last executing test programs:

4m49.837532352s ago: executing program 2 (id=133):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x36}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

4m49.063246095s ago: executing program 2 (id=138):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r0], 0x20)

4m27.04056505s ago: executing program 2 (id=138):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r0], 0x20)

4m0.678748598s ago: executing program 2 (id=138):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r0], 0x20)

3m34.619222262s ago: executing program 2 (id=138):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r0], 0x20)

3m9.042730677s ago: executing program 2 (id=138):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r0], 0x20)

2m50.728526506s ago: executing program 3 (id=630):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000540)={@map, 0xffffffffffffffff, 0x25, 0x2018, 0xffffffffffffffff, @value}, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000300)={r0, <r1=>0xffffffffffffffff}, 0x4)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x40, r1}, 0x38)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000180)=[0x0], ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x1, 0x4, &(0x7f0000000380)=[0x0], &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x5a, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000440), &(0x7f0000000500), 0x8, 0xf9, 0x8, 0x8, &(0x7f0000000540)}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x10, 0x16, &(0x7f0000000e40)=ANY=[@ANYBLOB="1800000000020000000000000a00001818110000c64ebafae178ee41e9452a7ddc6e87045271b89200191979918376ab8f2667ec4564ae1e1fff8886bbcbde0fdcc0a211e9dc087c4577f9ca13a729729aeeb9fd8e0ca245", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b5680000f0ffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000085100000feffffff9500000000000000bf91000000000000b7020000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x5, 0x22, &(0x7f0000000140)=""/34, 0x40f00, 0x0, '\x00', r2, @fallback=0x6, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000780)={0x2, 0x1, 0x9, 0x2}, 0x10, 0x0, r0, 0x0, &(0x7f0000000ac0)=[r1], 0x0, 0x10, 0x4, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000feff03ff00000000000004008500000036000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000010400000850000000600000095"], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x87fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_bp={0x0, 0x1}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000020000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xf, &(0x7f0000000580)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}, {0x85, 0x0, 0x0, 0x2d}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r7}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r4}, &(0x7f0000000540), &(0x7f0000000580)=r5}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000200)="ff7f0e3f2617d1f42ab5a1db8511", 0x0, 0x2040000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x6}, 0x50)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000e00), 0x4)

2m50.456324895s ago: executing program 0 (id=633):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0xa345d10fd9106efb, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}, 0x2018, 0x0, 0x0, 0x5, 0x1000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000140)='./file0\x00', 0x0, 0x18}, 0x18)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={@map, 0xd, 0x0, 0xfffffffc, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x0, &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], <r6=>0x0}, 0x40)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r7, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r7, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a80)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000340)={@ifindex=r8, r4, 0x29, 0x28, r5, @void, @void, @void, @value=0xffffffffffffffff, r6}, 0x20)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000080)={@fallback=r2, r1, 0x7, 0x0, r2, @void, @value=r2, @void, @void, r6}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m47.405609019s ago: executing program 3 (id=636):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f0000000080)={'dummy0\x00', @local})
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x16, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000500)={r1, 0x0, 0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x0, 0xee, 0x25, &(0x7f00000000c0)="da7b706a96436f62ec082752091a3b5f9a55f709f727cb085f6d63ecbc6408e311536a720e9df7be6aa391f78ac7b7c2d125237292d39948a1a91ab9747fe8d223e003d3db7f5f2d0360b6505dd24d4587926b5476797de4b3de8d75c2aca948be71863adebf0be36cceddcf444f520df7ca87d2bae2e0b862a9a433d0c3746c3366717d139ed21ddd3923dba8294d812ac325b12f7a2b72b02fa66a85c1ffd2294da57567302aedb0795f3ef679b5af25c36dc51290b79f1b8344a648b6d420ad820568d999fe7e67682fa4869d0cf8f16a147b4de7370cdaef225a1640e7345f514a8821f8113b987229851501", &(0x7f0000000000)=""/37, 0x7, 0x0, 0xe5, 0x33, &(0x7f00000001c0)="ef81afb4dab62d0e1f50877db3677a00d73ae23380ceab1ca88ce215e6ad5954d2958d20c5fde184c7773bd4d776f644baaa7384125f91bb8c17dc406190d999a521a6a7677b83653c19b569844f8af16d9c5209654fb4750534d05d2f3822abc5a6e1e655312dd41239c87e866b2d381b5b6fde3a77018e15446f7b8fcc34b4c810d31f4df3a15577a573ec2044d6483711a3dacfff44a8499631eb7e6e21c85359ebb8904fec7c6c2dec130b6be563ae6b055a6d23bd6a574803a853b7d172ff105701b7e7aba6b0dd98aae875b80b20d2196506381764a0d0d624a98963712249be2824", &(0x7f0000000040)="c141f04861c670260ab47653f0b63c646f3aa42695be9104e90e8f7ec7cac78f2963bd03dcd501a2390a3f3fea481754d4b894", 0x4}, 0x50)

2m47.28715445s ago: executing program 0 (id=637):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)}, 0x4000000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

2m47.191242294s ago: executing program 4 (id=638):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4135, 0x1027}], 0x1}, 0x42)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(0x0, 0x0, 0x8, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="2e00000012002f8c35093f974b21b92e0a", 0x11}], 0x1}, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1310000016"], 0xfe33)

2m47.184035803s ago: executing program 0 (id=639):
r0 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8918, &(0x7f0000000000)={'veth1_to_bridge\x00', @random="02009c25ebe1"}) (async)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x17, 0x6, 0x1, 0x0, 0x0, 0x80000000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4a6, 0x1, @perf_config_ext={0x8, 0x3}, 0x10058, 0x0, 0xe895, 0x2, 0x19, 0x8, 0x7d, 0x0, 0x9, 0x0, 0x6}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x96)

2m47.12862612s ago: executing program 3 (id=640):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000001b80)={&(0x7f0000000040)={0x2, 0x4e21, @dev}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES16=r0], 0xf}, 0x0)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000001c0), 0x4)
syz_open_procfs$namespace(0x0, &(0x7f00000012c0)='ns/time_for_children\x00')
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x408, 0xca, 0x0, 0x2, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))
close(r3)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2, 0x4, 0x0, 0x7}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}, 0x4000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x3, 0x10)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x98, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000a000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000070000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000200)=ANY=[@ANYRES8=r3, @ANYRES8=r5], 0x12)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_subtree(r6, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000180)={[{0x2d, 'hugetlb'}, {0x2d, 'blkio'}]}, 0x10)
syz_open_procfs$namespace(0x0, &(0x7f0000001e40)='ns/time_for_children\x00')
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000240)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x7fa6, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x4, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x7}, [@generic={0x8, 0x0, 0x8, 0x1000, 0x9}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x82, &(0x7f0000000100)=""/130, 0x41100, 0x4, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200)={0x2, 0x7, 0xf8b6}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[r8, 0x1], &(0x7f0000000300)=[{0x4, 0x3, 0xe, 0x5}], 0x10, 0xd6, @void, @value}, 0x94)

2m46.991963252s ago: executing program 4 (id=642):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e20, 0x8001, @loopback, 0x7}}, 0x80, 0x0}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x5, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = socket$kcm(0x29, 0x7, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000140)={<r4=>r1})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x14, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xffff}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@alu={0x7, 0x1, 0xc, 0x12, 0x7, 0x20, 0x18}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x3}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000240)='GPL\x00', 0x101, 0xd9, &(0x7f0000000300)=""/217, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0xb, 0x8, 0x5}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000440)=[r2, r2, r2, r2, r2, 0x1, r2], &(0x7f0000000480)=[{0x2, 0x5, 0x10, 0x9}, {0x2, 0x2, 0x4, 0x2}, {0x1, 0x1, 0xc, 0x5}, {0x0, 0x2, 0x9, 0xb}, {0x3, 0x4, 0x10, 0x2}, {0x3, 0x1, 0x6}], 0x10, 0x8000, @void, @value}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000005c0)={r4, r5})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r2}, &(0x7f0000000700), &(0x7f0000000740)=r1}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000002c0)={r2, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20)

2m46.865012411s ago: executing program 0 (id=644):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000001300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x4, [@func_proto={0x0, 0x0, 0x0, 0x2, 0x3}, @fwd={0x2}, @struct={0x0, 0x0, 0x0, 0x9, 0x0, 0x2}]}, {0x0, [0x0, 0x51]}}, 0x0, 0x40, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32, @ANYBLOB="0600000800"/20, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="030000000300"/28], 0x50)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="5c00000014006b04000000d86567e75110623400cdd46b44dacff32c6e020075e3002500020003000000732f71d34460bc42fab5560000000ebab8bebf9367b4fa51f60a64c9f4d47780021a86a6d0bdd70000ce6a391c0767a2269b", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

2m46.839329371s ago: executing program 3 (id=645):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4135, 0x1027}], 0x1}, 0x42)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80), 0x100}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000140)=[0x0, 0x0], ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x6, 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0], 0x0, 0x11, &(0x7f0000000200)=[{}], 0x8, 0x10, &(0x7f0000000240), &(0x7f0000000280), 0x8, 0x23, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000000f40)=ANY=[@ANYRES16=r1], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r3, @fallback=0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90724fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

2m46.754433859s ago: executing program 4 (id=646):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r3 = socket$kcm(0x29, 0x2, 0x0)
socket$kcm(0x29, 0x0, 0x0)
r4 = getpid()
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x2100, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x3, 0x400000000398}, 0x18020, 0x4, 0x0, 0x0, 0x2, 0xfffff271}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r7, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000780)={r2, 0x58, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000007c0)=0xffffffffffffffff, 0x4)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x6, <r11=>0x0}, 0x8)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x8, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, 0x0, 0x7, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r10, 0x0, 0x0, 0x0, 0x10, 0xfff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0xe, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="185200000900000000000000000000005b3b000004000000850000005f00000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000852000000100000009141e8b0500000018410000070000000000000000000000850000006d00000018240000", @ANYRES32=r2, @ANYBLOB="0300000006000000"], &(0x7f00000004c0)='GPL\x00', 0x3, 0xb0, &(0x7f0000000500)=""/176, 0x41000, 0x3, '\x00', r8, @fallback=0x23, r9, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r0, 0x6, &(0x7f0000000800)=[r2], &(0x7f0000000a40)=[{0x2, 0x1, 0x4, 0xc}, {0x2, 0x1, 0xd}, {0x4, 0x1, 0x3, 0x6}, {0x5, 0x4, 0xa, 0x2}, {0x0, 0x4, 0x10, 0xc}, {0x1, 0x5, 0xc, 0xb}], 0x10, 0x5, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000080), &(0x7f0000000280)=r6}, 0x20)
r13 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000cc0)=0xffffffffffffffff, 0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000b80)=ANY=[@ANYRES32, @ANYRES32=r12, @ANYBLOB="040001001020000000000000d4701ba2141b2ca14d001092c0b07390dc7d6af05276c4fb849dac6a1929eb6afa67817d9c02c7f7c1913b18498845aa55d76f52e47c2d666fcd10c090b2fef71694ee5afe072b451981a4c526bf32ceb8ba68970603f556c28aa0bff670a9fbe29997d6ae0c5760a651da2cf280dcbaa509276e1f6be34870be1faf5da84c36bb57213ab02cde731de4fe48c240c200c6802a9db2120910c322229e3905fb639fb27507aeca464cb193e38b48905eec534e5541af68d3d3b51797b145e7a35180c7c8715184", @ANYRES32=r13, @ANYBLOB, @ANYRES64=0x0], 0x20)
setsockopt$sock_attach_bpf(r3, 0x119, 0x8, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYRESOCT=r3, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f00000001c0)=r14}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r14}, 0x10)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r15 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r15, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000002c0)="5c00000014006b03000000d86e6c1d00028440fcffff564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4)

2m46.702111854s ago: executing program 0 (id=647):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000540)={@map, 0xffffffffffffffff, 0x25, 0x2018, 0xffffffffffffffff, @value}, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000300)={r0, <r1=>0xffffffffffffffff}, 0x4)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x40, r1}, 0x38)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000180)=[0x0], ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x1, 0x4, &(0x7f0000000380)=[0x0], &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x5a, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000440), &(0x7f0000000500), 0x8, 0xf9, 0x8, 0x8, &(0x7f0000000540)}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a80)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x10, 0x16, &(0x7f0000000e40)=ANY=[@ANYBLOB="1800000000020000000000000a00001818110000c64ebafae178ee41e9452a7ddc6e87045271b89200191979918376ab8f2667ec4564ae1e1fff8886bbcbde0fdcc0a211e9dc087c4577f9ca13a729729aeeb9fd8e0ca245", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b5680000f0ffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000085100000feffffff9500000000000000bf91000000000000b7020000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x5, 0x22, &(0x7f0000000140)=""/34, 0x40f00, 0x0, '\x00', r2, @fallback=0x6, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000780)={0x2, 0x1, 0x9, 0x2}, 0x10, 0x0, r0, 0x0, &(0x7f0000000ac0)=[r1], 0x0, 0x10, 0x4, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000feff03ff00000000000004008500000036000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000010400000850000000600000095"], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x87fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_bp={0x0, 0x1}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000020000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xf, &(0x7f0000000580)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}, {0x85, 0x0, 0x0, 0x2d}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r7}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r4}, &(0x7f0000000540), &(0x7f0000000580)=r5}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0xe, 0x0, &(0x7f0000000200)="ff7f0e3f2617d1f42ab5a1db8511", 0x0, 0x2040000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x6}, 0x50)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000e00), 0x4)

2m46.440898487s ago: executing program 3 (id=648):
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb8, 0x5, @perf_bp={0x0}, 0x104141, 0x0, 0x0, 0x1, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="04000000030000f7db0000000008100013060000", @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400000004000000050000000000"], 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='skip_task_reaping\x00', r1, 0x0, 0x75d}, 0x18)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@fallback=r2, 0x16, 0x0, 0x9, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x0, &(0x7f00000001c0)=[0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0]}, 0x40)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_merged\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x3e, &(0x7f00000002c0)=r3, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000220000001801"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x83, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}, 0x0, 0x0, 0x0, 0x9, 0x25a7da7, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/12, @ANYRES32, @ANYBLOB="0d00ff0000000000830000000000000045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, &(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f3, &(0x7f0000000080))
close(0xffffffffffffffff)

2m46.396916447s ago: executing program 4 (id=650):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020207025000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x29, 0x7, 0x0)
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1e000000000000000700400009"], 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x10, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000007bdb6d26357a343daa00000000000071102000000000"], &(0x7f0000000600)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$kcm(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x8}, 0x8080, 0x2, 0x0, 0x0, 0x7fffffff}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x57, 0x0, 0x9, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{}, 0x0, 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x2, 0x3, 0x84)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x18000000000002a0, 0x11, 0x0, &(0x7f0000000780)="d2205d96c717ab96f0ded75d88a8079188", 0x0, 0xd5b5, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1b, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0x0)

2m45.96856948s ago: executing program 1 (id=652):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x4, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0xbb}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbb7a, @void, @value}, 0x94)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x200008c0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x10, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x26}], {0x95, 0x0, 0x700}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000006000006080000000d00000000000006c9517440134b7ea3a344b9b9256c46190bb5411d3b572f78a26649495fa9ec2fc9388e3bfe639e8b572413f99b95c6fc5e7932b938992dc5db003a81ba144b1c762af579ec5cabfc981999e880ad87c5b3e857eb7ce6001868e16c2fe9e599", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x5, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x2a}, @ldst={0x2, 0x2, 0x2, 0x8, 0x6, 0xfffffffffffffffe, 0x8}]}, &(0x7f0000000040)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0}, 0x200, 0x2, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1b, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x81da, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000010000)=ANY=[@ANYBLOB="1800000001000000000000000000000063010400000000009500000000000000587cef8e11908f87e4a058"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000140)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=[{0x18, 0x110, 0x1, "dc"}], 0x18}, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x4, [@restrict={0xa, 0x0, 0x0, 0xb, 0x5}, @fwd={0x4}]}, {0x0, [0x0, 0x61]}}, &(0x7f00000001c0)=""/45, 0x34, 0x2d, 0x0, 0x9, 0x10000, @value=r2}, 0x28)

2m45.729528435s ago: executing program 1 (id=653):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4135, 0x1027}], 0x1}, 0x42)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xf0, 0x5f, 0x9f, 0x4, 0x0, 0x1000000000006, 0x30531, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800009, 0x2, @perf_config_ext={0x4, 0x8}, 0x10002, 0x9dd, 0x80000020, 0x6, 0x400, 0x0, 0x8, 0x0, 0x100, 0x0, 0x201}, 0x0, 0x8, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1310000016"], 0xfe33)

2m45.606696609s ago: executing program 1 (id=654):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffbfffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94) (async)
r1 = bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, &(0x7f0000000600), &(0x7f0000000640)=r0}, 0x20) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001cc0)={r0, 0xe0, &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x4, 0x1, &(0x7f00000008c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0], 0x0, 0x9f, &(0x7f0000000980)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000001b00), &(0x7f0000001b40), 0x8, 0x23, 0x8, 0x8, &(0x7f0000001b80)}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000ac0)={0xffffffffffffffff, 0xe0, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880), 0x0, 0xce, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940), 0x8, 0xa3, 0x8, 0x0, 0x0}}, 0xffffffc2) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000b40)={0x3, <r5=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x17, 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB="000000000000000004", @ANYRES32=0x1], 0x0, 0x9, 0x16, &(0x7f00000007c0)=""/22, 0x41100, 0x69, '\x00', r4, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94) (async, rerun: 64)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001d40)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x4, 0x0, @void, @value, @void, @value}, 0x50) (rerun: 64)
r7 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001dc0)={0xffffffffffffffff, 0x9, 0x18}, 0xc) (async, rerun: 32)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) (rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d010000000000008500000001"], 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000001e40)={0x0, 0x18, &(0x7f00000006c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7e}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000780)='GPL\x00', 0x61, 0x1000, &(0x7f0000000b00)=""/4096, 0x41000, 0x2, '\x00', r3, @fallback=0x7, 0xffffffffffffffff, 0x8, &(0x7f0000001d00)={0x4, 0x4}, 0x8, 0x10, 0x0, 0x0, r5, 0xffffffffffffffff, 0x0, &(0x7f0000001e00)=[0x1, r6, r7, r8, 0xffffffffffffffff], 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f88a8", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0xf, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="18060000ffffffff000000000000000018020000", @ANYRES32, @ANYBLOB="0000000000000000b70300000000000085000000ba000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb01001800000000000000004300030000000300003ac500002e2e5f2e5f612e3000"/52], &(0x7f0000000280)=""/177, 0x3e, 0xb1, 0x0, 0x2, 0x0, @void, @value}, 0x28) (async, rerun: 64)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400)={0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x4) (rerun: 64)
r12 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r12}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0xb}, {0x66, 0x0, 0x0, 0x2000000}}, [@printk={@lld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0x5, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x15}}], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r13 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000440)={0xffffffffffffffff, 0x2, 0x10}, 0xc)
r14 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000480)={0x0, 0x1, 0x8}, 0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x11, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x2}, {}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x4000401}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x1000, 0x82, &(0x7f0000000180)=""/130, 0x41000, 0x4c, '\x00', 0x0, 0x0, r10, 0x8, &(0x7f0000000380)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000003c0)={0x2, 0x3, 0x3, 0x8d}, 0x10, 0xa13, r9, 0x0, &(0x7f00000004c0)=[r11, r12, r13, r14], 0x0, 0x10, 0x7, @void, @value}, 0x94)

2m44.621117355s ago: executing program 1 (id=655):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000003040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

2m43.440091975s ago: executing program 1 (id=656):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2m43.388891962s ago: executing program 3 (id=657):
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0) (async)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000380)={<r1=>0x0, 0x0}) (async)
r2 = bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=ANY=[@ANYBLOB="1d0000000400000002f400000000000001020000", @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000500"/28], 0x50)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072000000850000000f00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r4}, 0x18)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000e40)=ANY=[@ANYRES64=r3, @ANYBLOB="c2fdd9d1bebbb7fb16764540fc0c31788ac9e881e45c77240e1847b188faacd59899321a08ead12e059a8661b97fb31d03e98a7be49584fdc45aedcd09ba7dafc8a57e7e6f65ab397a2971c979f4ce0f702f4211e2deb617ad6c00eccdfd9d23650484e8ae2e1d0821c6ca0fac6a90a8649a803379abd9278cd0c06fbdfb572644cdc4ee9f9b0496bdc20edb2b2df293b0a9"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) (async)
r5 = socket$kcm(0x11, 0xa, 0x300) (async, rerun: 32)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r2, 0x58, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10) (async)
r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000600)=0xffffffffffffffff, 0x4) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000800)={0x3, <r9=>0x0}, 0x8)
r10 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000b00)={0x3, 0x4, 0x4, 0xa, 0x0, r2, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50) (async, rerun: 64)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x2b1d5756, 0x1, 0x5, 0x1, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x4, 0x4, @void, @value, @void, @value}, 0x50) (rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x1d, 0x2b, &(0x7f0000000880)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@alu={0x4, 0x1, 0x1, 0x8, 0x7, 0x6, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @generic={0xf, 0x8, 0xd, 0x8, 0x200}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa5c}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffb}, @map_fd={0x18, 0x1, 0x1, 0x0, r2}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000001c0)='GPL\x00', 0x5, 0x0, &(0x7f0000000340), 0x40f00, 0x10, '\x00', r7, @fallback=0x2f, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f00000007c0)={0x5, 0x9, 0x6, 0x1ff}, 0x10, r9, r4, 0x3, &(0x7f0000000a00)=[r10, 0x1, r2, 0xffffffffffffffff, r2, r11, r2, r2], &(0x7f0000000d40)=[{0x1, 0x1, 0x2, 0x2}, {0x3, 0x3, 0xa}, {0x1, 0x4, 0xf, 0xa}], 0x10, 0x4, @void, @value}, 0x94) (async)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r12=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r12, 0x4)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000000)=r6, 0x4) (async)
r13 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r13, 0x107, 0xf, &(0x7f0000000000), 0x4) (async)
sendmsg$kcm(r13, &(0x7f0000000040)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x2}, 0x80, &(0x7f0000000140)=[{&(0x7f00000006c0)="62042700920101000001ad2f1eafbcf706e12b30087f5c582d26116642c47a5f8786ee601e65ab3c06d4b8bf4a81cb3e247345af215542f41ddf82f618438a34f90186cee8441e2305e495d04ad68ab8fef69df82de6456fbb48b63f60c9c9097be968ea872c4801e5d0711b4373c7224ed7a9cbd49d40f82bdb6afc0036824be26fc96e49a70e90797e6caa1b38ddacb3cb2b3eac7c068a185b644582f25edfa3d6a46e2a894ca809a422a6a29bd7145bb6e7992570484d6a710292ea0c3f97b7cbff701684b13c5593262534a7af9eab48f2ca2d74d9a4de33", 0xda}, {&(0x7f0000000c00)="294f28dfe56d2c8ba23606bc7ecd1f634665cb5bed07bac5684da6eb21da1d6926910c5a0c653b0106869a804dd2a44ce42557b2e32e2bd367e9d01a5e7380cc4fc8e7c9044cc4115b978ca7427d749beaefdf2e48b369cb169ad7b1ced26bb161297c7e56a3e83e91b379c179017f8b4657d1b22eca6bca33036d33e1a684059c53cea91ca6637ac780ab2bcfc22a666cd4e5876f11e9aee4724b7cb59731c97e70ebd7f7483994eb07de2f3c6a9448c3206cff6d290b433f331c2399e99ee3bdecf5689eddc3e549966c1106a933bbc47b65ca6e9d7efbee6e3b1dbe87313111e85336d6890002db17751b6044f964dc90ea466f90856112be7f0a54b39a3f66cc4c39544300093158af39cdde429f50d8c750", 0x114}, {&(0x7f0000000a40)="0a985d7879f1bbff16c7d66e33657e452299fd0ef8c2afda588eb05891b7da030e01452a7986bea19b59c98dc2996c0ea09604d00ea48336d0c813d83025aca8623a5915ddddce2c11c5e374f2e0f387d2398fe0b899ff60dc7a73addcf253cf32aafbe2b9f90799e7fc583bdd9b564697ba988080270bdceb4714219a2d4c229fffb0d86fb286e3553a8b3ac02badc66ada5fceabe5f63c79da96e641a45901128063d6e1e31b11bcfbc3e70bd3c8c6c0be9f653f977f16", 0xfff0}, {&(0x7f0000000840)="6f4720baeb54", 0x6}], 0x4}, 0x0) (async, rerun: 64)
close(r1) (async, rerun: 64)
socket$kcm(0x10, 0x400000002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x54000, 0x0) (async)
setsockopt$sock_attach_bpf(r1, 0x10e, 0xb, &(0x7f0000000180), 0x4) (async, rerun: 64)
sendmsg$inet(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="6000000068007f089e", 0x9}, {&(0x7f0000000640)="68cabf2d080000001d6b689866f05d48004409b8f9e6aaeb88bea123dc2c6726e89b1ae24f89a565ee52dcd729cd39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc36024aa400", 0x4c}], 0x2}, 0x24000010) (rerun: 64)

