last executing test programs:

3.976241662s ago: executing program 2 (id=1003):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xa}, 0x41, 0x4, 0x7, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x200001, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
syz_clone(0x61980300, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0xfffffff8}, 0x90)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x81, 0x86e46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x2}, 0x40, 0x8, 0x0, 0x0, 0x0, 0xffff0000, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000))
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0x1}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x6, 0x0, 0xffda, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
socket$kcm(0x10, 0x400000002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6gre0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000240), 0x12)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f1, &(0x7f0000000080))
setsockopt$sock_attach_bpf(r0, 0x1, 0x48, &(0x7f0000000000), 0x4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x26, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x48}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x2000000, 0xe, 0x0, &(0x7f0000000500)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x10001, 0xd0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$kcm(0x2, 0x6, 0x0)
sendmsg$inet(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x3e8)

3.906708603s ago: executing program 1 (id=1005):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0500000000f01f00660000007f"], 0x50)
socket$kcm(0xa, 0x5, 0x0)
close(0x3)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x4, 0x0, 0x3, 0x0, 0x0, 0x8000, 0x1004, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={0x0}, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x2, 0x4, 0x0, 0x1, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
r1 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000002c0)={r1})
setsockopt$sock_attach_bpf(r1, 0x29, 0x23, &(0x7f0000000040), 0xcf)
close(r1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)

3.54691577s ago: executing program 0 (id=1007):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b0051e900000000293852377e326bc30f673e00", @ANYRES32, @ANYBLOB="4000000000000000d4e600", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0x3f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={&(0x7f0000000480)={0x2, 0x3, @local}, 0x10, &(0x7f0000000e40)=[{&(0x7f00000004c0)="007ef3b76707fb92a6ca40bc0dccf44b0b73b7fff335d56db7be114b10c4340e84b2761c930918ba6e3fb239184f089874f60858b0062509a5f01b2314600e966986a6bc422854bb1620f107a9972ae5dc5237864976d0b0a4acf51c39e90c1b8a4de70e157c083d5da5e122c3f5491100a835f14aa4b926f8ad785333839081e7e768bd9ec7afccab5da7668c9ce976cf7447dd7a31", 0x96}], 0x1}, 0x0)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0xffffffffffff9bed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x903, 0x0, @perf_bp={&(0x7f0000000300), 0xa}, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0xa, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000340)=ANY=[], 0x50)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xed, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x40, 0x5a4f}, 0x128000, 0x4, 0x0, 0x0, 0x9, 0x0, 0xffff, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b03d25a806c8c6f94f90624fc601000127a0a000600093582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x2011)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x9, 0x8, &(0x7f0000000580)=ANY=[@ANYRESHEX=r5, @ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000680)=ANY=[@ANYRES32=r6, @ANYRES64=r4, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYBLOB="b10fb6509f77351edcb7e754dca95aa27851544bdfd2accc2ca1a904c6694332fd9603f2290acebb27cf544de3203186dc836b93d1c151fc7f4dfd028dd64ae5c1c89162692409c7dd2b01966ec908b7e2b3d541ee9a68a7516f9867c27da24b097d88dc68896ab254c60fd201b2ff1ff07ea4c86cc4fbd888b714870991f48e747ae7418d87e72450748795a71d9e91420a8ed68f6f39b5a003df7693ea0df4aa7f2a6a354c490cf91b7656a40a3c87220379ceaaa86a343f9f5adf0912c0a507a8c25ac4ce15f96cbf1af7", @ANYRES16=r5], 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYRES32=r9], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r10, <r11=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)=r8}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000640)={r11, &(0x7f00000005c0), 0x0}, 0x20)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)=ANY=[], 0x20)
r12 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d160431bf85f0b26f257a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60004884)
r13 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x35, 0x10, &(0x7f0000000280)=ANY=[@ANYRES64=r2, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r13, @ANYRES8=r7], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r14 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r14, &(0x7f0000000080)={&(0x7f0000001b00)=@nfc_llcp={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, "18ea930200000034ca1eeda8daa60a9abde305cbe1656b4d7ab1424dc694f28875f0cede8569287d775dfa00dcddf939cb9b95773506d96096728b8d71cb32"}, 0x80, 0x0}, 0x20000000)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0xfffffffffffffffc, 0x0, 0x9, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))

3.336444035s ago: executing program 2 (id=1009):
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0x3f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000004c0)="007ef3b76707fb92a6ca40bc0dccf44b0b73b7fff335d56db7be114b10c4340e84b2761c930918ba6e3fb239184f089874f60858b0062509a5f01b2314600e966986a6bc422854bb1620f107a9972ae5dc5237864976d0b0a4acf51c39e90c1b8a4de70e157c083d5da5e122c3f5491100a835f14aa4b926f8ad785333839081e7e768bd9ec7afccab5da7668c9ce976cf7447dd7a31", 0x96}], 0x1}, 0x0)
socket$kcm(0x2, 0xa, 0x2)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d160431bf85f0b26f257a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60004884)

3.196271017s ago: executing program 3 (id=1010):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000dd0000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0xff90, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80)

3.124592719s ago: executing program 2 (id=1011):
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001100)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0xe}, 0x10000)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="100000002d000b02d25a806f8c6394f9101a04000a7401", 0x17}], 0x1}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000440)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000004c0), 0x0, 0xda, &(0x7f0000000500), 0x0, 0x10, &(0x7f0000000540), &(0x7f00000004c0), 0x8, 0x68, 0x8, 0x8, &(0x7f0000000600)}}, 0x10)
socketpair(0xb, 0x6, 0x15, &(0x7f0000000500))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x18, 0x0, 0x0, &(0x7f0000000580)='syzkaller\x00', 0xfb, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9b}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bond0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89fc, &(0x7f0000000080))
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="93430000520033d487277b9b100b4ab50a", @ANYRES32, @ANYRES8=r0], 0xfe33)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r1, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000140)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0], 0x0, 0x83, &(0x7f0000000200)=[{}], 0x8, 0x10, &(0x7f0000000240), &(0x7f0000000280), 0x8, 0x20, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)

2.968332752s ago: executing program 3 (id=1012):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180800000000000000000000000000001800"/29], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0, 0x0, 0x0, 0xa00}, 0x30004001)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r2, &(0x7f0000000180)={0x0, 0x7b64, &(0x7f0000000280)=[{&(0x7f0000000100)="5c00000012006bab9e3fe3d8fd8978f45225d9ee000000007ea60860160af36504000100080ec000000002009ee517c356a7b0251e61e659ad3af435cf01c937e786a6d0bdd7fcf50e4509c5cc68b7ed9c232d786c35fe0000000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

2.850353774s ago: executing program 3 (id=1013):
socket$kcm(0x10, 0x7, 0x4)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3efd7ab4c41335d9, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
close(0xffffffffffffffff)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000002bc0)=[{&(0x7f0000001700)="d80000001e0081064e81f782db44b9040a02080006007c09e8fe78190a0015c00200142603600e120800110024000000a80009001100014003000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef40900d1001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x1000000}, 0x0)

2.710617297s ago: executing program 2 (id=1014):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001380)={0xffffffffffffffff, &(0x7f00000004c0)}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0xefeb, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f00000000c0)=0x4)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61b, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x50)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000003a00)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x9}}, 0x10, &(0x7f0000000b40)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000001a00), 0x101d0}], 0x4}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x1}, {0x0, 0x3, 0x4}, {0x0, 0x4, 0x10005, 0x2}]}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f90324fc60100005000a000200053582c137153e37000c", 0x26}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xe, 0x3, &(0x7f0000000000)=@framed={{0x72, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x79}}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc}, 0x90)
r4 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe000031"], 0xfe33)

2.512247451s ago: executing program 3 (id=1015):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x88e}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000001000000000000010000000000000000000000000000000105000000100000000000000200000003000000000100000002"], 0x0, 0x53}, 0x28)
r2 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x890b, &(0x7f0000000000))
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0xfffffe51)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x5281}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x4, 0xd3, 0x6, 0x9, 0x0, 0x0, 0x18000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0, 0x8}, 0x440, 0xc8, 0x3, 0x5, 0x0, 0x0, 0xfffb, 0x0, 0xfffffffe, 0x0, 0x4}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00'}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r5, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r4, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r6, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc02083300db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r8)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480f0000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x4, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x13}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r10, 0x0, 0x28, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.378751494s ago: executing program 0 (id=1016):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2106, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x46, 0x0, 0x5, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x7, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffa}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x4f}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x5, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="5c00000014006b03000000d86e6c1d0010ffff0af32c6e040e75f800250003000f60000017d34460bc24eab556a705251e6182949a369f3d3b48dfd8cdbf9367b4fa51f60a64c9f4d4938037e786a6d0bdd7000340000000001f0000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r2, 0x0, 0xe900)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0xf, &(0x7f00000002c0), 0x4)
sendmsg$inet(r3, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r4, 0x0, 0x52cc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x4, 0x0, &(0x7f0000000300)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000780)={&(0x7f0000000440)=@l2tp6={0xa, 0x0, 0xfffffffb, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x5, 0x4}, 0x80, &(0x7f0000000580)=[{&(0x7f00000004c0)}, {&(0x7f0000000540)="9454d6de1af13fa530c5fb908ef85d0ffcdf19c24798fb0a4a1e", 0x1a}, {&(0x7f0000000680)="f543a260619a3d37bf849e87f0002501c08f444ccc9dc4e405a2e7af8f67b5b7c3b1556e8ab2543f866508ec80efef4d39d0b41695553bbb1af12233c291b5e4a2a808da20805fa976022de0bce0a6c2f4e047143aa2cfea9b8c91206eb9f130b5ea3b2bcdda46541368ba8d25970b54e837d1c48be613ecee4a834b467b6ba97f893401b1d5b5b5f1cc9f449f78361444bb743d0d9a098e7ac1c8bf1d8742e932e888d644254a5de2a5bda64b140974326d87872e6a20888e486b5ca981ba4de2bd41adafcce92429928266dc7b064a21a05a25aa772b01b029", 0xda}], 0x3}, 0x24000001)
close(r5)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)="5c00000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514000cc00800190007000200060001c00200bc24eab556a705251e618294ff4051f60a84c9f4d4938037e786a6d00010000400000000000000c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4004004)
socket$kcm(0xa, 0x922000000003, 0x11)
r6 = socket$kcm(0x2, 0x3, 0x106)
sendmsg$inet(r6, &(0x7f0000000040)={&(0x7f0000000380)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000500)=[{&(0x7f0000000700)="fbd2b9ed29d8974a6ce75f08916ac3b4dafef92c", 0xffeb}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0x6}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.888742753s ago: executing program 0 (id=1017):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000200)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000340)=ANY=[@ANYBLOB='b 75:*\t'], 0xa)

1.228991606s ago: executing program 0 (id=1018):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x0, 0x40}]}]}}, &(0x7f0000000000)=""/40, 0x2e, 0x28, 0x1, 0x1ff}, 0x28) (fail_nth: 34)

970.186111ms ago: executing program 1 (id=1019):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b9040a", 0x11}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000580)=ANY=[], 0xfe33)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000040)={@cgroup=r1, r1, 0x2f, 0x10}, 0x20)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00), 0x8)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={0xffffffffffffffff, r1, 0x4, r0}, 0x10)
r3 = socket$kcm(0x2, 0x3, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$inet(r3, &(0x7f0000000040)={&(0x7f0000000380)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000500)=[{&(0x7f0000000e40)="fbd2b9ed29d8974a6ce75f08916ac3b4dafef92c0d42f9f8322eeba427a5885e8ad69cebb820d104d72deaabfd35efe7e02613957b5fac3ffe82ee2ccfaa785ba5e2319f3a99aa76f840ab15bfcdbe389cd05769cc33c0bb5df76d6a51048de7ca50e2119dee6c94b61ec58c2ea0f1177ed01934e857c5e59e4bf7487caa254f55d5001157a5e13a804f58c2beeb5692f0a331c03dc7aa20733eb8ec36397aed2147a0752c8d49d53289ce2a07b5e89686288483a566689f2a7a6e43877a4b51126fa0a9697182124b064a851453ca8ce19ec998df23aef2358297582345c2868d788a1467d624085f6ddc1a924877e31e11f1", 0xf3}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000f40)=ANY=[@ANYRES16=r1, @ANYBLOB="7ee0600218f2041d2ce4714f285e5b07bed5e1ebac364bd92ea5af97dbbca7b694d4eb3983"], 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

806.414055ms ago: executing program 2 (id=1020):
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0x3f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000004c0)="007ef3b76707fb92a6ca40bc0dccf44b0b73b7fff335d56db7be114b10c4340e84b2761c930918ba6e3fb239184f089874f60858b0062509a5f01b2314600e966986a6bc422854bb1620f107a9972ae5dc5237864976d0b0a4acf51c39e90c1b8a4de70e157c083d5da5e122c3f5491100a835f14aa4b926f8ad785333839081e7e768bd9ec7afccab5da7668c9ce976cf7447dd7a31", 0x96}], 0x1}, 0x0)
socket$kcm(0x2, 0xa, 0x2)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d160431bf85f0b26f257a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60004884)

708.317557ms ago: executing program 0 (id=1021):
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b0051e900000000293852377e326bc30f673e", @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00'], 0x48)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0x3f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={&(0x7f0000000480)={0x2, 0x3, @local}, 0x10, &(0x7f0000000e40)=[{&(0x7f00000004c0)="007ef3b76707fb92a6ca40bc0dccf44b0b73b7fff335d56db7be114b10c4340e84b2761c930918ba6e3fb239184f089874f60858b0062509a5f01b2314600e966986a6bc422854bb1620f107a9972ae5dc5237864976d0b0a4acf51c39e90c1b8a4de70e157c083d5da5e122c3f5491100a835f14aa4b926f8ad785333839081e7e768bd", 0x84}], 0x1}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0xffffffffffff9bed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x903, 0x0, @perf_bp={&(0x7f0000000300), 0xa}, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0xa, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b03d25a806c8c6f94f90624fc601000127a0a000600093582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1}, 0x0)

707.643787ms ago: executing program 3 (id=1022):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001380)={r0, &(0x7f00000004c0)}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f00000000c0)=0x4)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f90324fc60100005000a000200053582c137153e37000c", 0x26}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xe, 0x3, &(0x7f0000000000)=@framed={{0x72, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x79}}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc}, 0x90)
socket$kcm(0x10, 0x2, 0x0)

658.413858ms ago: executing program 1 (id=1023):
r0 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x2)
socket$kcm(0xa, 0x3, 0x87)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x800, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x4}, 0x50)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000000050000000500000000a0000000000000005000000000000000500000004000000020000000400000000000008000000000a000000000000110100000005000000000000000200000d000000000a00000005000000020000000100000000610000305f2e613000"], &(0x7f00000002c0)=""/235, 0x72, 0xeb, 0x1, 0x30}, 0x28)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000500)={0x1b, 0x0, 0x0, 0x6, 0x0, r1, 0xab, '\x00', 0x0, r2, 0x0, 0x2, 0x4}, 0x50)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000000)="24000000660081", 0x7}, {&(0x7f0000000480)="91ed9fb3e820f2f0ab14255ef81ac20534a7b3161e7c600a23baa5c4d0f7908f325d0f07ea0f5d276d0d91be9697a87574b69431425b344d2c7f161a764f3e684dca30b37f97f4879626bc7dc2acb9d6226e54b4733abaac558636f2f58dc217072fdd46beb7066455d68bf3e771", 0x6e}, {0x0}, {0x0}], 0x4, 0x0, 0x0, 0xc9e}, 0x48084)

603.240089ms ago: executing program 2 (id=1024):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b0051e900000000293852377e326bc30f673e00", @ANYRES32, @ANYBLOB="4000000000000000d4e600", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0x3f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000f80)={&(0x7f0000000480)={0x2, 0x3, @local}, 0x10, &(0x7f0000000e40)=[{&(0x7f00000004c0)="007ef3b76707fb92a6ca40bc0dccf44b0b73b7fff335d56db7be114b10c4340e84b2761c930918ba6e3fb239184f089874f60858b0062509a5f01b2314600e966986a6bc422854bb1620f107a9972ae5dc5237864976d0b0a4acf51c39e90c1b8a4de70e157c083d5da5e122c3f5491100a835f14aa4b926f8ad785333839081e7e768bd9ec7afccab5da7668c9ce976cf7447dd7a31", 0x96}], 0x1}, 0x0)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1a, 0x1, 0x0, 0x0, 0x0, 0xffffffffffff9bed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x903, 0x0, @perf_bp={&(0x7f0000000300), 0xa}, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x2, 0xa, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x114905, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000340)=ANY=[], 0x50)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xed, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x40, 0x5a4f}, 0x128000, 0x4, 0x0, 0x0, 0x9, 0x0, 0xffff, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b03d25a806c8c6f94f90624fc601000127a0a000600093582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x2011)
ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x9, 0x8, &(0x7f0000000580)=ANY=[@ANYRESHEX=r5, @ANYRES32=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000680)=ANY=[@ANYRES32=r6, @ANYRES64=r4, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYBLOB="b10fb6509f77351edcb7e754dca95aa27851544bdfd2accc2ca1a904c6694332fd9603f2290acebb27cf544de3203186dc836b93d1c151fc7f4dfd028dd64ae5c1c89162692409c7dd2b01966ec908b7e2b3d541ee9a68a7516f9867c27da24b097d88dc68896ab254c60fd201b2ff1ff07ea4c86cc4fbd888b714870991f48e747ae7418d87e72450748795a71d9e91420a8ed68f6f39b5a003df7693ea0df4aa7f2a6a354c490cf91b7656a40a3c87220379ceaaa86a343f9f5adf0912c0a507a8c25ac4ce15f96cbf1af7", @ANYRES16=r5], 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYRES32=r9], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r10, <r11=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)=r8}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000640)={r11, &(0x7f00000005c0), 0x0}, 0x20)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)=ANY=[], 0x20)
r12 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d160431bf85f0b26f257a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x60004884)
r13 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x35, 0x10, &(0x7f0000000280)=ANY=[@ANYRES64=r2, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r13, @ANYRES8=r7], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r14 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r14, &(0x7f0000000080)={&(0x7f0000001b00)=@nfc_llcp={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, "18ea930200000034ca1eeda8daa60a9abde305cbe1656b4d7ab1424dc694f28875f0cede8569287d775dfa00dcddf939cb9b95773506d96096728b8d71cb32"}, 0x80, 0x0}, 0x20000000)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0xfffffffffffffffc, 0x0, 0x9, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))

602.257798ms ago: executing program 0 (id=1025):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x20, 0x12506, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x7e02, 0x0, 0x0, 0x0, 0x0, 0x8d3c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, &(0x7f0000000040)=""/155, 0x1000000, 0x9b, 0x1}, 0x20)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x100000, 0x0, 0x0, 0x41000, 0x14, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x109}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r1}, 0x18)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x63cf80fb, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xbdb, 0x1}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0], 0x0, 0x87, &(0x7f0000000400)=[{}], 0x8, 0x10, &(0x7f00000004c0), &(0x7f0000000500), 0x8, 0xf1, 0x8, 0x8, &(0x7f0000000540)}}, 0x10)
r4 = openat$cgroup_procs(r3, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f00000001c0), 0x12)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_ro(r5, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f0000000200)=0x1, 0x12)
write$cgroup_int(r6, &(0x7f00000000c0), 0x12)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4, 0xa2721, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000000)=ANY=[], 0x82d7)
close(0x3)
r8 = socket$kcm(0x10, 0x2, 0x0)
r9 = getpid()
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000180)=r9, 0x12)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000580)="d8000000180081034e91f783db4cb9040a1d020006007409e8fc55a10a0015000400142603600e120800060000000401a8000800080002000000000004000461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d4e1cace81ed0bffece0b42a9ecbeeccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d93000000000000004867edef090d82c399b3b549", 0xd8}], 0x1}, 0x0)

424.440982ms ago: executing program 1 (id=1026):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000200)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000340)=ANY=[@ANYBLOB='b 75:*\t'], 0xa)

350.268854ms ago: executing program 3 (id=1027):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0500000000f01f00660000007f"], 0x50)
socket$kcm(0xa, 0x5, 0x0)
close(0x3)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x4, 0x0, 0x3, 0x0, 0x0, 0x8000, 0x1004, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={0x0}, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x2, 0x4, 0x0, 0x1, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
r1 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000002c0)={r1})
setsockopt$sock_attach_bpf(r1, 0x29, 0x23, &(0x7f0000000040), 0xcf)
close(r1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)

285.406015ms ago: executing program 1 (id=1028):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x4, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="660a00002000000061118b000000000085000000cc00000095"], &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x41000}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000004c0)='ns/pid_for_children\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xe, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="6a0ac4ff0000000071105300000000950000000000000000"], &(0x7f0000000480)='GPL\x00'}, 0x80)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x24004000)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000040000000000000000000000850000002c000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r10, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000000300)="b9faffffffffffffff9ec6ff02e360bc8551", 0x0, 0xe00, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x50)
sendmsg$inet(r9, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r8, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x40000002)
ioctl$TUNSETFILTEREBPF(r1, 0xb702, 0x0)

