulticast mode
[  240.105833][ T1162] bridge_slave_1: left promiscuous mode
[  240.135756][ T1162] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.189220][ T1162] bridge_slave_0: left allmulticast mode
[  240.212035][ T1162] bridge_slave_0: left promiscuous mode
[  240.218084][ T1162] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.799026][ T9139] FAULT_INJECTION: forcing a failure.
[  240.799026][ T9139] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  240.818982][ T9139] CPU: 0 UID: 0 PID: 9139 Comm: syz.0.961 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  240.819016][ T9139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  240.819029][ T9139] Call Trace:
[  240.819037][ T9139]  <TASK>
[  240.819047][ T9139]  dump_stack_lvl+0x189/0x250
[  240.819086][ T9139]  ? __pfx____ratelimit+0x10/0x10
[  240.819120][ T9139]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.819153][ T9139]  ? __pfx__printk+0x10/0x10
[  240.819178][ T9139]  ? __might_fault+0xb0/0x130
[  240.819212][ T9139]  should_fail_ex+0x414/0x560
[  240.819247][ T9139]  _copy_from_user+0x2d/0xb0
[  240.819270][ T9139]  ___sys_sendmsg+0x158/0x2a0
[  240.819303][ T9139]  ? __pfx____sys_sendmsg+0x10/0x10
[  240.819373][ T9139]  ? __fget_files+0x2a/0x420
[  240.819396][ T9139]  ? __fget_files+0x3a0/0x420
[  240.819431][ T9139]  __x64_sys_sendmsg+0x19b/0x260
[  240.819463][ T9139]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  240.819502][ T9139]  ? __pfx_ksys_write+0x10/0x10
[  240.819521][ T9139]  ? rcu_is_watching+0x15/0xb0
[  240.819560][ T9139]  ? do_syscall_64+0xbe/0x3b0
[  240.819587][ T9139]  do_syscall_64+0xfa/0x3b0
[  240.819606][ T9139]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.819638][ T9139]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.819660][ T9139]  ? clear_bhb_loop+0x60/0xb0
[  240.819687][ T9139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.819707][ T9139] RIP: 0033:0x7fbde5d8e929
[  240.819727][ T9139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.819746][ T9139] RSP: 002b:00007fbde6b1d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  240.819769][ T9139] RAX: ffffffffffffffda RBX: 00007fbde5fb5fa0 RCX: 00007fbde5d8e929
[  240.819784][ T9139] RDX: 0000000000000003 RSI: 0000200000000980 RDI: 0000000000000006
[  240.819798][ T9139] RBP: 00007fbde6b1d090 R08: 0000000000000000 R09: 0000000000000000
[  240.819811][ T9139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.819830][ T9139] R13: 0000000000000000 R14: 00007fbde5fb5fa0 R15: 00007ffdfd249088
[  240.819864][ T9139]  </TASK>
[  241.302052][ T5154] Bluetooth: hci1: command tx timeout
[  241.474999][ T9148] delete_channel: no stack
[  241.479960][ T9148] delete_channel: no stack
[  241.534042][ T1162] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  241.556145][ T1162] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  241.570962][ T1162] bond0 (unregistering): Released all slaves
[  241.711584][ T9130] syzkaller0: entered allmulticast mode
[  241.757485][ T8965] batman_adv: batadv0: Adding interface: batadv_slave_0
[  241.765191][ T8965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.799435][ T8965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  241.855541][ T8965] batman_adv: batadv0: Adding interface: batadv_slave_1
[  241.865681][ T8965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.900500][ T8965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  242.283119][ T9161] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.970'.
[  242.430453][ T8965] hsr_slave_0: entered promiscuous mode
[  242.440329][ T9169] FAULT_INJECTION: forcing a failure.
[  242.440329][ T9169] name failslab, interval 1, probability 0, space 0, times 0
[  242.444494][ T8965] hsr_slave_1: entered promiscuous mode
[  242.461243][ T8965] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  242.494391][ T8965] Cannot create hsr debugfs directory
[  242.502605][ T9169] CPU: 0 UID: 0 PID: 9169 Comm: syz.1.973 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  242.502647][ T9169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  242.502660][ T9169] Call Trace:
[  242.502668][ T9169]  <TASK>
[  242.502678][ T9169]  dump_stack_lvl+0x189/0x250
[  242.502717][ T9169]  ? __pfx____ratelimit+0x10/0x10
[  242.502750][ T9169]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.502784][ T9169]  ? __pfx__printk+0x10/0x10
[  242.502815][ T9169]  ? __pfx___might_resched+0x10/0x10
[  242.502854][ T9169]  should_fail_ex+0x414/0x560
[  242.502889][ T9169]  should_failslab+0xa8/0x100
[  242.502914][ T9169]  __kmalloc_cache_node_noprof+0x73/0x3d0
[  242.502938][ T9169]  ? __get_vm_area_node+0x13f/0x300
[  242.502964][ T9169]  __get_vm_area_node+0x13f/0x300
[  242.502992][ T9169]  __vmalloc_node_range_noprof+0x301/0x12f0
[  242.503017][ T9169]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.503050][ T9169]  ? is_bpf_text_address+0x26/0x2b0
[  242.503110][ T9169]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  242.503132][ T9169]  ? __might_fault+0xb0/0x130
[  242.503152][ T9169]  ? __pfx_aa_get_newest_label+0x10/0x10
[  242.503179][ T9169]  ? _parse_integer_limit+0x1ae/0x1f0
[  242.503216][ T9169]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.503244][ T9169]  __vmalloc_noprof+0xb1/0xf0
[  242.503292][ T9169]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.503326][ T9169]  bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.503364][ T9169]  bpf_prog_alloc+0x3c/0x1a0
[  242.503397][ T9169]  bpf_prog_load+0x735/0x1930
[  242.503442][ T9169]  ? __pfx_bpf_prog_load+0x10/0x10
[  242.503514][ T9169]  ? bpf_lsm_bpf+0x9/0x20
[  242.503530][ T9169]  ? security_bpf+0x7e/0x300
[  242.503558][ T9169]  __sys_bpf+0x5f1/0x860
[  242.503589][ T9169]  ? __pfx___sys_bpf+0x10/0x10
[  242.503641][ T9169]  ? ksys_write+0x22a/0x250
[  242.503664][ T9169]  ? __pfx_ksys_write+0x10/0x10
[  242.503681][ T9169]  ? rcu_is_watching+0x15/0xb0
[  242.503724][ T9169]  __x64_sys_bpf+0x7c/0x90
[  242.503750][ T9169]  do_syscall_64+0xfa/0x3b0
[  242.503770][ T9169]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.503801][ T9169]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.503822][ T9169]  ? clear_bhb_loop+0x60/0xb0
[  242.503848][ T9169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.503868][ T9169] RIP: 0033:0x7f113038e929
[  242.503887][ T9169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.503906][ T9169] RSP: 002b:00007f1131182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  242.503930][ T9169] RAX: ffffffffffffffda RBX: 00007f11305b5fa0 RCX: 00007f113038e929
[  242.503945][ T9169] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  242.503959][ T9169] RBP: 00007f1131182090 R08: 0000000000000000 R09: 0000000000000000
[  242.503972][ T9169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.503985][ T9169] R13: 0000000000000001 R14: 00007f11305b5fa0 R15: 00007ffeba562798
