last executing test programs:

7.236299478s ago: executing program 4 (id=1120):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="b7020000f7ffffffbfa70000000000002402000020fe29817a0af0fff8ffffff69a4f0ff00000000b70600000018d1fe2d6405000000000075040000000000400704000000000000b7040000100000206a0700fe000000008500000005000000b70000000a00000095000000000000000000c2c62f6004ad13aa957e2af5e49a53c2868f0399d909a63796c113a80c19aab9d607000000b6c9483be3f0d3253730e714c46cc4f79fd2b316da4f0de8163f6242fa7323f1740637c48468766af540439fce41f144631ac262dcae18c3d1a1fbe96dc86035b44174f7c0620254ab6d285e6b343185089a0f119e31975e551558050800000000000000125d67857f290870093f38153608561a2128a79cce912d1f05de330800a9f5422bee8ca49166f6a587f2f593775afcd071efc5a972f757521b7b38ec273c2ad3e406f8c124f7dc1c4553229a69df4b2780e6da4420d71489fe383e0b5ce08b750502f2b8add8d2dddde19ac050537e973782b4053150580035fb2c579e1b2100000033d1ee8cab6d236f05b1f7b9f78fd5abfe033eb79f7a0b498366f5edfe311258016fbf47d9c85bf5325bf61419372be377022433e20900a262b20bb8b36de7b0e6c5ebfc5baec1ebe58d4af587d33e2935ad68da6e0fea5c21301f5d002b51a5b60fc741cb2c5d4cd5e896774f9293a6435558795043404ac6eafc8310fbcacca7f971b260fd06d4590ded8429fcd1c9a8dbbdedb32675388df363c0bc536e00448208b72405ebf27ddb402e5a2d675aaad92e183cef1eadc1661140fb567b55c72907a1aca75277a5f0022b1e957ba737f10f1161c5ae6e2cc64072ff3b4e76084922242e63d4b7806e30f786cff147e4bc819060678319a0e5534f5a0db52526c30000000000000000000000a63705b1a60525620acca06d57c055059df7651768310c9085c5f86be6ab819506961ad51f18b35fdc3fd4d0a0dbbdcd494ef168931f27748787bee95d739fef7ee67dd21c34647de82707e41d7db6d981a4fcf0bbd3d38ebb7a2489e28c6b28c0f70092ffb016b7766399555f3e6b538c2c862d17e53eaeb2036f9f0ab6e95e71bda4b5bbf53344264ad93bac1207b31d6e9c78181c7fe204c0b7582d1c762857f2a2e0c60f4a4855591a4f70f94df9629e470701103c40c8f6d3a3068091d62b58999e0a046f9509cb8ddc2a9ad4e0f1f85e5f076218b4b931acdff0c34fc5bdbad17ec481f1c9b17727c14e053e315d0d8d03c24ddaba65c5ce5b1aa04d1f767e25662b155d49460ec720d54044ac2856c11407835f341e2614bcae270000000001000000df7f736aab5d713240b2f40ec7be8251eba969686b2670ddc1a84df6ab12ab3e0cf8747837062233935704ebbd943ef0c5fef29513c7c1d6d2611796dccb45bdfd9e6533ad3574be5b9ea70e0c3b41a32067c03f5f8ed147cd0655c90d656f66eaed18a3c284c4f19417b5d91431759356db5d45ea40c9866957105b6252b0c028c672049ce163126f143f5758faf2a43f4c4f45a69b4e9113f85ae531085c11c75edbdee5af454757cdaff396c15ab9b210c202ffaea96d1bac60c6d6c56a4babc659858789bd479334e13e1c7876f95429431e61400815788c1397b260600d78e7513c58d9ac9474d392cc06f789753e1e7ebf5f1b55e2a64b9150c6580bf48e7bff763034801cccf403108d127b959ffc425a563ea2b90fbe779fd7d2ebfe94"], &(0x7f0000000280)='GPL\x00'}, 0x48)
r1 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000080)=0xffffffffffffffff, 0x4)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r1}, 0x8)
ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, &(0x7f0000000040)=r0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000004c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f00000003c0)=r0}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002780)={0x28, 0x40, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @fd}]}, @nested={0x4, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r6 = syz_clone(0x480, 0x0, 0xfffffdd5, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xff, 0x20, 0x38, 0x1, 0x0, 0x0, 0x11a50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0xe284, 0xfffffffffffffffe}, 0x1a1a8, 0x4000000, 0x2, 0x8, 0xfffffffffffffffb, 0x6, 0xd9f, 0x0, 0x20000, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r7, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)
socket$kcm(0x10, 0x2, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000005c0)={r3, 0x58, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000600)={0x6, <r10=>0x0}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000380)={@ifindex=r9, r0, 0xa, 0x2033, r8, @void, @void, @value=r10}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xa, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x4}, {0x7, 0x0, 0xa}, {0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x1d}, {0x18, 0x9}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xc, 0x9, 0x4}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r6, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000440)={0x4, 0x80, 0x7, 0x1, 0x7, 0xff, 0x0, 0x3, 0x4c8, 0xc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f00000000c0), 0x6}, 0x18001, 0x7fffffffffffffff, 0x7, 0x8, 0x7, 0x2, 0x7, 0x0, 0xf50c, 0x0, 0xc}, r6, 0x5, 0xffffffffffffffff, 0x2)
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000200)={'veth0_to_bond\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r4}, &(0x7f0000000100)=0xa00, &(0x7f0000000300)}, 0x20)

5.985522449s ago: executing program 4 (id=1128):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x3, 0x4, 0x3fe, 0x7ffffffc, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket$kcm(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x81, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x2}, 0x50)
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x2, 0x0, 0x0, 0x0, 0x9, 0x4022, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0xfffffffc, 0x5, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd8}, 0x40008000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60}, 0x50)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_to_bond\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8946, &(0x7f0000000080))
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r5, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xaf, 0x0, 0xfffffffffffffe81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg$can_raw(r6, &(0x7f0000000e00)={&(0x7f0000000340)=@rc={0x1f, @none}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000140)=""/31, 0x1f}, {&(0x7f00000006c0)=""/53, 0x35}, {&(0x7f0000000b00)=""/104, 0x68}, {&(0x7f0000000b80)=""/172, 0xac}, {&(0x7f0000000c40)=""/111, 0x6f}, {&(0x7f0000000700)=""/11, 0xb}], 0x6, &(0x7f0000000d40)=""/132, 0x84}, 0x40000021)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r5, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x70bd2e, 0x0, {0x0, 0x0, 0x12, r7, {0x0, 0x7}, {0xffff, 0xffff}, {0x2}}}, 0x24}}, 0x4000010)

4.963361155s ago: executing program 4 (id=1135):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000002e00010026bdf000fcdbdf1b04000000040010"], 0x18}}, 0x1844)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x24004044) (async)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x24004044)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180), 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
close(0x3)
ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x6)
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={0x0, 0xf}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="07000000040000000001000005"], 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="07000000040000000001000005"], 0x50)
socket$inet(0x2, 0x3, 0x1)
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000005c00)={0x0, 0x0, &(0x7f0000005bc0)={0x0, 0x268}, 0x1, 0x0, 0x0, 0x2000c880}, 0x4004040) (async)
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000005c00)={0x0, 0x0, &(0x7f0000005bc0)={0x0, 0x268}, 0x1, 0x0, 0x0, 0x2000c880}, 0x4004040)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x1, 0x0, 0x4, 0x8, 0x0, 0x117be, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x7, 0x8}, 0x270, 0x3, 0x1, 0x2, 0x5, 0x8, 0x3, 0x0, 0x85a, 0x0, 0xffffffff}, r0, 0xfffffffffffffffd, r4, 0x0) (async)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x1, 0x0, 0x4, 0x8, 0x0, 0x117be, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x7, 0x8}, 0x270, 0x3, 0x1, 0x2, 0x5, 0x8, 0x3, 0x0, 0x85a, 0x0, 0xffffffff}, r0, 0xfffffffffffffffd, r4, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000380), 0x4)
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000e00)=@newtaction={0x70, 0x30, 0x53b, 0x4, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x9, 0x0, 0x20000000, 0xfffffffc, 0x3ff}}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x7}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x2}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x4}}}]}]}, 0x70}}, 0x0) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000e00)=@newtaction={0x70, 0x30, 0x53b, 0x4, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x9, 0x0, 0x20000000, 0xfffffffc, 0x3ff}}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x7}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x2}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x4}}}]}]}, 0x70}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x18)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r6 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x9c, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2, 0x0, 0xffff}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_TUPLE_ORIG={0x5c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @private2}}}]}, @CTA_TUPLE_REPLY={0x4}, @CTA_TUPLE_MASTER={0x20, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}]}]}, 0x9c}}, 0x40) (async)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x9c, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2, 0x0, 0xffff}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_TUPLE_ORIG={0x5c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @private2}}}]}, @CTA_TUPLE_REPLY={0x4}, @CTA_TUPLE_MASTER={0x20, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}]}]}, 0x9c}}, 0x40)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, 0xffffffffffffffff) (async)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="1900"], 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="1900"], 0x50)

3.205069611s ago: executing program 4 (id=1144):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00'}, 0x48)
r1 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000080)=0xffffffffffffffff, 0x4)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r1}, 0x8)
ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, &(0x7f0000000040)=r0)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000004c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f00000003c0)=r0}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002780)={0x28, 0x40, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @fd}]}, @nested={0x4, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r6 = syz_clone(0x480, 0x0, 0xfffffdd5, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xff, 0x20, 0x38, 0x1, 0x0, 0x0, 0x11a50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0xe284, 0xfffffffffffffffe}, 0x1a1a8, 0x4000000, 0x2, 0x8, 0xfffffffffffffffb, 0x6, 0xd9f, 0x0, 0x20000, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030017000b63d25a80648c2594f92e24fc60100c02", 0x17}], 0x1}, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000001801"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r7, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe0000180091c8b14a0778a8123d181d"], 0xfe33)
socket$kcm(0x10, 0x2, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000005c0)={r3, 0x58, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000600)={0x6, <r10=>0x0}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000380)={@ifindex=r9, r0, 0xa, 0x2033, r8, @void, @void, @value=r10}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xa, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x4}, {0x7, 0x0, 0xa}, {0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x1d}, {0x18, 0x9}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xc, 0x9, 0x4}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r6, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000440)={0x4, 0x80, 0x7, 0x1, 0x7, 0xff, 0x0, 0x3, 0x4c8, 0xc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f00000000c0), 0x6}, 0x18001, 0x7fffffffffffffff, 0x7, 0x8, 0x7, 0x2, 0x7, 0x0, 0xf50c, 0x0, 0xc}, r6, 0x5, 0xffffffffffffffff, 0x2)
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000200)={'veth0_to_bond\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r4}, &(0x7f0000000100)=0xa00, &(0x7f0000000300)}, 0x20)

3.159462692s ago: executing program 2 (id=1145):
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket$kcm(0x2, 0xa, 0x2)
close(0x3)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8800000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x80002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2000000}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xf8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x890}, 0x20004002)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8993, &(0x7f0000001a80)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12tQ\xb16\xe3\xd7\\b\x8b\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf\xc8>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d')
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r5, 0x6, 0xd, &(0x7f0000001b40), 0x4)
setsockopt$sock_attach_bpf(r5, 0x1, 0x19, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4, 0x3fe, 0x7ffffffc, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)

3.141320501s ago: executing program 3 (id=1146):
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
socket$unix(0x1, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x6, 0x0, 0x2, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0}, 0x103, 0x2, 0x0, 0x4, 0x3fe, 0x8, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket$kcm(0xa, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000007c0))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0x0, 0x0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x3, 0x3, &(0x7f0000000140)=@framed={{0x18, 0x7, 0x0, 0x0, 0xfffffffe}}, &(0x7f0000000040)='GPL\x00', 0x2}, 0x94)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000380)=0xffffffffffffffff, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000060000000410000010"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.843441248s ago: executing program 3 (id=1147):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ab0000000060a010400000000000000000a0000040900010073797a310000000038000480100001800c0001006e6f747261636b00240001800b0001006578746864720000140002800800064000000001080007400000000b0900020073797a32"], 0xd8}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={r0, r0}, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0xc0042, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfefffffc, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x3fe, 0x3, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000540), 0x2, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=@framed={{}, [@printk={@lx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xca}}]}, &(0x7f0000000040)='GPL\x00', 0xd, 0xfe7, &(0x7f0000001e00)=""/4071}, 0x90)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={0x0, 0x0, 0x43}, 0x28)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r3, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000080)=@framed, &(0x7f00000000c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', r4}, 0x94)
r6 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000540)={r5, r4, 0x25, 0x8, @void}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={0x0}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)
sendmsg$NFNL_MSG_COMPAT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x881}, 0xfec4297716399c86)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r6, 0x0, 0x1000, 0x4a, &(0x7f0000002e00)="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", &(0x7f0000000580)=""/74, 0x19, 0x0, 0xc5, 0x15, &(0x7f0000000600)="ede4af839387c371773f32f3259ea542498708e8eb54959e510b46d6eaba84004da6f9c3e80f31a4098b714bf9b232742f75088806248d55f6fed90f417261bccbe5227edda6379c95aa5c34403d0d242d8599bf0970a01507128fad435753befcd8c502dbfed9ef2dee4add72af42069a930b1a86b2db209e2b0997c6b8a81a0a1d2eb3b7d9270112d9aac2759ac9561b0198aec2896dd75c51b91ff6ac4987607b3cb3309df10778c67ba5c97b67badad9d0cac5fbf37a85c66319a5b2e2e3767698ade7", &(0x7f0000000100)="041b5484b28151b0e7f1d7601bfaa4630020a6b0f7", 0x6, 0x0, 0x328}, 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000001000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x9, [@struct={0x4, 0x0, 0x0, 0x4, 0x0, 0x1}, @enum={0x6, 0x2, 0x0, 0x6, 0x4, [{0x1, 0x100}, {0x6}]}]}, {0x0, [0x61, 0x0, 0x2e, 0x2e, 0x30, 0x2e, 0x2e]}}, 0x0, 0x49}, 0x28)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SET_FEATURE(r8, &(0x7f0000000500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)={0x20, 0x3fa, 0x8, 0x70bd28, 0x25dfdbfb, {0x1, 0x1, 0x1, 0x1}, ["", "", "", ""]}, 0x20}}, 0x0)
sendmsg$NFT_BATCH(r7, 0x0, 0x40004)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES16], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb8511d3799c7a606, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9, 0x0, 0x10000000}, 0x18)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x400008, &(0x7f00000001c0)=ANY=[])

2.722547462s ago: executing program 2 (id=1148):
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x18280, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x100000000001946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e502000000000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x1c}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x16, 0x10, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000540)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x4000000)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0xee, 0xff, 0x0, 0x0, 0x0, 0x0, 0xe4840, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0, 0xa}, 0x1005, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000040)="2e00000025008101040000000000009f1ba1f848430000005e1406ca000000ffffffff25ed5860000a898988a800", 0x2e}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0500000004000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0039990000000000e7ffffffffffffff000000000080000000000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.370886589s ago: executing program 3 (id=1152):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1f, 0x0, 0x0, 0x2000}, 0x50)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x3faf71e42d4f433d, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001680)={0x11, 0x19, &(0x7f0000000480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @exit, @generic={0x3c, 0xd, 0x1, 0x0, 0x4}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @generic={0x40, 0x2, 0x9, 0x4, 0x2}, @alu={0x4, 0x0, 0x0, 0x0, 0x3, 0x80, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000580)='syzkaller\x00', 0x5, 0x1000, &(0x7f00000005c0)=""/4096, 0x41000, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000015c0)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000001600)=[{0x0, 0x1, 0x0, 0x6}, {0x2, 0x1, 0xa, 0x5}, {0x0, 0x2, 0x5, 0xc}, {0x3, 0x5, 0x4, 0x8}, {0x2, 0x2, 0x4, 0x3}, {0x2, 0x5, 0x0, 0x7}], 0x10, 0x3ff}, 0x94)
ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000001740)=r2)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x19, &(0x7f00000018c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x40}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffff7}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @map_val={0x18, 0xa, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x81}, @jmp={0x5, 0x0, 0x3, 0x5, 0x9, 0x0, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}, @alu={0x7, 0x1, 0x3, 0x0, 0x0, 0xffffffffffffffe8, 0x10}, @ldst={0x0, 0x0, 0x2, 0x7, 0x0, 0x2, 0xfffffffffffffffd}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r3, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r4}, 0xc)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="120000000d0000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r5}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r7}, &(0x7f0000000300), &(0x7f0000000400)=r5}, 0x20)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80102, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x3fe, 0x7ffffffc, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="60000000031401002dbd7000f6dbdf240900020073797a3200000000080041007278650014003300697036677265300000000000000000000900020073797a3000000000080041007369770014003300776c616e3100000000000000000000002ce61bd60f9653d8a4404e48bb56b1d8dae851aa38362e73ead85ae32e7ab885d0489be268f17c9692ce0610bc7fe32e133d4f01f85d"], 0x60}, 0x1, 0x0, 0x0, 0x44191}, 0x0)
socket$inet6(0xa, 0x80000, 0xf)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000000000)=0x7fff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x1c, 0x32, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x8, 0x1, 0x0, 0x1, [@typed={0x4, 0x6}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
socket$can_bcm(0x1d, 0x2, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0xf, &(0x7f0000001780)=ANY=[@ANYBLOB="18000000000000000000000000000000181100001beab99e120a0526c9f7b3ba7d32e7bd879b3de13663685b3aa9e459cce402a509778c9ecd2c2ac08e4b96c8ae4effaa147dd0ebd79b941a70c1e1684fb304ad47c5f84ed1d927e280b6d2af4e26b2f37c3568bd2a433112c5110f28665a2e9ed8b81089241ac7093fc7f7c5ca4fd491116c1a1040767e0f9729ad6aa451e12b222d225c4487e571", @ANYRES32=r0, @ANYRESOCT=r4, @ANYRES16=r9, @ANYBLOB="2000e2e41e39e352fdce01f210c9601dfd089a30b1de97e0f4576f39331cd0010c7ff9b4aaa38c991693a8a03d1b983c4fc20d91440fb5aad682da791820f08eab1ccbc449de46ac87cc4aa9e5aa84951b307385a571535239168627f83b4930371a7f04aec8b59baff82a1a784c8983"], &(0x7f0000000200)='syzkaller\x00', 0x8, 0xffd, &(0x7f0000001e40)=""/4093, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc284}, 0x94)

2.256481196s ago: executing program 4 (id=1153):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8983, &(0x7f00000000c0)='\x02\x00\x00\x00\xbc$j\xfef;q1\xff\xd3r\xa3\xc81U\x8ez.F\xce\xfb\x9c\x19\xf3v\x88\x91\xbct\xb0\x1bLq\x15\x00\xad\t\x13\xf5U\x02\xc9d6q\xc3\xa5\xcd\x01t\r=\xad-\x13\xb0 U\xaaC\xc388\x13\xc6H\x0f \x03\x9e\xa98\xa1\xc3\xe9\x06C\xd4\xb5\x18}4\xa9yA8\x1fQ\xdfN\x8e\xd7m\xee\xb8N\x98\xef\xff\xddR\xec~c\xcb\x93\x84\x7f\\x6\xedZ\x82\xa0\x1by\x17\x1a\xc8\x98\x99\x0f')
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x108b84, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff)
socket$kcm(0xf, 0x3, 0x2)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r3)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_config_ext={0x8, 0x830b}, 0x0, 0x2, 0xfffffffe, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x8800)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r5 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r5, 0x0, 0x480, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=ANY=[@ANYBLOB="9800000032000701feffffff00000000107c"], 0x98}, 0x1, 0x0, 0x0, 0x4048011}, 0x2400c0d4)
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001cc0)=@acquire={0x16c, 0x17, 0x1, 0x0, 0x0, {{@in=@loopback}, @in6=@remote, {@in=@remote, @in=@broadcast, 0x4e21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56befe125658cb64}, {{@in6=@private2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x20, 0x0, 0x0, 0xee00}, {}, {}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2}, 0xfffffff9}, [@tmpl={0x44, 0x5, [{{@in=@broadcast, 0x4d2, 0x6c}, 0xa, @in=@empty, 0x0, 0x1, 0x0, 0x5, 0x7ff, 0x401, 0x5}]}]}, 0x16c}}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r7}, 0x18)

2.234110532s ago: executing program 2 (id=1154):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0x11e, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x63, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0xa0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_bp={0x0, 0x1}, 0x11efa, 0x4, 0x98, 0x4, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = socket$nl_audit(0x10, 0x3, 0x9)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
sendmsg(r4, &(0x7f0000006640)={0x0, 0x0, &(0x7f0000004540)=[{&(0x7f0000004480)='P', 0x1}], 0x1}, 0x8800)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x4, 0x1, 0x0, 0x0, 0x0, 0xbc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000080), 0x9a2a178d5a9f5051}, 0x5, 0x0, 0x0, 0x3, 0x4, 0x6, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8cffffffffffffff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

1.97187689s ago: executing program 0 (id=1155):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8800000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r8, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)

1.754053366s ago: executing program 2 (id=1157):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='u', 0x1}], 0x1}, 0x4040001)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)}, 0x10003) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="1400000300000a4800004b97340d030ea04500000000000a0000040900010073797a31000000000900020073797a32000000001c000480180001800d00010073796e70726f7879007ec6698cdee5eb1e0000181100010000000000000000000a001008b141899764ee505e00"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010) (async)
r3 = socket$kcm(0xa, 0x922000000003, 0x11) (async)
socket$inet(0x2, 0x2, 0x1)
setsockopt$sock_attach_bpf(r3, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r3, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b2c25fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b40011000001", 0x38}], 0x1}, 0x0)

1.679628421s ago: executing program 3 (id=1158):
r0 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/32], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40a10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x400, 0xffffffffffffec23, 0x0, 0x7, 0x1c3b0979, 0x0, 0x10, 0x0, 0x0, 0x0, 0x959}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8)
sendmsg$inet(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002c000d190a762d7f089e", 0xe}, {0x0}], 0x2}, 0x0)

1.560789563s ago: executing program 1 (id=1159):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x8, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
r1 = perf_event_open$cgroup(&(0x7f00000001c0)={0x1, 0x80, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_ID(r1, 0x4008240b, &(0x7f00000013c0))
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0x4004743d, 0x110e22fff6)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x5, 0x83501, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000000), 0x8}, 0x942, 0x4, 0x200, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x40000100)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
r6 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$kcm(r6, &(0x7f00000006c0)={0x0, 0xffffffffffffff16, 0x0}, 0x44080)
sendmsg(r6, &(0x7f0000003680)={0x0, 0x0, &(0x7f0000003140)=[{&(0x7f0000002d80)="0f", 0x1}, {0x0, 0x2}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0x4d}, {0x0}], 0x9}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
close(r2)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xc}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x10, 0x2, &(0x7f0000000100)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x14}, @jmp={0x5, 0x0, 0x9, 0x0, 0x6, 0x40, 0xfffffffffffffff0}], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r9, 0x4008240b, &(0x7f0000000180)={0x0, 0x80, 0x5, 0x10, 0x2, 0x7f, 0x0, 0x3e, 0x424, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x3, 0x9}, 0x2, 0x4, 0x8960, 0x3, 0x1000000010001, 0x7, 0x53d, 0x0, 0xc, 0x0, 0xbec})
write$cgroup_type(r3, &(0x7f0000000280), 0x9)

1.559870807s ago: executing program 3 (id=1160):
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xbf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2040, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x2086, 0x8, 0x0, 0x8, 0x9c03, 0x7fffffff, 0x80, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8000, 0x4}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000080000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a300000000009000300735f7af5ff00000038000000030a01040000000000000000010000010900030073797a32000000000c00024000000000000000010900010073797a300000"], 0xac}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f00000004c0)=@newtaction={0xd8, 0x30, 0x53b, 0x8000, 0x0, {}, [{0xc4, 0x1, [@m_simple={0xc0, 0x1, 0x0, 0x0, {{0xb}, {0x94, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xf, 0x3, '\\^]!${{%@:\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x4, 0x0, 0x5}}, @TCA_DEF_PARMS={0x18, 0x2, {0x2, 0x5, 0x2, 0x5fc, 0x10}}, @TCA_DEF_DATA={0xffffffe2, 0x3, '\x00\xbaQ\x1c\xd5^lh\xd9\xf8`\x8e\x12\xf1\x18w\xbfTH\xce\xc2.\x18?O}\xd4\xa5,\x14\x04\xf3G\xf9\xd5\xe9$pl\xf0\xdcf:\xc6\xbe\xfc(E\xba\"\x8f\xe0\f#7\xcd\x93\x8ds\x91\xb0\x02\x1dX\x9c\xe6\xfc%\x8dh\f.q\xef\x19\x15\xe06\x86\x90|*J>\xf8;5\x1a\\<\xf1\xbbS\x94_\x9c\xde\x00\xd0H\xab\xa1\xf8\x86\xf4\xfc\xfat'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7ff, 0x1, 0x2, 0x4, 0x10001}}, @TCA_DEF_PARMS={0x18, 0x2, {0x2980000, 0x7, 0x0, 0x70c, 0x5}}, @TCA_DEF_PARMS={0x18, 0x2, {0x800, 0x8, 0x8, 0xc, 0xfffffffd}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0xd8}}, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0600000004000000990500000a"], 0x48)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001340), &(0x7f0000000900), 0x404, r3, 0x0, 0x1ba8847c99}, 0x38)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="1800000024000703000000fffcdbdf19037c000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x240080d1}, 0x8010)

1.491741946s ago: executing program 0 (id=1161):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_clone(0xae12e400, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={0x0}, 0x18)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x1, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000100)='devices.list\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000", @ANYRES32], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bond0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8949, &(0x7f0000000080))