0s ago: executing program 1 (id=1029):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000001380)={r0, &(0x7f00000004c0)}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
r1 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0xefeb, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f00000000c0)=0x4)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3efd7ab4c41335d9, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61b, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x50)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
sendmsg$tipc(r4, &(0x7f0000003a00)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x9}}, 0x10, &(0x7f0000000b40)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000001a00), 0x101d0}], 0x4}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x0, 0x1}, {0x0, 0x3, 0x4}, {0x0, 0x4, 0x10005, 0x2}]}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f90324fc60100005000a000200053582c137153e37000c", 0x26}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0xe, 0x3, &(0x7f0000000000)=@framed={{0x72, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x79}}, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc}, 0x90)
r5 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe000031"], 0xfe33)

kernel console output (not intermixed with test programs):

ac addresses unique to avoid problems!
[   72.661364][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.692429][ T5779] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.702796][ T5779] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.714482][ T5779] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.723520][ T5779] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.769670][ T5783] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.784166][ T5783] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.795047][ T5783] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.804196][ T5783] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.818028][ T2994] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.838319][ T2994] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.904274][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.936489][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.037616][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.056953][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.150571][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.187060][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.211864][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.233955][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.235096][ T5877] netlink: 192 bytes leftover after parsing attributes in process `syz.2.3'.
[   73.308697][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.315425][ T5879] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.6'.
[   73.355246][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.595788][    C1] hrtimer: interrupt took 46502 ns
[   73.742446][ T5883] Ÿë
: port 1(veth0_to_bridge) entered blocking state
[   73.754146][ T5883] Ÿë
: port 1(veth0_to_bridge) entered disabled state
[   73.762230][ T5883] veth0_to_bridge: entered allmulticast mode
[   73.776582][ T5883] veth0_to_bridge: entered promiscuous mode
[   73.837303][ T5883] Ÿë
: port 2(erspan0) entered blocking state
[   73.844445][ T5883] Ÿë
: port 2(erspan0) entered disabled state
[   73.854045][ T5883] erspan0: entered allmulticast mode
[   73.857015][ T5879] syz.0.6 (5879) used greatest stack depth: 18992 bytes left
[   73.861914][ T5883] erspan0: entered promiscuous mode
[   73.893552][ T5886] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4'.
[   73.896868][   T50] Bluetooth: hci2: command tx timeout
[   73.903807][ T5780] Bluetooth: hci3: command tx timeout
[   73.909557][ T5102] Bluetooth: hci1: command tx timeout
[   73.921133][ T5886] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4'.
[   73.972547][   T50] Bluetooth: hci0: command tx timeout
[   74.000757][ T5889] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4'.
[   74.153805][ T5896] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.9'.
[   74.643161][ T5899] netlink: 192 bytes leftover after parsing attributes in process `syz.1.11'.
[   75.130179][ T5903] warning: `syz.0.8' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   75.183752][ T5910] netlink: 'syz.2.14': attribute type 39 has an invalid length.
[   75.756365][ T5919] netlink: 'syz.1.16': attribute type 25 has an invalid length.
[   75.764265][ T5919] netlink: 'syz.1.16': attribute type 1 has an invalid length.
[   75.789326][ T5919] bridge0: port 1(bridge_slave_0) entered learning state
[   75.957227][   T50] Bluetooth: hci3: command tx timeout
[   75.958468][ T5102] Bluetooth: hci2: command tx timeout
[   75.962706][ T5780] Bluetooth: hci1: command tx timeout
[   76.045437][ T5780] Bluetooth: hci0: command tx timeout
[   76.256752][ T5928] netlink: 132 bytes leftover after parsing attributes in process `syz.3.19'.
[   76.413866][ T5930] syz.1.20 uses obsolete (PF_INET,SOCK_PACKET)
[   76.501532][ T5930] netlink: 'syz.1.20': attribute type 4 has an invalid length.
[   76.521427][ T5930] netlink: 152 bytes leftover after parsing attributes in process `syz.1.20'.
[   76.628691][ T5930] : renamed from bond0 (while UP)
[   77.402685][ T5940] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.24'.
[   77.445123][ T5940] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[   77.467991][ T5940] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   77.492620][ T5945] netlink: 'syz.3.23': attribute type 12 has an invalid length.
[   77.777669][ T5941] netlink: 'syz.3.23': attribute type 2 has an invalid length.
[   81.262247][ T6018] netlink: 'syz.2.45': attribute type 4 has an invalid length.
[   81.280130][ T6018] __nla_validate_parse: 2 callbacks suppressed
[   81.280146][ T6018] netlink: 152 bytes leftover after parsing attributes in process `syz.2.45'.
[   81.427960][ T6018] : renamed from bond0 (while UP)
[   81.797481][ T6024] netlink: 132 bytes leftover after parsing attributes in process `syz.0.46'.
[   81.917572][   T28] cfg80211: failed to load regulatory.db
[   81.973479][ T6029] netlink: 'syz.1.48': attribute type 12 has an invalid length.
[   82.001828][ T6029] netlink: 132 bytes leftover after parsing attributes in process `syz.1.48'.
[   82.063397][ T6029] netlink: 'syz.1.48': attribute type 2 has an invalid length.
[   82.101330][ T6029] netlink: 132 bytes leftover after parsing attributes in process `syz.1.48'.
[   82.458586][ T6033] netlink: 'syz.3.51': attribute type 25 has an invalid length.
[   82.479614][ T6033] netlink: 'syz.3.51': attribute type 1 has an invalid length.
[   82.491778][ T6033] bridge0: port 1(bridge_slave_0) entered learning state
[   84.779132][ T6052] Ÿë
: port 1(veth0_to_bridge) entered blocking state
[   84.790823][ T6052] Ÿë
: port 1(veth0_to_bridge) entered disabled state
[   84.802342][ T6052] veth0_to_bridge: entered allmulticast mode
[   84.816488][ T6052] veth0_to_bridge: entered promiscuous mode
[   84.844563][ T6052] Ÿë
: port 2(erspan0) entered blocking state
[   84.856737][ T6052] Ÿë
: port 2(erspan0) entered disabled state
[   84.863183][ T6052] erspan0: entered allmulticast mode
[   84.879308][ T6052] erspan0: entered promiscuous mode
[   85.704594][ T6074] netlink: 192 bytes leftover after parsing attributes in process `syz.2.62'.
[   85.718820][    C0] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[   85.753337][ T6076] FAULT_INJECTION: forcing a failure.
[   85.753337][ T6076] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   85.772445][ T6076] CPU: 0 PID: 6076 Comm: syz.3.63 Not tainted syzkaller #0
[   85.779730][ T6076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.789838][ T6076] Call Trace:
[   85.793133][ T6076]  <TASK>
[   85.796087][ T6076]  dump_stack_lvl+0x16c/0x230
[   85.800794][ T6076]  ? show_regs_print_info+0x20/0x20
[   85.806005][ T6076]  ? load_image+0x3b0/0x3b0
[   85.810694][ T6076]  ? __might_fault+0xaa/0x120
[   85.815494][ T6076]  ? __lock_acquire+0x7c80/0x7c80
[   85.820726][ T6076]  ? perf_event_ctx_lock_nested+0xb4/0x460
[   85.826654][ T6076]  should_fail_ex+0x39d/0x4d0
[   85.831395][ T6076]  _copy_from_user+0x2f/0xe0
[   85.836031][ T6076]  perf_ioctl+0x570/0x2440
[   85.840551][ T6076]  ? tomoyo_path_number_perm+0x1ba/0x590
[   85.846197][ T6076]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[   85.851783][ T6076]  ? perf_poll+0x1b0/0x1b0
[   85.856258][ T6076]  ? __fget_files+0x28/0x4d0
[   85.860909][ T6076]  ? bpf_lsm_file_ioctl+0x9/0x10
[   85.865893][ T6076]  ? security_file_ioctl+0x80/0xa0
[   85.871182][ T6076]  ? perf_poll+0x1b0/0x1b0
[   85.875768][ T6076]  __se_sys_ioctl+0xfd/0x170
[   85.880402][ T6076]  do_syscall_64+0x55/0xb0
[   85.884913][ T6076]  ? clear_bhb_loop+0x40/0x90
[   85.889623][ T6076]  ? clear_bhb_loop+0x40/0x90
[   85.894418][ T6076]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   85.900334][ T6076] RIP: 0033:0x7ff94e78ebe9
[   85.904848][ T6076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.924497][ T6076] RSP: 002b:00007ff94f571038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.932962][ T6076] RAX: ffffffffffffffda RBX: 00007ff94e9c5fa0 RCX: 00007ff94e78ebe9
[   85.940953][ T6076] RDX: 0000200000000200 RSI: 0000000040082404 RDI: 000000000000000d
[   85.949125][ T6076] RBP: 00007ff94f571090 R08: 0000000000000000 R09: 0000000000000000
[   85.957172][ T6076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.965520][ T6076] R13: 00007ff94e9c6038 R14: 00007ff94e9c5fa0 R15: 00007ffd671edfe8
[   85.973524][ T6076]  </TASK>
[   86.285068][ T6068] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[   86.358517][    C1] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.360271][    C0] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.481863][ T6081] netlink: 'syz.2.64': attribute type 4 has an invalid length.
[   86.490388][ T6081] netlink: 152 bytes leftover after parsing attributes in process `syz.2.64'.
[   86.615834][ T6088] Illegal XDP return value 4294967274 on prog  (id 40) dev N/A, expect packet loss!
[   87.652650][ T6096] netlink: 'syz.1.77': attribute type 2 has an invalid length.
[   87.664017][ T6096] netlink: 'syz.1.77': attribute type 8 has an invalid length.
[   87.685477][ T6096] netlink: 132 bytes leftover after parsing attributes in process `syz.1.77'.
[   88.528644][ T6101] netlink: 44 bytes leftover after parsing attributes in process `syz.1.68'.
[   88.551558][ T6101] netlink: 44 bytes leftover after parsing attributes in process `syz.1.68'.
[   88.581123][ T6098] netlink: 44 bytes leftover after parsing attributes in process `syz.1.68'.
[   89.184003][ T6118] netlink: 'syz.3.73': attribute type 4 has an invalid length.
[   89.225000][ T6118] netlink: 152 bytes leftover after parsing attributes in process `syz.3.73'.
[   89.278312][ T6118] : renamed from bond0 (while UP)
[   89.352632][ T6123] netlink: 'syz.1.78': attribute type 4 has an invalid length.
[   89.363526][ T6123] netlink: 152 bytes leftover after parsing attributes in process `syz.1.78'.
[   89.629105][ T6128] netlink: 'syz.2.80': attribute type 2 has an invalid length.
[   89.675997][ T6128] netlink: 'syz.2.80': attribute type 8 has an invalid length.
[   89.683625][ T6128] netlink: 132 bytes leftover after parsing attributes in process `syz.2.80'.
[   89.728785][ T6131] FAULT_INJECTION: forcing a failure.
[   89.728785][ T6131] name failslab, interval 1, probability 0, space 0, times 1
[   89.763622][ T6131] CPU: 1 PID: 6131 Comm: syz.0.82 Not tainted syzkaller #0
[   89.770885][ T6131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.780942][ T6131] Call Trace:
[   89.784221][ T6131]  <TASK>
[   89.787150][ T6131]  dump_stack_lvl+0x16c/0x230
[   89.791829][ T6131]  ? show_regs_print_info+0x20/0x20
[   89.797016][ T6131]  ? load_image+0x3b0/0x3b0
[   89.801511][ T6131]  ? __might_sleep+0xe0/0xe0
[   89.806102][ T6131]  ? __lock_acquire+0x7c80/0x7c80
[   89.811127][ T6131]  should_fail_ex+0x39d/0x4d0
[   89.815803][ T6131]  should_failslab+0x9/0x20
[   89.820311][ T6131]  slab_pre_alloc_hook+0x59/0x310
[   89.825354][ T6131]  ? __request_module+0x2c2/0x5b0
[   89.830384][ T6131]  ? __request_module+0x2c2/0x5b0
[   89.835412][ T6131]  __kmem_cache_alloc_node+0x53/0x260
[   89.840791][ T6131]  ? __request_module+0x2c2/0x5b0
[   89.845819][ T6131]  __kmalloc_node_track_caller+0xa2/0x230
[   89.851549][ T6131]  kstrdup+0x3b/0x80
[   89.855449][ T6131]  __request_module+0x2c2/0x5b0
[   89.860303][ T6131]  ? module_enforce_rwx_sections+0x150/0x150
[   89.866290][ T6131]  ? bpf_lsm_capable+0x9/0x10
[   89.870964][ T6131]  ? security_capable+0x89/0xb0
[   89.875826][ T6131]  ? dev_load+0x21/0x1f0
[   89.880072][ T6131]  dev_load+0x18b/0x1f0
[   89.884233][ T6131]  devinet_ioctl+0x13a/0x1c60
[   89.888933][ T6131]  ? __might_fault+0xc6/0x120
[   89.893605][ T6131]  ? inet_ifa_byprefix+0x2a0/0x2a0
[   89.898722][ T6131]  ? _copy_from_user+0xa5/0xe0
[   89.903482][ T6131]  ? get_user_ifreq+0x12b/0x180
[   89.908335][ T6131]  inet_ioctl+0x3c1/0x4c0
[   89.912672][ T6131]  ? tomoyo_path_number_perm+0x1ba/0x590
[   89.918310][ T6131]  ? inet_shutdown+0x370/0x370
[   89.923097][ T6131]  ? slab_free_freelist_hook+0x130/0x1b0
[   89.928730][ T6131]  ? tomoyo_path_number_perm+0x477/0x590
[   89.934358][ T6131]  ? __kmem_cache_free+0xba/0x1f0
[   89.939406][ T6131]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[   89.944884][ T6131]  sock_do_ioctl+0xd7/0x2f0
[   89.949401][ T6131]  ? sock_show_fdinfo+0xb0/0xb0
[   89.954277][ T6131]  sock_ioctl+0x623/0x7a0
[   89.958612][ T6131]  ? sock_poll+0x3d0/0x3d0
[   89.963048][ T6131]  ? bpf_lsm_file_ioctl+0x9/0x10
[   89.967986][ T6131]  ? security_file_ioctl+0x80/0xa0
[   89.973094][ T6131]  ? sock_poll+0x3d0/0x3d0
[   89.977532][ T6131]  __se_sys_ioctl+0xfd/0x170
[   89.982132][ T6131]  do_syscall_64+0x55/0xb0
[   89.986547][ T6131]  ? clear_bhb_loop+0x40/0x90
[   89.991222][ T6131]  ? clear_bhb_loop+0x40/0x90
[   89.995906][ T6131]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   90.001812][ T6131] RIP: 0033:0x7fead6f8ebe9
[   90.006221][ T6131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.025860][ T6131] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.034270][ T6131] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[   90.042231][ T6131] RDX: 0000200000000100 RSI: 000000000000891a RDI: 0000000000000003
[   90.050202][ T6131] RBP: 00007fead7dbf090 R08: 0000000000000000 R09: 0000000000000000
[   90.058168][ T6131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.066131][ T6131] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[   90.074123][ T6131]  </TASK>
[   90.122336][ T6134] Zero length message leads to an empty skb
[   90.496128][ T6144] netlink: 'syz.2.88': attribute type 4 has an invalid length.
[   90.503751][ T6144] netlink: 152 bytes leftover after parsing attributes in process `syz.2.88'.
[   90.938808][ T6155] netlink: 64895 bytes leftover after parsing attributes in process `syz.0.92'.
[   91.128679][ T6160] netlink: 'syz.1.93': attribute type 4 has an invalid length.
[   91.654123][ T6163] netlink: 'syz.0.94': attribute type 25 has an invalid length.
[   91.676117][ T6163] netlink: 'syz.0.94': attribute type 1 has an invalid length.
[   91.722367][ T6163] bridge0: port 1(bridge_slave_0) entered learning state
[   91.756614][ T6168] netlink: 'syz.3.95': attribute type 1 has an invalid length.
[   91.767466][ T6168] netlink: 'syz.3.95': attribute type 4 has an invalid length.
[   91.790734][ T6168] __nla_validate_parse: 2 callbacks suppressed
[   91.790746][ T6168] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.95'.
[   92.137400][ T6180] netlink: 'syz.1.99': attribute type 4 has an invalid length.
[   92.223244][ T6180] netlink: 152 bytes leftover after parsing attributes in process `syz.1.99'.
[   92.308688][ T6183] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.100'.
[   92.944709][ T6192] FAULT_INJECTION: forcing a failure.
[   92.944709][ T6192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.989224][ T6192] CPU: 1 PID: 6192 Comm: syz.1.103 Not tainted syzkaller #0
[   92.996598][ T6192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   93.006702][ T6192] Call Trace:
[   93.010031][ T6192]  <TASK>
[   93.013010][ T6192]  dump_stack_lvl+0x16c/0x230
[   93.017760][ T6192]  ? show_regs_print_info+0x20/0x20
[   93.023028][ T6192]  ? load_image+0x3b0/0x3b0
[   93.027594][ T6192]  ? __might_fault+0xaa/0x120
[   93.032331][ T6192]  ? __lock_acquire+0x7c80/0x7c80
[   93.037427][ T6192]  should_fail_ex+0x39d/0x4d0
[   93.042191][ T6192]  _copy_from_user+0x2f/0xe0
[   93.046852][ T6192]  restore_altstack+0x9e/0x4a0
[   93.051684][ T6192]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   93.057728][ T6192]  ? __ia32_sys_sigaltstack+0x270/0x270
[   93.063364][ T6192]  ? _raw_spin_unlock_irq+0x23/0x50
[   93.068626][ T6192]  ? lockdep_hardirqs_on+0x98/0x150
[   93.073894][ T6192]  __ia32_sys_rt_sigreturn+0x1f6/0x7b0
[   93.079421][ T6192]  ? lockdep_hardirqs_on+0x98/0x150
[   93.084684][ T6192]  ? _raw_spin_unlock_irq+0x2e/0x50
[   93.089947][ T6192]  ? x64_setup_rt_frame+0xcd0/0xcd0
[   93.095284][ T6192]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   93.101347][ T6192]  ? lock_chain_count+0x20/0x20
[   93.106270][ T6192]  ? lockdep_hardirqs_on+0x98/0x150
[   93.111532][ T6192]  do_syscall_64+0x55/0xb0
[   93.116008][ T6192]  ? clear_bhb_loop+0x40/0x90
[   93.120734][ T6192]  ? clear_bhb_loop+0x40/0x90
[   93.125470][ T6192]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   93.131421][ T6192] RIP: 0033:0x7f331012adb9
[   93.135884][ T6192] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[   93.155539][ T6192] RSP: 002b:00007f33110e44c0 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[   93.164012][ T6192] RAX: ffffffffffffffda RBX: 00007f33103c5fa0 RCX: 00007f331012adb9
[   93.172032][ T6192] RDX: 00007f33110e44c0 RSI: 00007f33110e45f0 RDI: 0000000000000021
[   93.180057][ T6192] RBP: 00007f33110e5090 R08: 0000000000000000 R09: 0000000000000000
[   93.188075][ T6192] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   93.196073][ T6192] R13: 00007f33103c6038 R14: 00007f33103c5fa0 R15: 00007ffcf77f5c38
[   93.204087][ T6192]  </TASK>
[   93.219349][ T6198] pim6reg: tun_chr_ioctl cmd 1074812118
[   93.250463][ T6192] netlink: 'syz.1.103': attribute type 10 has an invalid length.
[   93.382699][ T6192] veth0_vlan: left promiscuous mode
[   93.417245][ T6192] veth0_vlan: entered promiscuous mode
[   93.434868][ T6192] team0: Device veth0_vlan failed to register rx_handler
[   93.479524][ T6202] netlink: 'syz.3.106': attribute type 4 has an invalid length.