[  242.504018][ T9169]  </TASK>
[  242.504028][ T9169] syz.1.973: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  242.853640][ T9169] CPU: 0 UID: 0 PID: 9169 Comm: syz.1.973 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  242.853675][ T9169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  242.853688][ T9169] Call Trace:
[  242.853698][ T9169]  <TASK>
[  242.853707][ T9169]  dump_stack_lvl+0x189/0x250
[  242.853747][ T9169]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  242.853776][ T9169]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.853808][ T9169]  ? __pfx__printk+0x10/0x10
[  242.853831][ T9169]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  242.853855][ T9169]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  242.853887][ T9169]  warn_alloc+0x214/0x310
[  242.853918][ T9169]  ? __pfx_warn_alloc+0x10/0x10
[  242.853945][ T9169]  ? __get_vm_area_node+0x13f/0x300
[  242.853972][ T9169]  ? __get_vm_area_node+0x2b5/0x300
[  242.853999][ T9169]  __vmalloc_node_range_noprof+0x326/0x12f0
[  242.854025][ T9169]  ? is_bpf_text_address+0x26/0x2b0
[  242.854091][ T9169]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  242.854113][ T9169]  ? __might_fault+0xb0/0x130
[  242.854133][ T9169]  ? __pfx_aa_get_newest_label+0x10/0x10
[  242.854161][ T9169]  ? _parse_integer_limit+0x1ae/0x1f0
[  242.854197][ T9169]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.854226][ T9169]  __vmalloc_noprof+0xb1/0xf0
[  242.854250][ T9169]  ? bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.854284][ T9169]  bpf_prog_alloc_no_stats+0x4a/0x4e0
[  242.854321][ T9169]  bpf_prog_alloc+0x3c/0x1a0
[  242.854355][ T9169]  bpf_prog_load+0x735/0x1930
[  242.854398][ T9169]  ? __pfx_bpf_prog_load+0x10/0x10
[  242.854454][ T9169]  ? bpf_lsm_bpf+0x9/0x20
[  242.854471][ T9169]  ? security_bpf+0x7e/0x300
[  242.854499][ T9169]  __sys_bpf+0x5f1/0x860
[  242.854531][ T9169]  ? __pfx___sys_bpf+0x10/0x10
[  242.854574][ T9169]  ? ksys_write+0x22a/0x250
[  242.854605][ T9169]  ? __pfx_ksys_write+0x10/0x10
[  242.854622][ T9169]  ? rcu_is_watching+0x15/0xb0
[  242.854664][ T9169]  __x64_sys_bpf+0x7c/0x90
[  242.854691][ T9169]  do_syscall_64+0xfa/0x3b0
[  242.854711][ T9169]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.854737][ T9169]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.854755][ T9169]  ? clear_bhb_loop+0x60/0xb0
[  242.854776][ T9169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.854794][ T9169] RIP: 0033:0x7f113038e929
[  242.854809][ T9169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.854825][ T9169] RSP: 002b:00007f1131182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  242.854845][ T9169] RAX: ffffffffffffffda RBX: 00007f11305b5fa0 RCX: 00007f113038e929
[  242.854858][ T9169] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  242.854870][ T9169] RBP: 00007f1131182090 R08: 0000000000000000 R09: 0000000000000000
[  242.854880][ T9169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.854891][ T9169] R13: 0000000000000001 R14: 00007f11305b5fa0 R15: 00007ffeba562798
[  242.854917][ T9169]  </TASK>
[  242.855019][ T9169] Mem-Info:
[  243.182782][ T9169] active_anon:5490 inactive_anon:0 isolated_anon:0
[  243.182782][ T9169]  active_file:15237 inactive_file:39898 isolated_file:0
[  243.182782][ T9169]  unevictable:768 dirty:351 writeback:0
[  243.182782][ T9169]  slab_reclaimable:10172 slab_unreclaimable:97251
[  243.182782][ T9169]  mapped:29500 shmem:1369 pagetables:1198
[  243.182782][ T9169]  sec_pagetables:0 bounce:0
[  243.182782][ T9169]  kernel_misc_reclaimable:0
[  243.182782][ T9169]  free:1313272 free_pcp:17551 free_cma:0
[  243.189555][ T1162] hsr_slave_0: left promiscuous mode
[  243.230858][ T9169] Node 0 active_anon:21960kB inactive_anon:0kB active_file:60948kB inactive_file:159384kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118000kB dirty:1404kB writeback:0kB shmem:3940kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12340kB pagetables:4660kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  243.281263][ T9169] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  243.335071][ T1162] hsr_slave_1: left promiscuous mode
[  243.354523][ T9169] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  243.358568][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  243.395879][ T9169] lowmem_reserve[]: 0 2501 2502 2502 2502
[  243.403462][ T9169] Node 0 DMA32 free:1339624kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21612kB inactive_anon:0kB active_file:60948kB inactive_file:157556kB unevictable:1536kB writepending:1400kB present:3129332kB managed:2561048kB mlocked:0kB bounce:0kB free_pcp:48436kB local_pcp:21132kB free_cma:0kB
[  243.421859][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_0
[  243.448371][ T9169] lowmem_reserve[]: 0 0 1 1 1
[  243.455806][ T9169] Node 0 Normal free:16kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1828kB unevictable:0kB writepending:4kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  243.489965][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  243.502456][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_1
[  243.525834][ T1162] veth1_macvtap: left promiscuous mode
[  243.552245][ T9169] lowmem_reserve[]: 0 0 0 0 0
[  243.557159][ T9169] Node 1 Normal free:3898088kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22336kB local_pcp:15328kB free_cma:0kB
[  243.562154][ T1162] veth0_macvtap: left promiscuous mode
[  243.663687][ T9169] lowmem_reserve[]: 0 0 0 0 0
[  243.668547][ T9169] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  243.679433][ T1162] veth1_vlan: left promiscuous mode
[  243.710555][ T1162] veth0_vlan: left promiscuous mode
[  243.732222][ T9169] Node 0 DMA32: 1615*4kB (UM) 779*8kB (UME) 381*16kB (UM) 575*32kB (UME) 251*64kB (UME) 15*128kB (UME) 5*256kB (UME) 23*512kB (UM) 12*1024kB (UME) 3*2048kB (UM) 306*4096kB (M) = 1340036kB
[  243.772779][ T9169] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  243.810604][ T9169] Node 1 Normal: 198*4kB (UE) 44*8kB (UME) 37*16kB (UME) 77*32kB (UME) 28*64kB (UME) 9*128kB (UME) 3*256kB (UM) 4*512kB (UME) 3*1024kB (UME) 1*2048kB (E) 948*4096kB (M) = 3898088kB
[  243.829565][ T9169] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  243.872164][ T9169] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  243.906385][ T9169] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  243.932226][ T9169] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  243.952637][ T9169] 56500 total pagecache pages
[  243.957516][ T9169] 0 pages in swap cache
[  243.961723][ T9169] Free swap  = 124996kB
[  243.978969][ T9169] Total swap = 124996kB
[  244.009467][ T9169] 2097051 pages RAM
[  244.022103][ T9169] 0 pages HighMem/MovableOnly
[  244.032381][ T9169] 424683 pages reserved
[  244.042513][ T9169] 0 pages cma reserved
[  244.315422][ T9203] FAULT_INJECTION: forcing a failure.