2m43.375717153s ago: executing program 4 (id=658):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x5, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r1}, &(0x7f0000000700), &(0x7f0000000740)=r0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000002c0)={r1, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20)

2m43.289956712s ago: executing program 0 (id=659):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000cf82a000a00000008000000000000cb7a000100003000000000002e9f00"], 0x0, 0x2e, 0x0, 0x6, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r0=>0x0}}, 0x10) (async)
socket$kcm(0x11, 0x200000000000002, 0x300) (async)
close(0xffffffffffffffff)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x2041)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, @perf_config_ext={0x5, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x4d}, [@ldst={0x7, 0x3, 0x0, 0x1c10a1}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) (async)
socket$kcm(0x2, 0x1, 0x84) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200), 0x4) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, &(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], <r4=>0x0, 0xc0, &(0x7f0000000380)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0xcf, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff}) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xb, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200}) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89f2, &(0x7f0000000080)) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x2, 0xa, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000b70000008b17c0ff0000000085100000060000008520000004000000186000000e0000000000000001040000181a0000", @ANYRES32=r5, @ANYBLOB="00000000000000000300000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x5c, &(0x7f00000000c0)=""/92, 0x41000, 0x20, '\x00', r0, @fallback=0x1f, r3, 0x8, &(0x7f0000000240)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x4, 0x5, 0x0, 0x6}, 0x10, r4, 0xffffffffffffffff, 0x5, &(0x7f0000000680)=[r5], &(0x7f00000006c0)=[{0x3, 0x1, 0xe, 0xa}, {0x4, 0x3, 0x5, 0xb}, {0x2, 0x1, 0x1, 0xb}, {0x3, 0x4, 0x9, 0xc}, {0x2, 0x5, 0xa, 0x1}], 0x10, 0x7, @void, @value}, 0x94) (async)
socket$kcm(0x10, 0x2, 0x10)

2m43.156266726s ago: executing program 1 (id=660):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r3 = socket$kcm(0x29, 0x2, 0x0)
socket$kcm(0x29, 0x0, 0x0)
r4 = getpid()
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x2100, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x3, 0x400000000398}, 0x18020, 0x4, 0x0, 0x0, 0x2, 0xfffff271}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r7, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000780)={r2, 0x58, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000007c0)=0xffffffffffffffff, 0x4)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x6, <r11=>0x0}, 0x8)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x8, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, 0x0, 0x7, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r10, 0x0, 0x0, 0x0, 0x10, 0xfff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0xe, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="185200000900000000000000000000005b3b000004000000850000005f00000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000852000000100000009141e8b0500000018410000070000000000000000000000850000006d00000018240000", @ANYRES32=r2, @ANYBLOB="0300000006000000"], &(0x7f00000004c0)='GPL\x00', 0x3, 0xb0, &(0x7f0000000500)=""/176, 0x41000, 0x3, '\x00', r8, @fallback=0x23, r9, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r0, 0x6, &(0x7f0000000800)=[r2], &(0x7f0000000a40)=[{0x2, 0x1, 0x4, 0xc}, {0x2, 0x1, 0xd}, {0x4, 0x1, 0x3, 0x6}, {0x5, 0x4, 0xa, 0x2}, {0x0, 0x4, 0x10, 0xc}, {0x1, 0x5, 0xc, 0xb}], 0x10, 0x5, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000080), &(0x7f0000000280)=r6}, 0x20)
r13 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000cc0)=0xffffffffffffffff, 0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000b80)=ANY=[@ANYRES32, @ANYRES32=r12, @ANYBLOB="040001001020000000000000d4701ba2141b2ca14d001092c0b07390dc7d6af05276c4fb849dac6a1929eb6afa67817d9c02c7f7c1913b18498845aa55d76f52e47c2d666fcd10c090b2fef71694ee5afe072b451981a4c526bf32ceb8ba68970603f556c28aa0bff670a9fbe29997d6ae0c5760a651da2cf280dcbaa509276e1f6be34870be1faf5da84c36bb57213ab02cde731de4fe48c240c200c6802a9db2120910c322229e3905fb639fb27507aeca464cb193e38b48905eec534e5541af68d3d3b51797b145e7a35180c7c8715184", @ANYRES32=r13, @ANYBLOB, @ANYRES64=0x0], 0x20)
setsockopt$sock_attach_bpf(r3, 0x119, 0x8, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYRESOCT=r3, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f00000001c0)=r14}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r14}, 0x10)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r15 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r15, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000002c0)="5c00000014006b03000000d86e6c1d00028440fcffff564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4)

2m43.123592351s ago: executing program 4 (id=661):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) (async)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0xfe33)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000007100000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000007100000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x2, 0x0, 0x0, 0x0, 0x61, 0x17, 0x4c}, [@ldst={0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x27}]}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xf3, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200002, 0x1, @perf_bp={0x0, 0x3}, 0x10681, 0x1, 0x0, 0x8, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c0000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3504000040000511d25a80648c63940d0324fc60040035400c0002", 0x1b}], 0x1}, 0x0)
socket$kcm(0x10, 0x2, 0x0) (async)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe000032"], 0xfe33) (async)
write$cgroup_subtree(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe000032"], 0xfe33)
syz_clone(0x9900000, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
ioctl$TUNSETLINK(r3, 0x400454cd, 0x304)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079d})
socketpair(0x1, 0x1, 0x1, &(0x7f00000002c0)) (async)
socketpair(0x1, 0x1, 0x1, &(0x7f00000002c0))

1m56.189356402s ago: executing program 32 (id=659):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000cf82a000a00000008000000000000cb7a000100003000000000002e9f00"], 0x0, 0x2e, 0x0, 0x6, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r0=>0x0}}, 0x10) (async)
socket$kcm(0x11, 0x200000000000002, 0x300) (async)
close(0xffffffffffffffff)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x2041)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, @perf_config_ext={0x5, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x4d}, [@ldst={0x7, 0x3, 0x0, 0x1c10a1}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) (async)
socket$kcm(0x2, 0x1, 0x84) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200), 0x4) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, &(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], <r4=>0x0, 0xc0, &(0x7f0000000380)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0xcf, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff}) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xb, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200}) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89f1, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89f2, &(0x7f0000000080)) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x2, 0xa, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000b70000008b17c0ff0000000085100000060000008520000004000000186000000e0000000000000001040000181a0000", @ANYRES32=r5, @ANYBLOB="00000000000000000300000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x5c, &(0x7f00000000c0)=""/92, 0x41000, 0x20, '\x00', r0, @fallback=0x1f, r3, 0x8, &(0x7f0000000240)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000280)={0x4, 0x5, 0x0, 0x6}, 0x10, r4, 0xffffffffffffffff, 0x5, &(0x7f0000000680)=[r5], &(0x7f00000006c0)=[{0x3, 0x1, 0xe, 0xa}, {0x4, 0x3, 0x5, 0xb}, {0x2, 0x1, 0x1, 0xb}, {0x3, 0x4, 0x9, 0xc}, {0x2, 0x5, 0xa, 0x1}], 0x10, 0x7, @void, @value}, 0x94) (async)
socket$kcm(0x10, 0x2, 0x10)

1m0.705162015s ago: executing program 33 (id=660):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r3 = socket$kcm(0x29, 0x2, 0x0)
socket$kcm(0x29, 0x0, 0x0)
r4 = getpid()
r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0xb, 0x2100, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x3, 0x400000000398}, 0x18020, 0x4, 0x0, 0x0, 0x2, 0xfffff271}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r7 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r7, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000780)={r2, 0x58, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0}}, 0x10)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000007c0)=0xffffffffffffffff, 0x4)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002f00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x6, <r11=>0x0}, 0x8)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x8, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, 0x0, 0x7, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r10, 0x0, 0x0, 0x0, 0x10, 0xfff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0xe, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="185200000900000000000000000000005b3b000004000000850000005f00000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000852000000100000009141e8b0500000018410000070000000000000000000000850000006d00000018240000", @ANYRES32=r2, @ANYBLOB="0300000006000000"], &(0x7f00000004c0)='GPL\x00', 0x3, 0xb0, &(0x7f0000000500)=""/176, 0x41000, 0x3, '\x00', r8, @fallback=0x23, r9, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r0, 0x6, &(0x7f0000000800)=[r2], &(0x7f0000000a40)=[{0x2, 0x1, 0x4, 0xc}, {0x2, 0x1, 0xd}, {0x4, 0x1, 0x3, 0x6}, {0x5, 0x4, 0xa, 0x2}, {0x0, 0x4, 0x10, 0xc}, {0x1, 0x5, 0xc, 0xb}], 0x10, 0x5, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000080), &(0x7f0000000280)=r6}, 0x20)
r13 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000cc0)=0xffffffffffffffff, 0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000b80)=ANY=[@ANYRES32, @ANYRES32=r12, @ANYBLOB="040001001020000000000000d4701ba2141b2ca14d001092c0b07390dc7d6af05276c4fb849dac6a1929eb6afa67817d9c02c7f7c1913b18498845aa55d76f52e47c2d666fcd10c090b2fef71694ee5afe072b451981a4c526bf32ceb8ba68970603f556c28aa0bff670a9fbe29997d6ae0c5760a651da2cf280dcbaa509276e1f6be34870be1faf5da84c36bb57213ab02cde731de4fe48c240c200c6802a9db2120910c322229e3905fb639fb27507aeca464cb193e38b48905eec534e5541af68d3d3b51797b145e7a35180c7c8715184", @ANYRES32=r13, @ANYBLOB, @ANYRES64=0x0], 0x20)
setsockopt$sock_attach_bpf(r3, 0x119, 0x8, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYRESOCT=r3, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f00000001c0)=r14}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r14}, 0x10)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r15 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r15, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000002c0)="5c00000014006b03000000d86e6c1d00028440fcffff564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4)

0s ago: executing program 34 (id=657):
r0 = socket$kcm(0x10, 0x2, 0x4)
close(r0) (async)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000380)={<r1=>0x0, 0x0}) (async)
r2 = bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=ANY=[@ANYBLOB="1d0000000400000002f400000000000001020000", @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000500"/28], 0x50)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x20001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072000000850000000f00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r4}, 0x18)
perf_event_open$cgroup(&(0x7f00000003c0)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000e40)=ANY=[@ANYRES64=r3, @ANYBLOB="c2fdd9d1bebbb7fb16764540fc0c31788ac9e881e45c77240e1847b188faacd59899321a08ead12e059a8661b97fb31d03e98a7be49584fdc45aedcd09ba7dafc8a57e7e6f65ab397a2971c979f4ce0f702f4211e2deb617ad6c00eccdfd9d23650484e8ae2e1d0821c6ca0fac6a90a8649a803379abd9278cd0c06fbdfb572644cdc4ee9f9b0496bdc20edb2b2df293b0a9"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) (async)
r5 = socket$kcm(0x11, 0xa, 0x300) (async, rerun: 32)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async, rerun: 32)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r2, 0x58, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10) (async)
r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000600)=0xffffffffffffffff, 0x4) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000800)={0x3, <r9=>0x0}, 0x8)
r10 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000b00)={0x3, 0x4, 0x4, 0xa, 0x0, r2, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50) (async, rerun: 64)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x2b1d5756, 0x1, 0x5, 0x1, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x5, 0x4, 0x4, @void, @value, @void, @value}, 0x50) (rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x1d, 0x2b, &(0x7f0000000880)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@alu={0x4, 0x1, 0x1, 0x8, 0x7, 0x6, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @generic={0xf, 0x8, 0xd, 0x8, 0x200}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa5c}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffb}, @map_fd={0x18, 0x1, 0x1, 0x0, r2}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000001c0)='GPL\x00', 0x5, 0x0, &(0x7f0000000340), 0x40f00, 0x10, '\x00', r7, @fallback=0x2f, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f00000007c0)={0x5, 0x9, 0x6, 0x1ff}, 0x10, r9, r4, 0x3, &(0x7f0000000a00)=[r10, 0x1, r2, 0xffffffffffffffff, r2, r11, r2, r2], &(0x7f0000000d40)=[{0x1, 0x1, 0x2, 0x2}, {0x3, 0x3, 0xa}, {0x1, 0x4, 0xf, 0xa}], 0x10, 0x4, @void, @value}, 0x94) (async)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r12=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r12, 0x4)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000000)=r6, 0x4) (async)
r13 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r13, 0x107, 0xf, &(0x7f0000000000), 0x4) (async)
sendmsg$kcm(r13, &(0x7f0000000040)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x2}, 0x80, &(0x7f0000000140)=[{&(0x7f00000006c0)="62042700920101000001ad2f1eafbcf706e12b30087f5c582d26116642c47a5f8786ee601e65ab3c06d4b8bf4a81cb3e247345af215542f41ddf82f618438a34f90186cee8441e2305e495d04ad68ab8fef69df82de6456fbb48b63f60c9c9097be968ea872c4801e5d0711b4373c7224ed7a9cbd49d40f82bdb6afc0036824be26fc96e49a70e90797e6caa1b38ddacb3cb2b3eac7c068a185b644582f25edfa3d6a46e2a894ca809a422a6a29bd7145bb6e7992570484d6a710292ea0c3f97b7cbff701684b13c5593262534a7af9eab48f2ca2d74d9a4de33", 0xda}, {&(0x7f0000000c00)="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", 0x114}, {&(0x7f0000000a40)="0a985d7879f1bbff16c7d66e33657e452299fd0ef8c2afda588eb05891b7da030e01452a7986bea19b59c98dc2996c0ea09604d00ea48336d0c813d83025aca8623a5915ddddce2c11c5e374f2e0f387d2398fe0b899ff60dc7a73addcf253cf32aafbe2b9f90799e7fc583bdd9b564697ba988080270bdceb4714219a2d4c229fffb0d86fb286e3553a8b3ac02badc66ada5fceabe5f63c79da96e641a45901128063d6e1e31b11bcfbc3e70bd3c8c6c0be9f653f977f16", 0xfff0}, {&(0x7f0000000840)="6f4720baeb54", 0x6}], 0x4}, 0x0) (async, rerun: 64)
close(r1) (async, rerun: 64)
socket$kcm(0x10, 0x400000002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x54000, 0x0) (async)
setsockopt$sock_attach_bpf(r1, 0x10e, 0xb, &(0x7f0000000180), 0x4) (async, rerun: 64)
sendmsg$inet(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="6000000068007f089e", 0x9}, {&(0x7f0000000640)="68cabf2d080000001d6b689866f05d48004409b8f9e6aaeb88bea123dc2c6726e89b1ae24f89a565ee52dcd729cd39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc36024aa400", 0x4c}], 0x2}, 0x24000010) (rerun: 64)

kernel console output (not intermixed with test programs):

an1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.408512][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.435673][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.441072][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.448732][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.558485][  T153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.592448][  T153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.706310][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.721755][    C0] hrtimer: interrupt took 26507 ns
[   75.724457][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.973822][ T5926] syz.0.6 uses obsolete (PF_INET,SOCK_PACKET)
[   76.004266][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.032524][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.190752][ T5935] warning: `syz.2.3' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   77.128683][ T5154] Bluetooth: hci3: command tx timeout
[   77.134559][ T5843] Bluetooth: hci1: command tx timeout
[   77.140420][ T5843] Bluetooth: hci0: command tx timeout
[   77.183887][ T5843] Bluetooth: hci4: command tx timeout
[   77.189814][ T5154] Bluetooth: hci2: command tx timeout
[   79.238006][ T5984] netlink: 'syz.4.18': attribute type 39 has an invalid length.
[   79.653187][   T43] cfg80211: failed to load regulatory.db
[   79.938091][ T5996] netlink: 11206 bytes leftover after parsing attributes in process `syz.2.21'.
[   80.623180][ T6018] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[   80.981673][ T6020] netlink: 'syz.3.25': attribute type 10 has an invalid length.
[   81.357922][ T6012] netlink: 14 bytes leftover after parsing attributes in process `syz.4.24'.
[   81.430118][ T6020] macvlan0: entered promiscuous mode
[   81.481736][ T6020] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[   81.656119][ T6025] netlink: 'syz.1.27': attribute type 29 has an invalid length.
[   81.714072][ T6025] netlink: 'syz.1.27': attribute type 29 has an invalid length.
[   81.787451][ T6030] tun0: tun_chr_ioctl cmd 1074025681
[   81.799957][ T6029] netlink: 'syz.1.27': attribute type 29 has an invalid length.
[   81.928719][ T6029] Illegal XDP return value 4294967274 on prog  (id 30) dev N/A, expect packet loss!
[   82.089387][ T6036] netlink: 'syz.4.32': attribute type 29 has an invalid length.
[   82.161872][ T6040] netlink: 'syz.4.32': attribute type 29 has an invalid length.
[   82.201465][ T6041] netlink: 'syz.4.32': attribute type 29 has an invalid length.
[   82.292363][ T6036] netlink: 'syz.4.32': attribute type 29 has an invalid length.
[   82.421185][ T6048] netlink: 132 bytes leftover after parsing attributes in process `syz.0.34'.
[   82.443272][ T6041] netlink: 'syz.4.32': attribute type 17 has an invalid length.
[   82.459003][ T6041] netlink: 152 bytes leftover after parsing attributes in process `syz.4.32'.
[   82.995900][ T6059] Zero length message leads to an empty skb
[   83.015949][ T6059] netlink: 17 bytes leftover after parsing attributes in process `syz.1.36'.
[   83.748105][ T6058] syz.3.35 (6058) used greatest stack depth: 17304 bytes left
[   86.509080][ T6105] mac80211_hwsim hwsim6 wlan1: entered promiscuous mode
[   86.533706][ T6105] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode
[   86.963135][ T6113] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.973124][ T6113] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.999818][ T6113] bridge0: entered allmulticast mode
[   87.070830][ T6116] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.078083][ T6116] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.086055][ T6116] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.093230][ T6116] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.113988][ T6109] netlink: 72 bytes leftover after parsing attributes in process `syz.0.47'.
[   87.151764][ T6116] bridge0: entered promiscuous mode
[   87.178872][ T6115] sctp: [Deprecated]: syz.0.47 (pid 6115) Use of int in max_burst socket option deprecated.
[   87.178872][ T6115] Use struct sctp_assoc_value instead
[   89.163862][ T6154] validate_nla: 3 callbacks suppressed
[   89.163878][ T6154] netlink: 'syz.0.59': attribute type 29 has an invalid length.
[   89.304543][ T6158] netlink: 'syz.1.60': attribute type 10 has an invalid length.
[   89.314160][ T6154] netlink: 'syz.0.59': attribute type 29 has an invalid length.
[   89.361872][ T6160] netlink: 'syz.1.60': attribute type 10 has an invalid length.
[   89.370689][ T6158] batman_adv: batadv0: Adding interface: team0
[   89.370704][ T6158] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.370751][ T6158] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   89.419965][ T6160] netlink: 2 bytes leftover after parsing attributes in process `syz.1.60'.
[   89.432013][ T6160] team0: entered promiscuous mode
[   89.448544][ T6160] team_slave_0: entered promiscuous mode
[   89.465305][ T6160] team_slave_1: entered promiscuous mode
[   89.477247][ T6160] 8021q: adding VLAN 0 to HW filter on device team0
[   89.522288][ T6160] batman_adv: batadv0: Interface activated: team0
[   89.549889][ T6160] batman_adv: batadv0: Interface deactivated: team0
[   89.576184][ T6160] batman_adv: batadv0: Removing interface: team0
[   89.592384][ T6160] bridge0: port 3(team0) entered blocking state
[   89.606165][ T6160] bridge0: port 3(team0) entered disabled state
[   89.612647][ T6160] team0: entered allmulticast mode
[   89.618026][ T6160] team_slave_0: entered allmulticast mode
[   89.624327][ T6160] team_slave_1: entered allmulticast mode
[   89.632034][ T6160] bridge0: port 3(team0) entered blocking state
[   89.638424][ T6160] bridge0: port 3(team0) entered forwarding state
[   89.982950][ T6183] cgroup: fork rejected by pids controller in /syz1
[   90.719002][ T6298] netlink: 'syz.4.74': attribute type 37 has an invalid length.
[   90.731511][ T6298] netlink: 192 bytes leftover after parsing attributes in process `syz.4.74'.
[   93.358684][ T6314] netlink: 'syz.4.78': attribute type 1 has an invalid length.
[   93.374325][ T6314] netlink: 'syz.4.78': attribute type 4 has an invalid length.
[   93.381907][ T6314] netlink: 9462 bytes leftover after parsing attributes in process `syz.4.78'.
[   93.484825][ T6315] netlink: 'syz.4.78': attribute type 1 has an invalid length.
[   93.492431][ T6315] netlink: 13390 bytes leftover after parsing attributes in process `syz.4.78'.
[   93.566993][ T6318] cgroup: fork rejected by pids controller in /syz3
[   93.629531][ T6320] netlink: 48 bytes leftover after parsing attributes in process `syz.2.80'.
[   93.642974][ T2130] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.833126][ T2130] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.019527][ T2130] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.254514][ T6440] FAULT_INJECTION: forcing a failure.
[   94.254514][ T6440] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   94.292038][ T6440] CPU: 0 UID: 0 PID: 6440 Comm: syz.2.88 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[   94.292062][ T6440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   94.292079][ T6440] Call Trace:
[   94.292089][ T6440]  <TASK>
[   94.292099][ T6440]  dump_stack_lvl+0x189/0x250
[   94.292141][ T6440]  ? __pfx____ratelimit+0x10/0x10
[   94.292171][ T6440]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.292203][ T6440]  ? __pfx__printk+0x10/0x10
[   94.292287][ T6440]  should_fail_ex+0x414/0x560
[   94.292339][ T6440]  _copy_to_user+0x31/0xb0
[   94.292374][ T6440]  bpf_obj_get_info_by_fd+0x28d9/0x2f70
[   94.292475][ T6440]  ? __pfx_bpf_obj_get_info_by_fd+0x10/0x10
[   94.292513][ T6440]  ? perf_trace_run_bpf_submit+0xf9/0x170
[   94.292561][ T6440]  ? perf_trace_lock_acquire+0x335/0x410
[   94.292775][ T6440]  ? bpf_lsm_bpf+0x9/0x20
[   94.292790][ T6440]  ? security_bpf+0x7e/0x300
[   94.292828][ T6440]  __sys_bpf+0x77a/0x860
[   94.292869][ T6440]  ? __pfx___sys_bpf+0x10/0x10
[   94.292957][ T6440]  ? ksys_write+0x22a/0x250
[   94.292992][ T6440]  ? __pfx_ksys_write+0x10/0x10
[   94.293007][ T6440]  ? rcu_is_watching+0x15/0xb0
[   94.293069][ T6440]  __x64_sys_bpf+0x7c/0x90
[   94.293103][ T6440]  do_syscall_64+0xfa/0x3b0
[   94.293125][ T6440]  ? lockdep_hardirqs_on+0x9c/0x150
[   94.293151][ T6440]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.293170][ T6440]  ? clear_bhb_loop+0x60/0xb0
[   94.293206][ T6440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.293224][ T6440] RIP: 0033:0x7f318b98e929
[   94.293249][ T6440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.293262][ T6440] RSP: 002b:00007f318c85d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   94.293281][ T6440] RAX: ffffffffffffffda RBX: 00007f318bbb5fa0 RCX: 00007f318b98e929
[   94.293293][ T6440] RDX: 0000000000000010 RSI: 0000200000000680 RDI: 000000000000000f
[   94.293303][ T6440] RBP: 00007f318c85d090 R08: 0000000000000000 R09: 0000000000000000
[   94.293313][ T6440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.293323][ T6440] R13: 0000000000000000 R14: 00007f318bbb5fa0 R15: 00007ffdd1af2338
[   94.293406][ T6440]  </TASK>
[   94.844498][ T5154] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   94.853183][ T5154] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   94.861464][ T5154] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   94.870540][ T5154] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   94.878597][ T5154] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   96.944007][ T5154] Bluetooth: hci2: command tx timeout
[   97.182647][ T2130] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.603983][ T6458] 