1.490977374s ago: executing program 2 (id=1162):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000280)={'wlan1\x00', @random="6a50bae0b3e5"})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x81, 0x86e46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x2}, 0x40, 0x8, 0x0, 0x0, 0x0, 0xffff0000, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x9d}, @IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x58}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x181}, 0x80)
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0x2d1b47cadf767bbd, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000600)=""/182}, 0x20)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f1, &(0x7f0000000080))
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r4, 0xffff0000, 0xe80, 0xfffe, &(0x7f00000007c0)="2b206d0748010097737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000003e0007012dbd7000fcdbdf25047c0000040000001400018006000600050a0000080016"], 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x44000)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x2, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x6}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x1}, @CTA_SEQ_ADJ_REPLY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000080}, 0x8040)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x14, 0x18, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x6}}, @NFT_MSG_NEWCHAIN={0x24, 0x3, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0xa}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, @NFT_OBJECT_COUNTER=@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}}, @NFT_MSG_DELOBJ={0x58, 0x14, 0xa, 0x877bb853ea2427a1, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x30, 0x14, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWTABLE={0x368, 0x0, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_USERDATA={0x96, 0x6, "2551dc2f6c50b3098b810f054d43bb331e3109bd5fb020dbb14460d998fc428619af901a4d8d791c54bb9038cf7b395cc02d6f90e77cece8efc6603e6f906f7522a34ff9fd807fc80793a89c63da7d7b53e0cd47e3b83b71808a441408d7f997089850492b76b31c0927fb603ed1f97cbc53c3ec55eb1443e7c6157ed036917cda7fa60024caa46f3f4a74c58204fd620594"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0xe0, 0x6, "3d1d58236a16a04e4b0adcaf4b317859f97197c19a1ae6322d70970f0a7631077099e4e4981abf5330ab35aceaaf635dc9d2b93d8e0671d09e6f1595bbf681b4c918752a1229be72b28cd120ed08047343bffc27017ce127622f48366219bd93c94a7baa51a2306f7662db996df5b8e7c085ff10dc33c55de784f9bce2b43e6a24b3435e64f1e0c61095eca675a53b8ae68dea76d22fe62d2935ff2d44026cb04c3ef53034be9278e97e1ac8e03a564e419271a1fd4ec4c003b76d28398d8df61b4d6072c9bfd0f626d8a5fea597597f4ed5c623d1c6166859e281c5"}, @NFTA_TABLE_USERDATA={0xa0, 0x6, "0c231f8208f2cb8769adf6ca80362ce60e0622cfd3ec3854a8c945151a659ff0e95386892ac933dc74c0f29318f605ca2c4aa0bd0084ebbe8a4c8d0e01f1f61c6b838ff14a33d1b82a3cbcc8e7f4b2dd20d88f57b21271f1731c12463be3e4e3c0ef4ff5f9fae613c6d01a4f52bff59d5b5b1dee89237d67d3bd3d36fcbb31cdcd0c4e06cf17bea651721f8ae43e9cd8b0644f1180a8e1e11e2a873a"}, @NFTA_TABLE_USERDATA={0xff, 0x6, "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"}]}], {0x14}}, 0x490}}, 0x0)

939.00308ms ago: executing program 2 (id=1163):
r0 = socket$kcm(0xa, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x40000102)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2501, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}, 0x828, 0x0, 0x0, 0x0, 0x10000, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x48, 0x14, 0x105, 0x70bd24, 0x25dfdb7b, {0xa, 0x84}, [@INET_DIAG_REQ_BYTECODE={0x19, 0x1, "edb7e5a8365b6019d51ff36517ecf60709cfa4d89f"}, @INET_DIAG_REQ_BYTECODE={0x15, 0x1, "98082846a892496c297583bc0bab77bf3d"}]}, 0x48}, 0x1, 0x0, 0x0, 0x4004081}, 0x2005c840)
write$cgroup_int(r2, &(0x7f0000000040)=0x2000000000009237, 0x12)

908.337112ms ago: executing program 0 (id=1164):
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x18280, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x100000000001946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e502000000000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x1c}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x16, 0x10, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000540)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x4000000)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r2)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0xee, 0xff, 0x0, 0x0, 0x0, 0x0, 0xe4840, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0, 0xa}, 0x1005, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000040)="2e00000025008101040000000000009f1ba1f848430000005e1406ca000000ffffffff25ed5860000a898988a800", 0x2e}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0500000004000000040000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0039990000000000e7ffffffffffffff000000000080000000000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)

721.364107ms ago: executing program 1 (id=1165):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newspdinfo={0x24, 0x24, 0x501, 0x70bd26, 0x25dfdbff, 0x3, [@XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x24}, 0x1, 0x80ffffffffffffff, 0x0, 0x20004811}, 0xc080)

666.910094ms ago: executing program 4 (id=1166):
socket$kcm(0x10, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000fcffffff000000000000000095"], &(0x7f0000000300)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000dc0)={0x20, 0x33, 0x107, 0xfffffffe, 0x25dfdbfe, {0x3, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @fd}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, 0x1405, 0x1, 0x70bd29, 0x25dfdbfb, "", [{{0x8, 0x1, 0x2}, {0x8, 0x3, 0x3}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4800)
bpf$MAP_LOOKUP_ELEM(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000d40)={0x11, 0x13, &(0x7f0000000580)=ANY=[@ANYBLOB="180000008000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000c44185"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={@map, 0xffffffffffffffff, 0x2e, 0x2001}, 0x20)

571.93645ms ago: executing program 3 (id=1167):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x27, 0xd50, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xec, 0x5, 0xd, 0x7, 0x0, 0x7fffffff, 0x7a5d4, 0x9, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xdfffffff, 0x0, @perf_bp={0x0, 0x4}, 0x2, 0xa, 0x7, 0x0, 0x81, 0x5, 0x9, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f0, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r3 = socket$kcm(0x11, 0x200000000000002, 0x300)
recvmsg$kcm(r3, &(0x7f0000000040)={0x0, 0xfffffffffffffe4f, 0x0}, 0x40000000)
perf_event_open(0x0, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0xa)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000002200080026bdf800fddbdf250d000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40001)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x84)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_RENAME(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4000)
sendmsg$inet(r4, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000100)=[{&(0x7f00000001c0)="92", 0x1}], 0x1}, 0x0)

571.275373ms ago: executing program 1 (id=1168):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], ""/16, <r0=>0x0, 0x0, 0x0, 0x0, 0x4, 0x6, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xc0, &(0x7f0000000280)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0x6b, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xa, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', r0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r1, 0x0, 0x4040840)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$kcm(0xa, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x84)
r2 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000f00)={0xffffffffffffffff, &(0x7f0000000e40)="7b25f27a5df3201daac318616a1ecf0748992b3716a1ba6d223b25f189da68e22901c150313eb52a1f372bb8c2ced43c3ecbd0500309dbbd814d058f70c4ddb4281bef8dc3e9227e0dceeebba47e4fd337295aa64157c45deee5d08bf0e58b924b368270f024990a20eaf99cfdf46e74d54e47ce5f39e4055b40d48d85b60cee83bcc3ab792fd2267aac984328c2292fa429b0a16010548c5b82fee1b3c32cf96439d6f9fceb18ea19182afea2af3202b8d0f6f7"}, 0x20)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0xb2, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x70}, 0x1, 0x0, 0x0, 0x2000}, 0x2000c000)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="44000000190a01"], 0x44}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{}, &(0x7f0000000600), 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000400"/28], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r5, &(0x7f00000038c0)={0x0, 0x0, &(0x7f0000003880)={&(0x7f00000004c0)=ANY=[@ANYBLOB="30000000000b012e89dc38c12439d2d090b7dbf50200000000000000000a0000040800024000000002090001004d41524b000000000800034000000001"], 0x30}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000e00), 0x4)
sendmsg$NFT_BATCH(r5, &(0x7f0000000dc0)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000f80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELSETELEM={0x1c0, 0xe, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x178, 0x3, 0x0, 0x1, [{0x18, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x100}]}, {0x14c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_EXPR={0xc, 0x7, 0x0, 0x1, @log={{0x8}, @void}}, @NFTA_SET_ELEM_USERDATA={0x1c, 0x6, 0x1, 0x0, "386ca0853f3a455f8f88cfb9f8abb5e467b4c9257f58728c"}, @NFTA_SET_ELEM_USERDATA={0xaf, 0x6, 0x1, 0x0, "e40f5c2c55a2f8a2eacee532126a0f08c4892ccef87368dc8e84e276cfdf5aaa43855f93e4b9fe75a1806e81f1a1409100a2223453f4055884eb402806a926256aecf1bce8fba8a3378ed883ee04ce10b1438c730108c8cd2f9d1526234f707c8b744e5891285f302f5d33a26e0928f007131479488180eda17c7e3e943b6e8ec107dd70df8eb5fb15b6530b38be18c96c8767880e608856a1aeb05251fe35d8b7fa245eb0c1415313c077"}, @NFTA_SET_ELEM_USERDATA={0x65, 0x6, 0x1, 0x0, "ef11242f444aa1568b7dd6003efdc76c909d149510e86cfeba2a665eeb37d4f57eb76a8b4cc8f892cb849354239149b7b4cedbb8681b264082dadadf0242846ecb59f34ef3420b13e6b320f2d417a6ce1a25fa4a1a7bcc13f8bd56c1577d8d7169"}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7f}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x8}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}}, @NFT_MSG_NEWFLOWTABLE={0x134, 0x16, 0xa, 0x5, 0x0, 0x0, {0x3}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0xfc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1\x00'}, {0x14, 0x1, 'gre0\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'bridge_slave_0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_to_team\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'batadv_slave_1\x00'}, {0x14, 0x1, 'ip6erspan0\x00'}, {0x14, 0x1, 'netpci0\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xffffffff}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELOBJ={0xe0, 0x14, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_OBJ_USERDATA={0xcc, 0x8, "e25cd97ab39e8eaf417e9a8108ccf00e74ff95107d4b1c923b1cbfdcd34ac5e45b8eca3781cc420c098744032cf4ffcf55909b704adb900f6701678be3603c53f41f7ea82da8c1593f9ba1ebcf4b7b7d75cd3e1234e127ab12a11286a6df05fc330573dc3378c2ab50bd884e3c7922ff415fb973fe9feaefd3de04748b49e806dbf7ad3c8d00e254ed802a21d8bf35aa448f39fe4345dcac7db0d0ee27b4783876d4527cfb8be7051754f4a6da4f5b7b47c336ac170d633af85f41fddbfcc03f29286861b9004318"}]}, @NFT_MSG_NEWTABLE={0x30, 0x0, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWFLOWTABLE={0x30, 0x16, 0xa, 0x201, 0x0, 0x0, {0x5}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_FLAGS={0x8}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x3}, @NFT_OBJECT_COUNTER=@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x4b0}, 0x1, 0x0, 0x0, 0x24040000}, 0x805)

566.499421ms ago: executing program 0 (id=1169):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4084}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0xb00, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r3, &(0x7f0000001ec0)=ANY=[@ANYBLOB="13120000120091ef"], 0xfe33)
recvmsg$kcm(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000040)=""/20, 0x14}, {&(0x7f0000001f00)=""/4095, 0xa83}, {&(0x7f0000000400)=""/199, 0xc7}, {&(0x7f0000000900)=""/204, 0xcc}, {&(0x7f0000000340)=""/108, 0x6c}, {&(0x7f0000000ac0)=""/246, 0x140}, {&(0x7f00000001c0)=""/170, 0xaa}, {&(0x7f0000001c40)=""/219, 0xdb}, {&(0x7f0000000700)=""/171}, {&(0x7f0000000800)=""/206}, {&(0x7f0000000280)=""/124}], 0x8}, 0x102)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, 0xffffffffffffffff)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x830b}, 0x8024, 0x2, 0xfffffffe, 0x1, 0x0, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001040)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001140)={0x6, 0x21, &(0x7f0000000bc0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x9}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @cb_func={0x18, 0x8, 0x4, 0x0, 0x6}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xffffffffffffffff}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffff9}, @generic={0xe, 0x1, 0x5, 0x2, 0x400}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x47}, @generic={0x4, 0x4, 0x2, 0x1, 0xd246}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000640)='GPL\x00', 0xff, 0xc6, &(0x7f0000000d00)=""/198, 0x41000, 0x14, '\x00', 0x0, 0x25, r4, 0x8, &(0x7f0000001080)={0x2, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000010c0)=[r0], &(0x7f0000001100)=[{0x1, 0x2, 0x9, 0x3}, {0x0, 0x1, 0x3, 0xc}], 0x10, 0x7}, 0x94)
sendmsg$NFNL_MSG_CTHELPER_GET(r1, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x20, 0x1, 0x9, 0x5, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x14}, 0x408d5)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r5, &(0x7f0000001340)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001300)={&(0x7f0000001240)={0xa0, 0x0, 0x9, 0x201, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x64, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}]}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x7}]}, 0xa0}, 0x1, 0x0, 0x0, 0xc0}, 0x4000000)

342.285961ms ago: executing program 1 (id=1170):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000020c0)={@ifindex, 0xffffffffffffffff, 0x37, 0x3}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="1000000037588de580f46bf7187da3399c77b84281c4d207ea7a6ea78d08ae802bbe57f1b20f14b474d91af5806a0030584bed7c17c4d530eca6e16663f5885e20b076198330a25aec70f512120ff049e7b9118d51aad1d81c9e2edb9f879bfd195a12d1018b199be0ae920f8fecd1ba9478acef4632c0a499c5e9bfbc37dc98fa3d535cb6624c883fabce8ec644e690b57d44aabf1a0998f605ef77e8ca67d3bf4832dc6ebeb7b2446031f6aaebfd561c490e36f5c169c2de79aef45696a17cabf7979975e74562cfea5d58ff"], 0x18, 0x25}, 0x80000)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001c008103e00f80ecdb4cb9f207c804a00f", 0x15}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000200)=ANY=[], 0xfe33)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))

248.618321ms ago: executing program 0 (id=1171):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8800000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r8, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)

177.092776ms ago: executing program 1 (id=1172):
perf_event_open(&(0x7f0000000640)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x480000000000000b, 0x954b, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, 0xfffffffd, 0x1, @perf_config_ext={0x76, 0x1ef7}, 0x11efa, 0x4, 0x98, 0x0, 0x2, 0xfffff271, 0xfffc, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000014800)={0x0, 0x0, &(0x7f00000147c0)={&(0x7f0000000380)=@getae={0x40, 0x1f, 0x1, 0x70bd6d, 0x25dfdbff, {{@in6=@private0, 0x4d2, 0x2, 0x6c}, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x20000}}, 0x40}, 0x1, 0x0, 0x0, 0x4004800}, 0x20048000)

11.790516ms ago: executing program 1 (id=1173):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000049c0)={0x3, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x7, 0x0, &(0x7f0000000180)="e0b9547ed387db", 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x48, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fff, 0x7fffffff, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x800c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x9, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={r3, 0x0, 0x0}, 0x10)
sendmsg$kcm(r4, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)="d8000000140081054e81f782db44b9040a1d080243000000040000a118000200fe80000000000e1208000f0100810401a80016eaa40006400303000806600cfab94dcf5c0461c1d67f6f94007134cf6ee08002a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7d9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace80ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
fstat(0xffffffffffffffff, 0x0)
mount$bpf(0x0, &(0x7f0000000300)='./cgroup/../file0\x00', &(0x7f0000000340), 0x80, &(0x7f0000000700)={[{@gid}, {@gid}]})
socket$key(0xf, 0x3, 0x2)
syz_clone(0x20000, &(0x7f0000000900)="682dd675a252ea259210a3f1f97addfec4416217092ff0043923206ee733b9bcffc69d30c3c64d32400768b21a2b6a4f8143277a320dfeb62f8f59c0da49f87f1853d0219c08c242617bc302bacac7902dfc817296da7af7dbdb0928ceb1598336f0b72365229889c717fa9fc89bdcf9b5850b19a4ca20fdea1a9205c72d0abb58ff9cb2d34a659f0bbd23cc2d37f89e1257993293648b9a127b79362a87", 0x9e, &(0x7f00000009c0), &(0x7f0000000a00), &(0x7f0000000a40)="e012031af86c4d3722e1448a096f6910538361d1b00ae5e00bed0683f4e45e0e3bfa452b9bac9f4110dd254dfb5fc0c7c2eb044bc32514e4e50e8c74f295f56fd6c2a810172635eb728181d09f47")
fstat(r2, &(0x7f0000000ac0))
fstat(r2, &(0x7f0000000b40))
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000cc0)={&(0x7f0000000240)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000600)=[{&(0x7f0000001340)}, {&(0x7f0000000d40)="8ea904686ac2b8879100e55c75e19c77655ff2f07184c1dc987f1ad239dd3b93394b3cbfd8d36d311f7e1757a265d943720a31b299c522ef5439444b5588d190f390505fca84838c9e414bcb727ba654abcad96d9fd006b567616905c36fda471ef565fdce7dd77e1713d960e05ff537ad5f5ff995fe56", 0x77}, {&(0x7f0000000380)="c232e7b7720fc0fd6079690d341982487a34f8", 0x13}, {&(0x7f0000000800)="4d2f6f3a83f5b9a1bd0ea58e955051634c7f878ae104ed79ca42c64a9957f68f264fc4546af73a883eceae852909a6c63c765efa4afaad1b26808fd9ca019fd27d82ef0563f4e0a42c22cd3d3d965cdabd95465b604ff2848995d874ef5a5d19725b91418e1cffa2", 0x68}, {&(0x7f0000000ec0)="82b16f3c43f311a7f266ed88b44dbb05572567102e61fc5966c9ad8374ee6d349dce6fe0ec583186233cf63656ef5f2c1f02418a89b939c723e47786ea894a911a3c0c4f9643a1b35b3c577fc696c9249b2c9b81289e88322a96c674dcdce4e09c19091d237ede2967ce795ca6bb9029ba11200deed21dbe2f2da2f498920d2767506cca410398d9a2755837ba971882859ee9cae2baf3a1cfdb1e7e8ea8d798ac812d619166eead070c827b3809f62de81778f47a545735", 0xb8}], 0x5, &(0x7f0000000bc0)=ANY=[], 0x78, 0x240448d0}, 0x48400)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000029c0)=@updpolicy={0x13c, 0x19, 0x1, 0x0, 0x0, {{@in6=@private2, @in6=@empty, 0x0, 0x40, 0x0, 0x0, 0xa, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0xfff}, {0x0, 0x0, 0x0, 0x2dd}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, [@tmpl={0x84, 0x5, [{{@in6=@loopback, 0x4d3, 0x2b}, 0x0, @in=@empty, 0x34ff, 0x0, 0x0, 0xff, 0x8}, {{@in6=@loopback, 0x0, 0x2b}, 0x2, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x4, 0x1, 0x0, 0x0, 0x6}]}]}, 0x13c}}, 0x4800)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000004c0), &(0x7f00000004c0), 0x1000, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000870400000000000018e75cb5", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 0 (id=1174):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x49, 0x1, 0x0, 0x0, 0x0, 0x0, 0x82240, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8}, 0x2, 0x0, 0x0, 0x8, 0x43fe, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8800000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$kcm(0xa, 0x922000000003, 0x11)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x14000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_bp={0x0}, 0x0, 0x7, 0x5, 0x0, 0x7, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x258, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f7ff1f000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) (fail_nth: 8)

kernel console output (not intermixed with test programs):