[  244.315422][ T9203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.360806][ T9203] CPU: 0 UID: 0 PID: 9203 Comm: syz.3.983 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  244.360837][ T9203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  244.360850][ T9203] Call Trace:
[  244.360860][ T9203]  <TASK>
[  244.360871][ T9203]  dump_stack_lvl+0x189/0x250
[  244.360912][ T9203]  ? __pfx____ratelimit+0x10/0x10
[  244.360948][ T9203]  ? __pfx_dump_stack_lvl+0x10/0x10
[  244.360984][ T9203]  ? __pfx__printk+0x10/0x10
[  244.361012][ T9203]  ? __might_fault+0xb0/0x130
[  244.361043][ T9203]  ? __might_fault+0xb0/0x130
[  244.361088][ T9203]  should_fail_ex+0x414/0x560
[  244.361134][ T9203]  _copy_from_iter+0x1db/0x16f0
[  244.361175][ T9203]  ? rep_movs_alternative+0x4a/0x90
[  244.361240][ T9203]  ? __pfx__copy_from_iter+0x10/0x10
[  244.361267][ T9203]  ? sock_alloc_send_pskb+0x875/0x990
[  244.361318][ T9203]  ? __pfx__copy_from_iter+0x10/0x10
[  244.361370][ T9203]  ? page_copy_sane+0x16a/0x280
[  244.361412][ T9203]  copy_page_from_iter+0xdd/0x170
[  244.361458][ T9203]  skb_copy_datagram_from_iter+0x306/0x720
[  244.361521][ T9203]  unix_stream_sendmsg+0x5a1/0xc90
[  244.361593][ T9203]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  244.361633][ T9203]  ? perf_trace_run_bpf_submit+0xee/0x170
[  244.361666][ T9203]  ? aa_sock_msg_perm+0x94/0x160
[  244.361701][ T9203]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  244.361730][ T9203]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  244.361764][ T9203]  __sock_sendmsg+0x219/0x270
[  244.361814][ T9203]  ____sys_sendmsg+0x505/0x830
[  244.361865][ T9203]  ? __pfx_____sys_sendmsg+0x10/0x10
[  244.361926][ T9203]  ? import_iovec+0x74/0xa0
[  244.361962][ T9203]  ___sys_sendmsg+0x21f/0x2a0
[  244.362003][ T9203]  ? __pfx____sys_sendmsg+0x10/0x10
[  244.362102][ T9203]  ? __fget_files+0x2a/0x420
[  244.362169][ T9203]  ? __fget_files+0x2a/0x420
[  244.362192][ T9203]  ? __fget_files+0x3a0/0x420
[  244.362265][ T9203]  __x64_sys_sendmsg+0x19b/0x260
[  244.362307][ T9203]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  244.362370][ T9203]  ? __pfx_ksys_write+0x10/0x10
[  244.362387][ T9203]  ? rcu_is_watching+0x15/0xb0
[  244.362436][ T9203]  ? do_syscall_64+0xbe/0x3b0
[  244.362470][ T9203]  do_syscall_64+0xfa/0x3b0
[  244.362489][ T9203]  ? lockdep_hardirqs_on+0x9c/0x150
[  244.362522][ T9203]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.362544][ T9203]  ? clear_bhb_loop+0x60/0xb0
[  244.362579][ T9203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.362600][ T9203] RIP: 0033:0x7f2ad0f8e929
[  244.362624][ T9203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.362643][ T9203] RSP: 002b:00007f2ad1dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  244.362664][ T9203] RAX: ffffffffffffffda RBX: 00007f2ad11b5fa0 RCX: 00007f2ad0f8e929
[  244.362679][ T9203] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  244.362692][ T9203] RBP: 00007f2ad1dde090 R08: 0000000000000000 R09: 0000000000000000
[  244.362705][ T9203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  244.362716][ T9203] R13: 0000000000000000 R14: 00007f2ad11b5fa0 R15: 00007ffe004a68a8
[  244.362779][ T9203]  </TASK>
[  245.244685][ T1162] team0 (unregistering): Port device team_slave_1 removed
[  245.337212][ T1162] team0 (unregistering): Port device team_slave_0 removed
[  245.503787][ T9226] netlink: 'syz.3.991': attribute type 21 has an invalid length.
[  246.110111][ T9213] netlink: 61211 bytes leftover after parsing attributes in process `syz.4.987'.
[  246.142119][ T9226] netlink: 156 bytes leftover after parsing attributes in process `syz.3.991'.
[  246.318824][ T9231] netlink: 'syz.0.993': attribute type 10 has an invalid length.
[  246.384112][ T9231] bridge0: port 3(team0) entered disabled state
[  246.391421][ T9231] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.400155][ T9231] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.563068][ T9231] bridge0: port 3(team0) entered blocking state
[  246.569760][ T9231] bridge0: port 3(team0) entered forwarding state
[  246.576991][ T9231] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.584492][ T9231] bridge0: port 2(bridge_slave_1) entered forwarding state
[  246.592482][ T9231] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.599869][ T9231] bridge0: port 1(bridge_slave_0) entered forwarding state
[  246.658933][ T9244] netlink: 'syz.1.996': attribute type 17 has an invalid length.
[  246.671519][ T9244] netlink: 'syz.1.996': attribute type 16 has an invalid length.
[  246.710759][ T9244] netlink: 152 bytes leftover after parsing attributes in process `syz.1.996'.
[  246.776780][ T9231] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  248.162578][ T9274] FAULT_INJECTION: forcing a failure.
[  248.162578][ T9274] name failslab, interval 1, probability 0, space 0, times 0
[  248.194928][ T9274] CPU: 0 UID: 0 PID: 9274 Comm: syz.1.1004 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  248.194961][ T9274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  248.194974][ T9274] Call Trace:
[  248.194983][ T9274]  <TASK>
[  248.194992][ T9274]  dump_stack_lvl+0x189/0x250
[  248.195030][ T9274]  ? __pfx____ratelimit+0x10/0x10
[  248.195061][ T9274]  ? __pfx_dump_stack_lvl+0x10/0x10
[  248.195094][ T9274]  ? __pfx__printk+0x10/0x10
[  248.195127][ T9274]  ? __pfx___might_resched+0x10/0x10
[  248.195158][ T9274]  ? fs_reclaim_acquire+0x7d/0x100
[  248.195187][ T9274]  should_fail_ex+0x414/0x560
[  248.195219][ T9274]  should_failslab+0xa8/0x100
[  248.195243][ T9274]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  248.195264][ T9274]  ? __alloc_skb+0x112/0x2d0
[  248.195294][ T9274]  __alloc_skb+0x112/0x2d0
[  248.195323][ T9274]  alloc_skb_with_frags+0xca/0x890
[  248.195356][ T9274]  ? __pfx_process_measurement+0x10/0x10
[  248.195385][ T9274]  ? tomoyo_check_open_permission+0x16a/0x3b0
[  248.195411][ T9274]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  248.195440][ T9274]  sock_alloc_send_pskb+0x857/0x990
[  248.195489][ T9274]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  248.195525][ T9274]  ? __pfx___might_resched+0x10/0x10
[  248.195554][ T9274]  ? __lock_acquire+0xab9/0xd20
[  248.195583][ T9274]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20
[  248.195615][ T9274]  unix_stream_sendmsg+0x4c2/0xc90
[  248.195658][ T9274]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  248.195693][ T9274]  ? aa_sock_msg_perm+0x94/0x160
[  248.195720][ T9274]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  248.195746][ T9274]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  248.195773][ T9274]  __sock_sendmsg+0x219/0x270
[  248.195810][ T9274]  ____sys_sendmsg+0x505/0x830
[  248.195844][ T9274]  ? __pfx_____sys_sendmsg+0x10/0x10
[  248.195883][ T9274]  ? import_iovec+0x74/0xa0
[  248.195909][ T9274]  ___sys_sendmsg+0x21f/0x2a0
[  248.195939][ T9274]  ? __pfx____sys_sendmsg+0x10/0x10
[  248.196011][ T9274]  ? __fget_files+0x2a/0x420
[  248.196034][ T9274]  ? __fget_files+0x3a0/0x420
[  248.196069][ T9274]  __x64_sys_sendmsg+0x19b/0x260
[  248.196111][ T9274]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  248.196151][ T9274]  ? __pfx_ksys_write+0x10/0x10
[  248.196168][ T9274]  ? rcu_is_watching+0x15/0xb0
[  248.196208][ T9274]  ? do_syscall_64+0xbe/0x3b0
[  248.196234][ T9274]  do_syscall_64+0xfa/0x3b0
[  248.196253][ T9274]  ? lockdep_hardirqs_on+0x9c/0x150
[  248.196284][ T9274]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.196305][ T9274]  ? clear_bhb_loop+0x60/0xb0
[  248.196332][ T9274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.196352][ T9274] RIP: 0033:0x7f113038e929
[  248.196373][ T9274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.196391][ T9274] RSP: 002b:00007f1131182038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  248.196413][ T9274] RAX: ffffffffffffffda RBX: 00007f11305b5fa0 RCX: 00007f113038e929
[  248.196429][ T9274] RDX: 0000000000000003 RSI: 0000200000000980 RDI: 0000000000000006
[  248.196442][ T9274] RBP: 00007f1131182090 R08: 0000000000000000 R09: 0000000000000000
[  248.196455][ T9274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.196467][ T9274] R13: 0000000000000000 R14: 00007f11305b5fa0 R15: 00007ffeba562798
[  248.196500][ T9274]  </TASK>
[  248.826285][ T9284] sock: sock_timestamping_bind_phc: sock not bind to device
[  249.178238][ T9291] netlink: 'syz.4.1008': attribute type 10 has an invalid length.