: renamed from veth1_vlan (while UP)
[   98.081883][ T2130] team0: left allmulticast mode
[   98.092348][ T2130] team_slave_0: left allmulticast mode
[   98.120208][ T2130] team_slave_1: left allmulticast mode
[   98.132750][ T2130] bridge0: port 3(team0) entered disabled state
[   98.687871][ T2130] bridge_slave_1: left allmulticast mode
[   98.725582][ T2130] bridge_slave_1: left promiscuous mode
[   98.766614][ T2130] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.023845][ T5154] Bluetooth: hci2: command tx timeout
[   99.031822][ T2130] bridge_slave_0: left allmulticast mode
[   99.043774][ T2130] bridge_slave_0: left promiscuous mode
[   99.063737][ T2130] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.214543][ T6478] netlink: 16255 bytes leftover after parsing attributes in process `syz.2.100'.
[   99.265283][ T5843] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   99.294023][ T5843] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   99.315608][ T5843] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   99.342770][ T5843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   99.352903][ T5843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  101.103777][ T5843] Bluetooth: hci2: command tx timeout
[  101.424523][ T5843] Bluetooth: hci4: command tx timeout
[  102.702627][ T6489] FAULT_INJECTION: forcing a failure.
[  102.702627][ T6489] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.723966][ T6489] CPU: 0 UID: 0 PID: 6489 Comm: syz.2.103 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  102.723990][ T6489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  102.724000][ T6489] Call Trace:
[  102.724009][ T6489]  <TASK>
[  102.724020][ T6489]  dump_stack_lvl+0x189/0x250
[  102.724053][ T6489]  ? __pfx____ratelimit+0x10/0x10
[  102.724083][ T6489]  ? __pfx_dump_stack_lvl+0x10/0x10
[  102.724114][ T6489]  ? __pfx__printk+0x10/0x10
[  102.724195][ T6489]  should_fail_ex+0x414/0x560
[  102.724248][ T6489]  _copy_to_user+0x31/0xb0
[  102.724361][ T6489]  simple_read_from_buffer+0xe1/0x170
[  102.724414][ T6489]  proc_fail_nth_read+0x1df/0x250
[  102.724458][ T6489]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  102.724498][ T6489]  ? rw_verify_area+0x258/0x650
[  102.724518][ T6489]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  102.724550][ T6489]  vfs_read+0x1fd/0x980
[  102.724596][ T6489]  ? __pfx___mutex_lock+0x10/0x10
[  102.724628][ T6489]  ? __pfx_vfs_read+0x10/0x10
[  102.724660][ T6489]  ? __fget_files+0x2a/0x420
[  102.724701][ T6489]  ? __fget_files+0x3a0/0x420
[  102.724720][ T6489]  ? __fget_files+0x2a/0x420
[  102.724781][ T6489]  ksys_read+0x145/0x250
[  102.724814][ T6489]  ? __pfx_ksys_read+0x10/0x10
[  102.724828][ T6489]  ? rcu_is_watching+0x15/0xb0
[  102.724870][ T6489]  ? do_syscall_64+0xbe/0x3b0
[  102.724911][ T6489]  do_syscall_64+0xfa/0x3b0
[  102.724930][ T6489]  ? lockdep_hardirqs_on+0x9c/0x150
[  102.724954][ T6489]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.724972][ T6489]  ? clear_bhb_loop+0x60/0xb0
[  102.725006][ T6489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.725022][ T6489] RIP: 0033:0x7f318b98d33c
[  102.725043][ T6489] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  102.725055][ T6489] RSP: 002b:00007f318c85d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  102.725073][ T6489] RAX: ffffffffffffffda RBX: 00007f318bbb5fa0 RCX: 00007f318b98d33c
[  102.725084][ T6489] RDX: 000000000000000f RSI: 00007f318c85d0a0 RDI: 0000000000000006
[  102.725094][ T6489] RBP: 00007f318c85d090 R08: 0000000000000000 R09: 0000000000000000
[  102.725103][ T6489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.725112][ T6489] R13: 0000000000000000 R14: 00007f318bbb5fa0 R15: 00007ffdd1af2338
[  102.725192][ T6489]  </TASK>
[  103.047400][ T2130] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.059060][ T2130] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.068958][ T2130] bond0 (unregistering): Released all slaves
[  103.097619][ T6471] bond_slave_1: mtu less than device minimum
[  103.183921][ T5843] Bluetooth: hci2: command tx timeout
[  103.215685][ T6447] chnl_net:caif_netlink_parms(): no params data found
[  103.354832][ T6498] netlink: 'syz.4.105': attribute type 10 has an invalid length.
[  103.380309][ T6498] netlink: 156 bytes leftover after parsing attributes in process `syz.4.105'.
[  103.515804][ T5843] Bluetooth: hci4: command tx timeout
[  103.568015][ T6507] netlink: 40 bytes leftover after parsing attributes in process `syz.2.107'.
[  103.699705][ T6509] tun0: tun_chr_ioctl cmd 2147767520
[  103.710917][ T6507] netlink: 'syz.2.107': attribute type 3 has an invalid length.
[  103.718963][ T6507] netlink: 1 bytes leftover after parsing attributes in process `syz.2.107'.
[  103.740184][ T6502] netlink: 'syz.4.105': attribute type 3 has an invalid length.
[  103.748240][ T6502] netlink: 'syz.4.105': attribute type 2 has an invalid length.
[  103.764959][ T6498] tun0: tun_chr_ioctl cmd 1074025675
[  103.779946][ T6502] netlink: 113784 bytes leftover after parsing attributes in process `syz.4.105'.
[  103.802313][ T6498] tun0: persist enabled
[  104.301170][ T2130] hsr_slave_0: left promiscuous mode
[  104.321894][ T2130] hsr_slave_1: left promiscuous mode
[  104.334396][ T2130] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.341830][ T2130] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.360757][ T2130] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.373653][ T2130] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.442546][ T2130] veth1_macvtap: left promiscuous mode
[  104.462983][ T2130] veth0_macvtap: left promiscuous mode
[  104.473059][ T2130] veth1_vlan: left promiscuous mode
[  104.479732][ T2130] veth0_vlan: left promiscuous mode
[  105.602531][ T5843] Bluetooth: hci4: command tx timeout
[  106.157367][ T6550] netlink: 'syz.2.115': attribute type 10 has an invalid length.
[  107.663688][ T5843] Bluetooth: hci4: command tx timeout
[  109.162727][ T2130] team_slave_1 (unregistering): left promiscuous mode
[  109.171360][ T2130] team0 (unregistering): Port device team_slave_1 removed
[  109.199949][ T2130] team_slave_0 (unregistering): left promiscuous mode
[  109.208032][ T2130] team0 (unregistering): Port device team_slave_0 removed
[  109.484864][ T6447] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.492066][ T6447] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.502639][ T6447] bridge_slave_0: entered allmulticast mode
[  109.512245][ T6447] bridge_slave_0: entered promiscuous mode
[  109.593126][ T6550] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.626172][ T6550] team0: Port device bond0 added
[  109.663521][ T6447] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.691690][ T6447] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.708722][ T6447] bridge_slave_1: entered allmulticast mode
[  109.741913][ T6447] bridge_slave_1: entered promiscuous mode
[  110.176552][ T6447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.397672][ T6447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.615472][ T6479] chnl_net:caif_netlink_parms(): no params data found
[  110.694064][ T6447] team0: Port device team_slave_0 added
[  110.798534][ T6447] team0: Port device team_slave_1 added
[  111.745372][   T36] wlan1: Trigger new scan to find an IBSS to join
[  113.948270][ T6447] batman_adv: batadv0: Adding interface: batadv_slave_0
[  113.972817][ T6447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.039655][ T6447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  114.094585][ T6593] sit0: entered allmulticast mode
[  114.128334][ T6447] batman_adv: batadv0: Adding interface: batadv_slave_1
[  114.144723][ T6447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.196732][ T6447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  114.271168][ T6608] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  114.627338][ T6447] hsr_slave_0: entered promiscuous mode
[  114.646676][ T6447] hsr_slave_1: entered promiscuous mode
[  114.652929][ T6447] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  114.702115][ T6447] Cannot create hsr debugfs directory
[  114.728554][ T6479] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.743846][ T6479] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.751072][ T6479] bridge_slave_0: entered allmulticast mode
[  114.829605][ T6479] bridge_slave_0: entered promiscuous mode
[  114.852192][ T6479] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.886013][ T6479] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.893395][ T6479] bridge_slave_1: entered allmulticast mode
[  114.928851][ T6479] bridge_slave_1: entered promiscuous mode
[  115.160203][ T6638] netlink: 809 bytes leftover after parsing attributes in process `syz.4.137'.
[  115.190034][ T6638] netlink: 130160 bytes leftover after parsing attributes in process `syz.4.137'.
[  115.296711][ T2130] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.380129][ T6479] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.605727][ T2130] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.641306][ T6479] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.753025][ T2130] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.886035][ T2130] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.942480][ T6479] team0: Port device team_slave_0 added
[  116.041116][ T5154] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  116.050580][ T5154] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  116.051974][ T6479] team0: Port device team_slave_1 added
[  116.065272][ T5154] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  116.074114][ T5154] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  116.085851][ T5154] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  116.199930][ T6479] batman_adv: batadv0: Adding interface: batadv_slave_0
[  116.207224][ T6479] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.234781][ T6479] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  116.279618][ T6479] batman_adv: batadv0: Adding interface: batadv_slave_1
[  116.299230][ T6479] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.325854][ T6479] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.579474][ T6479] hsr_slave_0: entered promiscuous mode
[  116.614651][ T6479] hsr_slave_1: entered promiscuous mode
[  116.620942][ T6479] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.635496][ T6479] Cannot create hsr debugfs directory
[  116.970384][ T2130] bridge_slave_1: left allmulticast mode
[  116.976394][ T2130] bridge_slave_1: left promiscuous mode
[  116.982169][ T2130] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.992793][ T2130] bridge_slave_0: left allmulticast mode
[  117.001013][ T2130] bridge_slave_0: left promiscuous mode
[  117.012551][ T2130] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.314842][ T2130] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  117.327578][ T2130] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  117.338188][ T2130] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  117.350730][ T2130] bond0 (unregistering): Released all slaves
[  117.750905][   T13] wlan1: Trigger new scan to find an IBSS to join
[  118.144133][ T5843] Bluetooth: hci1: command tx timeout
[  118.422364][ T2130] hsr_slave_0: left promiscuous mode
[  118.428812][ T2130] hsr_slave_1: left promiscuous mode
[  118.435476][ T2130] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  118.442892][ T2130] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.451279][ T2130] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.459028][ T2130] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.489276][ T2130] veth1_macvtap: left promiscuous mode
[  118.495116][ T2130] veth0_macvtap: left promiscuous mode
[  118.500730][ T2130] veth1_vlan: left promiscuous mode
[  118.508218][ T2130] veth0_vlan: left promiscuous mode
[  118.695386][   T64] wlan1: Creating new IBSS network, BSSID 8e:78:f1:e2:b5:86
[  118.827245][ T6688] FAULT_INJECTION: forcing a failure.
[  118.827245][ T6688] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.866818][ T6688] CPU: 0 UID: 0 PID: 6688 Comm: syz.0.142 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  118.866846][ T6688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.866856][ T6688] Call Trace:
[  118.866863][ T6688]  <TASK>
[  118.866871][ T6688]  dump_stack_lvl+0x189/0x250
[  118.866900][ T6688]  ? __pfx____ratelimit+0x10/0x10
[  118.866921][ T6688]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.866944][ T6688]  ? __pfx__printk+0x10/0x10
[  118.866962][ T6688]  ? __might_fault+0xb0/0x130
[  118.866992][ T6688]  should_fail_ex+0x414/0x560
[  118.867019][ T6688]  _copy_from_user+0x2d/0xb0
[  118.867038][ T6688]  xfrm_user_policy+0x2cf/0x950
[  118.867054][ T6688]  ? rcu_is_watching+0x15/0xb0
[  118.867073][ T6688]  ? __pfx_xfrm_user_policy+0x10/0x10
[  118.867088][ T6688]  ? apparmor_capable+0x137/0x1b0
[  118.867107][ T6688]  ? bpf_lsm_capable+0x9/0x20
[  118.867124][ T6688]  ? security_capable+0x7e/0x2e0
[  118.867154][ T6688]  do_ipv6_setsockopt+0x165c/0x2fb0
[  118.867184][ T6688]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  118.867203][ T6688]  ? irqentry_exit+0x74/0x90
[  118.867225][ T6688]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  118.867260][ T6688]  ? irqentry_exit+0x74/0x90
[  118.867280][ T6688]  ? lockdep_hardirqs_on+0x9c/0x150
[  118.867316][ T6688]  ? aa_sk_perm+0x607/0x950
[  118.867334][ T6688]  ? aa_sk_perm+0x81e/0x950
[  118.867357][ T6688]  ? __pfx_aa_sk_perm+0x10/0x10
[  118.867373][ T6688]  ? __lock_acquire+0xab9/0xd20
[  118.867404][ T6688]  ipv6_setsockopt+0x59/0x170
[  118.867421][ T6688]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  118.867446][ T6688]  do_sock_setsockopt+0x257/0x3e0
[  118.867464][ T6688]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  118.867485][ T6688]  ? __fget_files+0x2a/0x420
[  118.867512][ T6688]  __x64_sys_setsockopt+0x18b/0x220
[  118.867533][ T6688]  do_syscall_64+0xfa/0x3b0
[  118.867554][ T6688]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.867570][ T6688]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  118.867585][ T6688]  ? clear_bhb_loop+0x60/0xb0
[  118.867604][ T6688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.867617][ T6688] RIP: 0033:0x7fd940d8e929
[  118.867631][ T6688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.867643][ T6688] RSP: 002b:00007fd93ebf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  118.867661][ T6688] RAX: ffffffffffffffda RBX: 00007fd940fb5fa0 RCX: 00007fd940d8e929
[  118.867672][ T6688] RDX: 0000000000000022 RSI: 0000000000000029 RDI: 0000000000000005
[  118.867682][ T6688] RBP: 00007fd93ebf6090 R08: 0000000000000120 R09: 0000000000000000
[  118.867692][ T6688] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  118.867702][ T6688] R13: 0000000000000000 R14: 00007fd940fb5fa0 R15: 00007ffcfac35a28
[  118.867730][ T6688]  </TASK>
[  119.447406][ T6694] syz.0.144: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  119.471341][ T6694] CPU: 1 UID: 0 PID: 6694 Comm: syz.0.144 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  119.471364][ T6694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  119.471375][ T6694] Call Trace:
[  119.471383][ T6694]  <TASK>
[  119.471394][ T6694]  dump_stack_lvl+0x189/0x250
[  119.471434][ T6694]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.471468][ T6694]  ? __pfx__printk+0x10/0x10
[  119.471494][ T6694]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  119.471517][ T6694]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  119.471545][ T6694]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  119.471573][ T6694]  warn_alloc+0x214/0x310
[  119.471598][ T6694]  ? stack_depot_save_flags+0x429/0x900
[  119.471635][ T6694]  ? __pfx_warn_alloc+0x10/0x10
[  119.471664][ T6694]  ? kasan_save_track+0x4f/0x80
[  119.471686][ T6694]  ? xskq_create+0x56/0x170
[  119.471705][ T6694]  ? xsk_init_queue+0xb0/0x110
[  119.471722][ T6694]  ? xsk_setsockopt+0x4de/0x710
[  119.471739][ T6694]  ? do_sock_setsockopt+0x257/0x3e0
[  119.471756][ T6694]  ? __x64_sys_setsockopt+0x18b/0x220
[  119.471771][ T6694]  ? do_syscall_64+0xfa/0x3b0
[  119.471791][ T6694]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.471831][ T6694]  __vmalloc_node_range_noprof+0x125/0x12f0
[  119.471927][ T6694]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  119.471968][ T6694]  ? __kasan_kmalloc+0x93/0xb0
[  119.471999][ T6694]  vmalloc_user_noprof+0xad/0xf0
[  119.472022][ T6694]  ? xskq_create+0xbf/0x170
[  119.472049][ T6694]  xskq_create+0xbf/0x170
[  119.472086][ T6694]  xsk_init_queue+0xb0/0x110
[  119.472119][ T6694]  xsk_setsockopt+0x4de/0x710
[  119.472151][ T6694]  ? __pfx_xsk_setsockopt+0x10/0x10
[  119.472188][ T6694]  ? aa_sock_opt_perm+0x74/0x110
[  119.472217][ T6694]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  119.472237][ T6694]  ? __pfx_xsk_setsockopt+0x10/0x10
[  119.472265][ T6694]  do_sock_setsockopt+0x257/0x3e0
[  119.472295][ T6694]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  119.472331][ T6694]  ? __fget_files+0x2a/0x420
[  119.472375][ T6694]  __x64_sys_setsockopt+0x18b/0x220
[  119.472414][ T6694]  do_syscall_64+0xfa/0x3b0
[  119.472436][ T6694]  ? lockdep_hardirqs_on+0x9c/0x150
[  119.472467][ T6694]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.472486][ T6694]  ? clear_bhb_loop+0x60/0xb0
[  119.472516][ T6694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.472534][ T6694] RIP: 0033:0x7fd940d8e929
[  119.472552][ T6694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.472566][ T6694] RSP: 002b:00007fd93ebf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  119.472584][ T6694] RAX: ffffffffffffffda RBX: 00007fd940fb5fa0 RCX: 00007fd940d8e929
[  119.472596][ T6694] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000007
[  119.472606][ T6694] RBP: 00007fd940e10b39 R08: 0000000000000004 R09: 0000000000000000
[  119.472616][ T6694] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  119.472627][ T6694] R13: 0000000000000000 R14: 00007fd940fb5fa0 R15: 00007ffcfac35a28
[  119.472685][ T6694]  </TASK>
[  119.472792][ T6694] Mem-Info:
[  119.781726][ T6694] active_anon:5602 inactive_anon:0 isolated_anon:0
[  119.781726][ T6694]  active_file:13550 inactive_file:39845 isolated_file:0
[  119.781726][ T6694]  unevictable:768 dirty:139 writeback:0
[  119.781726][ T6694]  slab_reclaimable:10031 slab_unreclaimable:96449
[  119.781726][ T6694]  mapped:29211 shmem:1367 pagetables:1079
[  119.781726][ T6694]  sec_pagetables:0 bounce:0
[  119.781726][ T6694]  kernel_misc_reclaimable:0
[  119.781726][ T6694]  free:1318931 free_pcp:17307 free_cma:0
[  119.830211][ T6694] Node 0 active_anon:22408kB inactive_anon:0kB active_file:54200kB inactive_file:159176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116844kB dirty:556kB writeback:0kB shmem:3932kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10864kB pagetables:4156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  119.864070][ T6694] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  119.908899][ T6694] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  119.950140][ T6694] lowmem_reserve[]: 0 2501 2502 2502 2502
[  119.951045][ T2130] team0 (unregistering): Port device team_slave_1 removed
[  119.962407][ T6694] Node 0 DMA32 free:1354552kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22360kB inactive_anon:0kB active_file:54200kB inactive_file:157348kB unevictable:1536kB writepending:552kB present:3129332kB managed:2561056kB mlocked:0kB bounce:0kB free_pcp:49816kB local_pcp:31592kB free_cma:0kB
[  119.998293][ T6694] lowmem_reserve[]: 0 0 1 1 1
[  120.003114][ T6694] Node 0 Normal free:16kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1828kB unevictable:0kB writepending:4kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  120.044154][ T6694] lowmem_reserve[]: 0 0 0 0 0
[  120.049337][ T2130] team0 (unregistering): Port device team_slave_0 removed
[  120.067621][ T6694] 
[  120.073078][ T6694] Node 1 Normal free:3905796kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:19108kB local_pcp:8192kB free_cma:0kB
[  120.122008][ T6694] lowmem_reserve[]: 0 0 0 0 0
[  120.135172][ T6694] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  120.152583][ T6694] Node 0 DMA32: 650*4kB (M) 584*8kB (ME) 567*16kB (UM) 453*32kB (ME) 251*64kB (ME) 60*128kB (ME) 46*256kB (UM) 14*512kB (M) 13*1024kB (M) 9*2048kB (UME) 305*4096kB (M) = 1354552kB
[  120.190858][ T6694] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  120.213444][ T6694] Node 1 Normal: 185*4kB (UE) 42*8kB (UME) 41*16kB (UME) 60*32kB (UME) 33*64kB (UME) 9*128kB (UME) 2*256kB 
[  120.223916][ T5843] Bluetooth: hci1: command tx timeout
[  120.240885][ T6694] (M) 2*512kB (M) 2*1024kB (UM) 0*2048kB 951*4096kB (ME) = 3905796kB
[  120.261660][ T6694] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  120.275531][ T6694] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  120.285269][ T6694] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  120.306231][ T6694] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  120.321844][ T6694] 54758 total pagecache pages
[  120.335527][ T6694] 0 pages in swap cache
[  120.345560][ T6694] Free swap  = 124996kB
[  120.349725][ T6694] Total swap = 124996kB
[  120.355361][ T6694] 2097051 pages RAM
[  120.365298][ T6694] 0 pages HighMem/MovableOnly
[  120.369975][ T6694] 424681 pages reserved
[  120.376511][ T6694] 0 pages cma reserved
[  120.542269][ T6698] netlink: 'syz.0.146': attribute type 10 has an invalid length.
[  120.707230][ T5992] wlan1: Selected IBSS BSSID 8e:78:f1:e2:b5:86 based on configured SSID
[  120.712168][ T6698] team0: Port device wlan1 added
[  120.760564][ T6447] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  120.819557][ T6447] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  120.976673][ T6447] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  121.018165][ T6649] chnl_net:caif_netlink_parms(): no params data found
[  121.071024][ T6447] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  121.095749][ T6701] netlink: 8 bytes leftover after parsing attributes in process `syz.0.147'.
[  121.152576][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.0.147'.
[  121.166902][ T6701] netlink: 2 bytes leftover after parsing attributes in process `syz.0.147'.
[  121.187804][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.0.147'.
[  121.197364][ T6701] netlink: 2 bytes leftover after parsing attributes in process `syz.0.147'.
[  121.543405][ T6718] FAULT_INJECTION: forcing a failure.
[  121.543405][ T6718] name failslab, interval 1, probability 0, space 0, times 0
[  121.565385][ T6718] CPU: 1 UID: 0 PID: 6718 Comm: syz.4.153 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  121.565409][ T6718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.565419][ T6718] Call Trace:
[  121.565426][ T6718]  <TASK>
[  121.565434][ T6718]  dump_stack_lvl+0x189/0x250
[  121.565462][ T6718]  ? __pfx____ratelimit+0x10/0x10
[  121.565484][ T6718]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.565506][ T6718]  ? __pfx__printk+0x10/0x10