[   93.487824][ T6202] netlink: 152 bytes leftover after parsing attributes in process `syz.3.106'.
[   93.499463][ T6200] netlink: 'syz.2.105': attribute type 25 has an invalid length.
[   93.516327][ T6200] netlink: 'syz.2.105': attribute type 1 has an invalid length.
[   93.531896][ T6200] bridge0: port 1(bridge_slave_0) entered learning state
[   93.736071][ T6207] netlink: 'syz.3.108': attribute type 4 has an invalid length.
[   93.776715][ T6207] netlink: 152 bytes leftover after parsing attributes in process `syz.3.108'.
[   94.154952][ T6226] Q±6ã×\b‹¡Y­4��: renamed from lo (while UP)
[   94.202658][ T6231] netlink: 152 bytes leftover after parsing attributes in process `syz.3.116'.
[   94.314363][ T6234] lo: entered allmulticast mode
[   94.358038][ T6234] FAULT_INJECTION: forcing a failure.
[   94.358038][ T6234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.371462][ T6234] CPU: 1 PID: 6234 Comm: syz.3.117 Not tainted syzkaller #0
[   94.378789][ T6234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.388872][ T6234] Call Trace:
[   94.392179][ T6234]  <TASK>
[   94.395125][ T6234]  dump_stack_lvl+0x16c/0x230
[   94.399837][ T6234]  ? show_regs_print_info+0x20/0x20
[   94.405061][ T6234]  ? load_image+0x3b0/0x3b0
[   94.409588][ T6234]  ? __might_fault+0xaa/0x120
[   94.414282][ T6234]  ? __lock_acquire+0x7c80/0x7c80
[   94.419321][ T6234]  ? unix_ioctl+0x254/0x660
[   94.423871][ T6234]  should_fail_ex+0x39d/0x4d0
[   94.428612][ T6234]  _copy_from_user+0x2f/0xe0
[   94.433225][ T6234]  sock_do_ioctl+0x17c/0x2f0
[   94.437841][ T6234]  ? sock_show_fdinfo+0xb0/0xb0
[   94.442740][ T6234]  sock_ioctl+0x623/0x7a0
[   94.447100][ T6234]  ? sock_poll+0x3d0/0x3d0
[   94.451560][ T6234]  ? bpf_lsm_file_ioctl+0x9/0x10
[   94.456520][ T6234]  ? security_file_ioctl+0x80/0xa0
[   94.461653][ T6234]  ? sock_poll+0x3d0/0x3d0
[   94.466092][ T6234]  __se_sys_ioctl+0xfd/0x170
[   94.470807][ T6234]  do_syscall_64+0x55/0xb0
[   94.475239][ T6234]  ? clear_bhb_loop+0x40/0x90
[   94.479940][ T6234]  ? clear_bhb_loop+0x40/0x90
[   94.484659][ T6234]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   94.490599][ T6234] RIP: 0033:0x7ff94e78ebe9
[   94.495048][ T6234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.514757][ T6234] RSP: 002b:00007ff94f571038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   94.523202][ T6234] RAX: ffffffffffffffda RBX: 00007ff94e9c5fa0 RCX: 00007ff94e78ebe9
[   94.531194][ T6234] RDX: 0000200000001000 RSI: 0000000000008914 RDI: 0000000000000008
[   94.539179][ T6234] RBP: 00007ff94f571090 R08: 0000000000000000 R09: 0000000000000000
[   94.547166][ T6234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.555171][ T6234] R13: 00007ff94e9c6038 R14: 00007ff94e9c5fa0 R15: 00007ffd671edfe8
[   94.563219][ T6234]  </TASK>
[   94.685581][ T6240] netlink: 152 bytes leftover after parsing attributes in process `syz.1.119'.
[   94.733721][ T6236] bridge0: port 1(bridge_slave_0) entered learning state
[   95.109554][ T6243] netlink: 830 bytes leftover after parsing attributes in process `syz.0.120'.
[   95.129348][ T6243] bond_slave_0: entered promiscuous mode
[   95.135363][ T6243] bond_slave_1: entered promiscuous mode
[   95.639145][ T6254] netlink: 152 bytes leftover after parsing attributes in process `syz.0.125'.
[   95.697525][ T6254] : renamed from bond0 (while UP)
[   95.784092][ T6254] bond_slave_0: left promiscuous mode
[   95.826137][ T6254] bond_slave_1: left promiscuous mode
[   96.396942][ T6265] bridge0: port 1(bridge_slave_0) entered learning state
[   96.891539][ T6280] validate_nla: 7 callbacks suppressed
[   96.891555][ T6280] netlink: 'syz.2.134': attribute type 4 has an invalid length.
[   96.929267][ T6280] netlink: 152 bytes leftover after parsing attributes in process `syz.2.134'.
[   98.012525][ T6298] netlink: 'syz.2.142': attribute type 25 has an invalid length.
[   98.036758][ T6298] netlink: 'syz.2.142': attribute type 1 has an invalid length.
[   98.062541][ T6298] bridge0: port 1(bridge_slave_0) entered learning state
[   98.452006][ T6312] netlink: 'syz.2.146': attribute type 1 has an invalid length.
[   98.496011][ T6312] netlink: 'syz.2.146': attribute type 4 has an invalid length.
[   98.523992][ T6312] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.146'.
[   98.564795][ T6309] lo: entered promiscuous mode
[   98.570262][ T6309] lo: left allmulticast mode
[   98.709518][ T6320] sit0: entered allmulticast mode
[   98.777182][ T6324] FAULT_INJECTION: forcing a failure.
[   98.777182][ T6324] name failslab, interval 1, probability 0, space 0, times 0
[   98.821269][ T6324] CPU: 0 PID: 6324 Comm: syz.2.152 Not tainted syzkaller #0
[   98.828652][ T6324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.838764][ T6324] Call Trace:
[   98.842082][ T6324]  <TASK>
[   98.845055][ T6324]  dump_stack_lvl+0x16c/0x230
[   98.849796][ T6324]  ? show_regs_print_info+0x20/0x20
[   98.855052][ T6324]  ? load_image+0x3b0/0x3b0
[   98.859602][ T6324]  ? __lock_acquire+0x1260/0x7c80
[   98.864744][ T6324]  should_fail_ex+0x39d/0x4d0
[   98.869505][ T6324]  should_failslab+0x9/0x20
[   98.874052][ T6324]  slab_pre_alloc_hook+0x59/0x310
[   98.879117][ T6324]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[   98.884997][ T6324]  ? ___neigh_create+0x6d2/0x2440
[   98.890056][ T6324]  ? ___neigh_create+0x6d2/0x2440
[   98.895090][ T6324]  __kmem_cache_alloc_node+0x53/0x260
[   98.900494][ T6324]  ? ___neigh_create+0x6d2/0x2440
[   98.905528][ T6324]  __kmalloc+0xa4/0x240
[   98.909708][ T6324]  ___neigh_create+0x6d2/0x2440
[   98.914624][ T6324]  ip_neigh_gw4+0x35a/0x4e0
[   98.919151][ T6324]  ? ip_finish_output2+0x11d0/0x11d0
[   98.924480][ T6324]  ? nf_hook_slow+0x1b4/0x200
[   98.929188][ T6324]  ip_finish_output2+0xf1d/0x11d0
[   98.934234][ T6324]  ? ip_finish_output2+0x45c/0x11d0
[   98.939455][ T6324]  ? ip_mc_finish_output+0x250/0x250
[   98.944798][ T6324]  ? ip_fragment+0x210/0x210
[   98.949407][ T6324]  ? ip_skb_dst_mtu+0x58a/0x9c0
[   98.954281][ T6324]  ? ip_finish_output+0x3ef/0x4c0
[   98.959383][ T6324]  ip_send_skb+0x12f/0x1d0
[   98.963825][ T6324]  raw_sendmsg+0x1488/0x1950
[   98.968491][ T6324]  ? compat_raw_ioctl+0x70/0x70
[   98.973391][ T6324]  ? aa_sk_perm+0x7fc/0x930
[   98.977923][ T6324]  ? tomoyo_socket_sendmsg_permission+0x216/0x2f0
[   98.984364][ T6324]  ? sock_rps_record_flow+0x19/0x400
[   98.989662][ T6324]  ? inet_send_prepare+0x260/0x260
[   98.994780][ T6324]  ? inet_sendmsg+0x7c/0x2f0
[   98.999381][ T6324]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   99.004676][ T6324]  ? security_socket_sendmsg+0x80/0xa0
[   99.010147][ T6324]  ? inet_send_prepare+0x260/0x260
[   99.015267][ T6324]  ____sys_sendmsg+0x5bf/0x950
[   99.020065][ T6324]  ? __sys_sendmsg_sock+0x30/0x30
[   99.025098][ T6324]  ? __import_iovec+0x3fa/0x860
[   99.029985][ T6324]  ? import_iovec+0x73/0xa0
[   99.034512][ T6324]  ___sys_sendmsg+0x220/0x290
[   99.039209][ T6324]  ? __sys_sendmsg+0x270/0x270
[   99.044039][ T6324]  ? __lock_acquire+0x7c80/0x7c80
[   99.049134][ T6324]  __se_sys_sendmsg+0x1a5/0x270
[   99.054005][ T6324]  ? __x64_sys_sendmsg+0x80/0x80
[   99.059000][ T6324]  ? lockdep_hardirqs_on+0x98/0x150
[   99.064220][ T6324]  do_syscall_64+0x55/0xb0
[   99.068672][ T6324]  ? clear_bhb_loop+0x40/0x90
[   99.073360][ T6324]  ? clear_bhb_loop+0x40/0x90
[   99.078058][ T6324]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   99.083968][ T6324] RIP: 0033:0x7f003a58ebe9
[   99.088403][ T6324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.108020][ T6324] RSP: 002b:00007f003b460038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.116491][ T6324] RAX: ffffffffffffffda RBX: 00007f003a7c5fa0 RCX: 00007f003a58ebe9
[   99.124540][ T6324] RDX: 0000000000000000 RSI: 00002000000009c0 RDI: 0000000000000003
[   99.132563][ T6324] RBP: 00007f003b460090 R08: 0000000000000000 R09: 0000000000000000
[   99.140556][ T6324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.148537][ T6324] R13: 00007f003a7c6038 R14: 00007f003a7c5fa0 R15: 00007ffc0df506e8
[   99.156594][ T6324]  </TASK>
[  100.509533][ T6338] netlink: set zone limit has 8 unknown bytes
[  102.091399][ T6330] netlink: 'syz.2.154': attribute type 25 has an invalid length.
[  102.099554][ T6330] netlink: 'syz.2.154': attribute type 1 has an invalid length.
[  102.107846][ T6330] bridge0: port 1(bridge_slave_0) entered learning state
[  102.115330][ T6337] netlink: 3752 bytes leftover after parsing attributes in process `syz.0.156'.
[  102.409631][ T6349] netlink: set zone limit has 8 unknown bytes
[  102.477566][ T6353] netlink: 'syz.0.160': attribute type 1 has an invalid length.
[  102.527029][ T6353] netlink: 'syz.0.160': attribute type 4 has an invalid length.
[  102.534760][ T6353] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.160'.
[  102.566324][ T6348] netlink: 'syz.3.161': attribute type 4 has an invalid length.
[  102.592783][ T6348] netlink: 152 bytes leftover after parsing attributes in process `syz.3.161'.
[  102.807121][ T6358] netlink: 'syz.2.163': attribute type 4 has an invalid length.
[  102.814880][ T6358] netlink: 152 bytes leftover after parsing attributes in process `syz.2.163'.
[  103.155392][ T6366] netlink: 'syz.3.166': attribute type 25 has an invalid length.
[  103.164967][ T6366] netlink: 'syz.3.166': attribute type 1 has an invalid length.
[  103.173836][ T6366] bridge0: port 1(bridge_slave_0) entered learning state
[  103.238140][ T6376] lo: entered allmulticast mode
[  103.509617][ T6379] lo: entered promiscuous mode
[  103.519140][ T6379] lo: left allmulticast mode
[  106.871302][ T6393] netlink: 'syz.0.174': attribute type 4 has an invalid length.
[  106.880086][ T6393] netlink: 152 bytes leftover after parsing attributes in process `syz.0.174'.
[  106.893666][ T6397] netlink: 'syz.2.175': attribute type 39 has an invalid length.
[  107.047380][ T6399] netlink: 152 bytes leftover after parsing attributes in process `syz.0.176'.
[  107.262939][ T6405] validate_nla: 1 callbacks suppressed
[  107.262954][ T6405] netlink: 'syz.3.179': attribute type 25 has an invalid length.
[  107.284869][ T6405] netlink: 'syz.3.179': attribute type 1 has an invalid length.
[  107.310828][ T6405] bridge0: port 1(bridge_slave_0) entered learning state
[  107.495407][ T6418] netlink: 'syz.1.183': attribute type 21 has an invalid length.
[  107.509721][ T6418] netlink: 132 bytes leftover after parsing attributes in process `syz.1.183'.
[  107.529237][ T6418] netlink: 28 bytes leftover after parsing attributes in process `syz.1.183'.
[  107.608237][ T6417] netlink: 'syz.2.184': attribute type 4 has an invalid length.
[  107.636363][ T6417] netlink: 152 bytes leftover after parsing attributes in process `syz.2.184'.
[  107.833373][ T6427] lo: entered allmulticast mode
[  108.118566][ T6431] netlink: 'syz.1.188': attribute type 4 has an invalid length.
[  108.138467][ T6430] netlink: 'syz.2.189': attribute type 4 has an invalid length.
[  108.147885][ T6430] netlink: 152 bytes leftover after parsing attributes in process `syz.2.189'.
[  108.239139][ T6427] lo: entered promiscuous mode
[  108.249944][ T6427] lo: left allmulticast mode
[  110.161194][ T6447] netlink: 132 bytes leftover after parsing attributes in process `syz.3.195'.
[  110.174215][ T6452] netlink: 61211 bytes leftover after parsing attributes in process `syz.3.195'.
[  110.391649][ T6465] C: renamed from team_slave_0 (while UP)
[  110.404187][ T6465] netlink: 'syz.3.200': attribute type 3 has an invalid length.
[  110.438509][ T6465] netlink: 152 bytes leftover after parsing attributes in process `syz.3.200'.
[  110.486131][ T6461] netlink: 'syz.1.197': attribute type 4 has an invalid length.
[  110.494075][ T6461] netlink: 152 bytes leftover after parsing attributes in process `syz.1.197'.
[  110.665124][ T6473] netlink: 1057 bytes leftover after parsing attributes in process `syz.0.202'.
[  110.862738][ T6475] netlink: 'syz.1.203': attribute type 4 has an invalid length.
[  110.886087][ T6475] netlink: 152 bytes leftover after parsing attributes in process `syz.1.203'.
[  111.321331][ T6488] delete_channel: no stack
[  111.367907][ T6497] netlink: 'syz.2.213': attribute type 29 has an invalid length.
[  111.503634][ T6494] team0: Port device netdevsim0 added
[  112.291488][ T6528] validate_nla: 5 callbacks suppressed
[  112.291504][ T6528] netlink: 'syz.3.223': attribute type 30 has an invalid length.
[  113.176251][ T6563] __nla_validate_parse: 2 callbacks suppressed
[  113.176268][ T6563] netlink: 14 bytes leftover after parsing attributes in process `syz.0.239'.
[  114.259171][ T6596] netlink: 'syz.1.252': attribute type 29 has an invalid length.
[  114.268685][ T6596] netlink: 'syz.1.252': attribute type 29 has an invalid length.
[  114.278726][ T6596] netlink: 'syz.1.252': attribute type 29 has an invalid length.
[  114.665269][ T6600] netlink: 'syz.3.254': attribute type 4 has an invalid length.
[  114.686099][ T6600] netlink: 152 bytes leftover after parsing attributes in process `syz.3.254'.
[  114.990764][ T6605] netlink: 'syz.1.255': attribute type 1 has an invalid length.
[  115.005729][ T6605] netlink: 161700 bytes leftover after parsing attributes in process `syz.1.255'.
[  115.578617][ T6621] netlink: 144 bytes leftover after parsing attributes in process `syz.2.262'.
[  115.633866][ T6619] netlink: 'syz.3.261': attribute type 10 has an invalid length.
[  115.642664][ T6619] netlink: 55 bytes leftover after parsing attributes in process `syz.3.261'.
[  118.722476][ T6637] netlink: 'syz.1.268': attribute type 10 has an invalid length.
[  118.792868][ T6637] team0: Device veth1_macvtap failed to register rx_handler
[  118.882820][ T6636] netlink: 'syz.0.267': attribute type 4 has an invalid length.
[  118.901720][ T6636] netlink: 152 bytes leftover after parsing attributes in process `syz.0.267'.
[  120.949461][ T6666] netlink: 'syz.0.278': attribute type 8 has an invalid length.
[  120.965817][ T6666] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.278'.
[  121.000689][ T6667] netlink: 'syz.0.278': attribute type 8 has an invalid length.
[  121.008683][ T6667] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.278'.
[  121.188032][ T6674] netlink: 'syz.0.281': attribute type 4 has an invalid length.
[  121.199627][ T6674] netlink: 152 bytes leftover after parsing attributes in process `syz.0.281'.
[  122.269875][ T6703] netlink: 'syz.2.293': attribute type 4 has an invalid length.
[  122.286639][ T6703] netlink: 152 bytes leftover after parsing attributes in process `syz.2.293'.
[  122.444927][ T6706] FAULT_INJECTION: forcing a failure.
[  122.444927][ T6706] name failslab, interval 1, probability 0, space 0, times 0
[  122.470478][ T6706] CPU: 1 PID: 6706 Comm: syz.1.295 Not tainted syzkaller #0
[  122.477824][ T6706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.487915][ T6706] Call Trace:
[  122.491217][ T6706]  <TASK>
[  122.494174][ T6706]  dump_stack_lvl+0x16c/0x230
[  122.498884][ T6706]  ? show_regs_print_info+0x20/0x20
[  122.504110][ T6706]  ? load_image+0x3b0/0x3b0
[  122.508632][ T6706]  ? __might_sleep+0xe0/0xe0
[  122.513248][ T6706]  ? __lock_acquire+0x7c80/0x7c80
[  122.518306][ T6706]  should_fail_ex+0x39d/0x4d0
[  122.523017][ T6706]  should_failslab+0x9/0x20
[  122.527542][ T6706]  slab_pre_alloc_hook+0x59/0x310
[  122.532616][ T6706]  ? __request_module+0x2c2/0x5b0
[  122.537635][ T6706]  ? __request_module+0x2c2/0x5b0
[  122.542649][ T6706]  __kmem_cache_alloc_node+0x53/0x260
[  122.548035][ T6706]  ? __request_module+0x2c2/0x5b0
[  122.553132][ T6706]  __kmalloc_node_track_caller+0xa2/0x230
[  122.558847][ T6706]  kstrdup+0x3b/0x80
[  122.562732][ T6706]  __request_module+0x2c2/0x5b0
[  122.567573][ T6706]  ? module_enforce_rwx_sections+0x150/0x150
[  122.573623][ T6706]  ? bpf_lsm_capable+0x9/0x10
[  122.578312][ T6706]  ? security_capable+0x89/0xb0
[  122.583166][ T6706]  ? dev_load+0x21/0x1f0
[  122.587404][ T6706]  dev_load+0x18b/0x1f0
[  122.591550][ T6706]  devinet_ioctl+0x13a/0x1c60
[  122.596228][ T6706]  ? __might_fault+0xc6/0x120
[  122.600892][ T6706]  ? inet_ifa_byprefix+0x2a0/0x2a0
[  122.606010][ T6706]  ? _copy_from_user+0xa5/0xe0
[  122.610764][ T6706]  ? get_user_ifreq+0x12b/0x180
[  122.615610][ T6706]  inet_ioctl+0x3c1/0x4c0
[  122.619973][ T6706]  ? tomoyo_path_number_perm+0x1ba/0x590
[  122.625603][ T6706]  ? inet_shutdown+0x370/0x370
[  122.630355][ T6706]  ? slab_free_freelist_hook+0x130/0x1b0
[  122.635988][ T6706]  ? tomoyo_path_number_perm+0x477/0x590
[  122.641613][ T6706]  ? __kmem_cache_free+0xba/0x1f0
[  122.646635][ T6706]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  122.652091][ T6706]  sock_do_ioctl+0xd7/0x2f0
[  122.656591][ T6706]  ? sock_show_fdinfo+0xb0/0xb0
[  122.661442][ T6706]  sock_ioctl+0x623/0x7a0
[  122.665765][ T6706]  ? sock_poll+0x3d0/0x3d0
[  122.670210][ T6706]  ? bpf_lsm_file_ioctl+0x9/0x10
[  122.675138][ T6706]  ? security_file_ioctl+0x80/0xa0
[  122.680249][ T6706]  ? sock_poll+0x3d0/0x3d0
[  122.684663][ T6706]  __se_sys_ioctl+0xfd/0x170
[  122.689249][ T6706]  do_syscall_64+0x55/0xb0
[  122.693657][ T6706]  ? clear_bhb_loop+0x40/0x90
[  122.698323][ T6706]  ? clear_bhb_loop+0x40/0x90
[  122.702985][ T6706]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  122.708871][ T6706] RIP: 0033:0x7f331018ebe9
[  122.713375][ T6706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.732979][ T6706] RSP: 002b:00007f33110e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  122.741427][ T6706] RAX: ffffffffffffffda RBX: 00007f33103c5fa0 RCX: 00007f331018ebe9
[  122.749389][ T6706] RDX: 0000200000000100 RSI: 000000000000891a RDI: 0000000000000003
[  122.757347][ T6706] RBP: 00007f33110e5090 R08: 0000000000000000 R09: 0000000000000000
[  122.765410][ T6706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.773370][ T6706] R13: 00007f33103c6038 R14: 00007f33103c5fa0 R15: 00007ffcf77f5c38
[  122.781342][ T6706]  </TASK>
[  123.381775][ T6723] netlink: 'syz.2.300': attribute type 4 has an invalid length.
[  123.405970][ T6723] netlink: 152 bytes leftover after parsing attributes in process `syz.2.300'.
[  123.608623][ T6727] netlink: 'syz.1.301': attribute type 15 has an invalid length.
[  123.617074][ T6727] netlink: 'syz.1.301': attribute type 5 has an invalid length.
[  124.296366][ T6738] netlink: 'syz.0.305': attribute type 4 has an invalid length.
[  124.304114][ T6738] netlink: 152 bytes leftover after parsing attributes in process `syz.0.305'.
[  124.913012][ T6757] netlink: 'syz.0.312': attribute type 25 has an invalid length.
[  124.932068][ T6757] netlink: 'syz.0.312': attribute type 1 has an invalid length.
[  124.942731][ T6757] bridge0: port 1(bridge_slave_0) entered learning state
[  125.213360][ T6763] Dead loop on virtual device ip6_vti0, fix it urgently!