[  249.310299][ T9291] bridge0: port 3(bond0) entered disabled state
[  249.317681][ T9291] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.326555][ T9291] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.386600][ T9291] bridge0: port 3(bond0) entered blocking state
[  249.393306][ T9291] bridge0: port 3(bond0) entered forwarding state
[  249.400491][ T9291] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.408081][ T9291] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.416237][ T9291] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.423727][ T9291] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.458917][ T9291] bridge0: port 3(bond0) entered disabled state
[  249.466351][ T9291] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.474790][ T9291] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.009790][ T9321] netlink: 'syz.0.1017': attribute type 29 has an invalid length.
[  250.067788][ T9321] netlink: 'syz.0.1017': attribute type 29 has an invalid length.
[  250.108708][ T8965] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  250.229930][ T8965] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  250.343649][ T8965] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  250.365771][ T8965] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  250.825674][ T8965] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.918703][ T8965] 8021q: adding VLAN 0 to HW filter on device team0
[  250.980628][ T1162] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.987950][ T1162] bridge0: port 1(bridge_slave_0) entered forwarding state
[  251.068654][ T8562] bridge0: port 2(bridge_slave_1) entered blocking state
[  251.075978][ T8562] bridge0: port 2(bridge_slave_1) entered forwarding state
[  251.311393][ T9373] netlink: 'syz.4.1029': attribute type 17 has an invalid length.
[  251.373771][ T9373] netlink: 'syz.4.1029': attribute type 16 has an invalid length.
[  251.412289][ T9373] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1029'.
[  252.026338][ T8965] 8021q: adding VLAN 0 to HW filter on device batadv0
[  252.179321][ T8965] veth0_vlan: entered promiscuous mode
[  252.240479][ T8965] veth1_vlan: entered promiscuous mode
[  252.358756][ T8965] veth0_macvtap: entered promiscuous mode
[  252.381897][ T8965] veth1_macvtap: entered promiscuous mode
[  252.420652][ T8965] batman_adv: batadv0: Interface activated: batadv_slave_0
[  252.447594][ T8965] batman_adv: batadv0: Interface activated: batadv_slave_1
[  252.473568][ T8965] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  252.489608][ T8965] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  252.500407][ T8965] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  252.513856][ T8965] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  254.492093][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  254.503147][ T9430] FAULT_INJECTION: forcing a failure.
[  254.503147][ T9430] name failslab, interval 1, probability 0, space 0, times 0
[  254.525530][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  254.599831][ T9430] CPU: 0 UID: 0 PID: 9430 Comm: syz.3.1034 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  254.599862][ T9430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  254.599876][ T9430] Call Trace:
[  254.599884][ T9430]  <TASK>
[  254.599893][ T9430]  dump_stack_lvl+0x189/0x250
[  254.599933][ T9430]  ? __pfx____ratelimit+0x10/0x10
[  254.599967][ T9430]  ? __pfx_dump_stack_lvl+0x10/0x10
[  254.600000][ T9430]  ? __pfx__printk+0x10/0x10
[  254.600031][ T9430]  ? __pfx___might_resched+0x10/0x10
[  254.600070][ T9430]  should_fail_ex+0x414/0x560
[  254.600104][ T9430]  should_failslab+0xa8/0x100
[  254.600130][ T9430]  __kmalloc_node_noprof+0xd1/0x4e0
[  254.600151][ T9430]  ? alloc_slab_obj_exts+0x39/0xa0
[  254.600189][ T9430]  alloc_slab_obj_exts+0x39/0xa0
[  254.600223][ T9430]  __memcg_slab_post_alloc_hook+0x31e/0x7f0
[  254.600275][ T9430]  kmem_cache_alloc_node_noprof+0x2bd/0x3c0
[  254.600306][ T9430]  ? __alloc_skb+0x112/0x2d0
[  254.600336][ T9430]  __alloc_skb+0x112/0x2d0
[  254.600365][ T9430]  alloc_skb_with_frags+0xca/0x890
[  254.600397][ T9430]  ? __pfx_process_measurement+0x10/0x10
[  254.600426][ T9430]  ? tomoyo_check_open_permission+0x16a/0x3b0
[  254.600452][ T9430]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  254.600482][ T9430]  sock_alloc_send_pskb+0x857/0x990
[  254.600534][ T9430]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  254.600574][ T9430]  ? __pfx___might_resched+0x10/0x10
[  254.600605][ T9430]  ? __lock_acquire+0xab9/0xd20
[  254.600637][ T9430]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20
[  254.600672][ T9430]  unix_stream_sendmsg+0x4c2/0xc90
[  254.600718][ T9430]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  254.600753][ T9430]  ? aa_sock_msg_perm+0x94/0x160
[  254.600783][ T9430]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  254.600810][ T9430]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  254.600838][ T9430]  __sock_sendmsg+0x219/0x270
[  254.600875][ T9430]  ____sys_sendmsg+0x505/0x830
[  254.600910][ T9430]  ? __pfx_____sys_sendmsg+0x10/0x10
[  254.600948][ T9430]  ? import_iovec+0x74/0xa0
[  254.600974][ T9430]  ___sys_sendmsg+0x21f/0x2a0
[  254.601003][ T9430]  ? __pfx____sys_sendmsg+0x10/0x10
[  254.601075][ T9430]  ? __fget_files+0x2a/0x420
[  254.601097][ T9430]  ? __fget_files+0x3a0/0x420
[  254.601133][ T9430]  __x64_sys_sendmsg+0x19b/0x260
[  254.601163][ T9430]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  254.601201][ T9430]  ? __pfx_ksys_write+0x10/0x10
[  254.601219][ T9430]  ? rcu_is_watching+0x15/0xb0
[  254.601258][ T9430]  ? do_syscall_64+0xbe/0x3b0
[  254.601283][ T9430]  do_syscall_64+0xfa/0x3b0
[  254.601315][ T9430]  ? lockdep_hardirqs_on+0x9c/0x150
[  254.601348][ T9430]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.601369][ T9430]  ? clear_bhb_loop+0x60/0xb0
[  254.601396][ T9430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.601417][ T9430] RIP: 0033:0x7f2ad0f8e929
[  254.601436][ T9430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.601455][ T9430] RSP: 002b:00007f2ad1dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  254.601478][ T9430] RAX: ffffffffffffffda RBX: 00007f2ad11b5fa0 RCX: 00007f2ad0f8e929
[  254.601494][ T9430] RDX: 0000000000000003 RSI: 0000200000000980 RDI: 0000000000000006
[  254.601507][ T9430] RBP: 00007f2ad1dde090 R08: 0000000000000000 R09: 0000000000000000
[  254.601520][ T9430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  254.601533][ T9430] R13: 0000000000000000 R14: 00007f2ad11b5fa0 R15: 00007ffe004a68a8
[  254.601567][ T9430]  </TASK>
[  254.994369][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.023762][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  255.652963][ T9451] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1039'.
[  255.947591][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  255.962450][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  256.399493][ T1107] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.474193][ T9484] FAULT_INJECTION: forcing a failure.