er parsing attributes in process `syz.3.234'.
[  165.386286][ T6794] netlink: 132 bytes leftover after parsing attributes in process `syz.0.235'.
[  165.452062][ T6798] netlink: 'syz.0.235': attribute type 10 has an invalid length.
[  165.511734][ T6798] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  165.698014][ T6798] netlink: 'syz.0.235': attribute type 4 has an invalid length.
[  165.725404][ T6798] netlink: 152 bytes leftover after parsing attributes in process `syz.0.235'.
[  165.838675][ T6798] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  167.354519][ T6814] netlink: 60 bytes leftover after parsing attributes in process `syz.1.240'.
[  167.368673][ T6810] netlink: 28 bytes leftover after parsing attributes in process `syz.0.239'.
[  167.422974][ T6810] netlink: 28 bytes leftover after parsing attributes in process `syz.0.239'.
[  167.558828][ T6815] netlink: 'syz.0.239': attribute type 16 has an invalid length.
[  167.724313][ T6823] FAULT_INJECTION: forcing a failure.
[  167.724313][ T6823] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.742666][ T6824] netlink: 'syz.3.241': attribute type 5 has an invalid length.
[  167.772012][ T6824] netlink: 'syz.3.241': attribute type 5 has an invalid length.
[  167.805549][ T6823] CPU: 1 UID: 0 PID: 6823 Comm: syz.4.242 Not tainted syzkaller #0 PREEMPT(full) 
[  167.805583][ T6823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  167.805598][ T6823] Call Trace:
[  167.805613][ T6823]  <TASK>
[  167.805630][ T6823]  dump_stack_lvl+0x189/0x250
[  167.805683][ T6823]  ? __pfx____ratelimit+0x10/0x10
[  167.805732][ T6823]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.805782][ T6823]  ? __pfx__printk+0x10/0x10
[  167.805840][ T6823]  ? __might_fault+0xb0/0x130
[  167.805913][ T6823]  ? __might_fault+0xb0/0x130
[  167.806000][ T6823]  should_fail_ex+0x414/0x560
[  167.806093][ T6823]  _copy_from_iter+0x1de/0x1790
[  167.806164][ T6823]  ? rcu_is_watching+0x15/0xb0
[  167.806218][ T6823]  ? kmalloc_reserve+0xbd/0x290
[  167.806248][ T6823]  ? __pfx__copy_from_iter+0x10/0x10
[  167.806305][ T6823]  ? __build_skb_around+0x262/0x3f0
[  167.806365][ T6823]  ? netlink_sendmsg+0x642/0xb30
[  167.806387][ T6823]  ? skb_put+0x11b/0x210
[  167.806442][ T6823]  netlink_sendmsg+0x6b2/0xb30
[  167.806528][ T6823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.806582][ T6823]  ? aa_sock_msg_perm+0xf1/0x1d0
[  167.806633][ T6823]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  167.806655][ T6823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.806690][ T6823]  __sock_sendmsg+0x21c/0x270
[  167.806750][ T6823]  ____sys_sendmsg+0x505/0x830
[  167.806824][ T6823]  ? __pfx_____sys_sendmsg+0x10/0x10
[  167.806914][ T6823]  ? import_iovec+0x74/0xa0
[  167.806972][ T6823]  ___sys_sendmsg+0x21f/0x2a0
[  167.807021][ T6823]  ? __pfx____sys_sendmsg+0x10/0x10
[  167.807186][ T6823]  ? __fget_files+0x2a/0x420
[  167.807288][ T6823]  ? __fget_files+0x2a/0x420
[  167.807308][ T6823]  ? __fget_files+0x3a0/0x420
[  167.807399][ T6823]  __x64_sys_sendmsg+0x19b/0x260
[  167.807449][ T6823]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  167.807539][ T6823]  ? __pfx_ksys_write+0x10/0x10
[  167.807601][ T6823]  ? do_syscall_64+0xbe/0xfa0
[  167.807661][ T6823]  do_syscall_64+0xfa/0xfa0
[  167.807688][ T6823]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.807723][ T6823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.807745][ T6823]  ? clear_bhb_loop+0x60/0xb0
[  167.807791][ T6823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.807816][ T6823] RIP: 0033:0x7f393bd8f749
[  167.807842][ T6823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.807858][ T6823] RSP: 002b:00007f393cc70038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  167.807878][ T6823] RAX: ffffffffffffffda RBX: 00007f393bfe5fa0 RCX: 00007f393bd8f749
[  167.807891][ T6823] RDX: 0000000024040800 RSI: 00002000000017c0 RDI: 0000000000000005
[  167.807902][ T6823] RBP: 00007f393cc70090 R08: 0000000000000000 R09: 0000000000000000
[  167.807913][ T6823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.807923][ T6823] R13: 00007f393bfe6038 R14: 00007f393bfe5fa0 R15: 00007ffcd6202378
[  167.808047][ T6823]  </TASK>
[  168.295664][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.3.241'.
[  168.467585][ T6835] netlink: 60 bytes leftover after parsing attributes in process `syz.4.244'.
[  168.563273][ T6835] netlink: 60 bytes leftover after parsing attributes in process `syz.4.244'.
[  168.661557][ T6841] netlink: 'syz.1.246': attribute type 1 has an invalid length.
[  168.700662][ T6845] sch_tbf: burst 128 is lower than device veth0_to_bridge mtu (1514) !
[  168.780882][ T6847] netlink: 4595 bytes leftover after parsing attributes in process `syz.4.249'.
[  168.851609][ T6847] netlink: 'syz.4.249': attribute type 1 has an invalid length.
[  168.885952][ T6847] netlink: 'syz.4.249': attribute type 1 has an invalid length.
[  168.923601][ T6847] netlink: 'syz.4.249': attribute type 2 has an invalid length.
[  168.936374][ T6847] netlink: 'syz.4.249': attribute type 2 has an invalid length.
[  169.062682][ T6851] netlink: 'syz.3.251': attribute type 10 has an invalid length.
[  173.127557][ T6878] veth1_macvtap: mtu greater than device maximum
[  173.517427][ T6882] validate_nla: 1 callbacks suppressed
[  173.517481][ T6882] netlink: 'syz.1.262': attribute type 2 has an invalid length.
[  174.264818][ T6906] netlink: 'syz.4.265': attribute type 2 has an invalid length.
[  174.586621][ T6906] FAULT_INJECTION: forcing a failure.
[  174.586621][ T6906] name failslab, interval 1, probability 0, space 0, times 0
[  174.644487][ T6906] CPU: 0 UID: 0 PID: 6906 Comm: syz.4.265 Not tainted syzkaller #0 PREEMPT(full) 
[  174.644521][ T6906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  174.644534][ T6906] Call Trace:
[  174.644547][ T6906]  <TASK>
[  174.644561][ T6906]  dump_stack_lvl+0x189/0x250
[  174.644607][ T6906]  ? lockdep_hardirqs_on+0x9c/0x150
[  174.644655][ T6906]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.644791][ T6906]  should_fail_ex+0x414/0x560
[  174.644868][ T6906]  should_failslab+0xa8/0x100
[  174.644911][ T6906]  __kmalloc_cache_noprof+0x6f/0x6f0
[  174.644946][ T6906]  ? __pfx___mutex_lock+0x10/0x10
[  174.644984][ T6906]  ? find_get_pmu_context+0x8b/0x890
[  174.645052][ T6906]  find_get_pmu_context+0x8b/0x890
[  174.645091][ T6906]  ? find_get_context+0x3d7/0x4f0
[  174.645163][ T6906]  __se_sys_perf_event_open+0xbfd/0x1d70
[  174.645280][ T6906]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  174.645386][ T6906]  ? irqentry_exit_to_user_mode+0xce/0x110
[  174.645438][ T6906]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  174.645499][ T6906]  ? do_syscall_64+0xbe/0xfa0
[  174.645532][ T6906]  ? __x64_sys_perf_event_open+0x20/0xc0
[  174.645581][ T6906]  do_syscall_64+0xfa/0xfa0
[  174.645630][ T6906]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.645652][ T6906]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  174.645676][ T6906]  ? clear_bhb_loop+0x60/0xb0
[  174.645727][ T6906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.645751][ T6906] RIP: 0033:0x7f393bd8f749
[  174.645780][ T6906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.645799][ T6906] RSP: 002b:00007f393cc4f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  174.645824][ T6906] RAX: ffffffffffffffda RBX: 00007f393bfe6090 RCX: 00007f393bd8f749
[  174.645841][ T6906] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000180
[  174.645857][ T6906] RBP: 00007f393cc4f090 R08: 0000000000000002 R09: 0000000000000000
[  174.645870][ T6906] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  174.645883][ T6906] R13: 00007f393bfe6128 R14: 00007f393bfe6090 R15: 00007ffcd6202378
[  174.646007][ T6906]  </TASK>
[  175.454904][ T6928] __nla_validate_parse: 5 callbacks suppressed
[  175.454928][ T6928] netlink: 4 bytes leftover after parsing attributes in process `syz.1.270'.
[  175.631025][ T6919] lo speed is unknown, defaulting to 1000
[  175.759229][ T6919] lo speed is unknown, defaulting to 1000
[  175.898030][ T6919] lo speed is unknown, defaulting to 1000
[  176.193281][ T6941] netlink: 4 bytes leftover after parsing attributes in process `syz.4.275'.
[  176.708233][ T6102] lo speed is unknown, defaulting to 1000
[  176.716720][ T6919] infiniband syz2: set down
[  176.722251][ T6919] infiniband syz2: added lo
[  176.730555][ T6919] syz2: rxe_create_cq: returned err = -12
[  176.738002][ T6919] infiniband syz2: Couldn't create ib_mad CQ
[  176.746737][ T6919] infiniband syz2: Couldn't open port 1
[  176.807201][ T6919] RDS/IB: syz2: added
[  176.817910][ T6919] smc: adding ib device syz2 with port count 1
[  176.826381][ T6919] smc:    ib device syz2 port 1 has no pnetid
[  176.837678][ T6102] lo speed is unknown, defaulting to 1000
[  176.850422][ T6919] lo speed is unknown, defaulting to 1000
[  177.158196][ T6919] lo speed is unknown, defaulting to 1000
[  177.462002][ T6919] lo speed is unknown, defaulting to 1000
[  177.758333][ T6919] lo speed is unknown, defaulting to 1000
[  178.048410][ T6919] lo speed is unknown, defaulting to 1000
[  178.808576][ T6956] netlink: 10 bytes leftover after parsing attributes in process `syz.4.279'.
[  178.938980][ T6965] netlink: 'syz.0.282': attribute type 13 has an invalid length.
[  178.977492][ T6965] netlink: 'syz.0.282': attribute type 17 has an invalid length.
[  179.015302][ T6965] lo: left promiscuous mode
[  179.590564][ T6965] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.631026][ T6965] 8021q: adding VLAN 0 to HW filter on device team0
[  179.712994][ T6965] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  179.842619][ T6973] netlink: 10 bytes leftover after parsing attributes in process `syz.4.284'.
[  180.073239][ T6985] netlink: 84 bytes leftover after parsing attributes in process `syz.3.288'.
[  180.118099][ T6989] netlink: 60 bytes leftover after parsing attributes in process `syz.2.290'.
[  180.177415][ T6987] netlink: 32 bytes leftover after parsing attributes in process `syz.0.289'.
[  180.189806][ T6987] netlink: 32 bytes leftover after parsing attributes in process `syz.0.289'.
[  180.200503][ T6989] netlink: 60 bytes leftover after parsing attributes in process `syz.2.290'.
[  180.214077][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.289'.
[  180.272579][ T6987] openvswitch: netlink: Missing valid actions attribute.
[  180.318399][ T6987] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  180.483308][ T6991] __nla_validate_parse: 1 callbacks suppressed
[  180.483766][ T6991] netlink: 28 bytes leftover after parsing attributes in process `syz.4.291'.
[  180.596945][ T6991] netlink: 28 bytes leftover after parsing attributes in process `syz.4.291'.
[  180.632069][ T6995] netlink: 'syz.4.291': attribute type 16 has an invalid length.
[  181.123099][ T7009] netlink: 'syz.3.295': attribute type 16 has an invalid length.
[  181.158407][ T7009] netlink: 'syz.3.295': attribute type 17 has an invalid length.
[  181.265334][ T7016] netlink: 'syz.1.297': attribute type 11 has an invalid length.
[  181.285662][ T7016] netlink: 199788 bytes leftover after parsing attributes in process `syz.1.297'.
[  181.345303][ T7014] netlink: 'syz.3.295': attribute type 23 has an invalid length.
[  181.704206][ T7024] netlink: 'syz.0.299': attribute type 16 has an invalid length.
[  181.775740][ T7032] netlink: 80 bytes leftover after parsing attributes in process `syz.4.301'.
[  182.134370][ T7009] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  182.744934][ T7039] netlink: 28 bytes leftover after parsing attributes in process `syz.0.303'.
[  182.911624][ T7048] sit0: entered promiscuous mode
[  182.921824][ T7048] sit0: entered allmulticast mode
[  183.083183][ T7050] netlink: 60 bytes leftover after parsing attributes in process `syz.4.307'.
[  183.104913][ T7050] netlink: 60 bytes leftover after parsing attributes in process `syz.4.307'.
[  184.014457][ T7065] netlink: 'syz.0.311': attribute type 10 has an invalid length.
[  184.046416][ T7065] netlink: 2 bytes leftover after parsing attributes in process `syz.0.311'.
[  184.677556][ T7067] netlink: 28 bytes leftover after parsing attributes in process `syz.4.312'.
[  184.805453][ T7072] netlink: 'syz.3.314': attribute type 29 has an invalid length.
[  185.191431][ T7088] netlink: 60 bytes leftover after parsing attributes in process `syz.2.317'.
[  186.048968][ T7092] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  186.300207][ T7104] netlink: 'syz.2.323': attribute type 1 has an invalid length.
[  186.449380][ T7100] delete_channel: no stack
[  186.683439][ T7111] netlink: 10 bytes leftover after parsing attributes in process `syz.4.326'.
[  187.560197][ T7133] netlink: 60 bytes leftover after parsing attributes in process `syz.1.332'.
[  187.643556][ T7133] netlink: 60 bytes leftover after parsing attributes in process `syz.1.332'.
[  188.413725][ T7155] netlink: 10 bytes leftover after parsing attributes in process `syz.3.340'.
[  189.213857][ T7174] netlink: 52 bytes leftover after parsing attributes in process `syz.0.346'.
[  189.256190][ T7174] netlink: 4 bytes leftover after parsing attributes in process `syz.0.346'.
[  189.518246][ T7180] netlink: 'syz.3.347': attribute type 16 has an invalid length.
[  191.627588][ T7176] netlink: 28 bytes leftover after parsing attributes in process `syz.3.347'.
[  191.639629][ T7176] netlink: 28 bytes leftover after parsing attributes in process `syz.3.347'.
[  191.839941][ T7180] bridge0: port 3(batadv_slave_1) entered disabled state
[  191.847623][ T7180] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.855827][ T7180] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.976429][ T7180] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  194.830206][ T7201] netlink: 10 bytes leftover after parsing attributes in process `syz.0.354'.
[  194.872632][   T50] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  194.902613][   T50] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  194.932003][   T50] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  194.975971][   T50] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  195.092277][ T7217] netlink: 16 bytes leftover after parsing attributes in process `syz.3.361'.
[  195.406739][ T7224] netlink: 'syz.3.361': attribute type 10 has an invalid length.
[  195.894892][ T7238] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  196.553034][ T7258] syz.2.374 (7258) used obsolete PPPIOCDETACH ioctl
[  197.034056][ T7265] netlink: 44 bytes leftover after parsing attributes in process `syz.3.377'.
[  198.564735][ T7272] netlink: 'syz.4.379': attribute type 16 has an invalid length.
[  199.541785][ T7281] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.381'.
[  199.574277][ T7281] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.381'.
[  199.665197][ T7281] netlink: 'syz.3.381': attribute type 1 has an invalid length.
[  199.676126][ T7281] netlink: 'syz.3.381': attribute type 1 has an invalid length.
[  199.733424][ T7281] netlink: 'syz.3.381': attribute type 2 has an invalid length.
[  199.744772][ T7281] netlink: 'syz.3.381': attribute type 2 has an invalid length.
[  199.781756][ T7294] bridge0: entered promiscuous mode
[  199.847592][ T7296] netlink: 'syz.0.386': attribute type 10 has an invalid length.
[  199.856790][ T7294] bridge0: entered allmulticast mode
[  199.922753][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  199.930714][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  200.799636][ T7315] netlink: 830 bytes leftover after parsing attributes in process `syz.3.393'.
[  201.374787][ T7331] netlink: 1 bytes leftover after parsing attributes in process `syz.3.397'.
[  201.450847][ T7339] netlink: 16 bytes leftover after parsing attributes in process `syz.1.400'.
[  201.537407][ T7341] netlink: 60 bytes leftover after parsing attributes in process `syz.0.399'.
[  204.192226][ T7365] netlink: 'syz.4.406': attribute type 10 has an invalid length.
[  204.252762][ T7365] netlink: 40 bytes leftover after parsing attributes in process `syz.4.406'.
[  204.421964][ T7365] batman_adv: batadv0: Adding interface: virt_wifi0
[  204.430593][ T7365] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  204.464658][ T7375] netlink: 28 bytes leftover after parsing attributes in process `syz.2.409'.
[  204.478735][ T7365] batman_adv: batadv0: Interface activated: virt_wifi0
[  204.610373][ T7377] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.411'.
[  204.666314][ T7377] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.411'.
[  204.836689][ T7377] netlink: 'syz.3.411': attribute type 1 has an invalid length.
[  204.882104][ T7377] netlink: 'syz.3.411': attribute type 1 has an invalid length.
[  204.922838][ T7377] netlink: 'syz.3.411': attribute type 2 has an invalid length.
[  204.940676][ T7377] netlink: 'syz.3.411': attribute type 2 has an invalid length.
[  205.006904][ T7383] netlink: 'syz.2.413': attribute type 33 has an invalid length.
[  205.017781][ T7383] netlink: 36 bytes leftover after parsing attributes in process `syz.2.413'.
[  205.087211][ T7385] netlink: 112 bytes leftover after parsing attributes in process `syz.1.412'.
[  205.874314][ T7387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.414'.
[  209.075254][ T7432] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.427'.
[  209.164807][ T7436] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.427'.
[  209.200385][ T7433] netlink: 'syz.0.426': attribute type 10 has an invalid length.
[  209.233790][ T7439] netlink: 'syz.3.428': attribute type 33 has an invalid length.
[  209.262738][ T7433] netlink: 40 bytes leftover after parsing attributes in process `syz.0.426'.
[  209.277338][ T7441] netlink: 'syz.2.429': attribute type 1 has an invalid length.
[  209.312381][ T7439] netlink: 36 bytes leftover after parsing attributes in process `syz.3.428'.
[  209.348463][ T7441] netlink: 'syz.2.429': attribute type 3 has an invalid length.
[  209.368653][ T7432] netlink: 'syz.1.427': attribute type 1 has an invalid length.
[  209.386048][ T7432] netlink: 'syz.1.427': attribute type 1 has an invalid length.
[  209.419813][ T7441] netlink: 132 bytes leftover after parsing attributes in process `syz.2.429'.
[  209.447213][ T7439] FAULT_INJECTION: forcing a failure.
[  209.447213][ T7439] name failslab, interval 1, probability 0, space 0, times 0
[  209.471985][ T7432] netlink: 'syz.1.427': attribute type 2 has an invalid length.
[  209.485656][ T7432] netlink: 'syz.1.427': attribute type 2 has an invalid length.
[  209.515337][ T7439] CPU: 0 UID: 0 PID: 7439 Comm: syz.3.428 Not tainted syzkaller #0 PREEMPT(full) 
[  209.515368][ T7439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  209.515384][ T7439] Call Trace:
[  209.515392][ T7439]  <TASK>
[  209.515402][ T7439]  dump_stack_lvl+0x189/0x250
[  209.515452][ T7439]  ? __pfx____ratelimit+0x10/0x10
[  209.515484][ T7439]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.515515][ T7439]  ? __pfx__printk+0x10/0x10
[  209.515554][ T7439]  should_fail_ex+0x414/0x560
[  209.515595][ T7439]  should_failslab+0xa8/0x100
[  209.515621][ T7439]  kmem_cache_alloc_node_noprof+0x77/0x710
[  209.515663][ T7439]  ? __alloc_skb+0x112/0x2d0
[  209.515683][ T7439]  ? __pfx_br_get_link_af_size_filtered+0x10/0x10
[  209.515717][ T7439]  __alloc_skb+0x112/0x2d0
[  209.515744][ T7439]  br_info_notify+0x105/0x260
[  209.515774][ T7439]  br_setlink+0x33e/0x800
[  209.515797][ T7439]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  209.515830][ T7439]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  209.515856][ T7439]  ? __pfx_br_setlink+0x10/0x10
[  209.515924][ T7439]  ? __mutex_lock+0x5bb/0x1350
[  209.515951][ T7439]  ? mutex_is_locked+0x17/0x50
[  209.515983][ T7439]  rtnl_bridge_setlink+0x5b5/0x7d0
[  209.516014][ T7439]  ? __pfx_rtnl_bridge_setlink+0x10/0x10
[  209.516047][ T7439]  ? __pfx_rtnl_bridge_setlink+0x10/0x10
[  209.516070][ T7439]  rtnetlink_rcv_msg+0x77c/0xb70
[  209.516105][ T7439]  ? __lock_acquire+0xab9/0xd20
[  209.516129][ T7439]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  209.516163][ T7439]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  209.516218][ T7439]  netlink_rcv_skb+0x208/0x470
[  209.516239][ T7439]  ? __lock_acquire+0xab9/0xd20
[  209.516262][ T7439]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  209.516304][ T7439]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  209.516341][ T7439]  ? netlink_deliver_tap+0x2e/0x1b0
[  209.516374][ T7439]  netlink_unicast+0x82f/0x9e0
[  209.516419][ T7439]  ? __pfx_netlink_unicast+0x10/0x10
[  209.516455][ T7439]  ? netlink_sendmsg+0x642/0xb30
[  209.516476][ T7439]  ? skb_put+0x11b/0x210
[  209.516502][ T7439]  netlink_sendmsg+0x805/0xb30
[  209.516538][ T7439]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.516565][ T7439]  ? aa_sock_msg_perm+0xf1/0x1d0
[  209.516602][ T7439]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  209.516631][ T7439]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.516663][ T7439]  __sock_sendmsg+0x21c/0x270
[  209.516697][ T7439]  ____sys_sendmsg+0x505/0x830
[  209.516727][ T7439]  ? __pfx_____sys_sendmsg+0x10/0x10
[  209.516762][ T7439]  ? import_iovec+0x74/0xa0
[  209.516795][ T7439]  ___sys_sendmsg+0x21f/0x2a0
[  209.516823][ T7439]  ? __pfx____sys_sendmsg+0x10/0x10
[  209.516890][ T7439]  ? __fget_files+0x2a/0x420
[  209.516909][ T7439]  ? __fget_files+0x3a0/0x420
[  209.516943][ T7439]  __x64_sys_sendmsg+0x19b/0x260
[  209.516971][ T7439]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  209.517006][ T7439]  ? __pfx_ksys_write+0x10/0x10
[  209.517042][ T7439]  ? do_syscall_64+0xbe/0xfa0
[  209.517078][ T7439]  do_syscall_64+0xfa/0xfa0
[  209.517108][ T7439]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.517139][ T7439]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.517160][ T7439]  ? clear_bhb_loop+0x60/0xb0
[  209.517188][ T7439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.517209][ T7439] RIP: 0033:0x7fad2118f749
[  209.517239][ T7439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.517257][ T7439] RSP: 002b:00007fad2200f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  209.517288][ T7439] RAX: ffffffffffffffda RBX: 00007fad213e5fa0 RCX: 00007fad2118f749
[  209.517304][ T7439] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  209.517317][ T7439] RBP: 00007fad2200f090 R08: 0000000000000000 R09: 0000000000000000
[  209.517330][ T7439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.517343][ T7439] R13: 00007fad213e6038 R14: 00007fad213e5fa0 R15: 00007fff23aec188
[  209.517381][ T7439]  </TASK>
[  210.011195][ T7433] batman_adv: batadv0: Adding interface: virt_wifi0
[  210.019381][ T7433] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  210.049163][ T7441] netlink: 'syz.2.429': attribute type 39 has an invalid length.
[  210.061828][ T7433] batman_adv: batadv0: Interface activated: virt_wifi0
[  210.089025][ T7444] netlink: 128 bytes leftover after parsing attributes in process `syz.1.431'.
[  210.890022][ T7468] netlink: 'syz.4.439': attribute type 10 has an invalid length.
[  210.898181][ T7468] netlink: 168 bytes leftover after parsing attributes in process `syz.4.439'.
[  210.977690][ T7468] netlink: 164 bytes leftover after parsing attributes in process `syz.4.439'.
[  211.237171][ T7474] netlink: 10 bytes leftover after parsing attributes in process `syz.1.440'.
[  211.337809][ T7478] netlink: 48 bytes leftover after parsing attributes in process `syz.4.442'.
[  211.374474][ T7480] netlink: 48 bytes leftover after parsing attributes in process `syz.3.443'.
[  211.676979][ T7491] netlink: 32 bytes leftover after parsing attributes in process `syz.2.447'.
[  212.017144][ T7502] FAULT_INJECTION: forcing a failure.
[  212.017144][ T7502] name failslab, interval 1, probability 0, space 0, times 0
[  212.102608][ T7502] CPU: 1 UID: 0 PID: 7502 Comm: syz.3.449 Not tainted syzkaller #0 PREEMPT(full) 
[  212.102638][ T7502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  212.102651][ T7502] Call Trace:
[  212.102664][ T7502]  <TASK>
[  212.102677][ T7502]  dump_stack_lvl+0x189/0x250
[  212.102723][ T7502]  ? __pfx____ratelimit+0x10/0x10
[  212.102766][ T7502]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.102808][ T7502]  ? __pfx__printk+0x10/0x10
