last executing test programs: 2.067880586s ago: executing program 0 (id=1848): bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x600, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080b01000000e8fe55a1180015000600142603600e120800180000000401040016000a00104006001000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f4d360000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0) 1.912275906s ago: executing program 1 (id=1850): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$kcm(0x10, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047438, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000180), 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x4, 0xa7, 0x1, 0x3, 0xffffffffffffffff, 0xee, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x5, 0xf}, 0x48) sendmsg$kcm(r0, 0x0, 0x0) 1.912078524s ago: executing program 0 (id=1851): r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b10000009500000000000000d6ac12c027fef3f0e6538dc608a2948c9b728040ecd453c71190c430f6f7de5b646ac719eae2b902d0bfb54955bc0227773920dd2f1bbd915a3fce3451141cdd1adccdad008b3b864adf3503c5fd8dac217020446671e5f714f0eb4cdc9e4da53c7d73736a65e747e6192dad458ded8ea6eb72efbcf2262624fcc8fb77a7ce4f07f2ccc742c6f189c06602252c8f89c1b0d1f6c1fd72e6f4729dc72daae6a309dc69ad41036284e414632ce0834afb2cbd70a6baa8a6a87959b65bd03a81fd3eba06242af5e1b64a65347b79745ef03d8d3a70db3439a0014043eaf8339bb546898de17e37eb11cea763502aebf61633f64dc466c369325758a6f658504b8eafca18b6f581f8129caef0e01fd544cfcbf192"], &(0x7f00000005c0)='GPL\x00'}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}, 0x0) 1.861292252s ago: executing program 3 (id=1853): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = socket$kcm(0x2, 0x5, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x801}]}]}}, &(0x7f0000000680)=""/4096, 0x32, 0x1000, 0x8}, 0x20) r1 = socket$kcm(0x2, 0x3, 0x106) sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x14, 0x11, 0x3, 0x0, [{@loopback}, {}]}]}}}], 0x28}, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(0xffffffffffffffff) recvmsg$unix(r2, 0x0, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000c00)=ANY=[@ANYRES8=r3], 0x12) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001200)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x5, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x1f2f, 0xf, 0x3ce, &(0x7f00000007c0)="9f44948721919580684010a486dd", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000202020c31af8ff51000000bfa100f30000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$sock_attach_bpf(r0, 0x84, 0x22, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x100}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, 0xffffffffffffffff) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) 1.813541337s ago: executing program 1 (id=1854): perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x6, 0xff, 0x42}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000080), 0x619, r0}, 0x38) 1.662852079s ago: executing program 0 (id=1857): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0) close(r0) r1 = socket$kcm(0x10, 0x0, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r0, 0x4) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c00)=@bpf_tracing={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0), 0x10}, 0x90) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000018000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f0000017f00000a0000000800"/28, @ANYRES32, @ANYBLOB="7f000001ac141400000000011c0e0000000000000000000007006fc946f1f569c01801"], 0x230}, 0x0) r2 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030029000b12d25a80648c2594f90124fc60100c03c000000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000210081044e81f782db44b90402", 0x11}], 0x1}, 0x0) socket$kcm(0x10, 0x2, 0x0) openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r3) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90) r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) socketpair(0x11, 0xa, 0x300, &(0x7f0000000000)) socketpair(0x11, 0xa, 0x300, &(0x7f0000000000)) 1.622472715s ago: executing program 3 (id=1858): bpf$MAP_LOOKUP_BATCH(0x1b, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000500)={@map=0x1, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080005300000000faff0000940000000fad413e550000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001380)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x8, 0x0, 0x0}}, 0x10) r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff000000"], &(0x7f00000005c0)='GPL\x00'}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5) r6 = socket$kcm(0x10, 0x2, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x7, &(0x7f0000002000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000001fc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = socket$kcm(0x11, 0x200000000000002, 0x300) setsockopt$sock_attach_bpf(r9, 0x1, 0x32, &(0x7f0000000900)=r8, 0x4) sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8", 0x1}], 0x1}, 0x0) r10 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r2}, 0x4) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)={@ifindex=r3, 0xffffffffffffffff, 0x18, 0x2c, 0x0, @link_fd=r10, r0}, 0x20) r11 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r11, 0x0) socket$kcm(0x2, 0x0, 0x84) close(r11) 1.556166701s ago: executing program 2 (id=1859): r0 = socket$kcm(0x11, 0x2, 0x0) close(r0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$OBJ_GET_MAP(0x7, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) socket$kcm(0x28, 0x0, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000d40)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x90) r2 = socket$kcm(0x11, 0x2, 0x0) r3 = socket$kcm(0x11, 0x200000000000002, 0x300) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r4, 0x0, 0x0) setsockopt$sock_attach_bpf(r3, 0x107, 0x12, &(0x7f00000000c0)=r2, 0x8) socket$kcm(0x11, 0x2, 0x0) socket$kcm(0x11, 0x200000000000002, 0x300) r5 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r5, 0x107, 0x12, 0x0, 0x0) 1.543006825s ago: executing program 1 (id=1860): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90) close(r0) r1 = socket$kcm(0x2, 0x200000000000001, 0x0) sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20) recvmsg(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f00000001c0)=""/34, 0x22}], 0x1}, 0x0) 1.447590981s ago: executing program 4 (id=1861): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600073582c137153e37020c188005ac0f000300", 0x2e}], 0x1, 0x0, 0x0, 0x8100000}, 0x0) 1.292323621s ago: executing program 4 (id=1862): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = socket$kcm(0x2, 0x5, 0x84) setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000000), 0xe) sendmsg$inet(r0, &(0x7f00000075c0)={&(0x7f0000001080)={0x2, 0x0, @remote}, 0x10, &(0x7f00000074c0)=[{&(0x7f00000001c0)="9b", 0x1}], 0x1}, 0x0) (fail_nth: 30) 969.128618ms ago: executing program 2 (id=1863): r0 = socket$kcm(0x2, 0x5, 0x84) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000002880)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000048500000082000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0x0, 0x10, 0x10, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) setsockopt$sock_attach_bpf(r0, 0x84, 0x13, 0x0, 0x0) 906.989923ms ago: executing program 4 (id=1864): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$kcm(0x10, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047438, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000180), 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x4, 0xa7, 0x1, 0x3, 0xffffffffffffffff, 0xee, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x5, 0xf}, 0x48) sendmsg$kcm(r0, 0x0, 0x0) 836.124297ms ago: executing program 0 (id=1865): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2}) (async) r1 = socket$kcm(0x2, 0x1000000000000002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x4, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85000000080000006a0a00ff000000002e00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="100000000000002505000000000000009500000000000e00"], &(0x7f0000000140)='GPL\x00', 0x2, 0xb, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d) (async) sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000080)={0x2, 0x4e20, @private=0xa010101}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000100)}], 0x1, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x29}, @multicast2}}}], 0x20}, 0x0) (async) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000e80)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000702000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000400000006a0a80fe000000008500000053000000b7000000000000009500001000000000a80501363034fdb117168bd07ba00af739d1a1ee35fe163a255c33282044b32495ef8ab9adc67ccc945f105d802f5132143c0a9fc7a84452569957c1002ed7d4d8e17f791f4798c8eb483e9973320d046c3126c6afcfd84de03352c69b3edff5be26765ba5f8f2879021c2ea53ea79acd7fb38dd1abb75aa393cea26d465637d11f705000000473e7b7c4ae7dd5e4dee88518ddf12dddd4bfc6a4dd3b6beba51074229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba7de26ff2357ef17f95a25780c3a057844f226ef4e912f01a201e694e3806e8c70e8b69524cd19f7525d8d66bb766f7f3f918c86a70252236800001897133af94a5a4cfc794d8b9d7c33632152c48eaf302f0b2e0c252b00000000000000006f1bbefbe08de65e3762e194ba4cae8b13535d7d11ee917bca4885bbf597a14ab2458efce78510d86272d88e0c8088f404f011289ebc5623faa1182632161e073af1d69a2e36bed435000025ecd201d2ffb0a7fa4f5d11060cdcf071defd0a8be3b69ce3e4f361aca75827426dde87fdf4617222674280f55e98107450c19b9d86329bd5b4697336112b0b8754ce3574046bf6114d1a88597850b77378fa8edfff8faf8b8ec039bab385cac0535373bb8fab90539b1a65ddff841eb671f3faf37ebdfccea0c002ad2b42047c9ec43193ccf617dbf8a12b4f189edbf9fb7c42b1f435ccd4d96822e6b70100912c92e3943e9c4f45d8bcd528fa8a3ea847f10e9b2506f3bb506f1d7fbdf8010000000000a073d0de5538ab42e170b3baae34c35987b0dda497ac3f5e97e6e6aeea15c6d5ed24310100000003bb6030f84b63aaf8690db0221b1705c501f802ff59b4e683efa4b6e77e042072bd2ac37d413008ec9eb8166f6e28b49a77ed91befc65315896f88a8fb1dd679fb4c515f8b7a5b7aca6a251a89d47b728502f7e621cc0e3ba04000000c149ee6601728c750d304197c22da8650579475afd96187d881e93b42a5fdfd686d8900c44c67133dad58037fda65885a15a429edfe3027a5ebf95254744f10fd607bc3300b94932b8d9447c4df6e21ee0e54f8be072e0b083bbd86b19cb074577a25ff581d92af08a06f857310a2f14326b0b290205e91a682e00c8762cbc6b904c980eef6e6a1def886c95676dce6a8194479700a02b92bdc8d05eae1f24fdd7b80d1bb404c22f681594de2ebb9687219de8d73ac83823feb402a2415a9850d5f0183ec67be96dc0e4c2d7acf1dfe79d6771903b76e21190c22d641030e1ddacf006c3116e1803af20a5f2b5f7ba58aca5bcabbbab24414a3810788e5503e4be66d683daac5f0001000077339b4200000000108a3c87b19d5b9a00c75d84a92d6dcf00ba96edf35ede0e2b57c26e94801b498924166bde57d5f24258d9fd028096cc15a8b912b494d4bbe609031ea1ca65a548971d5d16296dd08e020000007a27310d5d01f8a8a0f5212d7f628f554afea715ccbc66cbb1016490f5d579308cb3188cf2fcaf67e0c16443d526ba4b968f07ae362c2133c168313e84beb871203880dd453c45d0a137d7f5a8b039dbfa62fb2b4214f8e69f967bf1fbd89e77fcca110000000800000000000000f8877994ebdc35f7efd41e3babd9b3782edd6776d5b6cb4ecd72c9de9b5503747d71440378cf2c2c7ea2dc5febb654a867f85b713cf4c0bb322fbbe446d18dee4c821275ef18259cafc346c8b3b9fb0f3adcf6ea310a6b9a3f59e29a5909ea047fb61affb4bc8bbea1fb761b8933795b1a91358a7791aa843d07020e8bb6fc18458c49ac6313e7165b7d9f65e94a62b69f1011b94340cdb7303f01e5cdb5682ddf73d65c3de1d88dd7496d6345d5bc6c09d3c2ff894d626b57c776ed53f94d5e22ff148061b37f72bd92924cb1d0a725e19b264346b7cae0251a850de78316503f3c3d395c7e3f04fc8d52583327cd2341ce4b2d092815376299686f41353b2823814563011a2223b9dd"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0xfeffff, 0xe80, 0x3f000002, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0xf0, 0xffffff0c}, 0x40) (async) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000e80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r3, 0xfeffff, 0xe80, 0x3f000002, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0xf0, 0xffffff0c}, 0x40) (async) openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) (async) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$cgroup_devices(0xffffffffffffffff, 0x0, 0x9) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) (async) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x6, 0x4, 0x2003, 0x2}, 0x48) (async) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001d00)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x60000000, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0x0, 0x700}, 0x50) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000007010000f8ffffffb702000008000000b70300000000000085000000060000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$TUNSETLINK(r0, 0x400454cd, 0x30a) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast}) 833.139925ms ago: executing program 3 (id=1866): bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2, 0x2, 0x0) r2 = socket$kcm(0xa, 0x5, 0x0) sendmsg$kcm(r2, &(0x7f0000002dc0)={&(0x7f0000001580)=@l2tp6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f00000029c0)=[{&(0x7f0000001480)="89", 0x1}], 0x1}, 0x8c1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x6, 0x0, 0x0, 0x0, 0x0, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) 782.516901ms ago: executing program 2 (id=1867): r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f00000005c0)='GPL\x00'}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}, 0x0) 751.46909ms ago: executing program 4 (id=1868): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = socket$kcm(0x2, 0x5, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x801}]}]}}, &(0x7f0000000680)=""/4096, 0x32, 0x1000, 0x8}, 0x20) r1 = socket$kcm(0x2, 0x3, 0x106) sendmsg$inet(r1, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x14, 0x11, 0x3, 0x0, [{@loopback}, {}]}]}}}], 0x28}, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(0xffffffffffffffff) recvmsg$unix(r2, 0x0, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000c00)=ANY=[@ANYRES8=r3], 0x12) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001200)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000afcd48d6494d614dcc6fab5335ec472db2c6161dba392176dd2963038e1d69ba7ea94c500dc4ef2fad96ed406f21caf5adcf920569c00cc1199684fa7c93836d9ea2cfb0e60436e05425cc626b424da1e8c825357861aa50054686b066707de94a4f4d5fc79c987d669f381faca0f9d9924be41a9169bdfaf16da915b2e249ee1c6eee84309e7a23c19a39484809539fcb4e0b6eab1aa7d55545a34effa077faa55c59e88254f54077f799bf4d35b213bda84cc172afd8cc2e47a7d8b85a5e3d77ac463920e231b7ae0da8616d2b7958f91f5da6c025d060ab186d94af98af1da2b5952eb15855933a212304e035f7a35dfc72c81256a55a25f8fe3b0100000000000000b0255f347160ac83070000000000004015cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72bc0480f949c479757306720399379d9271cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2dc5e46ac1c60a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d570ecb5e8cddbed65ff7020000eea2ff4f8a4cf796b07a6ff61c5552417fd703f7f14d8b78a602ca3cdf6a662d8bc9c89c9120072913152c845cf572cf39310d522a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e558d17879570c8abafe4f0f6ea508000000a0c548552b571bed5647323c78a996810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151fcda6cb799c6e924966a7f90bf8fd1e75ee76bd72346cfbb526890aa7fe5e68949a3b30567e54d3504723177d356c4604bca492ecec37e83efceefd7ca2533659edc8be05cc85451c6a145074343caea5c4bf690441974b155f5adc681a03c0bbb8358856175e2ce8b0cbbbe3c033e54ffcebde1d9d3d350000000000000000e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e5251aae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c39cf4b98e1fc6efb5978f51e16b678eca0b6588f6008948e561a9845e4ff29e2bdb1d0b923b272341c5e093fd66a2946501559335781092cf8ce987c56cd31121624d7455f2a3666276c3c0e812b28e2f30d035cee5d0e77a3c72208ec651cc0ae637fa474816bc59d2e2a00092419304b338a987e9d3044d856ce24f370030be3b5f79f030b8d3ebce68663ef5af469abe753314fae31a0445859a5ece8fb11a4ee8e46354c9c3a041a1e7b55c4e81dba1e12289ee34463aaf28345bde0c195bc9f022ca8ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f241262d0af3246eb4fc4bda34536020000fbddeacd3adaa4d2715e21c772ccd44341f7fd53df58ae791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d419de1a7b5c9dc22c96295a4601adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a86407e79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb408c8a80f7f02f750d6c977a1919f9f69a6cfefdf879d447df53f3b9b70d10355b07466d1ef0056b5af553d18a6cc50feeb7bf8d9b7be3283b6450d264e7712d2f1d7004548b19162cef04d18d4f5987baab97a9bfbd8f185b5631820420b75b6522c0e21c882c66f4f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe52734093ae5aa3c0b4f3f45bfff201000000000000002e31560e5b741445ea2a1acee2e98c9f3427834ba0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa66237e0dacc107f532348cc2116473381e961f3d9c8c21578fe3245097c280abe51427b9f6cd72b5da6d0252803c66730cd5eac907f09b9695906313f8873522608c6fc01e1b9e16587bb5f721303e6b89e5c54d680ac66d09af90dbf50ee69a39265964279d174b0000000000000000000000fa08ad0731ba49fbf981f8265e7f1f4c2d97f4680b135f87c228ce69418a282b6caa2481a0df1774fa7d94944bb92d2b89f73f0e8b63f6316c5762f3288bc970720f48b5647dd177c16810fae053349609000000000000009a7438978c5465113f668eb4484350048289d07dbef325d3221a7cb35f8100257941a9781e3214c2a3dcf89d99844b762a9cf17548c54fccad2c7ae8072b82e0880815daf966bd5343c1635e123f868a7167cfcff33384253af570f4ef9c0254afdd89c73943562b530dd88da8a94013bbaf204bebc38055adc39f07f7c22711f4d1f6dcc928d1578a093c072e0b92babc76f47ee367e745a024a2278319d9a4d1378482b70304669c447c71ca4d54c82395a3958d576c42c08a4d5adfb58306164cc7d870b881f8084a3d185a63c6b05292186095c1f407ce74297d16470988f1647f7b6f6cdc6ab8be3cacc325df963c2cb80cfe07ded6d55f556be0a3dfa85f0a0ace879b0a0a95cd07b66fbbc73d0945beebe87a21dd46fd5804cd63c01199c78b1d774b17686fe3aeadebc4f3d2e6af1110466fecf41384f1b5c96531700db5aefa1a5c17a9ebcaf334110ed582999208cc7ef977ceb2f8a5aa7d00000000000000"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x5, &(0x7f0000000d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x1f2f, 0xf, 0x3ce, &(0x7f00000007c0)="9f44948721919580684010a486dd", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000202020c31af8ff51000000bfa100f30000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$sock_attach_bpf(r0, 0x84, 0x22, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x100}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, 0xffffffffffffffff) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) 672.139101ms ago: executing program 0 (id=1869): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r0]}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x5a87, 0x4, 0x3, 0x0, r1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r2}, 0x27) (fail_nth: 8) 651.369192ms ago: executing program 2 (id=1870): perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x6, 0xff, 0x42}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000080), 0x619, r0}, 0x38) 631.948582ms ago: executing program 1 (id=1871): socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x9, &(0x7f0000000680)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000500de6e87c80000bb000000a7000000000000001800000000000000000000000000000095000000000000009500000000000000"], &(0x7f00000003c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x13, r1}, 0x90) r2 = perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r0, 0x0) close(r0) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000100), 