[  256.474193][ T9484] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  256.551206][ T9484] CPU: 1 UID: 0 PID: 9484 Comm: syz.3.1052 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  256.551243][ T9484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  256.551258][ T9484] Call Trace:
[  256.551269][ T9484]  <TASK>
[  256.551281][ T9484]  dump_stack_lvl+0x189/0x250
[  256.551339][ T9484]  ? __pfx____ratelimit+0x10/0x10
[  256.551381][ T9484]  ? __pfx_dump_stack_lvl+0x10/0x10
[  256.551422][ T9484]  ? __pfx__printk+0x10/0x10
[  256.551455][ T9484]  ? __might_fault+0xb0/0x130
[  256.551490][ T9484]  ? __might_fault+0xb0/0x130
[  256.551535][ T9484]  should_fail_ex+0x414/0x560
[  256.551587][ T9484]  _copy_from_iter+0x1db/0x16f0
[  256.551635][ T9484]  ? rep_movs_alternative+0x4a/0x90
[  256.551692][ T9484]  ? __pfx__copy_from_iter+0x10/0x10
[  256.551723][ T9484]  ? sock_alloc_send_pskb+0x875/0x990
[  256.551782][ T9484]  ? __pfx__copy_from_iter+0x10/0x10
[  256.551832][ T9484]  ? page_copy_sane+0x16a/0x280
[  256.551879][ T9484]  copy_page_from_iter+0xdd/0x170
[  256.551936][ T9484]  skb_copy_datagram_from_iter+0x306/0x720
[  256.552011][ T9484]  unix_stream_sendmsg+0x5a1/0xc90
[  256.552097][ T9484]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  256.552142][ T9484]  ? perf_trace_run_bpf_submit+0xee/0x170
[  256.552177][ T9484]  ? aa_sock_msg_perm+0x94/0x160
[  256.552218][ T9484]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  256.552249][ T9484]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  256.552286][ T9484]  __sock_sendmsg+0x219/0x270
[  256.552351][ T9484]  ____sys_sendmsg+0x505/0x830
[  256.552406][ T9484]  ? __pfx_____sys_sendmsg+0x10/0x10
[  256.552471][ T9484]  ? import_iovec+0x74/0xa0
[  256.552513][ T9484]  ___sys_sendmsg+0x21f/0x2a0
[  256.552557][ T9484]  ? __pfx____sys_sendmsg+0x10/0x10
[  256.552662][ T9484]  ? __fget_files+0x2a/0x420
[  256.552732][ T9484]  ? __fget_files+0x2a/0x420
[  256.552758][ T9484]  ? __fget_files+0x3a0/0x420
[  256.552821][ T9484]  __x64_sys_sendmsg+0x19b/0x260
[  256.552867][ T9484]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  256.552895][ T9484]  ? perf_trace_preemptirq_template+0xa3/0x340
[  256.552960][ T9484]  ? __pfx_ksys_write+0x10/0x10
[  256.553005][ T9484]  ? do_syscall_64+0xbe/0x3b0
[  256.553044][ T9484]  do_syscall_64+0xfa/0x3b0
[  256.553073][ T9484]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.553094][ T9484]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  256.553117][ T9484]  ? clear_bhb_loop+0x60/0xb0
[  256.553153][ T9484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.553175][ T9484] RIP: 0033:0x7f2ad0f8e929
[  256.553198][ T9484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.553217][ T9484] RSP: 002b:00007f2ad1dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  256.553241][ T9484] RAX: ffffffffffffffda RBX: 00007f2ad11b5fa0 RCX: 00007f2ad0f8e929
[  256.553257][ T9484] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  256.553271][ T9484] RBP: 00007f2ad1dde090 R08: 0000000000000000 R09: 0000000000000000
[  256.553284][ T9484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  256.553297][ T9484] R13: 0000000000000000 R14: 00007f2ad11b5fa0 R15: 00007ffe004a68a8
[  256.553372][ T9484]  </TASK>
[  257.131085][ T1107] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.244199][ T1107] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.330037][ T1107] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.471380][ T1107] bridge_slave_1: left allmulticast mode
[  257.484995][ T1107] bridge_slave_1: left promiscuous mode
[  257.490787][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.500706][ T1107] bridge_slave_0: left allmulticast mode
[  257.506908][ T1107] bridge_slave_0: left promiscuous mode
[  257.513018][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.046678][ T9507] netlink: 'syz.3.1058': attribute type 17 has an invalid length.
[  258.055058][ T9507] netlink: 'syz.3.1058': attribute type 16 has an invalid length.
[  258.064255][ T9507] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1058'.
[  258.289422][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  258.318646][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  258.340481][ T1107] bond0 (unregistering): Released all slaves
[  258.411131][ T9502] netlink: 'syz.0.1057': attribute type 29 has an invalid length.
[  258.449279][ T9505] netlink: 'syz.0.1057': attribute type 29 has an invalid length.
[  258.460605][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  258.476232][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  258.486484][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  258.499739][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  258.519168][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  258.519637][ T9509] netlink: 'syz.0.1057': attribute type 2 has an invalid length.
[  258.602267][ T9509] netlink: 'syz.0.1057': attribute type 4 has an invalid length.
[  258.636874][ T9516] netlink: 763 bytes leftover after parsing attributes in process `syz.4.1061'.
[  258.947924][ T9508] netlink: 'syz.0.1057': attribute type 29 has an invalid length.
[  260.361140][ T5205] udevd[5205]: worker [7978] terminated by signal 33 (Unknown signal 33)
[  260.385879][ T1107] hsr_slave_0: left promiscuous mode
[  260.389124][ T5205] udevd[5205]: worker [7978] failed while handling '/devices/virtual/block/loop3'
[  260.403302][ T1107] hsr_slave_1: left promiscuous mode
[  260.462527][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.470019][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.584432][ T5154] Bluetooth: hci1: command tx timeout
[  261.173034][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  261.180550][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  261.220913][ T1107] veth1_macvtap: left promiscuous mode
[  261.229468][ T1107] veth0_macvtap: left promiscuous mode
[  261.238806][ T1107] veth1_vlan: left promiscuous mode
[  261.245123][ T1107] veth0_vlan: left promiscuous mode
[  261.547050][ T9600] FAULT_INJECTION: forcing a failure.