[  121.565533][ T6718]  ? perf_trace_preemptirq_template+0x280/0x340
[  121.565565][ T6718]  should_fail_ex+0x414/0x560
[  121.565592][ T6718]  should_failslab+0xa8/0x100
[  121.565613][ T6718]  __kmalloc_cache_noprof+0x70/0x3d0
[  121.565631][ T6718]  ? xfrm_policy_alloc+0x78/0x2b0
[  121.565652][ T6718]  ? irqentry_exit+0x74/0x90
[  121.565676][ T6718]  xfrm_policy_alloc+0x78/0x2b0
[  121.565701][ T6718]  pfkey_compile_policy+0x303/0xbd0
[  121.565737][ T6718]  xfrm_user_policy+0x58f/0x950
[  121.565753][ T6718]  ? rcu_is_watching+0x15/0xb0
[  121.565767][ T6718]  ? xfrm_user_policy+0x3b5/0x950
[  121.565785][ T6718]  ? __pfx_xfrm_user_policy+0x10/0x10
[  121.565800][ T6718]  ? apparmor_capable+0x137/0x1b0
[  121.565819][ T6718]  ? bpf_lsm_capable+0x9/0x20
[  121.565835][ T6718]  ? security_capable+0x7e/0x2e0
[  121.565869][ T6718]  do_ipv6_setsockopt+0x165c/0x2fb0
[  121.565900][ T6718]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  121.565920][ T6718]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  121.565955][ T6718]  ? migrate_enable+0x29c/0x3c0
[  121.565975][ T6718]  ? __pfx___might_resched+0x10/0x10
[  121.566008][ T6718]  ? aa_sk_perm+0x81e/0x950
[  121.566027][ T6718]  ? trace_call_bpf+0xb7/0x850
[  121.566052][ T6718]  ? __pfx_aa_sk_perm+0x10/0x10
[  121.566070][ T6718]  ? __lock_acquire+0xab9/0xd20
[  121.566103][ T6718]  ipv6_setsockopt+0x59/0x170
[  121.566121][ T6718]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  121.566147][ T6718]  do_sock_setsockopt+0x257/0x3e0
[  121.566167][ T6718]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  121.566187][ T6718]  ? __fget_files+0x2a/0x420
[  121.566215][ T6718]  __x64_sys_setsockopt+0x18b/0x220
[  121.566244][ T6718]  do_syscall_64+0xfa/0x3b0
[  121.566267][ T6718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.566282][ T6718]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  121.566298][ T6718]  ? clear_bhb_loop+0x60/0xb0
[  121.566319][ T6718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.566334][ T6718] RIP: 0033:0x7ffb4558e929
[  121.566349][ T6718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.566362][ T6718] RSP: 002b:00007ffb463fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  121.566378][ T6718] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558e929
[  121.566390][ T6718] RDX: 0000000000000022 RSI: 0000000000000029 RDI: 0000000000000005
[  121.566400][ T6718] RBP: 00007ffb463fc090 R08: 0000000000000120 R09: 0000000000000000
[  121.566410][ T6718] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  121.566420][ T6718] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  121.566449][ T6718]  </TASK>
[  121.888864][ T6649] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.896709][ T6649] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.904319][ T6649] bridge_slave_0: entered allmulticast mode
[  121.911295][ T6649] bridge_slave_0: entered promiscuous mode
[  121.921094][ T6649] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.930967][ T6649] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.938156][ T6649] bridge_slave_1: entered allmulticast mode
[  121.950759][ T6649] bridge_slave_1: entered promiscuous mode
[  122.091606][ T6721] netlink: 'syz.4.154': attribute type 21 has an invalid length.
[  122.139950][ T6649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  122.155014][ T6649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  122.224660][ T2130] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.305873][ T5843] Bluetooth: hci1: command tx timeout
[  122.391464][ T2130] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.411998][ T6649] team0: Port device team_slave_0 added
[  122.438022][ T6649] team0: Port device team_slave_1 added
[  122.572302][ T2130] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.646045][ T6649] batman_adv: batadv0: Adding interface: batadv_slave_0
[  122.653125][ T6649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  122.703267][ T6649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  122.717813][ T6479] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  122.752591][ T2130] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.798585][ T6447] 8021q: adding VLAN 0 to HW filter on device bond0
[  122.820493][ T6649] batman_adv: batadv0: Adding interface: batadv_slave_1
[  122.828437][ T6649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  122.859986][ T6649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  122.887646][ T6479] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  122.957597][ T6447] 8021q: adding VLAN 0 to HW filter on device team0
[  122.999055][ T6479] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  123.039137][ T6685] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.046314][ T6685] bridge0: port 1(bridge_slave_0) entered forwarding state
[  123.074320][ T6479] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  123.097992][  T146] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.105155][  T146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  123.119135][ T6649] hsr_slave_0: entered promiscuous mode
[  123.141900][ T6649] hsr_slave_1: entered promiscuous mode
[  123.153644][ T6649] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  123.162890][ T6649] Cannot create hsr debugfs directory
[  123.257437][ T6747] FAULT_INJECTION: forcing a failure.
[  123.257437][ T6747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.275500][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.4.164 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  123.275524][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  123.275534][ T6747] Call Trace:
[  123.275541][ T6747]  <TASK>
[  123.275549][ T6747]  dump_stack_lvl+0x189/0x250
[  123.275577][ T6747]  ? __pfx____ratelimit+0x10/0x10
[  123.275598][ T6747]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.275621][ T6747]  ? __pfx__printk+0x10/0x10
[  123.275653][ T6747]  should_fail_ex+0x414/0x560
[  123.275680][ T6747]  _copy_to_user+0x31/0xb0
[  123.275700][ T6747]  simple_read_from_buffer+0xe1/0x170
[  123.275724][ T6747]  proc_fail_nth_read+0x1df/0x250
[  123.275748][ T6747]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.275772][ T6747]  ? rw_verify_area+0x258/0x650
[  123.275788][ T6747]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.275810][ T6747]  vfs_read+0x1fd/0x980
[  123.275833][ T6747]  ? __pfx___mutex_lock+0x10/0x10
[  123.275856][ T6747]  ? __pfx_vfs_read+0x10/0x10
[  123.275874][ T6747]  ? __fget_files+0x2a/0x420
[  123.275898][ T6747]  ? __fget_files+0x3a0/0x420
[  123.275916][ T6747]  ? __fget_files+0x2a/0x420
[  123.275944][ T6747]  ksys_read+0x145/0x250
[  123.275963][ T6747]  ? __pfx_ksys_read+0x10/0x10
[  123.275986][ T6747]  ? do_syscall_64+0xbe/0x3b0
[  123.276011][ T6747]  do_syscall_64+0xfa/0x3b0
[  123.276033][ T6747]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.276049][ T6747]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  123.276066][ T6747]  ? clear_bhb_loop+0x60/0xb0
[  123.276085][ T6747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.276101][ T6747] RIP: 0033:0x7ffb4558d33c
[  123.276116][ T6747] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  123.276129][ T6747] RSP: 002b:00007ffb463fc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  123.276147][ T6747] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558d33c
[  123.276159][ T6747] RDX: 000000000000000f RSI: 00007ffb463fc0a0 RDI: 0000000000000007
[  123.276169][ T6747] RBP: 00007ffb463fc090 R08: 0000000000000000 R09: 0000000000000000
[  123.276180][ T6747] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  123.276190][ T6747] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  123.276219][ T6747]  </TASK>
[  123.805003][ T2130] bridge_slave_1: left allmulticast mode
[  123.810693][ T2130] bridge_slave_1: left promiscuous mode
[  123.829564][ T2130] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.840168][ T2130] bridge_slave_0: left promiscuous mode
[  123.846279][ T2130] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.089623][ T2130] team0: Port device bond0 removed
[  124.096772][ T2130] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  124.108482][ T2130] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  124.118929][ T2130] bond0 (unregistering): Released all slaves
[  124.383839][ T5843] Bluetooth: hci1: command tx timeout
[  124.635221][ T2130] hsr_slave_0: left promiscuous mode
[  124.653813][ T2130] hsr_slave_1: left promiscuous mode
[  124.659820][ T2130] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.682237][ T2130] batman_adv: batadv0: Removing interface: batadv_slave_0
[  124.715012][ T2130] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.722446][ T2130] batman_adv: batadv0: Removing interface: batadv_slave_1
[  124.773301][ T2130] veth1_macvtap: left promiscuous mode
[  124.783855][ T2130] veth0_macvtap: left promiscuous mode
[  124.789741][ T2130] veth1_vlan: left promiscuous mode
[  124.795492][ T2130] veth0_vlan: left promiscuous mode
[  125.297970][ T2130] team0 (unregistering): Port device team_slave_1 removed
[  125.339218][ T2130] team0 (unregistering): Port device team_slave_0 removed
[  125.700574][ T6479] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.798325][ T6447] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.836442][ T6479] 8021q: adding VLAN 0 to HW filter on device team0
[  125.981014][ T6685] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.988213][ T6685] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.025872][ T6685] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.033086][ T6685] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.152364][ T6649] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  126.185597][ T6649] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  126.229416][ T6649] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  126.265614][ T6649] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  126.450882][ T6447] veth0_vlan: entered promiscuous mode
[  126.496676][ T6447] veth1_vlan: entered promiscuous mode
[  126.503057][ T6811] netlink: 'syz.0.179': attribute type 6 has an invalid length.
[  126.543927][ T6811] netlink: 'syz.0.179': attribute type 3 has an invalid length.
[  126.558992][ T6811] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.179'.
[  126.727609][ T6447] veth0_macvtap: entered promiscuous mode
[  126.762345][ T6447] veth1_macvtap: entered promiscuous mode
[  126.859924][ T6821] netlink: 'syz.0.181': attribute type 10 has an invalid length.
[  126.873383][ T6447] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.910663][ T6821] netlink: 40 bytes leftover after parsing attributes in process `syz.0.181'.
[  126.967258][ T6821] dummy0: entered promiscuous mode
[  127.005796][ T6649] 8021q: adding VLAN 0 to HW filter on device bond0
[  127.018918][ T6447] batman_adv: batadv0: Interface activated: batadv_slave_1
[  127.068012][ T6447] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.089324][ T6447] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.112744][ T6447] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.133651][ T6447] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.158644][ T6649] 8021q: adding VLAN 0 to HW filter on device team0
[  127.255859][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.262996][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.336798][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.344033][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.467677][ T6479] 8021q: adding VLAN 0 to HW filter on device batadv0
[  127.784192][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.830722][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.918387][ T6479] veth0_vlan: entered promiscuous mode
[  127.979045][ T2130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.993755][ T2130] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.027731][ T6479] veth1_vlan: entered promiscuous mode
[  128.173010][ T6479] veth0_macvtap: entered promiscuous mode
[  128.229023][ T6479] veth1_macvtap: entered promiscuous mode
[  128.325992][ T6479] batman_adv: batadv0: Interface activated: batadv_slave_0
[  128.391174][ T6479] batman_adv: batadv0: Interface activated: batadv_slave_1
[  128.462459][ T6479] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.486056][ T6479] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.517052][ T6479] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.554048][ T6479] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  128.803277][ T6649] 8021q: adding VLAN 0 to HW filter on device batadv0
[  128.909135][ T6893] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.197'.
[  128.921980][ T6893] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  128.983869][ T2130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.035943][ T2130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.182445][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.197261][ T6649] veth0_vlan: entered promiscuous mode
[  129.205934][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.241169][ T6649] veth1_vlan: entered promiscuous mode
[  129.408785][ T6649] veth0_macvtap: entered promiscuous mode
[  129.449402][ T6649] veth1_macvtap: entered promiscuous mode
[  129.664291][ T6649] batman_adv: batadv0: Interface activated: batadv_slave_0
[  129.757039][ T6649] batman_adv: batadv0: Interface activated: batadv_slave_1
[  129.864087][ T6649] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.872824][ T6649] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.955036][ T6649] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.993627][ T6649] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.351131][ T2130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.408193][ T2130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.801054][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.826246][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.242902][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  133.249574][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  135.600880][ T5903] sched: DL replenish lagged too much
[  136.378451][ T6967] delete_channel: no stack
[  136.515795][ T6986] netlink: 'syz.4.214': attribute type 2 has an invalid length.
[  136.523476][ T6986] netlink: 'syz.4.214': attribute type 8 has an invalid length.
[  136.557734][ T6986] netlink: 132 bytes leftover after parsing attributes in process `syz.4.214'.
[  136.721792][ T6994] netlink: 'syz.3.217': attribute type 10 has an invalid length.
[  136.750570][ T6994] netlink: 40 bytes leftover after parsing attributes in process `syz.3.217'.
[  136.751812][ T6992] netlink: 14 bytes leftover after parsing attributes in process `syz.1.216'.
[  136.783822][ T6994] dummy0: entered promiscuous mode
[  136.873814][ T6992] hsr_slave_0: left promiscuous mode
[  136.919930][ T6992] hsr_slave_1: left promiscuous mode
[  137.259750][ T7010] netlink: 'syz.3.220': attribute type 2 has an invalid length.
[  137.280961][ T7010] netlink: 126524 bytes leftover after parsing attributes in process `syz.3.220'.
[  137.334021][ T6685] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.553172][ T6685] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.706423][ T6685] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.766261][ T7022] netlink: 22 bytes leftover after parsing attributes in process `syz.3.224'.
[  137.951577][ T6685] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.444974][ T7038] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.227'.
[  138.513792][ T6685] bridge_slave_1: left allmulticast mode
[  138.519478][ T6685] bridge_slave_1: left promiscuous mode
[  138.578488][ T6685] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.692143][ T6685] bridge_slave_0: left allmulticast mode
[  138.729029][ T6685] bridge_slave_0: left promiscuous mode
[  138.732935][ T7044] netlink: 'syz.4.230': attribute type 10 has an invalid length.
[  138.774453][ T6685] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.785078][ T7044] netlink: 40 bytes leftover after parsing attributes in process `syz.4.230'.
[  139.086445][ T7049] netlink: 'syz.1.232': attribute type 7 has an invalid length.
[  139.382938][ T7053] netlink: 8387 bytes leftover after parsing attributes in process `syz.0.233'.
[  139.701642][ T5154] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  139.710324][ T5154] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  139.718357][ T5154] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  139.726771][ T5154] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  139.735101][ T5154] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  140.163519][ T6685] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  140.176969][ T6685] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  140.190197][ T6685] bond0 (unregistering): Released all slaves
[  140.815537][ T7088] netlink: 2759 bytes leftover after parsing attributes in process `syz.1.241'.
[  141.099264][ T7104] netlink: 4 bytes leftover after parsing attributes in process `syz.3.247'.
[  141.365477][ T7115] ksmbd: Unknown IPC event: 3, ignore.
[  141.407571][ T6685] hsr_slave_0: left promiscuous mode
[  141.448476][ T6685] hsr_slave_1: left promiscuous mode
[  141.468784][ T6685] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.491835][ T6685] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.507085][ T6685] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.527220][ T6685] batman_adv: batadv0: Removing interface: batadv_slave_1
[  142.229654][ T6685] veth1_macvtap: left promiscuous mode
[  142.238029][ T5154] Bluetooth: hci1: command tx timeout
[  142.273995][ T6685] veth0_macvtap: left promiscuous mode
[  142.283746][ T6685] veth1_vlan: left promiscuous mode
[  142.309939][ T6685] veth0_vlan: left promiscuous mode
[  144.128727][ T7143] __nla_validate_parse: 1 callbacks suppressed
[  144.128746][ T7143] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.256'.
[  144.314454][ T5154] Bluetooth: hci1: command tx timeout
[  144.579060][ T6685] team0 (unregistering): Port device team_slave_1 removed
[  144.638666][ T6685] team0 (unregistering): Port device team_slave_0 removed
[  145.098662][ T7112] lo: entered allmulticast mode
[  145.520645][ T7056] chnl_net:caif_netlink_parms(): no params data found
[  145.786827][ T7179] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.267'.
[  146.117059][ T7196] netlink: 'syz.1.269': attribute type 3 has an invalid length.
[  146.149015][ T7196] netlink: 'syz.1.269': attribute type 1 has an invalid length.
[  146.178349][ T7056] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.195812][ T7196] netlink: 60347 bytes leftover after parsing attributes in process `syz.1.269'.
[  146.205470][ T7056] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.212673][ T7056] bridge_slave_0: entered allmulticast mode
[  146.249718][ T7056] bridge_slave_0: entered promiscuous mode
[  146.363891][ T7056] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.371092][ T7056] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.395536][ T5154] Bluetooth: hci1: command tx timeout
[  146.395818][ T7056] bridge_slave_1: entered allmulticast mode
[  146.441464][ T7056] bridge_slave_1: entered promiscuous mode
[  146.573156][ T7056] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.609300][ T7056] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.814258][ T7056] team0: Port device team_slave_0 added
[  146.832195][ T7056] team0: Port device team_slave_1 added
[  146.898291][ T7223] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.277'.
[  147.028477][ T7056] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.049888][ T7056] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.129316][ T7056] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.228393][ T7056] batman_adv: batadv0: Adding interface: batadv_slave_1
[  147.239901][ T7056] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.274313][ T7056] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  147.543876][ T7247] netlink: 'syz.4.285': attribute type 10 has an invalid length.
[  147.616639][ T7056] hsr_slave_0: entered promiscuous mode
[  147.623370][ T7056] hsr_slave_1: entered promiscuous mode
[  147.630153][ T7056] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  147.645559][ T7056] Cannot create hsr debugfs directory
[  148.205073][ T7258] netlink: 763 bytes leftover after parsing attributes in process `syz.0.287'.
[  148.214629][ T7255] netlink: 763 bytes leftover after parsing attributes in process `syz.0.287'.
[  148.231707][ T7262] netlink: 1010 bytes leftover after parsing attributes in process `syz.1.288'.
[  148.247632][ T7262] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  148.469157][ T5154] Bluetooth: hci1: command tx timeout
[  148.670137][ T7280] netlink: 'syz.1.291': attribute type 1 has an invalid length.
[  148.824015][ T7280] netlink: 105116 bytes leftover after parsing attributes in process `syz.1.291'.
[  149.377222][ T7297] netlink: 2759 bytes leftover after parsing attributes in process `syz.4.296'.
[  149.576662][ T7301] netlink: 4 bytes leftover after parsing attributes in process `syz.0.298'.
[  150.736860][ T2130] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  153.357035][ T7056] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  153.401250][ T7056] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  153.428154][ T7056] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  153.481530][ T7056] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  153.561288][ T7323] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  153.797122][ T7056] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.827993][ T7056] 8021q: adding VLAN 0 to HW filter on device team0
[  153.837471][ T7329] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.309'.
[  153.861777][ T2130] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.868962][ T2130] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.884615][ T7331] FAULT_INJECTION: forcing a failure.
[  153.884615][ T7331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.941509][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.948718][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.953720][ T7331] CPU: 1 UID: 0 PID: 7331 Comm: syz.1.310 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  153.953742][ T7331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.953751][ T7331] Call Trace:
[  153.953758][ T7331]  <TASK>
[  153.953765][ T7331]  dump_stack_lvl+0x189/0x250
[  153.953795][ T7331]  ? __pfx____ratelimit+0x10/0x10
[  153.953816][ T7331]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.953839][ T7331]  ? __pfx__printk+0x10/0x10
[  153.953857][ T7331]  ? __might_fault+0xb0/0x130
[  153.953889][ T7331]  should_fail_ex+0x414/0x560
[  153.953917][ T7331]  _copy_from_user+0x2d/0xb0
[  153.953936][ T7331]  ___sys_sendmsg+0x158/0x2a0
[  153.953957][ T7331]  ? __pfx____sys_sendmsg+0x10/0x10
[  153.954018][ T7331]  ? __fget_files+0x2a/0x420
[  153.954036][ T7331]  ? __fget_files+0x3a0/0x420