[  125.467475][ T6768] netlink: 'syz.1.317': attribute type 4 has an invalid length.
[  125.486413][ T6768] netlink: 152 bytes leftover after parsing attributes in process `syz.1.317'.
[  126.438379][ T6782] netlink: 'syz.1.323': attribute type 25 has an invalid length.
[  126.463244][ T6782] netlink: 'syz.1.323': attribute type 1 has an invalid length.
[  126.478420][ T6782] bridge0: port 1(bridge_slave_0) entered learning state
[  126.639098][ T6794] netlink: 'syz.2.327': attribute type 4 has an invalid length.
[  126.672448][ T6794] netlink: 152 bytes leftover after parsing attributes in process `syz.2.327'.
[  127.529507][ T6817] netlink: 'syz.1.336': attribute type 25 has an invalid length.
[  127.550455][ T6817] netlink: 'syz.1.336': attribute type 1 has an invalid length.
[  127.564532][ T6817] bridge0: port 1(bridge_slave_0) entered learning state
[  127.786564][ T6825] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.338'.
[  128.808857][ T6844] netlink: 'syz.0.345': attribute type 4 has an invalid length.
[  128.848192][ T6844] netlink: 152 bytes leftover after parsing attributes in process `syz.0.345'.
[  129.216880][ T6859] netlink: 132 bytes leftover after parsing attributes in process `syz.1.350'.
[  129.526539][ T6869] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  129.788142][ T6878] validate_nla: 1 callbacks suppressed
[  129.788158][ T6878] netlink: 'syz.1.358': attribute type 4 has an invalid length.
[  129.820877][ T6878] netlink: 152 bytes leftover after parsing attributes in process `syz.1.358'.
[  130.212388][ T6889] netlink: 'syz.1.362': attribute type 1 has an invalid length.
[  130.230895][ T6889] netlink: 'syz.1.362': attribute type 4 has an invalid length.
[  130.275935][ T6889] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.362'.
[  130.349828][ T6890] netlink: 'syz.0.363': attribute type 10 has an invalid length.
[  130.373582][ T6890] netlink: 40 bytes leftover after parsing attributes in process `syz.0.363'.
[  130.384801][ T6890] ipvlan1: entered promiscuous mode
[  130.390500][ T6890] ipvlan1: entered allmulticast mode
[  130.418436][ T6890] veth0_vlan: entered allmulticast mode
[  130.443636][ T6890] bridge0: port 3(ipvlan1) entered blocking state
[  130.471969][ T6890] bridge0: port 3(ipvlan1) entered disabled state
[  130.509945][ T6890] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  131.361432][ T6910] netlink: 'syz.1.370': attribute type 4 has an invalid length.
[  131.376862][ T6910] netlink: 152 bytes leftover after parsing attributes in process `syz.1.370'.
[  132.179358][ T6924] netlink: 'syz.2.375': attribute type 25 has an invalid length.
[  132.221628][ T6924] netlink: 'syz.2.375': attribute type 1 has an invalid length.
[  132.250978][ T6924] bridge0: port 1(bridge_slave_0) entered learning state
[  132.667801][ T6936] netlink: 'syz.3.380': attribute type 4 has an invalid length.
[  132.675547][ T6936] netlink: 152 bytes leftover after parsing attributes in process `syz.3.380'.
[  133.083798][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  133.090479][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  133.330697][ T6941] delete_channel: no stack
[  133.347611][ T6941] delete_channel: no stack
[  133.398827][ T6941] netlink: 'syz.1.382': attribute type 10 has an invalid length.
[  133.445205][ T6941] batman_adv: batadv0: Adding interface: team0
[  133.526119][ T6941] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.618228][ T6941] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  133.691862][ T6943] netlink: 'syz.2.384': attribute type 25 has an invalid length.
[  133.720266][ T6943] bridge0: port 1(bridge_slave_0) entered learning state
[  133.938275][ T6949] bridge0: port 1(bridge_slave_0) entered learning state
[  134.022924][ T6953] veth0_macvtap: left promiscuous mode
[  134.569262][ T6961] netlink: 61955 bytes leftover after parsing attributes in process `syz.0.391'.
[  134.600279][ T6961] netlink: 1 bytes leftover after parsing attributes in process `syz.0.391'.
[  134.990948][ T6970] validate_nla: 4 callbacks suppressed
[  134.990963][ T6970] netlink: 'syz.1.393': attribute type 4 has an invalid length.
[  135.055987][ T6970] netlink: 152 bytes leftover after parsing attributes in process `syz.1.393'.
[  136.157552][ T6982] netlink: 'syz.1.398': attribute type 4 has an invalid length.
[  136.181229][ T6982] netlink: 152 bytes leftover after parsing attributes in process `syz.1.398'.
[  136.493182][ T6991] netlink: 'syz.1.402': attribute type 3 has an invalid length.
[  136.528757][ T6991] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.402'.
[  136.648196][ T6994] netlink: 'syz.2.403': attribute type 10 has an invalid length.
[  136.758015][ T6994] : (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  136.835170][ T6994] : (slave hsr0): The slave device specified does not support setting the MAC address
[  136.867890][ T6994] : (slave hsr0): Error -95 calling set_mac_address
[  137.160176][ T6997] netlink: 'syz.1.405': attribute type 25 has an invalid length.
[  137.186701][ T6997] netlink: 'syz.1.405': attribute type 1 has an invalid length.
[  137.194817][ T6997] bridge0: port 1(bridge_slave_0) entered learning state
[  137.340305][ T7003] netlink: 'syz.2.406': attribute type 4 has an invalid length.
[  137.356488][ T7003] netlink: 152 bytes leftover after parsing attributes in process `syz.2.406'.
[  138.494459][ T7014] netlink: 'syz.3.410': attribute type 4 has an invalid length.
[  138.520511][ T7014] netlink: 152 bytes leftover after parsing attributes in process `syz.3.410'.
[  139.126840][ T7020] netlink: 'syz.3.413': attribute type 25 has an invalid length.
[  139.150387][ T7020] netlink: 'syz.3.413': attribute type 1 has an invalid length.
[  139.176164][ T7020] bridge0: port 1(bridge_slave_0) entered learning state
[  139.748976][ T7031] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.416'.
[  139.773749][ T7031] netlink: 1 bytes leftover after parsing attributes in process `syz.1.416'.
[  139.833147][ T7039] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.417'.
[  140.321947][ T7056] validate_nla: 2 callbacks suppressed
[  140.321964][ T7056] netlink: 'syz.0.424': attribute type 10 has an invalid length.
[  140.390766][ T7056] : (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  140.432866][ T7056] : (slave hsr0): The slave device specified does not support setting the MAC address
[  140.482656][ T7056] : (slave hsr0): Error -95 calling set_mac_address
[  140.524152][ T7058] netlink: 'syz.1.426': attribute type 25 has an invalid length.
[  140.544863][ T7058] netlink: 'syz.1.426': attribute type 1 has an invalid length.
[  140.559396][ T7058] bridge0: port 1(bridge_slave_0) entered learning state
[  141.346594][ T7076] netlink: 'syz.1.430': attribute type 1 has an invalid length.
[  141.355038][ T7076] netlink: 'syz.1.430': attribute type 4 has an invalid length.
[  141.417308][ T7076] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.430'.
[  141.528609][ T7074] netlink: 61955 bytes leftover after parsing attributes in process `syz.3.429'.
[  141.544853][ T7074] netlink: 1 bytes leftover after parsing attributes in process `syz.3.429'.
[  142.662875][ T7092] netlink: 'syz.2.436': attribute type 25 has an invalid length.
[  142.682350][ T7092] netlink: 'syz.2.436': attribute type 1 has an invalid length.
[  142.699374][ T7096] FAULT_INJECTION: forcing a failure.
[  142.699374][ T7096] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  142.699887][ T7092] bridge0: port 1(bridge_slave_0) entered learning state
[  142.735948][ T7096] CPU: 1 PID: 7096 Comm: syz.0.439 Not tainted syzkaller #0
[  142.743299][ T7096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  142.753396][ T7096] Call Trace:
[  142.756693][ T7096]  <TASK>
[  142.759652][ T7096]  dump_stack_lvl+0x16c/0x230
[  142.764371][ T7096]  ? show_regs_print_info+0x20/0x20
[  142.769611][ T7096]  ? load_image+0x3b0/0x3b0
[  142.774153][ T7096]  ? __lock_acquire+0x7c80/0x7c80
[  142.779240][ T7096]  ? mark_lock+0x94/0x320
[  142.783619][ T7096]  should_fail_ex+0x39d/0x4d0
[  142.788338][ T7096]  prepare_alloc_pages+0x1e2/0x5f0
[  142.793490][ T7096]  __alloc_pages+0x127/0x460
[  142.798126][ T7096]  ? zone_statistics+0x170/0x170
[  142.803106][ T7096]  ? do_wp_page+0x826/0x3630
[  142.807728][ T7096]  ? do_wp_page+0x1024/0x3630
[  142.812451][ T7096]  __folio_alloc+0x10/0x20
[  142.816902][ T7096]  vma_alloc_folio+0x47a/0x8f0
[  142.821707][ T7096]  do_wp_page+0x128e/0x3630
[  142.826259][ T7096]  ? folio_put+0xd0/0xd0
[  142.830525][ T7096]  ? do_raw_spin_lock+0x121/0x2c0
[  142.835587][ T7096]  ? __rwlock_init+0x150/0x150
[  142.840392][ T7096]  ? handle_mm_fault+0xd1/0x4920
[  142.845365][ T7096]  handle_mm_fault+0x12d4/0x4920
[  142.850342][ T7096]  ? handle_mm_fault+0xd1/0x4920
[  142.855331][ T7096]  ? numa_migrate_prep+0x350/0x350
[  142.860495][ T7096]  ? lock_mm_and_find_vma+0x9c/0x300
[  142.865819][ T7096]  do_user_addr_fault+0x738/0x12e0
[  142.870981][ T7096]  exc_page_fault+0x67/0x110
[  142.875608][ T7096]  asm_exc_page_fault+0x26/0x30
[  142.880488][ T7096] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  142.886330][ T7096] Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 29 f8 48 01
[  142.906065][ T7096] RSP: 0018:ffffc90003197658 EFLAGS: 00050206
[  142.912175][ T7096] RAX: ffffffff841c6001 RBX: 1ffff92000632fc7 RCX: 00000000000186a0
[  142.920179][ T7096] RDX: 0000000000000000 RSI: ffff888055c8a940 RDI: 000020000000b000
[  142.928186][ T7096] RBP: ffffc900031977c0 R08: ffff888055ca2fdf R09: 1ffff1100ab945fb
[  142.936183][ T7096] R10: dffffc0000000000 R11: ffffed100ab945fc R12: ffff888055c80000
[  142.944182][ T7096] R13: 0000000000022fe0 R14: 0000000000022fe0 R15: ffffc90003197e48
[  142.952195][ T7096]  ? _copy_to_iter+0x141/0x10d0
[  142.957100][ T7096]  _copy_to_iter+0x249/0x10d0
[  142.961826][ T7096]  ? lock_chain_count+0x20/0x20
[  142.966712][ T7096]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  142.972691][ T7096]  ? iov_iter_init+0x1e0/0x1e0
[  142.977494][ T7096]  ? __virt_addr_valid+0x18c/0x540
[  142.982641][ T7096]  ? __virt_addr_valid+0x469/0x540
[  142.987794][ T7096]  ? __phys_addr_symbol+0x2f/0x70
[  142.992874][ T7096]  __skb_datagram_iter+0xdb/0x780
[  142.997941][ T7096]  ? skb_copy_datagram_iter+0x200/0x200
[  143.003535][ T7096]  skb_copy_datagram_iter+0xb1/0x200
[  143.008866][ T7096]  __unix_dgram_recvmsg+0x65c/0xd60
[  143.014174][ T7096]  ? unix_unhash+0x10/0x10
[  143.018632][ T7096]  ? aa_af_perm+0x2b0/0x2b0
[  143.023179][ T7096]  ? trace_event_raw_event_lock_acquire+0x2a0/0x2a0
[  143.029829][ T7096]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  143.035201][ T7096]  ? security_socket_recvmsg+0x89/0xb0
[  143.040693][ T7096]  ? unix_dgram_recvmsg+0xad/0xd0
[  143.045750][ T7096]  ? unix_dgram_sendmsg+0x1720/0x1720
[  143.051166][ T7096]  ____sys_recvmsg+0x29e/0x5b0
[  143.055992][ T7096]  ? __sys_recvmsg_sock+0x50/0x50
[  143.061076][ T7096]  ? import_iovec+0x73/0xa0
[  143.065637][ T7096]  ___sys_recvmsg+0x1b6/0x510
[  143.070356][ T7096]  ? __sys_recvmsg+0x270/0x270
[  143.075163][ T7096]  ? trace_call_bpf+0xc3/0x690
[  143.079964][ T7096]  ? trace_call_bpf+0x5ba/0x690
[  143.084951][ T7096]  ? __fget_files+0x44a/0x4d0
[  143.089678][ T7096]  __x64_sys_recvmsg+0x1f2/0x2c0
[  143.094654][ T7096]  ? perf_trace_preemptirq_template+0x281/0x340
[  143.100947][ T7096]  ? ___sys_recvmsg+0x510/0x510
[  143.105850][ T7096]  ? lockdep_hardirqs_on+0x98/0x150
[  143.111134][ T7096]  do_syscall_64+0x55/0xb0
[  143.115583][ T7096]  ? clear_bhb_loop+0x40/0x90
[  143.120286][ T7096]  ? clear_bhb_loop+0x40/0x90
[  143.124994][ T7096]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  143.131008][ T7096] RIP: 0033:0x7fead6f8ebe9
[  143.135449][ T7096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.155081][ T7096] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  143.163536][ T7096] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  143.171535][ T7096] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 0000000000000003
[  143.179531][ T7096] RBP: 00007fead7dbf090 R08: 0000000000000000 R09: 0000000000000000
[  143.187531][ T7096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  143.195529][ T7096] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  143.203551][ T7096]  </TASK>
[  143.488236][ T7105] netlink: 'syz.0.440': attribute type 1 has an invalid length.
[  143.505934][ T7105] netlink: 'syz.0.440': attribute type 4 has an invalid length.
[  143.513635][ T7105] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.440'.
[  143.578057][ T7107] netlink: 'syz.2.442': attribute type 4 has an invalid length.
[  143.593446][ T7107] netlink: 152 bytes leftover after parsing attributes in process `syz.2.442'.
[  143.922152][ T7115] : (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  143.968598][ T7115] : (slave hsr0): The slave device specified does not support setting the MAC address
[  144.008324][ T7115] : (slave hsr0): Error -95 calling set_mac_address
[  145.267977][ T7133] netlink: 152 bytes leftover after parsing attributes in process `syz.3.451'.
[  145.518494][ T7138] validate_nla: 2 callbacks suppressed
[  145.518509][ T7138] netlink: 'syz.2.452': attribute type 1 has an invalid length.
[  145.548323][ T7138] netlink: 'syz.2.452': attribute type 4 has an invalid length.
[  145.629102][ T7138] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.452'.
[  145.659237][ T7145] IPv6: Can't replace route, no match found
[  145.668290][ T7145] FAULT_INJECTION: forcing a failure.
[  145.668290][ T7145] name failslab, interval 1, probability 0, space 0, times 0
[  145.695981][ T7145] CPU: 1 PID: 7145 Comm: syz.3.453 Not tainted syzkaller #0
[  145.703318][ T7145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  145.713370][ T7145] Call Trace:
[  145.716642][ T7145]  <TASK>
[  145.719562][ T7145]  dump_stack_lvl+0x16c/0x230
[  145.724238][ T7145]  ? show_regs_print_info+0x20/0x20
[  145.729430][ T7145]  ? load_image+0x3b0/0x3b0
[  145.733924][ T7145]  ? __might_sleep+0xe0/0xe0
[  145.738505][ T7145]  ? __lock_acquire+0x7c80/0x7c80
[  145.743524][ T7145]  should_fail_ex+0x39d/0x4d0
[  145.748242][ T7145]  should_failslab+0x9/0x20
[  145.752746][ T7145]  slab_pre_alloc_hook+0x59/0x310
[  145.757772][ T7145]  ? lockdep_hardirqs_on+0x98/0x150
[  145.762969][ T7145]  kmem_cache_alloc_node+0x60/0x330
[  145.768162][ T7145]  ? __alloc_skb+0x108/0x2c0
[  145.772749][ T7145]  __alloc_skb+0x108/0x2c0
[  145.777159][ T7145]  netlink_ack+0x376/0x1110
[  145.781652][ T7145]  ? lock_chain_count+0x20/0x20
[  145.786498][ T7145]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  145.792639][ T7145]  ? lockdep_hardirqs_on+0x98/0x150
[  145.797832][ T7145]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  145.803973][ T7145]  ? netlink_dump+0xde0/0xde0
[  145.808644][ T7145]  ? netlink_rcv_skb+0xbf/0x480
[  145.813484][ T7145]  ? netlink_rcv_skb+0xdf/0x480
[  145.818329][ T7145]  netlink_rcv_skb+0x29a/0x480
[  145.823083][ T7145]  ? rtnetlink_bind+0x80/0x80
[  145.827753][ T7145]  ? netlink_ack+0x1110/0x1110
[  145.832516][ T7145]  ? __lock_acquire+0x7c80/0x7c80
[  145.837535][ T7145]  ? netlink_deliver_tap+0x2e/0x1b0
[  145.842729][ T7145]  netlink_unicast+0x751/0x8d0
[  145.847490][ T7145]  netlink_sendmsg+0x8c1/0xbe0
[  145.852250][ T7145]  ? netlink_getsockopt+0x580/0x580
[  145.857442][ T7145]  ? aa_sock_msg_perm+0x94/0x150
[  145.862372][ T7145]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  145.867659][ T7145]  ? security_socket_sendmsg+0x80/0xa0
[  145.873110][ T7145]  ? netlink_getsockopt+0x580/0x580
[  145.878299][ T7145]  ____sys_sendmsg+0x5bf/0x950
[  145.883062][ T7145]  ? __asan_memset+0x22/0x40
[  145.887640][ T7145]  ? __sys_sendmsg_sock+0x30/0x30
[  145.892652][ T7145]  ? __import_iovec+0x5f2/0x860
[  145.897503][ T7145]  ? import_iovec+0x73/0xa0
[  145.902002][ T7145]  ___sys_sendmsg+0x220/0x290
[  145.906673][ T7145]  ? __sys_sendmsg+0x270/0x270
[  145.911447][ T7145]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  145.917609][ T7145]  __se_sys_sendmsg+0x1a5/0x270
[  145.922462][ T7145]  ? __x64_sys_sendmsg+0x80/0x80
[  145.927404][ T7145]  ? lockdep_hardirqs_on+0x98/0x150
[  145.932599][ T7145]  do_syscall_64+0x55/0xb0
[  145.937003][ T7145]  ? clear_bhb_loop+0x40/0x90
[  145.941904][ T7145]  ? clear_bhb_loop+0x40/0x90
[  145.946589][ T7145]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  145.952487][ T7145] RIP: 0033:0x7ff94e78ebe9
[  145.956896][ T7145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.976503][ T7145] RSP: 002b:00007ff94f550038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  145.984914][ T7145] RAX: ffffffffffffffda RBX: 00007ff94e9c6090 RCX: 00007ff94e78ebe9
[  145.992872][ T7145] RDX: 0000000000000004 RSI: 0000200000000380 RDI: 0000000000000003
[  146.000832][ T7145] RBP: 00007ff94f550090 R08: 0000000000000000 R09: 0000000000000000
[  146.008790][ T7145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.016835][ T7145] R13: 00007ff94e9c6128 R14: 00007ff94e9c6090 R15: 00007ffd671edfe8
[  146.024806][ T7145]  </TASK>
[  146.046430][ T7146] netlink: 60 bytes leftover after parsing attributes in process `syz.0.454'.
[  146.066068][ T7146] netlink: 60 bytes leftover after parsing attributes in process `syz.0.454'.
[  146.084067][ T7146] netlink: 60 bytes leftover after parsing attributes in process `syz.0.454'.
[  146.286505][ T7152] netlink: 'syz.1.458': attribute type 4 has an invalid length.
[  146.807634][ T7159] netlink: 'syz.2.461': attribute type 4 has an invalid length.
[  146.830069][ T7159] __nla_validate_parse: 1 callbacks suppressed
[  146.830085][ T7159] netlink: 152 bytes leftover after parsing attributes in process `syz.2.461'.
[  147.319263][ T7170] netlink: 'syz.3.465': attribute type 25 has an invalid length.
[  147.329574][ T7170] netlink: 'syz.3.465': attribute type 1 has an invalid length.
[  147.339104][ T7170] bridge0: port 1(bridge_slave_0) entered learning state
[  147.631940][ T7178] netlink: 'syz.1.469': attribute type 25 has an invalid length.
[  147.654583][ T7178] netlink: 'syz.1.469': attribute type 1 has an invalid length.
[  147.723776][ T7178] bridge0: port 1(bridge_slave_0) entered learning state
[  148.352507][ T7195] netlink: 192 bytes leftover after parsing attributes in process `syz.0.476'.
[  148.401833][ T7193] netlink: 'syz.2.475': attribute type 4 has an invalid length.
[  148.518484][ T7193] netlink: 152 bytes leftover after parsing attributes in process `syz.2.475'.
[  149.360145][ T7210] netlink: 'syz.1.482': attribute type 25 has an invalid length.
[  149.370955][ T7210] bridge0: port 1(bridge_slave_0) entered learning state