[  261.547050][ T9600] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  261.562529][ T9600] CPU: 0 UID: 0 PID: 9600 Comm: syz.1.1081 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  261.562561][ T9600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  261.562575][ T9600] Call Trace:
[  261.562586][ T9600]  <TASK>
[  261.562597][ T9600]  dump_stack_lvl+0x189/0x250
[  261.562641][ T9600]  ? __pfx____ratelimit+0x10/0x10
[  261.562679][ T9600]  ? __pfx_dump_stack_lvl+0x10/0x10
[  261.562717][ T9600]  ? __pfx__printk+0x10/0x10
[  261.562748][ T9600]  ? __might_fault+0xb0/0x130
[  261.562781][ T9600]  ? __might_fault+0xb0/0x130
[  261.562823][ T9600]  should_fail_ex+0x414/0x560
[  261.562881][ T9600]  _copy_from_iter+0x1db/0x16f0
[  261.562927][ T9600]  ? rep_movs_alternative+0x4a/0x90
[  261.562981][ T9600]  ? __pfx__copy_from_iter+0x10/0x10
[  261.563011][ T9600]  ? sock_alloc_send_pskb+0x875/0x990
[  261.563067][ T9600]  ? __pfx__copy_from_iter+0x10/0x10
[  261.563113][ T9600]  ? page_copy_sane+0x16a/0x280
[  261.563158][ T9600]  copy_page_from_iter+0xdd/0x170
[  261.563211][ T9600]  skb_copy_datagram_from_iter+0x306/0x720
[  261.563280][ T9600]  unix_stream_sendmsg+0x5a1/0xc90
[  261.563344][ T9600]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  261.563378][ T9600]  ? perf_trace_run_bpf_submit+0xee/0x170
[  261.563410][ T9600]  ? aa_sock_msg_perm+0x94/0x160
[  261.563441][ T9600]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  261.563464][ T9600]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  261.563492][ T9600]  __sock_sendmsg+0x219/0x270
[  261.563532][ T9600]  ____sys_sendmsg+0x505/0x830
[  261.563572][ T9600]  ? __pfx_____sys_sendmsg+0x10/0x10
[  261.563623][ T9600]  ? import_iovec+0x74/0xa0
[  261.563654][ T9600]  ___sys_sendmsg+0x21f/0x2a0
[  261.563687][ T9600]  ? __pfx____sys_sendmsg+0x10/0x10
[  261.563762][ T9600]  ? __fget_files+0x2a/0x420
[  261.563814][ T9600]  ? __fget_files+0x2a/0x420
[  261.563834][ T9600]  ? __fget_files+0x3a0/0x420
[  261.563889][ T9600]  __x64_sys_sendmsg+0x19b/0x260
[  261.563922][ T9600]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  261.563971][ T9600]  ? __pfx_ksys_write+0x10/0x10
[  261.563987][ T9600]  ? rcu_is_watching+0x15/0xb0
[  261.564030][ T9600]  ? do_syscall_64+0xbe/0x3b0
[  261.564058][ T9600]  do_syscall_64+0xfa/0x3b0
[  261.564074][ T9600]  ? lockdep_hardirqs_on+0x9c/0x150
[  261.564103][ T9600]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.564122][ T9600]  ? clear_bhb_loop+0x60/0xb0
[  261.564151][ T9600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.564168][ T9600] RIP: 0033:0x7f113038e929
[  261.564187][ T9600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.564203][ T9600] RSP: 002b:00007f1131182038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  261.564222][ T9600] RAX: ffffffffffffffda RBX: 00007f11305b5fa0 RCX: 00007f113038e929
[  261.564235][ T9600] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000005
[  261.564246][ T9600] RBP: 00007f1131182090 R08: 0000000000000000 R09: 0000000000000000
[  261.564258][ T9600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  261.564271][ T9600] R13: 0000000000000000 R14: 00007f11305b5fa0 R15: 00007ffeba562798
[  261.564334][ T9600]  </TASK>
[  262.237827][ T9618] netlink: 'syz.1.1088': attribute type 17 has an invalid length.
[  262.246195][ T9618] netlink: 'syz.1.1088': attribute type 16 has an invalid length.
[  262.258196][ T9618] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1088'.
[  262.662580][ T5154] Bluetooth: hci1: command tx timeout
[  262.678233][ T1107] team0 (unregistering): Port device team_slave_1 removed
[  262.767765][ T1107] team0 (unregistering): Port device team_slave_0 removed
[  263.639659][ T5205] udevd[5205]: worker [8077] terminated by signal 33 (Unknown signal 33)
[  263.650067][ T5205] udevd[5205]: worker [8077] failed while handling '/devices/virtual/block/loop4'
[  263.672867][ T9641] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1097'.
[  263.927966][ T9651] netlink: 'syz.0.1100': attribute type 21 has an invalid length.
[  263.977280][ T9646] syzkaller0: entered promiscuous mode
[  264.000124][ T9646] syzkaller0: entered allmulticast mode
[  264.058046][ T9514] chnl_net:caif_netlink_parms(): no params data found
[  264.742069][ T5154] Bluetooth: hci1: command tx timeout
[  266.456467][ T9708] netlink: 'syz.3.1116': attribute type 17 has an invalid length.
[  266.464597][ T9708] netlink: 'syz.3.1116': attribute type 16 has an invalid length.
[  266.472677][ T9708] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1116'.
[  266.832027][ T5154] Bluetooth: hci1: command tx timeout
[  280.227909][ T5839] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  280.238002][ T5839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  280.248580][ T5839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  280.257956][ T5839] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  280.267337][ T5839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  281.268588][ T5154] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  281.282226][ T5154] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  281.292393][ T5154] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  281.301211][ T5154] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  281.311255][ T5154] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  282.362722][ T5154] Bluetooth: hci5: command tx timeout
[  282.627395][ T5839] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  282.636311][ T5839] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  282.645405][ T5839] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  282.660078][ T5839] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  282.669066][ T5839] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  282.754528][ T5154] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  282.764511][ T5154] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  282.773351][ T5154] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  282.782839][ T5154] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  282.790794][ T5154] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  283.382417][ T5154] Bluetooth: hci6: command tx timeout
[  284.422275][ T5154] Bluetooth: hci5: command tx timeout
[  284.742177][ T5154] Bluetooth: hci7: command tx timeout
[  284.822165][ T5154] Bluetooth: hci8: command tx timeout
[  285.462268][ T5154] Bluetooth: hci6: command tx timeout
[  286.502149][ T5154] Bluetooth: hci5: command tx timeout
[  286.825607][ T5154] Bluetooth: hci7: command tx timeout
[  286.902943][ T5154] Bluetooth: hci8: command tx timeout
[  287.542241][ T5154] Bluetooth: hci6: command tx timeout
[  288.582307][ T5154] Bluetooth: hci5: command tx timeout
[  288.902039][ T5154] Bluetooth: hci7: command tx timeout
[  288.982193][ T5154] Bluetooth: hci8: command tx timeout
[  289.623159][ T5154] Bluetooth: hci6: command tx timeout
[  290.988291][ T5154] Bluetooth: hci7: command tx timeout
[  291.063109][ T5154] Bluetooth: hci8: command tx timeout
[  317.389026][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  317.398995][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  319.642844][ T5839] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  319.651862][ T5839] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  319.662163][ T5839] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  319.678020][ T5839] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  319.687049][ T5839] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  321.782221][ T5839] Bluetooth: hci9: command tx timeout
[  323.862122][ T5839] Bluetooth: hci9: command tx timeout
[  325.942230][ T5839] Bluetooth: hci9: command tx timeout
[  328.023055][ T5839] Bluetooth: hci9: command tx timeout
[  340.835044][ T5154] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  340.844018][ T5154] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  340.852417][ T5154] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  340.862142][ T5154] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  340.871676][ T5154] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  341.878056][ T5839] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  341.887303][ T5839] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  341.896272][ T5839] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  341.904837][ T5839] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  341.924099][ T5839] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  342.985383][ T5154] Bluetooth: hci10: command tx timeout