0x4) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0) close(r4) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000003c0)) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{0x0}, {0x0}], 0x2}, 0x0) r5 = socket$kcm(0xf, 0x3, 0x2) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'wlan1\x00', @random="01000500"}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) sendmsg$inet(r5, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="020b0700fc670000e4a17c45c8d260c9", 0x33fe0}], 0x1}, 0x0) r6 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7) r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r8, 0xffffffffffffffff}, 0x4) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000800000085000000b6000000b7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) ioctl$SIOCSIFHWADDR(r4, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"}) r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r12 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000140)='./file0\x00', 0x0, 0x0, r3}, 0x18) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000500)={@map=0x1, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4000, @prog_id, r13}, 0x20) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)={@cgroup=r3, r12, 0x8, 0x1a, 0x0, @link_fd=r2, r13}, 0x20) ioctl$TUNSETQUEUE(r11, 0x400454d9, &(0x7f00000000c0)={'batadv0\x00', 0x600}) 570.89262ms ago: executing program 3 (id=1872): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0xbf25}, 0x48) close(r0) 508.874271ms ago: executing program 4 (id=1873): r0 = socket$kcm(0x11, 0x2, 0x0) r1 = socket$kcm(0x11, 0x200000000000002, 0x300) setsockopt$sock_attach_bpf(r1, 0x107, 0x12, &(0x7f00000000c0)=r0, 0x8) r2 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000000), 0x4) sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x6488, 0x9}, 0x80, &(0x7f0000000080)=[{&(0x7f00000006c0)="270427003c0f00000000002f1eafbcf706e10500000086ddffff1104ee162fd4b8bf4a82f6184b8a34f90186cee84400000000000000001900000000", 0x3c}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b700c9e37eed5653ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d33330e2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb00"/135, 0x87}, {&(0x7f0000000280)="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", 0x147}], 0x3}, 0x0) 218.118406ms ago: executing program 3 (id=1874): r0 = socket$kcm(0x11, 0x2, 0x0) close(r0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$OBJ_GET_MAP(0x7, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) socket$kcm(0x28, 0x0, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000d40)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x90) r2 = socket$kcm(0x11, 0x2, 0x0) r3 = socket$kcm(0x11, 0x200000000000002, 0x300) r4 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r4, 0x0, 0x0) setsockopt$sock_attach_bpf(r3, 0x107, 0x12, &(0x7f00000000c0)=r2, 0x8) socket$kcm(0x11, 0x2, 0x0) socket$kcm(0x11, 0x200000000000002, 0x300) r5 = socket$kcm(0x11, 0x2, 0x300) setsockopt$sock_attach_bpf(r5, 0x107, 0x12, 0x0, 0x0) 170.729811ms ago: executing program 0 (id=1875): r0 = socket$kcm(0xa, 0x7, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x3, 0x4, 0xc}, 0x48) socket$kcm(0x29, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, 0xffffffffffffffff) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x15, 0x3, &(0x7f0000000540)=@framed, &(0x7f00000005c0)='GPL\x00'}, 0x80) r3 = socket$kcm(0x2, 0x5, 0x0) setsockopt$sock_attach_bpf(r3, 0x1, 0x34, &(0x7f0000000040)=r2, 0x4) socket$kcm(0x2, 0x2, 0x73) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=ANY=[], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) bpf$PROG_LOAD(0x2, 0x0, 0x0) r4 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f93e24fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x324) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcbfffff050000000000000085100000faffffff9500000000000000"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x90) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x27}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, &(0x7f0000000080)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) setsockopt$sock_attach_bpf(r0, 0x29, 0x31, &(0x7f0000000100), 0x120) 170.029171ms ago: executing program 4 (id=1876): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000300)=ANY=[@ANYRES8=r1], 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000ecff850000000400000018110000", @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff}) recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) write$cgroup_subtree(r6, &(0x7f00000006c0)=ANY=[@ANYBLOB="8f03000000000060007538e486dd630ace2200052f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa00006558"], 0xcfa4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)=r0}, 0x20) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000600)={r2, 0x58, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000780)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x5c, 0x5c, 0x3, [@ptr={0xc, 0x0, 0x0, 0x2, 0x5}, @var={0x8, 0x0, 0x0, 0xe, 0x5, 0x1}, @const={0x10, 0x0, 0x0, 0xa, 0x1}, @struct={0x8, 0x2, 0x0, 0x4, 0x1, 0x0, [{0x2, 0x5, 0x1000}, {0x5, 0x1, 0x2}]}, @var={0x8, 0x0, 0x0, 0xe, 0x4, 0x1}]}, {0x0, [0x0]}}, &(0x7f00000006c0)=""/192, 0x77, 0xc0, 0x0, 0x2000}, 0x20) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000840)={0x4, 0x0}, 0x8) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r4, 0xffffffffffffffff}, &(0x7f0000000880), &(0x7f00000008c0)=r0}, 0x20) r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0x6, 0x0, 0x101, 0x9, 0x0, r4, 0x80, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x5}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x3, 0x0, &(0x7f0000000000)="b9ff06", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, &(0x7f0000000b00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000ac0)=@bpf_lsm={0x1d, 0x15, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r6}}, @ldst={0x0, 0x1, 0x1, 0x5, 0xa, 0x40, 0x8}, @map_val={0x18, 0xb, 0x2, 0x0, r7, 0x0, 0x0, 0x0, 0x6}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0xd}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}]}, &(0x7f0000000440)='GPL\x00', 0x8, 0x72, &(0x7f0000000480)=""/114, 0x40f00, 0x31, '\x00', r8, 0x1b, r9, 0x8, &(0x7f00000007c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000800)={0x1, 0xc, 0xfff, 0x6}, 0x10, r10, 0x0, 0x1, &(0x7f0000000a40)=[r2, r4, r11, r2, r4, r4, r4, r12, r4, r2], &(0x7f0000000a80)=[{0x5, 0x5, 0x8, 0x8}], 0x10, 0x1}, 0x90) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 169.781058ms ago: executing program 2 (id=1877): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x3, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000010000000000000000000000850000008700000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0xfeff, &(0x7f0000000200)="9e36d448b36e48d276c1a0fce104", 0x0, 0x1b0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50) 64.23546ms ago: executing program 1 (id=1878): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$kcm(0x10, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047438, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000180), 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x4, 0xa7, 0x1, 0x3, 0xffffffffffffffff, 0xee, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x5, 0xf}, 0x48) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0) 31.285896ms ago: executing program 2 (id=1879): r0 = getpid() r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) r2 = getpid() r3 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0x0, r1, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xf8}], 0x1}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2418, 0x80ffff) 3.442059ms ago: executing program 3 (id=1880): r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f00000005c0)='GPL\x00'}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}, 0x0) 0s ago: executing program 1 (id=1881): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90) close(r0) r1 = socket$kcm(0x2, 0x200000000000001, 0x0) sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20) recvmsg(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f00000001c0)=""/34, 0x22}], 0x1}, 0x0) kernel console output (not intermixed with test programs): 5][ T7340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 158.698812][ T7351] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.708028][ T7351] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.716097][ T7351] bridge_slave_1: entered allmulticast mode [ 158.723000][ T7351] bridge_slave_1: entered promiscuous mode [ 158.808983][ T7338] hsr_slave_0: entered promiscuous mode [ 158.822051][ T7338] hsr_slave_1: entered promiscuous mode [ 158.829300][ T7338] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 158.846510][ T7338] Cannot create hsr debugfs directory [ 159.161621][ T7351] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.179423][ T7340] hsr_slave_0: entered promiscuous mode [ 159.203225][ T7340] hsr_slave_1: entered promiscuous mode [ 159.211894][ T7340] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 159.219939][ T7340] Cannot create hsr debugfs directory [ 159.244498][ T7351] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.496771][ T7351] team0: Port device team_slave_0 added [ 159.529630][ T7501] validate_nla: 9 callbacks suppressed [ 159.529652][ T7501] netlink: 'syz.1.832': attribute type 4 has an invalid length. [ 159.562403][ T7501] netlink: 18430 bytes leftover after parsing attributes in process `syz.1.832'. [ 159.576337][ T7501] netlink: 116376 bytes leftover after parsing attributes in process `syz.1.832'. [ 159.595269][ T5097] Bluetooth: hci0: command tx timeout [ 159.618553][ T7351] team0: Port device team_slave_1 added [ 159.744791][ T7506] netlink: 14546 bytes leftover after parsing attributes in process `syz.1.833'. [ 159.773151][ T7351] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 159.782845][ T7351] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.826169][ T7351] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 159.835226][ T5097] Bluetooth: hci3: command tx timeout [ 159.866615][ T7508] netlink: 'syz.3.834': attribute type 10 has an invalid length. [ 159.880748][ T7508] bond0: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 159.893363][ T7508] bond0: (slave ipvlan0): The slave device specified does not support setting the MAC address [ 159.904279][ T7508] bond0: (slave ipvlan0): Error -95 calling set_mac_address [ 159.913609][ T7351] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 159.921376][ T7351] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.948983][ T7351] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 159.995288][ T5097] Bluetooth: hci4: command tx timeout [ 160.182825][ T7351] hsr_slave_0: entered promiscuous mode [ 160.192166][ T7351] hsr_slave_1: entered promiscuous mode [ 160.202309][ T7351] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 160.211056][ T7351] Cannot create hsr debugfs directory [ 160.471232][ T7340] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.587980][ T7340] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.748236][ T7340] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.851808][ T7340] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.118348][ T7340] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 161.152304][ T7340] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 161.182396][ T7340] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 161.212613][ T7340] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 161.419216][ T7351] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.464044][ T7338] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 161.494292][ T7338] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 161.594786][ T7351] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.627191][ T7338] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 161.649065][ T7338] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 161.675614][ T5097] Bluetooth: hci0: command tx timeout [ 161.729748][ T7351] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.858807][ T7351] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.915429][ T5097] Bluetooth: hci3: command tx timeout [ 162.065315][ T5097] Bluetooth: hci4: command tx timeout [ 162.122510][ T7340] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.210458][ T7340] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.285616][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.292851][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 162.352333][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.359582][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 162.475734][ T7338] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.494638][ T7351] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 162.583990][ T7351] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 162.632166][ T7340] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 162.710163][ T7340] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 162.749794][ T7351] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 162.780446][ T7351] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 162.807496][ T7590] netlink: 132 bytes leftover after parsing attributes in process `syz.1.845'. [ 162.867397][ T7338] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.948425][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.955649][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 162.992803][ T25] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.000076][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state [ 163.418362][ T7340] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 163.501426][ T7351] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.580357][ T7351] 8021q: adding VLAN 0 to HW filter on device team0 [ 163.622569][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.629866][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 163.681422][ T5186] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.688667][ T5186] bridge0: port 2(bridge_slave_1) entered forwarding state [ 163.817264][ T7338] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.032419][ T7338] veth0_vlan: entered promiscuous mode [ 164.072385][ T7338] veth1_vlan: entered promiscuous mode [ 164.244416][ T7338] veth0_macvtap: entered promiscuous mode [ 164.291854][ T7340] veth0_vlan: entered promiscuous mode [ 164.363912][ T7338] veth1_macvtap: entered promiscuous mode [ 164.393747][ T7340] veth1_vlan: entered promiscuous mode [ 164.411654][ T7645] netlink: 'syz.3.852': attribute type 21 has an invalid length. [ 164.433600][ T7645] netlink: 128 bytes leftover after parsing attributes in process `syz.3.852'. [ 164.447255][ T7645] netlink: 'syz.3.852': attribute type 5 has an invalid length. [ 164.466478][ T7645] netlink: 3 bytes leftover after parsing attributes in process `syz.3.852'. [ 164.524585][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.545807][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.577642][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.606877][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.617749][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.629298][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.640018][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 164.651937][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.689402][ T7338] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 164.709587][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 164.722378][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.733856][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 164.755494][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.767922][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 164.781249][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.792592][ T7338] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 164.803589][ T7338] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.841630][ T7338] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 164.886476][ T7351] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.918213][ T7338] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.958096][ T7338] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.969141][ T7338] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 164.978736][ T7338] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.039931][ T7340] veth0_macvtap: entered promiscuous mode [ 165.088118][ T7340] veth1_macvtap: entered promiscuous mode [ 165.149927][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.161419][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.171768][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.183466][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.194058][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.204961][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.214837][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.228090][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.238090][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.249614][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.260806][ T7340] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 165.272259][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.283609][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.293928][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.304786][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.314764][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.325441][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.337189][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.347904][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.359409][ T7340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 165.369958][ T7340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.381483][ T7340] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 165.398552][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 165.411506][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 165.420433][ T7351] veth0_vlan: entered promiscuous mode [ 165.447619][ T7351] veth1_vlan: entered promiscuous mode [ 165.457090][ T7340] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.471595][ T7340] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.482248][ T7340] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.491403][ T7340] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.532506][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 165.540547][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 165.634020][ T7351] veth0_macvtap: entered promiscuous mode [ 165.665712][ T7351] veth1_macvtap: entered promiscuous mode [ 165.724206][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.740137][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.750949][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.765149][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.794944][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.833017][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.855570][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.869053][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.904618][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.927045][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.937977][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 