[  149.458051][ T7213] netlink: 152 bytes leftover after parsing attributes in process `syz.2.483'.
[  149.661113][ T7218] netlink: 192 bytes leftover after parsing attributes in process `syz.1.486'.
[  149.918025][ T7223] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.488'.
[  149.936617][ T7223] netlink: 1 bytes leftover after parsing attributes in process `syz.1.488'.
[  150.433677][ T7231] netlink: 152 bytes leftover after parsing attributes in process `syz.1.493'.
[  150.466503][ T7229] bridge0: port 1(bridge_slave_0) entered learning state
[  150.679709][ T7239] netlink: 192 bytes leftover after parsing attributes in process `syz.1.496'.
[  150.945023][ T7245] netlink: 61955 bytes leftover after parsing attributes in process `syz.3.499'.
[  151.092184][ T7255] validate_nla: 5 callbacks suppressed
[  151.092198][ T7255] netlink: 'syz.0.504': attribute type 4 has an invalid length.
[  151.305528][ T7258] netlink: 'syz.2.506': attribute type 25 has an invalid length.
[  151.324985][ T7258] netlink: 'syz.2.506': attribute type 1 has an invalid length.
[  151.336356][ T7258] bridge0: port 1(bridge_slave_0) entered learning state
[  151.834812][ T7281] netlink: 'syz.0.513': attribute type 1 has an invalid length.
[  151.848199][ T7281] netlink: 'syz.0.513': attribute type 4 has an invalid length.
[  151.863113][ T7281] __nla_validate_parse: 7 callbacks suppressed
[  151.863125][ T7281] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.513'.
[  152.036357][ T7285] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.515'.
[  152.053844][ T7285] netlink: 1 bytes leftover after parsing attributes in process `syz.1.515'.
[  152.164995][ T7287] netlink: 'syz.0.516': attribute type 4 has an invalid length.
[  152.186143][ T7287] netlink: 152 bytes leftover after parsing attributes in process `syz.0.516'.
[  152.222770][ T7289] netlink: 'syz.1.517': attribute type 4 has an invalid length.
[  152.237839][ T7289] netlink: 152 bytes leftover after parsing attributes in process `syz.1.517'.
[  152.948979][ T7294] netlink: 'syz.2.520': attribute type 25 has an invalid length.
[  152.960591][ T7294] netlink: 'syz.2.520': attribute type 1 has an invalid length.
[  152.970133][ T7294] bridge0: port 1(bridge_slave_0) entered learning state
[  153.179231][ T7298] netlink: 192 bytes leftover after parsing attributes in process `syz.0.523'.
[  153.311469][ T7300] netlink: 'syz.3.522': attribute type 25 has an invalid length.
[  153.336775][ T7300] bridge0: port 1(bridge_slave_0) entered learning state
[  153.447975][ T7310] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.525'.
[  153.490504][ T7312] netlink: 152 bytes leftover after parsing attributes in process `syz.0.527'.
[  153.646240][ T7314] netlink: 132 bytes leftover after parsing attributes in process `syz.3.528'.
[  153.811725][ T7325] netlink: 192 bytes leftover after parsing attributes in process `syz.2.533'.
[  156.382947][ T7368] validate_nla: 12 callbacks suppressed
[  156.382965][ T7368] netlink: 'syz.3.550': attribute type 4 has an invalid length.
[  156.601709][ T7377] netlink: 'syz.0.551': attribute type 1 has an invalid length.
[  156.640206][ T7377] netlink: 'syz.0.551': attribute type 4 has an invalid length.
[  157.024718][ T7385] __nla_validate_parse: 13 callbacks suppressed
[  157.024737][ T7385] netlink: 192 bytes leftover after parsing attributes in process `syz.0.555'.
[  157.456918][ T7398] netlink: 'syz.2.561': attribute type 4 has an invalid length.
[  157.464659][ T7398] netlink: 152 bytes leftover after parsing attributes in process `syz.2.561'.
[  157.589223][ T7399] netlink: 'syz.0.560': attribute type 4 has an invalid length.
[  157.608419][ T7399] netlink: 152 bytes leftover after parsing attributes in process `syz.0.560'.
[  158.087722][ T7408] netlink: 'syz.3.563': attribute type 1 has an invalid length.
[  158.143419][ T7408] netlink: 'syz.3.563': attribute type 4 has an invalid length.
[  158.168190][ T7408] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.563'.
[  158.258845][ T7401] netlink: 'syz.2.562': attribute type 25 has an invalid length.
[  158.283825][ T7401] netlink: 'syz.2.562': attribute type 1 has an invalid length.
[  158.298791][ T7401] bridge0: port 1(bridge_slave_0) entered learning state
[  158.603232][ T7420] netlink: 192 bytes leftover after parsing attributes in process `syz.2.569'.
[  158.636035][ T7417] netlink: 61967 bytes leftover after parsing attributes in process `syz.3.567'.
[  158.848964][ T7422] netlink: 'syz.2.570': attribute type 4 has an invalid length.
[  158.901179][ T7422] netlink: 152 bytes leftover after parsing attributes in process `syz.2.570'.
[  158.921877][ T7424] wg2: entered allmulticast mode
[  159.248312][ T7431] netlink: 152 bytes leftover after parsing attributes in process `syz.3.574'.
[  159.609112][ T7437] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.575'.
[  160.258962][ T7445] netlink: 192 bytes leftover after parsing attributes in process `syz.2.578'.
[  160.361042][ T7442] bridge0: port 1(bridge_slave_0) entered learning state
[  162.151534][ T7480] __nla_validate_parse: 5 callbacks suppressed
[  162.151568][ T7480] netlink: 61967 bytes leftover after parsing attributes in process `syz.3.591'.
[  162.610682][ T7482] validate_nla: 7 callbacks suppressed
[  162.610698][ T7482] netlink: 'syz.0.592': attribute type 1 has an invalid length.
[  162.623947][ T7482] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.592'.
[  162.712123][ T7484] netlink: 'syz.1.593': attribute type 4 has an invalid length.
[  162.727381][ T7484] netlink: 152 bytes leftover after parsing attributes in process `syz.1.593'.
[  162.950621][ T7494] netlink: 192 bytes leftover after parsing attributes in process `syz.0.598'.
[  163.019574][ T7498] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.597'.
[  163.058550][ T7496] netlink: 'syz.1.599': attribute type 25 has an invalid length.
[  163.078403][ T7496] netlink: 'syz.1.599': attribute type 1 has an invalid length.
[  163.096630][ T7496] bridge0: port 1(bridge_slave_0) entered learning state
[  163.121931][ T7499] netlink: 830 bytes leftover after parsing attributes in process `syz.3.596'.
[  163.361180][ T7502] netlink: 'syz.0.600': attribute type 25 has an invalid length.
[  163.395392][ T7502] netlink: 'syz.0.600': attribute type 1 has an invalid length.
[  163.422458][ T7502] bridge0: port 1(bridge_slave_0) entered learning state
[  164.267721][ T7524] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.606'.
[  164.292129][ T7524] netlink: 1 bytes leftover after parsing attributes in process `syz.1.606'.
[  164.402127][ T7527] netlink: 'syz.3.609': attribute type 4 has an invalid length.
[  164.418224][ T7527] netlink: 152 bytes leftover after parsing attributes in process `syz.3.609'.
[  164.465036][ T7528] netlink: 192 bytes leftover after parsing attributes in process `syz.2.608'.
[  164.577733][ T7530] netlink: 'syz.1.610': attribute type 25 has an invalid length.
[  164.600752][ T7530] netlink: 'syz.1.610': attribute type 1 has an invalid length.
[  164.620899][ T7530] bridge0: port 1(bridge_slave_0) entered learning state
[  164.816020][ T7535] netlink: 'syz.2.612': attribute type 25 has an invalid length.
[  164.837260][ T7535] bridge0: port 1(bridge_slave_0) entered learning state
[  165.938922][ T7562] bridge0: port 1(bridge_slave_0) entered learning state
[  166.304001][ T7573] bridge0: port 1(bridge_slave_0) entered learning state
[  168.430331][ T7604] validate_nla: 8 callbacks suppressed
[  168.430347][ T7604] netlink: 'syz.2.638': attribute type 25 has an invalid length.
[  168.464821][ T7604] netlink: 'syz.2.638': attribute type 1 has an invalid length.
[  168.498394][ T7604] bridge0: port 1(bridge_slave_0) entered learning state
[  168.760418][ T7609] netlink: 'syz.0.640': attribute type 4 has an invalid length.
[  168.823718][ T7609] __nla_validate_parse: 9 callbacks suppressed
[  168.823733][ T7609] netlink: 152 bytes leftover after parsing attributes in process `syz.0.640'.
[  169.331286][ T7615] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  169.421697][ T7618] netlink: 'syz.2.644': attribute type 4 has an invalid length.
[  169.431406][ T7618] netlink: 152 bytes leftover after parsing attributes in process `syz.2.644'.
[  169.448348][ T7620] netlink: 61955 bytes leftover after parsing attributes in process `syz.0.645'.
[  169.468263][ T7620] netlink: 1 bytes leftover after parsing attributes in process `syz.0.645'.
[  169.507765][ T7622] netlink: 'syz.3.646': attribute type 21 has an invalid length.
[  169.836289][ T7629] FAULT_INJECTION: forcing a failure.
[  169.836289][ T7629] name failslab, interval 1, probability 0, space 0, times 0
[  169.865886][ T7629] CPU: 1 PID: 7629 Comm: syz.0.647 Not tainted syzkaller #0
[  169.873264][ T7629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  169.883369][ T7629] Call Trace:
[  169.886694][ T7629]  <TASK>
[  169.889675][ T7629]  dump_stack_lvl+0x16c/0x230
[  169.894422][ T7629]  ? show_regs_print_info+0x20/0x20
[  169.899690][ T7629]  ? load_image+0x3b0/0x3b0
[  169.904268][ T7629]  ? __might_sleep+0xe0/0xe0
[  169.908925][ T7629]  ? __lock_acquire+0x7c80/0x7c80
[  169.914051][ T7629]  should_fail_ex+0x39d/0x4d0
[  169.918825][ T7629]  should_failslab+0x9/0x20
[  169.923383][ T7629]  slab_pre_alloc_hook+0x59/0x310
[  169.928455][ T7629]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  169.934196][ T7629]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  169.939934][ T7629]  __kmem_cache_alloc_node+0x53/0x260
[  169.945335][ T7629]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  169.951067][ T7629]  __kmalloc+0xa4/0x240
[  169.955247][ T7629]  tomoyo_realpath_from_path+0xe3/0x5d0
[  169.960852][ T7629]  tomoyo_path_number_perm+0x1ea/0x590
[  169.966323][ T7629]  ? tomoyo_path_number_perm+0x1ba/0x590
[  169.971969][ T7629]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  169.977468][ T7629]  ? ksys_write+0x1c1/0x250
[  169.982086][ T7629]  ? __fget_files+0x28/0x4d0
[  169.986729][ T7629]  security_file_ioctl+0x70/0xa0
[  169.991691][ T7629]  __se_sys_ioctl+0x48/0x170
[  169.996302][ T7629]  do_syscall_64+0x55/0xb0
[  170.000724][ T7629]  ? clear_bhb_loop+0x40/0x90
[  170.005404][ T7629]  ? clear_bhb_loop+0x40/0x90
[  170.010094][ T7629]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  170.016001][ T7629] RIP: 0033:0x7fead6f8ebe9
[  170.020429][ T7629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.040048][ T7629] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  170.048477][ T7629] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  170.056469][ T7629] RDX: 0000200000000280 RSI: 0000000000008b26 RDI: 0000000000000006
[  170.064444][ T7629] RBP: 00007fead7dbf090 R08: 0000000000000000 R09: 0000000000000000
[  170.072441][ T7629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.080418][ T7629] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  170.088490][ T7629]  </TASK>
[  170.130772][ T7629] ERROR: Out of memory at tomoyo_realpath_from_path.
[  170.828986][ T7640] netlink: 'syz.2.651': attribute type 4 has an invalid length.
[  170.842619][ T7640] netlink: 152 bytes leftover after parsing attributes in process `syz.2.651'.
[  170.877171][ T7636] netlink: 'syz.1.649': attribute type 25 has an invalid length.
[  170.920401][ T7636] netlink: 'syz.1.649': attribute type 1 has an invalid length.
[  170.985922][ T7636] bridge0: port 1(bridge_slave_0) entered learning state
[  172.347578][ T7652] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.655'.
[  172.357131][ T7652] netlink: 1 bytes leftover after parsing attributes in process `syz.2.655'.
[  172.701105][ T7663] netlink: 'syz.0.658': attribute type 6 has an invalid length.
[  172.724638][ T7663] netlink: 'syz.0.658': attribute type 3 has an invalid length.
[  172.747690][ T7663] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.658'.
[  173.092428][ T7666] netlink: 152 bytes leftover after parsing attributes in process `syz.3.659'.
[  173.689865][ T7679] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.665'.
[  174.511299][ T7704] ref_ctr_offset mismatch. inode: 0x3a4 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0
[  174.579441][ T7703] validate_nla: 1 callbacks suppressed
[  174.579461][ T7703] netlink: 'syz.3.672': attribute type 7 has an invalid length.
[  174.721547][ T7707] pim6reg: tun_chr_ioctl cmd 1074812118
[  174.751767][ T7707] netlink: 'syz.2.673': attribute type 10 has an invalid length.
[  174.765435][ T7707] team0: Device veth0_vlan is up. Set it down before adding it as a team port
[  174.979808][ T7713] netlink: 'syz.0.676': attribute type 4 has an invalid length.
[  175.006240][ T7713] __nla_validate_parse: 1 callbacks suppressed
[  175.006254][ T7713] netlink: 152 bytes leftover after parsing attributes in process `syz.0.676'.
[  175.184469][ T7716] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.678'.
[  175.207858][ T7716] netlink: zone id is out of range
[  175.220840][ T7716] netlink: zone id is out of range
[  175.235626][ T7716] netlink: zone id is out of range
[  175.255088][ T7716] netlink: zone id is out of range
[  175.275506][ T7716] netlink: zone id is out of range
[  175.301314][ T7716] netlink: zone id is out of range
[  175.322144][ T7716] netlink: zone id is out of range
[  175.336301][ T7716] netlink: zone id is out of range
[  175.341568][ T7716] netlink: zone id is out of range
[  175.352467][ T7716] netlink: zone id is out of range
[  175.426554][ T7718] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.677'.
[  175.475611][ T7718] netlink: 1 bytes leftover after parsing attributes in process `syz.2.677'.
[  176.116637][ T7737] netlink: 142528 bytes leftover after parsing attributes in process `syz.2.681'.
[  176.136310][ T7737] netlink: 'syz.2.681': attribute type 1 has an invalid length.
[  176.153429][ T7737] netlink: 60 bytes leftover after parsing attributes in process `syz.2.681'.
[  176.162588][ T7737] netlink: 60 bytes leftover after parsing attributes in process `syz.2.681'.
[  176.178939][ T7737] netlink: 60 bytes leftover after parsing attributes in process `syz.2.681'.
[  176.190767][ T7737] netlink: 60 bytes leftover after parsing attributes in process `syz.2.681'.
[  176.566254][ T7748] netlink: 'syz.1.687': attribute type 25 has an invalid length.
[  176.580249][ T7748] netlink: 'syz.1.687': attribute type 1 has an invalid length.
[  176.590227][ T7748] bridge0: port 1(bridge_slave_0) entered learning state
[  177.098603][ T7753] netlink: 'syz.2.689': attribute type 25 has an invalid length.
[  177.130300][ T7753] netlink: 'syz.2.689': attribute type 1 has an invalid length.
[  177.162886][ T7753] bridge0: port 1(bridge_slave_0) entered learning state
[  177.184619][ T7755] netlink: 'syz.3.690': attribute type 4 has an invalid length.
[  177.211869][ T7755] netlink: 152 bytes leftover after parsing attributes in process `syz.3.690'.
[  178.230387][ T7767] netlink: 'syz.2.692': attribute type 4 has an invalid length.
[  178.725706][ T7775] bridge0: port 1(bridge_slave_0) entered learning state
[  179.394477][ T7789] bridge0: port 1(bridge_slave_0) entered learning state
[  180.130656][ T7801] validate_nla: 6 callbacks suppressed
[  180.130671][ T7801] netlink: 'syz.2.706': attribute type 33 has an invalid length.
[  180.190463][ T7801] __nla_validate_parse: 3 callbacks suppressed
[  180.190479][ T7801] netlink: 136 bytes leftover after parsing attributes in process `syz.2.706'.
[  180.391414][ T7804] netlink: 'syz.0.708': attribute type 9 has an invalid length.
[  180.411062][ T7804] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.708'.
[  180.477497][ T7804] netlink: 'syz.0.708': attribute type 33 has an invalid length.
[  180.496187][ T7804] netlink: 152 bytes leftover after parsing attributes in process `syz.0.708'.
[  181.127976][ T7809] netlink: 'syz.0.709': attribute type 25 has an invalid length.
[  181.154800][ T7809] netlink: 'syz.0.709': attribute type 1 has an invalid length.
[  181.176167][ T7809] bridge0: port 1(bridge_slave_0) entered learning state
[  181.484986][ T7819] netlink: 'syz.0.713': attribute type 4 has an invalid length.
[  181.496070][ T7819] netlink: 152 bytes leftover after parsing attributes in process `syz.0.713'.
[  182.070016][ T7826] netlink: 'syz.1.716': attribute type 4 has an invalid length.
[  182.096254][ T7826] netlink: 152 bytes leftover after parsing attributes in process `syz.1.716'.
[  182.129505][ T7823] netlink: 'syz.0.714': attribute type 25 has an invalid length.
[  182.145362][ T7823] netlink: 'syz.0.714': attribute type 1 has an invalid length.
[  182.180247][ T7823] bridge0: port 1(bridge_slave_0) entered learning state
[  183.383200][ T7859] netlink: 'syz.1.726': attribute type 25 has an invalid length.
[  183.391895][ T7859] bridge0: port 1(bridge_slave_0) entered learning state
[  183.851764][ T7863] bridge0: port 1(bridge_slave_0) entered learning state
[  184.956710][ T7878] bridge0: port 1(bridge_slave_0) entered learning state
[  185.197240][ T7889] validate_nla: 5 callbacks suppressed
[  185.197256][ T7889] netlink: 'syz.3.738': attribute type 25 has an invalid length.
[  185.233796][ T7889] netlink: 'syz.3.738': attribute type 1 has an invalid length.
[  185.260170][ T7889] bridge0: port 1(bridge_slave_0) entered learning state
[  187.021335][ T7917] netlink: 'syz.3.748': attribute type 25 has an invalid length.
[  187.039095][ T7917] netlink: 'syz.3.748': attribute type 1 has an invalid length.
[  187.058019][ T7917] bridge0: port 1(bridge_slave_0) entered learning state
[  187.458520][ T7921] netlink: 'syz.2.749': attribute type 25 has an invalid length.
[  187.466818][ T7921] netlink: 'syz.2.749': attribute type 1 has an invalid length.
[  187.475118][ T7921] bridge0: port 1(bridge_slave_0) entered learning state
[  187.576297][ T7924] netlink: 'syz.1.750': attribute type 25 has an invalid length.
[  187.584316][ T7924] netlink: 'syz.1.750': attribute type 1 has an invalid length.
[  187.616537][ T7924] bridge0: port 1(bridge_slave_0) entered learning state
[  187.673308][ T7929] netlink: 192 bytes leftover after parsing attributes in process `syz.2.753'.
[  187.899403][ T7934] macvtap0: refused to change device tx_queue_len
[  187.923875][ T7936] netlink: 'syz.3.756': attribute type 4 has an invalid length.
[  187.949658][ T7936] netlink: 152 bytes leftover after parsing attributes in process `syz.3.756'.
[  188.243075][ T7946] netlink: 'syz.3.760': attribute type 25 has an invalid length.
[  188.256391][ T7946] bridge0: port 1(bridge_slave_0) entered learning state
[  188.612557][ T7952] FAULT_INJECTION: forcing a failure.
[  188.612557][ T7952] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.653244][ T7952] CPU: 0 PID: 7952 Comm: syz.2.762 Not tainted syzkaller #0