[  343.358592][ T5839] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  343.367752][ T5839] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  343.376541][ T5839] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  343.398469][ T5839] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  343.407912][ T5839] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  343.475179][ T5154] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  343.485590][ T5154] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  343.494685][ T5154] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  343.513629][ T5154] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  343.521760][ T5154] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  344.022052][ T5154] Bluetooth: hci11: command tx timeout
[  345.062021][ T5154] Bluetooth: hci10: command tx timeout
[  345.472261][ T5154] Bluetooth: hci12: command tx timeout
[  345.542146][ T5154] Bluetooth: hci13: command tx timeout
[  346.102271][ T5154] Bluetooth: hci11: command tx timeout
[  347.142262][ T5154] Bluetooth: hci10: command tx timeout
[  347.542225][ T5154] Bluetooth: hci12: command tx timeout
[  347.622136][ T5154] Bluetooth: hci13: command tx timeout
[  348.182051][ T5154] Bluetooth: hci11: command tx timeout
[  349.222089][ T5154] Bluetooth: hci10: command tx timeout
[  349.622205][ T5154] Bluetooth: hci12: command tx timeout
[  349.702124][ T5154] Bluetooth: hci13: command tx timeout
[  350.267366][ T5154] Bluetooth: hci11: command tx timeout
[  351.702290][ T5154] Bluetooth: hci12: command tx timeout
[  351.782261][ T5154] Bluetooth: hci13: command tx timeout
[  378.842185][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  378.848686][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  380.907221][ T5154] Bluetooth: hci1: command 0x0406 tx timeout
[  381.348046][ T5854] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  381.357173][ T5854] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  381.366113][ T5854] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  381.382282][ T5854] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  381.391344][ T5854] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  398.761617][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 144s! [swapper/0:0]
[  398.761649][    C0] Modules linked in:
[  398.761666][    C0] irq event stamp: 117798847
[  398.761672][    C0] hardirqs last  enabled at (117798846): [<ffffffff810015ea>] asm_sysvec_irq_work+0x1a/0x20
[  398.761697][    C0] hardirqs last disabled at (117798847): [<ffffffff8b65ef5e>] sysvec_apic_timer_interrupt+0xe/0xc0
[  398.761723][    C0] softirqs last  enabled at (117798836): [<ffffffff8185b17a>] __irq_exit_rcu+0xca/0x1f0
[  398.761749][    C0] softirqs last disabled at (117798839): [<ffffffff8185b17a>] __irq_exit_rcu+0xca/0x1f0
[  398.761785][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  398.761801][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  398.761816][    C0] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  398.761836][    C0] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 b2 02 f5 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  398.761850][    C0] RSP: 0018:ffffc900000078c0 EFLAGS: 00000206
[  398.761862][    C0] RAX: c33382c11b4d8200 RBX: 1ffff92000000f20 RCX: c33382c11b4d8200
[  398.761874][    C0] RDX: 0000000000000000 RSI: ffffffff8d9810ef RDI: ffffffff8be28300
[  398.761884][    C0] RBP: ffffc900000079c0 R08: ffffffff8fa108f7 R09: 1ffffffff1f4211e
[  398.761900][    C0] R10: dffffc0000000000 R11: fffffbfff1f4211f R12: ffffffff8e144100
[  398.761911][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
[  398.761921][    C0] FS:  0000000000000000(0000) GS:ffff888125c52000(0000) knlGS:0000000000000000
[  398.761934][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  398.761944][    C0] CR2: 000020000000f000 CR3: 000000000df38000 CR4: 00000000003526f0
[  398.761956][    C0] DR0: 0000000000000000 DR1: 0000200000000300 DR2: 0000200000000300
[  398.761967][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  398.761976][    C0] Call Trace:
[  398.761982][    C0]  <IRQ>
[  398.761990][    C0]  ? __lock_acquire+0xab9/0xd20
[  398.762018][    C0]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  398.762037][    C0]  ? bpf_trace_run1+0x181/0x4b0
[  398.762070][    C0]  __rcu_read_unlock+0x84/0xe0
[  398.762091][    C0]  bpf_trace_run1+0x31d/0x4b0
[  398.762110][    C0]  ? __phys_addr+0xd3/0x180
[  398.762123][    C0]  ? bpf_trace_run1+0x181/0x4b0
[  398.762143][    C0]  ? __pfx_bpf_trace_run1+0x10/0x10
[  398.762167][    C0]  ? __bpf_trace_rcu_utilization+0x94/0xf0
[  398.762198][    C0]  __bpf_trace_rcu_utilization+0xa1/0xf0
[  398.762222][    C0]  ? __pfx___bpf_trace_rcu_utilization+0x10/0x10
[  398.762260][    C0]  trace_rcu_utilization+0x1ad/0x1d0
[  398.762276][    C0]  rcu_core+0x12b/0x1710
[  398.762297][    C0]  ? __lock_acquire+0xab9/0xd20
[  398.762326][    C0]  ? do_raw_spin_lock+0x121/0x290
[  398.762350][    C0]  ? __pfx_rcu_core+0x10/0x10
[  398.762375][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  398.762395][    C0]  ? sched_clock+0x3f/0x60
[  398.762413][    C0]  ? sched_clock_cpu+0x74/0x430
[  398.762435][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  398.762458][    C0]  ? handle_softirqs+0x5ce/0x870
[  398.762482][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  398.762505][    C0]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  398.762542][    C0]  handle_softirqs+0x286/0x870
[  398.762568][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  398.762597][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  398.762619][    C0]  ? irq_work_single+0x1ac/0x240
[  398.762644][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  398.762666][    C0]  __irq_exit_rcu+0xca/0x1f0
[  398.762689][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  398.762716][    C0]  ? rcu_is_watching+0x15/0xb0
[  398.762741][    C0]  irq_exit_rcu+0x9/0x30
[  398.762762][    C0]  sysvec_irq_work+0xa3/0xc0
[  398.762780][    C0]  </IRQ>
[  398.762785][    C0]  <TASK>
[  398.762791][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  398.762806][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  398.762828][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 35 22 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  398.762840][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c2
[  398.762851][    C0] RAX: c33382c11b4d8200 RBX: ffffffff81976058 RCX: c33382c11b4d8200
[  398.762863][    C0] RDX: 0000000000000001 RSI: ffffffff8d9810ef RDI: ffffffff8be28300
[  398.762873][    C0] RBP: ffffffff8de07ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[  398.762884][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fa108f0
[  398.762900][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a50
[  398.762914][    C0]  ? do_idle+0x1e8/0x510
[  398.762937][    C0]  default_idle+0x13/0x20
[  398.762952][    C0]  default_idle_call+0x74/0xb0
[  398.762968][    C0]  do_idle+0x1e8/0x510
[  398.762987][    C0]  ? __pfx_do_idle+0x10/0x10
[  398.763016][    C0]  cpu_startup_entry+0x44/0x60
[  398.763030][    C0]  rest_init+0x2de/0x300
[  398.763047][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  398.763069][    C0]  start_kernel+0x47d/0x500
[  398.763098][    C0]  x86_64_start_reservations+0x24/0x30
[  398.763118][    C0]  x86_64_start_kernel+0x143/0x1c0
[  398.763137][    C0]  common_startup_64+0x13e/0x147
[  398.763170][    C0]  </TASK>
[  398.763182][    C0] Sending NMI from CPU 0 to CPUs 1:
[  399.273408][    C1] NMI backtrace for cpu 1
[  399.273426][    C1] CPU: 1 UID: 0 PID: 8559 Comm: kworker/u8:12 Not tainted 6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  399.273448][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  399.273461][    C1] Workqueue: events_unbound toggle_allocation_gate
[  399.273486][    C1] RIP: 0010:smp_call_function_many_cond+0xf69/0x12d0
[  399.273518][    C1] Code: 00 45 8b 2f 44 89 ee 83 e6 01 31 ff e8 60 78 0b 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 07 e8 0b 74 0b 00 eb 37 f3 90 <43> 0f b6 04 2c 84 c0 75 10 41 f7 07 01 00 00 00 74 1e e8 f0 73 0b
[  399.273534][    C1] RSP: 0018:ffffc900045cf6a0 EFLAGS: 00000293
[  399.273549][    C1] RAX: ffffffff81b4eb00 RBX: ffff8880b873cb40 RCX: ffff88801e319e00
[  399.273562][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  399.273573][    C1] RBP: ffffc900045cf800 R08: ffffffff8fa108f7 R09: 1ffffffff1f4211e
[  399.273586][    C1] R10: dffffc0000000000 R11: fffffbfff1f4211f R12: 1ffff110170c86b5