[  153.954067][ T7331]  __x64_sys_sendmsg+0x19b/0x260
[  153.954088][ T7331]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  153.954117][ T7331]  ? __pfx_ksys_write+0x10/0x10
[  153.954132][ T7331]  ? rcu_is_watching+0x15/0xb0
[  153.954153][ T7331]  ? do_syscall_64+0xbe/0x3b0
[  153.954178][ T7331]  do_syscall_64+0xfa/0x3b0
[  153.954197][ T7331]  ? lockdep_hardirqs_on+0x9c/0x150
[  153.954217][ T7331]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.954233][ T7331]  ? clear_bhb_loop+0x60/0xb0
[  153.954253][ T7331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.954269][ T7331] RIP: 0033:0x7ff28258e929
[  153.954284][ T7331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.954296][ T7331] RSP: 002b:00007ff283485038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.954314][ T7331] RAX: ffffffffffffffda RBX: 00007ff2827b5fa0 RCX: 00007ff28258e929
[  153.954326][ T7331] RDX: 0000000000000000 RSI: 0000200000000b00 RDI: 0000000000000005
[  153.954335][ T7331] RBP: 00007ff283485090 R08: 0000000000000000 R09: 0000000000000000
[  153.954345][ T7331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.954354][ T7331] R13: 0000000000000000 R14: 00007ff2827b5fa0 R15: 00007ffd8b8b68d8
[  153.954384][ T7331]  </TASK>
[  154.860542][ T7056] 8021q: adding VLAN 0 to HW filter on device batadv0
[  154.992119][ T7056] veth0_vlan: entered promiscuous mode
[  155.019965][ T7056] veth1_vlan: entered promiscuous mode
[  155.088709][ T7056] veth0_macvtap: entered promiscuous mode
[  155.116650][ T7056] veth1_macvtap: entered promiscuous mode
[  155.166095][ T7056] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.191332][ T7056] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.219632][ T7056] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.245681][ T7056] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.268156][ T7056] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.580974][ T7056] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.311592][ T7380] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.322'.
[  157.404760][ T2130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.427345][ T2130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.492513][ T7384] FAULT_INJECTION: forcing a failure.
[  157.492513][ T7384] name failslab, interval 1, probability 0, space 0, times 0
[  157.552584][ T7384] CPU: 1 UID: 0 PID: 7384 Comm: syz.4.324 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  157.552608][ T7384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.552618][ T7384] Call Trace:
[  157.552628][ T7384]  <TASK>
[  157.552639][ T7384]  dump_stack_lvl+0x189/0x250
[  157.552673][ T7384]  ? __pfx____ratelimit+0x10/0x10
[  157.552703][ T7384]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.552735][ T7384]  ? __pfx__printk+0x10/0x10
[  157.552790][ T7384]  ? __pfx___might_resched+0x10/0x10
[  157.552832][ T7384]  should_fail_ex+0x414/0x560
[  157.552884][ T7384]  should_failslab+0xa8/0x100
[  157.552923][ T7384]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  157.552949][ T7384]  ? __alloc_skb+0x112/0x2d0
[  157.552992][ T7384]  __alloc_skb+0x112/0x2d0
[  157.553036][ T7384]  netlink_sendmsg+0x5c6/0xb30
[  157.553102][ T7384]  ? __pfx_netlink_sendmsg+0x10/0x10
[  157.553142][ T7384]  ? aa_sock_msg_perm+0x94/0x160
[  157.553179][ T7384]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  157.553204][ T7384]  ? __pfx_netlink_sendmsg+0x10/0x10
[  157.553233][ T7384]  __sock_sendmsg+0x21c/0x270
[  157.553279][ T7384]  ____sys_sendmsg+0x505/0x830
[  157.553332][ T7384]  ? __pfx_____sys_sendmsg+0x10/0x10
[  157.553401][ T7384]  ? import_iovec+0x74/0xa0
[  157.553444][ T7384]  ___sys_sendmsg+0x21f/0x2a0
[  157.553482][ T7384]  ? __pfx____sys_sendmsg+0x10/0x10
[  157.553602][ T7384]  ? __fget_files+0x2a/0x420
[  157.553675][ T7384]  ? __fget_files+0x2a/0x420
[  157.553694][ T7384]  ? __fget_files+0x3a0/0x420
[  157.553763][ T7384]  __x64_sys_sendmsg+0x19b/0x260
[  157.553801][ T7384]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  157.553866][ T7384]  ? __pfx_ksys_write+0x10/0x10
[  157.553881][ T7384]  ? rcu_is_watching+0x15/0xb0
[  157.553930][ T7384]  ? do_syscall_64+0xbe/0x3b0
[  157.553971][ T7384]  do_syscall_64+0xfa/0x3b0
[  157.553991][ T7384]  ? lockdep_hardirqs_on+0x9c/0x150
[  157.554015][ T7384]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.554032][ T7384]  ? clear_bhb_loop+0x60/0xb0
[  157.554065][ T7384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.554082][ T7384] RIP: 0033:0x7ffb4558e929
[  157.554101][ T7384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.554114][ T7384] RSP: 002b:00007ffb463fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  157.554131][ T7384] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558e929
[  157.554143][ T7384] RDX: 0000000000000000 RSI: 0000200000000b00 RDI: 0000000000000005
[  157.554152][ T7384] RBP: 00007ffb463fc090 R08: 0000000000000000 R09: 0000000000000000
[  157.554162][ T7384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.554172][ T7384] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  157.554248][ T7384]  </TASK>
[  157.892417][ T7387] netlink: 65047 bytes leftover after parsing attributes in process `syz.0.325'.
[  157.971092][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  158.065798][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  158.157806][ T7389] netlink: 'syz.3.326': attribute type 10 has an invalid length.
[  158.253760][ T7389] netlink: 40 bytes leftover after parsing attributes in process `syz.3.326'.
[  158.379093][ T7392] netlink: 15999 bytes leftover after parsing attributes in process `syz.1.327'.
[  160.501500][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.537214][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.855450][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.406120][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.264990][ T5154] Bluetooth: hci2: ISO packet for unknown connection handle 21
[  164.287149][ T7421] netlink: 2759 bytes leftover after parsing attributes in process `syz.0.336'.
[  164.338200][   T13] bridge_slave_1: left allmulticast mode
[  164.359545][   T13] bridge_slave_1: left promiscuous mode
[  164.397690][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.706902][   T13] bridge_slave_0: left allmulticast mode
[  164.741983][   T13] bridge_slave_0: left promiscuous mode
[  164.779630][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.221217][ T5843] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  166.229747][ T5843] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  166.237913][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  166.246673][ T5843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  166.254924][ T5843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  166.509985][ T7434] netlink: 'syz.0.340': attribute type 10 has an invalid length.
[  166.538086][ T7434] netlink: 40 bytes leftover after parsing attributes in process `syz.0.340'.
[  167.379472][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.397467][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.413411][   T13] bond0 (unregistering): Released all slaves
[  167.720348][ T7446] netlink: 'syz.1.345': attribute type 28 has an invalid length.
[  167.728371][ T7446] netlink: 'syz.1.345': attribute type 29 has an invalid length.
[  167.746502][ T7447] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.343'.
[  167.761562][ T7446] netlink: 132 bytes leftover after parsing attributes in process `syz.1.345'.
[  167.878106][ T7453] netlink: 2759 bytes leftover after parsing attributes in process `syz.4.347'.
[  168.303696][ T5843] Bluetooth: hci1: command tx timeout
[  168.419486][ T7431] chnl_net:caif_netlink_parms(): no params data found
[  168.522065][ T7469] netlink: 'syz.1.352': attribute type 6 has an invalid length.
[  168.539300][ T7469] netlink: 168 bytes leftover after parsing attributes in process `syz.1.352'.
[  168.572826][ T7474] netlink: 'syz.3.353': attribute type 10 has an invalid length.
[  168.591194][ T7474] netlink: 40 bytes leftover after parsing attributes in process `syz.3.353'.
[  169.104243][ T7480] netdevsim netdevsim0 ªªªªªª: renamed from netdevsim0 (while UP)
[  169.172355][   T13] hsr_slave_0: left promiscuous mode
[  169.180525][   T13] hsr_slave_1: left promiscuous mode
[  169.196733][ T7484] FAULT_INJECTION: forcing a failure.
[  169.196733][ T7484] name failslab, interval 1, probability 0, space 0, times 0
[  169.207469][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  169.209506][ T7484] CPU: 0 UID: 0 PID: 7484 Comm: syz.4.355 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  169.209526][ T7484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  169.209536][ T7484] Call Trace:
[  169.209544][ T7484]  <TASK>
[  169.209551][ T7484]  dump_stack_lvl+0x189/0x250
[  169.209579][ T7484]  ? __pfx____ratelimit+0x10/0x10
[  169.209601][ T7484]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.209623][ T7484]  ? __pfx__printk+0x10/0x10
[  169.209647][ T7484]  ? ref_tracker_alloc+0x318/0x460
[  169.209672][ T7484]  should_fail_ex+0x414/0x560
[  169.209698][ T7484]  should_failslab+0xa8/0x100
[  169.209718][ T7484]  kmem_cache_alloc_noprof+0x73/0x3c0
[  169.209734][ T7484]  ? skb_clone+0x212/0x3a0
[  169.209757][ T7484]  skb_clone+0x212/0x3a0
[  169.209779][ T7484]  __netlink_deliver_tap+0x404/0x850
[  169.209808][ T7484]  ? netlink_deliver_tap+0x2e/0x1b0
[  169.209824][ T7484]  netlink_deliver_tap+0x19c/0x1b0
[  169.209841][ T7484]  netlink_unicast+0x72f/0x8d0
[  169.209875][ T7484]  netlink_sendmsg+0x805/0xb30
[  169.209901][ T7484]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.209920][ T7484]  ? aa_sock_msg_perm+0x94/0x160
[  169.209943][ T7484]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  169.209965][ T7484]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.209982][ T7484]  __sock_sendmsg+0x21c/0x270
[  169.210006][ T7484]  ____sys_sendmsg+0x505/0x830
[  169.210029][ T7484]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.210056][ T7484]  ? import_iovec+0x74/0xa0
[  169.210083][ T7484]  ___sys_sendmsg+0x21f/0x2a0
[  169.210104][ T7484]  ? __pfx____sys_sendmsg+0x10/0x10
[  169.210157][ T7484]  ? __fget_files+0x2a/0x420
[  169.210175][ T7484]  ? __fget_files+0x3a0/0x420
[  169.210204][ T7484]  __x64_sys_sendmsg+0x19b/0x260
[  169.210224][ T7484]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  169.210251][ T7484]  ? __pfx_ksys_write+0x10/0x10
[  169.210265][ T7484]  ? rcu_is_watching+0x15/0xb0
[  169.210286][ T7484]  ? do_syscall_64+0xbe/0x3b0
[  169.210310][ T7484]  do_syscall_64+0xfa/0x3b0
[  169.210329][ T7484]  ? lockdep_hardirqs_on+0x9c/0x150
[  169.210349][ T7484]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.210364][ T7484]  ? clear_bhb_loop+0x60/0xb0
[  169.210384][ T7484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.210400][ T7484] RIP: 0033:0x7ffb4558e929
[  169.210414][ T7484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.210426][ T7484] RSP: 002b:00007ffb463fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.210444][ T7484] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558e929
[  169.210455][ T7484] RDX: 0000000000000000 RSI: 0000200000000b00 RDI: 0000000000000005
[  169.210465][ T7484] RBP: 00007ffb463fc090 R08: 0000000000000000 R09: 0000000000000000
[  169.210475][ T7484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.210485][ T7484] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  169.210512][ T7484]  </TASK>
[  169.510022][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  169.557149][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  169.573681][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  169.636529][   T13] veth1_macvtap: left promiscuous mode
[  169.650467][   T13] veth0_macvtap: left promiscuous mode
[  169.664354][   T13] veth1_vlan: left promiscuous mode
[  169.677098][   T13] veth0_vlan: left promiscuous mode
[  170.162315][   T13] team0 (unregistering): Port device team_slave_1 removed
[  170.198212][   T13] team0 (unregistering): Port device team_slave_0 removed
[  170.386059][ T5843] Bluetooth: hci1: command tx timeout
[  170.581201][ T7502] netlink: 2759 bytes leftover after parsing attributes in process `syz.0.360'.
[  170.792144][ T7504] netlink: 132 bytes leftover after parsing attributes in process `syz.0.361'.
[  170.855072][ T7431] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.862248][ T7431] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.900336][ T7431] bridge_slave_0: entered allmulticast mode
[  170.929891][ T7431] bridge_slave_0: entered promiscuous mode
[  170.961047][ T7431] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.989481][ T7431] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.021976][ T7431] bridge_slave_1: entered allmulticast mode
[  171.061354][ T7431] bridge_slave_1: entered promiscuous mode
[  171.157857][ T5843] Bluetooth: hci4: Malformed LE Event: 0x0d
[  171.377912][ T7431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  171.474617][ T7526] netlink: 'syz.0.368': attribute type 10 has an invalid length.
[  171.482409][ T7526] netlink: 40 bytes leftover after parsing attributes in process `syz.0.368'.
[  171.536019][ T7431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  172.048610][ T7431] team0: Port device team_slave_0 added
[  172.074645][ T7537] netlink: 2759 bytes leftover after parsing attributes in process `syz.4.371'.
[  172.139318][ T7431] team0: Port device team_slave_1 added
[  172.335235][ T7431] batman_adv: batadv0: Adding interface: batadv_slave_0
[  172.358764][ T7431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.443954][ T7431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  172.497206][ T5843] Bluetooth: hci1: command tx timeout
[  172.539062][ T7431] batman_adv: batadv0: Adding interface: batadv_slave_1
[  172.550037][ T7431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.583377][ T7431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.051812][ T7431] hsr_slave_0: entered promiscuous mode
[  173.065642][ T7431] hsr_slave_1: entered promiscuous mode
[  173.072205][ T7431] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  173.087775][ T7431] Cannot create hsr debugfs directory
[  173.323813][ T7564] netlink: 14568 bytes leftover after parsing attributes in process `syz.4.379'.
[  173.899187][ T7578] netlink: 'syz.4.382': attribute type 10 has an invalid length.
[  173.907925][ T7578] netlink: 40 bytes leftover after parsing attributes in process `syz.4.382'.
[  174.210005][ T7580] netlink: 2759 bytes leftover after parsing attributes in process `syz.0.383'.
[  174.543922][ T5843] Bluetooth: hci1: command tx timeout
[  174.665403][ T7590] netlink: 'syz.3.386': attribute type 21 has an invalid length.
[  174.681930][ T7590] netlink: 15242 bytes leftover after parsing attributes in process `syz.3.386'.
[  181.808980][ T7616] vlan0: entered promiscuous mode
[  181.818135][ T7616] vlan0: entered allmulticast mode
[  181.823276][ T7616] veth0_vlan: entered allmulticast mode
[  181.974226][ T7619] netlink: 2759 bytes leftover after parsing attributes in process `syz.0.394'.
[  182.686510][ T5992] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  182.738508][ T7633] netlink: 'syz.3.399': attribute type 21 has an invalid length.
[  182.853139][ T7638] netlink: 'syz.0.400': attribute type 10 has an invalid length.
[  182.890119][ T7638] netlink: 40 bytes leftover after parsing attributes in process `syz.0.400'.
[  183.489621][ T7431] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  183.591107][ T7431] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  183.663897][ T7431] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  183.675163][ T7431] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  183.773001][ T7431] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.795424][ T7431] 8021q: adding VLAN 0 to HW filter on device team0
[  183.844122][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.851282][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.883313][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.890514][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.919593][ T5843] Bluetooth: hci4: Malformed LE Event: 0x0d
[  183.953957][ T7663] netlink: 152 bytes leftover after parsing attributes in process `syz.4.409'.
[  184.079456][ T7666] netlink: 'syz.0.410': attribute type 2 has an invalid length.
[  184.093431][ T7666] netlink: 'syz.0.410': attribute type 1 has an invalid length.
[  184.105300][ T7666] netlink: 777 bytes leftover after parsing attributes in process `syz.0.410'.
[  184.114861][ T7666] netlink: 129904 bytes leftover after parsing attributes in process `syz.0.410'.
[  184.144315][ T7666] netlink: 'syz.0.410': attribute type 2 has an invalid length.
[  184.163119][ T7666] netlink: 'syz.0.410': attribute type 1 has an invalid length.
[  184.200037][ T7666] netlink: 777 bytes leftover after parsing attributes in process `syz.0.410'.
[  184.381362][ T7680] FAULT_INJECTION: forcing a failure.
[  184.381362][ T7680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.447285][ T7680] CPU: 1 UID: 0 PID: 7680 Comm: syz.1.415 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  184.447313][ T7680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.447323][ T7680] Call Trace:
[  184.447330][ T7680]  <TASK>
[  184.447338][ T7680]  dump_stack_lvl+0x189/0x250
[  184.447375][ T7680]  ? __pfx____ratelimit+0x10/0x10
[  184.447403][ T7680]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.447426][ T7680]  ? __pfx__printk+0x10/0x10
[  184.447444][ T7680]  ? __might_fault+0xb0/0x130
[  184.447474][ T7680]  should_fail_ex+0x414/0x560
[  184.447501][ T7680]  _copy_from_user+0x2d/0xb0
[  184.447520][ T7680]  __sys_bpf+0x1ed/0x860
[  184.447545][ T7680]  ? __pfx___sys_bpf+0x10/0x10
[  184.447580][ T7680]  ? ksys_write+0x22a/0x250
[  184.447600][ T7680]  ? __pfx_ksys_write+0x10/0x10
[  184.447614][ T7680]  ? rcu_is_watching+0x15/0xb0
[  184.447638][ T7680]  __x64_sys_bpf+0x7c/0x90
[  184.447659][ T7680]  do_syscall_64+0xfa/0x3b0
[  184.447679][ T7680]  ? lockdep_hardirqs_on+0x9c/0x150
[  184.447699][ T7680]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.447715][ T7680]  ? clear_bhb_loop+0x60/0xb0
[  184.447735][ T7680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.447751][ T7680] RIP: 0033:0x7ff28258e929
[  184.447770][ T7680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.447783][ T7680] RSP: 002b:00007ff283485038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  184.447807][ T7680] RAX: ffffffffffffffda RBX: 00007ff2827b5fa0 RCX: 00007ff28258e929
[  184.447819][ T7680] RDX: 0000000000000020 RSI: 00002000000002c0 RDI: 0000000000000002
[  184.447829][ T7680] RBP: 00007ff283485090 R08: 0000000000000000 R09: 0000000000000000
[  184.447839][ T7680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.447849][ T7680] R13: 0000000000000000 R14: 00007ff2827b5fa0 R15: 00007ffd8b8b68d8
[  184.447877][ T7680]  </TASK>
[  184.493293][ T7431] 8021q: adding VLAN 0 to HW filter on device batadv0
[  184.822897][ T7687] netlink: 60 bytes leftover after parsing attributes in process `syz.3.418'.
[  184.902480][ T7686] netlink: 60 bytes leftover after parsing attributes in process `syz.3.418'.
[  184.985036][ T7431] veth0_vlan: entered promiscuous mode
[  185.019814][ T7431] veth1_vlan: entered promiscuous mode
[  185.105308][ T7696] netlink: 152 bytes leftover after parsing attributes in process `syz.1.422'.
[  185.219852][ T7431] veth0_macvtap: entered promiscuous mode
[  185.271591][ T7431] veth1_macvtap: entered promiscuous mode
[  185.358667][ T7431] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.415526][ T7431] batman_adv: batadv0: Interface activated: batadv_slave_1
[  185.455208][ T7431] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.489363][ T7431] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.522626][ T7431] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.556075][ T7431] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.156866][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.205660][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.327050][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.383671][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.563286][ T7721] sctp: [Deprecated]: syz.1.429 (pid 7721) Use of int in max_burst socket option deprecated.
[  188.563286][ T7721] Use struct sctp_assoc_value instead
[  189.310761][ T7742] netlink: 2759 bytes leftover after parsing attributes in process `syz.1.436'.
[  189.403997][ T7738] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.548795][ T7748] netlink: 'syz.0.440': attribute type 29 has an invalid length.
[  189.582443][ T7748] netlink: 'syz.0.440': attribute type 29 has an invalid length.
[  189.684479][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.730967][ T7748] netlink: 'syz.0.440': attribute type 29 has an invalid length.
[  189.886773][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.903431][ T7754] netlink: 'syz.0.440': attribute type 29 has an invalid length.
[  189.911750][ T7748] netlink: 57563 bytes leftover after parsing attributes in process `syz.0.440'.
[  190.026866][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.100961][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.242481][   T13] bridge_slave_1: left allmulticast mode
[  190.260546][   T13] bridge_slave_1: left promiscuous mode
[  190.271018][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.306339][   T13] bridge_slave_0: left allmulticast mode
[  190.312016][   T13] bridge_slave_0: left promiscuous mode
[  190.320533][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.900854][ T7776] FAULT_INJECTION: forcing a failure.
[  190.900854][ T7776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.935825][ T7776] CPU: 0 UID: 0 PID: 7776 Comm: syz.1.447 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  190.935850][ T7776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.935861][ T7776] Call Trace:
[  190.935867][ T7776]  <TASK>
[  190.935875][ T7776]  dump_stack_lvl+0x189/0x250
[  190.935903][ T7776]  ? __pfx____ratelimit+0x10/0x10
[  190.935924][ T7776]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.935947][ T7776]  ? __pfx__printk+0x10/0x10
[  190.935977][ T7776]  should_fail_ex+0x414/0x560
[  190.936003][ T7776]  _copy_from_user+0x2d/0xb0
[  190.936021][ T7776]  ___bpf_copy_key+0xa5/0x110
[  190.936047][ T7776]  map_update_elem+0x200/0x750
[  190.936073][ T7776]  ? bpf_lsm_bpf+0x9/0x20
[  190.936092][ T7776]  __sys_bpf+0x6a9/0x860
[  190.936116][ T7776]  ? __pfx___sys_bpf+0x10/0x10
[  190.936150][ T7776]  ? ksys_write+0x22a/0x250
[  190.936170][ T7776]  ? __pfx_ksys_write+0x10/0x10
[  190.936184][ T7776]  ? rcu_is_watching+0x15/0xb0
[  190.936208][ T7776]  __x64_sys_bpf+0x7c/0x90
[  190.936229][ T7776]  do_syscall_64+0xfa/0x3b0
[  190.936248][ T7776]  ? lockdep_hardirqs_on+0x9c/0x150
[  190.936268][ T7776]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.936285][ T7776]  ? clear_bhb_loop+0x60/0xb0
[  190.936305][ T7776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.936321][ T7776] RIP: 0033:0x7ff28258e929