[  212.102874][ T7502]  ? __pfx___might_resched+0x10/0x10
[  212.102938][ T7502]  should_fail_ex+0x414/0x560
[  212.103011][ T7502]  should_failslab+0xa8/0x100
[  212.103053][ T7502]  __kmalloc_cache_node_noprof+0x74/0x6f0
[  212.103097][ T7502]  ? __get_vm_area_node+0x13f/0x300
[  212.103170][ T7502]  __get_vm_area_node+0x13f/0x300
[  212.103250][ T7502]  __vmalloc_node_range_noprof+0x30c/0x12d0
[  212.103294][ T7502]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.103326][ T7502]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  212.103433][ T7502]  ? irqentry_exit+0x74/0x90
[  212.103468][ T7502]  ? lockdep_hardirqs_on+0x9c/0x150
[  212.103539][ T7502]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  212.103588][ T7502]  ? apparmor_uring_sqpoll+0x4f1/0x580
[  212.103671][ T7502]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.103691][ T7502]  __vmalloc_noprof+0xb1/0xf0
[  212.103730][ T7502]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.103777][ T7502]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.103834][ T7502]  bpf_prog_alloc+0x3c/0x1a0
[  212.103882][ T7502]  bpf_prog_load+0x735/0x19e0
[  212.103983][ T7502]  ? __pfx_bpf_prog_load+0x10/0x10
[  212.104019][ T7502]  ? __might_fault+0xb0/0x130
[  212.104164][ T7502]  ? bpf_lsm_bpf+0x9/0x20
[  212.104190][ T7502]  ? security_bpf+0x7e/0x300
[  212.104249][ T7502]  __sys_bpf+0x507/0x860
[  212.104296][ T7502]  ? __pfx___sys_bpf+0x10/0x10
[  212.104501][ T7502]  __x64_sys_bpf+0x7c/0x90
[  212.104552][ T7502]  do_syscall_64+0xfa/0xfa0
[  212.104597][ T7502]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.104620][ T7502]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  212.104641][ T7502]  ? clear_bhb_loop+0x60/0xb0
[  212.104697][ T7502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.104720][ T7502] RIP: 0033:0x7fad2118f749
[  212.104748][ T7502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.104766][ T7502] RSP: 002b:00007fad2200f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  212.104790][ T7502] RAX: ffffffffffffffda RBX: 00007fad213e5fa0 RCX: 00007fad2118f749
[  212.104807][ T7502] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  212.104821][ T7502] RBP: 00007fad2200f090 R08: 0000000000000000 R09: 0000000000000000
[  212.104835][ T7502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.104848][ T7502] R13: 00007fad213e6038 R14: 00007fad213e5fa0 R15: 00007fff23aec188
[  212.104969][ T7502]  </TASK>
[  212.163113][ T7502] syz.3.449: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  212.798844][ T7511] netlink: 88 bytes leftover after parsing attributes in process `syz.2.451'.
[  212.822997][ T7512] netlink: 40 bytes leftover after parsing attributes in process `syz.0.450'.
[  212.835122][ T7502] ,cpuset=/,mems_allowed=0-1
[  212.976037][ T7502] CPU: 0 UID: 0 PID: 7502 Comm: syz.3.449 Not tainted syzkaller #0 PREEMPT(full) 
[  212.976069][ T7502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  212.976083][ T7502] Call Trace:
[  212.976093][ T7502]  <TASK>
[  212.976103][ T7502]  dump_stack_lvl+0x189/0x250
[  212.976140][ T7502]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  212.976180][ T7502]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.976217][ T7502]  ? __pfx__printk+0x10/0x10
[  212.976240][ T7502]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  212.976272][ T7502]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  212.976314][ T7502]  warn_alloc+0x214/0x310
[  212.976369][ T7502]  ? __pfx_warn_alloc+0x10/0x10
[  212.976419][ T7502]  ? __get_vm_area_node+0x2b5/0x300
[  212.976463][ T7502]  __vmalloc_node_range_noprof+0x331/0x12d0
[  212.976499][ T7502]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  212.976543][ T7502]  ? irqentry_exit+0x74/0x90
[  212.976575][ T7502]  ? lockdep_hardirqs_on+0x9c/0x150
[  212.976619][ T7502]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  212.976657][ T7502]  ? apparmor_uring_sqpoll+0x4f1/0x580
[  212.976704][ T7502]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.976727][ T7502]  __vmalloc_noprof+0xb1/0xf0
[  212.976762][ T7502]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.976790][ T7502]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  212.976822][ T7502]  bpf_prog_alloc+0x3c/0x1a0
[  212.976850][ T7502]  bpf_prog_load+0x735/0x19e0
[  212.976892][ T7502]  ? __pfx_bpf_prog_load+0x10/0x10
[  212.976917][ T7502]  ? __might_fault+0xb0/0x130
[  212.976978][ T7502]  ? bpf_lsm_bpf+0x9/0x20
[  212.977006][ T7502]  ? security_bpf+0x7e/0x300
[  212.977042][ T7502]  __sys_bpf+0x507/0x860
[  212.977070][ T7502]  ? __pfx___sys_bpf+0x10/0x10
[  212.977140][ T7502]  __x64_sys_bpf+0x7c/0x90
[  212.977178][ T7502]  do_syscall_64+0xfa/0xfa0
[  212.977215][ T7502]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.977238][ T7502]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  212.977268][ T7502]  ? clear_bhb_loop+0x60/0xb0
[  212.977299][ T7502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.977322][ T7502] RIP: 0033:0x7fad2118f749
[  212.977344][ T7502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.977371][ T7502] RSP: 002b:00007fad2200f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  212.977397][ T7502] RAX: ffffffffffffffda RBX: 00007fad213e5fa0 RCX: 00007fad2118f749
[  212.977414][ T7502] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  212.977429][ T7502] RBP: 00007fad2200f090 R08: 0000000000000000 R09: 0000000000000000
[  212.977445][ T7502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.977459][ T7502] R13: 00007fad213e6038 R14: 00007fad213e5fa0 R15: 00007fff23aec188
[  212.977502][ T7502]  </TASK>
[  212.977528][ T7502] Mem-Info:
[  213.354278][ T7502] active_anon:5561 inactive_anon:0 isolated_anon:0
[  213.354278][ T7502]  active_file:13192 inactive_file:39922 isolated_file:0
[  213.354278][ T7502]  unevictable:768 dirty:240 writeback:0
[  213.354278][ T7502]  slab_reclaimable:10359 slab_unreclaimable:126585
[  213.354278][ T7502]  mapped:29945 shmem:1406 pagetables:1220
[  213.354278][ T7502]  sec_pagetables:0 bounce:0
[  213.354278][ T7502]  kernel_misc_reclaimable:0
[  213.354278][ T7502]  free:1292479 free_pcp:15703 free_cma:0
[  213.412778][ T7502] Node 0 active_anon:22244kB inactive_anon:0kB active_file:52768kB inactive_file:159488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119780kB dirty:960kB writeback:0kB shmem:4088kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12848kB pagetables:4704kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  213.453466][ T7502] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  213.517260][ T7502] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  213.570773][ T7502] lowmem_reserve[]: 0 2505 2505 2505 2505
[  213.592965][ T7502] Node 0 DMA32 free:1256420kB boost:0kB min:34308kB low:42884kB high:51460kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22344kB inactive_anon:0kB active_file:52768kB inactive_file:159488kB unevictable:1536kB writepending:960kB zspages:0kB present:3129332kB managed:2565144kB mlocked:0kB bounce:0kB free_pcp:48016kB local_pcp:26152kB free_cma:0kB
[  213.650516][ T7502] lowmem_reserve[]: 0 0 0 0 0
[  213.666085][ T7502] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  213.712530][ T7502] lowmem_reserve[]: 0 0 0 0 0
[  213.717480][ T7502] Node 1 Normal free:3898136kB boost:0kB min:55592kB low:69488kB high:83384kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:14596kB local_pcp:5988kB free_cma:0kB
[  213.781975][ T7502] lowmem_reserve[]: 0 0 0 0 0
[  213.792159][ T7502] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  213.823005][ T7502] Node 0 DMA32: 812*4kB (UME) 1080*8kB (UME) 653*16kB (UME) 411*32kB (UME) 129*64kB (UME) 82*128kB (UM) 59*256kB (UM) 8*512kB (M) 5*1024kB (UM) 3*2048kB (ME) 286*4096kB (M) = 1256160kB
[  213.863235][ T7502] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  213.889144][ T7502] Node 1 Normal: 154*4kB (U) 44*8kB (UME) 45*16kB (UME) 66*32kB (UME) 21*64kB (UME) 8*128kB (UME) 5*256kB (UME) 3*512kB (ME) 2*1024kB (UM) 2*2048kB (UE) 948*4096kB (M) = 3898136kB
[  213.932537][ T7502] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  213.952487][ T7502] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  213.976414][ T7502] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  213.987552][ T7502] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  213.997887][ T7502] 54516 total pagecache pages
[  214.003327][ T7502] 0 pages in swap cache
[  214.007889][ T7502] Free swap  = 124996kB
[  214.012944][ T7502] Total swap = 124996kB
[  214.017347][ T7502] 2097051 pages RAM
[  214.021613][ T7502] 0 pages HighMem/MovableOnly
[  214.027553][ T7502] 424123 pages reserved
[  214.033954][ T7502] 0 pages cma reserved
[  214.323374][ T7533] netlink: 10 bytes leftover after parsing attributes in process `syz.4.455'.
[  214.611368][ T7540] FAULT_INJECTION: forcing a failure.
[  214.611368][ T7540] name failslab, interval 1, probability 0, space 0, times 0
[  214.657897][ T7540] CPU: 1 UID: 0 PID: 7540 Comm: syz.0.458 Not tainted syzkaller #0 PREEMPT(full) 
[  214.657929][ T7540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  214.657942][ T7540] Call Trace:
[  214.657951][ T7540]  <TASK>
[  214.657962][ T7540]  dump_stack_lvl+0x189/0x250
[  214.658001][ T7540]  ? __pfx____ratelimit+0x10/0x10
[  214.658035][ T7540]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.658066][ T7540]  ? __pfx__printk+0x10/0x10
[  214.658095][ T7540]  ? __pfx___might_resched+0x10/0x10
[  214.658120][ T7540]  ? fs_reclaim_acquire+0x7d/0x100
[  214.658162][ T7540]  should_fail_ex+0x414/0x560
[  214.658219][ T7540]  should_failslab+0xa8/0x100
[  214.658246][ T7540]  __kvmalloc_node_noprof+0x158/0x910
[  214.658281][ T7540]  ? __fget_files+0x2a/0x420
[  214.658305][ T7540]  ? vmemdup_user+0x2b/0xd0
[  214.658341][ T7540]  ? __fget_files+0x2a/0x420
[  214.658372][ T7540]  vmemdup_user+0x2b/0xd0
[  214.658399][ T7540]  map_get_next_key+0x1c3/0x630
[  214.658426][ T7540]  ? bpf_lsm_bpf+0x9/0x20
[  214.658449][ T7540]  ? security_bpf+0x7e/0x300
[  214.658483][ T7540]  __sys_bpf+0x63d/0x860
[  214.658507][ T7540]  ? __pfx___sys_bpf+0x10/0x10
[  214.658554][ T7540]  ? ksys_write+0x22a/0x250
[  214.658590][ T7540]  ? __pfx_ksys_write+0x10/0x10
[  214.658632][ T7540]  __x64_sys_bpf+0x7c/0x90
[  214.658669][ T7540]  do_syscall_64+0xfa/0xfa0
[  214.658702][ T7540]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.658735][ T7540]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.658759][ T7540]  ? clear_bhb_loop+0x60/0xb0
[  214.658788][ T7540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.658809][ T7540] RIP: 0033:0x7f9b1b58f749
[  214.658829][ T7540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.658848][ T7540] RSP: 002b:00007f9b1c3aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  214.658873][ T7540] RAX: ffffffffffffffda RBX: 00007f9b1b7e5fa0 RCX: 00007f9b1b58f749
[  214.658891][ T7540] RDX: 0000000000000020 RSI: 00002000000001c0 RDI: 0000000000000004
[  214.658906][ T7540] RBP: 00007f9b1c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  214.658920][ T7540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.658933][ T7540] R13: 00007f9b1b7e6038 R14: 00007f9b1b7e5fa0 R15: 00007ffc0c828008
[  214.658974][ T7540]  </TASK>
[  214.931923][ T7544] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  215.046195][ T7545] netlink: 4707 bytes leftover after parsing attributes in process `syz.3.460'.
[  215.945346][ T7574] netlink: 10 bytes leftover after parsing attributes in process `syz.0.469'.
[  216.204009][ T7585] validate_nla: 1 callbacks suppressed
[  216.204058][ T7585] netlink: 'syz.0.474': attribute type 16 has an invalid length.
[  216.269964][ T7585] netlink: 'syz.0.474': attribute type 17 has an invalid length.
[  216.739800][ T7585] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  217.863090][ T7608] netlink: 'syz.0.480': attribute type 10 has an invalid length.
[  217.923944][ T7608] netlink: 40 bytes leftover after parsing attributes in process `syz.0.480'.
[  218.110330][ T7608] batman_adv: batadv0: Interface activated: virt_wifi0
[  218.144063][ T7611] netlink: 'syz.1.481': attribute type 10 has an invalid length.
[  218.153079][ T7611] netlink: 40 bytes leftover after parsing attributes in process `syz.1.481'.
[  219.461850][ T7621] netlink: 10 bytes leftover after parsing attributes in process `syz.1.484'.
[  219.719165][ T7633] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.489'.
[  219.750284][ T7633] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.489'.
[  219.838585][ T7633] netlink: 'syz.1.489': attribute type 1 has an invalid length.
[  219.871586][ T7633] netlink: 'syz.1.489': attribute type 1 has an invalid length.
[  219.880662][ T7633] netlink: 'syz.1.489': attribute type 2 has an invalid length.
[  219.942583][ T7633] netlink: 'syz.1.489': attribute type 2 has an invalid length.
[  220.502018][ T7654] FAULT_INJECTION: forcing a failure.
[  220.502018][ T7654] name failslab, interval 1, probability 0, space 0, times 0
[  220.529722][ T7650] netlink: 14 bytes leftover after parsing attributes in process `syz.3.493'.
[  220.652464][ T7654] CPU: 1 UID: 0 PID: 7654 Comm: syz.2.495 Not tainted syzkaller #0 PREEMPT(full) 
[  220.652492][ T7654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  220.652505][ T7654] Call Trace:
[  220.652516][ T7654]  <TASK>
[  220.652528][ T7654]  dump_stack_lvl+0x189/0x250
[  220.652570][ T7654]  ? __pfx____ratelimit+0x10/0x10
[  220.652606][ T7654]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.652642][ T7654]  ? __pfx__printk+0x10/0x10
[  220.652689][ T7654]  ? __pfx___might_resched+0x10/0x10
[  220.652732][ T7654]  should_fail_ex+0x414/0x560
[  220.652787][ T7654]  should_failslab+0xa8/0x100
[  220.652819][ T7654]  kmem_cache_alloc_node_noprof+0x77/0x710
[  220.652865][ T7654]  ? __alloc_skb+0x112/0x2d0
[  220.652884][ T7654]  ? __pfx_nf_tables_abort+0x10/0x10
[  220.652942][ T7654]  __alloc_skb+0x112/0x2d0
[  220.652982][ T7654]  netlink_ack+0x146/0xa50
[  220.653030][ T7654]  ? __kmalloc_cache_noprof+0x3d5/0x6f0
[  220.653068][ T7654]  ? nfnetlink_rcv+0xff5/0x2590
[  220.653098][ T7654]  ? skb_pull+0xc1/0x1d0
[  220.653143][ T7654]  nfnetlink_rcv+0x2309/0x2590
[  220.653292][ T7654]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  220.653488][ T7654]  ? netlink_deliver_tap+0x2e/0x1b0
[  220.653570][ T7654]  netlink_unicast+0x82f/0x9e0
[  220.653636][ T7654]  ? __pfx_netlink_unicast+0x10/0x10
[  220.653681][ T7654]  ? netlink_sendmsg+0x642/0xb30
[  220.653710][ T7654]  ? skb_put+0x11b/0x210
[  220.653749][ T7654]  netlink_sendmsg+0x805/0xb30
[  220.653806][ T7654]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.653851][ T7654]  ? aa_sock_msg_perm+0xf1/0x1d0
[  220.653896][ T7654]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  220.653920][ T7654]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.653951][ T7654]  __sock_sendmsg+0x21c/0x270
[  220.653999][ T7654]  ____sys_sendmsg+0x505/0x830
[  220.654047][ T7654]  ? __pfx_____sys_sendmsg+0x10/0x10
[  220.654107][ T7654]  ? import_iovec+0x74/0xa0
[  220.654164][ T7654]  ___sys_sendmsg+0x21f/0x2a0
[  220.654202][ T7654]  ? __pfx____sys_sendmsg+0x10/0x10
[  220.654300][ T7654]  ? __fget_files+0x2a/0x420
[  220.654365][ T7654]  ? __fget_files+0x2a/0x420
[  220.654387][ T7654]  ? __fget_files+0x3a0/0x420
[  220.654445][ T7654]  __x64_sys_sendmsg+0x19b/0x260
[  220.654485][ T7654]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  220.654507][ T7654]  ? perf_trace_preemptirq_template+0xa3/0x340
[  220.654564][ T7654]  ? __pfx_ksys_write+0x10/0x10
[  220.654614][ T7654]  ? do_syscall_64+0xbe/0xfa0
[  220.654662][ T7654]  do_syscall_64+0xfa/0xfa0
[  220.654694][ T7654]  ? lockdep_hardirqs_on+0x9c/0x150
[  220.654728][ T7654]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.654748][ T7654]  ? clear_bhb_loop+0x60/0xb0
[  220.654781][ T7654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.654803][ T7654] RIP: 0033:0x7f189898f749
[  220.654833][ T7654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.654851][ T7654] RSP: 002b:00007f1899901038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  220.654874][ T7654] RAX: ffffffffffffffda RBX: 00007f1898be5fa0 RCX: 00007f189898f749
[  220.654890][ T7654] RDX: 000000002400c8c0 RSI: 0000200000000040 RDI: 0000000000000004
[  220.654903][ T7654] RBP: 00007f1899901090 R08: 0000000000000000 R09: 0000000000000000
[  220.654938][ T7654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  220.654950][ T7654] R13: 00007f1898be6038 R14: 00007f1898be5fa0 R15: 00007ffe675ff108
[  220.655031][ T7654]  </TASK>
[  221.076552][ T7665] netlink: 24 bytes leftover after parsing attributes in process `syz.3.493'.
[  221.851822][ T7676] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  221.972944][ T7676] FAULT_INJECTION: forcing a failure.
[  221.972944][ T7676] name failslab, interval 1, probability 0, space 0, times 0
[  222.031731][ T7676] CPU: 1 UID: 0 PID: 7676 Comm: syz.0.500 Not tainted syzkaller #0 PREEMPT(full) 
[  222.031764][ T7676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  222.031778][ T7676] Call Trace:
[  222.031787][ T7676]  <TASK>
[  222.031798][ T7676]  dump_stack_lvl+0x189/0x250
[  222.031836][ T7676]  ? __pfx____ratelimit+0x10/0x10
[  222.031869][ T7676]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.031901][ T7676]  ? __pfx__printk+0x10/0x10
[  222.031933][ T7676]  ? __pfx___might_resched+0x10/0x10
[  222.031966][ T7676]  should_fail_ex+0x414/0x560
[  222.032009][ T7676]  should_failslab+0xa8/0x100
[  222.032036][ T7676]  kmem_cache_alloc_node_noprof+0x77/0x710
[  222.032070][ T7676]  ? __alloc_skb+0x112/0x2d0
[  222.032089][ T7676]  ? __pfx_nf_tables_abort+0x10/0x10
[  222.032124][ T7676]  __alloc_skb+0x112/0x2d0
[  222.032154][ T7676]  netlink_ack+0x146/0xa50
[  222.032186][ T7676]  ? __kmalloc_cache_noprof+0x3d5/0x6f0
[  222.032232][ T7676]  nfnetlink_rcv+0x2309/0x2590
[  222.032316][ T7676]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  222.032387][ T7676]  ? __pfx_perf_trace_lock+0x10/0x10
[  222.032461][ T7676]  ? netlink_deliver_tap+0x2e/0x1b0
[  222.032508][ T7676]  netlink_unicast+0x82f/0x9e0
[  222.032554][ T7676]  ? __pfx_netlink_unicast+0x10/0x10
[  222.032591][ T7676]  ? netlink_sendmsg+0x642/0xb30
[  222.032611][ T7676]  ? skb_put+0x11b/0x210
[  222.032639][ T7676]  netlink_sendmsg+0x805/0xb30
[  222.032675][ T7676]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.032703][ T7676]  ? aa_sock_msg_perm+0xf1/0x1d0
[  222.032740][ T7676]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  222.032762][ T7676]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.032786][ T7676]  __sock_sendmsg+0x21c/0x270
[  222.032823][ T7676]  ____sys_sendmsg+0x505/0x830
[  222.032856][ T7676]  ? __pfx_____sys_sendmsg+0x10/0x10
[  222.032894][ T7676]  ? import_iovec+0x74/0xa0
[  222.032928][ T7676]  ___sys_sendmsg+0x21f/0x2a0
[  222.032956][ T7676]  ? __pfx____sys_sendmsg+0x10/0x10
[  222.033011][ T7676]  ? __fget_files+0x2a/0x420
[  222.033048][ T7676]  ? __fget_files+0x2a/0x420
[  222.033068][ T7676]  ? __fget_files+0x3a0/0x420
[  222.033105][ T7676]  __x64_sys_sendmsg+0x19b/0x260
[  222.033134][ T7676]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  222.033157][ T7676]  ? perf_trace_preemptirq_template+0xa3/0x340
[  222.033193][ T7676]  ? __pfx_ksys_write+0x10/0x10
[  222.033231][ T7676]  ? do_syscall_64+0xbe/0xfa0
[  222.033269][ T7676]  do_syscall_64+0xfa/0xfa0
[  222.033300][ T7676]  ? lockdep_hardirqs_on+0x9c/0x150
[  222.033332][ T7676]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.033354][ T7676]  ? clear_bhb_loop+0x60/0xb0
[  222.033391][ T7676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.033413][ T7676] RIP: 0033:0x7f9b1b58f749
[  222.033433][ T7676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.033451][ T7676] RSP: 002b:00007f9b1c3aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  222.033475][ T7676] RAX: ffffffffffffffda RBX: 00007f9b1b7e5fa0 RCX: 00007f9b1b58f749
[  222.033491][ T7676] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  222.033504][ T7676] RBP: 00007f9b1c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  222.033518][ T7676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  222.033530][ T7676] R13: 00007f9b1b7e6038 R14: 00007f9b1b7e5fa0 R15: 00007ffc0c828008
[  222.033571][ T7676]  </TASK>
[  223.214550][ T7683] netlink: 48 bytes leftover after parsing attributes in process `syz.3.503'.
[  224.472071][ T7700] syzkaller0: entered promiscuous mode
[  224.492807][ T7700] syzkaller0: entered allmulticast mode
[  224.568157][ T7711] netlink: 'syz.1.510': attribute type 10 has an invalid length.
[  224.589526][ T7711] netlink: 40 bytes leftover after parsing attributes in process `syz.1.510'.
[  224.870861][ T7716] netlink: 12 bytes leftover after parsing attributes in process `syz.2.511'.
[  225.784947][ T7729] netlink: 60 bytes leftover after parsing attributes in process `syz.0.517'.
[  226.709430][ T7734] netlink: 48 bytes leftover after parsing attributes in process `syz.2.518'.
[  227.696838][ T7760] netlink: 'syz.2.527': attribute type 16 has an invalid length.
[  227.713083][ T7760] netlink: 156 bytes leftover after parsing attributes in process `syz.2.527'.
[  227.796688][ T7767] netlink: 60 bytes leftover after parsing attributes in process `syz.1.530'.
[  229.324145][ T7799] netlink: 8 bytes leftover after parsing attributes in process `syz.0.541'.
[  229.336605][ T7799] netlink: 'syz.0.541': attribute type 2 has an invalid length.
[  229.355404][ T7799] netlink: 'syz.0.541': attribute type 8 has an invalid length.
[  229.364070][ T7799] netlink: 132 bytes leftover after parsing attributes in process `syz.0.541'.
[  229.608347][ T7799] netlink: 60 bytes leftover after parsing attributes in process `syz.0.541'.
[  229.722139][ T7803] netlink: 60 bytes leftover after parsing attributes in process `syz.0.541'.
[  229.790068][ T7805] netlink: 60 bytes leftover after parsing attributes in process `syz.0.541'.
[  229.806639][ T7799] netlink: 60 bytes leftover after parsing attributes in process `syz.0.541'.
[  231.823225][ T7816] FAULT_INJECTION: forcing a failure.
[  231.823225][ T7816] name failslab, interval 1, probability 0, space 0, times 0
[  231.839895][ T7816] CPU: 1 UID: 0 PID: 7816 Comm: syz.1.544 Not tainted syzkaller #0 PREEMPT(full) 
[  231.839926][ T7816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  231.839940][ T7816] Call Trace:
[  231.839950][ T7816]  <TASK>
[  231.839959][ T7816]  dump_stack_lvl+0x189/0x250
[  231.839998][ T7816]  ? __pfx____ratelimit+0x10/0x10
[  231.840031][ T7816]  ? __pfx_dump_stack_lvl+0x10/0x10
[  231.840063][ T7816]  ? __pfx__printk+0x10/0x10
[  231.840096][ T7816]  ? __pfx___might_resched+0x10/0x10
[  231.840129][ T7816]  should_fail_ex+0x414/0x560
[  231.840172][ T7816]  should_failslab+0xa8/0x100
[  231.840199][ T7816]  kmem_cache_alloc_node_noprof+0x77/0x710
[  231.840233][ T7816]  ? __alloc_skb+0x112/0x2d0
[  231.840264][ T7816]  __alloc_skb+0x112/0x2d0
[  231.840292][ T7816]  netlink_ack+0x146/0xa50
[  231.840312][ T7816]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  231.840369][ T7816]  netlink_rcv_skb+0x28c/0x470
[  231.840392][ T7816]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  231.840428][ T7816]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  231.840465][ T7816]  ? netlink_deliver_tap+0x2e/0x1b0
[  231.840498][ T7816]  netlink_unicast+0x82f/0x9e0
[  231.840543][ T7816]  ? __pfx_netlink_unicast+0x10/0x10
[  231.840580][ T7816]  ? netlink_sendmsg+0x642/0xb30
[  231.840601][ T7816]  ? skb_put+0x11b/0x210
[  231.840630][ T7816]  netlink_sendmsg+0x805/0xb30
[  231.840668][ T7816]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.840698][ T7816]  ? aa_sock_msg_perm+0xf1/0x1d0
[  231.840735][ T7816]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  231.840758][ T7816]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.840784][ T7816]  __sock_sendmsg+0x21c/0x270
[  231.840830][ T7816]  sock_write_iter+0x279/0x360
[  231.840864][ T7816]  ? __pfx_sock_write_iter+0x10/0x10
[  231.840890][ T7816]  ? perf_trace_lock+0xec/0x3b0
[  231.840931][ T7816]  ? bpf_lsm_file_permission+0x9/0x20
[  231.840956][ T7816]  ? security_file_permission+0x75/0x290
[  231.840996][ T7816]  vfs_write+0x5c9/0xb30
[  231.841037][ T7816]  ? __pfx_sock_write_iter+0x10/0x10
[  231.841068][ T7816]  ? __pfx_vfs_write+0x10/0x10