[  399.273600][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8880b86435a8
[  399.273613][    C1] FS:  0000000000000000(0000) GS:ffff888125d52000(0000) knlGS:0000000000000000
[  399.273627][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  399.273639][    C1] CR2: 00007f2d8948b22e CR3: 000000000df38000 CR4: 00000000003526f0
[  399.273654][    C1] DR0: 0000200000000300 DR1: 0000200000000300 DR2: 0000200000000300
[  399.273667][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff1 DR7: 0000000000000600
[  399.273678][    C1] Call Trace:
[  399.273686][    C1]  <TASK>
[  399.273704][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  399.273732][    C1]  ? __pfx_text_poke_memcpy+0x10/0x10
[  399.273752][    C1]  ? kmem_cache_alloc_bulk_noprof+0x148/0x790
[  399.273771][    C1]  ? __pfx___text_poke+0x10/0x10
[  399.273789][    C1]  ? rcu_is_watching+0x15/0xb0
[  399.273816][    C1]  ? trace_contention_end+0x39/0x120
[  399.273839][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  399.273863][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[  399.273892][    C1]  smp_text_poke_batch_finish+0x5e0/0x1100
[  399.273914][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  399.273932][    C1]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  399.273956][    C1]  ? arch_jump_label_transform_queue+0x97/0x110
[  399.273987][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  399.274009][    C1]  static_key_enable_cpuslocked+0x128/0x250
[  399.274030][    C1]  static_key_enable+0x1a/0x20
[  399.274047][    C1]  toggle_allocation_gate+0xad/0x240
[  399.274065][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  399.274083][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  399.274116][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  399.274142][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  399.274168][    C1]  process_scheduled_works+0xae1/0x17b0
[  399.274212][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  399.274254][    C1]  worker_thread+0x8a0/0xda0
[  399.274285][    C1]  kthread+0x70e/0x8a0
[  399.274307][    C1]  ? __pfx_worker_thread+0x10/0x10
[  399.274334][    C1]  ? __pfx_kthread+0x10/0x10
[  399.274355][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  399.274379][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  399.274404][    C1]  ? __pfx_kthread+0x10/0x10
[  399.274424][    C1]  ret_from_fork+0x3fc/0x770
[  399.274451][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  399.274480][    C1]  ? __switch_to_asm+0x39/0x70
[  399.274497][    C1]  ? __switch_to_asm+0x33/0x70
[  399.274515][    C1]  ? __pfx_kthread+0x10/0x10
[  399.274535][    C1]  ret_from_fork_asm+0x1a/0x30
[  399.274563][    C1]  </TASK>
[  399.275397][    C0] Kernel panic - not syncing: softlockup: hung tasks
[  399.620773][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G             L      6.16.0-rc1-syzkaller-g9cc7d5904bab #0 PREEMPT(full) 
[  399.633529][    C0] Tainted: [L]=SOFTLOCKUP
[  399.637972][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  399.648048][    C0] Call Trace:
[  399.651346][    C0]  <IRQ>
[  399.654212][    C0]  dump_stack_lvl+0x99/0x250
[  399.658845][    C0]  ? __asan_memcpy+0x40/0x70
[  399.663468][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  399.668779][    C0]  ? __pfx__printk+0x10/0x10
[  399.673418][    C0]  panic+0x2db/0x790
[  399.677472][    C0]  ? __pfx_panic+0x10/0x10
[  399.681943][    C0]  ? nmi_backtrace_stall_check+0x433/0x440
[  399.687827][    C0]  watchdog_timer_fn+0x862/0x870
[  399.692820][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  399.698312][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  399.704262][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  399.710634][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  399.716126][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  399.721611][    C0]  __hrtimer_run_queues+0x4e0/0xc60
[  399.726838][    C0]  ? ktime_get_update_offsets_now+0x60/0x3d0
[  399.732867][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  399.738612][    C0]  ? ktime_get_update_offsets_now+0x3ab/0x3d0
[  399.744702][    C0]  ? sched_clock_cpu+0x74/0x430
[  399.749585][    C0]  hrtimer_interrupt+0x45b/0xaa0
[  399.754607][    C0]  __sysvec_apic_timer_interrupt+0x108/0x410
[  399.760616][    C0]  sysvec_apic_timer_interrupt+0x52/0xc0
[  399.766274][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  399.772274][    C0] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  399.778446][    C0] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 b2 02 f5 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  399.798075][    C0] RSP: 0018:ffffc900000078c0 EFLAGS: 00000206
[  399.804259][    C0] RAX: c33382c11b4d8200 RBX: 1ffff92000000f20 RCX: c33382c11b4d8200
[  399.812266][    C0] RDX: 0000000000000000 RSI: ffffffff8d9810ef RDI: ffffffff8be28300
[  399.820351][    C0] RBP: ffffc900000079c0 R08: ffffffff8fa108f7 R09: 1ffffffff1f4211e
[  399.828360][    C0] R10: dffffc0000000000 R11: fffffbfff1f4211f R12: ffffffff8e144100
[  399.836346][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
[  399.844451][    C0]  ? __lock_acquire+0xab9/0xd20
[  399.849356][    C0]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  399.855357][    C0]  ? bpf_trace_run1+0x181/0x4b0
[  399.860240][    C0]  __rcu_read_unlock+0x84/0xe0
[  399.865028][    C0]  bpf_trace_run1+0x31d/0x4b0
[  399.869733][    C0]  ? __phys_addr+0xd3/0x180
[  399.874449][    C0]  ? bpf_trace_run1+0x181/0x4b0
[  399.879330][    C0]  ? __pfx_bpf_trace_run1+0x10/0x10
[  399.884555][    C0]  ? __bpf_trace_rcu_utilization+0x94/0xf0
[  399.890391][    C0]  __bpf_trace_rcu_utilization+0xa1/0xf0
[  399.896141][    C0]  ? __pfx___bpf_trace_rcu_utilization+0x10/0x10
[  399.902609][    C0]  trace_rcu_utilization+0x1ad/0x1d0
[  399.907912][    C0]  rcu_core+0x12b/0x1710
[  399.912189][    C0]  ? __lock_acquire+0xab9/0xd20
[  399.917136][    C0]  ? do_raw_spin_lock+0x121/0x290
[  399.922186][    C0]  ? __pfx_rcu_core+0x10/0x10
[  399.926893][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  399.932139][    C0]  ? sched_clock+0x3f/0x60
[  399.936605][    C0]  ? sched_clock_cpu+0x74/0x430
[  399.941490][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  399.947846][    C0]  ? handle_softirqs+0x5ce/0x870
[  399.952874][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[  399.958188][    C0]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  399.964037][    C0]  handle_softirqs+0x286/0x870
[  399.968957][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  399.973781][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  399.979101][    C0]  ? irq_work_single+0x1ac/0x240
[  399.984089][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  399.989316][    C0]  __irq_exit_rcu+0xca/0x1f0
[  399.993944][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  399.999209][    C0]  ? rcu_is_watching+0x15/0xb0
[  400.004006][    C0]  irq_exit_rcu+0x9/0x30
[  400.008299][    C0]  sysvec_irq_work+0xa3/0xc0
[  400.012925][    C0]  </IRQ>
[  400.015949][    C0]  <TASK>
[  400.018895][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  400.023864][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  400.029698][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 35 22 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  400.049327][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c2
[  400.055604][    C0] RAX: c33382c11b4d8200 RBX: ffffffff81976058 RCX: c33382c11b4d8200
[  400.063632][    C0] RDX: 0000000000000001 RSI: ffffffff8d9810ef RDI: ffffffff8be28300
[  400.071648][    C0] RBP: ffffffff8de07ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[  400.079654][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fa108f0
[  400.087642][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a50
[  400.095639][    C0]  ? do_idle+0x1e8/0x510
[  400.099911][    C0]  default_idle+0x13/0x20
[  400.104261][    C0]  default_idle_call+0x74/0xb0
[  400.109044][    C0]  do_idle+0x1e8/0x510
[  400.113145][    C0]  ? __pfx_do_idle+0x10/0x10
[  400.117770][    C0]  cpu_startup_entry+0x44/0x60
[  400.122572][    C0]  rest_init+0x2de/0x300
[  400.126852][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  400.132430][    C0]  start_kernel+0x47d/0x500
[  400.136966][    C0]  x86_64_start_reservations+0x24/0x30
[  400.142459][    C0]  x86_64_start_kernel+0x143/0x1c0
[  400.147599][    C0]  common_startup_64+0x13e/0x147
[  400.152584][    C0]  </TASK>
[  400.155956][    C0] Kernel Offset: disabled
[  400.160296][    C0] Rebooting in 86400 seconds..