[  188.660589][ T7952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  188.670660][ T7952] Call Trace:
[  188.673947][ T7952]  <TASK>
[  188.676887][ T7952]  dump_stack_lvl+0x16c/0x230
[  188.681587][ T7952]  ? show_regs_print_info+0x20/0x20
[  188.686801][ T7952]  ? load_image+0x3b0/0x3b0
[  188.688985][ T7954] netlink: 192 bytes leftover after parsing attributes in process `syz.3.763'.
[  188.691303][ T7952]  ? __might_fault+0xaa/0x120
[  188.691328][ T7952]  ? __lock_acquire+0x7c80/0x7c80
[  188.709977][ T7952]  should_fail_ex+0x39d/0x4d0
[  188.714681][ T7952]  _copy_from_user+0x2f/0xe0
[  188.719298][ T7952]  sctp_setsockopt+0x19e/0x11e0
[  188.724174][ T7952]  ? sock_common_recvmsg+0x1b0/0x1b0
[  188.729478][ T7952]  do_sock_setsockopt+0x175/0x1a0
[  188.734526][ T7952]  ? __fdget+0x180/0x210
[  188.738790][ T7952]  __x64_sys_setsockopt+0x184/0x200
[  188.744022][ T7952]  do_syscall_64+0x55/0xb0
[  188.748463][ T7952]  ? clear_bhb_loop+0x40/0x90
[  188.753162][ T7952]  ? clear_bhb_loop+0x40/0x90
[  188.757864][ T7952]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  188.763785][ T7952] RIP: 0033:0x7f003a58ebe9
[  188.768216][ T7952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.787852][ T7952] RSP: 002b:00007f003b43f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  188.796290][ T7952] RAX: ffffffffffffffda RBX: 00007f003a7c6090 RCX: 00007f003a58ebe9
[  188.804283][ T7952] RDX: 000000000000000d RSI: 0000000000000084 RDI: 0000000000000005
[  188.812278][ T7952] RBP: 00007f003b43f090 R08: 0000000000000008 R09: 0000000000000000
[  188.820262][ T7952] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.828244][ T7952] R13: 00007f003a7c6128 R14: 00007f003a7c6090 R15: 00007ffc0df506e8
[  188.836254][ T7952]  </TASK>
[  188.960079][ T7956] bridge0: port 1(bridge_slave_0) entered learning state
[  189.284265][ T7958] bridge0: port 1(bridge_slave_0) entered learning state
[  189.642718][ T7971] netlink: 152 bytes leftover after parsing attributes in process `syz.2.768'.
[  190.193992][ T7979] IPv6: Can't replace route, no match found
[  190.245357][ T7982] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  190.275483][ T7980] validate_nla: 6 callbacks suppressed
[  190.275499][ T7980] netlink: 'syz.1.771': attribute type 25 has an invalid length.
[  190.303473][ T7980] netlink: 'syz.1.771': attribute type 1 has an invalid length.
[  190.314962][ T7980] bridge0: port 1(bridge_slave_0) entered learning state
[  191.478860][ T5791] Bluetooth: hci2: command 0x0406 tx timeout
[  191.485439][ T5791] Bluetooth: hci0: command 0x0406 tx timeout
[  191.491722][ T5793] Bluetooth: hci3: command 0x0406 tx timeout
[  191.501515][ T5791] Bluetooth: hci1: command 0x0406 tx timeout
[  191.776917][ T7987] netlink: 'syz.1.774': attribute type 25 has an invalid length.
[  191.799500][ T7987] netlink: 'syz.1.774': attribute type 1 has an invalid length.
[  191.834777][ T7987] bridge0: port 1(bridge_slave_0) entered learning state
[  191.994835][ T7994] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.776'.
[  192.446282][ T8005] netlink: 'syz.0.780': attribute type 4 has an invalid length.
[  192.472589][ T8005] netlink: 152 bytes leftover after parsing attributes in process `syz.0.780'.
[  192.836185][ T8020] netlink: 40 bytes leftover after parsing attributes in process `syz.2.784'.
[  193.374931][ T8024] netlink: 61955 bytes leftover after parsing attributes in process `syz.0.785'.
[  193.406260][ T8024] netlink: 1 bytes leftover after parsing attributes in process `syz.0.785'.
[  193.622448][ T8030] netlink: 'syz.1.788': attribute type 21 has an invalid length.
[  193.646605][ T8030] netlink: 'syz.1.788': attribute type 6 has an invalid length.
[  193.654818][ T8030] netlink: 132 bytes leftover after parsing attributes in process `syz.1.788'.
[  193.869666][ T8040] netlink: 60 bytes leftover after parsing attributes in process `syz.0.790'.
[  193.890581][ T8042] netlink: 192 bytes leftover after parsing attributes in process `syz.1.791'.
[  193.901309][ T8040] netlink: 60 bytes leftover after parsing attributes in process `syz.0.790'.
[  193.926940][ T8040] netlink: 60 bytes leftover after parsing attributes in process `syz.0.790'.
[  194.062347][ T8044] netlink: 'syz.1.792': attribute type 4 has an invalid length.
[  194.076149][ T8044] netlink: 152 bytes leftover after parsing attributes in process `syz.1.792'.
[  194.552646][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  194.553662][ T8055] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.796'.
[  194.559060][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  195.067038][ T8061] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  195.206748][ T8061] batadv0: entered promiscuous mode
[  195.482427][ T8070] netlink: 'syz.0.803': attribute type 4 has an invalid length.
[  195.661428][ T8071] netlink: 'syz.2.804': attribute type 25 has an invalid length.
[  195.682548][ T8071] netlink: 'syz.2.804': attribute type 1 has an invalid length.
[  195.707099][ T8071] bridge0: port 1(bridge_slave_0) entered learning state
[  196.160653][ T8089] syz.0.812: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  196.187131][ T8091] FAULT_INJECTION: forcing a failure.
[  196.187131][ T8091] name failslab, interval 1, probability 0, space 0, times 0
[  196.216199][ T8089] CPU: 0 PID: 8089 Comm: syz.0.812 Not tainted syzkaller #0
[  196.223606][ T8089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  196.233830][ T8089] Call Trace:
[  196.237188][ T8089]  <TASK>
[  196.240214][ T8089]  dump_stack_lvl+0x16c/0x230
[  196.245034][ T8089]  ? show_regs_print_info+0x20/0x20
[  196.250343][ T8089]  ? load_image+0x3b0/0x3b0
[  196.254973][ T8089]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  196.261490][ T8089]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  196.268115][ T8089]  warn_alloc+0x210/0x300
[  196.272558][ T8089]  ? stack_trace_save+0x9c/0xe0
[  196.277631][ T8089]  ? zone_watermark_ok_safe+0x230/0x230
[  196.283334][ T8089]  ? kasan_set_track+0x5f/0x70
[  196.288187][ T8089]  ? kasan_set_track+0x4e/0x70
[  196.293050][ T8089]  ? __kasan_kmalloc+0x8f/0xa0
[  196.297918][ T8089]  ? xsk_init_queue+0xb0/0x110
[  196.302764][ T8089]  ? xsk_setsockopt+0x4db/0x6f0
[  196.307698][ T8089]  ? do_sock_setsockopt+0x175/0x1a0
[  196.312983][ T8089]  ? __x64_sys_setsockopt+0x184/0x200
[  196.318466][ T8089]  __vmalloc_node_range+0x126/0x1320
[  196.323999][ T8089]  ? free_vm_area+0x50/0x50
[  196.328663][ T8089]  vmalloc_user+0x74/0x80
[  196.333105][ T8089]  ? xskq_create+0xbf/0x170
[  196.337686][ T8089]  xskq_create+0xbf/0x170
[  196.342217][ T8089]  xsk_init_queue+0xb0/0x110
[  196.346921][ T8089]  xsk_setsockopt+0x4db/0x6f0
[  196.351704][ T8089]  ? xsk_poll+0x670/0x670
[  196.356142][ T8089]  ? __fget_files+0x28/0x4d0
[  196.360829][ T8089]  ? aa_sock_opt_perm+0x74/0x100
[  196.365872][ T8089]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  196.371511][ T8089]  ? security_socket_setsockopt+0x7e/0xa0
[  196.377324][ T8089]  ? xsk_poll+0x670/0x670
[  196.381868][ T8089]  do_sock_setsockopt+0x175/0x1a0
[  196.386995][ T8089]  ? __fdget+0x180/0x210
[  196.391353][ T8089]  __x64_sys_setsockopt+0x184/0x200
[  196.396672][ T8089]  do_syscall_64+0x55/0xb0
[  196.401163][ T8089]  ? clear_bhb_loop+0x40/0x90
[  196.405911][ T8089]  ? clear_bhb_loop+0x40/0x90
[  196.410675][ T8089]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  196.416652][ T8089] RIP: 0033:0x7fead6f8ebe9
[  196.421146][ T8089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.440833][ T8089] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  196.449347][ T8089] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  196.457388][ T8089] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000006
[  196.465417][ T8089] RBP: 00007fead7011e19 R08: 0000000000000004 R09: 0000000000000000
[  196.473463][ T8089] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  196.481518][ T8089] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  196.489739][ T8089]  </TASK>
[  196.492822][ T8091] CPU: 1 PID: 8091 Comm: syz.2.813 Not tainted syzkaller #0
[  196.500168][ T8091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  196.510218][ T8091] Call Trace:
[  196.513487][ T8091]  <TASK>
[  196.516421][ T8091]  dump_stack_lvl+0x16c/0x230
[  196.521101][ T8091]  ? sctp_sendmsg+0x155c/0x27e0
[  196.525942][ T8091]  ? ___sys_sendmsg+0x220/0x290
[  196.530786][ T8091]  ? show_regs_print_info+0x20/0x20
[  196.536020][ T8091]  ? load_image+0x3b0/0x3b0
[  196.540519][ T8091]  should_fail_ex+0x39d/0x4d0
[  196.545305][ T8091]  should_failslab+0x9/0x20
[  196.549816][ T8091]  slab_pre_alloc_hook+0x59/0x310
[  196.554850][ T8091]  ? sctp_add_bind_addr+0x8c/0x360
[  196.559963][ T8091]  __kmem_cache_alloc_node+0x53/0x260
[  196.565334][ T8091]  ? sctp_add_bind_addr+0x8c/0x360
[  196.570437][ T8091]  kmalloc_trace+0x2a/0xe0
[  196.574846][ T8091]  sctp_add_bind_addr+0x8c/0x360
[  196.579777][ T8091]  sctp_copy_local_addr_list+0x30c/0x4e0
[  196.585402][ T8091]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  196.591113][ T8091]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  196.597187][ T8091]  ? sctp_v4_is_any+0x35/0x60
[  196.601856][ T8091]  ? sctp_copy_one_addr+0x8c/0x350
[  196.606959][ T8091]  sctp_bind_addr_copy+0x189/0x3c0
[  196.612069][ T8091]  sctp_connect_new_asoc+0x2da/0x690
[  196.617347][ T8091]  ? __sctp_connect+0xd20/0xd20
[  196.622187][ T8091]  ? __local_bh_enable_ip+0x12e/0x1c0
[  196.627546][ T8091]  ? _local_bh_enable+0xa0/0xa0
[  196.632382][ T8091]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  196.638193][ T8091]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  196.643999][ T8091]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  196.649546][ T8091]  ? security_sctp_bind_connect+0x89/0xb0
[  196.655259][ T8091]  sctp_sendmsg+0x155c/0x27e0
[  196.659958][ T8091]  ? sctp_getsockopt+0xb60/0xb60
[  196.664902][ T8091]  ? perf_trace_lock_acquire+0xfb/0x3e0
[  196.670462][ T8091]  ? aa_sk_perm+0x7fc/0x930
[  196.674972][ T8091]  ? aa_af_perm+0x2b0/0x2b0
[  196.679463][ T8091]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  196.685889][ T8091]  ? sock_rps_record_flow+0x19/0x400
[  196.691166][ T8091]  ? inet_send_prepare+0x260/0x260
[  196.696263][ T8091]  ? inet_sendmsg+0x7c/0x2f0
[  196.700837][ T8091]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  196.706110][ T8091]  ? security_socket_sendmsg+0x80/0xa0
[  196.711557][ T8091]  ? inet_send_prepare+0x260/0x260
[  196.716655][ T8091]  ____sys_sendmsg+0x5bf/0x950
[  196.721419][ T8091]  ? __asan_memset+0x22/0x40
[  196.726000][ T8091]  ? __sys_sendmsg_sock+0x30/0x30
[  196.731013][ T8091]  ? __import_iovec+0x5f2/0x860
[  196.735862][ T8091]  ? import_iovec+0x73/0xa0
[  196.740359][ T8091]  ___sys_sendmsg+0x220/0x290
[  196.745029][ T8091]  ? __sys_sendmsg+0x270/0x270
[  196.749804][ T8091]  ? __lock_acquire+0x7c80/0x7c80
[  196.754837][ T8091]  __se_sys_sendmsg+0x1a5/0x270
[  196.759680][ T8091]  ? perf_trace_preemptirq_template+0x281/0x340
[  196.765916][ T8091]  ? __x64_sys_sendmsg+0x80/0x80
[  196.770859][ T8091]  ? lockdep_hardirqs_on+0x98/0x150
[  196.776052][ T8091]  do_syscall_64+0x55/0xb0
[  196.780458][ T8091]  ? clear_bhb_loop+0x40/0x90
[  196.785126][ T8091]  ? clear_bhb_loop+0x40/0x90
[  196.789792][ T8091]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  196.795676][ T8091] RIP: 0033:0x7f003a58ebe9
[  196.800087][ T8091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.819683][ T8091] RSP: 002b:00007f003b460038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.828086][ T8091] RAX: ffffffffffffffda RBX: 00007f003a7c5fa0 RCX: 00007f003a58ebe9
[  196.836047][ T8091] RDX: 0000000024000080 RSI: 0000200000000680 RDI: 0000000000000003
[  196.844005][ T8091] RBP: 00007f003b460090 R08: 0000000000000000 R09: 0000000000000000
[  196.851967][ T8091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  196.859929][ T8091] R13: 00007f003a7c6038 R14: 00007f003a7c5fa0 R15: 00007ffc0df506e8
[  196.867902][ T8091]  </TASK>
[  196.941290][ T8089] Mem-Info:
[  196.944524][ T8089] active_anon:5312 inactive_anon:0 isolated_anon:0
[  196.944524][ T8089]  active_file:11261 inactive_file:39893 isolated_file:0
[  196.944524][ T8089]  unevictable:768 dirty:171 writeback:0
[  196.944524][ T8089]  slab_reclaimable:10053 slab_unreclaimable:91656
[  196.944524][ T8089]  mapped:24420 shmem:1361 pagetables:510
[  196.944524][ T8089]  sec_pagetables:0 bounce:0
[  196.944524][ T8089]  kernel_misc_reclaimable:0
[  196.944524][ T8089]  free:1354939 free_pcp:11743 free_cma:0
[  196.997799][ T8089] Node 0 active_anon:21248kB inactive_anon:0kB active_file:45044kB inactive_file:159368kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97680kB dirty:684kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11108kB pagetables:2040kB sec_pagetables:0kB all_unreclaimable? no
[  197.006104][ T8096] netlink: 'syz.1.814': attribute type 10 has an invalid length.
[  197.031173][ T8089] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  197.153516][ T8089] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  197.181261][ T8089] lowmem_reserve[]: 0 2525 2526 2526 2526
[  197.192047][ T8089] Node 0 DMA32 free:1516360kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:21436kB inactive_anon:0kB active_file:45044kB inactive_file:158056kB unevictable:1536kB writepending:736kB present:3129332kB managed:2589592kB mlocked:0kB bounce:0kB free_pcp:25456kB local_pcp:5864kB free_cma:0kB
[  197.228342][ T8089] lowmem_reserve[]: 0 0 1 1 1
[  197.229500][ T8096] hsr_slave_0 (unregistering): left promiscuous mode
[  197.233106][ T8089] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  197.268671][ T8089] lowmem_reserve[]: 0 0 0 0 0
[  197.273446][ T8089] Node 1 Normal free:3888020kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:21860kB local_pcp:14916kB free_cma:0kB
[  197.305648][ T8089] lowmem_reserve[]: 0 0 0 0 0
[  197.310578][ T8089] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  197.331459][ T8089] Node 0 DMA32: 3004*4kB (UM) 2203*8kB (UME) 1456*16kB (UM) 1226*32kB (UME) 561*64kB (UME) 152*128kB (UME) 81*256kB (UM) 59*512kB (UME) 9*1024kB (UME) 5*2048kB (UME) 317*4096kB (M) = 1516360kB
[  197.351091][ T8089] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  197.364146][ T8089] Node 1 Normal: 269*4kB (UME) 60*8kB (UME) 42*16kB (UME) 47*32kB (UME) 22*64kB (UME) 7*128kB (UME) 2*256kB (UM) 1*512kB (E) 0*1024kB 1*2048kB (E) 947*4096kB (M) = 3888020kB
[  197.382660][ T8089] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  197.402327][ T8098] netlink: 'syz.2.815': attribute type 4 has an invalid length.
[  197.404859][ T8089] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  197.422808][ T8089] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  197.432635][ T8089] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  197.442437][ T8089] 52515 total pagecache pages
[  197.447334][ T8089] 0 pages in swap cache
[  197.461980][ T8089] Free swap  = 124996kB
[  197.467059][ T8089] Total swap = 124996kB
[  197.471478][ T8089] 2097051 pages RAM
[  197.475308][ T8089] 0 pages HighMem/MovableOnly
[  197.488468][ T8089] 416139 pages reserved
[  197.495413][ T8089] 0 pages cma reserved
[  198.405424][ T8124] __nla_validate_parse: 6 callbacks suppressed
[  198.405460][ T8124] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.824'.
[  198.427595][ T8124] netlink: 1 bytes leftover after parsing attributes in process `syz.2.824'.
[  198.441836][ T8122] netlink: 'syz.0.823': attribute type 25 has an invalid length.
[  198.466051][ T8122] netlink: 'syz.0.823': attribute type 1 has an invalid length.
[  198.485882][ T8122] bridge0: port 1(bridge_slave_0) entered learning state
[  199.269967][ T8140] netlink: 192 bytes leftover after parsing attributes in process `syz.1.828'.
[  199.427172][ T8143] FAULT_INJECTION: forcing a failure.
[  199.427172][ T8143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  199.465999][ T8143] CPU: 0 PID: 8143 Comm: syz.3.829 Not tainted syzkaller #0
[  199.473339][ T8143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  199.483414][ T8143] Call Trace:
[  199.486711][ T8143]  <TASK>
[  199.489647][ T8143]  dump_stack_lvl+0x16c/0x230
[  199.494337][ T8143]  ? show_regs_print_info+0x20/0x20
[  199.499548][ T8143]  ? load_image+0x3b0/0x3b0
[  199.504057][ T8143]  ? __might_fault+0xaa/0x120
[  199.508745][ T8143]  ? __lock_acquire+0x7c80/0x7c80
[  199.513782][ T8143]  should_fail_ex+0x39d/0x4d0
[  199.518570][ T8143]  _copy_from_iter+0x1d3/0x1290
[  199.523424][ T8143]  ? slab_post_alloc_hook+0x8a/0x4d0
[  199.528706][ T8143]  ? __virt_addr_valid+0x18c/0x540
[  199.533913][ T8143]  ? __lock_acquire+0x7c80/0x7c80
[  199.538946][ T8143]  ? rcu_is_watching+0x15/0xb0
[  199.543705][ T8143]  ? copyout_mc+0x70/0x70
[  199.548026][ T8143]  ? __virt_addr_valid+0x18c/0x540
[  199.553126][ T8143]  ? __virt_addr_valid+0x18c/0x540
[  199.558227][ T8143]  ? __virt_addr_valid+0x469/0x540
[  199.563330][ T8143]  ? __check_object_size+0x506/0xa30
[  199.568609][ T8143]  netlink_sendmsg+0x75c/0xbe0
[  199.573368][ T8143]  ? netlink_getsockopt+0x580/0x580
[  199.578558][ T8143]  ? aa_sock_msg_perm+0x94/0x150
[  199.583481][ T8143]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  199.588752][ T8143]  ? security_socket_sendmsg+0x80/0xa0
[  199.594197][ T8143]  ? netlink_getsockopt+0x580/0x580
[  199.599381][ T8143]  ____sys_sendmsg+0x5bf/0x950
[  199.604143][ T8143]  ? __asan_memset+0x22/0x40
[  199.608722][ T8143]  ? __sys_sendmsg_sock+0x30/0x30
[  199.613738][ T8143]  ? __import_iovec+0x5f2/0x860
[  199.618596][ T8143]  ? import_iovec+0x73/0xa0
[  199.623094][ T8143]  ___sys_sendmsg+0x220/0x290
[  199.627762][ T8143]  ? __sys_sendmsg+0x270/0x270
[  199.632530][ T8143]  ? __lock_acquire+0x7c80/0x7c80
[  199.637575][ T8143]  __se_sys_sendmsg+0x1a5/0x270
[  199.642435][ T8143]  ? perf_trace_preemptirq_template+0x281/0x340
[  199.648674][ T8143]  ? __x64_sys_sendmsg+0x80/0x80
[  199.653616][ T8143]  ? lockdep_hardirqs_on+0x98/0x150
[  199.658819][ T8143]  do_syscall_64+0x55/0xb0
[  199.663224][ T8143]  ? clear_bhb_loop+0x40/0x90
[  199.667887][ T8143]  ? clear_bhb_loop+0x40/0x90
[  199.672568][ T8143]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  199.678457][ T8143] RIP: 0033:0x7ff94e78ebe9
[  199.682868][ T8143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.702466][ T8143] RSP: 002b:00007ff94f571038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  199.710867][ T8143] RAX: ffffffffffffffda RBX: 00007ff94e9c5fa0 RCX: 00007ff94e78ebe9
[  199.718830][ T8143] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  199.726792][ T8143] RBP: 00007ff94f571090 R08: 0000000000000000 R09: 0000000000000000