[  231.841115][ T7816]  ? __fget_files+0x2a/0x420
[  231.841151][ T7816]  ksys_write+0x145/0x250
[  231.841188][ T7816]  ? __pfx_ksys_write+0x10/0x10
[  231.841227][ T7816]  ? do_syscall_64+0xbe/0xfa0
[  231.841267][ T7816]  do_syscall_64+0xfa/0xfa0
[  231.841298][ T7816]  ? lockdep_hardirqs_on+0x9c/0x150
[  231.841332][ T7816]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.841355][ T7816]  ? clear_bhb_loop+0x60/0xb0
[  231.841383][ T7816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.841405][ T7816] RIP: 0033:0x7f4f2338f749
[  231.841426][ T7816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.841445][ T7816] RSP: 002b:00007f4f241ed038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  231.841470][ T7816] RAX: ffffffffffffffda RBX: 00007f4f235e5fa0 RCX: 00007f4f2338f749
[  231.841486][ T7816] RDX: 000000000000fe33 RSI: 0000200000000200 RDI: 0000000000000003
[  231.841500][ T7816] RBP: 00007f4f241ed090 R08: 0000000000000000 R09: 0000000000000000
[  231.841514][ T7816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.841527][ T7816] R13: 00007f4f235e6038 R14: 00007f4f235e5fa0 R15: 00007fff6aadaca8
[  231.841569][ T7816]  </TASK>
[  232.705096][ T5844] Bluetooth: hci1: command 0x0406 tx timeout
[  232.707358][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  232.711404][ T5844] Bluetooth: hci4: command 0x0406 tx timeout
[  232.719747][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  232.725726][ T5844] Bluetooth: hci0: command 0x0406 tx timeout
[  233.069049][ T7852] FAULT_INJECTION: forcing a failure.
[  233.069049][ T7852] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.109816][ T7853] netlink: 'syz.4.554': attribute type 10 has an invalid length.
[  233.135253][ T7852] CPU: 0 UID: 0 PID: 7852 Comm: syz.1.553 Not tainted syzkaller #0 PREEMPT(full) 
[  233.135283][ T7852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  233.135297][ T7852] Call Trace:
[  233.135306][ T7852]  <TASK>
[  233.135316][ T7852]  dump_stack_lvl+0x189/0x250
[  233.135354][ T7852]  ? __pfx____ratelimit+0x10/0x10
[  233.135388][ T7852]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.135419][ T7852]  ? __pfx__printk+0x10/0x10
[  233.135444][ T7852]  ? __might_fault+0xb0/0x130
[  233.135569][ T7852]  should_fail_ex+0x414/0x560
[  233.135611][ T7852]  _copy_from_user+0x2d/0xb0
[  233.135643][ T7852]  __sys_bpf+0x1e3/0x860
[  233.135669][ T7852]  ? __pfx___sys_bpf+0x10/0x10
[  233.135688][ T7852]  ? kvm_sched_clock_read+0x11/0x20
[  233.135761][ T7852]  __x64_sys_bpf+0x7c/0x90
[  233.135797][ T7852]  do_syscall_64+0xfa/0xfa0
[  233.135832][ T7852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.135854][ T7852]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  233.135878][ T7852]  ? clear_bhb_loop+0x60/0xb0
[  233.135906][ T7852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.135929][ T7852] RIP: 0033:0x7f4f2338f749
[  233.135950][ T7852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.135969][ T7852] RSP: 002b:00007f4f241cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  233.135994][ T7852] RAX: ffffffffffffffda RBX: 00007f4f235e6090 RCX: 00007f4f2338f749
[  233.136010][ T7852] RDX: 0000000000000094 RSI: 0000200000001b00 RDI: 0000000000000005
[  233.136025][ T7852] RBP: 00007f4f241cc090 R08: 0000000000000000 R09: 0000000000000000
[  233.136039][ T7852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.136052][ T7852] R13: 00007f4f235e6128 R14: 00007f4f235e6090 R15: 00007fff6aadaca8
[  233.136091][ T7852]  </TASK>
[  233.714899][ T7865] netlink: 'syz.2.560': attribute type 10 has an invalid length.
[  234.294198][ T7882] netlink: 16 bytes leftover after parsing attributes in process `syz.1.561'.
[  234.389717][ T7882] netlink: 16 bytes leftover after parsing attributes in process `syz.1.561'.
[  234.622012][ T7889] netlink: 'syz.4.564': attribute type 1 has an invalid length.
[  235.642255][ T7909] wlan1 speed is unknown, defaulting to 1000
[  235.657517][ T7909] lo speed is unknown, defaulting to 1000
[  236.204856][ T7923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.576'.
[  236.695297][ T7940] FAULT_INJECTION: forcing a failure.
[  236.695297][ T7940] name failslab, interval 1, probability 0, space 0, times 0
[  236.709018][ T7940] CPU: 1 UID: 0 PID: 7940 Comm: syz.3.582 Not tainted syzkaller #0 PREEMPT(full) 
[  236.709052][ T7940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  236.709065][ T7940] Call Trace:
[  236.709074][ T7940]  <TASK>
[  236.709084][ T7940]  dump_stack_lvl+0x189/0x250
[  236.709125][ T7940]  ? __pfx_dump_stack_lvl+0x10/0x10
[  236.709156][ T7940]  ? __pfx__printk+0x10/0x10
[  236.709193][ T7940]  ? kasan_check_range+0xa5/0x2c0
[  236.709226][ T7940]  should_fail_ex+0x414/0x560
[  236.709267][ T7940]  should_failslab+0xa8/0x100
[  236.709292][ T7940]  kmem_cache_alloc_node_noprof+0x77/0x710
[  236.709324][ T7940]  ? __alloc_skb+0x112/0x2d0
[  236.709344][ T7940]  ? netlink_autobind+0xdb/0x300
[  236.709375][ T7940]  __alloc_skb+0x112/0x2d0
[  236.709401][ T7940]  netlink_sendmsg+0x5c6/0xb30
[  236.709437][ T7940]  ? __pfx_netlink_sendmsg+0x10/0x10
[  236.709465][ T7940]  ? aa_sock_msg_perm+0xf1/0x1d0
[  236.709501][ T7940]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  236.709523][ T7940]  ? __pfx_netlink_sendmsg+0x10/0x10
[  236.709548][ T7940]  __sock_sendmsg+0x21c/0x270
[  236.709584][ T7940]  ____sys_sendmsg+0x505/0x830
[  236.709617][ T7940]  ? __pfx_____sys_sendmsg+0x10/0x10
[  236.709654][ T7940]  ? import_iovec+0x74/0xa0
[  236.709688][ T7940]  ___sys_sendmsg+0x21f/0x2a0
[  236.709716][ T7940]  ? __pfx____sys_sendmsg+0x10/0x10
[  236.709769][ T7940]  ? __fget_files+0x2a/0x420
[  236.709807][ T7940]  ? __fget_files+0x2a/0x420
[  236.709833][ T7940]  ? __fget_files+0x3a0/0x420
[  236.709869][ T7940]  __x64_sys_sendmsg+0x19b/0x260
[  236.709898][ T7940]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  236.709937][ T7940]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  236.709968][ T7940]  ? do_syscall_64+0xbe/0xfa0
[  236.710007][ T7940]  do_syscall_64+0xfa/0xfa0
[  236.710041][ T7940]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.710061][ T7940]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  236.710084][ T7940]  ? clear_bhb_loop+0x60/0xb0
[  236.710111][ T7940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.710133][ T7940] RIP: 0033:0x7fad2118f749
[  236.710153][ T7940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.710179][ T7940] RSP: 002b:00007fad2200f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  236.710203][ T7940] RAX: ffffffffffffffda RBX: 00007fad213e5fa0 RCX: 00007fad2118f749
[  236.710219][ T7940] RDX: 0000000004000000 RSI: 0000200000000100 RDI: 0000000000000007
[  236.710233][ T7940] RBP: 00007fad2200f090 R08: 0000000000000000 R09: 0000000000000000
[  236.710246][ T7940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.710258][ T7940] R13: 00007fad213e6038 R14: 00007fad213e5fa0 R15: 00007fff23aec188
[  236.710297][ T7940]  </TASK>
[  237.010521][ T7941] veth1_to_bond: entered allmulticast mode
[  237.524768][ T7954] netlink: 28 bytes leftover after parsing attributes in process `syz.0.586'.
[  237.536161][ T7954] netlink: 28 bytes leftover after parsing attributes in process `syz.0.586'.
[  237.590061][ T7955] netlink: 152 bytes leftover after parsing attributes in process `syz.2.585'.
[  237.599317][ T5835] Bluetooth: hci3: ISO packet for unknown connection handle 2622
[  237.607301][ T7955] netlink: 6 bytes leftover after parsing attributes in process `syz.2.585'.
[  237.946745][ T7971] netlink: 60 bytes leftover after parsing attributes in process `syz.4.590'.
[  239.152864][ T7987] netlink: 'syz.4.595': attribute type 10 has an invalid length.
[  239.161478][ T7987] netlink: 40 bytes leftover after parsing attributes in process `syz.4.595'.
[  239.669205][ T7989] netlink: 'syz.3.597': attribute type 1 has an invalid length.
[  240.254305][ T8014] FAULT_INJECTION: forcing a failure.
[  240.254305][ T8014] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  240.295577][ T8014] CPU: 0 UID: 0 PID: 8014 Comm: syz.1.604 Not tainted syzkaller #0 PREEMPT(full) 
[  240.295609][ T8014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  240.295639][ T8014] Call Trace:
[  240.295648][ T8014]  <TASK>
[  240.295658][ T8014]  dump_stack_lvl+0x189/0x250
[  240.295696][ T8014]  ? __pfx____ratelimit+0x10/0x10
[  240.295730][ T8014]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.295762][ T8014]  ? __pfx__printk+0x10/0x10
[  240.295804][ T8014]  should_fail_ex+0x414/0x560
[  240.295848][ T8014]  _copy_to_user+0x31/0xb0
[  240.295882][ T8014]  simple_read_from_buffer+0xe1/0x170
[  240.295936][ T8014]  proc_fail_nth_read+0x1b3/0x220
[  240.295979][ T8014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  240.296014][ T8014]  ? rw_verify_area+0x2a6/0x4d0
[  240.296045][ T8014]  ? __lock_acquire+0xab9/0xd20
[  240.296065][ T8014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  240.296098][ T8014]  vfs_read+0x200/0xa30
[  240.296128][ T8014]  ? fdget_pos+0x247/0x320
[  240.296157][ T8014]  ? __pfx___mutex_lock+0x10/0x10
[  240.296194][ T8014]  ? __pfx_vfs_read+0x10/0x10
[  240.296229][ T8014]  ? __fget_files+0x2a/0x420
[  240.296258][ T8014]  ? __fget_files+0x3a0/0x420
[  240.296278][ T8014]  ? __fget_files+0x2a/0x420
[  240.296313][ T8014]  ksys_read+0x145/0x250
[  240.296344][ T8014]  ? __fget_files+0x2a/0x420
[  240.296368][ T8014]  ? __pfx_ksys_read+0x10/0x10
[  240.296406][ T8014]  ? do_syscall_64+0xbe/0xfa0
[  240.296447][ T8014]  do_syscall_64+0xfa/0xfa0
[  240.296479][ T8014]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.296512][ T8014]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.296535][ T8014]  ? clear_bhb_loop+0x60/0xb0
[  240.296565][ T8014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.296587][ T8014] RIP: 0033:0x7f4f2338e15c
[  240.296608][ T8014] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  240.296627][ T8014] RSP: 002b:00007f4f241ed030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  240.296650][ T8014] RAX: ffffffffffffffda RBX: 00007f4f235e5fa0 RCX: 00007f4f2338e15c
[  240.296667][ T8014] RDX: 000000000000000f RSI: 00007f4f241ed0a0 RDI: 0000000000000005
[  240.296681][ T8014] RBP: 00007f4f241ed090 R08: 0000000000000000 R09: 0000000000000000
[  240.296695][ T8014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.296708][ T8014] R13: 00007f4f235e6038 R14: 00007f4f235e5fa0 R15: 00007fff6aadaca8
[  240.296750][ T8014]  </TASK>
[  240.546572][ T8010] netlink: 60 bytes leftover after parsing attributes in process `syz.3.605'.
[  241.629170][ T8036] netlink: 28 bytes leftover after parsing attributes in process `syz.2.615'.
[  241.645719][ T8040] FAULT_INJECTION: forcing a failure.
[  241.645719][ T8040] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  241.660658][ T8036] netlink: 28 bytes leftover after parsing attributes in process `syz.2.615'.
[  241.762984][ T8040] CPU: 0 UID: 0 PID: 8040 Comm: syz.3.614 Not tainted syzkaller #0 PREEMPT(full) 
[  241.763018][ T8040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  241.763033][ T8040] Call Trace:
[  241.763046][ T8040]  <TASK>
[  241.763062][ T8040]  dump_stack_lvl+0x189/0x250
[  241.763111][ T8040]  ? __pfx____ratelimit+0x10/0x10
[  241.763157][ T8040]  ? __pfx_dump_stack_lvl+0x10/0x10
[  241.763202][ T8040]  ? __pfx__printk+0x10/0x10
[  241.763314][ T8040]  should_fail_ex+0x414/0x560
[  241.763394][ T8040]  _copy_to_user+0x31/0xb0
[  241.763450][ T8040]  simple_read_from_buffer+0xe1/0x170
[  241.763531][ T8040]  proc_fail_nth_read+0x1b3/0x220
[  241.763591][ T8040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  241.763653][ T8040]  ? rw_verify_area+0x2a6/0x4d0
[  241.763690][ T8040]  ? __lock_acquire+0xab9/0xd20
[  241.763712][ T8040]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  241.763764][ T8040]  vfs_read+0x200/0xa30
[  241.763805][ T8040]  ? fdget_pos+0x247/0x320
[  241.763868][ T8040]  ? __pfx___mutex_lock+0x10/0x10
[  241.763919][ T8040]  ? __pfx_vfs_read+0x10/0x10
[  241.763977][ T8040]  ? __fget_files+0x2a/0x420
[  241.764035][ T8040]  ? __fget_files+0x3a0/0x420
[  241.764061][ T8040]  ? __fget_files+0x2a/0x420
[  241.764149][ T8040]  ksys_read+0x145/0x250
[  241.764211][ T8040]  ? __pfx_ksys_read+0x10/0x10
[  241.764280][ T8040]  ? do_syscall_64+0xbe/0xfa0
[  241.764348][ T8040]  do_syscall_64+0xfa/0xfa0
[  241.764385][ T8040]  ? lockdep_hardirqs_on+0x9c/0x150
[  241.764428][ T8040]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.764456][ T8040]  ? clear_bhb_loop+0x60/0xb0
[  241.764509][ T8040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.764535][ T8040] RIP: 0033:0x7fad2118e15c
[  241.764565][ T8040] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  241.764585][ T8040] RSP: 002b:00007fad2200f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  241.764611][ T8040] RAX: ffffffffffffffda RBX: 00007fad213e5fa0 RCX: 00007fad2118e15c
[  241.764652][ T8040] RDX: 000000000000000f RSI: 00007fad2200f0a0 RDI: 0000000000000006
[  241.764667][ T8040] RBP: 00007fad2200f090 R08: 0000000000000000 R09: 0000000000000000
[  241.764681][ T8040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.764695][ T8040] R13: 00007fad213e6038 R14: 00007fad213e5fa0 R15: 00007fff23aec188
[  241.764822][ T8040]  </TASK>
[  242.511837][ T8045] openvswitch: netlink: Message has 4 unknown bytes.
[  242.828439][ T8044] Driver unsupported XDP return value 0 on prog  (id 536) dev N/A, expect packet loss!
[  242.870306][ T8055] netlink: 12 bytes leftover after parsing attributes in process `syz.3.618'.
[  242.920151][ T8055] netlink: 152 bytes leftover after parsing attributes in process `syz.3.618'.
[  243.007106][ T8062] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  243.064006][ T8062] netlink: 4707 bytes leftover after parsing attributes in process `syz.0.621'.
[  245.967705][ T8073] netlink: 56 bytes leftover after parsing attributes in process `syz.1.624'.
[  245.997616][ T8073] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.624'.
[  246.643899][ T8097] netlink: 'syz.1.629': attribute type 10 has an invalid length.
[  246.708646][ T8097] netlink: 40 bytes leftover after parsing attributes in process `syz.1.629'.
[  247.554096][ T5835] Bluetooth: hci3: unexpected event 0x36 length: 15 > 7
[  247.797179][ T8118] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  247.850864][ T8118] netlink: 4707 bytes leftover after parsing attributes in process `syz.0.636'.
[  247.862815][ T8120] FAULT_INJECTION: forcing a failure.
[  247.862815][ T8120] name failslab, interval 1, probability 0, space 0, times 0
[  247.876872][ T8120] CPU: 1 UID: 0 PID: 8120 Comm: syz.2.637 Not tainted syzkaller #0 PREEMPT(full) 
[  247.876903][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  247.876916][ T8120] Call Trace:
[  247.876929][ T8120]  <TASK>
[  247.876942][ T8120]  dump_stack_lvl+0x189/0x250
[  247.876986][ T8120]  ? __pfx____ratelimit+0x10/0x10
[  247.877028][ T8120]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.877068][ T8120]  ? __pfx__printk+0x10/0x10
[  247.877132][ T8120]  ? __pfx___might_resched+0x10/0x10
[  247.877196][ T8120]  should_fail_ex+0x414/0x560
[  247.877267][ T8120]  should_failslab+0xa8/0x100
[  247.877307][ T8120]  kmem_cache_alloc_node_noprof+0x77/0x710
[  247.877348][ T8120]  ? __alloc_skb+0x112/0x2d0
[  247.877371][ T8120]  ? netlink_autobind+0xdb/0x300
[  247.877427][ T8120]  __alloc_skb+0x112/0x2d0
[  247.877481][ T8120]  netlink_sendmsg+0x5c6/0xb30
[  247.877570][ T8120]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.877617][ T8120]  ? irqentry_exit+0x74/0x90
[  247.877647][ T8120]  ? aa_sock_msg_perm+0xf1/0x1d0
[  247.877699][ T8120]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  247.877725][ T8120]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.877762][ T8120]  __sock_sendmsg+0x21c/0x270
[  247.877821][ T8120]  ____sys_sendmsg+0x505/0x830
[  247.877886][ T8120]  ? __pfx_____sys_sendmsg+0x10/0x10
[  247.877968][ T8120]  ? import_iovec+0x74/0xa0
[  247.878028][ T8120]  ___sys_sendmsg+0x21f/0x2a0
[  247.878076][ T8120]  ? __pfx____sys_sendmsg+0x10/0x10
[  247.878223][ T8120]  ? __fget_files+0x2a/0x420
[  247.878317][ T8120]  ? __fget_files+0x2a/0x420
[  247.878341][ T8120]  ? __fget_files+0x3a0/0x420
[  247.878427][ T8120]  __x64_sys_sendmsg+0x19b/0x260
[  247.878478][ T8120]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  247.878663][ T8120]  do_syscall_64+0xfa/0xfa0
[  247.878710][ T8120]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.878732][ T8120]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  247.878755][ T8120]  ? clear_bhb_loop+0x60/0xb0
[  247.878803][ T8120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.878827][ T8120] RIP: 0033:0x7f189898f749
[  247.878854][ T8120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.878881][ T8120] RSP: 002b:00007f1899901038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  247.878905][ T8120] RAX: ffffffffffffffda RBX: 00007f1898be5fa0 RCX: 00007f189898f749
[  247.878922][ T8120] RDX: 000000000404c840 RSI: 00002000000001c0 RDI: 000000000000000b
[  247.878937][ T8120] RBP: 00007f1899901090 R08: 0000000000000000 R09: 0000000000000000
[  247.878951][ T8120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.878964][ T8120] R13: 00007f1898be6038 R14: 00007f1898be5fa0 R15: 00007ffe675ff108
[  247.879077][ T8120]  </TASK>
[  248.262253][ T8129] netlink: 4 bytes leftover after parsing attributes in process `syz.3.639'.
[  248.276048][ T8129] netlink: 16 bytes leftover after parsing attributes in process `syz.3.639'.
[  248.671407][ T8132] netlink: 10 bytes leftover after parsing attributes in process `syz.3.641'.
[  249.274165][ T8146] netlink: 'syz.0.645': attribute type 10 has an invalid length.
[  249.298511][ T8146] netlink: 40 bytes leftover after parsing attributes in process `syz.0.645'.
[  249.321488][ T8148] netlink: 32 bytes leftover after parsing attributes in process `syz.3.646'.
[  249.353790][ T8148] netlink: 32 bytes leftover after parsing attributes in process `syz.3.646'.
[  251.062049][ T8179] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  251.146742][ T8180] __nla_validate_parse: 2 callbacks suppressed
[  251.146791][ T8180] netlink: 28 bytes leftover after parsing attributes in process `syz.2.655'.
[  251.173394][ T8180] netlink: 28 bytes leftover after parsing attributes in process `syz.2.655'.
[  251.306898][ T8179] netlink: 4707 bytes leftover after parsing attributes in process `syz.3.656'.
[  251.378882][ T8192] netlink: 84 bytes leftover after parsing attributes in process `syz.1.659'.
[  251.463630][ T8186] netlink: 10 bytes leftover after parsing attributes in process `syz.0.657'.
[  252.296611][ T8208] netlink: 60 bytes leftover after parsing attributes in process `syz.2.664'.
[  252.341850][ T8211] netlink: 'syz.0.662': attribute type 10 has an invalid length.
[  252.431197][ T8211] netlink: 40 bytes leftover after parsing attributes in process `syz.0.662'.
[  253.425536][ T8230] delete_channel: no stack
[  253.703973][ T8241] netlink: 10 bytes leftover after parsing attributes in process `syz.2.672'.
[  254.384527][ T8259] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  254.470294][ T8259] netlink: 4707 bytes leftover after parsing attributes in process `syz.1.677'.
[  254.661264][ T8269] netlink: 60 bytes leftover after parsing attributes in process `syz.3.678'.
[  255.002206][ T8272] netlink: 'syz.2.680': attribute type 8 has an invalid length.
[  255.799695][ T8288] tc_dump_action: action bad kind
[  256.178757][ T8297] __nla_validate_parse: 4 callbacks suppressed
[  256.178835][ T8297] netlink: 188 bytes leftover after parsing attributes in process `syz.3.690'.
[  256.414737][ T8305] netlink: 60 bytes leftover after parsing attributes in process `syz.1.692'.
[  256.976405][ T8319] tc_dump_action: action bad kind
[  257.180493][ T8326] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  257.195589][   T31] audit: type=1800 audit(1763814346.556:2): pid=8326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.700" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  257.197339][ T8326] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  257.249780][ T8326] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  257.520065][ T8336] netlink: 4595 bytes leftover after parsing attributes in process `syz.4.705'.
[  257.537532][ T8336] netlink: 4595 bytes leftover after parsing attributes in process `syz.4.705'.
[  257.590463][ T8336] netlink: 'syz.4.705': attribute type 1 has an invalid length.
[  257.610797][ T8336] netlink: 'syz.4.705': attribute type 1 has an invalid length.
[  257.623995][ T8336] netlink: 'syz.4.705': attribute type 2 has an invalid length.
[  257.648652][ T8336] netlink: 'syz.4.705': attribute type 2 has an invalid length.
[  257.878217][ T8345] netlink: 'syz.4.707': attribute type 10 has an invalid length.
[  258.342969][ T8351] xt_limit: Overflow, try lower: 271964/0
[  260.453880][ T8382] netlink: 144 bytes leftover after parsing attributes in process `syz.2.718'.
[  260.619434][ T8386] netlink: 68 bytes leftover after parsing attributes in process `syz.3.719'.
[  261.353589][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  261.360266][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  261.530098][ T8412] FAULT_INJECTION: forcing a failure.
[  261.530098][ T8412] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  261.598478][ T8412] CPU: 1 UID: 0 PID: 8412 Comm: syz.2.729 Not tainted syzkaller #0 PREEMPT(full) 
[  261.598511][ T8412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  261.598527][ T8412] Call Trace:
[  261.598535][ T8412]  <TASK>
[  261.598546][ T8412]  dump_stack_lvl+0x189/0x250
[  261.598583][ T8412]  ? __pfx____ratelimit+0x10/0x10
[  261.598616][ T8412]  ? __pfx_dump_stack_lvl+0x10/0x10
[  261.598648][ T8412]  ? __pfx__printk+0x10/0x10
[  261.598675][ T8412]  ? fs_reclaim_acquire+0x7d/0x100
[  261.598723][ T8412]  should_fail_ex+0x414/0x560
[  261.598774][ T8412]  prepare_alloc_pages+0x213/0x610
[  261.598806][ T8412]  __alloc_frozen_pages_noprof+0x123/0x370
[  261.598835][ T8412]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  261.598868][ T8412]  ? policy_nodemask+0x27c/0x720
[  261.598890][ T8412]  ? lockdep_hardirqs_on+0x9c/0x150
[  261.598929][ T8412]  alloc_pages_mpol+0x232/0x4a0
[  261.598959][ T8412]  alloc_pages_noprof+0xa9/0x190
[  261.598985][ T8412]  get_free_pages_noprof+0xf/0x80
[  261.599009][ T8412]  kasan_populate_vmalloc+0x38/0x270
[  261.599043][ T8412]  ? do_raw_spin_unlock+0x122/0x240
[  261.599081][ T8412]  alloc_vmap_area+0xd7a/0x14c0
[  261.599132][ T8412]  ? __pfx_alloc_vmap_area+0x10/0x10
[  261.599169][ T8412]  ? __kasan_kmalloc+0x93/0xb0
[  261.599209][ T8412]  ? __get_vm_area_node+0x13f/0x300
[  261.599243][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  261.599267][ T8412]  __get_vm_area_node+0x1f8/0x300
[  261.599306][ T8412]  __vmalloc_node_range_noprof+0x30c/0x12d0
[  261.599341][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  261.599390][ T8412]  ? irqentry_exit+0x74/0x90
[  261.599428][ T8412]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  261.599464][ T8412]  ? perf_trace_run_bpf_submit+0xee/0x170
[  261.599512][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  261.599534][ T8412]  __vmalloc_noprof+0xb1/0xf0
[  261.599566][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  261.599594][ T8412]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  261.599624][ T8412]  bpf_prog_alloc+0x3c/0x1a0
[  261.599651][ T8412]  bpf_prog_load+0x735/0x19e0
[  261.599688][ T8412]  ? __pfx_bpf_prog_load+0x10/0x10
[  261.599712][ T8412]  ? lock_acquire+0x175/0x360
[  261.599759][ T8412]  ? bpf_lsm_bpf+0x9/0x20
[  261.599784][ T8412]  ? security_bpf+0x7e/0x300
[  261.599816][ T8412]  __sys_bpf+0x507/0x860
[  261.599839][ T8412]  ? __pfx___sys_bpf+0x10/0x10
[  261.599899][ T8412]  __x64_sys_bpf+0x7c/0x90
[  261.599934][ T8412]  do_syscall_64+0xfa/0xfa0
[  261.599970][ T8412]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.599992][ T8412]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  261.600015][ T8412]  ? clear_bhb_loop+0x60/0xb0
[  261.600044][ T8412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.600066][ T8412] RIP: 0033:0x7f189898f749