165.949115][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.973545][ T7351] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 166.012181][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 166.046975][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 166.077653][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.091282][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.101605][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.113518][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.124485][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.136225][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.148443][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.159531][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.169772][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.180660][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.190709][ T7351] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 166.201349][ T7351] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.212974][ T7351] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 166.241724][ T7681] netlink: 'syz.3.861': attribute type 39 has an invalid length. [ 166.290807][ T7351] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.310864][ T7351] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.322066][ T7351] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.331944][ T7351] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.358558][ T2837] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 166.374412][ T2837] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 166.866131][ T7689] netlink: 'syz.3.863': attribute type 21 has an invalid length. [ 166.894313][ T7689] netlink: 128 bytes leftover after parsing attributes in process `syz.3.863'. [ 166.925225][ T7689] netlink: 'syz.3.863': attribute type 5 has an invalid length. [ 166.935393][ T7689] netlink: 3 bytes leftover after parsing attributes in process `syz.3.863'. [ 166.983342][ T7683] netlink: 'syz.2.862': attribute type 10 has an invalid length. [ 167.208158][ T7683] team0: Cannot enslave team device to itself [ 167.432048][ T2837] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 167.442485][ T2837] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 167.477243][ T7708] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.870'. [ 167.580044][ T2837] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 167.593159][ T2837] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 167.638391][ T7714] netlink: 'syz.1.873': attribute type 21 has an invalid length. [ 167.664526][ T7714] netlink: 'syz.1.873': attribute type 4 has an invalid length. [ 167.679123][ T7714] netlink: 156 bytes leftover after parsing attributes in process `syz.1.873'. [ 167.689900][ T7716] netlink: 'syz.3.874': attribute type 21 has an invalid length. [ 167.708572][ T7716] netlink: 132 bytes leftover after parsing attributes in process `syz.3.874'. [ 167.754301][ T7712] netlink: 'syz.2.872': attribute type 1 has an invalid length. [ 167.770460][ T7712] netlink: 191384 bytes leftover after parsing attributes in process `syz.2.872'. [ 167.818936][ T7719] netlink: 132 bytes leftover after parsing attributes in process `syz.0.804'. [ 168.298609][ T7728] netlink: 'syz.0.876': attribute type 21 has an invalid length. [ 168.325152][ T7728] netlink: 168 bytes leftover after parsing attributes in process `syz.0.876'. [ 168.439004][ T7726] netlink: 'syz.3.877': attribute type 21 has an invalid length. [ 168.476463][ T7726] netlink: 128 bytes leftover after parsing attributes in process `syz.3.877'. [ 168.536725][ T7726] netlink: 3 bytes leftover after parsing attributes in process `syz.3.877'. [ 169.295162][ T7730] team0: Cannot enslave team device to itself [ 169.347956][ T7738] team0: Cannot enslave team device to itself [ 169.589035][ T7750] netlink: 156 bytes leftover after parsing attributes in process `syz.0.885'. [ 169.662347][ T7752] netlink: 132 bytes leftover after parsing attributes in process `syz.2.886'. [ 170.005494][ T7765] netlink: 830 bytes leftover after parsing attributes in process `syz.0.890'. [ 170.033997][ T7765] bond_slave_0: entered promiscuous mode [ 170.040294][ T7765] bond_slave_1: entered promiscuous mode [ 170.068094][ T7767] netlink: 152 bytes leftover after parsing attributes in process `syz.1.883'. [ 170.318368][ T7772] netlink: 128 bytes leftover after parsing attributes in process `syz.2.892'. [ 170.345924][ T7772] netlink: 3 bytes leftover after parsing attributes in process `syz.2.892'. [ 170.970689][ T7781] team0: Cannot enslave team device to itself [ 171.283406][ T7798] validate_nla: 17 callbacks suppressed [ 171.283448][ T7798] netlink: 'syz.3.901': attribute type 4 has an invalid length. [ 171.595625][ T7806] netlink: 'syz.1.904': attribute type 21 has an invalid length. [ 171.621831][ T7806] netlink: 'syz.1.904': attribute type 5 has an invalid length. [ 172.292450][ T7835] netlink: 'syz.2.913': attribute type 21 has an invalid length. [ 172.487276][ T7827] netlink: 'syz.1.912': attribute type 10 has an invalid length. [ 172.509046][ T7827] team0: Cannot enslave team device to itself [ 172.944812][ T7855] FAULT_INJECTION: forcing a failure. [ 172.944812][ T7855] name failslab, interval 1, probability 0, space 0, times 0 [ 172.985397][ T7855] CPU: 0 PID: 7855 Comm: syz.2.919 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 172.995453][ T7855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 173.005533][ T7855] Call Trace: [ 173.008841][ T7855] [ 173.011802][ T7855] dump_stack_lvl+0x241/0x360 [ 173.016527][ T7855] ? __pfx_dump_stack_lvl+0x10/0x10 [ 173.021763][ T7855] ? __pfx__printk+0x10/0x10 [ 173.026413][ T7855] should_fail_ex+0x3b0/0x4e0 [ 173.031131][ T7855] ? kernfs_fop_write_iter+0x15b/0x500 [ 173.036662][ T7855] should_failslab+0x9/0x20 [ 173.041208][ T7855] __kmalloc_noprof+0xd8/0x400 [ 173.046013][ T7855] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 173.051949][ T7855] kernfs_fop_write_iter+0x15b/0x500 [ 173.057285][ T7855] vfs_write+0xa72/0xc90 [ 173.061569][ T7855] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 173.067422][ T7855] ? __pfx_vfs_write+0x10/0x10 [ 173.072279][ T7855] ksys_write+0x1a0/0x2c0 [ 173.076737][ T7855] ? __pfx_ksys_write+0x10/0x10 [ 173.081626][ T7855] ? do_syscall_64+0x100/0x230 [ 173.086432][ T7855] ? do_syscall_64+0xb6/0x230 [ 173.091149][ T7855] do_syscall_64+0xf3/0x230 [ 173.095727][ T7855] ? clear_bhb_loop+0x35/0x90 [ 173.100419][ T7855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.106352][ T7855] RIP: 0033:0x7f3306175b99 [ 173.110770][ T7855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.130397][ T7855] RSP: 002b:00007f3306efd048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 173.138814][ T7855] RAX: ffffffffffffffda RBX: 00007f3306304038 RCX: 00007f3306175b99 [ 173.146953][ T7855] RDX: 0000000000000006 RSI: 0000000020000040 RDI: 0000000000000006 [ 173.154920][ T7855] RBP: 00007f3306efd0a0 R08: 0000000000000000 R09: 0000000000000000 [ 173.162890][ T7855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 173.170851][ T7855] R13: 000000000000006e R14: 00007f3306304038 R15: 00007ffc14ada4a8 [ 173.178861][ T7855] [ 173.216052][ T7857] netlink: 'syz.3.920': attribute type 21 has an invalid length. [ 173.223927][ T7857] __nla_validate_parse: 7 callbacks suppressed [ 173.223942][ T7857] netlink: 128 bytes leftover after parsing attributes in process `syz.3.920'. [ 173.330301][ T7857] netlink: 'syz.3.920': attribute type 5 has an invalid length. [ 173.354335][ T7857] netlink: 3 bytes leftover after parsing attributes in process `syz.3.920'. [ 173.960019][ T7870] syz.2.924 (7870) used greatest stack depth: 17056 bytes left [ 174.001564][ T7875] netlink: 'syz.0.925': attribute type 21 has an invalid length. [ 174.027312][ T7875] netlink: 128 bytes leftover after parsing attributes in process `syz.0.925'. [ 174.063290][ T7875] netlink: 'syz.0.925': attribute type 5 has an invalid length. [ 174.113119][ T7875] netlink: 3 bytes leftover after parsing attributes in process `syz.0.925'. [ 174.466223][ T7878] netlink: 'syz.2.928': attribute type 10 has an invalid length. [ 174.475717][ T7878] team0: Cannot enslave team device to itself [ 174.625627][ T7891] netlink: 168 bytes leftover after parsing attributes in process `syz.4.930'. [ 175.001467][ T7907] netlink: 132 bytes leftover after parsing attributes in process `syz.1.937'. [ 175.482179][ T7905] team0: Cannot enslave team device to itself [ 175.519757][ T7911] netlink: 128 bytes leftover after parsing attributes in process `syz.2.939'. [ 175.587601][ T7911] netlink: 3 bytes leftover after parsing attributes in process `syz.2.939'. [ 175.676256][ T7905] syz.0.938 (7905) used greatest stack depth: 16192 bytes left [ 175.707740][ T7923] netlink: 128 bytes leftover after parsing attributes in process `syz.4.941'. [ 175.741951][ T7923] netlink: 3 bytes leftover after parsing attributes in process `syz.4.941'. [ 176.304703][ T7952] validate_nla: 7 callbacks suppressed [ 176.304740][ T7952] netlink: 'syz.3.953': attribute type 12 has an invalid length. [ 176.385660][ T5097] Bluetooth: hci2: command 0x0406 tx timeout [ 176.389534][ T5098] Bluetooth: hci1: command 0x0406 tx timeout [ 176.416535][ T7957] FAULT_INJECTION: forcing a failure. [ 176.416535][ T7957] name failslab, interval 1, probability 0, space 0, times 0 [ 176.458706][ T7956] netlink: 'syz.2.955': attribute type 21 has an invalid length. [ 176.498119][ T7957] CPU: 1 PID: 7957 Comm: syz.1.954 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 176.508173][ T7957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 176.518282][ T7957] Call Trace: [ 176.521600][ T7957] [ 176.524532][ T7957] dump_stack_lvl+0x241/0x360 [ 176.529218][ T7957] ? __pfx_dump_stack_lvl+0x10/0x10 [ 176.534416][ T7957] ? __pfx__printk+0x10/0x10 [ 176.539104][ T7957] should_fail_ex+0x3b0/0x4e0 [ 176.543795][ T7957] ? sctp_add_bind_addr+0x89/0x3a0 [ 176.548913][ T7957] should_failslab+0x9/0x20 [ 176.553419][ T7957] kmalloc_trace_noprof+0x6c/0x2c0 [ 176.558536][ T7957] sctp_add_bind_addr+0x89/0x3a0 [ 176.563479][ T7957] sctp_copy_local_addr_list+0x311/0x500 [ 176.569117][ T7957] ? sctp_copy_local_addr_list+0xab/0x500 [ 176.574835][ T7957] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 176.580993][ T7957] ? sctp_v4_is_any+0x35/0x60 [ 176.585678][ T7957] sctp_bind_addr_copy+0xad/0x3b0 [ 176.590728][ T7957] ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190 [ 176.597095][ T7957] sctp_connect_new_asoc+0x2f3/0x6c0 [ 176.602403][ T7957] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 176.608207][ T7957] ? sctp_sendmsg+0xbb9/0x3520 [ 176.612992][ T7957] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 176.618529][ T7957] ? security_sctp_bind_connect+0x90/0xb0 [ 176.624432][ T7957] sctp_sendmsg+0x219a/0x3520 [ 176.629117][ T7957] ? __pfx_sctp_sendmsg+0x10/0x10 [ 176.634152][ T7957] ? __pfx_aa_sk_perm+0x10/0x10 [ 176.639009][ T7957] ? inet_sendmsg+0x330/0x390 [ 176.643677][ T7957] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 176.648957][ T7957] ? security_socket_sendmsg+0x87/0xb0 [ 176.654413][ T7957] __sock_sendmsg+0x1a6/0x270 [ 176.659097][ T7957] ____sys_sendmsg+0x525/0x7d0 [ 176.663903][ T7957] ? __pfx_____sys_sendmsg+0x10/0x10 [ 176.669208][ T7957] __sys_sendmsg+0x2b0/0x3a0 [ 176.673796][ T7957] ? __pfx___sys_sendmsg+0x10/0x10 [ 176.678909][ T7957] ? vfs_write+0x7c4/0xc90 [ 176.683377][ T7957] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 176.689701][ T7957] ? do_syscall_64+0x100/0x230 [ 176.694464][ T7957] ? do_syscall_64+0xb6/0x230 [ 176.699147][ T7957] do_syscall_64+0xf3/0x230 [ 176.703648][ T7957] ? clear_bhb_loop+0x35/0x90 [ 176.708320][ T7957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.714209][ T7957] RIP: 0033:0x7fad84b75b99 [ 176.718789][ T7957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.738385][ T7957] RSP: 002b:00007fad85943048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 176.746793][ T7957] RAX: ffffffffffffffda RBX: 00007fad84d04038 RCX: 00007fad84b75b99 [ 176.754770][ T7957] RDX: 0000000000000000 RSI: 0000000020000a00 RDI: 0000000000000003 [ 176.762739][ T7957] RBP: 00007fad859430a0 R08: 0000000000000000 R09: 0000000000000000 [ 176.770796][ T7957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 176.778783][ T7957] R13: 000000000000006e R14: 00007fad84d04038 R15: 00007ffd69f53278 [ 176.786792][ T7957] [ 176.841467][ T7962] netlink: 'syz.3.957': attribute type 21 has an invalid length. [ 176.867310][ T7962] netlink: 'syz.3.957': attribute type 5 has an invalid length. [ 176.996443][ T7965] netlink: 'syz.3.959': attribute type 21 has an invalid length. [ 177.457484][ T7995] netlink: 'syz.4.967': attribute type 12 has an invalid length. [ 177.531202][ T7997] netlink: 'syz.0.969': attribute type 21 has an invalid length. [ 177.555498][ T7997] netlink: 'syz.0.969': attribute type 5 has an invalid length. [ 177.866905][ T5095] Bluetooth: hci3: ISO packet for unknown connection handle 1342 [ 178.223100][ T8032] netlink: 'syz.0.983': attribute type 21 has an invalid length. [ 178.242413][ T8032] __nla_validate_parse: 11 callbacks suppressed [ 178.242452][ T8032] netlink: 128 bytes leftover after parsing attributes in process `syz.0.983'. [ 178.290386][ T8032] netlink: 'syz.0.983': attribute type 5 has an invalid length. [ 178.312976][ T8032] netlink: 3 bytes leftover after parsing attributes in process `syz.0.983'. [ 178.333882][ T8034] netlink: 132 bytes leftover after parsing attributes in process `syz.4.982'. [ 178.700499][ T8048] netlink: 128 bytes leftover after parsing attributes in process `syz.1.988'. [ 178.724100][ T8048] netlink: 3 bytes leftover after parsing attributes in process `syz.1.988'. [ 178.936899][ T8058] netlink: 132 bytes leftover after parsing attributes in process `syz.4.992'. [ 179.023500][ T8062] netlink: 24859 bytes leftover after parsing attributes in process `syz.2.993'. [ 179.243728][ T8070] netlink: 132 bytes leftover after parsing attributes in process `syz.4.997'. [ 179.305419][ T8072] netlink: 132 bytes leftover after parsing attributes in process `syz.4.997'. [ 179.635664][ T8086] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1001'. [ 179.708536][ T8096] FAULT_INJECTION: forcing a failure. [ 179.708536][ T8096] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.741642][ T8096] CPU: 1 PID: 8096 Comm: syz.0.1004 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 179.751757][ T8096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 179.761834][ T8096] Call Trace: [ 179.765114][ T8096] [ 179.768040][ T8096] dump_stack_lvl+0x241/0x360 [ 179.772733][ T8096] ? __pfx_dump_stack_lvl+0x10/0x10 [ 179.777955][ T8096] ? __pfx__printk+0x10/0x10 [ 179.782539][ T8096] ? bpf_cgroup_storage_free+0x8f/0xb0 [ 179.787995][ T8096] ? __pfx_lock_release+0x10/0x10 [ 179.793015][ T8096] ? bpf_test_run+0x840/0x910 [ 179.797843][ T8096] should_fail_ex+0x3b0/0x4e0 [ 179.802534][ T8096] _copy_to_user+0x2f/0xb0 [ 179.806947][ T8096] bpf_test_finish+0x30f/0x8b0 [ 179.811715][ T8096] ? __might_fault+0xaa/0x120 [ 179.816410][ T8096] ? __pfx_bpf_test_finish+0x10/0x10 [ 179.821882][ T8096] ? _copy_from_user+0xa6/0xe0 [ 179.826676][ T8096] ? bpf_test_init+0x15a/0x180 [ 179.831446][ T8096] bpf_prog_test_run_xdp+0x905/0x11b0 [ 179.836833][ T8096] ? __pfx_lock_release+0x10/0x10 [ 179.841912][ T8096] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 179.847825][ T8096] ? __fget_files+0x29/0x470 [ 179.852431][ T8096] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 179.858234][ T8096] bpf_prog_test_run+0x33a/0x3b0 [ 179.863168][ T8096] __sys_bpf+0x48d/0x810 [ 179.867415][ T8096] ? __pfx___sys_bpf+0x10/0x10 [ 179.872676][ T8096] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 179.878667][ T8096] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 179.885013][ T8096] ? do_syscall_64+0x100/0x230 [ 179.889886][ T8096] __x64_sys_bpf+0x7c/0x90 [ 179.894433][ T8096] do_syscall_64+0xf3/0x230 [ 179.898977][ T8096] ? clear_bhb_loop+0x35/0x90 [ 179.903663][ T8096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.909560][ T8096] RIP: 0033:0x7fa796975b99 [ 179.914096][ T8096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.933793][ T8096] RSP: 002b:00007fa7976c5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 179.942209][ T8096] RAX: ffffffffffffffda RBX: 00007fa796b03f60 RCX: 00007fa796975b99 [ 179.950183][ T8096] RDX: 000000000000000c RSI: 0000000020000500 RDI: 000000000000000a [ 179.958269][ T8096] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 179.966320][ T8096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 179.974282][ T8096] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 179.982257][ T8096] [ 180.070946][ T8091] netlink: del zone limit has 4 unknown bytes [ 181.432326][ T8146] validate_nla: 111 callbacks suppressed [ 181.432366][ T8146] netlink: 'syz.3.1018': attribute type 21 has an invalid length. [ 181.457676][ T8146] netlink: 'syz.3.1018': attribute type 5 has an invalid length. [ 181.501615][ T8157] netlink: 'syz.2.1021': attribute type 21 has an invalid length. [ 181.723504][ T8165] netlink: 'syz.2.1024': attribute type 10 has an invalid length. [ 181.807075][ T8165] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 181.937063][ T8158] syzkaller0: entered promiscuous mode [ 181.954568][ T8158] syzkaller0: entered allmulticast mode [ 181.973019][ T8160] syzkaller0: entered promiscuous mode [ 181.985028][ T8160] syzkaller0: entered allmulticast mode [ 182.003595][ T8161] netlink: 'syz.3.1023': attribute type 10 has an invalid length. [ 182.022894][ T8161] team0: Cannot enslave team device to itself [ 182.874661][ T8198] netlink: 'syz.2.1034': attribute type 29 has an invalid length. [ 185.270677][ T8194] netlink: 'syz.4.1033': attribute type 21 has an invalid length. [ 185.278821][ T8194] __nla_validate_parse: 58 callbacks suppressed [ 185.278837][ T8194] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1033'. [ 185.298893][ T8194] netlink: 'syz.4.1033': attribute type 5 has an invalid length. [ 185.314552][ T8194] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1033'. [ 185.333873][ T8198] netlink: 'syz.2.1034': attribute type 29 has an invalid length. [ 185.379546][ T8204] netlink: 'syz.3.1036': attribute type 10 has an invalid length. [ 185.465745][ T8206] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1037'. [ 185.552240][ T8214] FAULT_INJECTION: forcing a failure. [ 185.552240][ T8214] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 185.651554][ T8214] CPU: 0 PID: 8214 Comm: syz.4.1039 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 185.661704][ T8214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 185.671808][ T8214] Call Trace: [ 185.675134][ T8214] [ 185.678117][ T8214] dump_stack_lvl+0x241/0x360 [ 185.682879][ T8214] ? __pfx_dump_stack_lvl+0x10/0x10 [ 185.688198][ T8214] ? __pfx__printk+0x10/0x10 [ 185.692884][ T8214] ? bpf_cgroup_storage_free+0x8f/0xb0 [ 185.698408][ T8214] ? __pfx_lock_release+0x10/0x10 [ 185.703491][ T8214] ? bpf_test_run+0x840/0x910 [ 185.708257][ T8214] should_fail_ex+0x3b0/0x4e0 [ 185.713048][ T8214] _copy_to_user+0x2f/0xb0 [ 185.717551][ T8214] bpf_test_finish+0x293/0x8b0 [ 185.722405][ T8214] ? __pfx_bpf_test_finish+0x10/0x10 [ 185.727859][ T8214] ? _copy_from_user+0x11/0xe0 [ 185.732686][ T8214] ? rep_movs_alternative+0x4a/0x70 [ 185.737966][ T8214] bpf_prog_test_run_xdp+0x905/0x11b0 [ 185.743465][ T8214] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 185.749335][ T8214] ? __fget_files+0x29/0x470 [ 185.754059][ T8214] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 185.757825][ T8221] team0: Cannot enslave team device to itself [ 185.759906][ T8214] bpf_prog_test_run+0x33a/0x3b0 [ 185.759955][ T8214] __sys_bpf+0x48d/0x810 [ 185.775328][ T8214] ? __pfx___sys_bpf+0x10/0x10 [ 185.780177][ T8214] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 185.786184][ T8214] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 185.792526][ T8214] ? do_syscall_64+0x100/0x230 [ 185.797318][ T8214] __x64_sys_bpf+0x7c/0x90 [ 185.801762][ T8214] do_syscall_64+0xf3/0x230 [ 185.806394][ T8214] ? clear_bhb_loop+0x35/0x90 [ 185.811112][ T8214] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.817051][ T8214] RIP: 0033:0x7f8c2a975b99 [ 185.821491][ T8214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.841112][ T8214] RSP: 002b:00007f8c2b720048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 185.849542][ T8214] RAX: ffffffffffffffda RBX: 00007f8c2ab03f60 RCX: 00007f8c2a975b99 [ 185.857522][ T8214] RDX: 0000000000000024 RSI: 0000000020000140 RDI: 000000000000000a [ 185.865499][ T8214] RBP: 00007f8c2b7200a0 R08: 0000000000000000 R09: 0000000000000000 [ 185.873478][ T8214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 185.881456][ T8214] R13: 000000000000000b R14: 00007f8c2ab03f60 R15: 00007ffc5f06c878 [ 185.889520][ T8214] [ 186.330212][ T8223] netlink: 192312 bytes leftover after parsing attributes in process `syz.3.1043'. [ 186.599131][ T8240] validate_nla: 1 callbacks suppressed [ 186.599172][ T8240] netlink: 'syz.0.1049': attribute type 21 has an invalid length. [ 186.641954][ T8240] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1049'. [ 186.661427][ T8252] netlink: 'syz.3.1051': attribute type 29 has an invalid length. [ 186.675435][ T8240] netlink: 'syz.0.1049': attribute type 5 has an invalid length. [ 186.687148][ T8240] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1049'. [ 186.704615][ T8245] syzkaller0: entered promiscuous mode [ 186.711944][ T8245] syzkaller0: entered allmulticast mode [ 186.740148][ T8252] netlink: 'syz.3.1051': attribute type 29 has an invalid length. [ 186.758547][ T8254] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1052'. [ 186.894733][ T8260] netlink: 'syz.3.1054': attribute type 9 has an invalid length. [ 186.912848][ T8260] netlink: 399 bytes leftover after parsing attributes in process `syz.3.1054'. [ 188.559163][ T8257] netlink: 'syz.0.1053': attribute type 21 has an invalid length. [ 188.567445][ T8257] IPv6: NLM_F_CREATE should be specified when creating new route [ 188.576041][ T8264] netlink: 'syz.4.1056': attribute type 10 has an invalid length. [ 188.584585][ T8264] team0: Cannot enslave team device to itself [ 188.647590][ T8271] veth1_macvtap: left promiscuous mode [ 188.664989][ T8271] macsec0: entered promiscuous mode [ 188.689615][ T8271] macsec0: entered allmulticast mode [ 189.025566][ T8286] netlink: 'syz.4.1063': attribute type 21 has an invalid length. [ 189.040337][ T8286] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1063'. [ 189.056663][ T8286] netlink: 'syz.4.1063': attribute type 5 has an invalid length. [ 189.066685][ T8286] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1063'. [ 189.207137][ T8300] netlink: 'syz.0.1068': attribute type 29 has an invalid length. [ 189.644712][ T8309] syzkaller0: entered promiscuous mode [ 189.651229][ T8309] syzkaller0: entered allmulticast mode [ 189.707642][ T8316] team0: Cannot enslave team device to itself [ 191.269115][ T8313] syzkaller0: entered promiscuous mode [ 191.274754][ T8313] syzkaller0: entered allmulticast mode [ 191.284127][ T8319] syzkaller0: left promiscuous mode [ 191.289824][ T8319] syzkaller0: left allmulticast mode [ 191.301700][ T8325] __nla_validate_parse: 3 callbacks suppressed [ 191.301720][ T8325] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1076'. [ 191.325125][ T8335] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1078'. [ 192.694317][ T8340] validate_nla: 5 callbacks suppressed [ 192.694341][ T8340] netlink: 'syz.1.1081': attribute type 21 has an invalid length. [ 192.724587][ T8340] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1081'. [ 192.735501][ T8340] netlink: 'syz.1.1081': attribute type 5 has an invalid length. [ 192.743764][ T8340] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1081'. [ 192.836625][ T8350] netlink: 'syz.0.1083': attribute type 10 has an invalid length. [ 192.903883][ T8350] dummy0: entered promiscuous mode [ 192.957128][ T8350] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 193.196919][ T8361] FAULT_INJECTION: forcing a failure. [ 193.196919][ T8361] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.269497][ T8361] CPU: 0 PID: 8361 Comm: syz.0.1088 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 193.279651][ T8361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 193.286031][ T8357] netlink: 'syz.2.1086': attribute type 10 has an invalid length. [ 193.289718][ T8361] Call Trace: [ 193.289740][ T8361] [ 193.289755][ T8361] dump_stack_lvl+0x241/0x360 [ 193.289802][ T8361] ? __pfx_dump_stack_lvl+0x10/0x10 [ 193.289837][ T8361] ? __pfx__printk+0x10/0x10 [ 193.289879][ T8361] ? __pfx_lock_release+0x10/0x10 [ 193.289926][ T8361] should_fail_ex+0x3b0/0x4e0 [ 193.315731][ T8357] team0: Cannot enslave team device to itself [ 193.318481][ T8361] _copy_from_user+0x2f/0xe0 [ 193.318527][ T8361] copy_msghdr_from_user+0xae/0x680 [ 193.318579][ T8361] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 193.318654][ T8361] __sys_sendmsg+0x23d/0x3a0 [ 193.318692][ T8361] ? __pfx___sys_sendmsg+0x10/0x10 [ 193.318717][ T8361] ? trace_call_bpf+0x613/0x8a0 [ 193.318838][ T8361] ? perf_trace_preemptirq_template+0x2d2/0x3f0 [ 193.318899][ T8361] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 193.318932][ T8361] ? do_syscall_64+0x100/0x230 [ 193.318974][ T8361] ? do_syscall_64+0xb6/0x230 [ 193.387028][ T8361] do_syscall_64+0xf3/0x230 [ 193.391587][ T8361] ? clear_bhb_loop+0x35/0x90 [ 193.396260][ T8361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.402342][ T8361] RIP: 0033:0x7fa796975b99 [ 193.406757][ T8361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.426464][ T8361] RSP: 002b:00007fa7976c5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 193.434897][ T8361] RAX: ffffffffffffffda RBX: 00007fa796b03f60 RCX: 00007fa796975b99 [ 193.442900][ T8361] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 193.450933][ T8361] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 193.458934][ T8361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 193.466907][ T8361] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 193.474893][ T8361] [ 193.719065][ T8368] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1091'. [ 193.894271][ T8379] netlink: 'syz.0.1095': attribute type 21 has an invalid length. [ 193.929419][ T8379] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1095'. [ 193.953661][ T8379] netlink: 'syz.0.1095': attribute type 5 has an invalid length. [ 193.972555][ T8379] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1095'. [ 194.092371][ T8377] syzkaller0: entered promiscuous mode [ 194.105417][ T8377] syzkaller0: entered allmulticast mode [ 194.171796][ T8389] FAULT_INJECTION: forcing a failure. [ 194.171796][ T8389] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 194.194744][ T8389] CPU: 0 PID: 8389 Comm: syz.0.1098 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 194.204973][ T8389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 194.215091][ T8389] Call Trace: [ 194.218493][ T8389] [ 194.221487][ T8389] dump_stack_lvl+0x241/0x360 [ 194.226496][ T8389] ? __pfx_dump_stack_lvl+0x10/0x10 [ 194.231742][ T8389] ? __pfx__printk+0x10/0x10 [ 194.236395][ T8389] should_fail_ex+0x3b0/0x4e0 [ 194.241150][ T8389] prepare_alloc_pages+0x1da/0x5d0 [ 194.246469][ T8389] __alloc_pages_noprof+0x166/0x6c0 [ 194.251811][ T8389] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 194.257595][ T8389] alloc_pages_mpol_noprof+0x3e8/0x680 [ 194.263123][ T8389] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 194.269861][ T8389] vma_alloc_folio_noprof+0xf3/0x1f0 [ 194.275180][ T8389] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 194.281121][ T8389] ? do_raw_spin_unlock+0x13c/0x8b0 [ 194.286623][ T8389] folio_prealloc+0x31/0x170 [ 194.291554][ T8389] do_wp_page+0x11cc/0x52f0 [ 194.296267][ T8389] ? __pfx_do_wp_page+0x10/0x10 [ 194.301532][ T8389] ? __pfx_lock_acquire+0x10/0x10 [ 194.307015][ T8389] ? do_raw_spin_lock+0x14f/0x370 [ 194.312176][ T8389] handle_pte_fault+0x117e/0x7090 [ 194.317269][ T8389] ? cgroup_rstat_updated+0x13b/0xc60 [ 194.322760][ T8389] ? __pfx_validate_chain+0x10/0x10 [ 194.327990][ T8389] ? __pfx_cgroup_rstat_updated+0x10/0x10 [ 194.333754][ T8389] ? __pfx_handle_pte_fault+0x10/0x10 [ 194.339257][ T8389] ? __lock_acquire+0x1346/0x1fd0 [ 194.344369][ T8389] ? __pfx_lock_release+0x10/0x10 [ 194.349451][ T8389] handle_mm_fault+0x10df/0x1ba0 [ 194.354488][ T8389] ? __pfx_handle_mm_fault+0x10/0x10 [ 194.359902][ T8389] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 194.366258][ T8389] ? lock_mm_and_find_vma+0x9c/0x2f0 [ 194.371695][ T8389] exc_page_fault+0x2b9/0x8c0 [ 194.376462][ T8389] asm_exc_page_fault+0x26/0x30 [ 194.381375][ T8389] RIP: 0010:rep_movs_alternative+0x4a/0x70 [ 194.387202][ T8389] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 [ 194.406841][ T8389] RSP: 0018:ffffc9001386fa70 EFLAGS: 00050202 [ 194.412944][ T8389] RAX: ffffffff84aef501 RBX: 000000002000b580 RCX: 0000000000001580 [ 194.421021][ T8389] RDX: 0000000000000000 RSI: ffff888058f02640 RDI: 000000002000a000 [ 194.429186][ T8389] RBP: ffffc9001386fd08 R08: ffff888058f03bbf R09: 1ffff1100b1e0777 [ 194.437185][ T8389] R10: dffffc0000000000 R11: ffffed100b1e0778 R12: 0000000000003bc0 [ 194.445165][ T8389] R13: ffff888058f00000 R14: 00000000200079c0 R15: ffff888058f00000 [ 194.453435][ T8389] ? _copy_to_user+0x21/0xb0 [ 194.458060][ T8389] _copy_to_user+0x86/0xb0 [ 194.462850][ T8389] __htab_map_lookup_and_delete_batch+0x21b6/0x2680 [ 194.469542][ T8389] ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10 [ 194.476503][ T8389] ? __fget_files+0x3f6/0x470 [ 194.481191][ T8389] ? __fget_files+0x29/0x470 [ 194.485817][ T8389] ? __pfx_htab_percpu_map_lookup_batch+0x10/0x10 [ 194.492247][ T8389] bpf_map_do_batch+0x2d2/0x690 [ 194.497107][ T8389] __sys_bpf+0x654/0x810 [ 194.501357][ T8389] ? __pfx___sys_bpf+0x10/0x10 [ 194.506233][ T8389] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 194.512237][ T8389] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 194.518582][ T8389] ? do_syscall_64+0x100/0x230 [ 194.523387][ T8389] __x64_sys_bpf+0x7c/0x90 [ 194.527821][ T8389] do_syscall_64+0xf3/0x230 [ 194.532446][ T8389] ? clear_bhb_loop+0x35/0x90 [ 194.537404][ T8389] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.543326][ T8389] RIP: 0033:0x7fa796975b99 [ 194.547781][ T8389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.568061][ T8389] RSP: 002b:00007fa7976c5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 194.576517][ T8389] RAX: ffffffffffffffda RBX: 00007fa796b03f60 RCX: 00007fa796975b99 [ 194.584501][ T8389] RDX: 0000000000000038 RSI: 0000000020000000 RDI: 0000000000000018 [ 194.592586][ T8389] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 194.600572][ T8389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 194.608550][ T8389] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 194.616537][ T8389] [ 194.734899][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.741421][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.827825][ T5095] Bluetooth: hci2: ISO packet for unknown connection handle 16 [ 196.183938][ T8394] netlink: 'syz.0.1099': attribute type 10 has an invalid length. [ 196.216340][ T8396] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1100'. [ 196.247807][ T8398] netlink: 'syz.2.1101': attribute type 21 has an invalid length. [ 196.270921][ T8398] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1101'. [ 196.322058][ T8398] netlink: 'syz.2.1101': attribute type 5 has an invalid length. [ 196.355253][ T8398] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1101'. [ 196.439515][ T8401] netlink: 'syz.0.1102': attribute type 10 has an invalid length. [ 196.466281][ T8401] team0: Cannot enslave team device to itself [ 196.632173][ T8406] syzkaller0: entered promiscuous mode [ 196.640085][ T8406] syzkaller0: entered allmulticast mode [ 196.652984][ T8409] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1105'. [ 197.331351][ T8420] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1108'. [ 197.358639][ T8420] openvswitch: netlink: Geneve option length err (len 509, max 255). [ 198.853051][ T8429] netlink: 'syz.4.1112': attribute type 10 has an invalid length. [ 198.876572][ T8429] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 198.886098][ T8435] netlink: 'syz.0.1108': attribute type 309 has an invalid length. [ 198.991688][ T8442] netlink: 'syz.2.1116': attribute type 21 has an invalid length. [ 199.016289][ T8442] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1116'. [ 199.095449][ T8442] netlink: 'syz.2.1116': attribute type 5 has an invalid length. [ 199.114435][ T8442] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1116'. [ 199.201107][ T8451] netlink: 'syz.4.1117': attribute type 10 has an invalid length. [ 199.225571][ T8451] team0: Cannot enslave team device to itself [ 199.450505][ T8468] FAULT_INJECTION: forcing a failure. [ 199.450505][ T8468] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.481151][ T8468] CPU: 0 PID: 8468 Comm: syz.4.1124 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 199.482375][ T8466] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1120'. [ 199.491300][ T8468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 199.491354][ T8468] Call Trace: [ 199.491366][ T8468] [ 199.491376][ T8468] dump_stack_lvl+0x241/0x360 [ 199.491412][ T8468] ? __pfx_dump_stack_lvl+0x10/0x10 [ 199.491437][ T8468] ? __pfx__printk+0x10/0x10 [ 199.491462][ T8468] ? __pfx_lock_release+0x10/0x10 [ 199.491493][ T8468] should_fail_ex+0x3b0/0x4e0 [ 199.491522][ T8468] _copy_from_user+0x2f/0xe0 [ 199.491546][ T8468] csum_and_copy_from_iter_full+0x4eb/0x1df0 [ 199.491594][ T8468] ? __pfx_csum_and_copy_from_iter_full+0x10/0x10 [ 199.491618][ T8468] ? trace_kmalloc+0x1f/0xd0 [ 199.491650][ T8468] ? kmalloc_node_track_caller_noprof+0x242/0x440 [ 199.491686][ T8468] ? __build_skb_around+0x245/0x3d0 [ 199.491718][ T8468] ip_generic_getfrag+0x158/0x310 [ 199.491744][ T8468] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 199.491763][ T8468] ? raw_getfrag+0x104/0x350 [ 199.491782][ T8468] ? ip_append_data+0x70/0x190 [ 199.491802][ T8468] ? skb_put+0x114/0x1f0 [ 199.491830][ T8468] __ip_append_data+0x30e2/0x40b0 [ 199.491886][ T8468] ? __pfx_raw_getfrag+0x10/0x10 [ 199.491923][ T8468] ? __kasan_kmalloc+0x98/0xb0 [ 199.491949][ T8468] ? __pfx___ip_append_data+0x10/0x10 [ 199.491976][ T8468] ? ip_setup_cork+0x4ae/0x8b0 [ 199.492002][ T8468] ip_append_data+0x14c/0x190 [ 199.492027][ T8468] ? __pfx_raw_getfrag+0x10/0x10 [ 199.492056][ T8468] raw_sendmsg+0x1a53/0x2490 [ 199.638095][ T8468] ? __pfx_raw_sendmsg+0x10/0x10 [ 199.643078][ T8468] ? __pfx_lock_release+0x10/0x10 [ 199.648115][ T8468] ? inet_sendmsg+0x330/0x390 [ 199.652785][ T8468] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 199.658068][ T8468] ? security_socket_sendmsg+0x87/0xb0 [ 199.663526][ T8468] __sock_sendmsg+0x1a6/0x270 [ 199.668214][ T8468] ____sys_sendmsg+0x525/0x7d0 [ 199.672981][ T8468] ? __pfx_____sys_sendmsg+0x10/0x10 [ 199.678301][ T8468] __sys_sendmsg+0x2b0/0x3a0 [ 199.682922][ T8468] ? __pfx___sys_sendmsg+0x10/0x10 [ 199.688055][ T8468] ? perf_trace_preemptirq_template+0xf8/0x3f0 [ 199.694310][ T8468] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 199.700663][ T8468] do_syscall_64+0xf3/0x230 [ 199.705169][ T8468] ? clear_bhb_loop+0x35/0x90 [ 199.709845][ T8468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.715743][ T8468] RIP: 0033:0x7f8c2a975b99 [ 199.720240][ T8468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.739951][ T8468] RSP: 002b:00007f8c2b720048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 199.748480][ T8468] RAX: ffffffffffffffda RBX: 00007f8c2ab03f60 RCX: 00007f8c2a975b99 [ 199.756477][ T8468] RDX: 0000000000000000 RSI: 0000000020001640 RDI: 0000000000000009 [ 199.764472][ T8468] RBP: 00007f8c2b7200a0 R08: 0000000000000000 R09: 0000000000000000 [ 199.772459][ T8468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 199.780547][ T8468] R13: 000000000000000b R14: 00007f8c2ab03f60 R15: 00007ffc5f06c878 [ 199.788539][ T8468] [ 199.877048][ T8473] FAULT_INJECTION: forcing a failure. [ 199.877048][ T8473] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.899979][ T8473] CPU: 1 PID: 8473 Comm: syz.2.1125 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 199.910110][ T8473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 199.920191][ T8473] Call Trace: [ 199.923495][ T8473] [ 199.926457][ T8473] dump_stack_lvl+0x241/0x360 [ 199.931175][ T8473] ? __pfx_dump_stack_lvl+0x10/0x10 [ 199.936463][ T8473] ? __pfx__printk+0x10/0x10 [ 199.941091][ T8473] ? __pfx_lock_release+0x10/0x10 [ 199.946157][ T8473] should_fail_ex+0x3b0/0x4e0 [ 199.950888][ T8473] _copy_from_user+0x2f/0xe0 [ 199.955521][ T8473] btf_new_fd+0x324/0xd30 [ 199.959902][ T8473] ? __pfx_btf_new_fd+0x10/0x10 [ 199.964828][ T8473] ? bpf_btf_load+0xcf/0x1a0 [ 199.969449][ T8473] __sys_bpf+0x6ef/0x810 [ 199.973726][ T8473] ? __pfx___sys_bpf+0x10/0x10 [ 199.978551][ T8473] __x64_sys_bpf+0x7c/0x90 [ 199.983013][ T8473] do_syscall_64+0xf3/0x230 [ 199.987543][ T8473] ? clear_bhb_loop+0x35/0x90 [ 199.992374][ T8473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.998302][ T8473] RIP: 0033:0x7f3306175b99 [ 200.002747][ T8473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.022543][ T8473] RSP: 002b:00007f3306f1e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 200.030960][ T8473] RAX: ffffffffffffffda RBX: 00007f3306303f60 RCX: 00007f3306175b99 [ 200.039100][ T8473] RDX: 0000000000000020 RSI: 00000000200002c0 RDI: 0000000000000012 [ 200.047088][ T8473] RBP: 00007f3306f1e0a0 R08: 0000000000000000 R09: 0000000000000000 [ 200.055083][ T8473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 200.063094][ T8473] R13: 000000000000000b R14: 00007f3306303f60 R15: 00007ffc14ada4a8 [ 200.071119][ T8473] [ 200.118771][ T8479] netlink: 'syz.4.1127': attribute type 10 has an invalid length. [ 200.299719][ T8487] netlink: 'syz.4.1128': attribute type 29 has an invalid length. [ 200.335712][ T8487] netlink: 'syz.4.1128': attribute type 29 has an invalid length. [ 200.357288][ T8487] netlink: 'syz.4.1128': attribute type 29 has an invalid length. [ 200.366763][ T8487] netlink: 'syz.4.1128': attribute type 29 has an invalid length. [ 200.492241][ T8494] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1131'. [ 200.545835][ T8494] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1131'. [ 200.858543][ T8497] bridge0: port 