[  199.734749][ T8143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.742709][ T8143] R13: 00007ff94e9c6038 R14: 00007ff94e9c5fa0 R15: 00007ffd671edfe8
[  199.750679][ T8143]  </TASK>
[  200.007425][ T8146] IPv6: Can't replace route, no match found
[  200.040105][ T8147] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  200.186632][ T8147] netlink: 'syz.1.830': attribute type 10 has an invalid length.
[  200.360064][ T8147] net_ratelimit: 216 callbacks suppressed
[  200.360080][ T8147] wlan1: mtu less than device minimum
[  200.376367][ T8147] : (slave wlan1): Error -22 calling dev_set_mtu
[  200.464776][ T8162] netlink: 'syz.3.837': attribute type 4 has an invalid length.
[  200.472970][ T8162] netlink: 152 bytes leftover after parsing attributes in process `syz.3.837'.
[  201.306403][ T8175] netlink: 'syz.3.841': attribute type 1 has an invalid length.
[  201.314122][ T8175] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.841'.
[  201.676471][ T8184] netlink: 'syz.3.845': attribute type 10 has an invalid length.
[  201.696206][ T8184] netlink: 40 bytes leftover after parsing attributes in process `syz.3.845'.
[  201.751308][ T8184] batadv0: entered promiscuous mode
[  201.799815][ T8184] bridge0: port 3(batadv0) entered blocking state
[  201.819894][ T8184] bridge0: port 3(batadv0) entered disabled state
[  201.839646][ T8184] batadv0: entered allmulticast mode
[  201.856764][ T8184] bridge0: port 3(batadv0) entered blocking state
[  201.863398][ T8184] bridge0: port 3(batadv0) entered forwarding state
[  201.880343][ T8186] netlink: 'syz.2.847': attribute type 4 has an invalid length.
[  201.892041][ T8186] netlink: 152 bytes leftover after parsing attributes in process `syz.2.847'.
[  202.159837][ T8191] netlink: 'syz.2.848': attribute type 3 has an invalid length.
[  202.175828][ T8191] netlink: 132 bytes leftover after parsing attributes in process `syz.2.848'.
[  202.357359][ T1094] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  202.367377][ T1094] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  202.634814][ T8210] netlink: 6 bytes leftover after parsing attributes in process `syz.0.855'.
[  202.675650][ T8210] openvswitch: netlink: Flow actions attr not present in new flow.
[  202.696562][ T8214] netlink: 'syz.1.856': attribute type 4 has an invalid length.
[  202.704717][ T8214] netlink: 152 bytes leftover after parsing attributes in process `syz.1.856'.
[  203.733362][ T8223] netlink: 192 bytes leftover after parsing attributes in process `syz.3.860'.
[  204.103047][ T8232] netlink: 'syz.3.862': attribute type 25 has an invalid length.
[  204.130931][ T8232] netlink: 'syz.3.862': attribute type 1 has an invalid length.
[  204.158400][ T8232] bridge0: port 1(bridge_slave_0) entered learning state
[  204.302672][ T8236] netlink: 'syz.2.865': attribute type 1 has an invalid length.
[  204.315294][ T8236] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.865'.
[  204.486920][ T8241] netlink: 'syz.3.867': attribute type 25 has an invalid length.
[  204.494950][ T8241] netlink: 'syz.3.867': attribute type 1 has an invalid length.
[  204.522967][ T8241] bridge0: port 1(bridge_slave_0) entered learning state
[  204.641691][ T8247] netlink: 192 bytes leftover after parsing attributes in process `syz.0.870'.
[  205.284174][ T8261] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.875'.
[  205.301923][ T8261] netlink: 1 bytes leftover after parsing attributes in process `syz.2.875'.
[  205.312399][ T8263] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.876'.
[  205.345882][ T8263] netlink: 1 bytes leftover after parsing attributes in process `syz.1.876'.
[  205.439328][ T8267] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.877'.
[  205.560350][ T8271] bridge0: port 1(bridge_slave_0) entered learning state
[  205.657777][ T8274] FAULT_INJECTION: forcing a failure.
[  205.657777][ T8274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.677667][ T8274] CPU: 1 PID: 8274 Comm: syz.0.880 Not tainted syzkaller #0
[  205.685012][ T8274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  205.695089][ T8274] Call Trace:
[  205.698390][ T8274]  <TASK>
[  205.701334][ T8274]  dump_stack_lvl+0x16c/0x230
[  205.706036][ T8274]  ? show_regs_print_info+0x20/0x20
[  205.711251][ T8274]  ? load_image+0x3b0/0x3b0
[  205.715775][ T8274]  ? __might_fault+0xaa/0x120
[  205.720473][ T8274]  ? __lock_acquire+0x7c80/0x7c80
[  205.725543][ T8274]  should_fail_ex+0x39d/0x4d0
[  205.730300][ T8274]  _copy_from_user+0x2f/0xe0
[  205.734901][ T8274]  ___sys_recvmsg+0x12f/0x510
[  205.739596][ T8274]  ? __sys_recvmsg+0x270/0x270
[  205.744508][ T8274]  ? ksys_write+0x1c1/0x250
[  205.749030][ T8274]  ? __fget_files+0x44a/0x4d0
[  205.753744][ T8274]  __x64_sys_recvmsg+0x1f2/0x2c0
[  205.758705][ T8274]  ? ___sys_recvmsg+0x510/0x510
[  205.763568][ T8274]  ? lockdep_hardirqs_on+0x98/0x150
[  205.768793][ T8274]  do_syscall_64+0x55/0xb0
[  205.773288][ T8274]  ? clear_bhb_loop+0x40/0x90
[  205.777951][ T8274]  ? clear_bhb_loop+0x40/0x90
[  205.782614][ T8274]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  205.788505][ T8274] RIP: 0033:0x7fead6f8ebe9
[  205.792913][ T8274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.812509][ T8274] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  205.820909][ T8274] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  205.828866][ T8274] RDX: 0000000000000100 RSI: 0000200000000280 RDI: 0000000000000003
[  205.836823][ T8274] RBP: 00007fead7dbf090 R08: 0000000000000000 R09: 0000000000000000
[  205.844855][ T8274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.852850][ T8274] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  205.860827][ T8274]  </TASK>
[  205.882207][ T8276] netlink: 192 bytes leftover after parsing attributes in process `syz.3.881'.
[  206.620391][ T8292] netlink: 61955 bytes leftover after parsing attributes in process `syz.0.886'.
[  206.760928][ T8298] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  206.781293][ T8298] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  207.212154][ T8307] validate_nla: 3 callbacks suppressed
[  207.212173][ T8307] netlink: 'syz.2.890': attribute type 25 has an invalid length.
[  207.257176][ T8307] netlink: 'syz.2.890': attribute type 1 has an invalid length.
[  207.278343][ T8307] bridge0: port 1(bridge_slave_0) entered learning state
[  208.050032][ T8321] netlink: 'syz.0.904': attribute type 4 has an invalid length.
[  208.142718][ T8325] FAULT_INJECTION: forcing a failure.
[  208.142718][ T8325] name failslab, interval 1, probability 0, space 0, times 0
[  208.185781][ T8325] CPU: 0 PID: 8325 Comm: syz.2.897 Not tainted syzkaller #0
[  208.193169][ T8325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  208.203270][ T8325] Call Trace:
[  208.206587][ T8325]  <TASK>
[  208.209550][ T8325]  dump_stack_lvl+0x16c/0x230
[  208.214266][ T8325]  ? __sctp_connect+0x5a2/0xd20
[  208.219172][ T8325]  ? do_sock_setsockopt+0x175/0x1a0
[  208.224430][ T8325]  ? show_regs_print_info+0x20/0x20
[  208.229690][ T8325]  ? load_image+0x3b0/0x3b0
[  208.234289][ T8325]  should_fail_ex+0x39d/0x4d0
[  208.239041][ T8325]  should_failslab+0x9/0x20
[  208.243684][ T8325]  slab_pre_alloc_hook+0x59/0x310
[  208.248768][ T8325]  ? sctp_add_bind_addr+0x8c/0x360
[  208.253935][ T8325]  __kmem_cache_alloc_node+0x53/0x260
[  208.259376][ T8325]  ? sctp_add_bind_addr+0x8c/0x360
[  208.264563][ T8325]  kmalloc_trace+0x2a/0xe0
[  208.269060][ T8325]  sctp_add_bind_addr+0x8c/0x360
[  208.274065][ T8325]  sctp_copy_local_addr_list+0x30c/0x4e0
[  208.279759][ T8325]  ? sctp_copy_local_addr_list+0x9c/0x4e0
[  208.285530][ T8325]  ? sctp_do_8_2_transport_strike+0x8b0/0x8b0
[  208.291653][ T8325]  ? sctp_v4_is_any+0x35/0x60
[  208.296366][ T8325]  ? sctp_copy_one_addr+0x8c/0x350
[  208.301539][ T8325]  sctp_bind_addr_copy+0x189/0x3c0
[  208.306722][ T8325]  sctp_connect_new_asoc+0x2da/0x690
[  208.312059][ T8325]  ? __sctp_connect+0xd20/0xd20
[  208.316981][ T8325]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  208.322998][ T8325]  ? sctp_endpoint_lookup_assoc+0xd1/0x260
[  208.328879][ T8325]  __sctp_connect+0x5a2/0xd20
[  208.333662][ T8325]  ? sctp_send_asconf+0x170/0x170
[  208.338727][ T8325]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  208.344329][ T8325]  ? sctp_setsockopt_connectx_old+0xbc/0x160
[  208.350364][ T8325]  sctp_setsockopt+0x458/0x11e0
[  208.355263][ T8325]  ? sock_common_recvmsg+0x1b0/0x1b0
[  208.360606][ T8325]  do_sock_setsockopt+0x175/0x1a0
[  208.365671][ T8325]  ? __fdget+0x180/0x210
[  208.369964][ T8325]  __x64_sys_setsockopt+0x184/0x200
[  208.375222][ T8325]  do_syscall_64+0x55/0xb0
[  208.379683][ T8325]  ? clear_bhb_loop+0x40/0x90
[  208.384390][ T8325]  ? clear_bhb_loop+0x40/0x90
[  208.389112][ T8325]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.395042][ T8325] RIP: 0033:0x7f003a58ebe9
[  208.399498][ T8325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.419168][ T8325] RSP: 002b:00007f003b460038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  208.427640][ T8325] RAX: ffffffffffffffda RBX: 00007f003a7c5fa0 RCX: 00007f003a58ebe9
[  208.435641][ T8325] RDX: 000000000000006b RSI: 0000000000000084 RDI: 0000000000000005
[  208.443643][ T8325] RBP: 00007f003b460090 R08: 0000000000000010 R09: 0000000000000000
[  208.451643][ T8325] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000002
[  208.459670][ T8325] R13: 00007f003a7c6038 R14: 00007f003a7c5fa0 R15: 00007ffc0df506e8
[  208.467742][ T8325]  </TASK>
[  208.970324][ T8338] __nla_validate_parse: 6 callbacks suppressed
[  208.970343][ T8338] netlink: 61955 bytes leftover after parsing attributes in process `syz.3.900'.
[  208.999336][ T8338] netlink: 1 bytes leftover after parsing attributes in process `syz.3.900'.
[  209.029076][ T8341] netlink: 'syz.0.902': attribute type 4 has an invalid length.
[  209.073409][ T8341] netlink: 152 bytes leftover after parsing attributes in process `syz.0.902'.
[  210.203348][ T8356] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  210.215293][ T8356] batman_adv: batadv0: Removing interface: batadv_slave_0
[  210.274165][ T8356] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  210.301986][ T8356] batman_adv: batadv0: Removing interface: batadv_slave_1
[  210.614835][ T8368] wg2: left allmulticast mode
[  210.638877][ T8366] netlink: 'syz.2.913': attribute type 4 has an invalid length.
[  210.660174][ T8366] netlink: 152 bytes leftover after parsing attributes in process `syz.2.913'.
[  210.848274][ T8370] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.915'.
[  210.875397][ T8370] netlink: 1 bytes leftover after parsing attributes in process `syz.1.915'.
[  210.958077][ T8356] syz.0.908 (8356) used greatest stack depth: 18280 bytes left
[  211.037012][ T8373] netlink: 'syz.2.917': attribute type 4 has an invalid length.
[  211.076396][ T8373] netlink: 152 bytes leftover after parsing attributes in process `syz.2.917'.
[  211.708027][ T8385] netlink: 'syz.3.920': attribute type 25 has an invalid length.
[  211.726869][ T8385] netlink: 'syz.3.920': attribute type 1 has an invalid length.
[  211.765168][ T8385] bridge0: port 1(bridge_slave_0) entered learning state
[  212.479371][ T8398] netlink: 'syz.1.925': attribute type 4 has an invalid length.
[  212.492262][ T8398] netlink: 152 bytes leftover after parsing attributes in process `syz.1.925'.
[  212.743146][ T8406] netlink: 'syz.3.928': attribute type 1 has an invalid length.
[  212.815220][ T8411] netlink: 'syz.1.930': attribute type 4 has an invalid length.
[  212.818659][ T8406] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.928'.
[  212.894472][ T8411] netlink: 152 bytes leftover after parsing attributes in process `syz.1.930'.
[  212.945387][ T8408] netlink: 'syz.3.928': attribute type 1 has an invalid length.
[  213.065329][ T8409] netlink: 'syz.0.929': attribute type 25 has an invalid length.
[  213.105995][ T8409] netlink: 'syz.0.929': attribute type 1 has an invalid length.
[  213.122179][ T8409] bridge0: port 1(bridge_slave_0) entered learning state
[  213.137248][ T8402] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  213.170417][ T8402] batman_adv: batadv0: Removing interface: batadv_slave_0
[  213.356895][ T8402] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  213.364692][ T8402] batman_adv: batadv0: Removing interface: batadv_slave_1
[  213.727084][ T8423] netlink: 'syz.0.932': attribute type 25 has an invalid length.
[  213.754818][ T8423] netlink: 'syz.0.932': attribute type 1 has an invalid length.
[  213.769656][ T8423] bridge0: port 1(bridge_slave_0) entered learning state
[  214.094408][ T8436] FAULT_INJECTION: forcing a failure.
[  214.094408][ T8436] name failslab, interval 1, probability 0, space 0, times 0
[  214.157519][ T8436] CPU: 0 PID: 8436 Comm: syz.0.937 Not tainted syzkaller #0
[  214.164869][ T8436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  214.174950][ T8436] Call Trace:
[  214.178249][ T8436]  <TASK>
[  214.181193][ T8436]  dump_stack_lvl+0x16c/0x230
[  214.185888][ T8436]  ? show_regs_print_info+0x20/0x20
[  214.191106][ T8436]  ? load_image+0x3b0/0x3b0
[  214.195622][ T8436]  ? __might_sleep+0xe0/0xe0
[  214.200220][ T8436]  ? __lock_acquire+0x7c80/0x7c80
[  214.205239][ T8436]  should_fail_ex+0x39d/0x4d0
[  214.209913][ T8436]  should_failslab+0x9/0x20
[  214.214406][ T8436]  slab_pre_alloc_hook+0x59/0x310
[  214.219424][ T8436]  ? sock_kmalloc+0x96/0xf0
[  214.223978][ T8436]  ? sock_kmalloc+0x96/0xf0
[  214.228471][ T8436]  __kmem_cache_alloc_node+0x53/0x260
[  214.233839][ T8436]  ? __ipv6_chk_addr_and_flags+0x5d6/0x6b0
[  214.239635][ T8436]  ? sock_kmalloc+0x96/0xf0
[  214.244123][ T8436]  __kmalloc+0xa4/0x240
[  214.248293][ T8436]  sock_kmalloc+0x96/0xf0
[  214.252613][ T8436]  ipv6_sock_ac_join+0x253/0x6c0
[  214.257549][ T8436]  ? _copy_from_user+0xa5/0xe0
[  214.262307][ T8436]  do_ipv6_setsockopt+0x1ed8/0x3c30
[  214.267512][ T8436]  ? sk_dst_reset+0xa0/0xa0
[  214.272001][ T8436]  ? mark_lock+0x94/0x320
[  214.276320][ T8436]  ? __lock_acquire+0x1260/0x7c80
[  214.281379][ T8436]  ? mark_lock+0x94/0x320
[  214.285727][ T8436]  ? __lock_acquire+0x1260/0x7c80
[  214.290777][ T8436]  ? mark_lock+0x94/0x320
[  214.295101][ T8436]  ? __lock_acquire+0x1260/0x7c80
[  214.300128][ T8436]  ? aa_label_sk_perm+0x3ec/0x500
[  214.305150][ T8436]  ? aa_sk_perm+0x930/0x930
[  214.309653][ T8436]  ? trace_call_bpf+0xc3/0x690
[  214.314409][ T8436]  ? __might_sleep+0xe0/0xe0
[  214.318993][ T8436]  ? trace_call_bpf+0x5ba/0x690
[  214.323845][ T8436]  ipv6_setsockopt+0x59/0x190
[  214.328532][ T8436]  dccp_setsockopt+0x160/0x830
[  214.333286][ T8436]  ? aa_af_perm+0x2b0/0x2b0
[  214.337783][ T8436]  ? dccp_ioctl+0x200/0x200
[  214.342292][ T8436]  ? __fget_files+0x28/0x4d0
[  214.346891][ T8436]  ? aa_sock_opt_perm+0x74/0x100
[  214.351836][ T8436]  ? sock_common_setsockopt+0x36/0xc0
[  214.357230][ T8436]  ? sock_common_recvmsg+0x1b0/0x1b0
[  214.362530][ T8436]  do_sock_setsockopt+0x175/0x1a0
[  214.367560][ T8436]  ? __fdget+0x180/0x210
[  214.371824][ T8436]  __x64_sys_setsockopt+0x184/0x200
[  214.377018][ T8436]  do_syscall_64+0x55/0xb0
[  214.381437][ T8436]  ? clear_bhb_loop+0x40/0x90
[  214.386115][ T8436]  ? clear_bhb_loop+0x40/0x90
[  214.390797][ T8436]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  214.396683][ T8436] RIP: 0033:0x7fead6f8ebe9
[  214.401085][ T8436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.420734][ T8436] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  214.429148][ T8436] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  214.437553][ T8436] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000003
[  214.445508][ T8436] RBP: 00007fead7dbf090 R08: 0000000000000120 R09: 0000000000000000
[  214.453462][ T8436] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  214.461421][ T8436] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  214.469407][ T8436]  </TASK>
[  214.493625][ T8439] netlink: 'syz.2.939': attribute type 4 has an invalid length.
[  214.503657][ T8439] __nla_validate_parse: 1 callbacks suppressed
[  214.503672][ T8439] netlink: 152 bytes leftover after parsing attributes in process `syz.2.939'.
[  214.681059][ T8442] netlink: 'syz.0.940': attribute type 25 has an invalid length.
[  214.705551][ T8442] bridge0: port 1(bridge_slave_0) entered learning state
[  215.030309][ T8454] netlink: 152 bytes leftover after parsing attributes in process `syz.3.943'.
[  215.661786][ T8459] netlink: 61955 bytes leftover after parsing attributes in process `syz.0.953'.
[  215.683393][ T8459] netlink: 1 bytes leftover after parsing attributes in process `syz.0.953'.
[  216.044560][ T8465] batman_adv: batadv0: Removing interface: team0
[  216.127897][ T8465] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  216.157721][ T8465] batman_adv: batadv0: Removing interface: batadv_slave_0
[  216.199840][ T8465] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  216.241053][ T8465] batman_adv: batadv0: Removing interface: batadv_slave_1
[  216.559658][ T8481] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.952'.
[  216.582795][ T8481] netlink: 1 bytes leftover after parsing attributes in process `syz.2.952'.
[  216.678357][ T8484] bridge0: port 1(bridge_slave_0) entered learning state
[  216.791247][ T8488] netlink: 152 bytes leftover after parsing attributes in process `syz.0.956'.
[  216.897500][ T8490] bridge0: port 1(bridge_slave_0) entered learning state
[  217.038578][ T8492] netlink: 152 bytes leftover after parsing attributes in process `syz.1.958'.
[  217.212353][ T8498] netlink: 64859 bytes leftover after parsing attributes in process `syz.3.960'.
[  217.273710][ T8501] netlink: 192 bytes leftover after parsing attributes in process `syz.2.961'.
[  218.043654][ T8520] validate_nla: 8 callbacks suppressed
[  218.043671][ T8520] netlink: 'syz.0.968': attribute type 4 has an invalid length.
[  218.191465][ T8518] syzkaller0: entered promiscuous mode
[  218.222493][ T8518] syzkaller0: entered allmulticast mode
[  218.616928][ T8535] FAULT_INJECTION: forcing a failure.
[  218.616928][ T8535] name failslab, interval 1, probability 0, space 0, times 0
[  218.655840][ T8535] CPU: 1 PID: 8535 Comm: syz.0.972 Not tainted syzkaller #0
[  218.663206][ T8535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  218.673290][ T8535] Call Trace:
[  218.676596][ T8535]  <TASK>
[  218.679537][ T8535]  dump_stack_lvl+0x16c/0x230
[  218.684241][ T8535]  ? show_regs_print_info+0x20/0x20
[  218.689462][ T8535]  ? load_image+0x3b0/0x3b0
[  218.694002][ T8535]  ? __might_sleep+0xe0/0xe0
[  218.698689][ T8535]  ? __lock_acquire+0x7c80/0x7c80