[  261.600087][ T8412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.600107][ T8412] RSP: 002b:00007f1899901038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  261.600132][ T8412] RAX: ffffffffffffffda RBX: 00007f1898be5fa0 RCX: 00007f189898f749
[  261.600156][ T8412] RDX: 0000000000000094 RSI: 0000200000002c40 RDI: 0000000000000005
[  261.600170][ T8412] RBP: 00007f1899901090 R08: 0000000000000000 R09: 0000000000000000
[  261.600184][ T8412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  261.600197][ T8412] R13: 00007f1898be6038 R14: 00007f1898be5fa0 R15: 00007ffe675ff108
[  261.600251][ T8412]  </TASK>
[  261.600518][ T8412] syz.2.729: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  262.113405][ T8412] CPU: 0 UID: 0 PID: 8412 Comm: syz.2.729 Not tainted syzkaller #0 PREEMPT(full) 
[  262.113439][ T8412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  262.113453][ T8412] Call Trace:
[  262.113462][ T8412]  <TASK>
[  262.113472][ T8412]  dump_stack_lvl+0x189/0x250
[  262.113514][ T8412]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.113546][ T8412]  ? __pfx__printk+0x10/0x10
[  262.113570][ T8412]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  262.113605][ T8412]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  262.113639][ T8412]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  262.113677][ T8412]  warn_alloc+0x214/0x310
[  262.113720][ T8412]  ? __pfx_warn_alloc+0x10/0x10
[  262.113764][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  262.113789][ T8412]  ? __get_vm_area_node+0x211/0x300
[  262.113831][ T8412]  __vmalloc_node_range_noprof+0x331/0x12d0
[  262.113893][ T8412]  ? irqentry_exit+0x74/0x90
[  262.113932][ T8412]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  262.113968][ T8412]  ? perf_trace_run_bpf_submit+0xee/0x170
[  262.114014][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  262.114036][ T8412]  __vmalloc_noprof+0xb1/0xf0
[  262.114069][ T8412]  ? bpf_prog_alloc_no_stats+0x4a/0x4d0
[  262.114097][ T8412]  bpf_prog_alloc_no_stats+0x4a/0x4d0
[  262.114127][ T8412]  bpf_prog_alloc+0x3c/0x1a0
[  262.114154][ T8412]  bpf_prog_load+0x735/0x19e0
[  262.114193][ T8412]  ? __pfx_bpf_prog_load+0x10/0x10
[  262.114217][ T8412]  ? lock_acquire+0x175/0x360
[  262.114264][ T8412]  ? bpf_lsm_bpf+0x9/0x20
[  262.114288][ T8412]  ? security_bpf+0x7e/0x300
[  262.114322][ T8412]  __sys_bpf+0x507/0x860
[  262.114354][ T8412]  ? __pfx___sys_bpf+0x10/0x10
[  262.114416][ T8412]  __x64_sys_bpf+0x7c/0x90
[  262.114452][ T8412]  do_syscall_64+0xfa/0xfa0
[  262.114509][ T8412]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.114533][ T8412]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  262.114557][ T8412]  ? clear_bhb_loop+0x60/0xb0
[  262.114585][ T8412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.114609][ T8412] RIP: 0033:0x7f189898f749
[  262.114630][ T8412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.114650][ T8412] RSP: 002b:00007f1899901038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  262.114676][ T8412] RAX: ffffffffffffffda RBX: 00007f1898be5fa0 RCX: 00007f189898f749
[  262.114693][ T8412] RDX: 0000000000000094 RSI: 0000200000002c40 RDI: 0000000000000005
[  262.114709][ T8412] RBP: 00007f1899901090 R08: 0000000000000000 R09: 0000000000000000
[  262.114723][ T8412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.114737][ T8412] R13: 00007f1898be6038 R14: 00007f1898be5fa0 R15: 00007ffe675ff108
[  262.114777][ T8412]  </TASK>
[  262.397458][ T8412] Mem-Info:
[  262.400631][ T8412] active_anon:13726 inactive_anon:0 isolated_anon:0
[  262.400631][ T8412]  active_file:19720 inactive_file:39943 isolated_file:0
[  262.400631][ T8412]  unevictable:768 dirty:531 writeback:0
[  262.400631][ T8412]  slab_reclaimable:10918 slab_unreclaimable:124637
[  262.400631][ T8412]  mapped:37829 shmem:9590 pagetables:1279
[  262.400631][ T8412]  sec_pagetables:0 bounce:0
[  262.400631][ T8412]  kernel_misc_reclaimable:0
[  262.400631][ T8412]  free:1277150 free_pcp:18444 free_cma:0
[  262.447154][ T8412] Node 0 active_anon:57224kB inactive_anon:0kB active_file:78880kB inactive_file:159572kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:153568kB dirty:2124kB writeback:0kB shmem:39092kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12672kB pagetables:5012kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  262.479976][ T8412] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:176kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  262.511346][ T8412] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  262.542616][ T8412] lowmem_reserve[]: 0 2505 2505 2505 2505
[  262.548925][ T8412] Node 0 DMA32 free:1191376kB boost:0kB min:34308kB low:42884kB high:51460kB reserved_highatomic:0KB free_highatomic:0KB active_anon:58024kB inactive_anon:0kB active_file:78880kB inactive_file:159572kB unevictable:1536kB writepending:2124kB zspages:0kB present:3129332kB managed:2565144kB mlocked:0kB bounce:0kB free_pcp:59752kB local_pcp:35064kB free_cma:0kB
[  262.583096][ T8412] lowmem_reserve[]: 0 0 0 0 0
[  262.592762][ T8412] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  262.622813][ T8412] lowmem_reserve[]: 0 0 0 0 0
[  262.627628][ T8412] Node 1 Normal free:3898136kB boost:0kB min:55592kB low:69488kB high:83384kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:14596kB local_pcp:5988kB free_cma:0kB
[  262.643633][ T8431] FAULT_INJECTION: forcing a failure.
[  262.643633][ T8431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  262.662433][ T8412] lowmem_reserve[]: 0 0 0 0 0
[  262.682969][ T8412] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  262.696838][ T8412] Node 0 DMA32: 479*4kB (UME) 645*8kB (UME) 854*16kB (UE) 477*32kB (UME) 350*64kB (UME) 164*128kB (UME) 50*256kB (UM) 12*512kB (UME) 11*1024kB (UME) 4*2048kB (ME) 262*4096kB (M) = 1190948kB
[  262.716650][ T8431] CPU: 0 UID: 0 PID: 8431 Comm: syz.4.734 Not tainted syzkaller #0 PREEMPT(full) 
[  262.716680][ T8431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  262.716694][ T8431] Call Trace:
[  262.716701][ T8431]  <TASK>
[  262.716710][ T8431]  dump_stack_lvl+0x189/0x250
[  262.716746][ T8431]  ? __pfx____ratelimit+0x10/0x10
[  262.716777][ T8431]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.716810][ T8431]  ? __pfx__printk+0x10/0x10
[  262.716849][ T8431]  should_fail_ex+0x414/0x560
[  262.716891][ T8431]  _copy_from_user+0x2d/0xb0
[  262.716923][ T8431]  vmemdup_user+0x5e/0xd0
[  262.716950][ T8431]  map_get_next_key+0x1c3/0x630
[  262.716977][ T8431]  ? bpf_lsm_bpf+0x9/0x20
[  262.717002][ T8431]  ? security_bpf+0x7e/0x300
[  262.717037][ T8431]  __sys_bpf+0x63d/0x860
[  262.717070][ T8431]  ? __pfx___sys_bpf+0x10/0x10
[  262.717125][ T8431]  __x64_sys_bpf+0x7c/0x90
[  262.717159][ T8431]  do_syscall_64+0xfa/0xfa0
[  262.717191][ T8431]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.717224][ T8431]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.717246][ T8431]  ? clear_bhb_loop+0x60/0xb0
[  262.717274][ T8431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.717296][ T8431] RIP: 0033:0x7f393bd8f749
[  262.717317][ T8431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.717337][ T8431] RSP: 002b:00007f393cc70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  262.717360][ T8431] RAX: ffffffffffffffda RBX: 00007f393bfe5fa0 RCX: 00007f393bd8f749
[  262.717376][ T8431] RDX: 0000000000000020 RSI: 0000200000000180 RDI: 0000000000000004
[  262.717390][ T8431] RBP: 00007f393cc70090 R08: 0000000000000000 R09: 0000000000000000
[  262.717404][ T8431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.717417][ T8431] R13: 00007f393bfe6038 R14: 00007f393bfe5fa0 R15: 00007ffcd6202378
[  262.717456][ T8431]  </TASK>
[  262.719380][ T8412] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  263.050919][ T8412] Node 1 Normal: 154*4kB (U) 44*8kB (UME) 45*16kB (UME) 66*32kB (UME) 21*64kB (UME) 8*128kB (UME) 5*256kB (UME) 3*512kB (ME) 2*1024kB (UM) 2*2048kB (UE) 948*4096kB (M) = 3898136kB
[  263.092232][ T8412] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  263.122496][ T8412] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  263.151532][ T8412] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  263.185790][ T8412] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  263.212467][ T8412] 71432 total pagecache pages
[  263.220145][ T8412] 0 pages in swap cache
[  263.228775][ T8412] Free swap  = 124996kB
[  263.242682][ T8412] Total swap = 124996kB
[  263.253148][ T8412] 2097051 pages RAM
[  263.257108][ T8412] 0 pages HighMem/MovableOnly
[  263.282711][ T8412] 424123 pages reserved
[  263.287032][ T8412] 0 pages cma reserved
[  263.492038][ T8445] netlink: 'syz.2.738': attribute type 10 has an invalid length.
[  263.795366][ T8456] netlink: 'syz.1.741': attribute type 21 has an invalid length.
[  263.854367][ T8452] netlink: 24 bytes leftover after parsing attributes in process `syz.1.741'.
[  264.530394][ T8478] netlink: 'syz.2.749': attribute type 21 has an invalid length.
[  264.559991][ T8478] netlink: 156 bytes leftover after parsing attributes in process `syz.2.749'.
[  264.820665][ T8488] netlink: 60 bytes leftover after parsing attributes in process `syz.3.751'.
[  265.184792][ T8500] netlink: 'syz.3.754': attribute type 10 has an invalid length.
[  265.299486][ T8502] netlink: 'syz.0.755': attribute type 10 has an invalid length.
[  265.329805][ T8502] netlink: 40 bytes leftover after parsing attributes in process `syz.0.755'.
[  265.561955][ T8510] tap0: tun_chr_ioctl cmd 1074025677
[  265.569260][ T8510] tap0: linktype set to 825
[  266.499917][ T8521] FAULT_INJECTION: forcing a failure.
[  266.499917][ T8521] name failslab, interval 1, probability 0, space 0, times 0
[  266.527091][ T8521] CPU: 1 UID: 0 PID: 8521 Comm: syz.2.762 Not tainted syzkaller #0 PREEMPT(full) 
[  266.527124][ T8521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  266.527140][ T8521] Call Trace:
[  266.527151][ T8521]  <TASK>
[  266.527163][ T8521]  dump_stack_lvl+0x189/0x250
[  266.527205][ T8521]  ? __pfx____ratelimit+0x10/0x10
[  266.527243][ T8521]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.527281][ T8521]  ? __pfx__printk+0x10/0x10
[  266.527331][ T8521]  ? __pfx___might_resched+0x10/0x10
[  266.527359][ T8521]  ? fs_reclaim_acquire+0x7d/0x100
[  266.527415][ T8521]  should_fail_ex+0x414/0x560
[  266.527474][ T8521]  should_failslab+0xa8/0x100
[  266.527508][ T8521]  kmem_cache_alloc_node_noprof+0x77/0x710
[  266.527547][ T8521]  ? __alloc_skb+0x112/0x2d0
[  266.527572][ T8521]  ? if_nlmsg_stats_size+0x346/0x580
[  266.527621][ T8521]  __alloc_skb+0x112/0x2d0
[  266.527664][ T8521]  rtnl_stats_get+0x433/0x6c0
[  266.527712][ T8521]  ? __pfx_rtnl_stats_get+0x10/0x10
[  266.527778][ T8521]  ? __pfx_rtnl_stats_get+0x10/0x10
[  266.527811][ T8521]  rtnetlink_rcv_msg+0x77c/0xb70
[  266.527865][ T8521]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  266.527925][ T8521]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  266.527974][ T8521]  ? perf_trace_lock_acquire+0x335/0x410
[  266.528045][ T8521]  netlink_rcv_skb+0x208/0x470
[  266.528069][ T8521]  ? __lock_acquire+0xab9/0xd20
[  266.528097][ T8521]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  266.528144][ T8521]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  266.528213][ T8521]  ? netlink_deliver_tap+0x2e/0x1b0
[  266.528269][ T8521]  netlink_unicast+0x82f/0x9e0
[  266.528339][ T8521]  ? __pfx_netlink_unicast+0x10/0x10
[  266.528387][ T8521]  ? netlink_sendmsg+0x642/0xb30
[  266.528408][ T8521]  ? skb_put+0x11b/0x210
[  266.528449][ T8521]  netlink_sendmsg+0x805/0xb30
[  266.528510][ T8521]  ? __pfx_netlink_sendmsg+0x10/0x10
[  266.528544][ T8521]  ? __lock_acquire+0xab9/0xd20
[  266.528583][ T8521]  ? aa_sock_msg_perm+0xf1/0x1d0
[  266.528627][ T8521]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  266.528651][ T8521]  ? __pfx_netlink_sendmsg+0x10/0x10
[  266.528682][ T8521]  __sock_sendmsg+0x21c/0x270
[  266.528735][ T8521]  sock_write_iter+0x279/0x360
[  266.528780][ T8521]  ? __pfx_sock_write_iter+0x10/0x10
[  266.528853][ T8521]  ? bpf_lsm_file_permission+0x9/0x20
[  266.528879][ T8521]  ? security_file_permission+0x75/0x290
[  266.528936][ T8521]  vfs_write+0x5c9/0xb30
[  266.528993][ T8521]  ? __pfx_sock_write_iter+0x10/0x10
[  266.529030][ T8521]  ? __pfx_vfs_write+0x10/0x10
[  266.529102][ T8521]  ? __fget_files+0x2a/0x420
[  266.529161][ T8521]  ksys_write+0x145/0x250
[  266.529210][ T8521]  ? __pfx_ksys_write+0x10/0x10
[  266.529262][ T8521]  ? do_syscall_64+0xbe/0xfa0
[  266.529314][ T8521]  do_syscall_64+0xfa/0xfa0
[  266.529347][ T8521]  ? lockdep_hardirqs_on+0x9c/0x150
[  266.529385][ T8521]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.529411][ T8521]  ? clear_bhb_loop+0x60/0xb0
[  266.529450][ T8521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.529474][ T8521] RIP: 0033:0x7f189898f749
[  266.529500][ T8521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.529522][ T8521] RSP: 002b:00007f1899901038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  266.529547][ T8521] RAX: ffffffffffffffda RBX: 00007f1898be5fa0 RCX: 00007f189898f749
[  266.529564][ T8521] RDX: 000000000000fe33 RSI: 0000200000000000 RDI: 0000000000000005
[  266.529579][ T8521] RBP: 00007f1899901090 R08: 0000000000000000 R09: 0000000000000000
[  266.529593][ T8521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.529607][ T8521] R13: 00007f1898be6038 R14: 00007f1898be5fa0 R15: 00007ffe675ff108
[  266.529686][ T8521]  </TASK>
[  266.924301][ T8522] netlink: 16 bytes leftover after parsing attributes in process `syz.3.760'.
[  267.001388][ T8531] netlink: 60 bytes leftover after parsing attributes in process `syz.0.764'.
[  267.314464][ T8533] sock: sock_set_timeout: `syz.0.765' (pid 8533) tries to set negative timeout
[  267.337487][ T8535] netlink: 68 bytes leftover after parsing attributes in process `syz.2.766'.
[  267.392427][ T8540] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  267.531416][ T8548] netlink: 'syz.2.770': attribute type 10 has an invalid length.
[  267.581953][ T8540] netlink: 4707 bytes leftover after parsing attributes in process `syz.1.768'.
[  268.037920][ T8559] netlink: 'syz.3.773': attribute type 1 has an invalid length.
[  268.137311][ T8560] FAULT_INJECTION: forcing a failure.
[  268.137311][ T8560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  268.183946][ T8560] CPU: 1 UID: 0 PID: 8560 Comm: syz.3.773 Not tainted syzkaller #0 PREEMPT(full) 
[  268.183979][ T8560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  268.183994][ T8560] Call Trace:
[  268.184004][ T8560]  <TASK>
[  268.184016][ T8560]  dump_stack_lvl+0x189/0x250
[  268.184054][ T8560]  ? lockdep_hardirqs_on+0x9c/0x150
[  268.184090][ T8560]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.184132][ T8560]  ? dump_stack+0x9/0x20
[  268.184170][ T8560]  should_fail_ex+0x414/0x560
[  268.184213][ T8560]  _copy_to_user+0x31/0xb0
[  268.184263][ T8560]  simple_read_from_buffer+0xe1/0x170
[  268.184305][ T8560]  proc_fail_nth_read+0x1b3/0x220
[  268.184339][ T8560]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  268.184374][ T8560]  ? rw_verify_area+0x2a6/0x4d0
[  268.184405][ T8560]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  268.184437][ T8560]  vfs_read+0x200/0xa30
[  268.184468][ T8560]  ? fdget_pos+0x247/0x320
[  268.184497][ T8560]  ? __pfx___mutex_lock+0x10/0x10
[  268.184533][ T8560]  ? __pfx_vfs_read+0x10/0x10
[  268.184567][ T8560]  ? __fget_files+0x2a/0x420
[  268.184615][ T8560]  ? __fget_files+0x3a0/0x420
[  268.184652][ T8560]  ? __fget_files+0x2a/0x420
[  268.184686][ T8560]  ksys_read+0x145/0x250
[  268.184723][ T8560]  ? __pfx_ksys_read+0x10/0x10
[  268.184760][ T8560]  ? do_syscall_64+0xbe/0xfa0
[  268.184800][ T8560]  do_syscall_64+0xfa/0xfa0
[  268.184835][ T8560]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.184857][ T8560]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  268.184879][ T8560]  ? clear_bhb_loop+0x60/0xb0
[  268.184908][ T8560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.184931][ T8560] RIP: 0033:0x7fad2118e15c
[  268.184954][ T8560] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  268.184973][ T8560] RSP: 002b:00007fad21fee030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  268.184998][ T8560] RAX: ffffffffffffffda RBX: 00007fad213e6090 RCX: 00007fad2118e15c
[  268.185014][ T8560] RDX: 000000000000000f RSI: 00007fad21fee0a0 RDI: 000000000000000c
[  268.185028][ T8560] RBP: 00007fad21fee090 R08: 0000000000000000 R09: 0000000000000000
[  268.185043][ T8560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.185056][ T8560] R13: 00007fad213e6128 R14: 00007fad213e6090 R15: 00007fff23aec188
[  268.185099][ T8560]  </TASK>
[  268.501008][ T8559] delete_channel: no stack
[  268.525070][ T8564] netlink: 60 bytes leftover after parsing attributes in process `syz.2.775'.
[  268.833237][ T8571] netlink: 60 bytes leftover after parsing attributes in process `syz.3.776'.
[  268.936779][ T8574] netlink: 156 bytes leftover after parsing attributes in process `syz.2.778'.
[  269.133686][ T8576] netlink: 60 bytes leftover after parsing attributes in process `syz.3.776'.
[  269.243396][ T8579] netlink: 60 bytes leftover after parsing attributes in process `syz.3.776'.
[  270.306935][ T8594] netlink: 188 bytes leftover after parsing attributes in process `syz.1.785'.
[  270.344044][ T8598] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.786'.
[  270.398493][ T8598] netlink: 'syz.0.786': attribute type 1 has an invalid length.
[  270.407406][ T8598] netlink: 'syz.0.786': attribute type 1 has an invalid length.
[  270.416236][ T8598] netlink: 'syz.0.786': attribute type 2 has an invalid length.
[  270.431242][ T8598] netlink: 'syz.0.786': attribute type 2 has an invalid length.
[  270.439709][   T31] audit: type=1107 audit(1763814359.816:3): pid=8593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  270.464916][ T8594] netlink: 'syz.1.785': attribute type 3 has an invalid length.
[  270.720041][ T8602] netlink: 60 bytes leftover after parsing attributes in process `syz.3.789'.
[  271.068643][ T8620] FAULT_INJECTION: forcing a failure.
[  271.068643][ T8620] name failslab, interval 1, probability 0, space 0, times 0
[  271.082509][ T8620] CPU: 0 UID: 0 PID: 8620 Comm: syz.1.794 Not tainted syzkaller #0 PREEMPT(full) 
[  271.082543][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  271.082559][ T8620] Call Trace:
[  271.082568][ T8620]  <TASK>
[  271.082579][ T8620]  dump_stack_lvl+0x189/0x250
[  271.082618][ T8620]  ? __pfx____ratelimit+0x10/0x10
[  271.082653][ T8620]  ? __pfx_dump_stack_lvl+0x10/0x10
[  271.082684][ T8620]  ? __pfx__printk+0x10/0x10
[  271.082721][ T8620]  ? perf_trace_preemptirq_template+0xa3/0x340
[  271.082760][ T8620]  should_fail_ex+0x414/0x560
[  271.082802][ T8620]  should_failslab+0xa8/0x100
[  271.082827][ T8620]  kmem_cache_alloc_node_noprof+0x77/0x710
[  271.082861][ T8620]  ? __alloc_skb+0x112/0x2d0
[  271.082891][ T8620]  __alloc_skb+0x112/0x2d0
[  271.082919][ T8620]  tipc_buf_acquire+0x2b/0xe0
[  271.082954][ T8620]  tipc_named_withdraw+0x1db/0x760
[  271.082985][ T8620]  tipc_nametbl_withdraw+0xcc/0x280
[  271.083014][ T8620]  ? tipc_group_self+0x26/0x1c0
[  271.083042][ T8620]  tipc_sk_leave+0x466/0x4e0
[  271.083084][ T8620]  ? __pfx_tipc_sk_leave+0x10/0x10
[  271.083118][ T8620]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  271.083159][ T8620]  tipc_release+0x5fc/0x2190
[  271.083207][ T8620]  ? __pfx_tipc_release+0x10/0x10
[  271.083236][ T8620]  ? down_write+0x162/0x1f0
[  271.083260][ T8620]  ? __pfx_down_write+0x10/0x10
[  271.083281][ T8620]  ? locks_remove_posix+0x381/0x650
[  271.083319][ T8620]  ? __pfx_locks_remove_posix+0x10/0x10
[  271.083361][ T8620]  sock_close+0xc3/0x240
[  271.083401][ T8620]  ? __pfx_sock_close+0x10/0x10
[  271.083432][ T8620]  __fput+0x44c/0xa70
[  271.083475][ T8620]  fput_close_sync+0x119/0x200
[  271.083507][ T8620]  ? __pfx_fput_close_sync+0x10/0x10
[  271.083549][ T8620]  __x64_sys_close+0x7f/0x110
[  271.083580][ T8620]  do_syscall_64+0xfa/0xfa0
[  271.083616][ T8620]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.083638][ T8620]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  271.083662][ T8620]  ? clear_bhb_loop+0x60/0xb0
[  271.083691][ T8620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.083715][ T8620] RIP: 0033:0x7f4f2338f749
[  271.083736][ T8620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.083756][ T8620] RSP: 002b:00007f4f241cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  271.083782][ T8620] RAX: ffffffffffffffda RBX: 00007f4f235e6090 RCX: 00007f4f2338f749
[  271.083799][ T8620] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  271.083813][ T8620] RBP: 00007f4f241cc090 R08: 0000000000000000 R09: 0000000000000000
[  271.083827][ T8620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  271.083840][ T8620] R13: 00007f4f235e6128 R14: 00007f4f235e6090 R15: 00007fff6aadaca8
[  271.083881][ T8620]  </TASK>
[  271.083937][ T8620] tipc: Withdrawal distribution failure
[  271.893622][ T8641] netlink: 60 bytes leftover after parsing attributes in process `syz.4.802'.
[  272.498149][ T8664] netlink: 12 bytes leftover after parsing attributes in process `syz.0.810'.
[  273.075196][ T8679] netlink: 48 bytes leftover after parsing attributes in process `syz.4.816'.
[  273.318795][ T8681] netlink: 10 bytes leftover after parsing attributes in process `syz.0.817'.
[  274.655900][ T8709] netlink: 'syz.0.826': attribute type 1 has an invalid length.
[  274.961738][ T8713] __nla_validate_parse: 1 callbacks suppressed
[  274.961763][ T8713] netlink: 12 bytes leftover after parsing attributes in process `syz.4.827'.
[  275.241981][ T8714] delete_channel: no stack
[  276.424121][ T8737] netlink: 60 bytes leftover after parsing attributes in process `syz.2.835'.
[  276.598593][ T8741] netlink: 'syz.4.836': attribute type 3 has an invalid length.
[  276.606647][ T8741] netlink: 132 bytes leftover after parsing attributes in process `syz.4.836'.
[  278.091774][ T8756] netlink: get zone limit has 8 unknown bytes
[  278.271350][ T8759] netlink: 10 bytes leftover after parsing attributes in process `syz.1.843'.
[  278.852936][ T8780] netlink: 60 bytes leftover after parsing attributes in process `syz.2.848'.
[  280.027718][ T8800] bpf: Bad value for 'gid'
[  280.206031][ T8802] netlink: 10 bytes leftover after parsing attributes in process `syz.4.856'.
[  281.408188][ T8830] C: renamed from team_slave_0
[  281.486361][ T8831] netlink: 32 bytes leftover after parsing attributes in process `syz.0.863'.
[  282.575537][ T8830] netlink: 'syz.0.863': attribute type 3 has an invalid length.
[  282.598606][ T8830] netlink: 'syz.0.863': attribute type 1 has an invalid length.
[  282.607088][ T8830] netlink: 116 bytes leftover after parsing attributes in process `syz.0.863'.
[  283.306732][ T8850] netlink: 10 bytes leftover after parsing attributes in process `syz.1.870'.
[  284.641982][ T8893] netlink: 60 bytes leftover after parsing attributes in process `syz.2.884'.
[  286.947304][ T8937] netlink: 'syz.0.895': attribute type 4 has an invalid length.
[  286.962011][ T8937] netlink: 132 bytes leftover after parsing attributes in process `syz.0.895'.
[  287.088542][ T8941] netlink: 60 bytes leftover after parsing attributes in process `syz.4.897'.
[  287.110186][ T8937] openvswitch: netlink: Flow actions attr not present in new flow.
[  287.443692][ T8922] delete_channel: no stack
[  290.207688][ T8983] netlink: zone id is out of range
[  290.214826][ T8983] netlink: zone id is out of range
[  290.233161][ T8983] netlink: zone id is out of range
[  290.239043][ T8983] netlink: zone id is out of range
[  290.279297][ T8983] netlink: zone id is out of range
[  290.510471][ T8991] netlink: 60 bytes leftover after parsing attributes in process `syz.1.910'.
[  290.838843][ T9002] FAULT_INJECTION: forcing a failure.
[  290.838843][ T9002] name failslab, interval 1, probability 0, space 0, times 0
[  290.892681][ T9002] CPU: 1 UID: 0 PID: 9002 Comm: syz.3.914 Not tainted syzkaller #0 PREEMPT(full) 
[  290.892715][ T9002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  290.892730][ T9002] Call Trace:
[  290.892744][ T9002]  <TASK>
[  290.892758][ T9002]  dump_stack_lvl+0x189/0x250
[  290.892805][ T9002]  ? __pfx____ratelimit+0x10/0x10
[  290.892859][ T9002]  ? __pfx_dump_stack_lvl+0x10/0x10