[  190.936337][ T7776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.936349][ T7776] RSP: 002b:00007ff283485038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  190.936368][ T7776] RAX: ffffffffffffffda RBX: 00007ff2827b5fa0 RCX: 00007ff28258e929
[  190.936380][ T7776] RDX: 0000000000000020 RSI: 00002000000002c0 RDI: 0000000000000002
[  190.936391][ T7776] RBP: 00007ff283485090 R08: 0000000000000000 R09: 0000000000000000
[  190.936401][ T7776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.936411][ T7776] R13: 0000000000000000 R14: 00007ff2827b5fa0 R15: 00007ffd8b8b68d8
[  190.936439][ T7776]  </TASK>
[  191.186219][ T5845] Bluetooth: hci0: command 0x0406 tx timeout
[  191.192362][ T5845] Bluetooth: hci3: command 0x0406 tx timeout
[  191.217334][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  191.227645][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  191.238499][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  191.247403][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  191.255439][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  191.348013][ T7780] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.448'.
[  191.704216][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  191.723109][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  191.738473][   T13] bond0 (unregistering): Released all slaves
[  193.346360][ T5154] Bluetooth: hci1: command tx timeout
[  194.045026][ T7823] netlink: 'syz.4.461': attribute type 10 has an invalid length.
[  194.061357][ T7823] netlink: 40 bytes leftover after parsing attributes in process `syz.4.461'.
[  194.168604][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  194.175125][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  194.633895][   T13] hsr_slave_0: left promiscuous mode
[  194.709128][   T13] hsr_slave_1: left promiscuous mode
[  194.736724][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  194.776092][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  194.823702][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  194.831185][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  195.016416][   T13] veth1_macvtap: left promiscuous mode
[  195.022109][   T13] veth0_macvtap: left promiscuous mode
[  195.064265][   T13] veth1_vlan: left promiscuous mode
[  195.090400][   T13] veth0_vlan: left promiscuous mode
[  195.427541][ T5154] Bluetooth: hci1: command tx timeout
[  197.514169][ T5154] Bluetooth: hci1: command tx timeout
[  199.031942][   T13] team0 (unregistering): Port device team_slave_1 removed
[  199.346716][   T13] team0 (unregistering): Port device team_slave_0 removed
[  199.590210][ T5154] Bluetooth: hci1: command tx timeout
[  202.102019][ T7854] netlink: 'syz.3.470': attribute type 10 has an invalid length.
[  202.143600][ T7854] netlink: 40 bytes leftover after parsing attributes in process `syz.3.470'.
[  202.355200][ T7777] chnl_net:caif_netlink_parms(): no params data found
[  202.361908][ T7862] FAULT_INJECTION: forcing a failure.
[  202.361908][ T7862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.399358][ T7862] CPU: 1 UID: 0 PID: 7862 Comm: syz.4.472 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  202.399380][ T7862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.399390][ T7862] Call Trace:
[  202.399397][ T7862]  <TASK>
[  202.399404][ T7862]  dump_stack_lvl+0x189/0x250
[  202.399432][ T7862]  ? __pfx____ratelimit+0x10/0x10
[  202.399453][ T7862]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.399475][ T7862]  ? __pfx__printk+0x10/0x10
[  202.399491][ T7862]  ? __might_fault+0xb0/0x130
[  202.399517][ T7862]  should_fail_ex+0x414/0x560
[  202.399543][ T7862]  _copy_from_user+0x2d/0xb0
[  202.399561][ T7862]  ___sys_sendmsg+0x158/0x2a0
[  202.399581][ T7862]  ? __pfx____sys_sendmsg+0x10/0x10
[  202.399634][ T7862]  ? __fget_files+0x2a/0x420
[  202.399652][ T7862]  ? __fget_files+0x3a0/0x420
[  202.399681][ T7862]  __x64_sys_sendmsg+0x19b/0x260
[  202.399703][ T7862]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  202.399740][ T7862]  ? __pfx_ksys_write+0x10/0x10
[  202.399755][ T7862]  ? rcu_is_watching+0x15/0xb0
[  202.399776][ T7862]  ? do_syscall_64+0xbe/0x3b0
[  202.399802][ T7862]  do_syscall_64+0xfa/0x3b0
[  202.399821][ T7862]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.399841][ T7862]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.399857][ T7862]  ? clear_bhb_loop+0x60/0xb0
[  202.399877][ T7862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.399893][ T7862] RIP: 0033:0x7ffb4558e929
[  202.399908][ T7862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.399921][ T7862] RSP: 002b:00007ffb463fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.399938][ T7862] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558e929
[  202.399950][ T7862] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  202.399960][ T7862] RBP: 00007ffb463fc090 R08: 0000000000000000 R09: 0000000000000000
[  202.399970][ T7862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.399979][ T7862] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  202.400006][ T7862]  </TASK>
[  202.646408][ T7866] netlink: 'syz.3.473': attribute type 10 has an invalid length.
[  202.655765][ T7866] netlink: 40 bytes leftover after parsing attributes in process `syz.3.473'.
[  203.446343][ T7884] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.480'.
[  204.348633][ T7777] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.360526][ T7777] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.371191][ T7777] bridge_slave_0: entered allmulticast mode
[  204.415737][ T7777] bridge_slave_0: entered promiscuous mode
[  204.499669][ T5154] Bluetooth: hci4: unexpected event 0x08 length: 15 > 4
[  204.509993][ T7777] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.593449][ T7777] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.629812][ T7777] bridge_slave_1: entered allmulticast mode
[  204.650677][ T7777] bridge_slave_1: entered promiscuous mode
[  204.789219][ T7898] FAULT_INJECTION: forcing a failure.
[  204.789219][ T7898] name failslab, interval 1, probability 0, space 0, times 0
[  204.833036][ T7898] CPU: 1 UID: 0 PID: 7898 Comm: syz.3.485 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  204.833059][ T7898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.833069][ T7898] Call Trace:
[  204.833076][ T7898]  <TASK>
[  204.833083][ T7898]  dump_stack_lvl+0x189/0x250
[  204.833110][ T7898]  ? __pfx____ratelimit+0x10/0x10
[  204.833129][ T7898]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.833149][ T7898]  ? __pfx__printk+0x10/0x10
[  204.833173][ T7898]  ? __pfx___might_resched+0x10/0x10
[  204.833191][ T7898]  should_fail_ex+0x414/0x560
[  204.833216][ T7898]  should_failslab+0xa8/0x100
[  204.833236][ T7898]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  204.833253][ T7898]  ? __alloc_skb+0x112/0x2d0
[  204.833272][ T7898]  __alloc_skb+0x112/0x2d0
[  204.833289][ T7898]  netlink_sendmsg+0x5c6/0xb30
[  204.833313][ T7898]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.833333][ T7898]  ? aa_sock_msg_perm+0x94/0x160
[  204.833355][ T7898]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  204.833376][ T7898]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.833393][ T7898]  __sock_sendmsg+0x21c/0x270
[  204.833415][ T7898]  ____sys_sendmsg+0x505/0x830
[  204.833437][ T7898]  ? __pfx_____sys_sendmsg+0x10/0x10
[  204.833464][ T7898]  ? import_iovec+0x74/0xa0
[  204.833485][ T7898]  ___sys_sendmsg+0x21f/0x2a0
[  204.833503][ T7898]  ? __pfx____sys_sendmsg+0x10/0x10
[  204.833557][ T7898]  ? __fget_files+0x2a/0x420
[  204.833576][ T7898]  ? __fget_files+0x3a0/0x420
[  204.833605][ T7898]  __x64_sys_sendmsg+0x19b/0x260
[  204.833626][ T7898]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  204.833654][ T7898]  ? __pfx_ksys_write+0x10/0x10
[  204.833668][ T7898]  ? rcu_is_watching+0x15/0xb0
[  204.833690][ T7898]  ? do_syscall_64+0xbe/0x3b0
[  204.833715][ T7898]  do_syscall_64+0xfa/0x3b0
[  204.833734][ T7898]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.833760][ T7898]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.833777][ T7898]  ? clear_bhb_loop+0x60/0xb0
[  204.833797][ T7898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.833813][ T7898] RIP: 0033:0x7efe4998e929
[  204.833829][ T7898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.833842][ T7898] RSP: 002b:00007efe4a872038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  204.833860][ T7898] RAX: ffffffffffffffda RBX: 00007efe49bb5fa0 RCX: 00007efe4998e929
[  204.833872][ T7898] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  204.833882][ T7898] RBP: 00007efe4a872090 R08: 0000000000000000 R09: 0000000000000000
[  204.833893][ T7898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.833903][ T7898] R13: 0000000000000000 R14: 00007efe49bb5fa0 R15: 00007ffd714e97c8
[  204.833930][ T7898]  </TASK>
[  205.179274][ T7777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  205.197736][ T7777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  205.481974][ T7905] netlink: 1042 bytes leftover after parsing attributes in process `syz.4.488'.
[  205.521591][ T7777] team0: Port device team_slave_0 added
[  205.560226][ T7777] team0: Port device team_slave_1 added
[  205.685401][ T7914] netlink: 2759 bytes leftover after parsing attributes in process `syz.4.491'.
[  205.804207][ T7777] batman_adv: batadv0: Adding interface: batadv_slave_0
[  205.811194][ T7777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  205.854984][ T7777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  205.966369][ T7921] netlink: 'syz.3.492': attribute type 10 has an invalid length.
[  205.976622][ T7921] netlink: 40 bytes leftover after parsing attributes in process `syz.3.492'.
[  206.015664][ T7777] batman_adv: batadv0: Adding interface: batadv_slave_1
[  206.028552][ T7777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  206.371224][ T7777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  206.639230][   T51] Bluetooth: hci4: command 0x0406 tx timeout
[  206.849544][ T7777] hsr_slave_0: entered promiscuous mode
[  206.876080][ T7777] hsr_slave_1: entered promiscuous mode
[  206.895291][ T7777] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  206.938486][ T7777] Cannot create hsr debugfs directory
[  207.689728][ T7946] netlink: 2451 bytes leftover after parsing attributes in process `syz.1.502'.
[  207.778950][ T7954] netlink: 2759 bytes leftover after parsing attributes in process `syz.0.504'.
[  207.864940][ T7956] netlink: 152 bytes leftover after parsing attributes in process `syz.3.505'.
[  207.880512][ T7956] netlink: 6 bytes leftover after parsing attributes in process `syz.3.505'.
[  207.979137][ T7963] netlink: 'syz.1.508': attribute type 10 has an invalid length.
[  208.003695][ T7963] netlink: 40 bytes leftover after parsing attributes in process `syz.1.508'.
[  208.020672][ T7963] dummy0: entered promiscuous mode
[  208.032165][ T7964] netlink: 8 bytes leftover after parsing attributes in process `syz.4.506'.
[  208.063670][ T7964] netlink: 4 bytes leftover after parsing attributes in process `syz.4.506'.
[  208.072468][ T7964] netlink: 2 bytes leftover after parsing attributes in process `syz.4.506'.
[  208.130346][ T7964] netlink: 4 bytes leftover after parsing attributes in process `syz.4.506'.
[  208.140537][ T7964] netlink: 2 bytes leftover after parsing attributes in process `syz.4.506'.
[  208.147741][ T7969] FAULT_INJECTION: forcing a failure.
[  208.147741][ T7969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.185926][ T7969] CPU: 1 UID: 0 PID: 7969 Comm: syz.0.510 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  208.185950][ T7969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.185960][ T7969] Call Trace:
[  208.185967][ T7969]  <TASK>
[  208.185975][ T7969]  dump_stack_lvl+0x189/0x250
[  208.186003][ T7969]  ? __pfx____ratelimit+0x10/0x10
[  208.186024][ T7969]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.186047][ T7969]  ? __pfx__printk+0x10/0x10
[  208.186065][ T7969]  ? __might_fault+0xb0/0x130
[  208.186093][ T7969]  should_fail_ex+0x414/0x560
[  208.186120][ T7969]  _copy_from_iter+0x1db/0x16f0
[  208.186147][ T7969]  ? rcu_is_watching+0x15/0xb0
[  208.186162][ T7969]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  208.186180][ T7969]  ? __pfx__copy_from_iter+0x10/0x10
[  208.186202][ T7969]  ? __build_skb_around+0x257/0x3e0
[  208.186221][ T7969]  ? netlink_sendmsg+0x642/0xb30
[  208.186233][ T7969]  ? skb_put+0x11b/0x210
[  208.186250][ T7969]  netlink_sendmsg+0x6b2/0xb30
[  208.186273][ T7969]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.186291][ T7969]  ? aa_sock_msg_perm+0x94/0x160
[  208.186314][ T7969]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  208.186333][ T7969]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.186350][ T7969]  __sock_sendmsg+0x21c/0x270
[  208.186375][ T7969]  ____sys_sendmsg+0x505/0x830
[  208.186399][ T7969]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.186426][ T7969]  ? import_iovec+0x74/0xa0
[  208.186447][ T7969]  ___sys_sendmsg+0x21f/0x2a0
[  208.186467][ T7969]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.186534][ T7969]  ? __fget_files+0x2a/0x420
[  208.186553][ T7969]  ? __fget_files+0x3a0/0x420
[  208.186582][ T7969]  __x64_sys_sendmsg+0x19b/0x260
[  208.186603][ T7969]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  208.186619][ T7969]  ? perf_trace_preemptirq_template+0xa3/0x340
[  208.186650][ T7969]  ? __pfx_ksys_write+0x10/0x10
[  208.186665][ T7969]  ? rcu_is_watching+0x15/0xb0
[  208.186685][ T7969]  ? do_syscall_64+0xbe/0x3b0
[  208.186710][ T7969]  do_syscall_64+0xfa/0x3b0
[  208.186730][ T7969]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.186750][ T7969]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.186766][ T7969]  ? clear_bhb_loop+0x60/0xb0
[  208.186786][ T7969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.186802][ T7969] RIP: 0033:0x7fd940d8e929
[  208.186817][ T7969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.186830][ T7969] RSP: 002b:00007fd93ebf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.186849][ T7969] RAX: ffffffffffffffda RBX: 00007fd940fb5fa0 RCX: 00007fd940d8e929
[  208.186861][ T7969] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  208.186872][ T7969] RBP: 00007fd93ebf6090 R08: 0000000000000000 R09: 0000000000000000
[  208.186883][ T7969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.186893][ T7969] R13: 0000000000000000 R14: 00007fd940fb5fa0 R15: 00007ffcfac35a28
[  208.186921][ T7969]  </TASK>
[  208.561512][ T7972] netlink: 'syz.1.511': attribute type 10 has an invalid length.
[  208.702112][ T7972] team0: Port device hsr_slave_0 added
[  208.849174][ T7777] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  208.868994][ T7777] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  208.991267][ T7777] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  209.031622][ T7777] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  209.439030][ T7777] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.537638][ T7777] 8021q: adding VLAN 0 to HW filter on device team0
[  209.550693][ T8001] FAULT_INJECTION: forcing a failure.
[  209.550693][ T8001] name failslab, interval 1, probability 0, space 0, times 0
[  209.590026][ T6685] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.597231][ T6685] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.621087][ T8001] CPU: 1 UID: 0 PID: 8001 Comm: syz.0.523 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  209.621110][ T8001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.621121][ T8001] Call Trace:
[  209.621128][ T8001]  <TASK>
[  209.621136][ T8001]  dump_stack_lvl+0x189/0x250
[  209.621166][ T8001]  ? __pfx____ratelimit+0x10/0x10
[  209.621189][ T8001]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.621212][ T8001]  ? __pfx__printk+0x10/0x10
[  209.621239][ T8001]  ? ref_tracker_alloc+0x318/0x460
[  209.621266][ T8001]  should_fail_ex+0x414/0x560
[  209.621294][ T8001]  should_failslab+0xa8/0x100
[  209.621317][ T8001]  kmem_cache_alloc_noprof+0x73/0x3c0
[  209.621334][ T8001]  ? skb_clone+0x212/0x3a0
[  209.621360][ T8001]  skb_clone+0x212/0x3a0
[  209.621384][ T8001]  __netlink_deliver_tap+0x404/0x850
[  209.621420][ T8001]  ? netlink_deliver_tap+0x2e/0x1b0
[  209.621439][ T8001]  netlink_deliver_tap+0x19c/0x1b0
[  209.621458][ T8001]  netlink_unicast+0x72f/0x8d0
[  209.621502][ T8001]  netlink_sendmsg+0x805/0xb30
[  209.621531][ T8001]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.621552][ T8001]  ? aa_sock_msg_perm+0x94/0x160
[  209.621581][ T8001]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  209.621603][ T8001]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.621621][ T8001]  __sock_sendmsg+0x21c/0x270
[  209.621647][ T8001]  ____sys_sendmsg+0x505/0x830
[  209.621674][ T8001]  ? __pfx_____sys_sendmsg+0x10/0x10
[  209.621704][ T8001]  ? import_iovec+0x74/0xa0
[  209.621727][ T8001]  ___sys_sendmsg+0x21f/0x2a0
[  209.621749][ T8001]  ? __pfx____sys_sendmsg+0x10/0x10
[  209.621812][ T8001]  ? __fget_files+0x2a/0x420
[  209.621831][ T8001]  ? __fget_files+0x3a0/0x420
[  209.621862][ T8001]  __x64_sys_sendmsg+0x19b/0x260
[  209.621884][ T8001]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  209.621900][ T8001]  ? perf_trace_preemptirq_template+0xa3/0x340
[  209.621934][ T8001]  ? __pfx_ksys_write+0x10/0x10
[  209.621948][ T8001]  ? rcu_is_watching+0x15/0xb0
[  209.621971][ T8001]  ? do_syscall_64+0xbe/0x3b0
[  209.621998][ T8001]  do_syscall_64+0xfa/0x3b0
[  209.622018][ T8001]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.622038][ T8001]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.622088][ T8001]  ? clear_bhb_loop+0x60/0xb0
[  209.622110][ T8001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.622126][ T8001] RIP: 0033:0x7fd940d8e929
[  209.622142][ T8001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.622156][ T8001] RSP: 002b:00007fd93ebf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  209.622174][ T8001] RAX: ffffffffffffffda RBX: 00007fd940fb5fa0 RCX: 00007fd940d8e929
[  209.622186][ T8001] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  209.622197][ T8001] RBP: 00007fd93ebf6090 R08: 0000000000000000 R09: 0000000000000000
[  209.622207][ T8001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.622221][ T8001] R13: 0000000000000000 R14: 00007fd940fb5fa0 R15: 00007ffcfac35a28
[  209.622252][ T8001]  </TASK>
[  209.622466][ T8001] netlink: 'syz.0.523': attribute type 10 has an invalid length.
[  210.092870][ T8002] netlink: 'syz.1.525': attribute type 10 has an invalid length.
[  210.243989][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.251471][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.589789][ T8009] netlink: 'syz.3.527': attribute type 10 has an invalid length.
[  210.640929][ T5154] Bluetooth: hci2: Malformed LE Event: 0x0d
[  211.074321][ T7777] 8021q: adding VLAN 0 to HW filter on device batadv0
[  211.107613][ T8034] netlink: 'syz.3.536': attribute type 10 has an invalid length.
[  211.138939][ T8034] FAULT_INJECTION: forcing a failure.
[  211.138939][ T8034] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  211.210286][ T7777] veth0_vlan: entered promiscuous mode
[  211.243872][ T8034] CPU: 0 UID: 0 PID: 8034 Comm: syz.3.536 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  211.243898][ T8034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  211.243908][ T8034] Call Trace:
[  211.243919][ T8034]  <TASK>
[  211.243930][ T8034]  dump_stack_lvl+0x189/0x250
[  211.243965][ T8034]  ? __pfx____ratelimit+0x10/0x10
[  211.243997][ T8034]  ? __pfx_dump_stack_lvl+0x10/0x10
[  211.244029][ T8034]  ? __pfx__printk+0x10/0x10
[  211.244114][ T8034]  should_fail_ex+0x414/0x560
[  211.244175][ T8034]  _copy_to_user+0x31/0xb0
[  211.244211][ T8034]  simple_read_from_buffer+0xe1/0x170
[  211.244259][ T8034]  proc_fail_nth_read+0x1df/0x250
[  211.244302][ T8034]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  211.244345][ T8034]  ? rw_verify_area+0x258/0x650
[  211.244368][ T8034]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  211.244405][ T8034]  vfs_read+0x1fd/0x980
[  211.244460][ T8034]  ? __pfx___mutex_lock+0x10/0x10
[  211.244490][ T8034]  ? __pfx_vfs_read+0x10/0x10
[  211.244526][ T8034]  ? __fget_files+0x2a/0x420
[  211.244573][ T8034]  ? __fget_files+0x3a0/0x420
[  211.244594][ T8034]  ? __fget_files+0x2a/0x420
[  211.244663][ T8034]  ksys_read+0x145/0x250
[  211.244700][ T8034]  ? __pfx_ksys_read+0x10/0x10
[  211.244715][ T8034]  ? rcu_is_watching+0x15/0xb0
[  211.244762][ T8034]  ? do_syscall_64+0xbe/0x3b0
[  211.244807][ T8034]  do_syscall_64+0xfa/0x3b0
[  211.244829][ T8034]  ? lockdep_hardirqs_on+0x9c/0x150
[  211.244856][ T8034]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.244875][ T8034]  ? clear_bhb_loop+0x60/0xb0
[  211.244913][ T8034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.244931][ T8034] RIP: 0033:0x7efe4998d33c
[  211.244953][ T8034] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  211.244966][ T8034] RSP: 002b:00007efe4a872030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  211.244985][ T8034] RAX: ffffffffffffffda RBX: 00007efe49bb5fa0 RCX: 00007efe4998d33c
[  211.244998][ T8034] RDX: 000000000000000f RSI: 00007efe4a8720a0 RDI: 0000000000000004
[  211.245008][ T8034] RBP: 00007efe4a872090 R08: 0000000000000000 R09: 0000000000000000
[  211.245019][ T8034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.245029][ T8034] R13: 0000000000000000 R14: 00007efe49bb5fa0 R15: 00007ffd714e97c8
[  211.245116][ T8034]  </TASK>
[  211.622407][ T8039] netlink: 'syz.0.538': attribute type 10 has an invalid length.
[  211.763470][ T7777] veth1_vlan: entered promiscuous mode
[  211.832069][ T7777] veth0_macvtap: entered promiscuous mode
[  211.847269][ T7777] veth1_macvtap: entered promiscuous mode
[  211.900518][ T7777] batman_adv: batadv0: Interface activated: batadv_slave_0
[  211.957242][ T7777] batman_adv: batadv0: Interface activated: batadv_slave_1
[  212.001212][ T7777] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  212.031497][ T7777] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  212.044872][ T7777] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.056779][ T7777] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.436151][ T8062] netlink: 'syz.1.545': attribute type 17 has an invalid length.
[  213.559477][  T146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.590500][  T146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.657882][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.688937][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.724469][   T13] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  214.744631][ T8090] netlink: 'syz.3.554': attribute type 10 has an invalid length.
[  214.793713][ T8090] __nla_validate_parse: 8 callbacks suppressed
[  214.793732][ T8090] netlink: 40 bytes leftover after parsing attributes in process `syz.3.554'.
[  215.077707][ T8097] netlink: 'syz.0.556': attribute type 2 has an invalid length.