2(bridge_slave_1) entered disabled state [ 200.874488][ T8497] bridge0: port 1(bridge_slave_0) entered disabled state [ 200.939888][ T8497] bridge0: entered allmulticast mode [ 201.156832][ T8503] team0: Cannot enslave team device to itself [ 201.404361][ T8513] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1136'. [ 201.677409][ T8528] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.685178][ T8528] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.703263][ T8528] bridge0: entered allmulticast mode [ 201.764729][ T8527] bridge_slave_1: left allmulticast mode [ 201.809348][ T8527] bridge_slave_1: left promiscuous mode [ 201.838494][ T8527] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.954292][ T8527] bridge_slave_0: left allmulticast mode [ 201.972327][ T8527] bridge_slave_0: left promiscuous mode [ 201.987813][ T8527] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.100833][ T8539] netlink: 120780 bytes leftover after parsing attributes in process `syz.2.1147'. [ 202.622824][ T8536] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1145'. [ 202.671243][ T8536] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1145'. [ 202.703214][ T8544] team0: Cannot enslave team device to itself [ 203.129182][ T8563] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1154'. [ 203.187443][ T8564] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1153'. [ 203.764330][ T8580] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1160'. [ 203.936922][ T8584] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.946611][ T8584] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.962874][ T8584] bridge0: entered allmulticast mode [ 204.003098][ T8585] validate_nla: 10 callbacks suppressed [ 204.003161][ T8585] netlink: 'syz.3.1162': attribute type 21 has an invalid length. [ 204.036107][ T8585] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1162'. [ 204.052007][ T8585] netlink: 'syz.3.1162': attribute type 5 has an invalid length. [ 204.080639][ T8585] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1162'. [ 204.102246][ T8595] netlink: 'syz.0.1164': attribute type 10 has an invalid length. [ 204.282208][ T8597] netlink: 'syz.2.1165': attribute type 10 has an invalid length. [ 204.317741][ T8597] team0: Cannot enslave team device to itself [ 204.459124][ T8604] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1168'. [ 204.645417][ T8601] netlink: 'syz.4.1167': attribute type 10 has an invalid length. [ 204.654146][ T8601] team0: Cannot enslave team device to itself [ 204.989079][ T5095] Bluetooth: hci4: ISO packet for unknown connection handle 0 [ 204.992416][ T8619] netlink: 'syz.3.1176': attribute type 10 has an invalid length. [ 205.222221][ T8624] netlink: 'syz.3.1178': attribute type 2 has an invalid length. [ 205.246844][ T8622] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.256725][ T8622] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.280536][ T8622] bridge0: entered allmulticast mode [ 205.335081][ T8625] bridge_slave_1: left allmulticast mode [ 205.340799][ T8625] bridge_slave_1: left promiscuous mode [ 205.363729][ T8625] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.424516][ T8625] bridge_slave_0: left allmulticast mode [ 205.445915][ T8625] bridge_slave_0: left promiscuous mode [ 205.451748][ T8625] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.552207][ T8631] netlink: 'syz.0.1179': attribute type 21 has an invalid length. [ 205.570246][ T8631] netlink: 'syz.0.1179': attribute type 5 has an invalid length. [ 206.027418][ T8647] netlink: 'syz.1.1188': attribute type 10 has an invalid length. [ 206.307481][ T8654] team0: Cannot enslave team device to itself [ 206.668191][ T8651] delete_channel: no stack [ 206.828959][ T8666] __nla_validate_parse: 6 callbacks suppressed [ 206.828978][ T8666] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1193'. [ 207.231980][ T8678] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1197'. [ 207.297212][ T8679] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.305569][ T8679] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.322033][ T8679] bridge0: entered allmulticast mode [ 207.458589][ T8683] mac80211_hwsim hwsim20 wlan1: entered promiscuous mode [ 207.469025][ T8683] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 207.532813][ T8694] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1202'. [ 207.548069][ T8694] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1202'. [ 207.858554][ T8701] delete_channel: no stack [ 207.903391][ T8700] team0: Cannot enslave team device to itself [ 208.052220][ T8698] team0: Cannot enslave team device to itself [ 208.087388][ T8706] team0: Cannot enslave team device to itself [ 208.377842][ T8717] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1212'. [ 208.479641][ T8725] veth0_vlan: entered allmulticast mode [ 209.549576][ T8728] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 209.574435][ T8735] validate_nla: 12 callbacks suppressed [ 209.574542][ T8735] netlink: 'syz.1.1218': attribute type 21 has an invalid length. [ 209.615774][ T8735] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1218'. [ 209.655311][ T8735] netlink: 'syz.1.1218': attribute type 5 has an invalid length. [ 209.675122][ T8735] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1218'. [ 209.734423][ T8743] netlink: 'syz.2.1220': attribute type 10 has an invalid length. [ 209.755330][ T8743] team0: Cannot enslave team device to itself [ 209.971177][ T8746] netlink: 'syz.0.1221': attribute type 10 has an invalid length. [ 210.000794][ T8746] team0: Cannot enslave team device to itself [ 210.191111][ T8753] netlink: 'syz.1.1224': attribute type 10 has an invalid length. [ 210.237055][ T8753] team0: Cannot enslave team device to itself [ 210.404764][ T8762] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1229'. [ 210.540384][ T8776] netlink: 16410 bytes leftover after parsing attributes in process `syz.1.1233'. [ 210.611085][ T8776] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1233'. [ 210.688269][ T8776] netlink: 'syz.1.1233': attribute type 10 has an invalid length. [ 210.713901][ T8784] netlink: 'syz.3.1237': attribute type 21 has an invalid length. [ 210.741016][ T8784] netlink: 'syz.3.1237': attribute type 5 has an invalid length. [ 210.987611][ T8789] netlink: 'syz.2.1238': attribute type 10 has an invalid length. [ 210.992909][ T8794] FAULT_INJECTION: forcing a failure. [ 210.992909][ T8794] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 211.005478][ T8789] team0: Cannot enslave team device to itself [ 211.051377][ T8794] CPU: 0 PID: 8794 Comm: syz.0.1241 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 211.061533][ T8794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 211.071638][ T8794] Call Trace: [ 211.074952][ T8794] [ 211.077915][ T8794] dump_stack_lvl+0x241/0x360 [ 211.082659][ T8794] ? __pfx_dump_stack_lvl+0x10/0x10 [ 211.087954][ T8794] ? __pfx__printk+0x10/0x10 [ 211.092610][ T8794] ? __pfx_lock_release+0x10/0x10 [ 211.097711][ T8794] should_fail_ex+0x3b0/0x4e0 [ 211.102461][ T8794] _copy_from_user+0x2f/0xe0 [ 211.107109][ T8794] copy_msghdr_from_user+0xae/0x680 [ 211.112385][ T8794] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 211.118293][ T8794] __sys_sendmsg+0x23d/0x3a0 [ 211.122950][ T8794] ? __pfx___sys_sendmsg+0x10/0x10 [ 211.128114][ T8794] ? trace_call_bpf+0x613/0x8a0 [ 211.133112][ T8794] ? perf_trace_preemptirq_template+0x2d2/0x3f0 [ 211.139439][ T8794] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 211.145825][ T8794] ? do_syscall_64+0x100/0x230 [ 211.150652][ T8794] ? do_syscall_64+0xb6/0x230 [ 211.155397][ T8794] do_syscall_64+0xf3/0x230 [ 211.159959][ T8794] ? clear_bhb_loop+0x35/0x90 [ 211.164775][ T8794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.170727][ T8794] RIP: 0033:0x7fa796975b99 [ 211.175189][ T8794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.194850][ T8794] RSP: 002b:00007fa7976c5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 211.203334][ T8794] RAX: ffffffffffffffda RBX: 00007fa796b03f60 RCX: 00007fa796975b99 [ 211.211366][ T8794] RDX: 0000000000000600 RSI: 0000000020000540 RDI: 0000000000000003 [ 211.219398][ T8794] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 211.227424][ T8794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 211.235447][ T8794] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 211.243523][ T8794] [ 211.497601][ T8806] dummy0: entered promiscuous mode [ 211.532847][ T8806] dummy0: entered allmulticast mode [ 211.809516][ T8821] FAULT_INJECTION: forcing a failure. [ 211.809516][ T8821] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 211.832266][ T8821] CPU: 1 PID: 8821 Comm: syz.4.1251 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 211.842489][ T8821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 211.852575][ T8821] Call Trace: [ 211.855882][ T8821] [ 211.858829][ T8821] dump_stack_lvl+0x241/0x360 [ 211.863531][ T8821] ? __pfx_dump_stack_lvl+0x10/0x10 [ 211.868757][ T8821] ? __pfx__printk+0x10/0x10 [ 211.873391][ T8821] ? snprintf+0xda/0x120 [ 211.877662][ T8821] should_fail_ex+0x3b0/0x4e0 [ 211.882352][ T8821] _copy_to_user+0x2f/0xb0 [ 211.886768][ T8821] simple_read_from_buffer+0xca/0x150 [ 211.892140][ T8821] proc_fail_nth_read+0x1e9/0x250 [ 211.897160][ T8821] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 211.902788][ T8821] ? rw_verify_area+0x514/0x6b0 [ 211.907631][ T8821] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 211.913168][ T8821] vfs_read+0x204/0xbd0 [ 211.917318][ T8821] ? __pfx_lock_release+0x10/0x10 [ 211.922353][ T8821] ? __pfx_vfs_read+0x10/0x10 [ 211.927046][ T8821] ? __fget_files+0x29/0x470 [ 211.931656][ T8821] ? __fget_files+0x3f6/0x470 [ 211.936438][ T8821] ksys_read+0x1a0/0x2c0 [ 211.940683][ T8821] ? __pfx_ksys_read+0x10/0x10 [ 211.945445][ T8821] ? do_syscall_64+0x100/0x230 [ 211.950208][ T8821] ? do_syscall_64+0xb6/0x230 [ 211.954911][ T8821] do_syscall_64+0xf3/0x230 [ 211.959440][ T8821] ? clear_bhb_loop+0x35/0x90 [ 211.964123][ T8821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.970053][ T8821] RIP: 0033:0x7f8c2a97467c [ 211.974561][ T8821] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 211.994190][ T8821] RSP: 002b:00007f8c2b720040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 212.002637][ T8821] RAX: ffffffffffffffda RBX: 00007f8c2ab03f60 RCX: 00007f8c2a97467c [ 212.010612][ T8821] RDX: 000000000000000f RSI: 00007f8c2b7200b0 RDI: 0000000000000004 [ 212.018617][ T8821] RBP: 00007f8c2b7200a0 R08: 0000000000000000 R09: 0000000000000000 [ 212.026598][ T8821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 212.034594][ T8821] R13: 000000000000000b R14: 00007f8c2ab03f60 R15: 00007ffc5f06c878 [ 212.042583][ T8821] [ 212.267824][ T8827] netlink: 'syz.3.1252': attribute type 21 has an invalid length. [ 212.304608][ T8827] __nla_validate_parse: 3 callbacks suppressed [ 212.304643][ T8827] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1252'. [ 212.364829][ T8827] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1252'. [ 212.712412][ T8846] team0: Cannot enslave team device to itself [ 212.856212][ T8855] dummy0: entered promiscuous mode [ 212.861581][ T8855] dummy0: entered allmulticast mode [ 212.889564][ T8854] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1260'. [ 213.051873][ T8860] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1263'. [ 213.917420][ T8882] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1269'. [ 213.946708][ T8882] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1269'. [ 214.251702][ T8893] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1274'. [ 214.367405][ T8891] team0: Cannot enslave team device to itself [ 214.619034][ T8899] validate_nla: 5 callbacks suppressed [ 214.619071][ T8899] netlink: 'syz.1.1277': attribute type 10 has an invalid length. [ 215.216133][ T8899] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 215.573372][ T8907] netlink: 'syz.3.1280': attribute type 10 has an invalid length. [ 215.645218][ T8907] team0: Cannot enslave team device to itself [ 215.742331][ T8920] netlink: 'syz.1.1283': attribute type 21 has an invalid length. [ 215.765198][ T8920] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1283'. [ 215.809127][ T8920] netlink: 'syz.1.1283': attribute type 5 has an invalid length. [ 215.845563][ T8920] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1283'. [ 216.644742][ T8931] FAULT_INJECTION: forcing a failure. [ 216.644742][ T8931] name failslab, interval 1, probability 0, space 0, times 0 [ 216.701607][ T8931] CPU: 0 PID: 8931 Comm: syz.1.1286 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 216.701962][ T8935] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1287'. [ 216.711910][ T8931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 216.711956][ T8931] Call Trace: [ 216.711968][ T8931] [ 216.711978][ T8931] dump_stack_lvl+0x241/0x360 [ 216.712020][ T8931] ? __pfx_dump_stack_lvl+0x10/0x10 [ 216.712043][ T8931] ? __pfx__printk+0x10/0x10 [ 216.712068][ T8931] ? __pfx___might_resched+0x10/0x10 [ 216.712098][ T8931] should_fail_ex+0x3b0/0x4e0 [ 216.712129][ T8931] ? tomoyo_realpath_from_path+0xcf/0x5e0 [ 216.712149][ T8931] should_failslab+0x9/0x20 [ 216.712174][ T8931] __kmalloc_noprof+0xd8/0x400 [ 216.712199][ T8931] ? kfree+0x4e/0x360 [ 216.712228][ T8931] tomoyo_realpath_from_path+0xcf/0x5e0 [ 216.712262][ T8931] tomoyo_path_number_perm+0x23a/0x880 [ 216.712294][ T8931] ? tomoyo_path_number_perm+0x208/0x880 [ 216.712319][ T8931] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 216.712377][ T8931] ? __fget_files+0x29/0x470 [ 216.808692][ T8931] ? __fget_files+0x3f6/0x470 [ 216.813377][ T8931] ? __fget_files+0x29/0x470 [ 216.817965][ T8931] security_file_ioctl+0x75/0xb0 [ 216.822904][ T8931] __se_sys_ioctl+0x47/0x170 [ 216.827518][ T8931] do_syscall_64+0xf3/0x230 [ 216.832038][ T8931] ? clear_bhb_loop+0x35/0x90 [ 216.836722][ T8931] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.842653][ T8931] RIP: 0033:0x7fad84b75b99 [ 216.847076][ T8931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.866681][ T8931] RSP: 002b:00007fad85964048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 216.875266][ T8931] RAX: ffffffffffffffda RBX: 00007fad84d03f60 RCX: 00007fad84b75b99 [ 216.883240][ T8931] RDX: 0000000020000000 RSI: 0000000000008b14 RDI: 0000000000000003 [ 216.891213][ T8931] RBP: 00007fad859640a0 R08: 0000000000000000 R09: 0000000000000000 [ 216.899206][ T8931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 216.907196][ T8931] R13: 000000000000000b R14: 00007fad84d03f60 R15: 00007ffd69f53278 [ 216.915210][ T8931] [ 216.947697][ T8931] ERROR: Out of memory at tomoyo_realpath_from_path. [ 217.181890][ T8950] netlink: 'syz.4.1291': attribute type 10 has an invalid length. [ 217.245778][ T8950] team0: Cannot enslave team device to itself [ 217.504508][ T8958] netlink: 14546 bytes leftover after parsing attributes in process `syz.0.1296'. [ 217.745363][ T8962] mac80211_hwsim hwsim16 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33) [ 217.792689][ T8964] netlink: 'syz.1.1300': attribute type 10 has an invalid length. [ 217.835097][ T8964] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1300'. [ 217.862276][ T8964] bridge0: port 2(bridge_slave_1) entered blocking state [ 217.869687][ T8964] bridge0: port 2(bridge_slave_1) entered forwarding state [ 217.877359][ T8964] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.884583][ T8964] bridge0: port 1(bridge_slave_0) entered forwarding state [ 217.919616][ T8970] netlink: 'syz.0.1302': attribute type 1 has an invalid length. [ 217.954168][ T8970] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.1302'. [ 218.018141][ T8964] bridge0: left allmulticast mode [ 218.052772][ T8974] netlink: 'syz.2.1303': attribute type 29 has an invalid length. [ 218.575561][ T8991] netlink: 'syz.2.1303': attribute type 27 has an invalid length. [ 218.614457][ T8991] netlink: 'syz.2.1303': attribute type 3 has an invalid length. [ 218.624562][ T8991] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1303'. [ 218.741802][ T8964] bond0: (slave bridge0): Releasing backup interface [ 218.787768][ T8964] bridge0: port 2(bridge_slave_1) entered disabled state [ 218.795179][ T8964] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.809792][ T8964] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 218.854006][ T8967] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1300'. [ 218.876876][ T8967] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1300'. [ 218.899167][ T8984] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1305'. [ 218.955725][ T8984] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1305'. [ 219.231076][ T9006] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1309'. [ 219.447102][ T9011] dummy0: entered allmulticast mode [ 219.492086][ T9013] mac80211_hwsim hwsim16 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33) [ 219.937285][ T9032] validate_nla: 5 callbacks suppressed [ 219.937307][ T9032] netlink: 'syz.4.1319': attribute type 1 has an invalid length. [ 219.958905][ T9031] netlink: 'syz.1.1320': attribute type 10 has an invalid length. [ 219.978076][ T9031] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1320'. [ 220.011561][ T9031] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.018851][ T9031] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.027321][ T9031] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.034595][ T9031] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.061085][ T9031] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 220.307971][ T9039] netlink: 'syz.1.1320': attribute type 21 has an invalid length. [ 220.343377][ T9039] netlink: 'syz.1.1320': attribute type 5 has an invalid length. [ 221.176996][ T9079] netlink: 'syz.0.1336': attribute type 1 has an invalid length. [ 222.302726][ T9115] FAULT_INJECTION: forcing a failure. [ 222.302726][ T9115] name failslab, interval 1, probability 0, space 0, times 0 [ 222.315731][ T9115] CPU: 0 PID: 9115 Comm: syz.0.1349 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 222.325821][ T9115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 222.335905][ T9115] Call Trace: [ 222.339189][ T9115] [ 222.342126][ T9115] dump_stack_lvl+0x241/0x360 [ 222.346822][ T9115] ? __pfx_dump_stack_lvl+0x10/0x10 [ 222.352133][ T9115] ? __pfx__printk+0x10/0x10 [ 222.356749][ T9115] ? irqentry_exit+0x63/0x90 [ 222.361377][ T9115] should_fail_ex+0x3b0/0x4e0 [ 222.366105][ T9115] ? skb_clone+0x20c/0x390 [ 222.370638][ T9115] should_failslab+0x9/0x20 [ 222.375250][ T9115] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 222.380644][ T9115] skb_clone+0x20c/0x390 [ 222.384903][ T9115] bpf_clone_redirect+0xab/0x3d0 [ 222.389843][ T9115] ? bpf_test_run+0x31e/0x910 [ 222.394517][ T9115] bpf_prog_297510cab277b9a5+0x5e/0x63 [ 222.399966][ T9115] ? debug_mutex_wake_waiter+0x130/0x320 [ 222.405619][ T9115] ? timekeeping_get_ns+0x5c/0x420 [ 222.410727][ T9115] ? seqcount_lockdep_reader_access+0x157/0x220 [ 222.417391][ T9115] ? lockdep_hardirqs_on+0x99/0x150 [ 222.422594][ T9115] ? bpf_test_run+0x31e/0x910 [ 222.427279][ T9115] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 222.433006][ T9115] ? ktime_get+0x3c/0xb0 [ 222.437441][ T9115] ? lockdep_hardirqs_on+0x99/0x150 [ 222.442651][ T9115] ? bpf_test_run+0x31e/0x910 [ 222.447319][ T9115] ? __pfx___cant_migrate+0x10/0x10 [ 222.452520][ T9115] ? bpf_test_run+0x31e/0x910 [ 222.457199][ T9115] ? kvm_sched_clock_read+0x11/0x20 [ 222.462390][ T9115] ? sched_clock+0x4a/0x70 [ 222.466809][ T9115] bpf_test_run+0x640/0x910 [ 222.471304][ T9115] ? lockdep_hardirqs_on+0x99/0x150 [ 222.476518][ T9115] ? __pfx_bpf_test_run+0x10/0x10 [ 222.481539][ T9115] ? eth_type_trans+0x3d1/0x7a0 [ 222.486390][ T9115] ? __pfx_eth_type_trans+0x10/0x10 [ 222.491579][ T9115] ? convert___skb_to_skb+0x41/0x620 [ 222.496863][ T9115] bpf_prog_test_run_skb+0xafa/0x13a0 [ 222.502237][ T9115] ? __pfx_lock_release+0x10/0x10 [ 222.507270][ T9115] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 222.513073][ T9115] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 222.518884][ T9115] bpf_prog_test_run+0x33a/0x3b0 [ 222.523990][ T9115] __sys_bpf+0x48d/0x810 [ 222.528238][ T9115] ? __pfx___sys_bpf+0x10/0x10 [ 222.533017][ T9115] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 222.539076][ T9115] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 222.545423][ T9115] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 222.551738][ T9115] ? __irq_exit_rcu+0x100/0x1c0 [ 222.556584][ T9115] __x64_sys_bpf+0x7c/0x90 [ 222.560995][ T9115] do_syscall_64+0xf3/0x230 [ 222.565522][ T9115] ? clear_bhb_loop+0x35/0x90 [ 222.570230][ T9115] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.576175][ T9115] RIP: 0033:0x7fa796975b99 [ 222.580585][ T9115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.600182][ T9115] RSP: 002b:00007fa7976c5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 222.608588][ T9115] RAX: ffffffffffffffda RBX: 00007fa796b03f60 RCX: 00007fa796975b99 [ 222.616551][ T9115] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a [ 222.624523][ T9115] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 222.632527][ T9115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 222.640517][ T9115] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 222.648606][ T9115] [ 222.687387][ T9120] netlink: 'syz.3.1351': attribute type 1 has an invalid length. [ 222.702212][ T9120] __nla_validate_parse: 8 callbacks suppressed [ 222.702229][ T9120] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1351'. [ 222.984491][ T9129] syzkaller0: entered promiscuous mode [ 222.996352][ T9129] syzkaller0: entered allmulticast mode [ 223.347147][ T13] wlan1: Trigger new scan to find an IBSS to join [ 224.020380][ T9151] netlink: 'syz.4.1362': attribute type 29 has an invalid length. [ 224.391339][ T9162] netlink: 'syz.4.1362': attribute type 27 has an invalid length. [ 224.415118][ T9162] netlink: 'syz.4.1362': attribute type 3 has an invalid length. [ 224.443576][ T9162] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1362'. [ 226.137461][ T9138] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1357'. [ 226.149607][ T9151] netlink: 'syz.4.1362': attribute type 29 has an invalid length. [ 226.179016][ T9160] netlink: 'syz.4.1362': attribute type 2 has an invalid length. [ 226.412401][ T9179] netlink: 'syz.1.1365': attribute type 1 has an invalid length. [ 226.426091][ T9179] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.1365'. [ 226.461715][ T8781] bridge_slave_1: left allmulticast mode [ 226.497769][ T8781] bridge_slave_1: left promiscuous mode [ 226.514961][ T8781] bridge0: port 2(bridge_slave_1) entered disabled state [ 226.981316][ T8781] bridge_slave_0: left allmulticast mode [ 227.029574][ T8781] bridge_slave_0: left promiscuous mode [ 227.057399][ T8781] bridge0: port 1(bridge_slave_0) entered disabled state [ 227.793884][ T8781] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 227.815930][ T8781] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 227.850231][ T8781] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 227.871781][ T8781] bond0 (unregistering): Released all slaves [ 227.899777][ T9181] netlink: 'syz.0.1368': attribute type 10 has an invalid length. [ 227.908839][ T9181] dummy0: left allmulticast mode [ 227.935073][ T9201] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1374'. [ 228.271199][ T9212] syzkaller0: entered promiscuous mode [ 228.291725][ T9212] syzkaller0: entered allmulticast mode [ 228.316225][ T13] wlan1: Trigger new scan to find an IBSS to join [ 228.566782][ T9238] netlink: 'syz.3.1384': attribute type 1 has an invalid length. [ 228.634185][ T9238] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1384'. [ 229.308056][ T2802] wlan1: Creating new IBSS network, BSSID 12:68:24:1b:a7:9f [ 230.754527][ T9250] netlink: 'syz.0.1388': attribute type 10 has an invalid length. [ 230.775021][ T9250] team0: Cannot enslave team device to itself [ 230.787394][ T9257] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1390'. [ 230.946373][ T9261] FAULT_INJECTION: forcing a failure. [ 230.946373][ T9261] name failslab, interval 1, probability 0, space 0, times 0 [ 230.959524][ T9261] CPU: 0 PID: 9261 Comm: syz.2.1392 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 230.969619][ T9261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 230.979699][ T9261] Call Trace: [ 230.982986][ T9261] [ 230.985917][ T9261] dump_stack_lvl+0x241/0x360 [ 230.990600][ T9261] ? __pfx_dump_stack_lvl+0x10/0x10 [ 230.995836][ T9261] ? __pfx__printk+0x10/0x10 [ 231.000603][ T9261] ? do_raw_spin_lock+0x14f/0x370 [ 231.005630][ T9261] should_fail_ex+0x3b0/0x4e0 [ 231.010318][ T9261] ? __inet_hash_connect+0xa2e/0x2170 [ 231.015691][ T9261] should_failslab+0x9/0x20 [ 231.020279][ T9261] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 231.025677][ T9261] __inet_hash_connect+0xa2e/0x2170 [ 231.030885][ T9261] ? __pfx___inet6_check_established+0x10/0x10 [ 231.037068][ T9261] ? __pfx___inet_hash_connect+0x10/0x10 [ 231.042735][ T9261] ? inet6_hash_connect+0x7d/0xd0 [ 231.047790][ T9261] tcp_v6_connect+0x1158/0x1e40 [ 231.052701][ T9261] ? __pfx_tcp_v6_connect+0x10/0x10 [ 231.057987][ T9261] ? mptcp_token_new_connect+0x55d/0x7b0 [ 231.063635][ T9261] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 231.069377][ T9261] ? mptcp_token_new_connect+0x55d/0x7b0 [ 231.075051][ T9261] ? mptcp_token_new_connect+0x600/0x7b0 [ 231.080720][ T9261] mptcp_connect+0x5ab/0x920 [ 231.085423][ T9261] __inet_stream_connect+0x262/0xf30 [ 231.090829][ T9261] ? __pfx___inet_stream_connect+0x10/0x10 [ 231.096667][ T9261] ? __kasan_kmalloc+0x98/0xb0 [ 231.101444][ T9261] ? tcp_sendmsg_fastopen+0x1d8/0x5d0 [ 231.106850][ T9261] ? kmalloc_trace_noprof+0x19c/0x2c0 [ 231.112275][ T9261] tcp_sendmsg_fastopen+0x3a2/0x5d0 [ 231.117528][ T9261] mptcp_sendmsg_fastopen+0x16f/0x530 [ 231.122913][ T9261] mptcp_sendmsg+0x1884/0x1b10 [ 231.127713][ T9261] ? aa_sk_perm+0x967/0xab0 [ 231.132255][ T9261] ? __pfx_aa_sk_perm+0x10/0x10 [ 231.137134][ T9261] ? iovec_from_user+0x61/0x240 [ 231.142019][ T9261] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 231.147171][ T9261] ? inet_send_prepare+0xbf/0x260 [ 231.152219][ T9261] __sock_sendmsg+0xef/0x270 [ 231.156840][ T9261] ____sys_sendmsg+0x525/0x7d0 [ 231.161624][ T9261] ? __pfx_____sys_sendmsg+0x10/0x10 [ 231.166923][ T9261] __sys_sendmsg+0x2b0/0x3a0 [ 231.171526][ T9261] ? __pfx___sys_sendmsg+0x10/0x10 [ 231.176658][ T9261] ? perf_trace_preemptirq_template+0x2d2/0x3f0 [ 231.182889][ T9261] ? do_syscall_64+0xb6/0x230 [ 231.187570][ T9261] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 231.193934][ T9261] ? do_syscall_64+0x100/0x230 [ 231.198803][ T9261] ? do_syscall_64+0xb6/0x230 [ 231.203514][ T9261] do_syscall_64+0xf3/0x230 [ 231.208123][ T9261] ? clear_bhb_loop+0x35/0x90 [ 231.212810][ T9261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.218709][ T9261] RIP: 0033:0x7f3306175b99 [ 231.223120][ T9261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.242739][ T9261] RSP: 002b:00007f3306f1e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 231.251243][ T9261] RAX: ffffffffffffffda RBX: 00007f3306303f60 RCX: 00007f3306175b99 [ 231.259318][ T9261] RDX: 00000000240020d9 RSI: 00000000200001c0 RDI: 0000000000000008 [ 231.267476][ T9261] RBP: 00007f3306f1e0a0 R08: 0000000000000000 R09: 0000000000000000 [ 231.276166][ T9261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 231.284134][ T9261] R13: 000000000000000b R14: 00007f3306303f60 R15: 00007ffc14ada4a8 [ 231.292117][ T9261] [ 231.376827][ T8781] hsr_slave_0: left promiscuous mode [ 231.493261][ T8781] hsr_slave_1: left promiscuous mode [ 231.569077][ T8781] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 231.587429][ T8781] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 231.628309][ T8781] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 231.671921][ T8781] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 231.815403][ T8781] veth1_macvtap: left promiscuous mode [ 231.821118][ T8781] veth0_macvtap: left promiscuous mode [ 231.895313][ T8781] veth1_vlan: left promiscuous mode [ 231.900784][ T8781] veth0_vlan: left promiscuous mode [ 232.035906][ T9286] netlink: 'syz.4.1401': attribute type 1 has an invalid length. [ 232.043686][ T9286] netlink: 193500 bytes leftover after parsing attributes in process `syz.4.1401'. [ 233.484466][ T8781] team0 (unregistering): Port device team_slave_1 removed [ 233.532657][ T8781] team0 (unregistering): Port device team_slave_0 removed [ 233.899795][ T9282] netlink: 'syz.0.1400': attribute type 10 has an invalid length. [ 233.961413][ T9297] netlink: 'syz.3.1404': attribute type 10 has an invalid length. [ 233.989035][ T9297] team0: Cannot enslave team device to itself [ 234.015540][ T9305] netlink: 'syz.2.1405': attribute type 10 has an invalid length. [ 234.028423][ T9305] team0: Cannot enslave team device to itself [ 234.186723][ T9314] netlink: 'syz.1.1408': attribute type 29 has an invalid length. [ 234.233355][ T9314] netlink: 'syz.1.1408': attribute type 29 has an invalid length. [ 234.250083][ T9315] delete_channel: no stack [ 234.255881][ T9320] netlink: 'syz.1.1408': attribute type 29 has an invalid length. [ 234.267602][ T9315] delete_channel: no stack [ 234.275170][ T9314] netlink: 'syz.1.1408': attribute type 29 has an invalid length. [ 234.311393][ T9314] netlink: 'syz.1.1408': attribute type 29 has an invalid length. [ 234.561138][ T9331] netlink: 'syz.1.1416': attribute type 10 has an invalid length. [ 234.579352][ T9331] dummy0: left promiscuous mode [ 234.597731][ T9331] dummy0: left allmulticast mode [ 234.911609][ T9337] team0: Cannot enslave team device to itself [ 235.274047][ T9351] team0: Device ipvlan1 failed to register rx_handler [ 236.005713][ T9377] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1431'. [ 236.187653][ T9378] team0: Cannot enslave team device to itself [ 237.096019][ T9404] validate_nla: 4 callbacks suppressed [ 237.096202][ T9404] netlink: 'syz.4.1442': attribute type 10 has an invalid length. [ 237.388682][ T9404] team0: Device ipvlan1 failed to register rx_handler [ 237.421125][ T9420] netlink: 'syz.1.1450': attribute type 10 has an invalid length. [ 237.499210][ T9427] netlink: 'syz.3.1453': attribute type 10 has an invalid length. [ 237.527556][ T9425] netlink: 'syz.2.1452': attribute type 10 has an invalid length. [ 237.557256][ T9425] team0: Cannot enslave team device to itself [ 238.386674][ T9453] netlink: 'syz.3.1467': attribute type 10 has an invalid length. [ 238.482214][ T9455] netlink: 'syz.4.1465': attribute type 10 has an invalid length. [ 238.543752][ T9455] dummy0: left promiscuous mode [ 238.556356][ T9455] dummy0: left allmulticast mode [ 238.646892][ T9449] netlink: 'syz.0.1464': attribute type 10 has an invalid length. [ 238.685688][ T9449] team0: Cannot enslave team device to itself [ 238.887381][ T9458] netlink: 'syz.1.1468': attribute type 10 has an invalid length. [ 238.905716][ T9458] team0: Cannot enslave team device to itself [ 240.595414][ T9504] netlink: 'syz.0.1484': attribute type 10 has an invalid length. [ 240.634991][ T9504] team0: Cannot enslave team device to itself [ 240.707695][ T9515] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1490'. [ 241.011290][ T9528] netlink: 'syz.3.1488': attribute type 10 has an invalid length. [ 241.093123][ T9528] team0: Device ipvlan1 failed to register rx_handler [ 241.975778][ T9554] team0: Cannot enslave team device to itself [ 242.316522][ T9565] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.1511'. [ 242.375399][ T9565] FAULT_INJECTION: forcing a failure. [ 242.375399][ T9565] name failslab, interval 1, probability 0, space 0, times 0 [ 242.441048][ T9565] CPU: 1 PID: 9565 Comm: syz.2.1511 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 242.451167][ T9565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 242.461247][ T9565] Call Trace: [ 242.464529][ T9565] [ 242.467487][ T9565] dump_stack_lvl+0x241/0x360 [ 242.472171][ T9565] ? __pfx_dump_stack_lvl+0x10/0x10 [ 242.477385][ T9565] ? __pfx__printk+0x10/0x10 [ 242.481988][ T9565] ? __pfx___might_resched+0x10/0x10 [ 242.487374][ T9565] ? vsnprintf+0x1cfc/0x1da0 [ 242.492026][ T9565] should_fail_ex+0x3b0/0x4e0 [ 242.496746][ T9565] should_failslab+0x9/0x20 [ 242.501256][ T9565] kmalloc_node_track_caller_noprof+0xda/0x440 [ 242.507410][ T9565] ? kobject_set_name_vargs+0x61/0x120 [ 242.512871][ T9565] kvasprintf+0xdf/0x190 [ 242.517105][ T9565] ? __pfx_lock_acquire+0x10/0x10 [ 242.522122][ T9565] ? __pfx_kvasprintf+0x10/0x10 [ 242.526963][ T9565] ? rcu_is_watching+0x15/0xb0 [ 242.531718][ T9565] ? mark_lock+0x9a/0x350 [ 242.536045][ T9565] ? kvasprintf_const+0x51/0x170 [ 242.540978][ T9565] kobject_set_name_vargs+0x61/0x120 [ 242.546264][ T9565] dev_set_name+0xd5/0x120 [ 242.550676][ T9565] ? wiphy_new_nm+0x69c/0x19a0 [ 242.555434][ T9565] ? __pfx_dev_set_name+0x10/0x10 [ 242.560449][ T9565] ? rcu_is_watching+0x15/0xb0 [ 242.565202][ T9565] ? wiphy_new_nm+0x625/0x19a0 [ 242.569958][ T9565] ? trace_kmalloc+0x1f/0xd0 [ 242.574826][ T9565] wiphy_new_nm+0x79f/0x19a0 [ 242.579433][ T9565] ? ieee80211_alloc_hw_nm+0x8f9/0x1ea0 [ 242.584973][ T9565] ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10 [ 242.591483][ T9565] ieee80211_alloc_hw_nm+0x3d4/0x1ea0 [ 242.596854][ T9565] ? mac80211_hwsim_new_radio+0xfb/0x44c0 [ 242.602572][ T9565] mac80211_hwsim_new_radio+0x1f1/0x44c0 [ 242.608233][ T9565] ? _printk+0xd5/0x120 [ 242.612751][ T9565] ? __pfx__printk+0x10/0x10 [ 242.617368][ T9565] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 242.623444][ T9565] ? rcu_is_watching+0x15/0xb0 [ 242.628214][ T9565] ? do_trace_netlink_extack+0x8b/0x1f0 [ 242.633765][ T9565] hwsim_new_radio_nl+0xe4c/0x21d0 [ 242.638914][ T9565] ? __pfx___nla_validate_parse+0x10/0x10 [ 242.644736][ T9565] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 242.650305][ T9565] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 242.656672][ T9565] genl_rcv_msg+0xb14/0xec0 [ 242.661253][ T9565] ? mark_lock+0x9a/0x350 [ 242.665605][ T9565] ? __pfx_genl_rcv_msg+0x10/0x10 [ 242.670794][ T9565] ? __pfx_lock_acquire+0x10/0x10 [ 242.675855][ T9565] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 242.681587][ T9565] ? __pfx___might_resched+0x10/0x10 [ 242.687018][ T9565] netlink_rcv_skb+0x1e3/0x430 [ 242.691807][ T9565] ? __pfx_genl_rcv_msg+0x10/0x10 [ 242.696853][ T9565] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 242.702263][ T9565] ? __pfx_genl_rcv+0x10/0x10 [ 242.706978][ T9565] ? genl_rcv+0xd/0x40 [ 242.711075][ T9565] genl_rcv+0x28/0x40 [ 242.715321][ T9565] netlink_unicast+0x7ea/0x980 [ 242.720138][ T9565] ? __pfx_netlink_unicast+0x10/0x10 [ 242.725440][ T9565] ? __virt_addr_valid+0x183/0x520 [ 242.730666][ T9565] ? __check_object_size+0x49c/0x900 [ 242.735966][ T9565] ? bpf_lsm_netlink_send+0x9/0x10 [ 242.741078][ T9565] netlink_sendmsg+0x8db/0xcb0 [ 242.746198][ T9565] ? __pfx_netlink_sendmsg+0x10/0x10 [ 242.751681][ T9565] ? aa_sock_msg_perm+0x91/0x160 [ 242.756749][ T9565] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 242.762065][ T9565] ? security_socket_sendmsg+0x87/0xb0 [ 242.767540][ T9565] ? __pfx_netlink_sendmsg+0x10/0x10 [ 242.772835][ T9565] __sock_sendmsg+0x221/0x270 [ 242.777532][ T9565] ____sys_sendmsg+0x525/0x7d0 [ 242.782320][ T9565] ? __pfx_____sys_sendmsg+0x10/0x10 [ 242.787676][ T9565] __sys_sendmsg+0x2b0/0x3a0 [ 242.792287][ T9565] ? __pfx___sys_sendmsg+0x10/0x10 [ 242.797427][ T9565] ? vfs_write+0x7c4/0xc90 [ 242.801880][ T9565] ? perf_trace_preemptirq_template+0xf8/0x3f0 [ 242.808047][ T9565] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 242.814391][ T9565] do_syscall_64+0xf3/0x230 [ 242.819014][ T9565] ? clear_bhb_loop+0x35/0x90 [ 242.823732][ T9565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.829734][ T9565] RIP: 0033:0x7f3306175b99 [ 242.834153][ T9565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 242.853754][ T9565] RSP: 002b:00007f3306f1e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 242.862168][ T9565] RAX: ffffffffffffffda RBX: 00007f3306303f60 RCX: 00007f3306175b99 [ 242.870137][ T9565] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009 [ 242.878101][ T9565] RBP: 00007f3306f1e0a0 R08: 0000000000000000 R09: 0000000000000000 [ 242.886065][ T9565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 242.894026][ T9565] R13: 000000000000000b R14: 00007f3306303f60 R15: 00007ffc14ada4a8 [ 242.902003][ T9565] [ 243.611073][ T9591] validate_nla: 2 callbacks suppressed [ 243.611096][ T9591] netlink: 'syz.3.1518': attribute type 10 has an invalid length. [ 243.695265][ T9591] team0: Cannot enslave team device to itself [ 243.965281][ T9599] netlink: 'syz.3.1525': attribute type 10 has an invalid length. [ 244.237114][ T9610] netlink: 'syz.3.1529': attribute type 10 has an invalid length. [ 244.582490][ T9627] netlink: 'syz.3.1535': attribute type 10 has an invalid length. [ 244.624151][ T9627] team0: Cannot enslave team device to itself [ 245.113362][ T9641] netlink: 'syz.3.1545': attribute type 10 has an invalid length. [ 245.754924][ T9659] netlink: 'syz.1.1551': attribute type 10 has an invalid length. [ 245.764004][ T9659] team0: Cannot enslave team device to itself [ 245.976188][ T9675] sock: sock_set_timeout: `syz.1.1559' (pid 9675) tries to set negative timeout [ 246.134159][ T9682] netlink: 'syz.2.1562': attribute type 10 has an invalid length. [ 246.498493][ T9694] netlink: 'syz.2.1568': attribute type 1 has an invalid length. [ 246.507296][ T9694] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.1568'. [ 246.696947][ T9700] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1571'. [ 246.727043][ T9703] netlink: 'syz.3.1569': attribute type 10 has an invalid length. [ 246.745190][ T9703] team0: Cannot enslave team device to itself [ 247.356924][ T9711] netlink: 'syz.2.1576': attribute type 3 has an invalid length. [ 247.768157][ T9733] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1584'. [ 247.851299][ T9739] netlink: 193500 bytes leftover after parsing attributes in process `syz.4.1586'. [ 248.719576][ T9769] FAULT_INJECTION: forcing a failure. [ 248.719576][ T9769] name failslab, interval 1, probability 0, space 0, times 0 [ 248.741229][ T9769] CPU: 0 PID: 9769 Comm: syz.2.1598 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 248.751349][ T9769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 248.761426][ T9769] Call Trace: [ 248.764712][ T9769] [ 248.767642][ T9769] dump_stack_lvl+0x241/0x360 [ 248.772343][ T9769] ? __pfx_dump_stack_lvl+0x10/0x10 [ 248.777561][ T9769] ? __pfx__printk+0x10/0x10 [ 248.782175][ T9769] ? nf_ct_pernet+0x45/0x270 [ 248.786795][ T9769] ? __pfx_lock_release+0x10/0x10 [ 248.791872][ T9769] should_fail_ex+0x3b0/0x4e0 [ 248.796886][ T9769] ? __nf_conntrack_alloc+0x8f/0x380 [ 248.802195][ T9769] should_failslab+0x9/0x20 [ 248.806714][ T9769] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 248.812129][ T9769] __nf_conntrack_alloc+0x8f/0x380 [ 248.817298][ T9769] init_conntrack+0x3c3/0x1310 [ 248.822105][ T9769] ? __pfx_init_conntrack+0x10/0x10 [ 248.827321][ T9769] ? __pfx___nf_conntrack_find_get+0x10/0x10 [ 248.833425][ T9769] ? __local_bh_enable_ip+0x168/0x200 [ 248.838824][ T9769] nf_conntrack_in+0xd59/0x1880 [ 248.843719][ T9769] ? __pfx_nf_conntrack_in+0x10/0x10 [ 248.849156][ T9769] ? __pfx_ipv6_conntrack_local+0x10/0x10 [ 248.854940][ T9769] nf_hook_slow+0xc3/0x220 [ 248.859388][ T9769] ? __pfx_dst_output+0x10/0x10 [ 248.864293][ T9769] nf_hook+0x2c4/0x450 [ 248.868396][ T9769] ? nf_hook+0x9e/0x450 [ 248.872559][ T9769] ? __pfx_nf_hook+0x10/0x10 [ 248.877157][ T9769] ? __pfx_dst_output+0x10/0x10 [ 248.882021][ T9769] ip6_xmit+0xed4/0x17f0 [ 248.886298][ T9769] ? __pfx_dst_output+0x10/0x10 [ 248.891204][ T9769] ? __pfx_ip6_xmit+0x10/0x10 [ 248.895913][ T9769] ? inet6_csk_route_socket+0x625/0xe30 [ 248.901612][ T9769] ? inet6_csk_route_socket+0x402/0xe30 [ 248.907216][ T9769] inet6_csk_xmit+0x466/0x700 [ 248.911945][ T9769] ? inet6_csk_xmit+0x1bc/0x700 [ 248.916837][ T9769] ? __pfx_inet6_csk_xmit+0x10/0x10 [ 248.922078][ T9769] ? __tcp_transmit_skb+0x2526/0x3b80 [ 248.927667][ T9769] ? __pfx_inet6_csk_xmit+0x10/0x10 [ 248.932918][ T9769] __tcp_transmit_skb+0x1eda/0x3b80 [ 248.938165][ T9769] ? tcp_fastopen_cache_get+0x30/0x4b0 [ 248.943672][ T9769] ? __pfx___tcp_transmit_skb+0x10/0x10 [ 248.949270][ T9769] ? tcp_fastopen_cookie_check+0x288/0x430 [ 248.955103][ T9769] tcp_connect+0x2bde/0x48b0 [ 248.959775][ T9769] ? __pfx_tcp_connect+0x10/0x10 [ 248.964738][ T9769] ? inet6_hash_connect+0x7d/0xd0 [ 248.970153][ T9769] tcp_v6_connect+0x14b1/0x1e40 [ 248.975226][ T9769] ? __pfx_tcp_v6_connect+0x10/0x10 [ 248.980998][ T9769] ? kasan_save_track+0x3f/0x80 [ 248.985894][ T9769] ? __kasan_kmalloc+0x98/0xb0 [ 248.990703][ T9769] __inet_stream_connect+0x262/0xf30 [ 248.996019][ T9769] ? __pfx___inet_stream_connect+0x10/0x10 [ 249.001857][ T9769] ? __kasan_kmalloc+0x98/0xb0 [ 249.006647][ T9769] ? tcp_sendmsg_fastopen+0x1d8/0x5d0 [ 249.012042][ T9769] ? kmalloc_trace_noprof+0x19c/0x2c0 [ 249.017440][ T9769] tcp_sendmsg_fastopen+0x3a2/0x5d0 [ 249.022766][ T9769] tcp_sendmsg_locked+0x47bc/0x4e10 [ 249.028011][ T9769] ? irqentry_exit+0x63/0x90 [ 249.032669][ T9769] ? lockdep_hardirqs_on+0x99/0x150 [ 249.037907][ T9769] ? perf_trace_run_bpf_submit+0xf8/0x1d0 [ 249.043856][ T9769] ? mark_lock+0x9a/0x350 [ 249.048219][ T9769] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 249.054221][ T9769] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 249.060576][ T9769] ? __local_bh_enable_ip+0x168/0x200 [ 249.065965][ T9769] ? lockdep_hardirqs_on+0x99/0x150 [ 249.071268][ T9769] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 249.076818][ T9769] ? __local_bh_enable_ip+0x168/0x200 [ 249.082203][ T9769] ? do_raw_spin_unlock+0x13c/0x8b0 [ 249.087431][ T9769] tcp_sendmsg+0x30/0x50 [ 249.091726][ T9769] __sock_sendmsg+0xef/0x270 [ 249.096448][ T9769] ____sys_sendmsg+0x525/0x7d0 [ 249.101506][ T9769] ? __pfx_____sys_sendmsg+0x10/0x10 [ 249.106906][ T9769] __sys_sendmsg+0x2b0/0x3a0 [ 249.111682][ T9769] ? __pfx___sys_sendmsg+0x10/0x10 [ 249.116832][ T9769] ? perf_trace_preemptirq_template+0xf8/0x3f0 [ 249.123103][ T9769] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 249.129506][ T9769] do_syscall_64+0xf3/0x230 [ 249.134205][ T9769] ? clear_bhb_loop+0x35/0x90 [ 249.138894][ T9769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.144795][ T9769] RIP: 0033:0x7f3306175b99 [ 249.149239][ T9769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.168881][ T9769] RSP: 002b:00007f3306f1e048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 249.177328][ T9769] RAX: ffffffffffffffda RBX: 00007f3306303f60 RCX: 00007f3306175b99 [ 249.185314][ T9769] RDX: 0000000024040810 RSI: 0000000020000800 RDI: 0000000000000009 [ 249.193312][ T9769] RBP: 00007f3306f1e0a0 R08: 0000000000000000 R09: 0000000000000000 [ 249.201309][ T9769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 249.209410][ T9769] R13: 000000000000000b R14: 00007f3306303f60 R15: 00007ffc14ada4a8 [ 249.217459][ T9769] [ 249.374022][ T9777] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1601'. [ 249.563089][ T9790] validate_nla: 6 callbacks suppressed [ 249.563111][ T9790] netlink: 'syz.4.1606': attribute type 1 has an invalid length. [ 249.693829][ T9790] netlink: 193500 bytes leftover after parsing attributes in process `syz.4.1606'. [ 249.730897][ T9792] netlink: 'syz.0.1607': attribute type 3 has an invalid length. [ 249.740680][ T9792] netlink: 'syz.0.1607': attribute type 3 has an invalid length. [ 249.750033][ T9792] netlink: 'syz.0.1607': attribute type 5 has an invalid length. [ 250.453801][ T9820] syz.4.1619: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz4,mems_allowed=0-1 [ 250.528154][ T9820] CPU: 1 PID: 9820 Comm: syz.4.1619 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 250.538291][ T9820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 250.548374][ T9820] Call Trace: [ 250.551649][ T9820] [ 250.554567][ T9820] dump_stack_lvl+0x241/0x360 [ 250.559250][ T9820] ? __pfx_dump_stack_lvl+0x10/0x10 [ 250.564448][ T9820] ? __pfx__printk+0x10/0x10 [ 250.569050][ T9820] ? cpuset_print_current_mems_allowed+0x1f/0x350 [ 250.575469][ T9820] ? cpuset_print_current_mems_allowed+0x31e/0x350 [ 250.581973][ T9820] warn_alloc+0x278/0x410 [ 250.586318][ T9820] ? stack_depot_save_flags+0x6e4/0x830 [ 250.591876][ T9820] ? __vmalloc_node_range_noprof+0x10b/0x1460 [ 250.598038][ T9820] ? __pfx_warn_alloc+0x10/0x10 [ 250.602893][ T9820] ? kasan_save_track+0x3f/0x80 [ 250.607753][ T9820] ? __kasan_kmalloc+0x98/0xb0 [ 250.612511][ T9820] ? xsk_setsockopt+0x598/0x950 [ 250.617358][ T9820] ? do_sock_setsockopt+0x3af/0x720 [ 250.622548][ T9820] ? __sys_setsockopt+0x1ae/0x250 [ 250.627566][ T9820] ? __x64_sys_setsockopt+0xb5/0xd0 [ 250.632754][ T9820] ? do_syscall_64+0xf3/0x230 [ 250.637632][ T9820] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.643736][ T9820] __vmalloc_node_range_noprof+0x130/0x1460 [ 250.649656][ T9820] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 250.655988][ T9820] ? __kasan_kmalloc+0x98/0xb0 [ 250.660774][ T9820] ? xskq_create+0x54/0x170 [ 250.665280][ T9820] vmalloc_user_noprof+0x74/0x80 [ 250.670213][ T9820] ? xskq_create+0xb6/0x170 [ 250.674713][ T9820] xskq_create+0xb6/0x170 [ 250.679041][ T9820] xsk_init_queue+0xa1/0x100 [ 250.683630][ T9820] xsk_setsockopt+0x598/0x950 [ 250.688316][ T9820] ? __pfx_xsk_setsockopt+0x10/0x10 [ 250.693513][ T9820] ? __pfx_lock_acquire+0x10/0x10 [ 250.698530][ T9820] ? aa_sock_opt_perm+0x79/0x120 [ 250.703466][ T9820] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 250.709010][ T9820] ? security_socket_setsockopt+0x87/0xb0 [ 250.714728][ T9820] ? __pfx_xsk_setsockopt+0x10/0x10 [ 250.719924][ T9820] do_sock_setsockopt+0x3af/0x720 [ 250.724985][ T9820] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 250.730525][ T9820] ? __fget_files+0x29/0x470 [ 250.735113][ T9820] ? __fget_files+0x3f6/0x470 [ 250.739886][ T9820] __sys_setsockopt+0x1ae/0x250 [ 250.744735][ T9820] __x64_sys_setsockopt+0xb5/0xd0 [ 250.749760][ T9820] do_syscall_64+0xf3/0x230 [ 250.754272][ T9820] ? clear_bhb_loop+0x35/0x90 [ 250.758944][ T9820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.764835][ T9820] RIP: 0033:0x7f8c2a975b99 [ 250.769250][ T9820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.788851][ T9820] RSP: 002b:00007f8c2b720048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 250.797300][ T9820] RAX: ffffffffffffffda RBX: 00007f8c2ab03f60 RCX: 00007f8c2a975b99 [ 250.805278][ T9820] RDX: 0000000000000002 RSI: 000000000000011b RDI: 000000000000000a [ 250.813257][ T9820] RBP: 00007f8c2a9e4a7a R08: 0000000000000004 R09: 0000000000000000 [ 250.821231][ T9820] R10: 0000000020000900 R11: 0000000000000246 R12: 0000000000000000 [ 250.829196][ T9820] R13: 000000000000000b R14: 00007f8c2ab03f60 R15: 00007ffc5f06c878 [ 250.837198][ T9820] [ 251.034606][ T9838] netlink: 'syz.3.1625': attribute type 3 has an invalid length. [ 251.048751][ T9820] Mem-Info: [ 251.051972][ T9820] active_anon:4370 inactive_anon:0 isolated_anon:0 [ 251.051972][ T9820] active_file:20367 inactive_file:38210 isolated_file:0 [ 251.051972][ T9820] unevictable:768 dirty:182 writeback:0 [ 251.051972][ T9820] slab_reclaimable:8784 slab_unreclaimable:100302 [ 251.051972][ T9820] mapped:13341 shmem:1270 pagetables:747 [ 251.051972][ T9820] sec_pagetables:0 bounce:0 [ 251.051972][ T9820] kernel_misc_reclaimable:0 [ 251.051972][ T9820] free:1384974 free_pcp:268 free_cma:0 [ 251.062521][ T9838] netlink: 'syz.3.1625': attribute type 3 has an invalid length. [ 251.132620][ T9820] Node 0 active_anon:17480kB inactive_anon:0kB active_file:81468kB inactive_file:152772kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:53364kB dirty:724kB writeback:0kB shmem:3544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10292kB pagetables:2988kB sec_pagetables:0kB all_unreclaimable? no [ 251.272712][ T9820] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 251.345267][ T9838] netlink: 'syz.3.1625': attribute type 5 has an invalid length. [ 251.392390][ T9820] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 251.421916][ T9820] lowmem_reserve[]: 0 2571 2571 0 0 [ 251.432128][ T9820] Node 0 DMA32 free:1572796kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:17380kB inactive_anon:0kB active_file:81468kB inactive_file:152448kB unevictable:1536kB writepending:732kB present:3129332kB managed:2659884kB mlocked:0kB bounce:0kB free_pcp:1788kB local_pcp:928kB free_cma:0kB [ 251.523117][ T9820] lowmem_reserve[]: 0 0 0 0 0 [ 251.566088][ T9820] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:324kB unevictable:0kB writepending:0kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 251.596133][ T9820] lowmem_reserve[]: 0 0 0 0 0 [ 251.600952][ T9820] Node 1 Normal free:3951176kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 251.632950][ T9820] lowmem_reserve[]: 0 0 0 0 0 [ 251.639055][ T9820] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 251.653335][ T9820] Node 0 DMA32: 2*4kB (UM) 521*8kB (ME) 706*16kB (UME) 641*32kB (UME) 367*64kB (UME) 80*128kB (UME) 29*256kB (UME) 24*512kB (UM) 9*1024kB (UM) 4*2048kB (M) 358*4096kB (ME) = 1573200kB [ 251.682799][ T9820] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 251.702231][ T9820] Node 1 Normal: 2*4kB (UM) 8*8kB (UM) 6*16kB (UM) 11*32kB (UM) 5*64kB (U) 2*128kB (U) 2*256kB (UM) 2*512kB (UM) 0*1024kB 4*2048kB (UM) 962*4096kB (M) = 3951176kB [ 251.748629][ T9820] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 251.769844][ T9820] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 251.784126][ T9820] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 251.802398][ T9820] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 251.812172][ T9820] 59801 total pagecache pages [ 251.818171][ T9820] 0 pages in swap cache [ 251.822539][ T9820] Free swap = 124996kB [ 251.827432][ T9820] Total swap = 124996kB [ 251.831726][ T9820] 2097051 pages RAM [ 251.836397][ T9820] 0 pages HighMem/MovableOnly [ 251.841220][ T9820] 400870 pages reserved [ 251.846146][ T9820] 0 pages cma reserved [ 252.063869][ T9874] netlink: 703 bytes leftover after parsing attributes in process `syz.2.1636'. [ 252.820436][ T9907] FAULT_INJECTION: forcing a failure. [ 252.820436][ T9907] name failslab, interval 1, probability 0, space 0, times 0 [ 252.891438][ T9907] CPU: 1 PID: 9907 Comm: syz.1.1648 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 252.901559][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 252.911634][ T9907] Call Trace: [ 252.914918][ T9907] [ 252.917842][ T9907] dump_stack_lvl+0x241/0x360 [ 252.922525][ T9907] ? __pfx_dump_stack_lvl+0x10/0x10 [ 252.927719][ T9907] ? __pfx__printk+0x10/0x10 [ 252.932312][ T9907] should_fail_ex+0x3b0/0x4e0 [ 252.936995][ T9907] ? kernfs_fop_write_iter+0x15b/0x500 [ 252.942451][ T9907] should_failslab+0x9/0x20 [ 252.946953][ T9907] __kmalloc_noprof+0xd8/0x400 [ 252.951713][ T9907] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 252.957611][ T9907] kernfs_fop_write_iter+0x15b/0x500 [ 252.962897][ T9907] vfs_write+0xa72/0xc90 [ 252.967316][ T9907] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 252.973128][ T9907] ? __pfx_vfs_write+0x10/0x10 [ 252.977902][ T9907] ksys_write+0x1a0/0x2c0 [ 252.982228][ T9907] ? __pfx_ksys_write+0x10/0x10 [ 252.987072][ T9907] ? do_syscall_64+0x100/0x230 [ 252.991833][ T9907] ? do_syscall_64+0xb6/0x230 [ 252.996507][ T9907] do_syscall_64+0xf3/0x230 [ 253.001007][ T9907] ? clear_bhb_loop+0x35/0x90 [ 253.005677][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.011564][ T9907] RIP: 0033:0x7fad84b75b99 [ 253.015972][ T9907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.035616][ T9907] RSP: 002b:00007fad85943048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 253.044046][ T9907] RAX: ffffffffffffffda RBX: 00007fad84d04038 RCX: 00007fad84b75b99 [ 253.052026][ T9907] RDX: 0000000000000006 RSI: 0000000020000040 RDI: 0000000000000004 [ 253.060176][ T9907] RBP: 00007fad859430a0 R08: 0000000000000000 R09: 0000000000000000 [ 253.068141][ T9907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.076103][ T9907] R13: 000000000000006e R14: 00007fad84d04038 R15: 00007ffd69f53278 [ 253.084117][ T9907] [ 253.490455][ T9919] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1652'. [ 254.429422][ T9948] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1664'. [ 254.476246][ T9954] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1666'. [ 254.797450][ T9960] netlink: 'syz.0.1669': attribute type 10 has an invalid length. [ 254.807110][ T9960] team0: Cannot enslave team device to itself [ 254.939191][ T9968] netlink: 'syz.2.1673': attribute type 2 has an invalid length. [ 254.977083][ T9968] netlink: 'syz.2.1673': attribute type 8 has an invalid length. [ 255.021487][ T9968] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1673'. [ 255.440978][ T9990] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1680'. [ 255.667770][ T9998] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1682'. [ 256.667931][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.675141][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.813535][T10006] netlink: 'syz.1.1687': attribute type 10 has an invalid length. [ 256.854963][T10006] team0: Cannot enslave team device to itself [ 258.036460][T10039] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1697'. [ 258.130405][T10036] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1698'. [ 258.926987][T10072] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1711'. [ 259.115038][T10084] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1712'. [ 259.158114][T10083] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1713'. [ 259.437203][T10092] netlink: 'syz.2.1715': attribute type 16 has an invalid length. [ 259.467071][T10092] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1715'. [ 259.497102][T10092] bridge_slave_0: entered allmulticast mode [ 259.556773][T10099] netlink: 'syz.3.1718': attribute type 12 has an invalid length. [ 259.575476][T10099] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1718'. [ 259.971992][T10115] netlink: 'syz.4.1725': attribute type 29 has an invalid length. [ 260.002074][T10115] netlink: 'syz.4.1725': attribute type 29 has an invalid length. [ 260.024212][T10116] netlink: 'syz.4.1725': attribute type 29 has an invalid length. [ 260.060592][T10118] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1726'. [ 260.077522][T10120] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1727'. [ 260.300208][T10132] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1728'. [ 261.126909][T10162] netlink: 'syz.2.1744': attribute type 1 has an invalid length. [ 261.141812][T10162] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.1744'. [ 261.166805][T10164] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1743'. [ 261.859595][ T13] team0: left allmulticast mode [ 261.864507][ T13] team_slave_0: left allmulticast mode [ 261.914970][ T13] team_slave_1: left allmulticast mode [ 261.932772][ T13] geneve1: left allmulticast mode [ 261.942924][ T13] team0: left promiscuous mode [ 261.961144][ T13] team_slave_0: left promiscuous mode [ 261.981900][ T13] team_slave_1: left promiscuous mode [ 261.988275][ T13] geneve1: left promiscuous mode [ 262.005460][ T13] bridge0: port 3(team0) entered disabled state [ 262.037538][ T13] bridge_slave_1: left allmulticast mode [ 262.043238][ T13] bridge_slave_1: left promiscuous mode [ 262.077092][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 262.186169][ T13] bridge_slave_0: left allmulticast mode [ 262.191892][ T13] bridge_slave_0: left promiscuous mode [ 262.255419][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 262.601728][T10210] netlink: 'syz.0.1761': attribute type 1 has an invalid length. [ 263.287578][ T13] team0: Port device geneve1 removed [ 263.353136][T10235] netlink: 'syz.3.1769': attribute type 10 has an invalid length. [ 263.927246][T10258] netlink: 'syz.4.1780': attribute type 1 has an invalid length. [ 263.976093][T10258] __nla_validate_parse: 2 callbacks suppressed [ 263.976114][T10258] netlink: 193500 bytes leftover after parsing attributes in process `syz.4.1780'. [ 264.042778][T10263] netlink: 'syz.3.1782': attribute type 10 has an invalid length. [ 264.398738][ T13] hsr_slave_0: left promiscuous mode [ 264.425916][ T13] hsr_slave_1: left promiscuous mode [ 264.454735][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 264.467187][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 264.492129][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 264.506174][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 264.582294][ T13] veth1_macvtap: left promiscuous mode [ 264.615129][ T13] veth0_macvtap: left promiscuous mode [ 264.626233][ T13] veth1_vlan: left promiscuous mode [ 264.647773][ T13] veth0_vlan: left promiscuous mode [ 265.651934][T10307] netlink: 'syz.1.1798': attribute type 1 has an invalid length. [ 265.663592][T10307] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.1798'. [ 266.243965][ T13] team0 (unregistering): Port device team_slave_1 removed [ 266.304608][ T13] team0 (unregistering): Port device team_slave_0 removed [ 267.412812][T10349] FAULT_INJECTION: forcing a failure. [ 267.412812][T10349] name failslab, interval 1, probability 0, space 0, times 0 [ 267.427932][T10349] CPU: 0 PID: 10349 Comm: syz.0.1814 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 267.438136][T10349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 267.448306][T10349] Call Trace: [ 267.451624][T10349] [ 267.454594][T10349] dump_stack_lvl+0x241/0x360 [ 267.459323][T10349] ? __pfx_dump_stack_lvl+0x10/0x10 [ 267.464570][T10349] ? __pfx__printk+0x10/0x10 [ 267.469194][T10349] ? __pfx___might_resched+0x10/0x10 [ 267.474520][T10349] should_fail_ex+0x3b0/0x4e0 [ 267.479232][T10349] ? bpf_test_init+0xe1/0x180 [ 267.483937][T10349] should_failslab+0x9/0x20 [ 267.488479][T10349] __kmalloc_noprof+0xd8/0x400 [ 267.493285][T10349] bpf_test_init+0xe1/0x180 [ 267.497818][T10349] bpf_prog_test_run_skb+0x2a0/0x13a0 [ 267.503221][T10349] ? __pfx_lock_release+0x10/0x10 [ 267.508295][T10349] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 267.514144][T10349] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 267.519993][T10349] bpf_prog_test_run+0x33a/0x3b0 [ 267.524962][T10349] __sys_bpf+0x48d/0x810 [ 267.529254][T10349] ? __pfx___sys_bpf+0x10/0x10 [ 267.534133][T10349] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 267.540312][T10349] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 267.546652][T10349] ? do_syscall_64+0x100/0x230 [ 267.551447][T10349] __x64_sys_bpf+0x7c/0x90 [ 267.555888][T10349] do_syscall_64+0xf3/0x230 [ 267.560403][T10349] ? clear_bhb_loop+0x35/0x90 [ 267.565089][T10349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.570988][T10349] RIP: 0033:0x7fa796975b99 [ 267.575404][T10349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.595025][T10349] RSP: 002b:00007fa7976c5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 267.603450][T10349] RAX: ffffffffffffffda RBX: 00007fa796b03f60 RCX: 00007fa796975b99 [ 267.611444][T10349] RDX: 0000000000000050 RSI: 0000000020000080 RDI: 000000000000000a [ 267.619420][T10349] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 267.627397][T10349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 267.635374][T10349] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 267.643367][T10349] [ 267.837201][T10362] netlink: 'syz.0.1819': attribute type 1 has an invalid length. [ 267.871778][T10362] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.1819'. [ 268.127828][T10379] pim6reg1: entered promiscuous mode [ 268.165005][T10379] pim6reg1: entered allmulticast mode [ 268.951845][T10417] netlink: 'syz.3.1841': attribute type 1 has an invalid length. [ 268.971022][T10417] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1841'. [ 269.393972][T10434] netlink: 'syz.0.1848': attribute type 16 has an invalid length. [ 269.416533][T10434] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1848'. [ 269.921117][T10457] netlink: 'syz.0.1857': attribute type 1 has an invalid length. [ 269.932017][T10457] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.1857'. [ 270.133201][T10469] FAULT_INJECTION: forcing a failure. [ 270.133201][T10469] name failslab, interval 1, probability 0, space 0, times 0 [ 270.148131][T10469] CPU: 1 PID: 10469 Comm: syz.4.1862 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 270.158330][T10469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 270.168710][T10469] Call Trace: [ 270.172092][T10469] [ 270.175045][T10469] dump_stack_lvl+0x241/0x360 [ 270.179934][T10469] ? __pfx_dump_stack_lvl+0x10/0x10 [ 270.185172][T10469] ? __pfx__printk+0x10/0x10 [ 270.189821][T10469] should_fail_ex+0x3b0/0x4e0 [ 270.194554][T10469] ? sctp_add_bind_addr+0x89/0x3a0 [ 270.199713][T10469] should_failslab+0x9/0x20 [ 270.204248][T10469] kmalloc_trace_noprof+0x6c/0x2c0 [ 270.209399][T10469] sctp_add_bind_addr+0x89/0x3a0 [ 270.214551][T10469] sctp_copy_local_addr_list+0x311/0x500 [ 270.220216][T10469] ? sctp_copy_local_addr_list+0xab/0x500 [ 270.225975][T10469] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 270.232169][T10469] ? sctp_v4_is_any+0x35/0x60 [ 270.236889][T10469] sctp_bind_addr_copy+0xad/0x3b0 [ 270.242121][T10469] ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190 [ 270.248497][T10469] sctp_connect_new_asoc+0x2f3/0x6c0 [ 270.253823][T10469] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 270.259656][T10469] ? sctp_sendmsg+0xbb9/0x3520 [ 270.264446][T10469] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 270.270010][T10469] ? security_sctp_bind_connect+0x90/0xb0 [ 270.275781][T10469] sctp_sendmsg+0x219a/0x3520 [ 270.280530][T10469] ? __pfx_sctp_sendmsg+0x10/0x10 [ 270.285626][T10469] ? __pfx_aa_sk_perm+0x10/0x10 [ 270.290522][T10469] ? inet_sendmsg+0x330/0x390 [ 270.295313][T10469] __sock_sendmsg+0x1a6/0x270 [ 270.300018][T10469] ____sys_sendmsg+0x525/0x7d0 [ 270.304824][T10469] ? __pfx_____sys_sendmsg+0x10/0x10 [ 270.310176][T10469] __sys_sendmsg+0x2b0/0x3a0 [ 270.314807][T10469] ? __pfx___sys_sendmsg+0x10/0x10 [ 270.319958][T10469] ? vfs_write+0x7c4/0xc90 [ 270.324473][T10469] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 270.330833][T10469] ? do_syscall_64+0x100/0x230 [ 270.335635][T10469] ? do_syscall_64+0xb6/0x230 [ 270.340340][T10469] do_syscall_64+0xf3/0x230 [ 270.344860][T10469] ? clear_bhb_loop+0x35/0x90 [ 270.349584][T10469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.355494][T10469] RIP: 0033:0x7f8c2a975b99 [ 270.359903][T10469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.379621][T10469] RSP: 002b:00007f8c2b720048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 270.388243][T10469] RAX: ffffffffffffffda RBX: 00007f8c2ab03f60 RCX: 00007f8c2a975b99 [ 270.396274][T10469] RDX: 0000000000000000 RSI: 00000000200075c0 RDI: 0000000000000003 [ 270.404249][T10469] RBP: 00007f8c2b7200a0 R08: 0000000000000000 R09: 0000000000000000 [ 270.412370][T10469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 270.420372][T10469] R13: 000000000000000b R14: 00007f8c2ab03f60 R15: 00007ffc5f06c878 [ 270.428366][T10469] [ 270.931898][T10490] FAULT_INJECTION: forcing a failure. [ 270.931898][T10490] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 270.973037][T10490] CPU: 0 PID: 10490 Comm: syz.0.1869 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 270.983262][T10490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 270.993346][T10490] Call Trace: [ 270.996666][T10490] [ 270.999627][T10490] dump_stack_lvl+0x241/0x360 [ 271.004346][T10490] ? __pfx_dump_stack_lvl+0x10/0x10 [ 271.009590][T10490] ? __pfx__printk+0x10/0x10 [ 271.014315][T10490] ? __pfx_lock_release+0x10/0x10 [ 271.019407][T10490] ? __lock_acquire+0x1346/0x1fd0 [ 271.024643][T10490] should_fail_ex+0x3b0/0x4e0 [ 271.029362][T10490] _copy_from_user+0x2f/0xe0 [ 271.034061][T10490] kstrtouint_from_user+0xc6/0x190 [ 271.039217][T10490] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 271.044957][T10490] ? __pfx_lock_acquire+0x10/0x10 [ 271.049991][T10490] proc_fail_nth_write+0xaa/0x2d0 [ 271.055012][T10490] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 271.060903][T10490] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 271.066543][T10490] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 271.072171][T10490] vfs_write+0x2a2/0xc90 [ 271.076417][T10490] ? __pfx_vfs_write+0x10/0x10 [ 271.081186][T10490] ? __fget_files+0x29/0x470 [ 271.085773][T10490] ? __fget_files+0x3f6/0x470 [ 271.090460][T10490] ksys_write+0x1a0/0x2c0 [ 271.094787][T10490] ? __pfx_ksys_write+0x10/0x10 [ 271.099630][T10490] ? do_syscall_64+0x100/0x230 [ 271.104391][T10490] ? do_syscall_64+0xb6/0x230 [ 271.109062][T10490] do_syscall_64+0xf3/0x230 [ 271.113561][T10490] ? clear_bhb_loop+0x35/0x90 [ 271.118230][T10490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.124128][T10490] RIP: 0033:0x7fa79697471f [ 271.128546][T10490] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48 [ 271.148512][T10490] RSP: 002b:00007fa7976c5040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 271.156928][T10490] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa79697471f [ 271.164893][T10490] RDX: 0000000000000001 RSI: 00007fa7976c50b0 RDI: 0000000000000005 [ 271.172864][T10490] RBP: 00007fa7976c50a0 R08: 0000000000000000 R09: 0000000000000000 [ 271.180833][T10490] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 271.188796][T10490] R13: 000000000000000b R14: 00007fa796b03f60 R15: 00007ffcc699f308 [ 271.196870][T10490] [ 271.426761][T10510] ================================================================== [ 271.434915][T10510] BUG: KASAN: slab-use-after-free in dev_map_enqueue+0x40/0x3e0 [ 271.442609][T10510] Read of size 8 at addr ffff888065867900 by task syz.4.1876/10510 [ 271.450533][T10510] [ 271.452870][T10510] CPU: 0 PID: 10510 Comm: syz.4.1876 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 271.461224][T10509] netlink: 'syz.0.1875': attribute type 3 has an invalid length. [ 271.463012][T10510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 271.463029][T10510] Call Trace: [ 271.463038][T10510] [ 271.463047][T10510] dump_stack_lvl+0x241/0x360 [ 271.491900][T10510] ? __pfx_dump_stack_lvl+0x10/0x10 [ 271.497129][T10510] ? __pfx__printk+0x10/0x10 [ 271.501755][T10510] ? _printk+0xd5/0x120 [ 271.505415][T10509] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.1875'. [ 271.505921][T10510] ? __virt_addr_valid+0x183/0x520 [ 271.505953][T10510] ? __virt_addr_valid+0x183/0x520 [ 271.505979][T10510] print_report+0x169/0x550 [ 271.530175][T10510] ? __virt_addr_valid+0x183/0x520 [ 271.535302][T10510] ? __virt_addr_valid+0x183/0x520 [ 271.540488][T10510] ? __virt_addr_valid+0x44e/0x520 [ 271.545695][T10510] ? __phys_addr+0xba/0x170 [ 271.550201][T10510] ? dev_map_enqueue+0x40/0x3e0 [ 271.555103][T10510] kasan_report+0x143/0x180 [ 271.559618][T10510] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 271.565643][T10510] ? dev_map_enqueue+0x40/0x3e0 [ 271.570514][T10510] dev_map_enqueue+0x40/0x3e0 [ 271.575193][T10510] xdp_do_redirect_frame+0x2a6/0x660 [ 271.580480][T10510] bpf_test_run_xdp_live+0xe60/0x1e60 [ 271.585860][T10510] ? bpf_test_run_xdp_live+0x724/0x1e60 [ 271.591398][T10510] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 271.597208][T10510] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 271.603105][T10510] ? __might_fault+0xaa/0x120 [ 271.607782][T10510] ? __might_fault+0xc6/0x120 [ 271.612465][T10510] ? _copy_from_user+0xa6/0xe0 [ 271.617219][T10510] ? bpf_test_init+0x15a/0x180 [ 271.621971][T10510] ? xdp_convert_md_to_buff+0x5b/0x330 [ 271.627421][T10510] bpf_prog_test_run_xdp+0x80e/0x11b0 [ 271.632818][T10510] ? __pfx_lock_release+0x10/0x10 [ 271.637883][T10510] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 271.643706][T10510] ? __fget_files+0x29/0x470 [ 271.648314][T10510] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 271.654125][T10510] bpf_prog_test_run+0x33a/0x3b0 [ 271.659077][T10510] __sys_bpf+0x48d/0x810 [ 271.663329][T10510] ? __pfx___sys_bpf+0x10/0x10 [ 271.668094][T10510] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 271.674065][T10510] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 271.680384][T10510] ? do_syscall_64+0x100/0x230 [ 271.685147][T10510] __x64_sys_bpf+0x7c/0x90 [ 271.689561][T10510] do_syscall_64+0xf3/0x230 [ 271.694057][T10510] ? clear_bhb_loop+0x35/0x90 [ 271.698894][T10510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.704821][T10510] RIP: 0033:0x7f8c2a975b99 [ 271.709230][T10510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.728909][T10510] RSP: 002b:00007f8c2b6ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 271.737320][T10510] RAX: ffffffffffffffda RBX: 00007f8c2ab04038 RCX: 00007f8c2a975b99 [ 271.745288][T10510] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a [ 271.753250][T10510] RBP: 00007f8c2a9e4a7a R08: 0000000000000000 R09: 0000000000000000 [ 271.761320][T10510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.769298][T10510] R13: 000000000000006e R14: 00007f8c2ab04038 R15: 00007ffc5f06c878 [ 271.777268][T10510] [ 271.780272][T10510] [ 271.782578][T10510] Allocated by task 7338: [ 271.786892][T10510] kasan_save_track+0x3f/0x80 [ 271.791563][T10510] __kasan_kmalloc+0x98/0xb0 [ 271.796142][T10510] kmalloc_trace_noprof+0x19c/0x2c0 [ 271.801340][T10510] alloc_fdtable+0xa1/0x280 [ 271.805828][T10510] dup_fd+0x893/0xce0 [ 271.809824][T10510] copy_files+0x150/0x2a0 [ 271.814159][T10510] copy_process+0x171b/0x3dc0 [ 271.818874][T10510] kernel_clone+0x226/0x8f0 [ 271.823375][T10510] __x64_sys_clone+0x258/0x2a0 [ 271.828149][T10510] do_syscall_64+0xf3/0x230 [ 271.832650][T10510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.838536][T10510] [ 271.840843][T10510] Freed by task 10205: [ 271.844892][T10510] kasan_save_track+0x3f/0x80 [ 271.849558][T10510] kasan_save_free_info+0x40/0x50 [ 271.854607][T10510] poison_slab_object+0xe0/0x150 [ 271.859530][T10510] __kasan_slab_free+0x37/0x60 [ 271.864281][T10510] kfree+0x149/0x360 [ 271.868169][T10510] put_files_struct+0x2e9/0x360 [ 271.873032][T10510] do_exit+0xa08/0x27e0 [ 271.877261][T10510] do_group_exit+0x207/0x2c0 [ 271.881861][T10510] __x64_sys_exit_group+0x3f/0x40 [ 271.886975][T10510] do_syscall_64+0xf3/0x230 [ 271.891482][T10510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.897366][T10510] [ 271.899699][T10510] The buggy address belongs to the object at ffff888065867900 [ 271.899699][T10510] which belongs to the cache kmalloc-cg-64 of size 64 [ 271.913821][T10510] The buggy address is located 0 bytes inside of [ 271.913821][T10510] freed 64-byte region [ffff888065867900, ffff888065867940) [ 271.927340][T10510] [ 271.929644][T10510] The buggy address belongs to the physical page: [ 271.936043][T10510] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888065867900 pfn:0x65867 [ 271.946093][T10510] memcg:ffff88801f51a801 [ 271.950322][T10510] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 271.957760][T10510] page_type: 0xffffefff(slab) [ 271.962423][T10510] raw: 00fff00000000000 ffff88801504dc80 ffffea0001627e40 0000000000000003 [ 271.970999][T10510] raw: ffff888065867900 000000000020000d 00000001ffffefff ffff88801f51a801 [ 271.979581][T10510] page dumped because: kasan: bad access detected [ 271.986005][T10510] page_owner tracks the page as allocated [ 271.991705][T10510] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5088, tgid 5088 (syz-executor), ts 65583309515, free_ts 65582943795 [ 272.010880][T10510] post_alloc_hook+0x1f3/0x230 [ 272.015703][T10510] get_page_from_freelist+0x2e4c/0x2f10 [ 272.021380][T10510] __alloc_pages_noprof+0x256/0x6c0 [ 272.026619][T10510] alloc_slab_page+0x5f/0x120 [ 272.031293][T10510] allocate_slab+0x5a/0x2f0 [ 272.035788][T10510] ___slab_alloc+0xcd1/0x14b0 [ 272.040461][T10510] __slab_alloc+0x58/0xa0 [ 272.044790][T10510] kmalloc_trace_noprof+0x1d5/0x2c0 [ 272.050014][T10510] alloc_fdtable+0xa1/0x280 [ 272.054534][T10510] dup_fd+0x893/0xce0 [ 272.058533][T10510] copy_files+0x150/0x2a0 [ 272.062898][T10510] copy_process+0x171b/0x3dc0 [ 272.067582][T10510] kernel_clone+0x226/0x8f0 [ 272.072085][T10510] __x64_sys_clone+0x258/0x2a0 [ 272.076842][T10510] do_syscall_64+0xf3/0x230 [ 272.081342][T10510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.087240][T10510] page last free pid 5088 tgid 5088 stack trace: [ 272.093549][T10510] free_unref_page+0xd22/0xea0 [ 272.098303][T10510] vfree+0x186/0x2e0 [ 272.102181][T10510] __do_replace+0x874/0xa50 [ 272.106690][T10510] do_ip6t_set_ctl+0xf11/0x1270 [ 272.111531][T10510] nf_setsockopt+0x295/0x2c0 [ 272.116112][T10510] do_sock_setsockopt+0x3af/0x720 [ 272.121124][T10510] __sys_setsockopt+0x1ae/0x250 [ 272.125971][T10510] __x64_sys_setsockopt+0xb5/0xd0 [ 272.130982][T10510] do_syscall_64+0xf3/0x230 [ 272.135478][T10510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.141374][T10510] [ 272.143684][T10510] Memory state around the buggy address: [ 272.149297][T10510] ffff888065867800: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 272.157362][T10510] ffff888065867880: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc [ 272.165439][T10510] >ffff888065867900: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 272.173498][T10510] ^ [ 272.177557][T10510] ffff888065867980: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 272.185608][T10510] ffff888065867a00: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc [ 272.193662][T10510] ================================================================== [ 272.201844][T10510] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 272.209055][T10510] CPU: 0 PID: 10510 Comm: syz.4.1876 Not tainted 6.10.0-rc5-syzkaller-00184-g42391445a863 #0 [ 272.219222][T10510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 272.229274][T10510] Call Trace: [ 272.232562][T10510] [ 272.235484][T10510] dump_stack_lvl+0x241/0x360 [ 272.240161][T10510] ? __pfx_dump_stack_lvl+0x10/0x10 [ 272.245385][T10510] ? __pfx__printk+0x10/0x10 [ 272.249964][T10510] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 272.255939][T10510] ? vscnprintf+0x5d/0x90 [ 272.260259][T10510] panic+0x349/0x860 [ 272.264146][T10510] ? check_panic_on_warn+0x21/0xb0 [ 272.269248][T10510] ? __pfx_panic+0x10/0x10 [ 272.273663][T10510] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 272.279542][T10510] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 272.285421][T10510] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 272.291741][T10510] check_panic_on_warn+0x86/0xb0 [ 272.296676][T10510] ? dev_map_enqueue+0x40/0x3e0 [ 272.301518][T10510] end_report+0x77/0x160 [ 272.305754][T10510] kasan_report+0x154/0x180 [ 272.310249][T10510] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 272.316235][T10510] ? dev_map_enqueue+0x40/0x3e0 [ 272.321082][T10510] dev_map_enqueue+0x40/0x3e0 [ 272.325751][T10510] xdp_do_redirect_frame+0x2a6/0x660 [ 272.331043][T10510] bpf_test_run_xdp_live+0xe60/0x1e60 [ 272.336419][T10510] ? bpf_test_run_xdp_live+0x724/0x1e60 [ 272.341965][T10510] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 272.347789][T10510] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 272.353676][T10510] ? __might_fault+0xaa/0x120 [ 272.358356][T10510] ? __might_fault+0xc6/0x120 [ 272.363031][T10510] ? _copy_from_user+0xa6/0xe0 [ 272.367781][T10510] ? bpf_test_init+0x15a/0x180 [ 272.372556][T10510] ? xdp_convert_md_to_buff+0x5b/0x330 [ 272.378033][T10510] bpf_prog_test_run_xdp+0x80e/0x11b0 [ 272.383419][T10510] ? __pfx_lock_release+0x10/0x10 [ 272.388448][T10510] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 272.394277][T10510] ? __fget_files+0x29/0x470 [ 272.398902][T10510] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 272.404714][T10510] bpf_prog_test_run+0x33a/0x3b0 [ 272.409733][T10510] __sys_bpf+0x48d/0x810 [ 272.414018][T10510] ? __pfx___sys_bpf+0x10/0x10 [ 272.418796][T10510] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 272.424767][T10510] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 272.431093][T10510] ? do_syscall_64+0x100/0x230 [ 272.435853][T10510] __x64_sys_bpf+0x7c/0x90 [ 272.440277][T10510] do_syscall_64+0xf3/0x230 [ 272.444787][T10510] ? clear_bhb_loop+0x35/0x90 [ 272.449471][T10510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.455372][T10510] RIP: 0033:0x7f8c2a975b99 [ 272.459788][T10510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.479398][T10510] RSP: 002b:00007f8c2b6ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 272.487808][T10510] RAX: ffffffffffffffda RBX: 00007f8c2ab04038 RCX: 00007f8c2a975b99 [ 272.495776][T10510] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a [ 272.503735][T10510] RBP: 00007f8c2a9e4a7a R08: 0000000000000000 R09: 0000000000000000 [ 272.511710][T10510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 272.519696][T10510] R13: 000000000000006e R14: 00007f8c2ab04038 R15: 00007ffc5f06c878 [ 272.527680][T10510] [ 272.530962][T10510] Kernel Offset: disabled [ 272.535397][T10510] Rebooting in 86400 seconds..