[  290.892902][ T9002]  ? __pfx__printk+0x10/0x10
[  290.892977][ T9002]  ? __ip_dev_find+0x444/0x4e0
[  290.893031][ T9002]  should_fail_ex+0x414/0x560
[  290.893112][ T9002]  should_failslab+0xa8/0x100
[  290.893155][ T9002]  kmem_cache_alloc_noprof+0x74/0x6e0
[  290.893201][ T9002]  ? dst_alloc+0x105/0x170
[  290.893269][ T9002]  dst_alloc+0x105/0x170
[  290.893297][ T9002]  ? ip_check_mc_rcu+0x400/0x680
[  290.893357][ T9002]  ip_route_output_key_hash_rcu+0x1560/0x23e0
[  290.893445][ T9002]  ? ip_route_output_key_hash+0xc1/0x280
[  290.893499][ T9002]  ip_route_output_key_hash+0x174/0x280
[  290.893559][ T9002]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  290.893639][ T9002]  ? raw_sendmsg+0x626/0x18b0
[  290.893723][ T9002]  ip_route_output_flow+0x2a/0x150
[  290.893753][ T9002]  ? security_sk_classify_flow+0x70/0x180
[  290.893806][ T9002]  raw_sendmsg+0x1039/0x18b0
[  290.893940][ T9002]  ? __pfx_raw_sendmsg+0x10/0x10
[  290.894092][ T9002]  ? aa_sk_perm+0x81e/0x950
[  290.894166][ T9002]  ? __pfx_aa_sk_perm+0x10/0x10
[  290.894200][ T9002]  ? tomoyo_socket_sendmsg_permission+0x216/0x300
[  290.894273][ T9002]  ? sock_rps_record_flow+0x19/0x410
[  290.894319][ T9002]  ? inet_sendmsg+0x2f4/0x370
[  290.894342][ T9002]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  290.894389][ T9002]  __sock_sendmsg+0x19c/0x270
[  290.894450][ T9002]  ____sys_sendmsg+0x505/0x830
[  290.894518][ T9002]  ? __pfx_____sys_sendmsg+0x10/0x10
[  290.894604][ T9002]  ? import_iovec+0x74/0xa0
[  290.894664][ T9002]  ___sys_sendmsg+0x21f/0x2a0
[  290.894714][ T9002]  ? __pfx____sys_sendmsg+0x10/0x10
[  290.894869][ T9002]  ? __fget_files+0x2a/0x420
[  290.894964][ T9002]  ? __fget_files+0x2a/0x420
[  290.894988][ T9002]  ? __fget_files+0x3a0/0x420
[  290.895074][ T9002]  __x64_sys_sendmsg+0x19b/0x260
[  290.895124][ T9002]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  290.895147][ T9002]  ? perf_trace_preemptirq_template+0xa3/0x340
[  290.895229][ T9002]  ? __pfx_ksys_write+0x10/0x10
[  290.895290][ T9002]  ? do_syscall_64+0xbe/0xfa0
[  290.895351][ T9002]  do_syscall_64+0xfa/0xfa0
[  290.895385][ T9002]  ? lockdep_hardirqs_on+0x9c/0x150
[  290.895426][ T9002]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.895451][ T9002]  ? clear_bhb_loop+0x60/0xb0
[  290.895500][ T9002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.895524][ T9002] RIP: 0033:0x7fad2118f749
[  290.895552][ T9002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.895572][ T9002] RSP: 002b:00007fad2200f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  290.895597][ T9002] RAX: ffffffffffffffda RBX: 00007fad213e5fa0 RCX: 00007fad2118f749
[  290.895614][ T9002] RDX: 000000000400c804 RSI: 0000200000000900 RDI: 0000000000000003
[  290.895628][ T9002] RBP: 00007fad2200f090 R08: 0000000000000000 R09: 0000000000000000
[  290.895643][ T9002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.895656][ T9002] R13: 00007fad213e6038 R14: 00007fad213e5fa0 R15: 00007fff23aec188
[  290.895769][ T9002]  </TASK>
[  291.308405][ T9007] netlink: 'syz.1.912': attribute type 10 has an invalid length.
[  291.578133][ T9015] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  291.626185][ T9015] netlink: 4707 bytes leftover after parsing attributes in process `syz.4.917'.
[  291.765010][ T9018] netlink: 'syz.1.918': attribute type 2 has an invalid length.
[  291.844251][ T9023] netlink: 'syz.0.920': attribute type 2 has an invalid length.
[  291.870023][ T9023] netlink: 164 bytes leftover after parsing attributes in process `syz.0.920'.
[  292.133305][ T9031] netlink: 60 bytes leftover after parsing attributes in process `syz.3.922'.
[  292.303075][ T9036] netlink: 8 bytes leftover after parsing attributes in process `syz.2.924'.
[  292.644131][ T9043] netlink: 132 bytes leftover after parsing attributes in process `syz.1.926'.
[  292.745361][ T9047] netlink: 'syz.0.928': attribute type 10 has an invalid length.
[  293.234833][ T9052] FAULT_INJECTION: forcing a failure.
[  293.234833][ T9052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.267530][ T9052] CPU: 0 UID: 0 PID: 9052 Comm: syz.0.929 Not tainted syzkaller #0 PREEMPT(full) 
[  293.267562][ T9052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  293.267574][ T9052] Call Trace:
[  293.267582][ T9052]  <TASK>
[  293.267590][ T9052]  dump_stack_lvl+0x189/0x250
[  293.267626][ T9052]  ? __pfx____ratelimit+0x10/0x10
[  293.267658][ T9052]  ? __pfx_dump_stack_lvl+0x10/0x10
[  293.267690][ T9052]  ? __pfx__printk+0x10/0x10
[  293.267713][ T9052]  ? __might_fault+0xb0/0x130
[  293.267759][ T9052]  should_fail_ex+0x414/0x560
[  293.267801][ T9052]  _copy_from_iter+0x1de/0x1790
[  293.267869][ T9052]  ? rcu_is_watching+0x15/0xb0
[  293.267901][ T9052]  ? kmalloc_reserve+0xbd/0x290
[  293.267924][ T9052]  ? __pfx__copy_from_iter+0x10/0x10
[  293.267952][ T9052]  ? __build_skb_around+0x262/0x3f0
[  293.267979][ T9052]  ? netlink_sendmsg+0x642/0xb30
[  293.268000][ T9052]  ? skb_put+0x11b/0x210
[  293.268027][ T9052]  netlink_sendmsg+0x6b2/0xb30
[  293.268062][ T9052]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.268091][ T9052]  ? aa_sock_msg_perm+0xf1/0x1d0
[  293.268128][ T9052]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  293.268150][ T9052]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.268176][ T9052]  __sock_sendmsg+0x21c/0x270
[  293.268212][ T9052]  ____sys_sendmsg+0x505/0x830
[  293.268245][ T9052]  ? __pfx_____sys_sendmsg+0x10/0x10
[  293.268283][ T9052]  ? import_iovec+0x74/0xa0
[  293.268316][ T9052]  ___sys_sendmsg+0x21f/0x2a0
[  293.268345][ T9052]  ? __pfx____sys_sendmsg+0x10/0x10
[  293.268418][ T9052]  ? __fget_files+0x2a/0x420
[  293.268439][ T9052]  ? __fget_files+0x3a0/0x420
[  293.268473][ T9052]  __x64_sys_sendmsg+0x19b/0x260
[  293.268501][ T9052]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  293.268524][ T9052]  ? perf_trace_preemptirq_template+0xa3/0x340
[  293.268559][ T9052]  ? __pfx_ksys_write+0x10/0x10
[  293.268596][ T9052]  ? do_syscall_64+0xbe/0xfa0
[  293.268635][ T9052]  do_syscall_64+0xfa/0xfa0
[  293.268666][ T9052]  ? lockdep_hardirqs_on+0x9c/0x150
[  293.268700][ T9052]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.268728][ T9052]  ? clear_bhb_loop+0x60/0xb0
[  293.268756][ T9052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.268778][ T9052] RIP: 0033:0x7f9b1b58f749
[  293.268799][ T9052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.268825][ T9052] RSP: 002b:00007f9b1c3aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.268850][ T9052] RAX: ffffffffffffffda RBX: 00007f9b1b7e5fa0 RCX: 00007f9b1b58f749
[  293.268868][ T9052] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  293.268883][ T9052] RBP: 00007f9b1c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  293.268896][ T9052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.268910][ T9052] R13: 00007f9b1b7e6038 R14: 00007f9b1b7e5fa0 R15: 00007ffc0c828008
[  293.268949][ T9052]  </TASK>
[  294.216070][ T9072] netlink: 'syz.1.936': attribute type 10 has an invalid length.
[  294.248346][ T9072] netlink: 40 bytes leftover after parsing attributes in process `syz.1.936'.
[  294.292212][ T9075] netlink: 60 bytes leftover after parsing attributes in process `syz.4.935'.
[  294.313732][ T9074] bridge0: entered allmulticast mode
[  295.144109][ T9085] netlink: 'syz.4.939': attribute type 10 has an invalid length.
[  295.513263][ T9092] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.941'.
[  295.527905][ T9093] netlink: 8 bytes leftover after parsing attributes in process `syz.3.942'.
[  295.528436][ T9092] netlink: 4595 bytes leftover after parsing attributes in process `syz.0.941'.
[  295.555327][ T9092] netlink: 'syz.0.941': attribute type 1 has an invalid length.
[  295.563920][ T9092] netlink: 'syz.0.941': attribute type 1 has an invalid length.
[  295.572056][ T9092] netlink: 'syz.0.941': attribute type 2 has an invalid length.
[  295.587480][ T9092] netlink: 'syz.0.941': attribute type 2 has an invalid length.
[  296.078589][ T9109] netlink: 60 bytes leftover after parsing attributes in process `syz.0.949'.
[  296.377272][ T9114] netlink: 763 bytes leftover after parsing attributes in process `syz.2.950'.
[  297.247219][ T9130] netlink: 'syz.0.954': attribute type 10 has an invalid length.
[  297.373910][ T9135] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.955'.
[  297.412655][ T9135] netlink: 4595 bytes leftover after parsing attributes in process `syz.2.955'.
[  297.457629][ T9135] netlink: 'syz.2.955': attribute type 1 has an invalid length.
[  297.473574][ T9135] netlink: 'syz.2.955': attribute type 1 has an invalid length.
[  297.482817][ T9135] netlink: 'syz.2.955': attribute type 2 has an invalid length.
[  297.490661][ T9135] netlink: 'syz.2.955': attribute type 2 has an invalid length.
[  298.138861][ T9158] netlink: 132 bytes leftover after parsing attributes in process `syz.3.961'.
[  298.723167][ T9178] netlink: 'syz.4.968': attribute type 10 has an invalid length.
[  298.912525][ T9183] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.970'.
[  298.948130][ T9183] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.970'.
[  299.062754][ T9187] netlink: 'syz.3.970': attribute type 1 has an invalid length.
[  299.242925][ T9187] netlink: 'syz.3.970': attribute type 1 has an invalid length.
[  299.274716][ T9187] netlink: 'syz.3.970': attribute type 2 has an invalid length.
[  299.362578][ T9187] netlink: 'syz.3.970': attribute type 2 has an invalid length.
[  299.631370][ T9196] netlink: 182 bytes leftover after parsing attributes in process `syz.4.973'.
[  299.671683][ T9198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.972'.
[  300.255190][ T9210] netlink: 24 bytes leftover after parsing attributes in process `syz.4.976'.
[  300.656191][ T9223] netlink: 132 bytes leftover after parsing attributes in process `syz.0.980'.
[  300.806607][ T9204] delete_channel: no stack
[  300.880992][ T9225] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.982'.
[  301.355417][ T9243] wlan1 speed is unknown, defaulting to 1000
[  302.074973][ T9251] FAULT_INJECTION: forcing a failure.
[  302.074973][ T9251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.117265][ T9251] CPU: 1 UID: 0 PID: 9251 Comm: syz.2.988 Not tainted syzkaller #0 PREEMPT(full) 
[  302.117298][ T9251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  302.117313][ T9251] Call Trace:
[  302.117323][ T9251]  <TASK>
[  302.117334][ T9251]  dump_stack_lvl+0x189/0x250
[  302.117373][ T9251]  ? __pfx____ratelimit+0x10/0x10
[  302.117406][ T9251]  ? __pfx_dump_stack_lvl+0x10/0x10
[  302.117438][ T9251]  ? __pfx__printk+0x10/0x10
[  302.117477][ T9251]  should_fail_ex+0x414/0x560
[  302.117519][ T9251]  _copy_to_user+0x31/0xb0
[  302.117554][ T9251]  simple_read_from_buffer+0xe1/0x170
[  302.117597][ T9251]  proc_fail_nth_read+0x1b3/0x220
[  302.117631][ T9251]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  302.117665][ T9251]  ? rw_verify_area+0x2a6/0x4d0
[  302.117697][ T9251]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  302.117728][ T9251]  vfs_read+0x200/0xa30
[  302.117760][ T9251]  ? fdget_pos+0x247/0x320
[  302.117788][ T9251]  ? __pfx___mutex_lock+0x10/0x10
[  302.117825][ T9251]  ? __pfx_vfs_read+0x10/0x10
[  302.117862][ T9251]  ? fdget_pos+0x101/0x320
[  302.117881][ T9251]  ? fdget_pos+0x1c1/0x320
[  302.117905][ T9251]  ? kasan_check_range+0x9f/0x2c0
[  302.117944][ T9251]  ksys_read+0x145/0x250
[  302.117981][ T9251]  ? __pfx_ksys_read+0x10/0x10
[  302.118027][ T9251]  do_syscall_64+0xfa/0xfa0
[  302.118064][ T9251]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.118087][ T9251]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  302.118112][ T9251]  ? clear_bhb_loop+0x60/0xb0
[  302.118148][ T9251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.118171][ T9251] RIP: 0033:0x7f189898e15c
[  302.118194][ T9251] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  302.118214][ T9251] RSP: 002b:00007f18998e0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  302.118240][ T9251] RAX: ffffffffffffffda RBX: 00007f1898be6090 RCX: 00007f189898e15c
[  302.118257][ T9251] RDX: 000000000000000f RSI: 00007f18998e00a0 RDI: 000000000000000b
[  302.118272][ T9251] RBP: 00007f18998e0090 R08: 0000000000000000 R09: 0000000000000000
[  302.118287][ T9251] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  302.118300][ T9251] R13: 00007f1898be6128 R14: 00007f1898be6090 R15: 00007ffe675ff108
[  302.118338][ T9251]  </TASK>
[  302.876244][ T9278] __nla_validate_parse: 3 callbacks suppressed
[  302.876265][ T9278] netlink: 132 bytes leftover after parsing attributes in process `syz.2.994'.
[  303.874078][ T9287] validate_nla: 6 callbacks suppressed
[  303.874130][ T9287] netlink: 'syz.4.996': attribute type 10 has an invalid length.
[  303.888744][ T9287] netlink: 40 bytes leftover after parsing attributes in process `syz.4.996'.
[  304.025874][ T9292] netlink: 10 bytes leftover after parsing attributes in process `syz.0.998'.
[  304.112090][ T9294] netlink: 'syz.3.999': attribute type 10 has an invalid length.
[  304.178443][ T9294] netlink: 40 bytes leftover after parsing attributes in process `syz.3.999'.
[  304.208022][ T9294] batman_adv: batadv0: Adding interface: virt_wifi0
[  304.220264][ T9294] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  304.270119][ T9294] batman_adv: batadv0: Interface activated: virt_wifi0
[  304.270850][ T9302] bpf: Bad value for 'gid'
[  304.335206][ T9305] netlink: 9020 bytes leftover after parsing attributes in process `syz.1.1000'.
[  304.380685][ T9305] openvswitch: netlink: Flow key attr not present in new flow.
[  304.530993][ T9311] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1004'.
[  305.320036][ T9325] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1010'.
[  306.192830][ T9339] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1013'.
[  308.608367][ T9342] netlink: 'syz.1.1014': attribute type 10 has an invalid length.
[  308.669782][ T9342] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1014'.
[  308.867502][ T9362] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1022'.
[  309.072939][ T9370] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1025'.
[  309.285242][ T9381] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1026'.
[  309.363968][ T9385] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1029'.
[  309.457413][ T9386] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1028'.
[  310.095654][ T9413] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1036'.
[  311.101242][ T9422] FAULT_INJECTION: forcing a failure.
[  311.101242][ T9422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  311.127199][ T9422] CPU: 1 UID: 0 PID: 9422 Comm: syz.0.1041 Not tainted syzkaller #0 PREEMPT(full) 
[  311.127229][ T9422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  311.127244][ T9422] Call Trace:
[  311.127252][ T9422]  <TASK>
[  311.127262][ T9422]  dump_stack_lvl+0x189/0x250
[  311.127301][ T9422]  ? __pfx____ratelimit+0x10/0x10
[  311.127333][ T9422]  ? __pfx_dump_stack_lvl+0x10/0x10
[  311.127364][ T9422]  ? __pfx__printk+0x10/0x10
[  311.127395][ T9422]  ? __might_fault+0xb0/0x130
[  311.127443][ T9422]  should_fail_ex+0x414/0x560
[  311.127485][ T9422]  _copy_from_user+0x2d/0xb0
[  311.127516][ T9422]  __copy_msghdr+0x3c5/0x5b0
[  311.127547][ T9422]  ___sys_sendmsg+0x1a5/0x2a0
[  311.127576][ T9422]  ? __pfx____sys_sendmsg+0x10/0x10
[  311.127630][ T9422]  ? __fget_files+0x2a/0x420
[  311.127669][ T9422]  ? __fget_files+0x2a/0x420
[  311.127689][ T9422]  ? __fget_files+0x3a0/0x420
[  311.127725][ T9422]  __x64_sys_sendmsg+0x19b/0x260
[  311.127755][ T9422]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  311.127795][ T9422]  ? __pfx_ksys_write+0x10/0x10
[  311.127832][ T9422]  ? do_syscall_64+0xbe/0xfa0
[  311.127871][ T9422]  do_syscall_64+0xfa/0xfa0
[  311.127901][ T9422]  ? lockdep_hardirqs_on+0x9c/0x150
[  311.127934][ T9422]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.127956][ T9422]  ? clear_bhb_loop+0x60/0xb0
[  311.127985][ T9422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.128006][ T9422] RIP: 0033:0x7f9b1b58f749
[  311.128025][ T9422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.128043][ T9422] RSP: 002b:00007f9b1c3aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  311.128067][ T9422] RAX: ffffffffffffffda RBX: 00007f9b1b7e5fa0 RCX: 00007f9b1b58f749
[  311.128083][ T9422] RDX: 000000000000f5ff RSI: 0000200000000100 RDI: 0000000000000003
[  311.128096][ T9422] RBP: 00007f9b1c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  311.128110][ T9422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  311.128123][ T9422] R13: 00007f9b1b7e6038 R14: 00007f9b1b7e5fa0 R15: 00007ffc0c828008
[  311.128163][ T9422]  </TASK>
[  311.379475][ T9426] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1042'.
[  311.557451][ T9434] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1044'.
[  312.483166][ T9459] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  312.614025][ T9459] netlink: 4707 bytes leftover after parsing attributes in process `syz.2.1052'.
[  312.719312][ T9471] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  312.815521][ T9454] wlan1 speed is unknown, defaulting to 1000
[  312.837788][ T9454] lo speed is unknown, defaulting to 1000
[  313.694511][ T9484] __nla_validate_parse: 2 callbacks suppressed
[  313.694564][ T9484] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1058'.
[  314.015243][ T9490] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1059'.
[  314.025668][ T9488] netlink: 'syz.3.1060': attribute type 10 has an invalid length.
[  314.050616][ T9488] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1060'.
[  314.985109][ T9506] netlink: 'syz.3.1065': attribute type 10 has an invalid length.
[  315.438493][ T9520] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1066'.
[  315.558021][ T9523] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  315.723481][ T9529] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1070'.
[  318.113588][ T9530] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1071'.
[  318.184503][ T9534] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1072'.
[  318.237351][ T9537] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1073'.
[  318.507586][ T9542] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  318.658391][ T9540] netlink: 'syz.1.1075': attribute type 10 has an invalid length.
[  318.682655][ T9540] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1075'.
[  318.720256][ T9549] openvswitch: netlink: Unexpected mask (mask=4000040, allowed=10048)
[  318.830699][ T9542] netlink: 4707 bytes leftover after parsing attributes in process `syz.0.1076'.
[  319.171448][ T9561] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1079'.
[  321.666540][ T9564] netlink: 'syz.4.1080': attribute type 10 has an invalid length.
[  321.687965][ T9564] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1080'.
[  321.798804][ T9574] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1085'.
[  321.818713][ T9576] openvswitch: netlink: Message has 4 unknown bytes.
[  321.863556][ T9574] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  321.960188][ T9578] netlink: 'syz.3.1087': attribute type 21 has an invalid length.
[  322.076269][ T9585] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1087'.
[  322.087114][ T9585] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1087'.
[  322.104933][ T9586] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1088'.
[  322.496672][ T9601] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1090'.
[  322.562901][ T9602] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1084'.
[  322.674232][ T9606] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1092'.
[  322.788573][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  322.800972][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  323.937747][ T9638] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1103'.
[  324.256082][ T9635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1101'.
[  324.269542][ T9635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1101'.
[  324.498210][ T9653] netlink: 'syz.3.1101': attribute type 16 has an invalid length.
[  324.594822][ T9653] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  324.653599][ T9651] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1106'.
[  325.011148][ T9662] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1108'.
[  325.648248][ T9662] netlink: 'syz.0.1108': attribute type 16 has an invalid length.
[  325.656834][ T9662] netlink: 'syz.0.1108': attribute type 17 has an invalid length.
[  325.665589][ T9662] netlink: 'syz.0.1108': attribute type 27 has an invalid length.
[  326.127737][ T9676] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1112'.
[  326.356382][ T9691] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1116'.
[  326.539573][ T9695] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1118'.
[  326.549358][ T9695] netlink: 'syz.4.1118': attribute type 1 has an invalid length.
[  326.614421][ T9698] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1117'.
[  326.924501][ T9703] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  327.010306][ T9701] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1122'.
[  328.100586][ T9721] batman_adv: batadv0: Removing interface: batadv_slave_0
[  328.117361][ T9721] batman_adv: batadv0: Removing interface: batadv_slave_1
[  328.261478][ T9721] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  328.276940][ T9721] batman_adv: batadv0: Removing interface: virt_wifi0
[  328.745292][ T9737] openvswitch: netlink: Key 22 has unexpected len 8 expected 4
[  328.959135][ T9741] __nla_validate_parse: 2 callbacks suppressed
[  328.959184][ T9741] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1133'.
[  329.276610][ T9753] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1138'.
[  329.537487][ T9755] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1136'.
[  331.001097][ T9788] openvswitch: netlink: Port -1 exceeds max allowable 65535
[  331.140015][ T9794] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1147'.
[  331.303341][ T9788] netlink: 4707 bytes leftover after parsing attributes in process `syz.4.1144'.
[  331.535311][ T9799] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1148'.
[  331.643661][ T9802] netlink: 'syz.1.1150': attribute type 10 has an invalid length.
[  331.659982][ T9802] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1150'.
[  331.672892][ T9802] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[  331.799034][ T9813] siw: device registration error -23
[  332.136083][ T9828] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1156'.
[  332.151047][ T9828] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1156'.
[  332.160493][ T9828] netlink: 'syz.1.1156': attribute type 1 has an invalid length.
[  332.237427][ T9828] æÿîÿ: entered promiscuous mode
[  332.356817][ T9824] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1153'.
[  333.218448][ T9859] blkio.reset_stats is deprecated
[  333.551832][ T9867] netlink: 'syz.0.1169': attribute type 1 has an invalid length.
[  333.560464][ T9867] netlink: 'syz.0.1169': attribute type 1 has an invalid length.
[  333.569630][ T9867] netlink: 'syz.0.1169': attribute type 2 has an invalid length.
[  333.592488][ T9867] netlink: 'syz.0.1169': attribute type 2 has an invalid length.
[  333.701169][ T9870] netlink: 'syz.4.1166': attribute type 1 has an invalid length.
[  334.063065][ T9882] FAULT_INJECTION: forcing a failure.
[  334.063065][ T9882] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.064170][ T9882] 
[  334.064180][ T9882] ======================================================
[  334.064190][ T9882] WARNING: possible circular locking dependency detected
[  334.064205][ T9882] syzkaller #0 Not tainted
[  334.064216][ T9882] ------------------------------------------------------
[  334.064225][ T9882] syz.0.1174/9882 is trying to acquire lock:
[  334.064237][ T9882] ffffffff8df31660 (console_owner){-...}-{0:0}, at: console_flush_all+0x13a/0xb10
[  334.064301][ T9882] 
[  334.064301][ T9882] but task is already holding lock:
[  334.064308][ T9882] ffff8880b893a058 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  334.064356][ T9882] 
[  334.064356][ T9882] which lock already depends on the new lock.