[  215.126481][ T8097] netlink: 51 bytes leftover after parsing attributes in process `syz.0.556'.
[  215.261592][ T6685] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.374285][ T6685] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.425036][ T6685] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.517634][ T6685] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.612968][ T6685] bridge_slave_1: left allmulticast mode
[  215.622898][ T6685] bridge_slave_1: left promiscuous mode
[  215.629052][ T6685] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.644563][ T6685] bridge_slave_0: left allmulticast mode
[  215.650228][ T6685] bridge_slave_0: left promiscuous mode
[  215.657728][ T6685] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.086678][ T8112] netlink: 'syz.4.561': attribute type 27 has an invalid length.
[  216.117615][ T8114] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.560'.
[  216.141932][ T8112] netlink: 2418 bytes leftover after parsing attributes in process `syz.4.561'.
[  216.866136][ T6685] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  216.878085][ T6685] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  216.891820][ T6685] bond0 (unregistering): Released all slaves
[  216.976579][ T8119] bridge0: port 3(bond0) entered blocking state
[  217.008297][ T8119] bridge0: port 3(bond0) entered disabled state
[  217.027605][ T8119] bond0: entered allmulticast mode
[  217.032767][ T8119] bond_slave_0: entered allmulticast mode
[  217.056550][ T8119] bond_slave_1: entered allmulticast mode
[  217.116550][ T8119] bond0: entered promiscuous mode
[  217.121626][ T8119] bond_slave_0: entered promiscuous mode
[  217.153917][ T8119] bond_slave_1: entered promiscuous mode
[  217.161015][ T8119] bridge0: port 3(bond0) entered blocking state
[  217.167513][ T8119] bridge0: port 3(bond0) entered forwarding state
[  217.279609][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.309763][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.321789][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.341676][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.358761][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.714249][ T8138] netlink: 10 bytes leftover after parsing attributes in process `syz.0.566'.
[  218.733324][ T8149] IPv6: NLM_F_CREATE should be specified when creating new route
[  218.761198][ T8149] IPv6: Can't replace route, no match found
[  218.822168][ T8153] netlink: 'syz.4.571': attribute type 10 has an invalid length.
[  218.839364][ T8153] netlink: 40 bytes leftover after parsing attributes in process `syz.4.571'.
[  218.947316][ T6685] hsr_slave_0: left promiscuous mode
[  218.974058][ T6685] hsr_slave_1: left promiscuous mode
[  218.995846][ T6685] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  219.003283][ T6685] batman_adv: batadv0: Removing interface: batadv_slave_0
[  219.018757][ T6685] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  219.026904][ T8156] netlink: 2759 bytes leftover after parsing attributes in process `syz.3.572'.
[  219.039096][ T6685] batman_adv: batadv0: Removing interface: batadv_slave_1
[  219.631904][   T51] Bluetooth: hci1: command tx timeout
[  219.757253][ T6685] veth1_macvtap: left promiscuous mode
[  219.764933][ T6685] veth0_macvtap: left promiscuous mode
[  219.770805][ T6685] veth1_vlan: left promiscuous mode
[  219.776919][ T6685] veth0_vlan: left promiscuous mode
[  220.102815][ T8175] netlink: 'syz.0.578': attribute type 10 has an invalid length.
[  220.116261][ T8175] netlink: 40 bytes leftover after parsing attributes in process `syz.0.578'.
[  220.322774][ T8177] netlink: 'syz.4.579': attribute type 10 has an invalid length.
[  220.336777][ T8177] netlink: 40 bytes leftover after parsing attributes in process `syz.4.579'.
[  220.435403][ T6685] team0 (unregistering): Port device team_slave_1 removed
[  220.473448][ T6685] team0 (unregistering): Port device team_slave_0 removed
[  220.786356][ T8168] bond0: left allmulticast mode
[  220.793610][ T8168] bond_slave_0: left allmulticast mode
[  220.799119][ T8168] bond_slave_1: left allmulticast mode
[  220.813996][ T8168] bond0: left promiscuous mode
[  220.818789][ T8168] bond_slave_0: left promiscuous mode
[  220.825736][ T8168] bond_slave_1: left promiscuous mode
[  220.831618][ T8168] bridge0: port 3(bond0) entered disabled state
[  220.856140][ T8168] bridge_slave_1: left allmulticast mode
[  220.861795][ T8168] bridge_slave_1: left promiscuous mode
[  220.877111][ T8168] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.893463][ T8168] bridge_slave_0: left allmulticast mode
[  220.900325][ T8168] bridge_slave_0: left promiscuous mode
[  220.910252][ T8168] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.663804][ T5845] Bluetooth: hci1: command tx timeout
[  221.823731][ T5845] Bluetooth: hci2: command 0x0406 tx timeout
[  221.829812][ T5845] Bluetooth: hci4: command 0x0406 tx timeout
[  223.744724][ T5845] Bluetooth: hci1: command tx timeout
[  224.241649][ T8196] netlink: 2759 bytes leftover after parsing attributes in process `syz.4.586'.
[  224.299410][ T8199] netlink: 'syz.1.585': attribute type 10 has an invalid length.
[  224.308028][ T8199] netlink: 40 bytes leftover after parsing attributes in process `syz.1.585'.
[  224.779541][ T8129] chnl_net:caif_netlink_parms(): no params data found
[  225.059745][ T8216] netlink: 'syz.3.590': attribute type 39 has an invalid length.
[  225.284302][ T8218] netlink: 'syz.1.592': attribute type 10 has an invalid length.
[  225.292092][ T8218] netlink: 40 bytes leftover after parsing attributes in process `syz.1.592'.
[  225.488446][ T8225] netlink: 'syz.1.594': attribute type 10 has an invalid length.
[  225.533062][ T8225] netlink: 40 bytes leftover after parsing attributes in process `syz.1.594'.
[  225.559421][ T8129] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.581021][ T8129] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.599411][ T8129] bridge_slave_0: entered allmulticast mode
[  225.607950][ T8129] bridge_slave_0: entered promiscuous mode
[  225.636704][ T8227] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.595'.
[  225.653484][ T8229] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  225.664226][ T8129] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.674012][ T8129] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.689486][ T8129] bridge_slave_1: entered allmulticast mode
[  225.699537][ T8129] bridge_slave_1: entered promiscuous mode
[  225.823689][ T5154] Bluetooth: hci1: command tx timeout
[  226.463941][ T8129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  226.507456][ T8129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  226.581650][ T8240] netlink: 2759 bytes leftover after parsing attributes in process `syz.4.598'.
[  226.743788][ T8245] netlink: 'syz.3.601': attribute type 10 has an invalid length.
[  226.790659][ T8129] team0: Port device team_slave_0 added
[  226.854471][ T8129] team0: Port device team_slave_1 added
[  226.897088][ T8245] netlink: 40 bytes leftover after parsing attributes in process `syz.3.601'.
[  227.572252][ T8248] netlink: 'syz.0.600': attribute type 10 has an invalid length.
[  227.591489][ T8255] netlink: 132 bytes leftover after parsing attributes in process `syz.4.602'.
[  227.612932][ T8248] syz_tun: entered promiscuous mode
[  227.661377][ T8248] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  227.677148][ T8129] batman_adv: batadv0: Adding interface: batadv_slave_0
[  227.684869][ T8129] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  227.757837][ T8129] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  227.822074][ T8129] batman_adv: batadv0: Adding interface: batadv_slave_1
[  227.843496][ T8129] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  227.880147][ T8129] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  227.898784][ T8264] netlink: 'syz.4.605': attribute type 10 has an invalid length.
[  227.923118][ T8264] netlink: 40 bytes leftover after parsing attributes in process `syz.4.605'.
[  227.988125][ T8266] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[  227.999290][ T8268] netlink: 203516 bytes leftover after parsing attributes in process `syz.1.607'.
[  228.021116][ T8268] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  228.025188][ T8270] netlink: 'syz.3.608': attribute type 10 has an invalid length.
[  228.030361][ T8268] openvswitch: netlink: Duplicate key (type 0).
[  228.038752][ T8270] netlink: 40 bytes leftover after parsing attributes in process `syz.3.608'.
[  228.170788][ T8129] hsr_slave_0: entered promiscuous mode
[  228.185317][ T8129] hsr_slave_1: entered promiscuous mode
[  228.194743][ T8129] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  228.202514][ T8129] Cannot create hsr debugfs directory
[  228.316228][ T8284] netlink: 4091 bytes leftover after parsing attributes in process `syz.4.613'.
[  228.997563][ T8291] netlink: 'syz.1.615': attribute type 10 has an invalid length.
[  229.159818][ T8295] netlink: 'syz.3.616': attribute type 10 has an invalid length.
[  231.751244][ T8313] netlink: 'syz.0.621': attribute type 10 has an invalid length.
[  231.818422][ T8313] __nla_validate_parse: 1 callbacks suppressed
[  231.818441][ T8313] netlink: 40 bytes leftover after parsing attributes in process `syz.0.621'.
[  232.405924][ T8318] netlink: 4091 bytes leftover after parsing attributes in process `syz.0.624'.
[  232.519401][ T8323] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.626'.
[  232.571970][ T8326] netlink: 1010 bytes leftover after parsing attributes in process `syz.4.625'.
[  232.590367][ T8326] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  232.879575][ T8334] netlink: 'syz.1.628': attribute type 10 has an invalid length.
[  232.902911][ T8334] netlink: 40 bytes leftover after parsing attributes in process `syz.1.628'.
[  233.580697][ T8129] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  233.667470][ T8129] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  236.575358][ T8129] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  236.588343][ T8129] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  236.807439][ T8358] netlink: 'syz.4.634': attribute type 10 has an invalid length.
[  236.827312][ T8358] netlink: 40 bytes leftover after parsing attributes in process `syz.4.634'.
[  236.861803][ T8362] netlink: 60 bytes leftover after parsing attributes in process `syz.1.635'.
[  236.876767][ T8129] 8021q: adding VLAN 0 to HW filter on device bond0
[  236.885551][ T8361] ªªªªªª: renamed from dummy0 (while UP)
[  236.917144][ T8129] 8021q: adding VLAN 0 to HW filter on device team0
[  236.935735][ T2130] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.942915][ T2130] bridge0: port 1(bridge_slave_0) entered forwarding state
[  236.968830][ T2130] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.976051][ T2130] bridge0: port 2(bridge_slave_1) entered forwarding state
[  237.039353][ T8129] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  237.086369][ T8129] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  237.098698][ T8368] netlink: 4091 bytes leftover after parsing attributes in process `syz.4.638'.
[  237.439316][ T8385] netlink: 4 bytes leftover after parsing attributes in process `syz.3.645'.
[  237.472708][ T8385] netlink: 'syz.3.645': attribute type 4 has an invalid length.
[  237.501550][ T8385] netlink: 'syz.3.645': attribute type 1 has an invalid length.
[  237.525959][ T8385] netlink: 'syz.3.645': attribute type 2 has an invalid length.
[  237.534777][ T8388] netlink: 'syz.4.646': attribute type 10 has an invalid length.
[  237.542547][ T8388] netlink: 40 bytes leftover after parsing attributes in process `syz.4.646'.
[  237.573691][ T8385] netlink: 129968 bytes leftover after parsing attributes in process `syz.3.645'.
[  237.615651][ T8385] netlink: 4 bytes leftover after parsing attributes in process `syz.3.645'.
[  237.692785][ T8129] 8021q: adding VLAN 0 to HW filter on device batadv0
[  237.851808][ T8129] veth0_vlan: entered promiscuous mode
[  237.901629][ T8129] veth1_vlan: entered promiscuous mode
[  238.060534][ T8129] veth0_macvtap: entered promiscuous mode
[  238.093056][ T8129] veth1_macvtap: entered promiscuous mode
[  238.138470][ T8129] batman_adv: batadv0: Interface activated: batadv_slave_0
[  238.198540][ T8129] batman_adv: batadv0: Interface activated: batadv_slave_1
[  238.263830][ T8129] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.279707][ T8129] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.315359][ T8129] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.316330][ T8406] netlink: 'syz.1.652': attribute type 10 has an invalid length.
[  238.335123][ T8129] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.351032][ T8406] netlink: 40 bytes leftover after parsing attributes in process `syz.1.652'.
[  239.559205][ T8416] netlink: 'syz.1.655': attribute type 10 has an invalid length.
[  239.568061][ T8416] netlink: 40 bytes leftover after parsing attributes in process `syz.1.655'.
[  240.926690][ T2130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.963584][ T2130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.045197][ T6685] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.066637][ T6685] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.239619][ T8432] netlink: 'syz.1.660': attribute type 10 has an invalid length.
[  241.303943][ T8432] netlink: 40 bytes leftover after parsing attributes in process `syz.1.660'.
[  270.084733][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  270.091161][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  270.129280][ T6685] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  324.247143][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  324.266884][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  353.687376][ T5845] Bluetooth: hci1: command 0x0406 tx timeout
[  402.122487][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  402.163769][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  420.192218][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 131s! [syz.4.661:8435]
[  420.192240][    C1] Modules linked in:
[  420.192265][    C1] irq event stamp: 14421689
[  420.192272][    C1] hardirqs last  enabled at (14421688): [<ffffffff8b661414>] irqentry_exit+0x74/0x90
[  420.192302][    C1] hardirqs last disabled at (14421689): [<ffffffff8b65ff5e>] sysvec_apic_timer_interrupt+0xe/0xc0
[  420.192324][    C1] softirqs last  enabled at (14301462): [<ffffffff8185b17a>] __irq_exit_rcu+0xca/0x1f0
[  420.192350][    C1] softirqs last disabled at (14301465): [<ffffffff8185b17a>] __irq_exit_rcu+0xca/0x1f0
[  420.192385][    C1] CPU: 1 UID: 0 PID: 8435 Comm: syz.4.661 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  420.192403][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  420.192414][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  420.192435][    C1] Code: 74 05 e8 2b 61 5f f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> d3 4a 28 f6 65 8b 05 bc 33 34 07 85 c0 74 40 48 c7 04 24 0e 36
[  420.192449][    C1] RSP: 0018:ffffc90000a087e0 EFLAGS: 00000206
[  420.192463][    C1] RAX: 1b40767dc5812900 RBX: 0000000000000a02 RCX: 1b40767dc5812900
[  420.192475][    C1] RDX: 0000000000000002 RSI: ffffffff8d97cf77 RDI: 0000000000000001
[  420.192485][    C1] RBP: ffffc90000a08870 R08: ffffffff8fa101f7 R09: 1ffffffff1f4203e
[  420.192497][    C1] R10: dffffc0000000000 R11: fffffbfff1f4203f R12: dffffc0000000000
[  420.192509][    C1] R13: dffffc0000000000 R14: ffff888021f39648 R15: 1ffff920001410fc
[  420.192527][    C1] FS:  00007ffb463fc6c0(0000) GS:ffff888125d54000(0000) knlGS:0000000000000000
[  420.192541][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  420.192552][    C1] CR2: 0000000000000000 CR3: 00000000671f6000 CR4: 00000000003526f0
[  420.192566][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  420.192575][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  420.192585][    C1] Call Trace:
[  420.192593][    C1]  <IRQ>
[  420.192606][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  420.192650][    C1]  ? skb_queue_tail+0x30/0xf0
[  420.192691][    C1]  ieee80211_rx_irqsafe+0x55/0xd0
[  420.192722][    C1]  mac80211_hwsim_rx+0x279/0x630
[  420.192740][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x164/0x180
[  420.192784][    C1]  ? __pfx_mac80211_hwsim_rx+0x10/0x10
[  420.192813][    C1]  ? mac80211_hwsim_tx_frame_no_nl+0xce6/0x11c0
[  420.192868][    C1]  mac80211_hwsim_tx_frame_no_nl+0xd46/0x11c0
[  420.192956][    C1]  ? __pfx_mac80211_hwsim_tx_frame_no_nl+0x10/0x10
[  420.193043][    C1]  ? mac80211_hwsim_tx_frame_no_nl+0x5/0x11c0
[  420.193081][    C1]  mac80211_hwsim_tx_frame+0x1b5/0x200
[  420.193124][    C1]  mac80211_hwsim_beacon_tx+0x3f0/0x860
[  420.193156][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  420.193194][    C1]  __iterate_interfaces+0x2a8/0x590
[  420.193222][    C1]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  420.193246][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  420.193272][    C1]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  420.193296][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  420.193332][    C1]  mac80211_hwsim_beacon+0xbb/0x1c0
[  420.193360][    C1]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  420.193383][    C1]  __hrtimer_run_queues+0x529/0xc60
[  420.193485][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  420.193506][    C1]  ? read_tsc+0x9/0x20
[  420.193563][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  420.193590][    C1]  handle_softirqs+0x286/0x870
[  420.193632][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  420.193683][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  420.193706][    C1]  ? irq_work_single+0x1ac/0x240
[  420.193748][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  420.193784][    C1]  __irq_exit_rcu+0xca/0x1f0
[  420.193812][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  420.193857][    C1]  ? rcu_is_watching+0x15/0xb0
[  420.193886][    C1]  irq_exit_rcu+0x9/0x30
[  420.193907][    C1]  sysvec_irq_work+0xa3/0xc0
[  420.193926][    C1]  </IRQ>
[  420.193932][    C1]  <TASK>
[  420.193944][    C1]  asm_sysvec_irq_work+0x1a/0x20
[  420.193961][    C1] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  420.193981][    C1] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 c2 e2 f4 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  420.193993][    C1] RSP: 0018:ffffc90003326b00 EFLAGS: 00000206
[  420.194006][    C1] RAX: 1b40767dc5812900 RBX: 1ffff92000664d68 RCX: 1b40767dc5812900
[  420.194019][    C1] RDX: 0000000000000006 RSI: ffffffff8d97cf77 RDI: ffffffff8be28800
[  420.194029][    C1] RBP: ffffc90003326c00 R08: ffffffff8fa101f7 R09: 1ffffffff1f4203e
[  420.194041][    C1] R10: dffffc0000000000 R11: fffffbfff1f4203f R12: ffffffff8e144400
[  420.194053][    C1] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000002
[  420.194145][    C1]  ? __pfx_perf_trace_lock+0x10/0x10
[  420.194168][    C1]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  420.194208][    C1]  ? trace_call_bpf+0xb7/0x850
[  420.194270][    C1]  __rcu_read_unlock+0x84/0xe0
[  420.194298][    C1]  ? trace_call_bpf+0xb7/0x850
[  420.194321][    C1]  trace_call_bpf+0x5ae/0x850
[  420.194351][    C1]  ? trace_call_bpf+0xb7/0x850
[  420.194401][    C1]  ? __pfx_trace_call_bpf+0x10/0x10
[  420.194431][    C1]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  420.194490][    C1]  perf_trace_run_bpf_submit+0x78/0x170
[  420.194540][    C1]  perf_trace_lock+0x2f8/0x3b0
[  420.194592][    C1]  ? __pfx_perf_trace_lock+0x10/0x10
[  420.194626][    C1]  ? __free_frozen_pages+0x76a/0xe70
[  420.194656][    C1]  ? __free_frozen_pages+0x76a/0xe70
[  420.194679][    C1]  ? __free_frozen_pages+0x793/0xe70
[  420.194698][    C1]  ? __free_frozen_pages+0x793/0xe70
[  420.194725][    C1]  lock_release+0x3b2/0x3e0
[  420.194782][    C1]  _raw_spin_unlock+0x16/0x50
[  420.194803][    C1]  __free_frozen_pages+0x793/0xe70
[  420.194861][    C1]  kasan_populate_vmalloc+0x118/0x1a0
[  420.194911][    C1]  alloc_vmap_area+0xd51/0x1490
[  420.194994][    C1]  ? __pfx_alloc_vmap_area+0x10/0x10
[  420.195016][    C1]  ? __kasan_kmalloc+0x93/0xb0
[  420.195042][    C1]  ? __kmalloc_cache_node_noprof+0x234/0x3d0
[  420.195066][    C1]  ? __get_vm_area_node+0x13f/0x300
[  420.195088][    C1]  ? bpf_check+0x202/0x1a240
[  420.195113][    C1]  __get_vm_area_node+0x1f8/0x300
[  420.195164][    C1]  __vmalloc_node_range_noprof+0x301/0x12f0
[  420.195189][    C1]  ? bpf_check+0x202/0x1a240
[  420.195219][    C1]  ? perf_trace_preemptirq_template+0x280/0x340
[  420.195335][    C1]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  420.195385][    C1]  ? bpf_check+0x202/0x1a240
[  420.195410][    C1]  vzalloc_noprof+0xb2/0xf0
[  420.195434][    C1]  ? bpf_check+0x202/0x1a240
[  420.195465][    C1]  bpf_check+0x202/0x1a240
[  420.195494][    C1]  ? tracing_gen_ctx_irq_test+0xc6/0x160
[  420.195515][    C1]  ? perf_swevent_event+0x33e/0x5e0
[  420.195555][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  420.195580][    C1]  ? __pfx_perf_swevent_event+0x10/0x10
[  420.195607][    C1]  ? perf_trace_buf_alloc+0x131/0x2a0
[  420.195662][    C1]  ? perf_tp_event+0x664/0x1380
[  420.195710][    C1]  ? __pfx_perf_tp_event+0x10/0x10
[  420.195742][    C1]  ? 0xffffffffa02016d0
[  420.195783][    C1]  ? tracing_gen_ctx_irq_test+0xc6/0x160
[  420.195805][    C1]  ? perf_swevent_event+0x33e/0x5e0
[  420.195853][    C1]  ? __pfx_perf_swevent_event+0x10/0x10
[  420.195870][    C1]  ? perf_trace_buf_alloc+0x131/0x2a0
[  420.195936][    C1]  ? perf_tp_event+0x664/0x1380
[  420.195984][    C1]  ? __pfx_perf_tp_event+0x10/0x10
[  420.196010][    C1]  ? trace_call_bpf+0xb7/0x850
[  420.196051][    C1]  ? __pfx_bpf_check+0x10/0x10
[  420.196149][    C1]  ? __pfx_trace_call_bpf+0x10/0x10
[  420.196181][    C1]  ? trace_call_bpf+0x5ba/0x850
[  420.196237][    C1]  ? perf_trace_run_bpf_submit+0x100/0x170
[  420.196283][    C1]  ? perf_trace_run_bpf_submit+0xee/0x170
[  420.196331][    C1]  ? perf_trace_preemptirq_template+0x280/0x340
[  420.196356][    C1]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  420.196377][    C1]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  420.196398][    C1]  ? ktime_get_with_offset+0x8c/0x2a0
[  420.196448][    C1]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  420.196470][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  420.196495][    C1]  ? ktime_get_with_offset+0x8c/0x2a0
[  420.196513][    C1]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  420.196541][    C1]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  420.196615][    C1]  ? bpf_obj_name_cpy+0x194/0x1e0
[  420.196630][    C1]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  420.196646][    C1]  ? security_bpf_prog_load+0x7f/0x310
[  420.196684][    C1]  bpf_prog_load+0x1318/0x1930
[  420.196759][    C1]  ? __pfx_bpf_prog_load+0x10/0x10
[  420.196790][    C1]  ? irqentry_exit+0x74/0x90
[  420.196871][    C1]  ? __sys_bpf+0x260/0x860