[  218.703753][ T8535]  should_fail_ex+0x39d/0x4d0
[  218.708465][ T8535]  should_failslab+0x9/0x20
[  218.713009][ T8535]  slab_pre_alloc_hook+0x59/0x310
[  218.718069][ T8535]  ? __lock_acquire+0x7c80/0x7c80
[  218.723115][ T8535]  kmem_cache_alloc_node+0x60/0x330
[  218.728339][ T8535]  ? __alloc_skb+0x108/0x2c0
[  218.732971][ T8535]  __alloc_skb+0x108/0x2c0
[  218.737419][ T8535]  netlink_sendmsg+0x65b/0xbe0
[  218.742269][ T8535]  ? netlink_getsockopt+0x580/0x580
[  218.747500][ T8535]  ? aa_sock_msg_perm+0x94/0x150
[  218.752464][ T8535]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  218.757770][ T8535]  ? security_socket_sendmsg+0x80/0xa0
[  218.763244][ T8535]  ? netlink_getsockopt+0x580/0x580
[  218.768455][ T8535]  ____sys_sendmsg+0x5bf/0x950
[  218.773227][ T8535]  ? __asan_memset+0x22/0x40
[  218.777811][ T8535]  ? __sys_sendmsg_sock+0x30/0x30
[  218.782841][ T8535]  ? __import_iovec+0x5f2/0x860
[  218.787782][ T8535]  ? import_iovec+0x73/0xa0
[  218.792300][ T8535]  ___sys_sendmsg+0x220/0x290
[  218.796984][ T8535]  ? __sys_sendmsg+0x270/0x270
[  218.801759][ T8535]  ? __lock_acquire+0x7c80/0x7c80
[  218.806796][ T8535]  __se_sys_sendmsg+0x1a5/0x270
[  218.811654][ T8535]  ? __x64_sys_sendmsg+0x80/0x80
[  218.816599][ T8535]  ? lockdep_hardirqs_on+0x98/0x150
[  218.821793][ T8535]  do_syscall_64+0x55/0xb0
[  218.826209][ T8535]  ? clear_bhb_loop+0x40/0x90
[  218.830876][ T8535]  ? clear_bhb_loop+0x40/0x90
[  218.835542][ T8535]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  218.841435][ T8535] RIP: 0033:0x7fead6f8ebe9
[  218.845843][ T8535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.866328][ T8535] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.874746][ T8535] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  218.882787][ T8535] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  218.890977][ T8535] RBP: 00007fead7dbf090 R08: 0000000000000000 R09: 0000000000000000
[  218.898997][ T8535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.907166][ T8535] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  218.915305][ T8535]  </TASK>
[  221.078427][ T8537] netlink: 'syz.3.974': attribute type 4 has an invalid length.
[  221.086395][ T8537] __nla_validate_parse: 4 callbacks suppressed
[  221.086403][ T8537] netlink: 152 bytes leftover after parsing attributes in process `syz.3.974'.
[  221.123433][ T8551] netlink: 61955 bytes leftover after parsing attributes in process `syz.0.977'.
[  221.143475][ T8551] netlink: 1 bytes leftover after parsing attributes in process `syz.0.977'.
[  221.536086][ T8560] netlink: 'syz.2.980': attribute type 25 has an invalid length.
[  221.566292][ T8560] netlink: 'syz.2.980': attribute type 1 has an invalid length.
[  221.574182][ T8560] bridge0: port 1(bridge_slave_0) entered learning state
[  221.724305][ T8570] netlink: 192 bytes leftover after parsing attributes in process `syz.3.982'.
[  222.015524][ T8579] netlink: 'syz.2.985': attribute type 4 has an invalid length.
[  222.031721][ T8579] netlink: 152 bytes leftover after parsing attributes in process `syz.2.985'.
[  222.105549][ T8581] netlink: 'syz.1.986': attribute type 4 has an invalid length.
[  222.154019][ T8581] netlink: 152 bytes leftover after parsing attributes in process `syz.1.986'.
[  222.488375][ T8596] netlink: 61955 bytes leftover after parsing attributes in process `syz.3.989'.
[  222.510327][ T8596] netlink: 1 bytes leftover after parsing attributes in process `syz.3.989'.
[  222.522307][ T8595] C: renamed from team_slave_0 (while UP)
[  222.531470][ T8595] netlink: 'syz.0.990': attribute type 3 has an invalid length.
[  222.554010][ T8595] netlink: 128 bytes leftover after parsing attributes in process `syz.0.990'.
[  222.566950][ T8595] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  222.618005][ T8598] netlink: 'syz.2.992': attribute type 25 has an invalid length.
[  222.636349][ T8598] netlink: 'syz.2.992': attribute type 1 has an invalid length.
[  222.653983][ T8598] bridge0: port 1(bridge_slave_0) entered learning state
[  222.691648][ T8601] netlink: 192 bytes leftover after parsing attributes in process `syz.3.993'.
[  222.989694][ T8613] netlink: 'syz.2.997': attribute type 4 has an invalid length.
[  223.164170][ T8619] FAULT_INJECTION: forcing a failure.
[  223.164170][ T8619] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.219242][ T8619] CPU: 1 PID: 8619 Comm: syz.2.1000 Not tainted syzkaller #0
[  223.226770][ T8619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  223.236856][ T8619] Call Trace:
[  223.240171][ T8619]  <TASK>
[  223.243129][ T8619]  dump_stack_lvl+0x16c/0x230
[  223.247867][ T8619]  ? show_regs_print_info+0x20/0x20
[  223.253100][ T8619]  ? load_image+0x3b0/0x3b0
[  223.257638][ T8619]  ? __lock_acquire+0x7c80/0x7c80
[  223.262705][ T8619]  ? snprintf+0xdb/0x120
[  223.266987][ T8619]  should_fail_ex+0x39d/0x4d0
[  223.271713][ T8619]  _copy_to_user+0x2f/0xa0
[  223.276166][ T8619]  simple_read_from_buffer+0xe7/0x150
[  223.281584][ T8619]  proc_fail_nth_read+0x1e3/0x250
[  223.286694][ T8619]  ? proc_fault_inject_write+0x340/0x340
[  223.292367][ T8619]  ? fsnotify_perm+0x271/0x5e0
[  223.297171][ T8619]  ? proc_fault_inject_write+0x340/0x340
[  223.302833][ T8619]  vfs_read+0x27e/0x920
[  223.307038][ T8619]  ? kernel_read+0x1e0/0x1e0
[  223.311703][ T8619]  ? __fget_files+0x28/0x4d0
[  223.316320][ T8619]  ? __fget_files+0x44a/0x4d0
[  223.321045][ T8619]  ? __fdget_pos+0x2a3/0x330
[  223.325660][ T8619]  ? ksys_read+0x75/0x250
[  223.330013][ T8619]  ksys_read+0x147/0x250
[  223.334304][ T8619]  ? vfs_write+0x940/0x940
[  223.338760][ T8619]  ? lockdep_hardirqs_on+0x98/0x150
[  223.344003][ T8619]  do_syscall_64+0x55/0xb0
[  223.348459][ T8619]  ? clear_bhb_loop+0x40/0x90
[  223.353169][ T8619]  ? clear_bhb_loop+0x40/0x90
[  223.357875][ T8619]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.363813][ T8619] RIP: 0033:0x7f003a58d5fc
[  223.368255][ T8619] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  223.387951][ T8619] RSP: 002b:00007f003b460030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  223.396404][ T8619] RAX: ffffffffffffffda RBX: 00007f003a7c5fa0 RCX: 00007f003a58d5fc
[  223.404411][ T8619] RDX: 000000000000000f RSI: 00007f003b4600a0 RDI: 0000000000000007
[  223.412414][ T8619] RBP: 00007f003b460090 R08: 0000000000000000 R09: 0000000000000000
[  223.420489][ T8619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.428675][ T8619] R13: 00007f003a7c6038 R14: 00007f003a7c5fa0 R15: 00007ffc0df506e8
[  223.436697][ T8619]  </TASK>
[  223.447123][ T8617] bridge0: port 3(batadv0) entered disabled state
[  223.448480][ T8620] syz.3.999[8620] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.453769][ T8620] syz.3.999[8620] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.454132][ T8617] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.485493][ T8617] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.504396][ T8617] bridge0: entered allmulticast mode
[  223.845774][ T8633] netlink: 'syz.0.1004': attribute type 25 has an invalid length.
[  223.854288][ T8633] netlink: 'syz.0.1004': attribute type 1 has an invalid length.
[  223.881843][ T8633] bridge0: port 1(bridge_slave_0) entered learning state
[  224.196093][ T8644] netlink: 'syz.0.1007': attribute type 4 has an invalid length.
[  224.353379][ T8652] netlink: 'syz.2.1009': attribute type 4 has an invalid length.
[  225.515521][ T8669] netlink: 'syz.0.1016': attribute type 25 has an invalid length.
[  225.523960][ T8669] netlink: 'syz.0.1016': attribute type 1 has an invalid length.
[  225.536611][ T8669] bridge0: port 1(bridge_slave_0) entered learning state
[  225.620275][ T8666] netlink: 'syz.3.1015': attribute type 10 has an invalid length.
[  226.243878][ T8666] 8021q: adding VLAN 0 to HW filter on device 
[  226.327778][ T8666] team0: Port device  added
[  226.457662][ T8671] __nla_validate_parse: 6 callbacks suppressed
[  226.457679][ T8671] netlink: 61955 bytes leftover after parsing attributes in process `syz.2.1014'.
[  226.503181][ T8671] netlink: 1 bytes leftover after parsing attributes in process `syz.2.1014'.
[  226.520214][ T8677] FAULT_INJECTION: forcing a failure.
[  226.520214][ T8677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  226.564333][ T8677] CPU: 1 PID: 8677 Comm: syz.0.1018 Not tainted syzkaller #0
[  226.571776][ T8677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  226.581853][ T8677] Call Trace:
[  226.585146][ T8677]  <TASK>
[  226.588091][ T8677]  dump_stack_lvl+0x16c/0x230
[  226.592805][ T8677]  ? show_regs_print_info+0x20/0x20
[  226.598031][ T8677]  ? load_image+0x3b0/0x3b0
[  226.602555][ T8677]  ? __might_fault+0xaa/0x120
[  226.607253][ T8677]  ? __lock_acquire+0x7c80/0x7c80
[  226.612298][ T8677]  should_fail_ex+0x39d/0x4d0
[  226.617001][ T8677]  _copy_to_user+0x2f/0xa0
[  226.621446][ T8677]  bpf_verifier_vlog+0x2fa/0x870
[  226.626431][ T8677]  __btf_verifier_log_type+0x472/0x620
[  226.632023][ T8677]  ? btf_int_show+0x2890/0x2890
[  226.636897][ T8677]  ? rcu_is_watching+0x15/0xb0
[  226.641685][ T8677]  ? __kmalloc_node+0xe2/0x230
[  226.646483][ T8677]  btf_parse_type_sec+0x186f/0x1930
[  226.651723][ T8677]  ? btf_verifier_log+0x180/0x180
[  226.656787][ T8677]  btf_new_fd+0x41c/0x980
[  226.661155][ T8677]  ? bpf_btf_show_fdinfo+0x80/0x80
[  226.666299][ T8677]  ? capable+0x88/0xe0
[  226.670406][ T8677]  __sys_bpf+0x60e/0x800
[  226.674671][ T8677]  ? bpf_link_show_fdinfo+0x350/0x350
[  226.680073][ T8677]  ? lock_chain_count+0x20/0x20
[  226.684955][ T8677]  __x64_sys_bpf+0x7c/0x90
[  226.689396][ T8677]  do_syscall_64+0x55/0xb0
[  226.693846][ T8677]  ? clear_bhb_loop+0x40/0x90
[  226.698560][ T8677]  ? clear_bhb_loop+0x40/0x90
[  226.703260][ T8677]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  226.709183][ T8677] RIP: 0033:0x7fead6f8ebe9
[  226.713614][ T8677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.733241][ T8677] RSP: 002b:00007fead7dbf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  226.741685][ T8677] RAX: ffffffffffffffda RBX: 00007fead71c5fa0 RCX: 00007fead6f8ebe9
[  226.749681][ T8677] RDX: 0000000000000028 RSI: 0000200000000040 RDI: 0000000000000012
[  226.757740][ T8677] RBP: 00007fead7dbf090 R08: 0000000000000000 R09: 0000000000000000
[  226.765732][ T8677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  226.773722][ T8677] R13: 00007fead71c6038 R14: 00007fead71c5fa0 R15: 00007ffdc3876ce8
[  226.781731][ T8677]  </TASK>
[  226.816679][ T8681] netlink: 192 bytes leftover after parsing attributes in process `syz.1.1019'.
[  226.853466][ T8666] syz.3.1015 (8666) used greatest stack depth: 17032 bytes left
[  226.861332][ T8680] netlink: 'syz.2.1020': attribute type 4 has an invalid length.
[  226.878186][ T8680] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1020'.
[  227.185584][ T8689] netlink: 'syz.2.1024': attribute type 4 has an invalid length.
[  227.205237][ T8689] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1024'.
[  227.437517][ T8688] netlink: 'syz.0.1025': attribute type 21 has an invalid length.
[  227.475888][ T8688] IPv6: NLM_F_CREATE should be specified when creating new route
[  227.927150][ T8688] ------------[ cut here ]------------
[  227.932686][ T8688] WARNING: CPU: 0 PID: 8688 at kernel/events/core.c:6806 perf_pending_task+0x35c/0x470
[  227.942835][ T8688] Modules linked in:
[  227.946858][ T8688] CPU: 0 PID: 8688 Comm: syz.0.1025 Not tainted syzkaller #0
[  227.946915][ T8703] netlink: 61955 bytes leftover after parsing attributes in process `syz.1.1029'.
[  227.954241][ T8688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  227.954258][ T8688] RIP: 0010:perf_pending_task+0x35c/0x470
[  227.954287][ T8688] Code: ff 84 db 75 14 e8 84 4b d6 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 4b d6 ff e8 eb 57 51 ff eb e5 e8 64 4b d6 ff <0f> 0b e9 f3 fe ff ff e8 58 4b d6 ff 48 c7 c7 30 d2 dc 8c 4c 89 f6
[  227.954303][ T8688] RSP: 0018:ffffc90003227a00 EFLAGS: 00010293
[  227.954324][ T8688] RAX: ffffffff81af443c RBX: ffff88802deb96b0 RCX: ffff88807d985a00
[  227.954338][ T8688] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  227.954350][ T8688] RBP: 0000000000000001 R08: ffffffff8e4a8f2f R09: 1ffffffff1c951e5
[  227.954363][ T8688] R10: dffffc0000000000 R11: fffffbfff1c951e6 R12: ffff88807d985a00
[  227.954377][ T8688] R13: ffff88805bc29530 R14: ffff88802deb9470 R15: 1ffff11005bd728e
[  227.954392][ T8688] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  227.954408][ T8688] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  227.954421][ T8688] CR2: 000000110c347e4f CR3: 0000000023b94000 CR4: 00000000003506f0
[  227.954438][ T8688] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  227.954450][ T8688] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  227.954462][ T8688] Call Trace:
[  227.954472][ T8688]  <TASK>
[  227.954489][ T8688]  task_work_run+0x1ce/0x250
[  227.954518][ T8688]  ? task_work_cancel+0x240/0x240
[  227.954552][ T8688]  do_exit+0x90b/0x23c0
[  227.954581][ T8688]  ? get_signal+0x1068/0x1400
[  227.954609][ T8688]  ? put_task_struct+0xc0/0xc0
[  227.954637][ T8688]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  227.954657][ T8688]  ? get_signal+0x1068/0x1400
[  227.954682][ T8688]  ? lock_chain_count+0x20/0x20
[  227.954703][ T8688]  ? _raw_spin_lock_irq+0xaf/0xe0
[  227.954732][ T8688]  do_group_exit+0x21b/0x2d0
[  227.954755][ T8688]  ? lockdep_hardirqs_on+0x98/0x150
[  227.954784][ T8688]  get_signal+0x12fc/0x1400
[  227.954833][ T8688]  arch_do_signal_or_restart+0x96/0x780
[  227.954857][ T8688]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  227.954880][ T8688]  ? get_sigframe_size+0x20/0x20
[  227.954922][ T8688]  ? exit_to_user_mode_loop+0x3b/0x110
[  227.954969][ T8688]  exit_to_user_mode_loop+0x70/0x110
[  227.954994][ T8688]  exit_to_user_mode_prepare+0xb1/0x140
[  227.955018][ T8688]  syscall_exit_to_user_mode+0x1a/0x50
[  227.955042][ T8688]  do_syscall_64+0x61/0xb0
[  227.955067][ T8688]  ? clear_bhb_loop+0x40/0x90
[  227.955085][ T8688]  ? clear_bhb_loop+0x40/0x90
[  227.955105][ T8688]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  227.955129][ T8688] RIP: 0033:0x7fead6f8ebe9
[  227.955146][ T8688] Code: Unable to access opcode bytes at 0x7fead6f8ebbf.
[  227.955156][ T8688] RSP: 002b:00007fead7dbf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  227.955177][ T8688] RAX: fffffffffffffe00 RBX: 00007fead71c5fa8 RCX: 00007fead6f8ebe9
[  227.955191][ T8688] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fead71c5fa8
[  227.955204][ T8688] RBP: 00007fead71c5fa0 R08: 0000000000000000 R09: 0000000000000000
[  227.955216][ T8688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.955227][ T8688] R13: 00007fead71c6038 R14: 00007ffdc3876c00 R15: 00007ffdc3876ce8
[  227.955259][ T8688]  </TASK>
[  227.955269][ T8688] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  227.955279][ T8688] CPU: 0 PID: 8688 Comm: syz.0.1025 Not tainted syzkaller #0
[  227.955294][ T8688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  227.955303][ T8688] Call Trace:
[  227.955309][ T8688]  <TASK>
[  227.955315][ T8688]  dump_stack_lvl+0x16c/0x230
[  227.955338][ T8688]  ? show_regs_print_info+0x20/0x20
[  227.955357][ T8688]  ? load_image+0x3b0/0x3b0
[  227.955388][ T8688]  panic+0x2c0/0x710
[  227.955416][ T8688]  ? bpf_jit_dump+0xd0/0xd0
[  227.955458][ T8688]  __warn+0x2e0/0x470
[  227.955478][ T8688]  ? perf_pending_task+0x35c/0x470
[  227.955501][ T8688]  ? perf_pending_task+0x35c/0x470
[  227.955522][ T8688]  report_bug+0x2be/0x4f0
[  227.955542][ T8688]  ? perf_pending_task+0x35c/0x470
[  227.955564][ T8688]  ? perf_pending_task+0x35c/0x470
[  227.955585][ T8688]  ? perf_pending_task+0x35e/0x470
[  227.955606][ T8688]  handle_bug+0xcf/0x120
[  227.955626][ T8688]  exc_invalid_op+0x1a/0x50
[  227.955645][ T8688]  asm_exc_invalid_op+0x1a/0x20
[  227.955669][ T8688] RIP: 0010:perf_pending_task+0x35c/0x470
[  227.955686][ T8688] Code: ff 84 db 75 14 e8 84 4b d6 ff 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 4b d6 ff e8 eb 57 51 ff eb e5 e8 64 4b d6 ff <0f> 0b e9 f3 fe ff ff e8 58 4b d6 ff 48 c7 c7 30 d2 dc 8c 4c 89 f6
[  227.955697][ T8688] RSP: 0018:ffffc90003227a00 EFLAGS: 00010293
[  227.955711][ T8688] RAX: ffffffff81af443c RBX: ffff88802deb96b0 RCX: ffff88807d985a00
[  227.955723][ T8688] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  227.955732][ T8688] RBP: 0000000000000001 R08: ffffffff8e4a8f2f R09: 1ffffffff1c951e5
[  227.955742][ T8688] R10: dffffc0000000000 R11: fffffbfff1c951e6 R12: ffff88807d985a00
[  227.955753][ T8688] R13: ffff88805bc29530 R14: ffff88802deb9470 R15: 1ffff11005bd728e
[  227.955774][ T8688]  ? perf_pending_task+0x35c/0x470
[  227.955808][ T8688]  task_work_run+0x1ce/0x250
[  227.955832][ T8688]  ? task_work_cancel+0x240/0x240
[  227.955865][ T8688]  do_exit+0x90b/0x23c0
[  227.955891][ T8688]  ? get_signal+0x1068/0x1400
[  227.955915][ T8688]  ? put_task_struct+0xc0/0xc0
[  227.955942][ T8688]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  227.955960][ T8688]  ? get_signal+0x1068/0x1400
[  227.955983][ T8688]  ? lock_chain_count+0x20/0x20
[  227.956001][ T8688]  ? _raw_spin_lock_irq+0xaf/0xe0
[  227.956027][ T8688]  do_group_exit+0x21b/0x2d0
[  227.956048][ T8688]  ? lockdep_hardirqs_on+0x98/0x150
[  227.956079][ T8688]  get_signal+0x12fc/0x1400
[  227.956126][ T8688]  arch_do_signal_or_restart+0x96/0x780
[  227.956148][ T8688]  ? perf_trace_run_bpf_submit+0x125/0x1c0
[  227.956168][ T8688]  ? get_sigframe_size+0x20/0x20
[  227.956212][ T8688]  ? exit_to_user_mode_loop+0x3b/0x110
[  227.956237][ T8688]  exit_to_user_mode_loop+0x70/0x110
[  227.956260][ T8688]  exit_to_user_mode_prepare+0xb1/0x140
[  227.956282][ T8688]  syscall_exit_to_user_mode+0x1a/0x50
[  227.956303][ T8688]  do_syscall_64+0x61/0xb0
[  227.956320][ T8688]  ? clear_bhb_loop+0x40/0x90
[  227.956334][ T8688]  ? clear_bhb_loop+0x40/0x90
[  227.956352][ T8688]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  227.956373][ T8688] RIP: 0033:0x7fead6f8ebe9
[  227.956386][ T8688] Code: Unable to access opcode bytes at 0x7fead6f8ebbf.
[  227.956394][ T8688] RSP: 002b:00007fead7dbf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  227.956411][ T8688] RAX: fffffffffffffe00 RBX: 00007fead71c5fa8 RCX: 00007fead6f8ebe9
[  227.956422][ T8688] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fead71c5fa8
[  227.956433][ T8688] RBP: 00007fead71c5fa0 R08: 0000000000000000 R09: 0000000000000000
[  227.956443][ T8688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.956453][ T8688] R13: 00007fead71c6038 R14: 00007ffdc3876c00 R15: 00007ffdc3876ce8
[  227.956483][ T8688]  </TASK>
[  227.956762][ T8688] Kernel Offset: disabled