[  334.064356][ T9882] 
[  334.064364][ T9882] 
[  334.064364][ T9882] the existing dependency chain (in reverse order) is:
[  334.064372][ T9882] 
[  334.064372][ T9882] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  334.064400][ T9882]        lock_acquire+0x120/0x360
[  334.064421][ T9882]        _raw_spin_lock_nested+0x32/0x50
[  334.064452][ T9882]        raw_spin_rq_lock_nested+0x2a/0x140
[  334.064472][ T9882]        task_rq_lock+0xbc/0x470
[  334.064491][ T9882]        cgroup_move_task+0x92/0x2a0
[  334.064514][ T9882]        css_set_move_task+0x658/0x9e0
[  334.064542][ T9882]        cgroup_post_fork+0x1ef/0x790
[  334.064569][ T9882]        copy_process+0x3862/0x3c00
[  334.064599][ T9882]        kernel_clone+0x21e/0x840
[  334.064623][ T9882]        user_mode_thread+0xdd/0x140
[  334.064647][ T9882]        rest_init+0x23/0x300
[  334.064668][ T9882]        start_kernel+0x3ae/0x410
[  334.064690][ T9882]        x86_64_start_reservations+0x24/0x30
[  334.064722][ T9882]        x86_64_start_kernel+0x143/0x1c0
[  334.064752][ T9882]        common_startup_64+0x13e/0x147
[  334.064781][ T9882] 
[  334.064781][ T9882] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  334.064808][ T9882]        lock_acquire+0x120/0x360
[  334.064826][ T9882]        _raw_spin_lock_irqsave+0xa7/0xf0
[  334.064851][ T9882]        try_to_wake_up+0x67/0x12b0
[  334.064878][ T9882]        __wake_up_common_lock+0x137/0x1f0
[  334.064905][ T9882]        tty_port_default_wakeup+0xfb/0x170
[  334.064924][ T9882]        serial8250_tx_chars+0x72e/0x970
[  334.064953][ T9882]        serial8250_handle_irq+0x633/0xbb0
[  334.064983][ T9882]        serial8250_default_handle_irq+0xbf/0x200
[  334.065003][ T9882]        serial8250_interrupt+0x8d/0x180
[  334.065028][ T9882]        __handle_irq_event_percpu+0x295/0xab0
[  334.065056][ T9882]        handle_irq_event+0x8b/0x1e0
[  334.065082][ T9882]        handle_edge_irq+0x23b/0xa10
[  334.065106][ T9882]        __common_interrupt+0x141/0x1f0
[  334.065137][ T9882]        common_interrupt+0xb6/0xe0
[  334.065158][ T9882]        asm_common_interrupt+0x26/0x40
[  334.065178][ T9882]        pv_native_safe_halt+0x13/0x20
[  334.065206][ T9882]        default_idle+0x13/0x20
[  334.065224][ T9882]        default_idle_call+0x73/0xb0
[  334.065244][ T9882]        do_idle+0x1e7/0x510
[  334.065263][ T9882]        cpu_startup_entry+0x44/0x60
[  334.065284][ T9882]        rest_init+0x2de/0x300
[  334.065302][ T9882]        start_kernel+0x3ae/0x410
[  334.065322][ T9882]        x86_64_start_reservations+0x24/0x30
[  334.065351][ T9882]        x86_64_start_kernel+0x143/0x1c0
[  334.065378][ T9882]        common_startup_64+0x13e/0x147
[  334.065403][ T9882] 
[  334.065403][ T9882] -> #2 (&tty->write_wait){-...}-{3:3}:
[  334.065432][ T9882]        lock_acquire+0x120/0x360
[  334.065448][ T9882]        _raw_spin_lock_irqsave+0xa7/0xf0
[  334.065471][ T9882]        __wake_up_common_lock+0x2f/0x1f0
[  334.065498][ T9882]        tty_port_default_wakeup+0xfb/0x170
[  334.065517][ T9882]        serial8250_tx_chars+0x72e/0x970
[  334.065546][ T9882]        serial8250_handle_irq+0x633/0xbb0
[  334.065584][ T9882]        serial8250_default_handle_irq+0xbf/0x200
[  334.065606][ T9882]        serial8250_interrupt+0x8d/0x180
[  334.065631][ T9882]        __handle_irq_event_percpu+0x295/0xab0
[  334.065660][ T9882]        handle_irq_event+0x8b/0x1e0
[  334.065687][ T9882]        handle_edge_irq+0x23b/0xa10
[  334.065710][ T9882]        __common_interrupt+0x141/0x1f0
[  334.065742][ T9882]        common_interrupt+0xb6/0xe0
[  334.065764][ T9882]        asm_common_interrupt+0x26/0x40
[  334.065783][ T9882]        pv_native_safe_halt+0x13/0x20
[  334.065811][ T9882]        default_idle+0x13/0x20
[  334.065830][ T9882]        default_idle_call+0x73/0xb0
[  334.065850][ T9882]        do_idle+0x1e7/0x510
[  334.065871][ T9882]        cpu_startup_entry+0x44/0x60
[  334.065892][ T9882]        rest_init+0x2de/0x300
[  334.065913][ T9882]        start_kernel+0x3ae/0x410
[  334.065934][ T9882]        x86_64_start_reservations+0x24/0x30
[  334.065964][ T9882]        x86_64_start_kernel+0x143/0x1c0
[  334.065993][ T9882]        common_startup_64+0x13e/0x147
[  334.066020][ T9882] 
[  334.066020][ T9882] -> #1 (&port_lock_key){-...}-{3:3}:
[  334.066049][ T9882]        lock_acquire+0x120/0x360
[  334.066067][ T9882]        _raw_spin_lock_irqsave+0xa7/0xf0
[  334.066094][ T9882]        serial8250_console_write+0x17e/0x1ba0
[  334.066127][ T9882]        console_flush_all+0x6f3/0xb10
[  334.066153][ T9882]        console_unlock+0xbb/0x190
[  334.066176][ T9882]        vprintk_emit+0x4c5/0x590
[  334.066199][ T9882]        _printk+0xcf/0x120
[  334.066218][ T9882]        register_console+0xa8b/0xf90
[  334.066244][ T9882]        univ8250_console_init+0x3a/0x70
[  334.066273][ T9882]        console_init+0x10e/0x430
[  334.066302][ T9882]        start_kernel+0x254/0x410
[  334.066323][ T9882]        x86_64_start_reservations+0x24/0x30
[  334.066354][ T9882]        x86_64_start_kernel+0x143/0x1c0
[  334.066383][ T9882]        common_startup_64+0x13e/0x147
[  334.066410][ T9882] 
[  334.066410][ T9882] -> #0 (console_owner){-...}-{0:0}:
[  334.066439][ T9882]        validate_chain+0xb9b/0x2140
[  334.066462][ T9882]        __lock_acquire+0xab9/0xd20
[  334.066481][ T9882]        lock_acquire+0x120/0x360
[  334.066499][ T9882]        console_flush_all+0x69c/0xb10
[  334.066526][ T9882]        console_unlock+0xbb/0x190
[  334.066549][ T9882]        vprintk_emit+0x4c5/0x590
[  334.066572][ T9882]        _printk+0xcf/0x120
[  334.066598][ T9882]        should_fail_ex+0x3f5/0x560
[  334.066628][ T9882]        strncpy_from_user+0x36/0x290
[  334.066658][ T9882]        strncpy_from_user_nofault+0x72/0x150
[  334.066682][ T9882]        bpf_probe_read_compat_str+0xe2/0x180
[  334.066708][ T9882]        bpf_prog_573c5a647519ba93+0x3e/0x44
[  334.066725][ T9882]        bpf_trace_run4+0x28e/0x4a0
[  334.066755][ T9882]        __bpf_trace_sched_switch+0x17a/0x1e0
[  334.066784][ T9882]        __traceiter_sched_switch+0x9d/0xd0
[  334.066813][ T9882]        __schedule+0x238f/0x4cc0
[  334.066840][ T9882]        preempt_schedule_irq+0xb5/0x150
[  334.066868][ T9882]        irqentry_exit+0x6f/0x90
[  334.066897][ T9882]        asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  334.066919][ T9882]        unwind_next_frame+0xb46/0x2390
[  334.066943][ T9882]        arch_stack_walk+0x11c/0x150
[  334.066967][ T9882]        stack_trace_save+0x9c/0xe0
[  334.066994][ T9882]        kasan_save_track+0x3e/0x80
[  334.067024][ T9882]        __kasan_slab_alloc+0x6c/0x80
[  334.067054][ T9882]        kmem_cache_alloc_node_noprof+0x433/0x710
[  334.067083][ T9882]        __alloc_skb+0x112/0x2d0
[  334.067102][ T9882]        netlink_dump+0x1b7/0xe90
[  334.067119][ T9882]        __netlink_dump_start+0x5cb/0x7e0
[  334.067137][ T9882]        inet_diag_rcv_msg_compat+0x1ea/0x3b0
[  334.067169][ T9882]        sock_diag_rcv_msg+0x4cc/0x600
[  334.067197][ T9882]        netlink_rcv_skb+0x208/0x470
[  334.067214][ T9882]        netlink_unicast+0x82f/0x9e0
[  334.067241][ T9882]        netlink_sendmsg+0x805/0xb30
[  334.067259][ T9882]        __sock_sendmsg+0x21c/0x270
[  334.067283][ T9882]        ____sys_sendmsg+0x505/0x830
[  334.067301][ T9882]        ___sys_sendmsg+0x21f/0x2a0
[  334.067321][ T9882]        __x64_sys_sendmsg+0x19b/0x260
[  334.067349][ T9882]        do_syscall_64+0xfa/0xfa0
[  334.067378][ T9882]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.067397][ T9882] 
[  334.067397][ T9882] other info that might help us debug this:
[  334.067397][ T9882] 
[  334.067404][ T9882] Chain exists of:
[  334.067404][ T9882]   console_owner --> &p->pi_lock --> &rq->__lock
[  334.067404][ T9882] 
[  334.067435][ T9882]  Possible unsafe locking scenario:
[  334.067435][ T9882] 
[  334.067442][ T9882]        CPU0                    CPU1
[  334.067448][ T9882]        ----                    ----
[  334.067454][ T9882]   lock(&rq->__lock);
[  334.067467][ T9882]                                lock(&p->pi_lock);
[  334.067482][ T9882]                                lock(&rq->__lock);
[  334.067495][ T9882]   lock(console_owner);
[  334.067507][ T9882] 
[  334.067507][ T9882]  *** DEADLOCK ***
[  334.067507][ T9882] 
[  334.067513][ T9882] 6 locks held by syz.0.1174/9882:
[  334.067523][ T9882]  #0: ffff888020b1e6e8 (nlk_cb_mutex-SOCK_DIAG){+.+.}-{4:4}, at: __netlink_dump_start+0xfe/0x7e0
[  334.067569][ T9882]  #1: ffffffff8df3d6e0 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xa5/0x2390
[  334.067633][ T9882]  #2: ffff8880b893a058 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  334.067681][ T9882]  #3: ffffffff8df3d6e0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run4+0x19c/0x4a0
[  334.067736][ T9882]  #4: ffffffff8df316c0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[  334.067783][ T9882]  #5: ffffffff8de18f90 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xb10
[  334.067838][ T9882] 
[  334.067838][ T9882] stack backtrace:
[  334.067849][ T9882] CPU: 1 UID: 0 PID: 9882 Comm: syz.0.1174 Not tainted syzkaller #0 PREEMPT(full) 
[  334.067873][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  334.067888][ T9882] Call Trace:
[  334.067896][ T9882]  <TASK>
[  334.067905][ T9882]  dump_stack_lvl+0x189/0x250
[  334.067938][ T9882]  ? __pfx_dump_stack_lvl+0x10/0x10
[  334.067969][ T9882]  ? __pfx__printk+0x10/0x10
[  334.067993][ T9882]  ? print_lock_name+0xde/0x100
[  334.068016][ T9882]  print_circular_bug+0x2ee/0x310
[  334.068045][ T9882]  check_noncircular+0x134/0x160
[  334.068077][ T9882]  validate_chain+0xb9b/0x2140
[  334.068117][ T9882]  __lock_acquire+0xab9/0xd20
[  334.068142][ T9882]  ? console_flush_all+0x13a/0xb10
[  334.068171][ T9882]  lock_acquire+0x120/0x360
[  334.068191][ T9882]  ? console_flush_all+0x13a/0xb10
[  334.068226][ T9882]  ? do_raw_spin_unlock+0x122/0x240
[  334.068256][ T9882]  ? console_flush_all+0x13a/0xb10
[  334.068285][ T9882]  console_flush_all+0x69c/0xb10
[  334.068312][ T9882]  ? console_flush_all+0x13a/0xb10
[  334.068340][ T9882]  ? console_flush_all+0x13a/0xb10
[  334.068371][ T9882]  ? __pfx_console_flush_all+0x10/0x10
[  334.068403][ T9882]  ? is_printk_cpu_sync_owner+0x32/0x40
[  334.068437][ T9882]  console_unlock+0xbb/0x190
[  334.068461][ T9882]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  334.068490][ T9882]  ? __pfx_console_unlock+0x10/0x10
[  334.068521][ T9882]  vprintk_emit+0x4c5/0x590
[  334.068547][ T9882]  ? __pfx_vprintk_emit+0x10/0x10
[  334.068572][ T9882]  ? tracing_gen_ctx_irq_test+0xc7/0x160
[  334.068607][ T9882]  ? perf_swevent_event+0x113/0x5e0
[  334.068654][ T9882]  ? __pfx_perf_swevent_event+0x10/0x10
[  334.068692][ T9882]  _printk+0xcf/0x120
[  334.068713][ T9882]  ? __pfx____ratelimit+0x10/0x10
[  334.068743][ T9882]  ? __pfx__printk+0x10/0x10
[  334.068771][ T9882]  should_fail_ex+0x3f5/0x560
[  334.068806][ T9882]  strncpy_from_user+0x36/0x290
[  334.068838][ T9882]  strncpy_from_user_nofault+0x72/0x150
[  334.068864][ T9882]  bpf_probe_read_compat_str+0xe2/0x180
[  334.068894][ T9882]  bpf_prog_573c5a647519ba93+0x3e/0x44
[  334.068913][ T9882]  bpf_trace_run4+0x28e/0x4a0
[  334.068946][ T9882]  ? bpf_trace_run4+0x19c/0x4a0
[  334.068990][ T9882]  ? __pfx_bpf_trace_run4+0x10/0x10
[  334.069028][ T9882]  ? __bpf_trace_sched_switch+0x15f/0x1e0
[  334.069062][ T9882]  __bpf_trace_sched_switch+0x17a/0x1e0
[  334.069094][ T9882]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  334.069125][ T9882]  ? psi_group_change+0xab8/0x1050
[  334.069153][ T9882]  ? __schedule+0x22e9/0x4cc0
[  334.069182][ T9882]  ? tracing_record_taskinfo_sched_switch+0x7d/0x370
[  334.069214][ T9882]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  334.069242][ T9882]  __traceiter_sched_switch+0x9d/0xd0
[  334.069274][ T9882]  __schedule+0x238f/0x4cc0
[  334.069310][ T9882]  ? perf_trace_run_bpf_submit+0xee/0x170
[  334.069347][ T9882]  ? __pfx___schedule+0x10/0x10
[  334.069373][ T9882]  ? preempt_schedule_irq+0xaa/0x150
[  334.069404][ T9882]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  334.069433][ T9882]  ? preempt_schedule_irq+0xaa/0x150
[  334.069466][ T9882]  preempt_schedule_irq+0xb5/0x150
[  334.069498][ T9882]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  334.069535][ T9882]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  334.069563][ T9882]  irqentry_exit+0x6f/0x90
[  334.069601][ T9882]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  334.069627][ T9882] RIP: 0010:unwind_next_frame+0xb46/0x2390
[  334.069655][ T9882] Code: 8d 5c 24 f8 4d 8b 66 10 48 b8 00 00 00 00 00 fc ff df 48 8b 4c 24 20 0f b6 04 01 84 c0 0f 85 85 13 00 00 41 83 3e 00 0f 95 c0 <49> 39 df 0f 96 c1 20 c1 49 39 dc 0f 97 c0 20 c8 3c 01 75 18 48 8d
[  334.069675][ T9882] RSP: 0018:ffffc90003b8ed58 EFLAGS: 00000202
[  334.069695][ T9882] RAX: 0000000000000001 RBX: ffffc90003b8f230 RCX: 1ffff92000771dc5
[  334.069711][ T9882] RDX: ffffffff901753e6 RSI: 0000000000000002 RDI: ffffffff8bbf0880
[  334.069727][ T9882] RBP: 1ffff92000771dc6 R08: 0000000000000009 R09: ffffffff81738c45
[  334.069743][ T9882] R10: ffffc90003b8ee78 R11: ffffffff81ac2e10 R12: ffffc90003b90000
[  334.069761][ T9882] R13: 1ffff92000771dc7 R14: ffffc90003b8ee28 R15: ffffc90003b88000
[  334.069782][ T9882]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  334.069812][ T9882]  ? unwind_next_frame+0xa5/0x2390
[  334.069843][ T9882]  ? unwind_next_frame+0xd4/0x2390
[  334.069871][ T9882]  ? unwind_next_frame+0xa5/0x2390
[  334.069898][ T9882]  ? kmem_cache_alloc_node_noprof+0x433/0x710
[  334.069932][ T9882]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  334.069963][ T9882]  arch_stack_walk+0x11c/0x150
[  334.069993][ T9882]  ? kmem_cache_alloc_node_noprof+0x433/0x710
[  334.070028][ T9882]  stack_trace_save+0x9c/0xe0
[  334.070056][ T9882]  ? __pfx_stack_trace_save+0x10/0x10
[  334.070093][ T9882]  kasan_save_track+0x3e/0x80
[  334.070123][ T9882]  ? kasan_save_track+0x3e/0x80
[  334.070153][ T9882]  ? __kasan_slab_alloc+0x6c/0x80
[  334.070185][ T9882]  ? kmem_cache_alloc_node_noprof+0x433/0x710
[  334.070247][ T9882]  __kasan_slab_alloc+0x6c/0x80
[  334.070281][ T9882]  kmem_cache_alloc_node_noprof+0x433/0x710
[  334.070312][ T9882]  ? __alloc_skb+0x112/0x2d0
[  334.070336][ T9882]  __alloc_skb+0x112/0x2d0
[  334.070359][ T9882]  netlink_dump+0x1b7/0xe90
[  334.070387][ T9882]  ? __pfx_netlink_dump+0x10/0x10
[  334.070406][ T9882]  ? __kasan_kmalloc+0x93/0xb0
[  334.070449][ T9882]  ? netlink_lookup+0x30/0x200
[  334.070468][ T9882]  ? netlink_lookup+0x30/0x200
[  334.070490][ T9882]  __netlink_dump_start+0x5cb/0x7e0
[  334.070516][ T9882]  inet_diag_rcv_msg_compat+0x1ea/0x3b0
[  334.070541][ T9882]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  334.070569][ T9882]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  334.070598][ T9882]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  334.070619][ T9882]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  334.070644][ T9882]  ? sock_diag_rcv_msg+0x188/0x600
[  334.070680][ T9882]  sock_diag_rcv_msg+0x4cc/0x600
[  334.070715][ T9882]  netlink_rcv_skb+0x208/0x470
[  334.070735][ T9882]  ? __lock_acquire+0xab9/0xd20
[  334.070756][ T9882]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  334.070791][ T9882]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  334.070819][ T9882]  ? netlink_deliver_tap+0x2e/0x1b0
[  334.070845][ T9882]  netlink_unicast+0x82f/0x9e0
[  334.070883][ T9882]  ? __pfx_netlink_unicast+0x10/0x10
[  334.070922][ T9882]  netlink_sendmsg+0x805/0xb30
[  334.070950][ T9882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  334.070975][ T9882]  ? aa_sock_msg_perm+0xf1/0x1d0
[  334.071010][ T9882]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  334.071031][ T9882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  334.071054][ T9882]  __sock_sendmsg+0x21c/0x270
[  334.071086][ T9882]  ____sys_sendmsg+0x505/0x830
[  334.071113][ T9882]  ? __pfx_____sys_sendmsg+0x10/0x10
[  334.071143][ T9882]  ? import_iovec+0x74/0xa0
[  334.071174][ T9882]  ___sys_sendmsg+0x21f/0x2a0
[  334.071199][ T9882]  ? __pfx____sys_sendmsg+0x10/0x10
[  334.071245][ T9882]  ? __fget_files+0x2a/0x420
[  334.071266][ T9882]  ? __fget_files+0x3a0/0x420
[  334.071293][ T9882]  __x64_sys_sendmsg+0x19b/0x260
[  334.071319][ T9882]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  334.071357][ T9882]  do_syscall_64+0xfa/0xfa0
[  334.071391][ T9882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.071413][ T9882]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  334.071437][ T9882]  ? clear_bhb_loop+0x60/0xb0
[  334.071460][ T9882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.071482][ T9882] RIP: 0033:0x7f9b1b58f749
[  334.071500][ T9882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.071519][ T9882] RSP: 002b:00007f9b1c3aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  334.071542][ T9882] RAX: ffffffffffffffda RBX: 00007f9b1b7e5fa0 RCX: 00007f9b1b58f749
[  334.071558][ T9882] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  334.071572][ T9882] RBP: 00007f9b1c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  334.071592][ T9882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.071604][ T9882] R13: 00007f9b1b7e6038 R14: 00007f9b1b7e5fa0 R15: 00007ffc0c828008
[  334.071632][ T9882]  </TASK>
[  335.738783][ T9882] CPU: 1 UID: 0 PID: 9882 Comm: syz.0.1174 Not tainted syzkaller #0 PREEMPT(full) 
[  335.738804][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  335.738814][ T9882] Call Trace:
[  335.738823][ T9882]  <TASK>
[  335.738831][ T9882]  dump_stack_lvl+0x189/0x250
[  335.738856][ T9882]  ? __pfx____ratelimit+0x10/0x10
[  335.738879][ T9882]  ? __pfx_dump_stack_lvl+0x10/0x10
[  335.738900][ T9882]  ? __pfx__printk+0x10/0x10
[  335.738920][ T9882]  should_fail_ex+0x414/0x560
[  335.738946][ T9882]  strncpy_from_user+0x36/0x290
[  335.738970][ T9882]  strncpy_from_user_nofault+0x72/0x150
[  335.738989][ T9882]  bpf_probe_read_compat_str+0xe2/0x180
[  335.739011][ T9882]  bpf_prog_573c5a647519ba93+0x3e/0x44
[  335.739025][ T9882]  bpf_trace_run4+0x28e/0x4a0
[  335.739050][ T9882]  ? bpf_trace_run4+0x19c/0x4a0
[  335.739073][ T9882]  ? __pfx_bpf_trace_run4+0x10/0x10
[  335.739100][ T9882]  ? __bpf_trace_sched_switch+0x15f/0x1e0
[  335.739125][ T9882]  __bpf_trace_sched_switch+0x17a/0x1e0
[  335.739148][ T9882]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  335.739170][ T9882]  ? psi_group_change+0xab8/0x1050
[  335.739197][ T9882]  ? __schedule+0x22e9/0x4cc0
[  335.739220][ T9882]  ? tracing_record_taskinfo_sched_switch+0x7d/0x370
[  335.739244][ T9882]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  335.739267][ T9882]  __traceiter_sched_switch+0x9d/0xd0
[  335.739291][ T9882]  __schedule+0x238f/0x4cc0
[  335.739318][ T9882]  ? perf_trace_run_bpf_submit+0xee/0x170
[  335.739346][ T9882]  ? __pfx___schedule+0x10/0x10
[  335.739366][ T9882]  ? preempt_schedule_irq+0xaa/0x150
[  335.739388][ T9882]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  335.739409][ T9882]  ? preempt_schedule_irq+0xaa/0x150
[  335.739432][ T9882]  preempt_schedule_irq+0xb5/0x150
[  335.739454][ T9882]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  335.739479][ T9882]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  335.739498][ T9882]  irqentry_exit+0x6f/0x90
[  335.739521][ T9882]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  335.739537][ T9882] RIP: 0010:unwind_next_frame+0xb46/0x2390
[  335.739558][ T9882] Code: 8d 5c 24 f8 4d 8b 66 10 48 b8 00 00 00 00 00 fc ff df 48 8b 4c 24 20 0f b6 04 01 84 c0 0f 85 85 13 00 00 41 83 3e 00 0f 95 c0 <49> 39 df 0f 96 c1 20 c1 49 39 dc 0f 97 c0 20 c8 3c 01 75 18 48 8d
[  335.739572][ T9882] RSP: 0018:ffffc90003b8ed58 EFLAGS: 00000202
[  335.739586][ T9882] RAX: 0000000000000001 RBX: ffffc90003b8f230 RCX: 1ffff92000771dc5
[  335.739597][ T9882] RDX: ffffffff901753e6 RSI: 0000000000000002 RDI: ffffffff8bbf0880
[  335.739609][ T9882] RBP: 1ffff92000771dc6 R08: 0000000000000009 R09: ffffffff81738c45
[  335.739619][ T9882] R10: ffffc90003b8ee78 R11: ffffffff81ac2e10 R12: ffffc90003b90000
[  335.739631][ T9882] R13: 1ffff92000771dc7 R14: ffffc90003b8ee28 R15: ffffc90003b88000
[  335.739645][ T9882]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  335.739666][ T9882]  ? unwind_next_frame+0xa5/0x2390
[  335.739688][ T9882]  ? unwind_next_frame+0xd4/0x2390
[  335.739708][ T9882]  ? unwind_next_frame+0xa5/0x2390
[  335.739726][ T9882]  ? kmem_cache_alloc_node_noprof+0x433/0x710
[  335.739750][ T9882]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  335.739771][ T9882]  arch_stack_walk+0x11c/0x150
[  335.739793][ T9882]  ? kmem_cache_alloc_node_noprof+0x433/0x710
[  335.739817][ T9882]  stack_trace_save+0x9c/0xe0
[  335.739837][ T9882]  ? __pfx_stack_trace_save+0x10/0x10
[  335.739861][ T9882]  kasan_save_track+0x3e/0x80
[  335.739884][ T9882]  ? kasan_save_track+0x3e/0x80
[  335.739904][ T9882]  ? __kasan_slab_alloc+0x6c/0x80
[  335.739926][ T9882]  ? kmem_cache_alloc_node_noprof+0x433/0x710
[  335.739970][ T9882]  __kasan_slab_alloc+0x6c/0x80
[  335.739994][ T9882]  kmem_cache_alloc_node_noprof+0x433/0x710
[  335.740016][ T9882]  ? __alloc_skb+0x112/0x2d0
[  335.740033][ T9882]  __alloc_skb+0x112/0x2d0
[  335.740049][ T9882]  netlink_dump+0x1b7/0xe90
[  335.740068][ T9882]  ? __pfx_netlink_dump+0x10/0x10
[  335.740081][ T9882]  ? __kasan_kmalloc+0x93/0xb0
[  335.740111][ T9882]  ? netlink_lookup+0x30/0x200
[  335.740123][ T9882]  ? netlink_lookup+0x30/0x200
[  335.740139][ T9882]  __netlink_dump_start+0x5cb/0x7e0
[  335.740157][ T9882]  inet_diag_rcv_msg_compat+0x1ea/0x3b0
[  335.740175][ T9882]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  335.740201][ T9882]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  335.740215][ T9882]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  335.740229][ T9882]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  335.740247][ T9882]  ? sock_diag_rcv_msg+0x188/0x600
[  335.740272][ T9882]  sock_diag_rcv_msg+0x4cc/0x600
[  335.740297][ T9882]  netlink_rcv_skb+0x208/0x470
[  335.740311][ T9882]  ? __lock_acquire+0xab9/0xd20
[  335.740326][ T9882]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  335.740349][ T9882]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  335.740369][ T9882]  ? netlink_deliver_tap+0x2e/0x1b0
[  335.740387][ T9882]  netlink_unicast+0x82f/0x9e0
[  335.740413][ T9882]  ? __pfx_netlink_unicast+0x10/0x10
[  335.740441][ T9882]  netlink_sendmsg+0x805/0xb30
[  335.740460][ T9882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  335.740477][ T9882]  ? aa_sock_msg_perm+0xf1/0x1d0
[  335.740501][ T9882]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  335.740516][ T9882]  ? __pfx_netlink_sendmsg+0x10/0x10
[  335.740532][ T9882]  __sock_sendmsg+0x21c/0x270
[  335.740555][ T9882]  ____sys_sendmsg+0x505/0x830
[  335.740574][ T9882]  ? __pfx_____sys_sendmsg+0x10/0x10
[  335.740594][ T9882]  ? import_iovec+0x74/0xa0
[  335.740616][ T9882]  ___sys_sendmsg+0x21f/0x2a0
[  335.740633][ T9882]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.740665][ T9882]  ? __fget_files+0x2a/0x420
[  335.740679][ T9882]  ? __fget_files+0x3a0/0x420
[  335.740697][ T9882]  __x64_sys_sendmsg+0x19b/0x260
[  335.740715][ T9882]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  335.740742][ T9882]  do_syscall_64+0xfa/0xfa0
[  335.740765][ T9882]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.740779][ T9882]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  335.740795][ T9882]  ? clear_bhb_loop+0x60/0xb0
[  335.740812][ T9882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.740827][ T9882] RIP: 0033:0x7f9b1b58f749
[  335.740841][ T9882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.740854][ T9882] RSP: 002b:00007f9b1c3aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  335.740869][ T9882] RAX: ffffffffffffffda RBX: 00007f9b1b7e5fa0 RCX: 00007f9b1b58f749
[  335.740880][ T9882] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[  335.740890][ T9882] RBP: 00007f9b1c3aa090 R08: 0000000000000000 R09: 0000000000000000
[  335.740899][ T9882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.740908][ T9882] R13: 00007f9b1b7e6038 R14: 00007f9b1b7e5fa0 R15: 00007ffc0c828008
[  335.740927][ T9882]  </TASK>