[  420.196898][    C1]  ? __sanitizer_cov_trace_switch+0x8f/0x130
[  420.196944][    C1]  __sys_bpf+0x5f1/0x860
[  420.196982][    C1]  ? __pfx___sys_bpf+0x10/0x10
[  420.197000][    C1]  ? bpf_trace_run2+0x322/0x4b0
[  420.197107][    C1]  ? rcu_is_watching+0x15/0xb0
[  420.197148][    C1]  __x64_sys_bpf+0x7c/0x90
[  420.197178][    C1]  do_syscall_64+0xfa/0x3b0
[  420.197208][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.197223][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  420.197239][    C1]  ? clear_bhb_loop+0x60/0xb0
[  420.197272][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.197287][    C1] RIP: 0033:0x7ffb4558e929
[  420.197307][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.197319][    C1] RSP: 002b:00007ffb463fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  420.197335][    C1] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558e929
[  420.197347][    C1] RDX: 0000000000000028 RSI: 000020000000e000 RDI: 0000000000000005
[  420.197357][    C1] RBP: 00007ffb45610b39 R08: 0000000000000000 R09: 0000000000000000
[  420.197367][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.197377][    C1] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  420.197452][    C1]  </TASK>
[  420.197468][    C1] Sending NMI from CPU 1 to CPUs 0:
[  421.171039][    C0] NMI backtrace for cpu 0
[  421.171054][    C0] CPU: 0 UID: 0 PID: 8422 Comm: syz.3.657 Not tainted 6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  421.171072][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.171082][    C0] RIP: 0010:check_preemption_disabled+0x3/0x120
[  421.171107][    C0] Code: e2 8b 48 c7 c6 e0 87 e2 8b eb 1c 66 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 41 57 <41> 56 53 48 83 ec 10 65 48 8b 05 fe 9d 36 07 48 89 44 24 08 65 8b
[  421.171120][    C0] RSP: 0018:ffffc90000006aa0 EFLAGS: 00000002
[  421.171134][    C0] RAX: 0000000000000000 RBX: 0000000000000002 RCX: 35ea9824207e6600
[  421.171144][    C0] RDX: 0000000000010100 RSI: ffffffff8d990ac3 RDI: ffffffff8be28800
[  421.171155][    C0] RBP: ffffc90000006c18 R08: ffffc90000006baf R09: 0000000000000000
[  421.171165][    C0] R10: ffffc90000006ba0 R11: ffffffffa02016d0 R12: 00000000000002e5
[  421.171176][    C0] R13: ffffffff81cb84c7 R14: ffffffff8e13f060 R15: ffff88802fb43c00
[  421.171187][    C0] FS:  0000000000000000(0000) GS:ffff888125c54000(0000) knlGS:0000000000000000
[  421.171200][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  421.171210][    C0] CR2: 00007fa26f5b6038 CR3: 0000000031324000 CR4: 00000000003526f0
[  421.171224][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  421.171233][    C0] DR3: 0000200000000300 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  421.171243][    C0] Call Trace:
[  421.171252][    C0]  <IRQ>
[  421.171264][    C0]  lock_release+0xbc/0x3e0
[  421.171301][    C0]  ? trace_call_bpf+0xb7/0x850
[  421.171324][    C0]  trace_call_bpf+0x5a9/0x850
[  421.171348][    C0]  ? trace_call_bpf+0xb7/0x850
[  421.171371][    C0]  ? perf_trace_lock+0x18d/0x3b0
[  421.171401][    C0]  ? __pfx_trace_call_bpf+0x10/0x10
[  421.171425][    C0]  ? __pfx_perf_trace_lock+0x10/0x10
[  421.171437][    C0]  ? migrate_enable+0x29c/0x3c0
[  421.171473][    C0]  perf_trace_run_bpf_submit+0x78/0x170
[  421.171506][    C0]  perf_trace_lock+0x2f8/0x3b0
[  421.171542][    C0]  ? __pfx_perf_trace_lock+0x10/0x10
[  421.171573][    C0]  ? perf_output_begin_forward+0xb1/0xa80
[  421.171596][    C0]  ? rcu_read_unlock+0x87/0xa0
[  421.171612][    C0]  ? rcu_read_unlock+0x87/0xa0
[  421.171631][    C0]  lock_release+0x3b2/0x3e0
[  421.171672][    C0]  rcu_read_unlock+0x93/0xa0
[  421.171688][    C0]  perf_output_begin_forward+0x9bc/0xa80
[  421.171705][    C0]  ? perf_swevent_get_recursion_context+0xa6/0x100
[  421.171734][    C0]  ? perf_arch_instruction_pointer+0x97/0x300
[  421.171766][    C0]  ? perf_prepare_sample+0x1a04/0x2350
[  421.171784][    C0]  ? __pfx_perf_output_begin_forward+0x10/0x10
[  421.171803][    C0]  ? perf_event_output_forward+0x8f/0x430
[  421.171825][    C0]  ? perf_event_output_forward+0x8f/0x430
[  421.171848][    C0]  ? perf_trace_buf_alloc+0x131/0x2a0
[  421.171895][    C0]  perf_event_output_forward+0x2b2/0x430
[  421.171917][    C0]  ? perf_event_output_forward+0x8f/0x430
[  421.171935][    C0]  ? __pfx_perf_event_output_forward+0x10/0x10
[  421.171990][    C0]  ? __perf_event_account_interrupt+0x179/0x250
[  421.172017][    C0]  __perf_event_overflow+0x7cf/0xe10
[  421.172060][    C0]  ? __pfx___perf_event_overflow+0x10/0x10
[  421.172082][    C0]  ? __pfx_cpu_clock_event_update+0x10/0x10
[  421.172126][    C0]  perf_swevent_hrtimer+0x3c5/0x550
[  421.172158][    C0]  ? __pfx_perf_swevent_hrtimer+0x10/0x10
[  421.172195][    C0]  ? __pv_queued_spin_lock_slowpath+0x6ce/0xb60
[  421.172261][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  421.172281][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  421.172313][    C0]  ? __pfx_perf_swevent_hrtimer+0x10/0x10
[  421.172332][    C0]  ? __pfx_perf_swevent_hrtimer+0x10/0x10
[  421.172349][    C0]  __hrtimer_run_queues+0x4dd/0xc60
[  421.172372][    C0]  ? ktime_get_update_offsets_now+0x60/0x3d0
[  421.172438][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  421.172461][    C0]  ? ktime_get_update_offsets_now+0x3ab/0x3d0
[  421.172480][    C0]  ? sched_clock_cpu+0x74/0x430
[  421.172520][    C0]  hrtimer_interrupt+0x45b/0xaa0
[  421.172609][    C0]  __sysvec_apic_timer_interrupt+0x108/0x410
[  421.172631][    C0]  sysvec_apic_timer_interrupt+0x52/0xc0
[  421.172654][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  421.172670][    C0] RIP: 0010:__pv_queued_spin_lock_slowpath+0x6ce/0xb60
[  421.172689][    C0] Code: ff ff 66 c7 84 24 90 00 00 00 00 01 48 b8 00 00 00 00 00 fc ff df 48 8b 4c 24 20 0f b6 04 01 84 c0 75 46 80 3b 00 74 09 f3 90 <41> ff c6 75 d3 eb 4b 48 89 df be 02 00 00 00 e8 3e 85 bb f6 48 8d
[  421.172701][    C0] RSP: 0018:ffffc90000007780 EFLAGS: 00000206
[  421.172714][    C0] RAX: 0000000000000000 RBX: ffffffff8ed702e0 RCX: 1ffffffff1dae05c
[  421.172724][    C0] RDX: 0000000000000100 RSI: ffffffff8d97cf77 RDI: ffff8880b863c894
[  421.172735][    C0] RBP: ffffc90000007898 R08: ffffffff8fa101f7 R09: 1ffffffff1f4203e
[  421.172746][    C0] R10: dffffc0000000000 R11: fffffbfff1f4203f R12: 1ffffffff1bf5318
[  421.172757][    C0] R13: 0000000000000000 R14: 00000000ffffc507 R15: 1ffffffff1dae05c
[  421.172825][    C0]  ? ktime_get_with_offset+0x8c/0x2a0
[  421.172846][    C0]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  421.172879][    C0]  ? __lock_acquire+0xab9/0xd20
[  421.172918][    C0]  queued_spin_lock_slowpath+0x43/0x50
[  421.172939][    C0]  do_raw_spin_lock+0x21f/0x290
[  421.172955][    C0]  ? mac80211_hwsim_tx_frame_no_nl+0x718/0x11c0
[  421.172983][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  421.172998][    C0]  ? perf_trace_preemptirq_template+0xa3/0x340
[  421.173044][    C0]  mac80211_hwsim_tx_frame_no_nl+0x718/0x11c0
[  421.173076][    C0]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  421.173101][    C0]  ? ktime_get_with_offset+0x8c/0x2a0
[  421.173116][    C0]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  421.173142][    C0]  ? __pfx_mac80211_hwsim_tx_frame_no_nl+0x10/0x10
[  421.173161][    C0]  ? perf_trace_preemptirq_template+0xa3/0x340
[  421.173212][    C0]  ? mac80211_hwsim_monitor_rx+0x1d7/0x880
[  421.173247][    C0]  mac80211_hwsim_tx_frame+0x1b5/0x200
[  421.173279][    C0]  mac80211_hwsim_beacon_tx+0x3f0/0x860
[  421.173305][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  421.173334][    C0]  __iterate_interfaces+0x2a8/0x590
[  421.173356][    C0]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  421.173376][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  421.173401][    C0]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  421.173422][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  421.173450][    C0]  mac80211_hwsim_beacon+0xbb/0x1c0
[  421.173472][    C0]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  421.173491][    C0]  __hrtimer_run_queues+0x529/0xc60
[  421.173560][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  421.173579][    C0]  ? read_tsc+0x9/0x20
[  421.173622][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  421.173650][    C0]  handle_softirqs+0x286/0x870
[  421.173683][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  421.173721][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  421.173756][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  421.173783][    C0]  __irq_exit_rcu+0xca/0x1f0
[  421.173807][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  421.173851][    C0]  irq_exit_rcu+0x9/0x30
[  421.173870][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  421.173890][    C0]  </IRQ>
[  421.173895][    C0]  <TASK>
[  421.173904][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  421.173919][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x0/0x90
[  421.173938][    C0] Code: 7c 11 10 48 89 74 11 18 48 89 44 11 20 e9 88 73 a8 09 cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 08 c0 9c 92 65 8b 15 e8 59
[  421.173950][    C0] RSP: 0018:ffffc9000bc37398 EFLAGS: 00000246
[  421.173962][    C0] RAX: 1ffffd400034c419 RBX: 0000000000000000 RCX: ffff88802fb43c00
[  421.173973][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  421.173981][    C0] RBP: ffffc9000bc37650 R08: ffffc9000bc3710f R09: 0000000000000000
[  421.173992][    C0] R10: ffffc9000bc37100 R11: ffffffffa02016d0 R12: ffffea0001a620d8
[  421.174003][    C0] R13: dffffc0000000000 R14: ffff888024606600 R15: 8000000069883007
[  421.174027][    C0]  ? 0xffffffffa02016d0
[  421.174069][    C0]  unmap_page_range+0x1ce0/0x41c0
[  421.174144][    C0]  ? perf_trace_preemptirq_template+0xa3/0x340
[  421.174218][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[  421.174279][    C0]  unmap_vmas+0x399/0x580
[  421.174322][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  421.174409][    C0]  exit_mmap+0x248/0xb50
[  421.174430][    C0]  ? uprobe_clear_state+0x20f/0x290
[  421.174460][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  421.174473][    C0]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  421.174525][    C0]  ? __pfx_exit_aio+0x10/0x10
[  421.174572][    C0]  ? uprobe_clear_state+0x274/0x290
[  421.174607][    C0]  __mmput+0x118/0x420
[  421.174637][    C0]  exit_mm+0x1da/0x2c0
[  421.174665][    C0]  ? __pfx_exit_mm+0x10/0x10
[  421.174692][    C0]  ? rcu_is_watching+0x15/0xb0
[  421.174720][    C0]  do_exit+0x640/0x22e0
[  421.174756][    C0]  ? do_raw_spin_lock+0x121/0x290
[  421.174781][    C0]  ? __pfx_do_exit+0x10/0x10
[  421.174795][    C0]  ? perf_trace_preemptirq_template+0xa3/0x340
[  421.174814][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  421.174837][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  421.174884][    C0]  do_group_exit+0x21c/0x2d0
[  421.174904][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  421.174931][    C0]  get_signal+0x1286/0x1340
[  421.175005][    C0]  arch_do_signal_or_restart+0x9a/0x750
[  421.175043][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  421.175100][    C0]  ? exit_to_user_mode_loop+0x40/0x110
[  421.175130][    C0]  exit_to_user_mode_loop+0x75/0x110
[  421.175155][    C0]  do_syscall_64+0x2bd/0x3b0
[  421.175179][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.175193][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  421.175207][    C0]  ? clear_bhb_loop+0x60/0xb0
[  421.175233][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.175248][    C0] RIP: 0033:0x7efe4998e929
[  421.175262][    C0] Code: Unable to access opcode bytes at 0x7efe4998e8ff.
[  421.175270][    C0] RSP: 002b:00007efe4a8720e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  421.175284][    C0] RAX: 0000000000000001 RBX: 00007efe49bb5fa8 RCX: 00007efe4998e929
[  421.175294][    C0] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efe49bb5fac
[  421.175304][    C0] RBP: 00007efe49bb5fa0 R08: 7fffffffffffffff R09: 0000000000000000
[  421.175314][    C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007efe49bb5fac
[  421.175325][    C0] R13: 0000000000000000 R14: 00007ffd714e96e0 R15: 00007ffd714e97c8
[  421.175374][    C0]  </TASK>
[  421.176036][    C1] Kernel panic - not syncing: softlockup: hung tasks
[  421.176053][    C1] CPU: 1 UID: 0 PID: 8435 Comm: syz.4.661 Tainted: G             L      6.15.0-syzkaller-gf66b4aaff254 #0 PREEMPT(full) 
[  421.176077][    C1] Tainted: [L]=SOFTLOCKUP
[  421.176085][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.176096][    C1] Call Trace:
[  421.176108][    C1]  <IRQ>
[  421.176118][    C1]  dump_stack_lvl+0x99/0x250
[  421.176148][    C1]  ? __asan_memcpy+0x40/0x70
[  421.176179][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  421.176210][    C1]  ? __pfx__printk+0x10/0x10
[  421.176282][    C1]  panic+0x2db/0x790
[  421.176333][    C1]  ? __pfx_panic+0x10/0x10
[  421.176365][    C1]  ? nmi_backtrace_stall_check+0x433/0x440
[  421.176454][    C1]  watchdog_timer_fn+0x862/0x870
[  421.176494][    C1]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  421.176527][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  421.176551][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  421.176596][    C1]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  421.176626][    C1]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  421.176657][    C1]  __hrtimer_run_queues+0x4dd/0xc60
[  421.176684][    C1]  ? ktime_get_update_offsets_now+0x60/0x3d0
[  421.176772][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  421.176800][    C1]  ? ktime_get_update_offsets_now+0x3ab/0x3d0
[  421.176823][    C1]  ? sched_clock_cpu+0x74/0x430
[  421.176878][    C1]  hrtimer_interrupt+0x45b/0xaa0
[  421.177005][    C1]  __sysvec_apic_timer_interrupt+0x108/0x410
[  421.177035][    C1]  sysvec_apic_timer_interrupt+0x52/0xc0
[  421.177061][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  421.177080][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  421.177100][    C1] Code: 74 05 e8 2b 61 5f f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> d3 4a 28 f6 65 8b 05 bc 33 34 07 85 c0 74 40 48 c7 04 24 0e 36
[  421.177115][    C1] RSP: 0018:ffffc90000a087e0 EFLAGS: 00000206
[  421.177131][    C1] RAX: 1b40767dc5812900 RBX: 0000000000000a02 RCX: 1b40767dc5812900
[  421.177145][    C1] RDX: 0000000000000002 RSI: ffffffff8d97cf77 RDI: 0000000000000001
[  421.177157][    C1] RBP: ffffc90000a08870 R08: ffffffff8fa101f7 R09: 1ffffffff1f4203e
[  421.177170][    C1] R10: dffffc0000000000 R11: fffffbfff1f4203f R12: dffffc0000000000
[  421.177184][    C1] R13: dffffc0000000000 R14: ffff888021f39648 R15: 1ffff920001410fc
[  421.177262][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  421.177303][    C1]  ? skb_queue_tail+0x30/0xf0
[  421.177345][    C1]  ieee80211_rx_irqsafe+0x55/0xd0
[  421.177375][    C1]  mac80211_hwsim_rx+0x279/0x630
[  421.177393][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x164/0x180
[  421.177437][    C1]  ? __pfx_mac80211_hwsim_rx+0x10/0x10
[  421.177465][    C1]  ? mac80211_hwsim_tx_frame_no_nl+0xce6/0x11c0
[  421.177518][    C1]  mac80211_hwsim_tx_frame_no_nl+0xd46/0x11c0
[  421.177603][    C1]  ? __pfx_mac80211_hwsim_tx_frame_no_nl+0x10/0x10
[  421.177692][    C1]  ? mac80211_hwsim_tx_frame_no_nl+0x5/0x11c0
[  421.177730][    C1]  mac80211_hwsim_tx_frame+0x1b5/0x200
[  421.177773][    C1]  mac80211_hwsim_beacon_tx+0x3f0/0x860
[  421.177805][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  421.177843][    C1]  __iterate_interfaces+0x2a8/0x590
[  421.177872][    C1]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  421.177896][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  421.177923][    C1]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  421.177948][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  421.177985][    C1]  mac80211_hwsim_beacon+0xbb/0x1c0
[  421.178013][    C1]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  421.178038][    C1]  __hrtimer_run_queues+0x529/0xc60
[  421.178135][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  421.178157][    C1]  ? read_tsc+0x9/0x20
[  421.178217][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  421.178254][    C1]  handle_softirqs+0x286/0x870
[  421.178297][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  421.178347][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  421.178371][    C1]  ? irq_work_single+0x1ac/0x240
[  421.178412][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  421.178449][    C1]  __irq_exit_rcu+0xca/0x1f0
[  421.178477][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  421.178521][    C1]  ? rcu_is_watching+0x15/0xb0
[  421.178550][    C1]  irq_exit_rcu+0x9/0x30
[  421.178572][    C1]  sysvec_irq_work+0xa3/0xc0
[  421.178594][    C1]  </IRQ>
[  421.178601][    C1]  <TASK>
[  421.178615][    C1]  asm_sysvec_irq_work+0x1a/0x20
[  421.178633][    C1] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  421.178658][    C1] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 c2 e2 f4 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  421.178672][    C1] RSP: 0018:ffffc90003326b00 EFLAGS: 00000206
[  421.178686][    C1] RAX: 1b40767dc5812900 RBX: 1ffff92000664d68 RCX: 1b40767dc5812900
[  421.178696][    C1] RDX: 0000000000000006 RSI: ffffffff8d97cf77 RDI: ffffffff8be28800
[  421.178709][    C1] RBP: ffffc90003326c00 R08: ffffffff8fa101f7 R09: 1ffffffff1f4203e
[  421.178722][    C1] R10: dffffc0000000000 R11: fffffbfff1f4203f R12: ffffffff8e144400
[  421.178735][    C1] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000002
[  421.178823][    C1]  ? __pfx_perf_trace_lock+0x10/0x10
[  421.178847][    C1]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  421.178886][    C1]  ? trace_call_bpf+0xb7/0x850
[  421.178947][    C1]  __rcu_read_unlock+0x84/0xe0
[  421.178975][    C1]  ? trace_call_bpf+0xb7/0x850
[  421.178999][    C1]  trace_call_bpf+0x5ae/0x850
[  421.179029][    C1]  ? trace_call_bpf+0xb7/0x850
[  421.179079][    C1]  ? __pfx_trace_call_bpf+0x10/0x10
[  421.179108][    C1]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  421.179166][    C1]  perf_trace_run_bpf_submit+0x78/0x170
[  421.179210][    C1]  perf_trace_lock+0x2f8/0x3b0
[  421.179261][    C1]  ? __pfx_perf_trace_lock+0x10/0x10
[  421.179296][    C1]  ? __free_frozen_pages+0x76a/0xe70
[  421.179325][    C1]  ? __free_frozen_pages+0x76a/0xe70
[  421.179349][    C1]  ? __free_frozen_pages+0x793/0xe70
[  421.179370][    C1]  ? __free_frozen_pages+0x793/0xe70
[  421.179396][    C1]  lock_release+0x3b2/0x3e0
[  421.179452][    C1]  _raw_spin_unlock+0x16/0x50
[  421.179474][    C1]  __free_frozen_pages+0x793/0xe70
[  421.179530][    C1]  kasan_populate_vmalloc+0x118/0x1a0
[  421.179580][    C1]  alloc_vmap_area+0xd51/0x1490
[  421.179666][    C1]  ? __pfx_alloc_vmap_area+0x10/0x10
[  421.179688][    C1]  ? __kasan_kmalloc+0x93/0xb0
[  421.179715][    C1]  ? __kmalloc_cache_node_noprof+0x234/0x3d0
[  421.179739][    C1]  ? __get_vm_area_node+0x13f/0x300
[  422.801017][    C1]  ? bpf_check+0x202/0x1a240
[  422.805639][    C1]  __get_vm_area_node+0x1f8/0x300
[  422.810724][    C1]  __vmalloc_node_range_noprof+0x301/0x12f0
[  422.816642][    C1]  ? bpf_check+0x202/0x1a240
[  422.821292][    C1]  ? perf_trace_preemptirq_template+0x280/0x340
[  422.827657][    C1]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  422.834035][    C1]  ? bpf_check+0x202/0x1a240
[  422.838652][    C1]  vzalloc_noprof+0xb2/0xf0
[  422.843179][    C1]  ? bpf_check+0x202/0x1a240
[  422.847807][    C1]  bpf_check+0x202/0x1a240
[  422.852257][    C1]  ? tracing_gen_ctx_irq_test+0xc6/0x160
[  422.857911][    C1]  ? perf_swevent_event+0x33e/0x5e0
[  422.863145][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  422.868370][    C1]  ? __pfx_perf_swevent_event+0x10/0x10
[  422.873942][    C1]  ? perf_trace_buf_alloc+0x131/0x2a0
[  422.879364][    C1]  ? perf_tp_event+0x664/0x1380
[  422.884271][    C1]  ? __pfx_perf_tp_event+0x10/0x10
[  422.889417][    C1]  ? 0xffffffffa02016d0
[  422.893619][    C1]  ? tracing_gen_ctx_irq_test+0xc6/0x160
[  422.899272][    C1]  ? perf_swevent_event+0x33e/0x5e0
[  422.904513][    C1]  ? __pfx_perf_swevent_event+0x10/0x10
[  422.910071][    C1]  ? perf_trace_buf_alloc+0x131/0x2a0
[  422.915506][    C1]  ? perf_tp_event+0x664/0x1380
[  422.920400][    C1]  ? __pfx_perf_tp_event+0x10/0x10
[  422.925552][    C1]  ? trace_call_bpf+0xb7/0x850
[  422.930368][    C1]  ? __pfx_bpf_check+0x10/0x10
[  422.935235][    C1]  ? __pfx_trace_call_bpf+0x10/0x10
[  422.940476][    C1]  ? trace_call_bpf+0x5ba/0x850
[  422.945386][    C1]  ? perf_trace_run_bpf_submit+0x100/0x170
[  422.951249][    C1]  ? perf_trace_run_bpf_submit+0xee/0x170
[  422.957108][    C1]  ? perf_trace_preemptirq_template+0x280/0x340
[  422.963376][    C1]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  422.969642][    C1]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  422.976266][    C1]  ? ktime_get_with_offset+0x8c/0x2a0
[  422.981691][    C1]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  422.987949][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  422.993169][    C1]  ? ktime_get_with_offset+0x8c/0x2a0
[  422.998556][    C1]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  423.004817][    C1]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  423.011480][    C1]  ? bpf_obj_name_cpy+0x194/0x1e0
[  423.016534][    C1]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  423.021758][    C1]  ? security_bpf_prog_load+0x7f/0x310
[  423.027262][    C1]  bpf_prog_load+0x1318/0x1930
[  423.032111][    C1]  ? __pfx_bpf_prog_load+0x10/0x10
[  423.037259][    C1]  ? irqentry_exit+0x74/0x90
[  423.041938][    C1]  ? __sys_bpf+0x260/0x860
[  423.046377][    C1]  ? __sanitizer_cov_trace_switch+0x8f/0x130
[  423.052400][    C1]  __sys_bpf+0x5f1/0x860
[  423.056682][    C1]  ? __pfx___sys_bpf+0x10/0x10
[  423.061463][    C1]  ? bpf_trace_run2+0x322/0x4b0
[  423.066419][    C1]  ? rcu_is_watching+0x15/0xb0
[  423.071224][    C1]  __x64_sys_bpf+0x7c/0x90
[  423.075674][    C1]  do_syscall_64+0xfa/0x3b0
[  423.080205][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.086289][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  423.092454][    C1]  ? clear_bhb_loop+0x60/0xb0
[  423.097160][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.103063][    C1] RIP: 0033:0x7ffb4558e929
[  423.107495][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.127118][    C1] RSP: 002b:00007ffb463fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  423.135556][    C1] RAX: ffffffffffffffda RBX: 00007ffb457b5fa0 RCX: 00007ffb4558e929
[  423.143545][    C1] RDX: 0000000000000028 RSI: 000020000000e000 RDI: 0000000000000005
[  423.151532][    C1] RBP: 00007ffb45610b39 R08: 0000000000000000 R09: 0000000000000000
[  423.159512][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.167493][    C1] R13: 0000000000000000 R14: 00007ffb457b5fa0 R15: 00007ffeb58f13d8
[  423.175540][    C1]  </TASK>
[  423.178814][    C1] Kernel Offset: disabled
[  423.183136][    C1] Rebooting in 86400 seconds..